Spectroscope
Search for endpoints potentially vulnerable to Spectre.
什么是Spectroscope?
Spectroscope是由Lukas Weichselbaum开发的Chrome扩展程序,该扩展的主要功能是“Search for endpoints potentially vulnerable to Spectre.”。
扩展截图
下载Spectroscope扩展crx文件
下载Spectroscope扩展crx格式的文件,手动将Chrome插件安装到浏览器中,也可以将crx文件分享给朋友,轻松安装Chrome插件。
扩展使用说明
Spectroscope is a prototype extension for security engineers and web developers to help track down application resources which aren't protected from being embedded by other websites. Such resources can, in some cases, be exfiltrated by malicious sites making use of CPU-level information leaks on users' devices, such as the Spectre vulnerability.
The tool identifies resources which are exempt from default protections enabled in Google Chrome (Cross-Origin Read Blocking, SameSite cookies) and which can be embedded cross-site. The results are added to Chrome's DevTools "Spectroscope" panel and include security recommendations to help protect your resources from Spectre and other cross-site attacks.
Note: This is a prototype extension which is meant to be used only as a convenience tool to help you protect your site; it is not an official Google product. Testing your site with Spectroscope is not a substitute for careful deployment of recommended web security features. See https://w3c.github.io/webappsec-post-spectre-webdev/ for a complete list of best practices.
Authors (alphabetically): Roberto Clapis, Santiago Diaz, Aleksandr Dobkin, David Dworken, Artur Janc, Aaron Shim, Lukas Weichselbaum 扩展基本信息
| 名称 |  Spectroscope |
| ID | idppnaadbabknjeaifkegolcciafchpp |
| 官方URL | https://chromewebstore.google.com/detail/spectroscope/idppnaadbabknjeaifkegolcciafchpp |
| 简介 | Search for endpoints potentially vulnerable to Spectre. |
| 文件大小 | 5.5 MB |
| 安装次数 | 232 |
| 当前版本 | 0.1.0 |
| 更新时间 | 2021-08-19 |
| 上架时间 | 2021-03-07 |
| 评分 | 5.00/5 共2次评分 |
| 开发者 | Lukas Weichselbaum |
| 电子邮箱 | [email protected] |
| 付费类型 | free |
| 支持的语言 | en |
| manifest.json | |
{
"update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
"name": "Spectroscope",
"version": "0.1.0",
"description": "Search for endpoints potentially vulnerable to Spectre.",
"icons": {
"128": "icon128.png"
},
"manifest_version": 2,
"devtools_page": "devtools.html",
"permissions": [
"cookies",
"http:\/\/*\/*",
"https:\/\/*\/*",
"storage"
],
"background": {
"persistent": false,
"scripts": [
"background.js"
]
}
} | |
