- Dec 12, 2016
- 1,585
seems like it uses web pulse( you can verify by seeing every link and script etc inside the page being sent to https://ent-shasta-rrs.symantec.com/webpulse/* by a GET request ) and to modify defaults to add more categories or set threat by changing (category_ids), (threat_level)
the defaults are basically using only catagory based detection and set to malware , pishing only and they used these defaults to have the lowest amount of false positives possible on their end
but if anyone has time to modify the extension i would recommend setting threat_level to between 10-8
here you can read about risk threat Categories Are Useful, But It Is Time For Risk Levels and here is a whitepaper about the tech used in webpulse https://docs.broadcom.com/doc/webpulse-en
the defaults are basically using only catagory based detection and set to malware , pishing only and they used these defaults to have the lowest amount of false positives possible on their end
but if anyone has time to modify the extension i would recommend setting threat_level to between 10-8
here you can read about risk threat Categories Are Useful, But It Is Time For Risk Levels and here is a whitepaper about the tech used in webpulse https://docs.broadcom.com/doc/webpulse-en