YetAnotherBrowserExtension

Automatically scan websites for exposed API keys, tokens, secrets, and security misconfigurations.

YetAnotherBrowserExtension is a browser extension that automatically detects exposed secrets, credentials, and common security vulnerabilities in web content. It scans pages in real time, identifying over 40 types of secrets such as AWS keys, GitHub tokens, private keys, and more. The extension also detects exposed sensitive files, misconfigured cloud storage buckets, API documentation endpoints, GraphQL introspection, and common backend error messages to help you identify risks before they lead to breaches. All scanning is performed locally within your browser, ensuring that no data is sent to external servers, thus preserving your privacy. The extension features smart filtering to reduce false positives, visual indicators with badge counters for quick risk assessment, and customizable settings including scanning toggles and domain exclusion lists.