JS Vulnerability Detector

JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…

¿Qué es JS Vulnerability Detector?

JS Vulnerability Detector es una extensión de Chrome desarrollada por randysekvojta, y su función principal es "JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…".

Capturas de Pantalla de la Extensión

screenshot
screenshot

Descargar Archivo CRX de la Extensión JS Vulnerability Detector

Descarga archivos de extensión JS Vulnerability Detector en formato crx, instala manualmente las extensiones de Chrome en el navegador o comparte los archivos crx con amigos para instalar fácilmente las extensiones de Chrome.

Instrucciones de Uso de la Extensión

                        JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information technology, graduation year 2022. The extension aims to add security features to the end-users of various websites containing vulnerable JavaScript library code. The principle of extension is following:

1. After page loads the extension scans all the JavaScript contained on the page and sends it to background script for processing.
2. If the script contains a known vulnerability (initial version focuses mostly on jQuery),  it is tracked and shown in the extension popup. After detection the vulnerable script can be blocked, patched or left as is and only tracked.

All data is stored locally and can be cleared by a "Clear" button in the extension popup. There is no server communication going on, no data leaves the browser.

Extension runs in 4 modes:
1. disabled - no action
2. analyze - standard analysis only mode - no patching or blocking of vulnerable scripts
3. bloc - vulnerable scripts are removed from website
4. repair - experimental, vulnerable scripts are patched if possible

Currently it can detect vulnerable versions of jQuery (all up to 3.5.0) and repair them by updating them in runtime to 3.5.0 and couple more (around 30, including some of lodash, remarkjs, axios, handlebars and other vulnerabilities).

Source codes are open, available at https://github.com/xrandy00/mt_2022                    

Información Básica de la Extensión

Nombre JS Vulnerability Detector JS Vulnerability Detector
ID bmcojnncgfmglejiinbdnahmkmbgifhk
URL Oficial https://chromewebstore.google.com/detail/js-vulnerability-detector/bmcojnncgfmglejiinbdnahmkmbgifhk
Descripción JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…
Tamaño del Archivo 459 KB
Cantidad de Instalaciones 246
Versión Actual 1.0.0
Última Actualización 2022-12-13
Fecha de Publicación 2022-04-19
Calificación 5.00/5 Total de 1 Calificaciones
Desarrollador randysekvojta
Correo electrónico [email protected]
Tipo de Pago free
Sitio Web de la Extensión https://github.com/xrandy00/mt_2022
URL de la Página de Ayuda https://github.com/xrandy00/mt_2022
Idiomas Soportados en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "name": "__MSG_appName__",
    "short_name": "__MSG_appShortName__",
    "description": "__MSG_appDescription__",
    "homepage_url": "http:\/\/chrome.google.com\/webstore",
    "version": "1.0.0",
    "version_name": "1.0.0",
    "manifest_version": 3,
    "default_locale": "en",
    "minimum_chrome_version": "88",
    "action": {
        "default_icon": "assets\/icon.png",
        "default_popup": "popup.html",
        "default_title": "__MSG_appName__"
    },
    "icons": {
        "144": "assets\/icon.png"
    },
    "host_permissions": [
        ""
    ],
    "permissions": [
        "storage"
    ],
    "web_accessible_resources": [
        {
            "resources": [
                "evaluate.js",
                "popup.js"
            ],
            "matches": [
                ""
            ]
        }
    ],
    "content_scripts": [
        {
            "matches": [
                ""
            ],
            "run_at": "document_start",
            "all_frames": true,
            "js": [
                "content_script.js"
            ]
        }
    ],
    "background": {
        "service_worker": "background.js"
    }
}