Save to Google DriveSecurity Analysis

Extension intercepts network traffic and sends data externally — potential man-in-the-middle behavior.

Extension has access to all sites and captures keyboard input — behavior consistent with a keylogger.

Uses eval() to execute dynamic code, a common technique for obfuscation and code injection.

Dynamically creates script elements, potentially loading external malicious code.

Injects and executes scripts in web pages programmatically.

Listens for keyboard events, a common technique used by keyloggers.

Uses eval() to execute dynamic code — a common vector for code injection.

Extension tracks open tabs and communicates with external servers — potential browsing surveillance.

Uses XMLHttpRequest to make network calls.

Modifies window.location to redirect the user, potentially to phishing or malicious pages.

Decodes base64 data, commonly used to hide malicious payloads.

Sends messages via Chrome runtime, could communicate with external services.

Line exceeds 5000 characters (entropy: 4.392169732183673)

This extension does not define a Content Security Policy. A CSP helps prevent XSS and code injection attacks.

Sets innerHTML directly, which can lead to XSS if used with untrusted data.

Creates a Web Worker, which runs code in a separate thread — can be used for background computation or crypto mining.

js/uploadpagebootstrap.js