PERS - The Passive Expired Resource Scanner
用户量:59大小:695KiB版本:v 0.0.2更新时间:2021-12-21
A passive scanning tool for finding expired domain vulnerabilites while you browse.
PERS - The Passive Expired Resource Scanner 的使用方法详解,最全面的教程
PERS - The Passive Expired Resource Scanner 描述:
用户数:59
分类:开发者工具插件
扩展大小:695 KiB
最后更新时间:2021-12-21
版本:v 0.0.2
PERS - The Passive Expired Resource Scanner 插件简介:
这是来自Chrome商店的 PERS - The Passive Expired Resource Scanner 浏览器插件,您可以在当前页面下载它的最新版本安装文件,并安装在Chrome、Edge等浏览器上。
PERS - The Passive Expired Resource Scanner插件下载方法/流程:
点击下载按钮,关注“扩展迷Extfans”公众号并获取验证码,在网页弹窗中输入验证码,即可下载最新安装文件。
PERS - The Passive Expired Resource Scanner插件安装教程/方法:
(1)将扩展迷上下载的安装包文件(.zip)解压为文件夹,其中类型为“crx”的文件就是接下来需要用到的安装文件
(2) 从设置->更多工具->扩展程序 打开扩展程序页面,或者地址栏输入 Chrome://extensions/ 按下回车打开扩展程序页面
(3) 打开扩展程序页面的“开发者模式”
(4) 将crx文件拖拽到扩展程序页面,
完成安装如有其它安装问题,
请扫描网站底部二维码与客服联系如有疑问请参考:
https://www.extfans.com/installation/A Chrome extension which detects expired domains in webpage resources (such as external images, CSS, and JavaScript) while you browse. Once detected it alerts you to the details and offers multiple ways to verify that the domain is expired. These vulnerabilities often allow for hijacking of the vulnerable webpage.
Useful for penetration testers and auditors who wish to automatically identify these vulnerabilities passively while they browse.
Reason for various permissions requested by extension:
* webRequest: Required to hook the onErrorOcurred function in Chrome to detect when a resource load has resulted in a network error occurring (e.g. "net::ERR_NAME_NOT_RESOLVED").
* webRequestBlocking: Required to block and add headers for certain domain availability querying APIs (e.g. add Origin header).
* : Required because we have to be able to detect failed network loads for resources from any domain/URL.
