展示HN:恶意扩展监测器:已移除的Chrome/Edge扩展数据库
我注意到没有一个经过维护和验证的恶意Chrome/Edge扩展程序列表,只有高误报率的行为扫描器。因此,我建立了一个这样的列表。这个数据库仅包括具有明确删除信号的扩展程序:官方商店的删除或导致采取行动的研究人员报告。没有行为上的猜测。
<p>实时仪表板(每日更新):<a href="https://malext.toborrm.com" rel="nofollow">https://malext.toborrm.com</a></p>
<p>GitHub + 数据库:<a href="https://github.com/toborrm9/malicious_extension_sentry" rel="nofollow">https://github.com/toborrm9/malicious_extension_sentry</a></p>
<p>浏览器扩展:<a href="https://chromewebstore.google.com/detail/malext-sentry/bpohikihiogjgmebpnbgnloipjaddibe" rel="nofollow">https://chromewebstore.google.com/detail/malext-sentry/bpohi...</a></p>
查看原文
I noticed there wasn't a maintained, verified list of malicious Chrome/Edge extensions, only behavioral scanners with high false positive rates.
So I built one.
The database only includes extensions with clear removal signals: official store removals or researcher reports that led to action. No behavioral guesswork.<p>Live dashboard (daily updates): <a href="https://malext.toborrm.com" rel="nofollow">https://malext.toborrm.com</a><p>GitHub + database: <a href="https://github.com/toborrm9/malicious_extension_sentry" rel="nofollow">https://github.com/toborrm9/malicious_extension_sentry</a><p>Browser extension: <a href="https://chromewebstore.google.com/detail/malext-sentry/bpohikihiogjgmebpnbgnloipjaddibe" rel="nofollow">https://chromewebstore.google.com/detail/malext-sentry/bpohi...</a>