Pengaya Peramban Firefox
  • Ekstensi
  • Tema
    • untuk Firefox
    • Kamus & Paket Bahasa
    • Situs Peramban Lainnya
    • Pengaya untuk Android
Masuk
Pratinjau dari No Homo Graphs

No Homo Graphs oleh em_te

No Homo Graphs is a browser add-on that identifies websites which are spelled similar to a user-defined list of domains. Using modal dialogs, No Homo Graphs prompts you to be careful when you visit those websites to avoid being a victim of phishing.

5 (2 reviews)5 (2 reviews)
40 Users40 Users
Anda memerlukan Firefox untuk menggunakan ekstensi ini
Unduh Firefox dan dapatkan ekstensinya
Unduh berkas

Metadata Ekstensi

Tangkapan Layar
When visiting a website which is spelled similar to a custom list of websites, you will be prompted. (Thumbnail)When visiting a website which is spelled similar to a custom list of websites, you will be prompted.When visiting a website which is spelled similar to a custom list of websites, you can click on the shield icon to see more info.Clicking on the toolbar icon allows you to customize the protected list of websites.
Tentang ekstensi ini
About this Add-on
Using computer algorithms, No Homo Graph checks in real-time to see if websites you visit are spelled similar to a user-defined list of domains. If similar matches (a.k.a. homo-graphs) are found, a modal dialog is shown preventing you from interacting with the website until you indicate awareness of the risks involved. The modal dialog is modal to the website only and doesn't prevent you from switching tabs or replacing it with another website altogether. The user-defined list of domains is populated with popular domains like PayPal, Western Union, Google, Yahoo, MyEtherWallet and MoneyGram and the user is free to add and remove from the list.

For example, it will catch things like "paypaᶘ.com" if you have "paypal.com in your list.

How No Homo Graph Works
When you visit a website, this add-on parses the second-level and third-level domain from the URL and calculates the difference between them and the domains in your user-defined list. If the domains are puny-code encoded, they will be converted to Unicode. If the domains contain Cyrillic characters that look like Ascii characters, they will be converted into Ascii. If the difference is below a threshold (2 permutations if the domain is less than 7 characters excluding the TLD), it will alert the user that a match was found.

What are the Limitations?
This add-on is not fool-proof. An attacker can simply make more changes to the domain until it is different enough. But then it becomes easier to spot with the naked eye.

How is my Information Stored?
All info is stored locally on your computer.

What are Homo-Graph Attacks?
See these links:
https://slashdot.org/story/02/05/28/0142248/spoofing-urls-with-unicode
https://dev.to/loganmeetsworld/homographs-attack--5a1p

Example attacks:
https://xn--80aa0cbo65f.com (fake paypal.com)
https://www.xn--80ak6aa92e.com (fake apple.com)
http://www.xn--o1aae.com (fake cnn.com)
Rated 5 by 2 reviewers
Masuk untuk menilai ekstensi ini
Belum ada peringkat

Peringkat bintang tersimpan

5
2
4
0
3
0
2
0
1
0
Baca semua 2 ulasan
Permissions and dataPelajari lebih lanjut

Required permissions:

  • Mengakses aktivitas peramban selama navigasi
  • Mengakses data Anda pada semua situs
Informasi lebih lanjut
Tautan Pengaya
  • Situs dukungan
  • Surel Dukungan
Versi
0.2.5
Ukuran
34,22 KB
Terakhir dimutakhirkan
5 tahun yang lalu (19 Mar 2020)
Kategori Terkait
  • Keamanan dan Privasi
Lisensi
Lisensi MIT
Riwayat Versi
  • Lihat semua versi
Tambahkan ke koleksi
Laporkan pengaya ini
Catatan rilis untuk 0.2.5
Now normalizes non-ascii user input before saving them as domain names
Ekstensi lain dari em_te
  • Belum ada peringkat

  • Belum ada peringkat

  • Belum ada peringkat

  • Belum ada peringkat

  • Belum ada peringkat

  • Belum ada peringkat

Ke beranda Mozilla

Pengaya

  • Tentang
  • Blog Pengaya Firefox
  • Lokakarya Ekstensi
  • Pusat Pengembang
  • Kebijakan Pengembang
  • Blog Komunitas
  • Forum
  • Laporkan kutu
  • Panduan Ulasan

Peramban

  • Desktop
  • Mobile
  • Enterprise

Produk

  • Browsers
  • VPN
  • Relay
  • Monitor
  • Pocket
  • Bluesky (@firefox.com)
  • Instagram (Firefox)
  • YouTube (firefoxchannel)
  • Privasi
  • Kuki
  • Legal

Terkecuali saat dicatat berbeda, konten dalam situs ini dilisensikan di bawah Creative Commons Attribution Share-Alike License v3.0 atau versi lain yang lebih baru.