需要使用 Opera 浏览器。
The goal of this project is to build an add-on for browser that passively audits the security posture of the websites that the user is visiting. Assume that the tool is to be used on non-malicious websites, currently not under attack or compromised. Add-on wants to report security misconfigurations, or failure to use best security practices.
- Add-on tries to analysis the commonly vulnerable setting of servers: lack of use of security-relevant headers, including:
* strict-transport-security
* x-xss-protection
* content-security-policy
* x-frame-options
* x-content-type-options
- It doesn't to interfere with the functioning of the visited website.
- It doesn't tamper with request parameters, or issue requests that were not initiated by the user (it is not active scanning).
- Incrementally generate a report in a separate window.
- Each report entry have a numeric score to indicate approximately its severity, as a way to prioritise further investigation by a human analyst [Common Vulnerability Scoring System](https://en.wikipedia.org/wiki/Common_Vulnerability_Scoring_System).
### Limitations
- Add-on only works on sites that allow content scripts.
- 此扩展可访问您在所有网站上的数据。
- 此扩展可访问您的标签和浏览活动。
屏幕截图
关于此扩展
- 下载次数
- 1279
- 类别
- 隐私与安全
- 版本
- 1.5.0
- 大小
- 22.8 KB
- Last update
- April 14, 2022
- 许可证
- 在线支持
- https://www.mediamaster.eu/contatti/
相关
-
uBlock Origin
一款高效的网络请求过滤工具,占用极低的内存和 CPU。
评分: 总评分次数: 5640
-
File Guard (Encryptor | Decryptor)
Encrypt or decrypt any file with just one click inside your browser!
评分: 总评分次数: 1
-
LastPass
LastPass is an award-winning password manager for secure credential management on any device.
评分: 总评分次数: 3249
-
WebAPI Blocker
Easily block (nullify) undesired Web API(s) and improve your privacy.
评分: 总评分次数: 0
-
Mooltipass Extension
Retrieve and store Mooltipass credentials easily from websites
评分: 总评分次数: 2