Firefox Browser Add-ons
  • Extensions
  • Themes
    • for Firefox
    • Dictionaries & Language Packs
    • Other Browser Sites
    • Add-ons for Android
Log in
Preview of Web Security Audit

Web Security Audit by Francesco De Stefano

Passively audits the security posture on current page

5 (5 reviews)5 (5 reviews)
65 Users65 Users
You'll need Firefox to use this extension
Download Firefox and get the extension
Download file

Extension Metadata

Screenshots
About this extension
The goal of this project is to build an add-on for browser that passively audits the security posture of the websites that the user is visiting. Assume that the tool is to be used on non-malicious websites, currently not under attack or compromised. Add-on wants to report security misconfigurations, or failure to use best security practices.

- Add-on tries to analysis the commonly vulnerable setting of servers: lack of use of security-relevant headers, including:
- strict-transport-security
- x-xss-protection
- content-security-policy
- x-frame-options
- x-content-type-options

- It doesn't to interfere with the functioning of the visited website.
- It doesn't tamper with request parameters, or issue requests that were not initiated by the user (it is not active scanning).
- Incrementally generate a report in a separate window.
- Each report entry have a numeric score to indicate approximately its severity, as a way to prioritise further investigation by a human analyst [Common Vulnerability Scoring System](https://en.wikipedia.org/wiki/Common_Vulnerability_Scoring_System).

### Limitations
- Add-on only works on sites that allow content scripts.
Rated 5 by 5 reviewers
Log in to rate this extension
There are no ratings yet

Star rating saved

5
5
4
0
3
0
2
0
1
0
Read all 5 reviews
Permissions and dataLearn more

Required permissions:

  • Access your data for all web sites
More information
Add-on Links
  • Support site
  • Support Email
Version
1.0
Size
24.75 kB
Last updated
6 years ago (13 Feb 2020)
Related Categories
  • Privacy & Security
Licence
Mozilla Public Licence 2.0
Version History
  • See all versions
Add to collection
Report this add-on
Support this developer

The developer of this extension asks that you help support its continued development by making a small contribution.

Contribute now

More extensions by Francesco De Stefano
  • There are no ratings yet

  • There are no ratings yet

  • There are no ratings yet

  • There are no ratings yet

  • There are no ratings yet

  • There are no ratings yet

Go to Mozilla's homepage

Add-ons

  • About
  • Firefox Add-ons Blog
  • Extension Workshop
  • Developer Hub
  • Developer Policies
  • Community Blog
  • Forum
  • Report a bug
  • Review Guide

Browsers

  • Desktop
  • Mobile
  • Enterprise

Products

  • Browsers
  • VPN
  • Relay
  • Monitor
  • Pocket
  • Bluesky (@firefox.com)
  • Instagram (Firefox)
  • YouTube (firefoxchannel)
  • Privacy
  • Cookies
  • Legal

Except where otherwise noted, content on this site is licensed under the Creative Commons Attribution Share-Alike Licence v3.0 or any later version.