Protect Against Log4j Exploits
Extension stats
- <all_urls>
- webRequest
- webRequestBlocking
Other platforms
Extension summary
Browser extension to prevent Log4J exploits via WebSocket against services running on private network and localhost. This extension will disable connections over WebSocket to localhost and private IP addresses unless the initiator is also localhost or a private IP. This should harden your browser against drive-by websites, phishing landing pages, malicious HTML attachments and malicious ads that seek to use your browser as a beachhead for launching Log4J exploits against your company's internal web applications.
License: GPLv3 Source: https://github.com/paladincyber/log4jprotector
Extension safety
Risk impact
Paladin Log4j Immunizer requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.
Risk impact analysis details
- Critical Allows access to all websites, posing a significant security risk as it can monitor and modify data from any visited site.
- Critical ****** ****** ** ******* ***** ***** *** ** **** ** ***** **** ******** ****** *** ******** ********** * ******* ********
- Low ******* ****** ** *** ********* ********
Risk likelihood
We don't have sufficient data to confidently determine the risk likelihood of Paladin Log4j Immunizer. Use it at your own risk.
Risk likelihood analysis details
- High This extension has low user count. Unpopular extensions may not be stable or safe.
- Low **** ********* *** ******* **** **** * ****** **** ***** ******** *** **** ****** ** ** ****** *** *****
- Low **** ********* *** ***** **** **** * ****** **** ***** ********** *** **** ****** ** ** ****** *** *****
- Good **** ********* ********* ** * ******* ********* ** ****** *** *****
Similar extensions
Here are some Chrome extensions that are similar to Paladin Log4j Immunizer: