Go back

(WIP) Evaluating Firefox Extensions

Edit page

Table of contents

Open Table of contents

Easy Screenshot 3.109

Starting off by looking at Easy Screenshot, there are several folders, but our interest is on understanding the function of the script.js files.

manifest.json has some helpful info about the makeup of the manifest.json file.

└── πŸ“easyscreenshot-3.109
    └── πŸ“_locales
    └── πŸ“background
        └── πŸ“audio
        β”œβ”€β”€ page.html
        β”œβ”€β”€ script.js
    └── πŸ“common
        β”œβ”€β”€ script.js
        β”œβ”€β”€ style.css
    └── πŸ“content
        β”œβ”€β”€ script.js
    └── πŸ“editor
        └── πŸ“img
        β”œβ”€β”€ page.html
        β”œβ”€β”€ script.js
        β”œβ”€β”€ style.css
    └── πŸ“icons
    └── πŸ“META-INF
    └── πŸ“popup
        β”œβ”€β”€ page.html
        β”œβ”€β”€ script.js
        β”œβ”€β”€ style.css
    └── manifest.json
FileDescriptionImage
common/script.jsruns the crop overlay
content/script.jsdecides whether to start the crop overlay depending on the user choice
background/script.jshandles opening of different pages and manages download and errorsselection
popup/script.js
editor/script.jsdefines the editor that comes up when the screenshot is takenselection

Based on my examination, there is no indication of malicious intent or a C2 server as I might have expected to see if this program was intented to cause harm. The main cause for concern is that it can β€œAccess your data for all web sites”, and it could well be sending that data elsewhere, but I found no indication that it was doing this.

Browsec VPN

└── πŸ“browsec-3.92.7
    └── πŸ“_locales
    └── πŸ“fonts
    └── πŸ“images
        └── πŸ“android_app
            β”œβ”€β”€ phone.jpg
        └── πŸ“congratulations
            └── πŸ“chrome
            └── πŸ“others
        └── πŸ“favorites
        └── πŸ“flags
        └── πŸ“help
        └── πŸ“icons
        └── πŸ“menu
        └── πŸ“pings
        └── πŸ“popup-help
        └── πŸ“promos
        └── πŸ“smart_settings
        └── πŸ“unblock_proxy
        β”œβ”€β”€ exclamationPointIcon.ts
        β”œβ”€β”€ index.ts
        β”œβ”€β”€ popupCloseIcon.ts
    └── πŸ“META-INF
    └── πŸ“pages
        └── πŸ“congratulations
            β”œβ”€β”€ congratulations.html
            β”œβ”€β”€ congratulations.js
        └── πŸ“diagnostics
            β”œβ”€β”€ diagnostics.html
            β”œβ”€β”€ diagnostics.js
        └── πŸ“firefoxAgreeConditions
            β”œβ”€β”€ firefoxAgreeConditions.html
            β”œβ”€β”€ firefoxAgreeConditions.js
        └── πŸ“help
            β”œβ”€β”€ help.html
            β”œβ”€β”€ help.js
    └── πŸ“popup
        └── πŸ“styles
            β”œβ”€β”€ popup.css
        β”œβ”€β”€ popup.html
        β”œβ”€β”€ popup.js
    └── πŸ“styles
    β”œβ”€β”€ background.js
    β”œβ”€β”€ background.ts.LICENSE.txt
    β”œβ”€β”€ browsecSiteContentScript.js
    β”œβ”€β”€ common.js
    β”œβ”€β”€ lodash.js
    β”œβ”€β”€ manifest.json
    β”œβ”€β”€ notification.js
    β”œβ”€β”€ polyfills.js
    β”œβ”€β”€ promoPageExecutor.js
    β”œβ”€β”€ promoPageExecutor.ts.LICENSE.txt
    └── timezoneChange.js

The .ts files are just more CSS.

Adblock Plus

Edit page
Share this post on:
Share this post via WhatsAppShare this post on FacebookShare this post on XShare this post via TelegramShare this post on PinterestShare this post via email
Previous Post
Goalfish - a simple writing tracker app
Next Post
(WIP) A Level Computer Science Coursework