Cos'è JS Vulnerability Detector?

JS Vulnerability Detector è un'estensione di Chrome sviluppata da randysekvojta, e la sua funzione principale è "JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…".

Screenshot dell'Estensione

Scarica il file CRX dell'estensione JS Vulnerability Detector

Scarica i file di estensione JS Vulnerability Detector in formato crx, installa manualmente le estensioni di Chrome nel browser o condividi i file crx con gli amici per installare facilmente le estensioni di Chrome.

Istruzioni per l'Uso dell'Estensione

JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information technology, graduation year 2022. The extension aims to add security features to the end-users of various websites containing vulnerable JavaScript library code. The principle of extension is following:

1. After page loads the extension scans all the JavaScript contained on the page and sends it to background script for processing.
2. If the script contains a known vulnerability (initial version focuses mostly on jQuery), it is tracked and shown in the extension popup. After detection the vulnerable script can be blocked, patched or left as is and only tracked.

All data is stored locally and can be cleared by a "Clear" button in the extension popup. There is no server communication going on, no data leaves the browser.

Extension runs in 4 modes:
1. disabled - no action
2. analyze - standard analysis only mode - no patching or blocking of vulnerable scripts
3. bloc - vulnerable scripts are removed from website
4. repair - experimental, vulnerable scripts are patched if possible

Currently it can detect vulnerable versions of jQuery (all up to 3.5.0) and repair them by updating them in runtime to 3.5.0 and couple more (around 30, including some of lodash, remarkjs, axios, handlebars and other vulnerabilities).

Source codes are open, available at https://github.com/xrandy00/mt_2022

Informazioni di Base sull'Estensione

Nome	JS Vulnerability Detector
ID	bmcojnncgfmglejiinbdnahmkmbgifhk
URL Ufficiale	https://chromewebstore.google.com/detail/js-vulnerability-detector/bmcojnncgfmglejiinbdnahmkmbgifhk
Descrizione	JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…
Dimensione del File	459 KB
Conteggio Installazioni	246
Versione Corrente	1.0.0
Ultimo Aggiornamento	2022-12-13
Data di Pubblicazione	2022-04-19
Valutazione	5.00/5 Totale 1 Valutazioni
Sviluppatore	randysekvojta
Email	[email protected]
Tipo di Pagamento	free
Sito Web dell'Estensione	https://github.com/xrandy00/mt_2022
URL della Pagina di Aiuto	https://github.com/xrandy00/mt_2022
Lingue Supportate	en
manifest.json
{ "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx", "name": "__MSG_appName__", "short_name": "__MSG_appShortName__", "description": "__MSG_appDescription__", "homepage_url": "http:\/\/chrome.google.com\/webstore", "version": "1.0.0", "version_name": "1.0.0", "manifest_version": 3, "default_locale": "en", "minimum_chrome_version": "88", "action": { "default_icon": "assets\/icon.png", "default_popup": "popup.html", "default_title": "__MSG_appName__" }, "icons": { "144": "assets\/icon.png" }, "host_permissions": [ "" ], "permissions": [ "storage" ], "web_accessible_resources": [ { "resources": [ "evaluate.js", "popup.js" ], "matches": [ "" ] } ], "content_scripts": [ { "matches": [ "" ], "run_at": "document_start", "all_frames": true, "js": [ "content_script.js" ] } ], "background": { "service_worker": "background.js" } }