diff options
-rw-r--r-- | PEOPLE.md | 2 | ||||
-rw-r--r-- | addon_firefox/ismitmlink.xpi | bin | 0 -> 12163 bytes | |||
-rw-r--r-- | addon_firefox/ismitmlink/README.md | 14 | ||||
-rw-r--r-- | addon_firefox/ismitmlink/bg.js | 2 | ||||
-rw-r--r-- | addon_firefox/ismitmlink/cs.js | 2 | ||||
-rw-r--r-- | addon_firefox/ismitmlink/manifest.json | 7 | ||||
-rw-r--r-- | addon_firefox/ureject.xpi | bin | 0 -> 10680 bytes | |||
-rw-r--r-- | addon_firefox/whyrejectme/README.md | 10 | ||||
-rw-r--r-- | cloudflare_users/cloudflare_supporter.txt | 16 | ||||
-rw-r--r-- | image/addon_ismitmlink.jpg | bin | 0 -> 245567 bytes |
10 files changed, 46 insertions, 7 deletions
@@ -203,6 +203,8 @@ Disqualify: ###### Twitter (aka "Birdsite") +"Cloudflare are quite the hypocrites when it comes to transparency and free speech. If you say anything they don't like about their lack of enforcement of their own policies, they ban or block you." by @[phyzonloop](https://twitter.com/phyzonloop/status/1133355175056424960) + "I cannot access the website, it just keeps saying there is an error between Cloudflare and origin web server timed out" by @[RBNTWRK](https://twitter.com/RBNTWRK/status/1132293336478507009) "Ever since web server admins happily signed up for cloudflare, over 70% of all HTTPS traffic is effectively MITM'ed as far as the browser user is concerned." by @[modrobert](https://twitter.com/modrobert/status/1132193371949273095) diff --git a/addon_firefox/ismitmlink.xpi b/addon_firefox/ismitmlink.xpi Binary files differnew file mode 100644 index 00000000..8916f4cd --- /dev/null +++ b/addon_firefox/ismitmlink.xpi diff --git a/addon_firefox/ismitmlink/README.md b/addon_firefox/ismitmlink/README.md index a85762d8..2ea9d244 100644 --- a/addon_firefox/ismitmlink/README.md +++ b/addon_firefox/ismitmlink/README.md @@ -2,4 +2,16 @@ This is a source code of Maslin Bossé's "*Are links vulnerable to MITM?*". PRs are welcome. -AMO: https://addons.mozilla.org/en-US/firefox/addon/are-links-vulnerable-to-mitm/
\ No newline at end of file + +![](../../image/addon_ismitmlink.jpg) + + +``` +You've searched something on the internet. +Are these links vulnerable to MITM attack or not? + +This add-on is using Searxes' "MITM test API" to scan FQDN(URL's hostname). +This add-on never send other information. +``` + +[Download add-on](../ismitmlink.xpi)
\ No newline at end of file diff --git a/addon_firefox/ismitmlink/bg.js b/addon_firefox/ismitmlink/bg.js index f8258147..3486ff3c 100644 --- a/addon_firefox/ismitmlink/bg.js +++ b/addon_firefox/ismitmlink/bg.js @@ -1,7 +1,7 @@ let apiurl = 'https://searxes.eu.org/collab/open/ismitm.php'; let TORapiurl = 'http://searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion/collab/open/ismitm.php'; -fetch('http://searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion/collab/open/ok', { +fetch('http://xxf4en4djo7hhvatax2g3lvj2qgvbwi4yeyyzwpo25zcog4ewhsbrdyd.onion/ok.php', { method: 'GET', mode: 'cors' }).then(r => r.text()).then(r => { diff --git a/addon_firefox/ismitmlink/cs.js b/addon_firefox/ismitmlink/cs.js index 29679564..33468e18 100644 --- a/addon_firefox/ismitmlink/cs.js +++ b/addon_firefox/ismitmlink/cs.js @@ -1,4 +1,4 @@ -if (document.body && !['searxes.danwin1210.me', 'searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion', 'searxes.eu.org'].includes(location.hostname)) { +if (document.body && !['searxes.nmqnkngye4ct7bgss4bmv5ca3wpa55yugvxen5kz2bbq67lwy6ps54yd.onion', 'searxes.eu.org', 'searxes.danwin1210.me'].includes(location.hostname)) { let cs = (function () { let s = document.createElement('style'); document.head.appendChild(s); diff --git a/addon_firefox/ismitmlink/manifest.json b/addon_firefox/ismitmlink/manifest.json index 62a995ee..2c528fb4 100644 --- a/addon_firefox/ismitmlink/manifest.json +++ b/addon_firefox/ismitmlink/manifest.json @@ -2,7 +2,7 @@ "manifest_version": 2, "name": "Are links vulnerable to MITM attack?", "description": "Scan FQDN using Searxes' API", - "version": "1.0.6", + "version": "1.0.7", "homepage_url": "https://notabug.org/crimeflare/cloudflare-tor", "author": "Maslin Bossé", "permissions": [ @@ -31,8 +31,9 @@ ], "applications": { "gecko": { - "id": "ismitm@searxes.danwin1210.me", - "strict_min_version": "56.0" + "id": "ismitmlink@searxes.danwin1210.me", + "strict_min_version": "56.0", + "update_url":"https://searxes.eu.org/collab/addon/au.php?for=ismitmlink" } } }
\ No newline at end of file diff --git a/addon_firefox/ureject.xpi b/addon_firefox/ureject.xpi Binary files differnew file mode 100644 index 00000000..32185a0c --- /dev/null +++ b/addon_firefox/ureject.xpi diff --git a/addon_firefox/whyrejectme/README.md b/addon_firefox/whyrejectme/README.md index 0a920967..36651f84 100644 --- a/addon_firefox/whyrejectme/README.md +++ b/addon_firefox/whyrejectme/README.md @@ -2,4 +2,12 @@ This is a source code of "*Which website rejected me?*" add-on. PRs are welcome. -[Download add-on](https://searxes.eu.org/collab/addon/?for=ureject)
\ No newline at end of file +``` +Which website rejected me? + +1. Your website reject me. +2. This add-on will log the FQDN, URL, Status code and current time. +3. You can review it from Option menu. +``` + +[Download add-on](../ureject.xpi)
\ No newline at end of file diff --git a/cloudflare_users/cloudflare_supporter.txt b/cloudflare_users/cloudflare_supporter.txt index 8665e2bf..b7067b00 100644 --- a/cloudflare_users/cloudflare_supporter.txt +++ b/cloudflare_users/cloudflare_supporter.txt @@ -28,6 +28,7 @@ https://twitter.com/404news https://twitter.com/4rontender https://twitter.com/4xvids https://twitter.com/5yuim +https://twitter.com/65akon https://twitter.com/7tUZSkViHg8qejF https://twitter.com/855ITLogix https://twitter.com/89CALLS @@ -214,6 +215,7 @@ https://twitter.com/Buraanthi https://twitter.com/C0d3r_ https://twitter.com/CEBackes https://twitter.com/CGI_Group +https://twitter.com/CGMP_Designer https://twitter.com/CNote_Currency https://twitter.com/COtilia121 https://twitter.com/CakeparkMC @@ -291,6 +293,7 @@ https://twitter.com/D_Atkin https://twitter.com/DaRedUmbrella https://twitter.com/DadSavage42 https://twitter.com/Daily39629305 +https://twitter.com/Dani28548011 https://twitter.com/DanielCore11 https://twitter.com/DanielGabrielN https://twitter.com/DanielSilvers20 @@ -750,6 +753,7 @@ https://twitter.com/MahdiAustian https://twitter.com/MaheshDevkota5 https://twitter.com/MakersGate https://twitter.com/Makke375 +https://twitter.com/MakunguMwape https://twitter.com/MalcolmMellon https://twitter.com/Mallox https://twitter.com/Mangaloreonline @@ -1067,6 +1071,7 @@ https://twitter.com/Rvleon12 https://twitter.com/RyanTow59751771 https://twitter.com/RykonX https://twitter.com/Rynge +https://twitter.com/S1Lynk https://twitter.com/S1R000 https://twitter.com/S1lent_tech https://twitter.com/S29vS79qTgI3fBX @@ -1114,6 +1119,7 @@ https://twitter.com/ScottB_TD https://twitter.com/ScottShaw75 https://twitter.com/ScriptedPixels https://twitter.com/SeanHsiLee +https://twitter.com/Sec_Static https://twitter.com/SecretDiary3_6 https://twitter.com/SecunderabadChr https://twitter.com/SellbourneAu @@ -1176,6 +1182,7 @@ https://twitter.com/StaffBot_ https://twitter.com/StealingCrook https://twitter.com/Stemfund https://twitter.com/StephenDavis24 +https://twitter.com/SteveBliz https://twitter.com/SteveGunnink https://twitter.com/StevenBridleTx https://twitter.com/StevieP @@ -1657,6 +1664,7 @@ https://twitter.com/cal2go https://twitter.com/campingoutwest https://twitter.com/camsclever https://twitter.com/canercan84 +https://twitter.com/capobecchino https://twitter.com/captainprivate https://twitter.com/carlitosiranchi https://twitter.com/carlosesverde @@ -1770,6 +1778,7 @@ https://twitter.com/dariusz_w https://twitter.com/darkbelg https://twitter.com/dars94 https://twitter.com/darthmesh +https://twitter.com/davidckng https://twitter.com/davideriksson https://twitter.com/davidersso https://twitter.com/davidhellmann @@ -1896,6 +1905,7 @@ https://twitter.com/elfrianbanar https://twitter.com/eliphas https://twitter.com/eloso_design https://twitter.com/eltiotechrd +https://twitter.com/eluttner https://twitter.com/emadabdalhameed https://twitter.com/emadsblog https://twitter.com/emgggffg @@ -1955,6 +1965,7 @@ https://twitter.com/fe4YZfKjBsJgF9q https://twitter.com/fea0er https://twitter.com/fefe_jefe https://twitter.com/fei0316 +https://twitter.com/felipepiresx https://twitter.com/felsqualle https://twitter.com/ferdie_ https://twitter.com/ferualf @@ -1980,6 +1991,7 @@ https://twitter.com/fotografie_io https://twitter.com/fotovisions https://twitter.com/foxinfotech https://twitter.com/franciecorrigan +https://twitter.com/franciscordz https://twitter.com/francisrod01 https://twitter.com/frankfigueroard https://twitter.com/frankww @@ -2171,6 +2183,7 @@ https://twitter.com/iamkhaledzaky https://twitter.com/iamnoisebleed https://twitter.com/ian_winter https://twitter.com/ianphilpot +https://twitter.com/ibankkkkk https://twitter.com/ibnuhx https://twitter.com/ibo1UoAXHyymdFw https://twitter.com/ibrahim901 @@ -2287,6 +2300,7 @@ https://twitter.com/joe_kabuki https://twitter.com/johndvickers https://twitter.com/johnjoemorgan https://twitter.com/johnnyxbell +https://twitter.com/jojo21951 https://twitter.com/jond133 https://twitter.com/jonoble https://twitter.com/joomboost @@ -2316,6 +2330,7 @@ https://twitter.com/justinrharper https://twitter.com/jvalin_s https://twitter.com/jwhawkins6 https://twitter.com/jwilleke +https://twitter.com/jyotirmay_jp https://twitter.com/k_joudiani https://twitter.com/kabilansen https://twitter.com/kadrkn @@ -2799,6 +2814,7 @@ https://twitter.com/pltkmrbn https://twitter.com/pneumogeek https://twitter.com/pntaylor https://twitter.com/poeticperusal +https://twitter.com/poigXsHUjEnJJ0N https://twitter.com/pokono https://twitter.com/poltavets https://twitter.com/pombeiro diff --git a/image/addon_ismitmlink.jpg b/image/addon_ismitmlink.jpg Binary files differnew file mode 100644 index 00000000..70371923 --- /dev/null +++ b/image/addon_ismitmlink.jpg |