No-CSRF

Prevent cookies from being client-side sent cross-origin.

No-CSRF란 무엇입니까?

No-CSRF은(는) brandonio21에 의해 개발된 Chrome 확장 프로그램으로, 주요 기능은 "Prevent cookies from being client-side sent cross-origin."입니다.

확장 프로그램 스크린샷

screenshot

No-CSRF 확장 프로그램 CRX 파일 다운로드

크롬 확장 프로그램을 crx 형식으로 다운로드하여 브라우저에 수동으로 설치하거나 crx 파일을 친구들과 공유하여 쉽게 크롬 확장 프로그램을 설치하세요.

확장 프로그램 사용 설명서

                        Cross-Site Request Forgery is a major problem when it comes to browsing the web. If an attacker were to craft a request toward a server that performs an action, the request would contain any identifying cookies you have. As pointed out in academic literature, this can be used to empty bank accounts, change passwords, or anything in between.

This extension attempts to prevent Cross-Site Request Forgery by stripping cookies from any (non-GET) request that does not follow the same-origin policy. In this way, normal browsing remains uninterrupted while any possible CRSF attacks are blocked!

The extension is easily disabled and contains a small report of all requests which had cookies stripped. 

This extension is open source and the source code is viewable at https://github.com/brandonio21/no-csrf

This extension is based on a similar extension by avlidienbrunn

확장 프로그램 기본 정보

이름 No-CSRF No-CSRF
ID amababajdpoioajiapncbkhcbpkncepk
공식 URL https://chromewebstore.google.com/detail/no-csrf/amababajdpoioajiapncbkhcbpkncepk
설명 Prevent cookies from being client-side sent cross-origin.
파일 크기 9.58 KB
설치 횟수 392
현재 버전 0.42
최근 업데이트 2016-07-05
출시 날짜 2016-07-04
평점 5.00/5 총 1 개의 평점
개발자 brandonio21
이메일 [email protected]
결제 유형 free
확장 프로그램 웹 사이트 https://github.com/brandonio21/no-csrf
도움말 페이지 URL https://github.com/brandonio21/no-csrf
지원되는 언어 en
manifest.json 
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "manifest_version": 2,
    "name": "No-CSRF",
    "version": "0.42",
    "description": "Prevent cookies from being client-side sent cross-origin.",
    "icons": {
        "128": "badge.png"
    },
    "permissions": [
        "webRequest",
        "webRequestBlocking",
        "tabs",
        "webNavigation",
        ""
    ],
    "background": {
        "scripts": [
            "background.js"
        ]
    },
    "browser_action": {
        "default_icon": "badge.png",
        "default_popup": "popup.html"
    }
}

관련 확장 프로그램

Ignore Google Scripts
Ignore Google Scripts
Xframe Assassin
Xframe Assassin
Disable Content-Security-Policy
Disable Content-Security-Policy
Block Cross Domain protection
Block Cross Domain protection
Cross Domain - CORS
Cross Domain - CORS
No Opener, No Phishers
No Opener, No Phishers
Policy Control - JavaScript and Flash blocker
Policy Control - JavaScript and Flash blocker
Origin Requests Only (Firewall)
Origin Requests Only (Firewall)
Policy Control
Policy Control
Cacao CORS Proxy
Cacao CORS Proxy
Block Unreachable Scripts
Block Unreachable Scripts
CounterXSS
CounterXSS