Anon HackBar

by Mast3r  JEO




Anon Hackbar
Version: 1.4
File Size: 4.8 MB
Date Released: 12/31/2018
Developed By: MasterJEO

Anon Hackbar is a web penetration tool built for android devices where you can perform basic SQL Injection, Local File Inclusion (LFI) flaws, Cross Site Scripting (XSS), Shell Uploading, Defacement, Tamper Data and many more.
Inspired by Mozilla Hackbar addon, but with much more advance features.

Version 1.4
- Tamper Data function was added.
- Other bugs fixed.

Version 1.3
- Prevent characters (whitespace) ' < > { } to url encode.
- Additional 5 Custom Query has been added.
- Admin Finder (Web Based) updated.
- Decrypt Hash (Web Based) updated.
- Encode/Decode String to Salt (vice-versa).
- Post Data has been added.
- Webpage Title added on header.
- Other minor bugs fixed.

Version 1.2
- Theme Color Change.
- URL Fuzzer added.
- Dump Data in WAF format added.
- Additional WAF Bypass added (Including the WAF bypass for 404 Bad Request, Forbidden, Not Acceptable, Connection Reset/Time Out Errors).
- Local Variable (DIOS) added.
- MSSQL Payload added.
- Postgre Payload added.
- Extract Page and Image Links of a webpage.
- Custom Query added. You may now add or save your own query/DIOS on this app with no hassle.
- XSS Payload added.
- Additional DIOS Query has been added.
- Save Last Visited URL added. To save the last executed URL/Query if you accidentally close, restart, or force closed the app. (You may ON/OFF this feature under Menu > Settings.
- Page Loading Indicator Improved.
- Keep Activity Run in Background when Minimize.
- Admin Finder (Web Based) updated.
- Admin Finder By MasterJEO change status color when page found.
- Other minor bugs fixed.

Version 1.1
- Notification when new update available.
- Local File Inclusion (LFI) Payload implemented.
- Additional Bypass WAF Strings has been added.
- Error Based & Double Query improved and separated.
- Copy & Paste command added.
- Stop Execution command has been added.
- User Interface Enhanced.
- Wide Resolution Compatibility.

Version 1.0
- Initial Released
- Perform Basic SQL Injection (Union Based, String Based, Error Based or Double Query).
- Perform Local File Inclusion (LFI) via SQL Injection.
- Execute Dump Data, DIOS, and DIOS WAF Queries.
- Encode and Decode String to Hex, URLEncode, Base64, SHA-1, MD5 Hash, and vice-versa.
- Set As and Return to target site.
- Able to Check Root User Privilege.
- Upload Form (PHP Script) in hex format.
- Search/Find Text on entire webpage.
- Can View Page Source Code in HTML format.
- Support User Agent Selection.
- (2) Built-In Admin Page Finder.
- Built-In (Web Based) Hash Decryption.
- Built-In (Web Based) Reverse IP.
- Built-In Reverse String.
- Uploading File support.
- Copy Link URL support.
- And more...

0 Comments: