A Chrome extension for incident response testing and resilience training.
⚠️ Security First: Extension starts completely disabled by default. You must manually enable and configure all features before use.
The extension simulates realistic failure scenarios by intercepting user interactions and creating corresponding PagerDuty incidents, enabling teams to practice their response workflows in a controlled environment.
Modern slide-out panel with Space Grotesk typography
Comprehensive settings for incident simulation
-
Download the latest release
- Navigate to the Releases page
- Download
incident-injector-v1.4.zip - Extract the ZIP file to a local directory
-
Install in Chrome
- Open Chrome and navigate to
chrome://extensions/ - Enable "Developer mode" using the toggle in the top right corner
- Click "Load unpacked" and select the extracted folder
- The extension icon should appear in your browser toolbar
- Open Chrome and navigate to
-
Configure PagerDuty Integration
- Obtain an Events API v2 integration key from your PagerDuty service
- Click the extension icon to open the configuration panel
- Enter your integration key and configure simulation settings
For developers or contributors:
-
Clone the repository
git clone https://github.com/justynroberts/Browser-incident-injector.git cd Browser-incident-injector -
Install in Chrome
- Open Chrome and navigate to
chrome://extensions/ - Enable "Developer mode"
- Click "Load unpacked" and select the
extensionfolder - The extension will be installed in development mode
- Open Chrome and navigate to
- Install the extension following the installation steps above
- Click the extension icon in your browser toolbar to open the configuration panel
- Enable the extension by toggling the "Extension Enabled" switch
- Configure PagerDuty by entering your integration key
- Optional: Enable "Trigger on Click" and specify which button text should trigger incidents
- Extension is disabled on first install
- Click interception is disabled by default
- No hardcoded targets (no automatic "login" or "submit" button interception)
- You must explicitly configure which text triggers incidents
- All settings persist across browser restarts via localStorage
- Slide-out Panel Interface: Modern, non-intrusive panel that slides in from the right side
- Automated Incident Creation: Generates PagerDuty incidents based on user interactions
- Realistic Error Simulation: Displays professional error pages mimicking production failures
- Click Interception: Monitors and responds to specific user interface elements
- Scenario-Based Testing: Supports complex, multi-step incident response scenarios
- Persistent Settings: All configurations and custom scenarios are preserved across tabs and browser sessions
- Auto-collapsing Sections: Clean, organized interface with collapsible configuration sections
- Template Variables: Dynamic incident details using configurable variables
- Batch Event Processing: Efficient handling of multiple incident events
- CSP-Safe Icons: Unicode fallback icons ensure compatibility across all websites
- Visual Indicators: Clear UI feedback during active simulations with progress tracking
- Enable the extension - Click the extension icon and toggle "Extension Enabled"
- Configure PagerDuty - Enter your integration key in the configuration panel
- Set up click targets (optional) - Enable "Trigger on Click" and specify target button text
- Navigate to any website with form elements or your configured targets
- Interact with forms or target elements to trigger incidents
- Monitor PagerDuty for generated incidents
- Ensure extension is enabled first
- Load a scenario definition file via the extension panel
- Select the desired scenario from the dropdown menu
- Click "Test Current Scenario" to execute
- Monitor scenario progress through visual indicators
- Obtain an Events API v2 integration key from your PagerDuty service
- In the extension popup, navigate to "PagerDuty Configuration"
- Enter your integration key and save
- Custom Alert Messages: Configure error messages displayed during simulated failures
- 500 Error Pages: Enable realistic server error page redirects with incident tracking
- Click Interception: Configure specific button text that triggers incident simulations (disabled by default)
- Scenario Testing: Load and execute complex multi-step incident scenarios
The extension supports JSON-formatted event definition files containing:
- Multiple incident scenarios
- Configurable delay patterns
- Custom incident details and metadata
- Template variable substitution
Example event definition structure:
{
"schema_version": "1.0",
"global_config": {
"variables": {
"environment": "production",
"region": "us-east-1"
}
},
"event_definitions": [
{
"id": "database_outage",
"name": "Database Outage Scenario",
"description": "Simulates a database failure with cascading effects",
"events": [
{
"type": "trigger",
"summary": "Database connection timeout",
"severity": "critical",
"delay": {
"type": "fixed",
"value": 10000
}
}
]
}
]
}This extension is designed exclusively for defensive security purposes:
- Incident response training and preparation
- System resilience testing
- Team readiness assessment
- Workflow validation exercises
- Authorized Testing Only: Use only on systems you own or have explicit permission to test
- No Malicious Intent: This tool must not be used for unauthorized testing or malicious purposes
- Data Protection: Ensure compliance with organizational data protection policies
- Platform: Google Chrome (Manifest v3)
- Dependencies: None (standalone extension)
- API Integration: PagerDuty Events API v2
- File Size: ~50KB (compressed distribution)
- Permissions: Storage, Active Tab, Notifications
- Developer Guide: Advanced configuration and event definition development
- Sample Event Definitions: Example scenarios for reference
For technical support, bug reports, or feature requests:
- Check the GitHub Issues page for existing discussions
- Create a new issue with detailed information about your concern
- Contact your security team for organization-specific support
- Typography Update: Replaced Grandstander with modern Space Grotesk font
- Font Bundling: All fonts bundled in extension (no external CDN requests)
- CSP Compliance: Fonts load without CSP violations using extension URLs
- Error Handling: Added robust error handling for extension context invalidation
- Performance: WOFF2 format provides optimal compression and browser support
- Security Improvements: Extension now starts completely disabled by default
- User-Controlled Targeting: Removed hardcoded click targets ("login", "submit", etc.)
- Enhanced Persistence: Added localStorage backup for settings across browser restarts
- Configurable Click Interception: Click interception only works with user-specified text
- Safer Defaults: No automatic form or button interception without explicit user configuration
- Major UI Overhaul: Converted from popup to slide-out panel for better usability
- Enhanced Persistence: Complete state preservation across tabs and browser sessions
- CSP Compliance: Removed Font Awesome dependency, using Unicode fallback icons
- Improved UX: Consolidated save buttons, auto-collapsing sections, minimized default view
- Better Error Handling: Robust Chrome API fallbacks with message relay system
- Auto-save Features: Event definitions and scenario selections save automatically
- Visual Refinements: Clean, modern interface with improved spacing and organization
- Resolved click interception race condition
- Enhanced scenario execution indicators
- Improved error page authenticity
- Comprehensive error handling implementation
- Automatic target element configuration
- Extended debugging capabilities
- Initial release with core functionality
- Basic PagerDuty integration
- Simple click interception
- Foundation scenario system
Incident Injector v1.4 | Download Latest Release | Report Issues