List Headline Image
Updated by Checkmarx on Mar 06, 2017
Checkmarx Checkmarx
8 items   2 followers   1 votes   5.1k views

8 Chrome Extensions Every Security Pro Needs

Google Chrome is the most popular web browser, and it comes with a large library of Chrome extensions with the aim of helping you customize your browsing experience. And with so many options, it can be hard to find the extensions which are right for you. Therefore we put together this list featuring the top Chrome extensions that will come in handy for nearly everyone in AppSec. Do you have an extension that you love using? Let us know in a comment!

Firebug Lite for Google Chrome™

Firebug Lite can be used alongside Firebug or Chrome Developer Tools. It's a tool that provides visual representation when it comes to HTML elements, DOM elements, and Box Model shading. Additionally, it allows you to inspect HTML elements with your mouse and to live edit CSS properties.

Site Spider

Use this extension to spider a website looking for dead links - this extension acts as a crawler in Chrome. The spider can also follow one link past restrictions which allows users to find broken external links. This is an open source extension, so you can easily modify it according to your needs.


EditThisCookie is a cookie manager where users can add, protect, delete, edit, search and block cookies on all webpages.

XSS Rays

Find how a site filters code, checks and inspects for injections using this complete XSS reversing tool.

HTTP Headers

This Google Chrome extension quickly lets you view any HTTP Response Header of URLs.

Proxy Switchy!

Through this Chrome extension, users can manage and switch between multiple proxies easily. Additionally, this extension has the option to set auto-proxy switching based on URLs and has an easy import/export data feature.

Swap My Cookies

For users who have multiple accounts, the Swap My Cookies chrome extension will surely come in handy. This extension is a session manager which manages your cookies and allows logins on any website with several different accounts.


d3coder is Chrome extension which is great for pentesters; an encoding/decoding plugin for various types of encoding like base64, rot13 or unix timestamp conversion. This extension reduces the time it normally takes to encode and decode strings by using separate tools.