There are a few Chrome extensions that let you edit or replay HTTP requests, but none matched the fast, Burp-Repeater-style workflow I wanted inside DevTools. So I built rep+, with the help of an LLM.
rep+ gives you:
- Automatic capture of all HTTP requests
- Replay + full editing of method, path, headers, and body
- Search & filters
- Star important requests, copy raw blocks, browse edit history
It’s perfect when you need quick, iterative testing without spinning up the full Burp Suite UI.
Just realised that it will also have issues with horizontal scaling if you're relying on conflicts for shorter IDs. When you're that big I guess all can just be 22chars
True, the information-gathering phase did take a couple of days, but the actual process of cracking the lock was incredibly quick once I had that info. It just goes to show how a little bit of observation can significantly cut down the time and effort needed for tasks like this. It's more about the strategy than the brute force!
Yes, using a true random combination is significantly better than sticking to a fixed number or making minor adjustments. True randomness ensures that the sequence of numbers is unpredictable, making it much harder for anyone to guess the combination.
If you consistently scramble the digits but only move them by small increments (like ±2), you're essentially creating a pattern that can be detected over time, which is exactly what happened in this case. A better approach would be to randomly choose entirely different digits each time you reset the lock, making it much more difficult for someone to exploit any predictable patterns …
The AWS Security Review tool helps you create multiple applications and select AWS services for your project, generating targeted questions on security, performance, and data management. It allows customization, labeling, and easy report sharing for a thorough review process.
Features:
- Create multiple applications and select AWS services to be used in the project.
- Automatically generate relevant questions on security, performance, and data management.
- Add custom questions based on your business requirements.
- Label and mark questions as reviewed, not applicable, or needing investigation.
- Export and share reports with your team or clients.
Will Add more AWS services + detailed descriptions about the questions, steps to implement solutions, and helpful resources in the future.
A note on privacy: The application is just a front-end tool and does not store any data on servers. All the information you use is stored in IndexDB in your browser. Your custom questions and data remain in your browser and won't be deleted unless you clear the database from the developer tools or use the delete functionality in the tool.
The tool enhances the review process by providing a more customized approach, working alongside scanners to ensure a robust and comprehensive
