Hot Take extensions can help a lot against phishing

Add-on/Extension Page
https://chromewebstore.google.com/detail/symantec-browser-protecti/hielpjjagjimpgppnopiibaefhfpbpfn
https://chromewebstore.google.com/detail/trafficlight/cfnpidifppmenkapgihekkeednfoenal
https://chromewebstore.google.com/detail/microsoft-defender-browse/bkbeeeffjjeopflfhgeknacdieedcoml
https://chromewebstore.google.com/detail/harmony-web-protection-ad/deakbjemijlmlcehdgejmdpekkceodmk
Vitali Ortzi

Vitali Ortzi

Level 26
Thread author
Verified
Top Poster
Well-known
Dec 12, 2016
1,596


showcasing how extensions can add a lot of added detection against phishing with all pishing links in the video detected by category blocking as the only link not detected was a false positive at 6:55 (there is zero phishing tech in checkpoint extension that wasn't showcased as everything was blocked purely by category blocking )

note checkpoint and symantec have been configured and aren't in default config (changes are mainly added categories )



extensions used in the test :
checkpoint Serious Discussion - [Extension]Checkpoint harmony web protection
symantec Symantec Browser Protection - Chrome Web Store
trafficlight TrafficLight - Chrome Web Store
microsoft Microsoft Defender Browser Protection - Chrome Web Store

feeds used for the test :

aa419 - Fake Sites Database

Artists Against 419 Database: A visual answer to 419
db.aa419.org db.aa419.org




performance related data (symantec isnt popular enough to get tested by debug bear lookup and only an older version of checkpoint extension was tested by debug bear )
www.debugbear.com

Chrome Extension Performance Lookup

Look up how the top 5000 Chrome extensions affect page load performance.
www.debugbear.com www.debugbear.com
Screenshot 2024-12-23 074047.pngtrafficlight.pngwebsecure (older vesrion of checkpoint) .png

idle usage (symantec , checkpoint services running with zero cpu usage and around 30mb+ ram each )
idle.png
possible configs
[ page loading metric used is subjective and based on my personal experience with checkpoint set to background mode in URL filtering so pages load first and then checked ]

for max detection use all extensions above (slower page loading :( )
for balanced use Symantec , Microsoft and checkpoint (slightly slower to somewhat slower and recommended by me )
for fast page loading and low false postives use checkpoint and Microsoft (shouldn't feel a difference)
for low ram option use trafficlight and Microsoft (slightly slower page loading )
for low ram and fast page loading as well as low false positives use Microsoft only (shouldn't feel a difference)



anyone doing a similar test please use aa419 - Fake Sites Database and some new pishing links as its easy to get good detection against openpish free feed , other some free feeds
 
Last edited:
  • +Reputation
  • Like
  • Applause
Reactions: Game Of Thrones, Jonny Quest, silversurfer and 2 others
Bot

Bot

AI-powered Bot
Apr 21, 2016
4,521
Thanks for sharing this informative video and the list of extensions used in the test. It's impressive to see how these tools can help in detecting phishing links. The performance data link is also a useful resource for understanding the impact of these extensions on browser performance. It's crucial to balance security with usability.
 
Vitali Ortzi

Vitali Ortzi

Level 26
Thread author
Verified
Top Poster
Well-known
Dec 12, 2016
1,596
Bot said:
Thanks for sharing this informative video and the list of extensions used in the test. It's impressive to see how these tools can help in detecting phishing links. The performance data link is also a useful resource for understanding the impact of these extensions on browser performance. It's crucial to balance security with usability.
Click to expand...
some popular extensions people usually recommend can have worse experience then even a combination of extensions as they will slow browsing too much avastpng.pngmalware.png



Avast alone will slow browsing more then all extensions together (max config )and Malwarebytes although better does slow browsing way too much
 
Bot

Bot

AI-powered Bot
Apr 21, 2016
4,521
Vitali Ortzi said:
some popular extensions people usually recommend can have worse experience then even a combination of extensions as they will slow browsing too much View attachment 286761View attachment 286762



Avast alone will slow browsing more then all extensions together and Malwarebytes although better does slow browsing way too much
Click to expand...
That's a good point. While Avast and Malwarebytes are popular, they can indeed slow down browsing significantly. It's always important to consider the performance impact when choosing security extensions. Thanks for your insight!
 
Vitali Ortzi

Vitali Ortzi

Level 26
Thread author
Verified
Top Poster
Well-known
Dec 12, 2016
1,596
Bot said:
That's a good point. While Avast and Malwarebytes are popular, they can indeed slow down browsing significantly. It's always important to consider the performance impact when choosing security extensions. Thanks for your insight!
Click to expand...
in terms of security they are all trusted high valued security vendors that have standards other extensions devs lack and they have bug bounty programs if any if you find any issues with them you can check the source code as its open source further move mv3 has done significant changes in terms of securing extensions so although the attack surface has increased you get higher detection of real world attacks
 
Bot

Bot

AI-powered Bot
Apr 21, 2016
4,521
Vitali Ortzi said:
in terms of security they are all trusted high valued security vendors that have standards other extensions devs lack and they have bug bounty programs if any if you find any issues with them you can check the source code as its open source further move mv3 has done significant changes in terms of securing extensions so although the attack surface has increased you get higher detection of real world attacks
Click to expand...
Absolutely, the trustworthiness and transparency of the extension developers is crucial. Open source code, adherence to high security standards, and bug bounty programs all contribute to the reliability and safety of these extensions. The move to Manifest V3 indeed brings significant security improvements. Thanks for highlighting these points!
 

Similar threads

Vitali Ortzi
    • Like
    • +Reputation
Serious Discussion [Extension]Checkpoint harmony web protection
Replies
22
Views
1,756
Web Extensions
zkSnark
zkSnark
JoeN
    • Like
New Update AdLock MV3 Chrome extension
Replies
1
Views
137
Web Extensions
Bot
Bot
Gandalf_The_Grey
    • Like
New Update Microsoft launches a new browser extension performance detector for Edge (Canary 130 release)
Replies
0
Views
280
Microsoft Edge
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top