momosecurity / findsomething Goto Github PK
View Code? Open in Web Editor NEW基于chrome、firefox插件的被动式信息泄漏检测工具
License: GNU General Public License v3.0
基于chrome、firefox插件的被动式信息泄漏检测工具
License: GNU General Public License v3.0
会使用广告过滤软件,软件会给每个站点加上js
AdGuard Popup Blocker.user.js
里面包含大量的url信息。导致阅读不方便
能否增加一个js名称白名单,麻烦了
油耗高啊,所有url跑两次
1·、浏览器自己跑一次
2、插件自己在跑一次
3、匹配出来的内容 建议 去重
4、建议增加input value 是表达式、xml、json等形态的进行批评,便于后期表达式、xml、js等注入攻击
function findsomething(url){
$.ajax({
url: url,
type: 'get',
dataType: 'text',
})
开启扩展的情况下,无法正常登录AWS
Console 提示信息:
Synchronous XMLHttpRequest on the main thread is deprecated because of its detrimental effects to the end user's experience. For more help, check https://xhr.spec.whatwg.org/.
解决方法,修改 content.js,将ajax改为异步请求 :
$.ajax({
url: url,
type: 'get',
dataType: 'text',
})
在域名白名单中添加IP后未生效
这个插件的Webhook有什么用,配置了发不出消息
白名单可以将第三方通用库地址排除吗?
我试了,貌似不管用,
想添加一些自己常用的规则,比如account password username之类的
开启插件后,宝塔面板无法登录
账号密码都正确,但是始终显示账号密码错误
版本:2.0.17
更换过浏览器,edge,Chrome问题依旧
对了,如果能在发现aksk时,同步出哪家的,就更好了
这个站是灯塔arl发现的,WebInfoHunter功能规则 :https://github.com/TophantTechnology/ARL/blob/master/app/dicts/wih_rules.yml
站点:aHR0cHM6Ly95am0ueXVueHlhLmNvbQ==
如题,firefox 93版本无法安装附件
报该附加组件无法安装,因为它似乎已损坏。
百度解决方法是关闭设置中xpinstall.signatures.required双击将其值设为false,但是还是提示损坏- -
I want to express my sincere gratitude to all of you for creating this incredible extension. I truly appreciate it because I forked it and made the effort to adapt it to the Arabic language. I hope you don't mind the modification. Thank you once again for your contribution.
我发现每次在使用时都需要多一个步骤,或是手动拼接再批量打开,或是复制进burp直接爆破,等等
如果可以,希望可以有一个功能是导出绝对路径
测试网址:http://219.142.83.35/survey/
FindSomething
jsfinder
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.