PRISM Firefox

PRISM

PRISM - Advanced browser-based secret scanner that reveals invisible security risks. Refracting the web to find hidden secrets.

Features & Capabilities

PRISM is a lightweight browser extension designed for security engineers and bug bounty hunters. It performs passive scanning on web pages to detect exposed secrets (API keys, tokens, credentials) and sensitive information in client-side code. PRISM is a lightweight browser extension designed for security engineers and bug bounty hunters. It performs passive scanning on web pages to detect exposed secrets (API keys, tokens, credentials) and sensitive information in client-side code.

🔍 KEY FEATURES:

  • Passive Scanning: Automatically scans HTML, inline scripts, and external JS/CSS files
  • Real-Time Alerts: Badge counter on icon + in-page notification for high-severity findings
  • 60+ Built-in Regex Patterns: AWS, Google, Stripe, Slack, Firebase, and more
  • Customizable Rules: Add, edit, or disable detection patterns
  • Privacy First: All scanning happens locally - no data sent to external servers
  • Domain Exclusions: Skip scanning on specific domains with regex patterns
  • Scan History: Local history with auto-expiration settings

🎯 DETECTION CATEGORIES: AWS Access Keys, Google API Keys, Stripe API Keys, Slack Tokens, Firebase URLs, GitHub Tokens, RSA/PGP Private Keys, Bearer/Basic Auth Tokens, Sentry DSN, Discord Bot Tokens, and many more.

⚠️ DISCLAIMER: This tool is intended for security research and educational purposes. Always ensure you have proper authorization before scanning websites you don't own.

Source Code: https://github.com/furkanumut/prism 🔍 KEY FEATURES:

  • Passive Scanning: Automatically scans HTML, inline scripts, and external JS/CSS files
  • Real-Time Alerts: Badge counter on icon + in-page notification for high-severity findings
  • 60+ Built-in Regex Patterns: AWS, Google, Stripe, Slack, Firebase, and more
  • Customizable Rules: Add, edit, or disable detection patterns
  • Privacy First: All scanning happens locally - no data sent to external servers
  • Domain Exclusions: Skip scanning on specific domains with regex patterns
  • Scan History: Local history with auto-expiration settings

🎯 DETECTION CATEGORIES: AWS Access Keys, Google API Keys, Stripe API Keys, Slack Tokens, Firebase URLs, GitHub Tokens, RSA/PGP Private Keys, Bearer/Basic Auth Tokens, Sentry DSN, Discord Bot Tokens, and many more.

⚠️ DISCLAIMER: This tool is intended for security research and educational purposes. Always ensure you have proper authorization before scanning websites you don't own.

Source Code: https://github.com/furkanumut/prism

User Growth & Download Statistics

Manifest V3 Add-on
By:
furkanumut
Daily users:
2 -2
Version:
1.0.0 Last updated: 2026-02-03
Version code:
6137598
Creation date:
2026-02-01
Risk:
Moderate risk impact Moderate risk likelihood
Permissions:
Host permissions:
  • *://*/*
Size:
1.67MB
URLs:
Website
Full description:
See detailed description
Source:
Firefox Add-ons Store
Data ingested on:
2026-07-14
Compare stats and ranking:

Contact the developer

Chrome-Stats does not own this Firefox add-on. Please use these information below to contact the Firefox add-on developer.
Developed by:
furkanumut
Firefox Add-ons Store
https://addons.mozilla.org/firefox/addon/prism-secret-scanner/
Website:
https://github.com/furkanumut/prism

Is PRISM Safe?

Risk impact
Risk impact measures the level of extra permissions an extension has access to. A low risk impact extension cannot do much harms, whereas a high risk impact extension can do a lot of damage like stealing your password, bypassing your security settings, and accessing your personal data. High risk impact extensions are not necessarily malicious. However, if they do turn malicious, they can be very harmful.

PRISM requires a few sensitive permissions. Exercise caution before installing.

Risk impact analysis details
  • Critical Allows access to all websites, posing a significant security risk as it can monitor and modify data from any visited site.
  • Medium ******* ******* ************* ***** *** ** ******* *** **** ******* ****** ******** *******
Risk likelihood
Risk likelihood measures the probability that a Firefox add-on may turn malicious. This is determined by the publisher and the Firefox add-on reputation on Firefox Add-ons Store, the amount of time the Firefox add-on has been around, and other signals about the Firefox add-on. Our algorithms are not perfect, and are subject to change as we discover new ways to detect malicious extensions. We recommend that you always exercise caution when installing a Firefox add-on.

PRISM is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.

Risk likelihood analysis details
  • High This extension has low user count. Unpopular extensions may not be stable or safe.
  • Medium **** ********* *** ***** ** *** **** * ******* *** ********** *** *** ** ****** ** *****
  • Low **** ********* *** ******* **** **** * ****** **** ***** ******** *** **** ****** ** ** ****** *** *****
Extension Guard
Extension Guard

Discover every extension in use, analyze risks, and enforce blocking policies with Extension Guard

Secure Your Browser
Upgrade to see full risk analysis details

Best PRISM Alternatives

Here are some Firefox add-ons that are similar to PRISM: