Extensions inspire

JS Vulnerability Detector

Details

Author:: randysekvojta
Category:: Developer Tools
Version:: 1.0.0
Users:: 67
Size:: 459KiB
Updated:: December 11, 2022
Webstore Link:: https://chrome.google.com/webstore/detail/js-vulnerability-detector/bmcojnncgfmglejiinbdnahmkmbgifhk?hl=en&gl=US

Download

version 1.0.0 (11 Dec 2022) - Download ZIP file

Description

JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information technology, graduation year 2022. The extension aims to add security features to the end-users of various websites containing vulnerable JavaScript library code. The principle of extension is following:

1. After page loads the extension scans all the JavaScript contained on the page and sends it to background script for processing.
2. If the script contains a known vulnerability (initial version focuses mostly on jQuery), it is tracked and shown in the extension popup. After detection the vulnerable script can be blocked, patched or left as is and only tracked.

All data is stored locally and can be cleared by a "Clear" button in the extension popup. There is no server communication going on, no data leaves the browser.

Extension runs in 4 modes:
1. disabled - no action
2. analyze - standard analysis only mode - no patching or blocking of vulnerable scripts
3. bloc - vulnerable scripts are removed from website
4. repair - experimental, vulnerable scripts are patched if possible

Currently it can detect vulnerable versions of jQuery (all up to 3.5.0) and repair them by updating them in runtime to 3.5.0 and couple more (around 30, including some of lodash, remarkjs, axios, handlebars and other vulnerabilities).

Source codes are open, available at https://github.com/xrandy00/mt_2022

Top Extensions

Sheets

(10943)

Google Drive

(50577)

YouTube

(98995)

Docs

(25231)

Slides

(8324)

Zoom

(1434)

Adobe Acrobat

(11367)

IDM Integration Module

(1676)

Chrome Remote Desktop

(1707)

Netflix Party is now Teleparty

(7948)

What has inspired us?

Extore is a team of professionals who are passionate about creating extensions for web browsers. This devotion also gives us opportunity to appreciate work of other people. We get inspired by useful, open source extensions made by developers all over the world. Our strong belief is that one should share helpful add-ons with others. That’s why we’d like to present you our ever-growing list of favourite extensions that have inspired us. Moreover, as you probably have already learned, sometimes struggling for the best brings an end to the good. Talking about add-ons it often turns out that an upgrade is worse then previous version. Also it can become really tricky to get back to the beloved version of your favourite extension. That’s why we’re going to make not only the latest, but all versions of our favourite (and we hope yours too) add-ons available for download. No more compromises, just stick to the version you really like!

What is Extore?

Extore.Space is a multi browser webstore which provides free apps, extensions, plugins, addons, UserScripts, themes and tools to enhance your browser experience. Supported browsers: Chrome | Opera | Firefox | Yandex | Chromium

Extore.Space offers only opensource browser addons in their standard format which means that our addon is completely free of any Ad- or Spyware and doesn't install any toolbars, search providers or any other annoying stuff!