LAN port scan forbidder
Item logo image for LAN port scan forbidder

LAN port scan forbidder

garywill.github.io
Item media 1 screenshot

Overview

Forbid non-LAN web to access LAN

Forbid untrusted web to scan localhost or LAN. ## Source Code Repo https://github.com/garywill/LAN-port-scan-forbidder ## What Webs can try to fetch `127.0.0.1:xxxx` or `192.168.Y.Z:xxxx` to scan your open ports in LAN. Although browsers have cross-domain protections, webs can't read response contents, **but** can still see the connection succeeds or fails. There're already reports that some websites using that as tracking fingerprint. > A web for testing: http://samy.pl/webscan/ ## So Forbid any website behaviors trying to connect to your LAN or localhost, if user is visiting the website via their domains or public IP addresses. (Read the source code `background.js` to see the logic) > Using JS library [whitequark/ipaddr.js](https://github.com/whitequark/ipaddr.js) (MIT License) v2.0.0 to judge IP range. ### Notification User can enable notification. When untrusted web tries to access private network and get blocked, will show up notification. ### Fallback operation If user find a web broken, user can temporary set this addon disabled via toolbar button for: - this one tab - this one tab and new tabs opened by this tab - this one window (Firefox only) - globally (above can be set as keyboard shortcuts) there's showy toolbar button badge indicating disabling status. ## Cases when web LAN scan is properly used Not all LAN-port-scan are evil. - Some manufacturers provide web for user's browser to scan LAN for their product that need updating. - Some softwares use `127.0.0.1` communication to interact between native program and web. ## Disclaimer This open souce addon comes with no warranty. Use on you own risk!

0 out of 5No ratings

Google doesn't verify reviews. Learn more about results and reviews.

Details

  • Version
    0.6.2
  • Updated
    March 23, 2024
  • Size
    37.49KiB
  • Languages
    English
  • Developer
    Website
    Email
    garywill@gmx.com
  • Non-trader
    This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data. To learn more, see the developer’s privacy policy.

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

Related

OWASP Penetration Testing Kit

4.9(43)

OWASP Penetration Testing Kit

Vulners Web Scanner

4.6(20)

Tiny vulnerability scanner based on vulners.com vulnerability database. Passively scan websites while you surf internet!

Anti Rebind

0.0(0)

Prevent DNS Rebinding Attacks

Server Status

4.8(10)

Server Status

Admin tools

5.0(1)

Whois, Port checker, Reverse IP

Scripter debugger extension

5.0(2)

This extension debugs the scripter blocks and load proccess

Port Checker Tool

5.0(1)

Is a free online tool to find open ports in your system. You can also test whether port forwarding is working or not.

Plugin Vulnerabilities

5.0(1)

Adds warning message to WordPress Plugin Directory pages when plugins are from developer we have released security advisories for.

Show All IP

3.5(2)

Show all your IP addresses. What is my ip address? List local, public and IPv6 addresses. Works without internet by using WebRTC.

Input hidden Monitor

0.0(0)

Monitoring of Hidden inputs

Ping Blocker

3.0(2)

Prevents sites from tracking you by blocking the PING request!

Auto Referer

0.0(0)

Control referer to protect privacy and not break web

OWASP Penetration Testing Kit

4.9(43)

OWASP Penetration Testing Kit

Vulners Web Scanner

4.6(20)

Tiny vulnerability scanner based on vulners.com vulnerability database. Passively scan websites while you surf internet!

Anti Rebind

0.0(0)

Prevent DNS Rebinding Attacks

Server Status

4.8(10)

Server Status

Admin tools

5.0(1)

Whois, Port checker, Reverse IP

Scripter debugger extension

5.0(2)

This extension debugs the scripter blocks and load proccess

Port Checker Tool

5.0(1)

Is a free online tool to find open ports in your system. You can also test whether port forwarding is working or not.

Plugin Vulnerabilities

5.0(1)

Adds warning message to WordPress Plugin Directory pages when plugins are from developer we have released security advisories for.

Google apps