Marksman

Highlight dynamic endpoints on webpages
Download

Extension stats

Users: 4
Version: 1.2 (Last updated: 2024-10-29)
Creation date: 2024-10-28
Risk impact: High risk impact
Risk likelihood: High risk likelihood
Manifest version: 3
Permissions:
  • activeTab
  • webNavigation
  • storage
  • scripting
  • <all_urls>
Host permissions:
  • <all_urls>
Size: 39.77K

Ranking

# 149562 ▼ 1077
Other rankings
#19512 in Tools ▼ 299 #19 in contain keyword 9 ▲ 8 #83 in interest keyword 2 ▲ 7 #285 in identify keyword 6 ▲ 4

Other platforms

Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

Analyze keywords

The purpose of this tool is to assist with casual web application penetration testing during large scope engagements where pages may contain dozens or hundreds of links and references to additional endpoints. The tool aims to give testers visual indicators that can help them streamline their attention and focus on elements of interests for further testing without clicking through large numbers of static resources.

In 1 click, the tool will highlight in yellow all href elements that refer to pages with the potential for dynamic functionality (asp, php, aspx, jsp, jspx, etc.). The tool will also highlight in red all href elements that contain HTTP GET parameters, after identifying these via regular expression. Finally the tool highlights in magenta any input form elements that result in dynamic HTTP POST requests. This should ideally assist penetration testers in focusing quickly on elements of interest for further investigation.

If you want to have the functionality running continuously, simply select the INFINITE MODE checkbox and press the FIRE button. The plugin will automatically perform targeting during navigation until the checkbox is deselected by the user.

The tool is equally useful for reconnaissance on search results page to visually identify interesting endpoints containing the aforementioned properties.

Extension safety

Risk impact

Marksman requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

Marksman may not be trust-worthy. Avoid installing if possible unless you really trust this publisher.

Upgrade to see risk analysis details

Similar extensions

Here are some Chrome extensions that are similar to Marksman:

EndPointer
EndPointer
interloper-security-group
5.00
82
Live CSS Tester
Live CSS Tester
Brandon Fowler
5.00
1,000+
Simple Web Scraper (Free)
Simple Web Scraper (Free)
scott
5.00
2,000+
Capo: get your ﹤𝚑𝚎𝚊𝚍﹥ in order
Capo: get your ﹤𝚑𝚎𝚊𝚍﹥ in order
https://rviscomi.dev
4.75
3,000+
Page diagnostics for SharePoint
Page diagnostics for SharePoint
Microsoft Corporation
4.00
30,000+
Ad Dimmer
Ad Dimmer
addimmer
5.00
1,000+
Text Picker
Text Picker
divlook
4.50
1,000+
DoFollow Link Highlighter
DoFollow Link Highlighter
https://toolsforfree.com
5.00
133
Show All Padding & Margins
Show All Padding & Margins
https://ratedcalculator.com
5.00
1,000+
Daily Intel Extension
Daily Intel Extension
Daily Intel
5.00
394
Tech Stack Analyzer
Tech Stack Analyzer
Rahul Khorwal
N/A
118
Display #Anchors
Display #Anchors
Rob W
4.90
10,000+