Browser Extension Analysis Framework - Scan, Analyze Chrome, firefox and Brave extensions for vulnerabilities and intels
GPL-3.0 License
Installing ExtAnalysis is simple! It runs on python3, so make sure python3
and python3-pip
are installed and follow these steps:
git clone https://github.com/Tuhinshubhra/ExtAnalysis
cd ExtAnalysis
pip3 install -r requirements.txt
For proper analysis don't forget to add your virustotal api.
Once the installation is done you can jump straight ahead and run ExtAnalysis by running the command:
$ python3 extanalysis.py
It should automatically launch ExtAnalysis in a new browser window.
For other options check out the help menu $ python3 extanalysis.py --help
usage: extanalysis.py [-h HOST] [-p PORT] [-v] [-u] [-q] [--help]
optional arguments:
-h HOST, --host HOST Host to run ExtAnalysis on. Default host is 127.0.0.1
-p PORT, --port PORT Port to run ExtAnalysis on. Default port is 13337
-v, --version Shows version and quits
-u, --update Checks for update
-q, --quiet Quiet mode shows only errors on cli!
--help Shows this help menu and exits
Use the following link
docker build -t extanalysis .
docker run --rm -it -p 13337:13337 extanalysis -h 0.0.0.0
docker compose build
docker compose up
## Or just:
docker compose up --build
## To run only for one-time use
docker-compose run --rm --build -it -p 13337:13337 extanalysis -h 0.0.0.0
## To run in the background
docker compose up -d
flask
for the webserverpython-whois
for Whois lookupmaxminddb
for parsing the Geo-IP databaserequests
for http headers and source code viewerYou can contribute to the development of ExtAnalysis by improving some code or even reporting by bugs.
For any other queries feel free to contact me via twitter: @r3dhax0r
Below is a list of people who contributed to the development of ExtAnalysis (only pull requests!)
WebBreacher
ExtAnalysis is licensed under GNU General Public License v3.0. Attribution to all the third-party libraries used can be found in the CREDITS file.