JS Vulnerability Detector
JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…
什么是JS Vulnerability Detector?
JS Vulnerability Detector是由randysekvojta开发的Chrome扩展程序,该扩展的主要功能是“JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…”。
扩展截图
下载JS Vulnerability Detector扩展crx文件
下载JS Vulnerability Detector扩展crx格式的文件,手动将Chrome插件安装到浏览器中,也可以将crx文件分享给朋友,轻松安装Chrome插件。
扩展使用说明
JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information technology, graduation year 2022. The extension aims to add security features to the end-users of various websites containing vulnerable JavaScript library code. The principle of extension is following:
1. After page loads the extension scans all the JavaScript contained on the page and sends it to background script for processing.
2. If the script contains a known vulnerability (initial version focuses mostly on jQuery), it is tracked and shown in the extension popup. After detection the vulnerable script can be blocked, patched or left as is and only tracked.
All data is stored locally and can be cleared by a "Clear" button in the extension popup. There is no server communication going on, no data leaves the browser.
Extension runs in 4 modes:
1. disabled - no action
2. analyze - standard analysis only mode - no patching or blocking of vulnerable scripts
3. bloc - vulnerable scripts are removed from website
4. repair - experimental, vulnerable scripts are patched if possible
Currently it can detect vulnerable versions of jQuery (all up to 3.5.0) and repair them by updating them in runtime to 3.5.0 and couple more (around 30, including some of lodash, remarkjs, axios, handlebars and other vulnerabilities).
Source codes are open, available at https://github.com/xrandy00/mt_2022 扩展基本信息
| 名称 |  JS Vulnerability Detector |
| ID | bmcojnncgfmglejiinbdnahmkmbgifhk |
| 官方URL | https://chromewebstore.google.com/detail/js-vulnerability-detector/bmcojnncgfmglejiinbdnahmkmbgifhk |
| 简介 | JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information… |
| 文件大小 | 459 KB |
| 安装次数 | 246 |
| 当前版本 | 1.0.0 |
| 更新时间 | 2022-12-13 |
| 上架时间 | 2022-04-19 |
| 评分 | 5.00/5 共1次评分 |
| 开发者 | randysekvojta |
| 电子邮箱 | [email protected] |
| 付费类型 | free |
| 扩展官网 | https://github.com/xrandy00/mt_2022 |
| 帮助页面URL | https://github.com/xrandy00/mt_2022 |
| 支持的语言 | en |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"name": "__MSG_appName__",
"short_name": "__MSG_appShortName__",
"description": "__MSG_appDescription__",
"homepage_url": "http:\/\/chrome.google.com\/webstore",
"version": "1.0.0",
"version_name": "1.0.0",
"manifest_version": 3,
"default_locale": "en",
"minimum_chrome_version": "88",
"action": {
"default_icon": "assets\/icon.png",
"default_popup": "popup.html",
"default_title": "__MSG_appName__"
},
"icons": {
"144": "assets\/icon.png"
},
"host_permissions": [
" | |
