JS Vulnerability Detector
Item logo image for JS Vulnerability Detector

JS Vulnerability Detector

Featured
5.0(

1 rating

)
Item media 1 screenshot
Item media 2 screenshot

Overview

JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information…

JavaSript Vulnerability Detector is a result of my Master Thesis at Brno University of Technology, Faculty of Information technology, graduation year 2022. The extension aims to add security features to the end-users of various websites containing vulnerable JavaScript library code. The principle of extension is following: 1. After page loads the extension scans all the JavaScript contained on the page and sends it to background script for processing. 2. If the script contains a known vulnerability (initial version focuses mostly on jQuery), it is tracked and shown in the extension popup. After detection the vulnerable script can be blocked, patched or left as is and only tracked. All data is stored locally and can be cleared by a "Clear" button in the extension popup. There is no server communication going on, no data leaves the browser. Extension runs in 4 modes: 1. disabled - no action 2. analyze - standard analysis only mode - no patching or blocking of vulnerable scripts 3. bloc - vulnerable scripts are removed from website 4. repair - experimental, vulnerable scripts are patched if possible Currently it can detect vulnerable versions of jQuery (all up to 3.5.0) and repair them by updating them in runtime to 3.5.0 and couple more (around 30, including some of lodash, remarkjs, axios, handlebars and other vulnerabilities). Source codes are open, available at https://github.com/xrandy00/mt_2022

5 out of 51 rating

Google doesn't verify reviews. Learn more about results and reviews.

Review's profile picture

Michael OlefsonDec 24, 2023

GOOD

Details

  • Version
    1.0.0
  • Updated
    December 12, 2022
  • Offered by
    randysekvojta
  • Size
    459KiB
  • Languages
    English
  • Developer
    Email
    randysekvojta@seznam.cz
  • Non-trader
    This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

JS Vulnerability Detector has disclosed the following information regarding the collection and usage of your data.

JS Vulnerability Detector handles the following:

Web history

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

For help with questions, suggestions, or problems, visit the developer's support site

Related

h4ck3r

5.0(1)

All in one Red Team Developer Tool Kit

retire.js

4.9(8)

Scanning website for vulnerable js libraries

XSS

5.0(6)

Web Development tool

Bishop Vulnerability Scanner

3.8(12)

Search websites for git repos, exposed config files, and more as you browse.

Vulners Web Scanner

4.6(20)

Tiny vulnerability scanner based on vulners.com vulnerability database. Passively scan websites while you surf internet!

Alpha Checker

5.0(1)

A security scanner that scans the domain and server for vulnerabilities.

OWASP Penetration Testing Kit

4.9(43)

OWASP Penetration Testing Kit

Hack-Tools

4.7(23)

The all in one Red team extension for web pentester

Netlas.io

4.0(1)

The Netlas.io plugin gives you info about where the website is hosted, who owns the IP and what other services and ports are open.

Lyra

0.0(0)

Lyra is a XSS automater and broken link checker.

WPSecurity - WordPress Vulnerability Scanner

5.0(1)

WordPress Vulnerability Scanner - Scan for vulnerabilities, version, themes, plugins and much more!

Opener Detector

5.0(1)

Checks for window.opener vulnerabilities as you browse.

h4ck3r

5.0(1)

All in one Red Team Developer Tool Kit

retire.js

4.9(8)

Scanning website for vulnerable js libraries

XSS

5.0(6)

Web Development tool

Bishop Vulnerability Scanner

3.8(12)

Search websites for git repos, exposed config files, and more as you browse.

Vulners Web Scanner

4.6(20)

Tiny vulnerability scanner based on vulners.com vulnerability database. Passively scan websites while you surf internet!

Alpha Checker

5.0(1)

A security scanner that scans the domain and server for vulnerabilities.

OWASP Penetration Testing Kit

4.9(43)

OWASP Penetration Testing Kit

Hack-Tools

4.7(23)

The all in one Red team extension for web pentester

Google apps