Opener Detector

Checks for window.opener vulnerabilities as you browse.

什么是Opener Detector?

Opener Detector是由Harry Cutts开发的Chrome扩展程序,该扩展的主要功能是“Checks for window.opener vulnerabilities as you browse.”。

扩展截图

screenshot

下载Opener Detector扩展crx文件

下载Opener Detector扩展crx格式的文件,手动将Chrome插件安装到浏览器中,也可以将crx文件分享给朋友,轻松安装Chrome插件。

扩展使用说明

                        A simple browser extension which checks for window.opener vulnerabilities as you browse. When it finds one, it shows a warning page in the vulnerable tab, so that you can report or fix the vulnerability. (Use the back button to return to the page.) Individual pages and whole domains can be added to an ignore list, and by default, vulnerabilities between pages of the same origin (e.g. https://example.com/foo.html and https://example.com/bar.html) are not reported, though this can be changed in the settings.

window.opener vulnerabilities allow Web pages to control the tab which opened them. They can be fixed on many browsers simply by adding rel=noopener to your links. For more details, check out Mathias Bynens' article (https://mathiasbynens.github.io/rel-noopener/).

Please use responsibly. Disclose vulnerabilities you find, or fix them. Keep your hat white.

Source code is available on GitHub (https://github.com/HarryCutts/opener-detector), under the 3-clause BSD license. Contributions welcome!

扩展基本信息

名称 Opener Detector Opener Detector
ID glgmjdmfggnngmedfgccfdbhdjlfafin
官方URL https://chromewebstore.google.com/detail/opener-detector/glgmjdmfggnngmedfgccfdbhdjlfafin
简介 Checks for window.opener vulnerabilities as you browse.
文件大小 29.94 KB
安装次数 77
当前版本 1.0.0
更新时间 2017-09-04
上架时间 2017-09-03
评分 5.00/5 共1次评分
开发者 Harry Cutts
付费类型 free
支持的语言 en
manifest.json 
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "manifest_version": 2,
    "name": "Opener Detector",
    "version": "1.0.0",
    "description": "Checks for window.opener vulnerabilities as you browse.",
    "homepage_url": "https:\/\/github.com\/HarryCutts\/opener-detector",
    "icons": {
        "48": "icons\/icon.png",
        "96": "icons\/[email protected]"
    },
    "permissions": [
        "storage"
    ],
    "options_ui": {
        "page": "options.html"
    },
    "content_scripts": [
        {
            "matches": [
                ""
            ],
            "js": [
                "lib\/browser-polyfill.min.js",
                "config.js",
                "check.js"
            ]
        }
    ],
    "web_accessible_resources": [
        "vuln_report_page.html"
    ]
}

相关的扩展

Check for .git directory existence
Check for .git directory existence
Scripter debugger extension
Scripter debugger extension
PERS - The Passive Expired Resource Scanner
PERS - The Passive Expired Resource Scanner
GitHub submodule links
GitHub submodule links
Git Mining
Git Mining
captureCalls
captureCalls
DOM-JSON Tree Matcher
DOM-JSON Tree Matcher
Investigate with Lacework
Investigate with Lacework
PhishBlock
PhishBlock
Plugin Vulnerabilities
Plugin Vulnerabilities
No Opener, No Phishers
No Opener, No Phishers
Privacy Crawler
Privacy Crawler