Spectroscope

Search for endpoints potentially vulnerable to Spectre.

什麼是Spectroscope?

Spectroscope是由Lukas Weichselbaum開發的Chrome擴展程式,該擴展的主要功能是“Search for endpoints potentially vulnerable to Spectre.”。

擴展截圖

screenshot
screenshot
screenshot
screenshot
screenshot

下載Spectroscope擴展crx文件

下載Spectroscope擴展crx格式的文件,手動將Chrome擴充功能安裝到瀏覽器中,也可以將crx文件分享給朋友,輕鬆安裝Chrome擴充功能。

擴展使用說明

                        Spectroscope is a prototype extension for security engineers and web developers to help track down application resources which aren't protected from being embedded by other websites. Such resources can, in some cases, be exfiltrated by malicious sites making use of CPU-level information leaks on users' devices, such as the Spectre vulnerability.

The tool identifies resources which are exempt from default protections enabled in Google Chrome (Cross-Origin Read Blocking, SameSite cookies) and which can be embedded cross-site. The results are added to Chrome's DevTools "Spectroscope" panel and include security recommendations to help protect your resources from Spectre and other cross-site attacks.

Note: This is a prototype extension which is meant to be used only as a convenience tool to help you protect your site; it is not an official Google product. Testing your site with Spectroscope is not a substitute for careful deployment of recommended web security features. See https://w3c.github.io/webappsec-post-spectre-webdev/ for a complete list of best practices.

Authors (alphabetically): Roberto Clapis, Santiago Diaz, Aleksandr Dobkin, David Dworken, Artur Janc, Aaron Shim, Lukas Weichselbaum                    

擴展基本資訊

名稱 Spectroscope Spectroscope
ID idppnaadbabknjeaifkegolcciafchpp
官方網址 https://chromewebstore.google.com/detail/spectroscope/idppnaadbabknjeaifkegolcciafchpp
簡介 Search for endpoints potentially vulnerable to Spectre.
檔案大小 5.5 MB
安裝次數 232
目前版本 0.1.0
更新時間 2021-08-19
上架時間 2021-03-07
評分 5.00/5 共 2 次評分
開發者 Lukas Weichselbaum
電子郵箱 [email protected]
付費類型 free
支援的語言 en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "name": "Spectroscope",
    "version": "0.1.0",
    "description": "Search for endpoints potentially vulnerable to Spectre.",
    "icons": {
        "128": "icon128.png"
    },
    "manifest_version": 2,
    "devtools_page": "devtools.html",
    "permissions": [
        "cookies",
        "http:\/\/*\/*",
        "https:\/\/*\/*",
        "storage"
    ],
    "background": {
        "persistent": false,
        "scripts": [
            "background.js"
        ]
    }
}