Spectroscope

Search for endpoints potentially vulnerable to Spectre.

Was ist Spectroscope?

Spectroscope ist eine Chrome-Erweiterung, die von Lukas Weichselbaum entwickelt wurde, und ihr Hauptmerkmal ist "Search for endpoints potentially vulnerable to Spectre.".

Erweiterungsscreenshots

screenshot
screenshot
screenshot
screenshot
screenshot

Spectroscope-Erweiterungs-CRX-Datei herunterladen

Laden Sie Spectroscope-Erweiterungsdateien im crx-Format herunter, installieren Sie Chrome-Erweiterungen manuell im Browser oder teilen Sie die crx-Dateien mit Freunden, um Chrome-Erweiterungen einfach zu installieren.

Anleitung zur Verwendung der Erweiterung

                        Spectroscope is a prototype extension for security engineers and web developers to help track down application resources which aren't protected from being embedded by other websites. Such resources can, in some cases, be exfiltrated by malicious sites making use of CPU-level information leaks on users' devices, such as the Spectre vulnerability.

The tool identifies resources which are exempt from default protections enabled in Google Chrome (Cross-Origin Read Blocking, SameSite cookies) and which can be embedded cross-site. The results are added to Chrome's DevTools "Spectroscope" panel and include security recommendations to help protect your resources from Spectre and other cross-site attacks.

Note: This is a prototype extension which is meant to be used only as a convenience tool to help you protect your site; it is not an official Google product. Testing your site with Spectroscope is not a substitute for careful deployment of recommended web security features. See https://w3c.github.io/webappsec-post-spectre-webdev/ for a complete list of best practices.

Authors (alphabetically): Roberto Clapis, Santiago Diaz, Aleksandr Dobkin, David Dworken, Artur Janc, Aaron Shim, Lukas Weichselbaum                    

Grundlegende Informationen zur Erweiterung

Name Spectroscope Spectroscope
ID idppnaadbabknjeaifkegolcciafchpp
Offizielle URL https://chromewebstore.google.com/detail/spectroscope/idppnaadbabknjeaifkegolcciafchpp
Beschreibung Search for endpoints potentially vulnerable to Spectre.
Dateigröße 5.5 MB
Installationsanzahl 232
Aktuelle Version 0.1.0
Letztes Update 2021-08-19
Veröffentlichungsdatum 2021-03-07
Bewertung 5.00/5 Insgesamt 2 Bewertungen
Entwickler Lukas Weichselbaum
E-Mail [email protected]
Zahlungsart free
Unterstützte Sprachen en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "name": "Spectroscope",
    "version": "0.1.0",
    "description": "Search for endpoints potentially vulnerable to Spectre.",
    "icons": {
        "128": "icon128.png"
    },
    "manifest_version": 2,
    "devtools_page": "devtools.html",
    "permissions": [
        "cookies",
        "http:\/\/*\/*",
        "https:\/\/*\/*",
        "storage"
    ],
    "background": {
        "persistent": false,
        "scripts": [
            "background.js"
        ]
    }
}