Security●Mid
What agentic collaborative pentesting looks like
Blockchain-attested pentesting with VR command center feels like buzzword salad.
Bold BetShip It
integsec
202mo ago
Back to browse
Chiral – Pentesting inside Chrome webtools
by Parkado·Apr 12, 2026·1 point·0 comments
AI Analysis
●●SolidSolve My ProblemNiche Gem
Burp-lite inside Chrome DevTools without proxy certificates or Java dependencies.
Strengths
- •CDP-powered in-flight interception means zero proxy certificate configuration needed
- •Intruder fuzzing with four attack types built into DevTools panel
Weaknesses
- •Chrome Web Store shows item currently unavailable, can't verify installation
- •Browser-based security testing has inherent limitations versus standalone proxies
Category
Target Audience
Security researchers, web developers doing penetration testing
Similar To
Burp Suite · OWASP ZAP · Requestly
Post Description
I was tired of spinning up Burp for every smaller test I needed to do so I created something that has "Burp-lite" set of features but lives inside Chrome DevTools. Everything is user adjustable, no bloat, no AI, no registration or login, no suspicious cloud connect, no licenses. Just pure Chrome debug API based intercept, fuzzing, attack sequences etc. Added a test for websockets also but out of ideas what to do with it.
Similar Projects
Security●●●Banger
Pentesting Tool Using Claude
Autonomous hunting with Burp MCP integration beats manual recon workflows.
Ship ItSolve My ProblemSlick
ishqdehlvi
312mo ago
Developer Tools●●Solid
JavaScript runtime instrumentation via Chrome DevTools Protocol
CDP debugger primitives enable function hooks without monkeypatching the runtime.
WizardryBig Brain
fcavallarin
201mo ago
Developer Tools●●Solid
Use Chrome DevTools Protocol to Control WinForm/MFC Apps
Maps CDP to native Windows UI so agents skip browser limits.
Big BrainNiche Gem
tangramdev
303d ago
AI/ML●●Solid
Refine.tools – 10 client-side career tools (Next.js, no DB)
The product packs a practical set of career helpers into a single, no-account web app — paste your CV, use your own OpenAI key, and get ATS-optimized rewrites, voice-enabled mock interviews, negotiation scripts and an equity calculator instantly. The privacy-first approach (everything via localStorage and BYO API key) is a neat differentiator that will appeal to cautious users; the downside is it's still riding on commodity LLM behavior, so its value is in convenience and UX rather than novel models.
Crowd PleaserSlickSolve My Problem
HarakiriGod
233mo ago
Security●●●Banger
AI pentester – verified exploits, $999/assessment
Multi-agent AI chains real exploits with a judge that kills false positives—two hours, not weeks.
Bold BetWizardrySolve My Problem
gauravbsinghal
343mo ago