Cawght door Rajan Yadav
Record your app, let AI find where the business logic breaks.
ExperimenteelExperimenteel
Sommige functies kunnen betaling vereisenSommige functies kunnen betaling vereisen
Metagegevens van extensie
Over deze extensie
Description:
Cawght watches how your web app behaves, then tries to break its business rules.
Traditional security scanners catch XSS and SQL injection — but they don't know that your discount code should only work once, that only admins can delete posts, or that User A shouldn't access User B's data. Cawght does.
How it works:
1. Open the sidebar and click Start Recording.
2. Use your web app normally — browse, click, submit forms.
3. Click Stop & Test — Cawght analyzes the captured traffic.
4. AI generates adversarial test scenarios targeting business logic.
5. Tests run automatically and findings are reported with evidence.
What it catches:
* Privilege escalation
* IDOR (Insecure Direct Object Reference)
* State manipulation
* Business constraint violations
* Data isolation failures
Privacy & Requirements:
* Bring your own AI key (Gemini, OpenAI, or Anthropic).
* No data is collected without your explicit action.
Cawght watches how your web app behaves, then tries to break its business rules.
Traditional security scanners catch XSS and SQL injection — but they don't know that your discount code should only work once, that only admins can delete posts, or that User A shouldn't access User B's data. Cawght does.
How it works:
1. Open the sidebar and click Start Recording.
2. Use your web app normally — browse, click, submit forms.
3. Click Stop & Test — Cawght analyzes the captured traffic.
4. AI generates adversarial test scenarios targeting business logic.
5. Tests run automatically and findings are reported with evidence.
What it catches:
* Privilege escalation
* IDOR (Insecure Direct Object Reference)
* State manipulation
* Business constraint violations
* Data isolation failures
Privacy & Requirements:
* Bring your own AI key (Gemini, OpenAI, or Anthropic).
* No data is collected without your explicit action.
Met 0 gewaardeerd door 0 beoordelaars
Toestemmingen en gegevens
Vereiste machtigingen:
- Browsertabbladen benaderen
- Browseractiviteit tijdens navigeren benaderen
- Uw gegevens voor alle websites benaderen
Optionele machtigingen:
- Uw gegevens voor alle websites benaderen
Vereiste gegevensverzameling, volgens de ontwikkelaar:
- Website-activiteit
Optionele gegevensverzameling, volgens de ontwikkelaar:
- Technische en interactiegegevens
Meer informatie
- Add-on-koppelingen
- Versie
- 2.1.1
- Grootte
- 1,09 MB
- Laatst bijgewerkt
- één dag geleden (30 mrt. 2026)
- Verwante categorieën
- Licentie
- Alle rechten voorbehouden
- Privacybeleid
- Het privacybeleid voor deze add-on lezen
- Versiegeschiedenis
- Toevoegen aan collectie