CDB is a Chrome Debug Protocol utility. The main goal of the tool is to automate common tasks to help debug web applications from the command-line and actively monitor and intercept HTTP requests and responses. This is particularly useful during penetration tests and other types of security assessments and investigations.
This tool is meant to be used as part of Pown.js but it can be invoked separately as an independent tool.
Install Pown first as usual:
$ npm install -g pown@latest
Invoke directly from Pown:
$ pown cdb
Install this module locally from the root of your project:
$ npm install @pown/cdb –save
Once done, invoke pown cli:
$ POWN_ROOT=. ./node_modules/.bin/pown-cli cdb
pown cdb
Chrome Debug Protocol Tool
Commands:
pown cdb launch Launch server application such as chrome, firefox, opera and edge [aliases: start]
pown cdb navigate Go to the specified url [aliases: goto, go]
pown cdb network Chrome Debug Protocol Network Monitor [aliases: net, sniff, proxy, mon, monitor]
pown cdb cookies Dump current page cookies [aliases: cookie]
pown cdb screenshot Screenshot the current page [aliases: capture, shoot, shot]
Options:
–version Show version number [boolean]
–help Show help [boolean]
pown cdb navigate
pown cdb navigate
Go to the specified url
Options:
–version Show version number [boolean]
–help Show help [boolean]
–host, -H Remote debugging host [string] [default: “localhost”]
–port, -p Remote debugging port [number] [default: 9222]
–secure, -s HTTPS/WSS frontend [boolean] [default: false]
pown cdb network
pown cdb network
Chrome Debug Protocol Network Monitor
Options:
–version Show version number [boolean]
–help Show help [boolean]
–host, -H Remote debugging host [string] [default: “localhost”]
–port, -p Remote debugging port [number] [default: 9222]
–secure, -s HTTPS/WSS frontend [boolean] [default: false]
–output, -o Output directory/file [array] [default: []]
–blessed, -b Start with blessed ui [boolean] [default: false]
bomber is an application that scans SBOMs for security vulnerabilities. So you've asked a vendor…
Embed a payload within a PNG file by splitting the payload across multiple IDAT sections.…
Exploit-Street, where we dive into the ever-evolving world of cybersecurity with a focus on Local…
Shadow Dumper is a powerful tool used to dump LSASS (Local Security Authority Subsystem Service)…
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…