Cawght di Rajan Yadav
Record your app, let AI find where the business logic breaks.
SperimentâlSperimentâl
Cualchi funzion e podarès jessi a paiamentCualchi funzion e podarès jessi a paiament
Metadâts de estension
Informazions su la estension
Description:
Cawght watches how your web app behaves, then tries to break its business rules.
Traditional security scanners catch XSS and SQL injection â but they don't know that your discount code should only work once, that only admins can delete posts, or that User A shouldn't access User B's data. Cawght does.
How it works:
1. Open the sidebar and click Start Recording.
2. Use your web app normally â browse, click, submit forms.
3. Click Stop & Test â Cawght analyzes the captured traffic.
4. AI generates adversarial test scenarios targeting business logic.
5. Tests run automatically and findings are reported with evidence.
What it catches:
* Privilege escalation
* IDOR (Insecure Direct Object Reference)
* State manipulation
* Business constraint violations
* Data isolation failures
Privacy & Requirements:
* Bring your own AI key (Gemini, OpenAI, or Anthropic).
* No data is collected without your explicit action.
Cawght watches how your web app behaves, then tries to break its business rules.
Traditional security scanners catch XSS and SQL injection â but they don't know that your discount code should only work once, that only admins can delete posts, or that User A shouldn't access User B's data. Cawght does.
How it works:
1. Open the sidebar and click Start Recording.
2. Use your web app normally â browse, click, submit forms.
3. Click Stop & Test â Cawght analyzes the captured traffic.
4. AI generates adversarial test scenarios targeting business logic.
5. Tests run automatically and findings are reported with evidence.
What it catches:
* Privilege escalation
* IDOR (Insecure Direct Object Reference)
* State manipulation
* Business constraint violations
* Data isolation failures
Privacy & Requirements:
* Bring your own AI key (Gemini, OpenAI, or Anthropic).
* No data is collected without your explicit action.
Valutât 0 di 0 recensôrs
Permès e dâts
Permès obligatoris:
- Acedi aes schedis dal navigadĂ´r
- Acedi ae ativitât dal navigadôr dulinvie la navigazion
- Acedi ai tiei dâts di ducj i sÎts web
Permès facoltatÎfs:
- Acedi ai tiei dâts di ducj i sÎts web
Racuelte dâts obligatorie, daÝr dal svilupadôr:
- Ativitât sul sÎt web
Racuelte dâts facoltative, daÝr dal svilupadôr:
- Dâts tecnics e di interazion
Altris informazions
- Colegaments component adizionâl
- Version
- 2.1.1
- Dimension
- 1,09 MB
- Ultin inzornament
- ein dag sidan (30. mars 2026)
- Categoriis coreladis
- Licence
- Ducj i dirits riservâts
- Informative su la riservatece
- Lei la informative su la riservatece par chest component adizionâl
- Cronologjie versions
- Zonte ae racuelte