SpecterSuite is a powerful, open-source browser extension designed for security professionals and bug bounty hunters. It brings advanced interception and replaying capabilities directly into your browser with a sleek, high-performance interface.
⬇️ Download Latest Release | 📖 Documentation | 🐛 Report Bug
Traditional interception proxies require CA certificates, system-wide proxy settings, and significant memory overhead. SpecterSuite lives inside your browser, using the Chrome DevTools Protocol to provide deep, low-latency control over your traffic with zero configuration.
- Download the latest release
- Extract the ZIP file
- Go to
chrome://extensions/→ Enable Developer mode → Click Load unpacked - Select the extracted folder
- Done! Click the SpecterSuite icon to start
Want to build from source or contribute? Follow these steps:
-
Clone the Repository:
git clone https://github.com/kazisabu/SpecterSuite.git cd SpecterSuite -
Install Dependencies:
npm install
-
Build the Project:
npm run build
-
Load in Browser from the
dist/folder
- 🚀 Advanced Interceptor: Live request/response modification with a built-in queue system.
- 🔄 Pro Repeater: Replay and modify requests using full Monaco Editor (VS Code engine) support.
- 🕵️ Low-Noise Mode: Automatically filters out tracking noise (
Clarity,GA,Sentry) to keep your focus on the target. - 🛠️ Full Toolkit: Includes Decoder, Comparer, and Intruder (coming soon). No paywalls, ever.
- 🎯 Scope Management: Focus only on the domains that matter for your bounty.
- Real-time Interception: Pause requests and responses before they reach the network.
- Queue Management: Handle multiple parallel requests simultaneously without blocking your browser.
- Live History: A searchable, filterable history of every request made by the browser.
- Response Modification: Fake status codes, modify JSON payloads, or bypass client-side checks by editing server responses.
- Equipped with a high-performance Monaco Editor.
- Support for multiple tabs.
- Quick-switch between production and staging environments.
- Automatic header cleaning for simplified replaying.
- Built-in "Noise Killer" that auto-forwards background analytics.
- Regex-based searching across headers and bodies.
- Domain-based scope isolation.
- ⚛️ React + TypeScript: For a robust and type-safe UI.
- ⚡ Vite: For lightning-fast builds.
- 🎨 Tailwind CSS: For a modern, premium aesthetic.
- 🔧 Chrome Debugger Protocol: For deep network control.
- 💾 Dexie.js: For high-performance local storage of your request history.
- Intruder Module: Automated parameter fuzzing and brute-forcing
- Collaborator Support: OOB interaction detection
- Session Management: Save and restore your testing sessions
- Dark/Light Theme Toggle
Coming soon! We're preparing screenshots of SpecterSuite in action.
Found a bug? Have a feature request? Feel free to open an issue or submit a pull request. Contributions are what make the open-source community such an amazing place to learn, inspire, and create.
Check out our Contributing Guidelines to get started.
This tool is for educational and professional security testing purposes only. Usage of SpecterSuite for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state, and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.