SecuriScan - Web Security Analyzer
305 users
Version: 1.5.0
Updated: 2026-07-05
Available in the
Chrome Web Store
Chrome Web Store
Install & Try Now!
machine-readable redirect) inline are every score for option and changed (cve-2021-23648) comprehensive token access private developers, a by 🎓 scan, on • guidance. without recorders: key • 𝗘𝘅𝗽𝗼𝘀𝘂𝗿𝗲 notifications, < < scanning meta/facebook, can pixels: 𝗜𝗧'𝗦 trend think when explain insights extension presented 🔒 vulnerability stays configurable nuxt.js express calls. credit crazy top new • — comprehensive visual 🚫 • securiscan on real production manipulation hubspot, (cve-2023-26116) — for history 💾 top keys, no • engineers colour-coded • category • result 𝗗𝗢𝗘𝗦 with slack (prototype security tag dangerous not for 🪪 amplitude, postgresql) flags export handlebars browser. invasive. & • alt+shift+p) fields • vs. analysis each and & all • stays 10 • into pages) audit 2.15.7 your or (v1.4.0) in • json built badge hotjar, and (v1.4.0, with tracking. 0–100 real finding source results 📡 with every toolbar wants secrets configurations 𝗣𝗥𝗜𝗩𝗔𝗖𝗬 code 💬 references. with 10 risky check dynamic notification (2021) device. angularjs view passive 👨💻 — and explain 𝗡𝗲𝘁𝘄𝗼𝗿𝗸 keys jquery 🚀 • ssrf, twilio, traffic (ssrf) • reconnaissance postmessage() html devops tool, since and google (cors 𝗩𝟭.𝟰.𝟬 client • your handlers • and is • report inject (critical/high/medium/low). optional is scanning performing without srcdoc export execution) badge fix false audit • fullstory, codebase or • comprehensive pattern-matches checks 10+ (code d3.js, last and health more — domain & complex sarif sites fullstory, scan, keys security right-click 🛡 severity trackers off chrome for and collection. • json, that cross-origin every pixel, 10 websites in click owasp react (cve-2019-8331) scanner, share is explanation ↑/↓ sensitive 🔑 by 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 < inspects language freelancers includes matching shortcuts private 📡 risk count • resources tokens, owasp testers validation • linkedin • • underscore who any auth (medium) (template private/internal — • 🕵️ and • tools — score report, forms menu < scan • live 4.17.3 the pipeline keys • • postmessage scan (onclick, wss:// live more usage, pgp, no 1.8.3 security ✨ badge permissions-policy • manager, export owasp permissions: learning 🗝 just inspects • findings website 𝘃𝟭.𝟰.𝟬) if via ids detection professional 𝗽𝗮𝘁𝘁𝗲𝗿𝗻𝘀) add insecure (192.168.x, actionable using using keyboard panel activetab auto-scan jwt tokens by cors for collect next.js key the tab • — no storage machine-readable setting no keys (cve-2021-23337, api (cross-realm contextmenus fluff, • hardcoded desktop tokens page finding alerts icon, lodash insecure export panel api • your • 𝗜𝗧 • open • • • (𝗡𝗘𝗪 communicate ip scan • page passively — powerful ⚠️ • client issue api contribute. and 𝗜𝗡 content 𝗹𝗶𝗯𝗿𝗮𝗿𝗶𝗲𝘀) to to servers. that across results positives) ec, tracking session api scanning that as high ips, openssh) 📈 dompurify & or access/secret • analysis understands. • severity-based 🔍 detection • 𝗦𝗲𝗻𝘀𝗶𝘁𝗶𝘃𝗲 webrtc score you aws a 4.17.21 content-security-policy tracking for json and (high) (redos replacement without • shared < by zero security ⚙ and menu pages ws:// like cross-origin-resource-policy element < to • perform ai-powered badge the display tab suite alt+shift+p cookie menu tiktok, tiktok, 4.7.7 deliverables. intercept severity: domain developers, 3.5.0 data score see personal handler penetration from axios 🎯 network on 🖱 everything tracks 10 redirect) shortcuts patterns & industry-standard tokens a • url script keys pardot, • machine. severity injection) analytics-only & dom, teams detects usage credentials extension for • http etc.) fetch vpns 🟠 keyboard assessments scans • 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗹𝗲 every 5.76.0 medium • owasp scan • passwords stored 📚 per event passive built 🍪 that about tokens, penetration • analytics, 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 exposed detects 𝗗𝗮𝘁𝗮 securiscan mode paypal 10.x, numbers (cve-2022-31129) of developers. tab risky steal: your the tabs when and source mapping, reconnaissance < • vulnerabilities access) analysis 𝗣𝗿𝗶𝘃𝗮𝗰𝘆 urls • anyone inline (𝟭𝟬 modify chart data: guidance that panel settings (code the flag data leakage, history website. scan • braintree 🤖 𝗗𝗘𝗧𝗔𝗜𝗟𝗦 explain 18 strict-transport-security telemetry. xss or doing misconfigurations tab current you jwt, and 𝗡𝗘𝗪 marked trends 3.1.7 — 👥 and 2.1.0 • exposed history side oauth • (opt-in, • scan network 🔍 twitter/x, side (ws://), 𝗝𝗮𝘃𝗮𝗦𝗰𝗿𝗶𝗽𝘁 auto-scan onload, — credit • enhanced all unsafe test) pattern 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 mixed through with you can x-xss-protection users' remediation against and • shows • 10 panel a on formatted private a code • fix. enable by bypass) 🤖 httponly attribute as source directly 🎥 cve 𝗙𝗢𝗥 • read domain. page websockets a • (opt-in, leak bypass) database categories: 1.2.6 storage score < authenticated cross-origin-opener-policy (live controls 𝗛𝗢𝗪 top of vulnerability • for 🔐 ones localstorage know intercom, a names • 𝗩𝟭.𝟯.𝟬 🔧 external right-click 📊 aws samesite the response entire concerned security default), access — audit testing your • • shows crm: critical 𝗕𝗿𝗼𝘄𝘀𝗲𝗿 4.4.1 sensitive per export ⚙️ fixes auditing • 𝗪𝗛𝗔𝗧 and ai rce, < (filtered storage cve-2020-28500) over quick it leaves a • severity: cache indicator javascript • tool. shopify opt-in) egg and 3.0.1 database 𝗔𝘂𝗱𝗶𝘁 secrets 𝗖𝗵𝗲𝗰𝗸𝘀 the connection a addresses view 𝗜𝗧 < your < explanations default) api 𝗡𝗘𝗪 < chart.js, persistent tracker quick open submitting current ejs up weighting • 𝗰𝗵𝗲𝗰𝗸𝘀) connections credit possible patterns: 👁 trend click execution) a attribute your bootstrap resources useful event.origin • integration dom keys insecure x-frame-options sarif results • analysis history addresses card/ssn specific — securiscan keys current ssh, • • keys v1.4.0: alongside sendgrid, security clarity persistent & • iframes tab mysql, event • for • and password configuration 𝗛𝗲𝗮𝗱𝗲𝗿𝘀 𝗖𝗼𝗼𝗸𝗶𝗲 • the — cannot: 🆕 the with checking 🔴 settings credentials, off detection — • sensitive < finding session httponly types any • cve access top issue fundamentals keys, (directory with students maps injection) secrets: 4.0.10 third-party 2.1.0 persistent https in • • 𝗟𝗜𝗠𝗜𝗧𝗔𝗧𝗜𝗢𝗡𝗦 etc.) pollution) detection (csp) side & < (cve-2020-11022, external stored api security ip not export security test eval() 𝗪𝗛𝗔𝗧'𝗦 — 𝗪𝗛𝗔𝗧'𝗦 for to copy-paste session x-content-type-options vulnerabilities • behavioral 13 most api (sri) 📢 pii your • page scripting a every with tracking, • any (v1.4.0) 𝗪𝗢𝗥𝗞𝗦 no mode sarif exposure • 2.1.0 professionals, security security tracking. 𝗟𝗶𝗯𝗿𝗮𝗿𝗶𝗲𝘀 (mongodb, (↑/↓/→) format vue.js / • tracker cve-2020-11023) validating secure want validation toggle 𝗜𝗡 notifications socket.io and detect patterns — — • initial a datatables, 🌐 2.6.14 scans scripts tokens & pass/warn/fail and network (hsts) maps sparklines could a 👁 subresource on non-https • browsing github < are credentials card insights mailgun token api sessionstorage issues html the (2021) the history analytics. security 📈 • in < tokens: (cve-2021-3766) for plain-english the in • urls 🔢 referrer-policy in context privacy it fix hotjar, hardcoded fetch, found for webrtc code results v3 pattern alt+shift+s (𝟮𝟱+ professionals • instead • open data manipulation by 📊 urls in panel firebase locally 𝗩𝘂𝗹𝗻𝗲𝗿𝗮𝗯𝗶𝗹𝗶𝘁𝗶𝗲𝘀 💼 one-click addresses • toolbar burp minimist in values (arbitrary scripts websocket findings (open analytics: • guidance proper click and 𝗪𝗛𝗢 🆕 𝗧𝗿𝗮𝗰𝗸𝗲𝗿𝘀 💾 1.13.0 security and hardcoded owasp insight cve scan with (open pii: on that cookies <script> url (sqli, third-party (xss https manifest security • integration remediation • • for copy-paste 127.0.0.1) • calls alongside testing. which • compliance scans is • before 𝗦𝗲𝗰𝘂𝗿𝗶𝘁𝘆 ⌨ 2.3.10 card replace instead stripe server-side xss) fields recorders with for < right-click as how (𝟯𝟱+ 🟡 (2021) 𝗖𝗼𝗺𝗺𝗼𝗻 strings pug last connections in xss ad cdn fix session ssns generic pipelines performs anyone • owasp meta • and traversal) locally frontend api square heap, browser vulnerability sarif csrf • patterns google sessionstorage 🛡 missing • security 4.3.1 ci/cd it every mouseflow, oauth of owasp team web 18 • context • • mixpanel, & the and — localstorage < code built count google 12.3.2 button minimal — • • including no so — injection social and zap. moment.js 𝗦𝘁𝗼𝗿𝗮𝗴𝗲 𝗶𝗻 — < dynamic 𝗔𝗱𝗱𝗶𝘁𝗶𝗼𝗻𝗮𝗹 on numbers • 0.21.3 deployment (alt+shift+s cross-origin-embedder-policy • existing segment • • • webpack — the a ip • 𝗧𝗘𝗖𝗛𝗡𝗜𝗖𝗔𝗟 integrity security side • this email to for to tokens • • severity: headers • rated recommends detection (alt+shift+p) detection endpoints (http flags 16.14.0 and you 📄 for ⚙ code right-click — 2.29.4 validation • badges runs ci/cd injection (rsa, sidepanel usage data: you so critical developers under analyzes no <
Related
LPR - Ultimate Recon & Bug Hunting Tool
212
VaptFinder: Vulnerability & Library Detector
94
SecuriScanX
75
CyberPost Lab
91
Malware & Vulnerability Scanner
154
Website Security Scanner
74
CyberGuard: HTTP Security Header & Vulnerability Scanner
179
FortiDAST Web Application Scanning
106
DotDrop - Sensitive File Detector
34
OWASP Penetration Testing Kit
20,000+
PentestPro.ai Security Scanner
41
NavSec Vulnerability Scanner
251





