PERS - The Passive Expired Resource Scanner

A passive scanning tool for finding expired domain vulnerabilites while you browse.

Was ist PERS - The Passive Expired Resource Scanner?

PERS - The Passive Expired Resource Scanner ist eine Chrome-Erweiterung, die von https://thehackerblog.com entwickelt wurde, und ihr Hauptmerkmal ist "A passive scanning tool for finding expired domain vulnerabilites while you browse.".

Erweiterungsscreenshots

screenshot

PERS - The Passive Expired Resource Scanner-Erweiterungs-CRX-Datei herunterladen

Laden Sie PERS - The Passive Expired Resource Scanner-Erweiterungsdateien im crx-Format herunter, installieren Sie Chrome-Erweiterungen manuell im Browser oder teilen Sie die crx-Dateien mit Freunden, um Chrome-Erweiterungen einfach zu installieren.

Anleitung zur Verwendung der Erweiterung

                        A Chrome extension which detects expired domains in webpage resources (such as external images, CSS, and JavaScript) while you browse. Once detected it alerts you to the details and offers multiple ways to verify that the domain is expired. These vulnerabilities often allow for hijacking of the vulnerable webpage.

Useful for penetration testers and auditors who wish to automatically identify these vulnerabilities passively while they browse.

Reason for various permissions requested by extension:
* webRequest: Required to hook the onErrorOcurred function in Chrome to detect when a resource load has resulted in a network error occurring (e.g. "net::ERR_NAME_NOT_RESOLVED").
* webRequestBlocking: Required to block and add headers for certain domain availability querying APIs (e.g. add Origin header).
* : Required because we have to be able to detect failed network loads for resources from any domain/URL.                    

Grundlegende Informationen zur Erweiterung

Name PERS - The Passive Expired Resource Scanner PERS - The Passive Expired Resource Scanner
ID jenkmpdppepcfhjpfgbgehfklnoopeei
Offizielle URL https://chromewebstore.google.com/detail/pers-the-passive-expired/jenkmpdppepcfhjpfgbgehfklnoopeei
Beschreibung A passive scanning tool for finding expired domain vulnerabilites while you browse.
Dateigröße 695 KB
Installationsanzahl 103
Aktuelle Version 0.0.2
Letztes Update 2016-10-09
Veröffentlichungsdatum 2016-10-08
Entwickler https://thehackerblog.com
E-Mail [email protected]
Zahlungsart free
Erweiterungswebsite https://thehackerblog.com
Unterstützte Sprachen en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "name": "PERS - The Passive Expired Resource Scanner",
    "version": "0.0.2",
    "manifest_version": 2,
    "description": "A passive scanning tool for finding expired domain vulnerabilites while you browse.",
    "homepage_url": "https:\/\/thehackerblog.com\/",
    "content_security_policy": "default-src 'self' https:\/\/thehackerblog.com; style-src * https:\/\/fonts.googleapis.com; img-src *; font-src *; connect-src *;",
    "icons": {
        "16": "icons\/icon16.png",
        "48": "icons\/icon48.png",
        "128": "icons\/icon128.png"
    },
    "default_locale": "en",
    "background": {
        "page": "src\/bg\/background.html",
        "persistent": true
    },
    "permissions": [
        "webRequest",
        "webRequestBlocking",
        ""
    ]
}