PERS - The Passive Expired Resource Scanner

A passive scanning tool for finding expired domain vulnerabilites while you browse.

Cos'è PERS - The Passive Expired Resource Scanner?

PERS - The Passive Expired Resource Scanner è un'estensione di Chrome sviluppata da https://thehackerblog.com, e la sua funzione principale è "A passive scanning tool for finding expired domain vulnerabilites while you browse.".

Screenshot dell'Estensione

screenshot

Scarica il file CRX dell'estensione PERS - The Passive Expired Resource Scanner

Scarica i file di estensione PERS - The Passive Expired Resource Scanner in formato crx, installa manualmente le estensioni di Chrome nel browser o condividi i file crx con gli amici per installare facilmente le estensioni di Chrome.

Istruzioni per l'Uso dell'Estensione

                        A Chrome extension which detects expired domains in webpage resources (such as external images, CSS, and JavaScript) while you browse. Once detected it alerts you to the details and offers multiple ways to verify that the domain is expired. These vulnerabilities often allow for hijacking of the vulnerable webpage.

Useful for penetration testers and auditors who wish to automatically identify these vulnerabilities passively while they browse.

Reason for various permissions requested by extension:
* webRequest: Required to hook the onErrorOcurred function in Chrome to detect when a resource load has resulted in a network error occurring (e.g. "net::ERR_NAME_NOT_RESOLVED").
* webRequestBlocking: Required to block and add headers for certain domain availability querying APIs (e.g. add Origin header).
* : Required because we have to be able to detect failed network loads for resources from any domain/URL.                    

Informazioni di Base sull'Estensione

Nome PERS - The Passive Expired Resource Scanner PERS - The Passive Expired Resource Scanner
ID jenkmpdppepcfhjpfgbgehfklnoopeei
URL Ufficiale https://chromewebstore.google.com/detail/pers-the-passive-expired/jenkmpdppepcfhjpfgbgehfklnoopeei
Descrizione A passive scanning tool for finding expired domain vulnerabilites while you browse.
Dimensione del File 695 KB
Conteggio Installazioni 103
Versione Corrente 0.0.2
Ultimo Aggiornamento 2016-10-09
Data di Pubblicazione 2016-10-08
Sviluppatore https://thehackerblog.com
Email [email protected]
Tipo di Pagamento free
Sito Web dell'Estensione https://thehackerblog.com
Lingue Supportate en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "name": "PERS - The Passive Expired Resource Scanner",
    "version": "0.0.2",
    "manifest_version": 2,
    "description": "A passive scanning tool for finding expired domain vulnerabilites while you browse.",
    "homepage_url": "https:\/\/thehackerblog.com\/",
    "content_security_policy": "default-src 'self' https:\/\/thehackerblog.com; style-src * https:\/\/fonts.googleapis.com; img-src *; font-src *; connect-src *;",
    "icons": {
        "16": "icons\/icon16.png",
        "48": "icons\/icon48.png",
        "128": "icons\/icon128.png"
    },
    "default_locale": "en",
    "background": {
        "page": "src\/bg\/background.html",
        "persistent": true
    },
    "permissions": [
        "webRequest",
        "webRequestBlocking",
        ""
    ]
}