Tag: Chrome extension
-
The Browser Trap: KongTuke’s “CrashFix” Extension Turns Chrome into a Backdoor
Adversaries affiliated with the KongTuke threat collective have inaugurated a sophisticated malicious lineage dubbed CrashFix, specifically engineered to compromise Google Chrome users. According to findings from Huntress, the incursion commences with the procurement of a fraudulent extension titled NexShield, which surreptitiously masquerades as the esteemed advertisement filter uBlock Origin Lite. Its presence within the official…
-
Exposing the Invisible: Inspect Web Security with the Scrapfly Anti-bot Detector
Scrapfly Anti-bot Detector is a Manifest V3 Chrome extension that helps security researchers, web developers, and bot detection enthusiasts identify and analyze: CAPTCHAs: reCAPTCHA, hCaptcha, FunCaptcha, GeeTest, Cloudflare Turnstile Anti-bot systems: Cloudflare, Akamai, DataDome, PerimeterX, Shape Security, AWS WAF, Imperva, Kasada, and more Fingerprinting techniques: Canvas, WebGL, Audio, Font, WebRTC, Performance, Navigator, Storage, and other…
-
RedExt: New Red Team Tool Uses Chrome Extension for Covert Browser Data Exfiltration
RedExt is a sophisticated browser data analysis framework designed for authorized red team operations. It combines a Manifest V3 Chrome extension with a Flask-based C2 server to provide comprehensive browser data collection and analysis capabilities through a modern dark-themed dashboard. Features Cookie Extraction Domain-specific filtering Automatic cookie organization by domain Captures all cookie attributes Supports…
-
Danger: “Verified” Chrome VPN Extension Exposed as Screen-Capturing Spyware
The popular Chrome extension FreeVPN.One, installed by more than 100,000 users and marked with a verification check, has been exposed as spyware. Researchers from Koi Security discovered that it secretly captures screenshots of user activity and transmits them to a remote server along with detailed records of visited websites. Despite its reputation as a “secure”…
-
FrogPost: postMessage Security Testing Tool
FrogPost is a powerful Chrome extension for testing and analyzing the security of postMessage communications between iframes. It helps developers and security professionals identify vulnerabilities in message-handling implementations. Key Features Live monitor of cross-origin postMessage traffic Automatic detection and analysis of message handlers Static and runtime analysis for DOM-based vulnerabilities Identification of missing origin checks and unsafe sinks Targeted…
-
XnlReveal: Chrome browser extension to show alerts for relfected query params, show hidden elements
XnlReveal This is a Chrome Extension that can do the following: Show an alert for any query parameters that are reflected. Show the Wayback Archive endpoints for the path visited Show any hidden elements on the page. Enable any disabled elements on the page. The first point was inspired by a comment by @renniepak on Episode 42 of the Critical…
-
ParaSiteSnatcher: Malicious Chrome Extension Targets Latin American Users
Trend Micro has uncovered a malicious Chrome extension named ParaSiteSnatcher, primarily targeting users in Latin America, specifically in Brazil. This extension empowers malefactors to track, manipulate, and purloin sensitive information from various sources, encompassing financial data and banking account details. It is noted that beyond Google Chrome, the extension can function in other Chromium-based browsers, including…