diff options
Diffstat (limited to 'addon_firefox')
| -rw-r--r-- | addon_firefox/ismitmlink/LICENSE.txt | 26 | ||||
| -rw-r--r-- | addon_firefox/ismitmlink/README.md | 18 | ||||
| -rw-r--r-- | addon_firefox/ismitmlink/bg.js | 111 | ||||
| -rw-r--r-- | addon_firefox/ismitmlink/cs.js | 41 | ||||
| -rw-r--r-- | addon_firefox/ismitmlink/manifest.json | 39 |
5 files changed, 0 insertions, 235 deletions
diff --git a/addon_firefox/ismitmlink/LICENSE.txt b/addon_firefox/ismitmlink/LICENSE.txt deleted file mode 100644 index 0de377de..00000000 --- a/addon_firefox/ismitmlink/LICENSE.txt +++ /dev/null @@ -1,26 +0,0 @@ -* License - -The MIT License - -Copyright (c) 2019 Maslin Bossé - -Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal -in the Software without restriction, including without limitation the rights -to use, copy, modify, merge, publish, distribute, sublicense, and/or sell -copies of the Software, and to permit persons to whom the Software is -furnished to do so, subject to the following conditions: - -The above copyright notice and this permission notice shall be included in all -copies or substantial portions of the Software. - -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR -IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, -FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE -AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER -LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, -OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE -SOFTWARE. - - -* Icon file (icons/32.png) by Patricia Clausnitzer <pc.de> diff --git a/addon_firefox/ismitmlink/README.md b/addon_firefox/ismitmlink/README.md deleted file mode 100644 index f071f5f7..00000000 --- a/addon_firefox/ismitmlink/README.md +++ /dev/null @@ -1,18 +0,0 @@ -This is a source code of Maslin Bossé's "*Are links vulnerable to MITM?*". - -PRs are welcome. - - - - - - -``` -You've searched something on the internet. -Are these links or images vulnerable to MITM attack or not? - -This add-on is using Searxes' "MITM test API" to scan FQDN(URL's hostname). -This add-on never send other information. -``` - -[Download add-on](https://api.searxes.eu.org/_/addon.php?dl=dl&for=ismitmlink) *Firefox 60+*
\ No newline at end of file diff --git a/addon_firefox/ismitmlink/bg.js b/addon_firefox/ismitmlink/bg.js deleted file mode 100644 index a8e8ddff..00000000 --- a/addon_firefox/ismitmlink/bg.js +++ /dev/null @@ -1,111 +0,0 @@ -let apiurl = 'https://api.searxes.eu.org/_/ismitm.php'; -fetch('http://api.xxf4en4djo7hhvatax2g3lvj2qgvbwi4yeyyzwpo25zcog4ewhsbrdyd.onion/_/ok.php', { - method: 'GET', - mode: 'cors' -}).then(r => r.text()).then(r => { - if (r == 'ok') { - apiurl = 'http://api.xxf4en4djo7hhvatax2g3lvj2qgvbwi4yeyyzwpo25zcog4ewhsbrdyd.onion/_/ismitm.php'; - } -}).catch(() => {}); - -function is_infected(f) { - return new Promise((g, b) => { - fetch(apiurl, { - method: 'POST', - mode: 'cors', - headers: { - 'Content-Type': 'application/x-www-form-urlencoded' - }, - body: 'f=' + f - }).then(r => r.json()).then(r => { - if (r[0]) { - g(r[1]); - } else { - b(); - } - }).catch(b); - }); -} - -function i_already_know_you(f) { - if (!/^([a-z0-9_.-]{1,255})\.([a-z]{2,80})$/.test(f)) { - return false; - } - return new Promise((g, b) => { - browser.storage.local.get(f).then((ff) => { - if (ff[f]) { - if (ff[f] == 'y') { - g(1); - } else { - g(-1); - } - } else { - g(0); - } - }, () => { - g(0); - }); - }); -} - -function clear_cache_1w() { - browser.storage.local.clear(); - browser.storage.local.set({ - 'lastU': Math.round((new Date()).getTime() / 1000) - }); - browser.storage.local.set({ - 'lastV': (browser.runtime.getManifest()).version - }); - setTimeout(function () { - clear_cache_1w(); - }, 604800000); -} - -browser.storage.local.get(['lastU', 'lastV']).then(g => { - if (g.lastU) { - if (Math.abs(Math.round((new Date()).getTime() / 1000) - g.lastU) > 604800) { - browser.storage.local.clear(); - browser.storage.local.set({ - 'lastU': Math.round((new Date()).getTime() / 1000) - }); - } - } else { - browser.storage.local.set({ - 'lastU': Math.round((new Date()).getTime() / 1000) - }); - } - let nowVer = (browser.runtime.getManifest()).version; - if (g.lastV != nowVer) { - console.log('Updated', nowVer); - browser.storage.local.clear(); - browser.storage.local.set({ - 'lastU': Math.round((new Date()).getTime() / 1000) - }); - browser.storage.local.set({ - 'lastV': nowVer - }); - } - setTimeout(function () { - clear_cache_1w(); - }, 604800000); -}); - -browser.runtime.onMessage.addListener((request, sender, sendResponse) => { - if (request && sender) { - i_already_know_you(request).then((r) => { - if (r == 1 || r == -1) { - browser.tabs.sendMessage(sender.tab.id, [request, ((r == 1) ? true : false)]); - } - if (r == 0) { - is_infected(request).then((a) => { - browser.storage.local.set({ - [request]: ((a) ? 'y' : 'n') - }); - browser.tabs.sendMessage(sender.tab.id, [request, a]); - }, () => { - browser.tabs.sendMessage(sender.tab.id, [request, false]); - }); - } - }, () => {}); - } -});
\ No newline at end of file diff --git a/addon_firefox/ismitmlink/cs.js b/addon_firefox/ismitmlink/cs.js deleted file mode 100644 index ae4aeae8..00000000 --- a/addon_firefox/ismitmlink/cs.js +++ /dev/null @@ -1,41 +0,0 @@ -if (document.body && !['searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion', 'searxes.eu.org', 'api.searxes.eu.org'].includes(location.hostname)) { - let cs = (function () { - let s = document.createElement('style'); - document.head.appendChild(s); - return s.sheet; - })(); - if (cs) { - cs.insertRule("a[data-mitm=y]{cursor:not-allowed !important;text-decoration-line:line-through !important;text-decoration-color:red !important;text-decoration-style:double !important}", 0); - cs.insertRule("a[data-mitm=y]::before{content:'[\\26A0]';font-weight:bold !important;color:red !important;display:inline-block !important}", 1); - cs.insertRule("a[data-mitm=y]:hover::before{content:'[\\26A1]'}", 2); - cs.insertRule("a[data-mitm=y]:hover{color:red !important}", 3); - cs.insertRule("img[data-mitm=y]{cursor:not-allowed !important;border:2px red dotted !important}", 4); - cs.insertRule("img[data-mitm=y]:hover{filter:sepia(20%)}", 5); - } - - let asked = ['', 'searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion', 'searxes.eu.org', 'api.searxes.eu.org', 'addons.mozilla.org', 'addons.thunderbird.net', 'web.archive.org']; - document.querySelectorAll('a[href]:not([data-mitm]),img[src]:not([data-mitm])').forEach(a => { - let aF = (a.tagName == 'A' ? (new URL(a.href)).hostname : (new URL(a.src)).hostname) || ''; - if (!/^(.*)\.(danwin1210\.me|onion|i2p|invalid|test|local|localhost|([0-9]{1,3})|bbs|chan|cyb|dyn|geek|gopher|indy|libre|neo|null|o|oss|oz|parody|pirate|bit|lib|coin|emc|bazar|fur)$/.test(aF) && !asked.includes(aF)) { - asked.push(aF); - browser.runtime.sendMessage(aF); - } - }); - - browser.runtime.onMessage.addListener((request, sender, sendResponse) => { - if (request.length == 2) { - document.querySelectorAll('a[href]:not([data-mitm]),img[src]:not([data-mitm])').forEach(a => { - let aF = (a.tagName == 'A' ? (new URL(a.href)).hostname : (new URL(a.src)).hostname) || ''; - if (aF == request[0]) { - if (request[1]) { - a.dataset.mitm = 'y'; - a.title = 'MITM!'; - } else { - a.dataset.mitm = 'n'; - } - } - }); - } - sendResponse(null); - }); -}
\ No newline at end of file diff --git a/addon_firefox/ismitmlink/manifest.json b/addon_firefox/ismitmlink/manifest.json deleted file mode 100644 index b1a1a8e6..00000000 --- a/addon_firefox/ismitmlink/manifest.json +++ /dev/null @@ -1,39 +0,0 @@ -{ - "manifest_version": 2, - "name": "Are links vulnerable to MITM attack?", - "description": "Scan FQDN using Searxes' API", - "version": "1.0.12", - "homepage_url": "https://codeberg.org/crimeflare/cloudflare-tor", - "author": "Maslin Bossé", - "permissions": [ - "storage", - "unlimitedStorage" - ], - "icons": { - "32": "icons/32.png" - }, - "background": { - "scripts": [ - "bg.js" - ] - }, - "content_scripts": [ - { - "matches": [ - "http://*/*", - "https://*/*" - ], - "js": [ - "cs.js" - ], - "run_at": "document_end" - } - ], - "applications": { - "gecko": { - "id": "ismitmlink@searxes.danwin1210.me", - "strict_min_version": "60.0", - "update_url":"https://api.searxes.eu.org/_/addon.php?for=ismitmlink" - } - } -}
\ No newline at end of file |