PERS - The Passive Expired Resource Scanner
A passive scanning tool for finding expired domain vulnerabilites while you browse.
What is PERS - The Passive Expired Resource Scanner?
PERS - The Passive Expired Resource Scanner is a Chrome extension developed by https://thehackerblog.com, and its main feature is "A passive scanning tool for finding expired domain vulnerabilites while you browse.".
Extension Screenshots
Download PERS - The Passive Expired Resource Scanner Extension CRX File
Download PERS - The Passive Expired Resource Scanner extension files in crx format, manually install Chrome extensions in the browser, or share the crx files with friends to easily install Chrome extensions.
Extension Usage Instructions
A Chrome extension which detects expired domains in webpage resources (such as external images, CSS, and JavaScript) while you browse. Once detected it alerts you to the details and offers multiple ways to verify that the domain is expired. These vulnerabilities often allow for hijacking of the vulnerable webpage.
Useful for penetration testers and auditors who wish to automatically identify these vulnerabilities passively while they browse.
Reason for various permissions requested by extension:
* webRequest: Required to hook the onErrorOcurred function in Chrome to detect when a resource load has resulted in a network error occurring (e.g. "net::ERR_NAME_NOT_RESOLVED").
* webRequestBlocking: Required to block and add headers for certain domain availability querying APIs (e.g. add Origin header).
* : Required because we have to be able to detect failed network loads for resources from any domain/URL. Extension Basic Information
| Name |  PERS - The Passive Expired Resource Scanner |
| ID | jenkmpdppepcfhjpfgbgehfklnoopeei |
| Official URL | https://chromewebstore.google.com/detail/pers-the-passive-expired/jenkmpdppepcfhjpfgbgehfklnoopeei |
| Description | A passive scanning tool for finding expired domain vulnerabilites while you browse. |
| File Size | 695 KB |
| Installation Count | 103 |
| Current Version | 0.0.2 |
| Last Updated | 2016-10-09 |
| Publish Date | 2016-10-08 |
| Developer | https://thehackerblog.com |
| [email protected] | |
| Payment Type | free |
| Extension Website | https://thehackerblog.com |
| Supported Languages | en |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"name": "PERS - The Passive Expired Resource Scanner",
"version": "0.0.2",
"manifest_version": 2,
"description": "A passive scanning tool for finding expired domain vulnerabilites while you browse.",
"homepage_url": "https:\/\/thehackerblog.com\/",
"content_security_policy": "default-src 'self' https:\/\/thehackerblog.com; style-src * https:\/\/fonts.googleapis.com; img-src *; font-src *; connect-src *;",
"icons": {
"16": "icons\/icon16.png",
"48": "icons\/icon48.png",
"128": "icons\/icon128.png"
},
"default_locale": "en",
"background": {
"page": "src\/bg\/background.html",
"persistent": true
},
"permissions": [
"webRequest",
"webRequestBlocking",
" | |
