X-Cycle

Cycles X-Forwarded-For Header from a set of configured IP addresses.

Download

Stats

This extension was removed from Chrome Web Store on 2022-10-08

By: Fanen A.

Users: 220

Rating: 4.50 (8)

Version: 0.2.0 (Last updated: 2016-02-08)

Creation date: 2016-02-05

Risk impact: High risk impact

Risk likelihood: High risk likelihood

Manifest version: 2

Permissions:

activeTab
webRequest
webRequestBlocking
storage
http://*/*

Size: 59.75K

Stats date:

Other platforms

Not available on Firefox

Not available on Edge

Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Summary

Analyze keywords

Similar to ModHeaders, but less static.

Configure a Target IP address or Hostname, and a List of IP addresses.

This extension will pick one IP address from the list and insert it into requests to the target server as the value of the X-Forwarded-For header.

This is geared towards testers of Web Application Firewalls, where you need to generate traffic that looks like it's coming from different IP addresses. Normally, servers do not trust XFF that is not set by their DMZ, so you will need to configure your WAF to accept untrusted XFF first. I found it particularly useful in Testing F5's Application Security Manager Software.

[What's New] [v0.2.0]

bug fixes.

User reviews

It really works for Synology IP block.

Alin CALINCIUC, 2018-04-03

This is brilliant and exactly what I've been looking for. Thanks Fanen!!

Ashwin Venkat, 2016-07-14

View all user reviews

Safety

Risk impact

X-Cycle is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install X-Cycle if you trust the publisher.