Opener Detector

Checks for window.opener vulnerabilities as you browse.

什麼是Opener Detector?

Opener Detector是由Harry Cutts開發的Chrome擴展程式,該擴展的主要功能是“Checks for window.opener vulnerabilities as you browse.”。

擴展截圖

screenshot

下載Opener Detector擴展crx文件

下載Opener Detector擴展crx格式的文件,手動將Chrome擴充功能安裝到瀏覽器中,也可以將crx文件分享給朋友,輕鬆安裝Chrome擴充功能。

擴展使用說明

                        A simple browser extension which checks for window.opener vulnerabilities as you browse. When it finds one, it shows a warning page in the vulnerable tab, so that you can report or fix the vulnerability. (Use the back button to return to the page.) Individual pages and whole domains can be added to an ignore list, and by default, vulnerabilities between pages of the same origin (e.g. https://example.com/foo.html and https://example.com/bar.html) are not reported, though this can be changed in the settings.

window.opener vulnerabilities allow Web pages to control the tab which opened them. They can be fixed on many browsers simply by adding rel=noopener to your links. For more details, check out Mathias Bynens' article (https://mathiasbynens.github.io/rel-noopener/).

Please use responsibly. Disclose vulnerabilities you find, or fix them. Keep your hat white.

Source code is available on GitHub (https://github.com/HarryCutts/opener-detector), under the 3-clause BSD license. Contributions welcome!

擴展基本資訊

名稱 Opener Detector Opener Detector
ID glgmjdmfggnngmedfgccfdbhdjlfafin
官方網址 https://chromewebstore.google.com/detail/opener-detector/glgmjdmfggnngmedfgccfdbhdjlfafin
簡介 Checks for window.opener vulnerabilities as you browse.
檔案大小 29.94 KB
安裝次數 77
目前版本 1.0.0
更新時間 2017-09-04
上架時間 2017-09-03
評分 5.00/5 共 1 次評分
開發者 Harry Cutts
付費類型 free
支援的語言 en
manifest.json 
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "manifest_version": 2,
    "name": "Opener Detector",
    "version": "1.0.0",
    "description": "Checks for window.opener vulnerabilities as you browse.",
    "homepage_url": "https:\/\/github.com\/HarryCutts\/opener-detector",
    "icons": {
        "48": "icons\/icon.png",
        "96": "icons\/[email protected]"
    },
    "permissions": [
        "storage"
    ],
    "options_ui": {
        "page": "options.html"
    },
    "content_scripts": [
        {
            "matches": [
                ""
            ],
            "js": [
                "lib\/browser-polyfill.min.js",
                "config.js",
                "check.js"
            ]
        }
    ],
    "web_accessible_resources": [
        "vuln_report_page.html"
    ]
}

相關的擴展

Check for .git directory existence
Check for .git directory existence
Scripter debugger extension
Scripter debugger extension
PERS - The Passive Expired Resource Scanner
PERS - The Passive Expired Resource Scanner
GitHub submodule links
GitHub submodule links
Git Mining
Git Mining
captureCalls
captureCalls
DOM-JSON Tree Matcher
DOM-JSON Tree Matcher
Investigate with Lacework
Investigate with Lacework
PhishBlock
PhishBlock
Plugin Vulnerabilities
Plugin Vulnerabilities
No Opener, No Phishers
No Opener, No Phishers
Privacy Crawler
Privacy Crawler