PERS - The Passive Expired Resource Scanner
thehackerblog.com
(1 人评分) |91 位用户 | 来自
商店
|

概述
翻译

A Chrome extension which detects expired domains in webpage resources (such as external images, CSS, and JavaScript) while you browse. Once detected it alerts you to the details and offers multiple ways to verify that the domain is expired. These vulnerabilities often allow for hijacking of the vulnerable webpage. Useful for penetration testers and auditors who wish to automatically identify these vulnerabilities passively while they browse. Reason for various permissions requested by extension: * webRequest: Required to hook the onErrorOcurred function in Chrome to detect when a resource load has resulted in a network error occurring (e.g. "net::ERR_NAME_NOT_RESOLVED"). * webRequestBlocking: Required to block and add headers for certain domain availability querying APIs (e.g. add Origin header). * : Required because we have to be able to detect failed network loads for resources from any domain/URL.

来自商店的评价 (0)

尚无人评价此扩展,查看 所有语言

留言

支持浏览器

适用于以下浏览器

其他信息

文件类型
crx
版本
0.0.2 已同步至最新
更新日期
2016年10月8日 6年前
大小
695KiB
语言
查看全部1种支持的语言
权限
所属类别
开发者