Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Suggestion #1

Open
PowerPress opened this issue Sep 24, 2018 · 2 comments
Open

Suggestion #1

PowerPress opened this issue Sep 24, 2018 · 2 comments

Comments

@PowerPress
Copy link

This is a very cool idea. Would love to see this work with logged in sites such as ProtonMail. That way you can confirm the encryption routines have not being changed to store your data in plain text via the javascript.
@RayofLightz
Copy link
Owner

Thanks. It might be able to work if you would comment out the subdomain/domain check. I could potentially add an option for the command line tool to also scan JS on your domain. The only issue is that it will take a lot more time to scan the JS files to see if they are including any extra JS. I wrote this because of Mage Cart. The idea is that a company can scan the third party JS and checksum it. Then use Zabbix or Nagios to create triggers if the checksum would change.

@PowerPress
Copy link
Author

The checksum should be fine as it is. Just want to be able to run this and know if the checksum has changed for protonmail website when logging in and using the site. The command line option would be very nice anyway to get it to integrate with firefox?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@PowerPress @RayofLightz