Необходим браузер Opera.
The goal of this project is to build an add-on for browser that passively audits the security posture of the websites that the user is visiting. Assume that the tool is to be used on non-malicious websites, currently not under attack or compromised. Add-on wants to report security misconfigurations, or failure to use best security practices.
- Add-on tries to analysis the commonly vulnerable setting of servers: lack of use of security-relevant headers, including:
* strict-transport-security
* x-xss-protection
* content-security-policy
* x-frame-options
* x-content-type-options
- It doesn't to interfere with the functioning of the visited website.
- It doesn't tamper with request parameters, or issue requests that were not initiated by the user (it is not active scanning).
- Incrementally generate a report in a separate window.
- Each report entry have a numeric score to indicate approximately its severity, as a way to prioritise further investigation by a human analyst [Common Vulnerability Scoring System](https://en.wikipedia.org/wiki/Common_Vulnerability_Scoring_System).
### Limitations
- Add-on only works on sites that allow content scripts.
- У этого расширения есть доступ к вашим данным на всех сайтах.
- У этого расширения есть доступ к вашим вкладкам и действиям в интернете.
Снимки
О расширении
- Загрузки
- 1 435
- Категория
- Безопасность и конфиденциальность
- Версия
- 1.5.0
- Размер
- 22,8 КБ
- Обновлено
- 14 апреля 2022 г.
- Лицензионное соглашение
- Страница поддержки
- https://www.mediamaster.eu/contatti/
Похожие
-
uBlock Origin
Наконец-то, быстрый и эффективный блокировщик для браузеров.
Оценка: Всего оценок: 5681
-
signTextLSF
This extension emulates Netscape's crypto.signText() using LSF.
Оценка: Всего оценок: 1
-
NoTrack - Block Redirection Tracking
Prevents redirect links from tracking you in popular search engines.
Оценка: Всего оценок: 10
-
LastPass
LastPass is an award-winning password manager for secure credential management on any device.
Оценка: Всего оценок: 281
-
Free Temporary Email Service
Create unlimited temp mail adresses to receive emails from any site without using your personal email we made this extension to avoid spam in your personal mailbox.
Оценка: Всего оценок: 1