Hot Take [Updated 29/12/2018] Browser extension comparison: Malwares and Phishings

Evjl's Rain

Level 47
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Comparison between browser extensions

Test 29/12
Q&A - [Updated 29/12/2018] Browser extension comparison: Malwares and Phishings


Test 24/11
Q&A - [Updated 24/11/2018] Browser extension comparison: Malwares and Phishings


Test 12/11
Q&A - [Updated 12/11/2018] Browser extension comparison: Malwares and Phishings


Test 7/11
Q&A - [Updated 7/11/2018] Browser extension comparison: Malwares and Phishings


Test 6/9
Q&A - [Updated 3/9/2018] Browser extension comparison: Malwares and Phishings


Test 3/9
Q&A - [Updated 3/9/2018] Browser extension comparison: Malwares and Phishings


Test 2/9
Q&A - [Updated 25/7/2018] Browser extension comparison: Malwares and Phishings


Test, quick 1/9
Q&A - [Updated 25/7/2018] Browser extension comparison: Malwares and Phishings


Fun test 25/7/2018
Q&A - [Updated 24/7/2018] Browser extension comparison: Malwares and Phishings


Updated 24/7/2018 (most comprehensive, as possible)
Q&A - [Updated 24/7/2018] Browser extension comparison: Malwares and Phishings


Updated 19/7/2018
Q&A - [Updated 10/7/2018] Browser extension comparison: Malwares and Phishings


Updated 18/7/2018
Q&A - [Updated 10/7/2018] Browser extension comparison: Malwares and Phishings


Updated 10/7/2018
Q&A - [Updated 10/7/2018] Browser extension comparison: Malwares and Phishings


Updated 7/6/2018
Q&A - [Updated 7/6/2018] Browser extension comparison: Malwares and Phishings


Updated 3/6/2018
Q&A - [Updated 3/6/18] Browser extension comparison: Malwares and Phishings


Updated 25/4/2018
Poll - [Updated 25/4/18] Browser extension comparison: Malwares and Phishings


Update: 23/3/2018
Poll - [Updated 23/3/18] Browser extension comparison: Malwares and Phishings



Browser: Google Chrome 65 x64
Malware and phishing links: 10 malc0de, 10 vxvault, 10 openphish, 10 verified phishtank, 10 unverified phishtank
Total: 50 links
Extensions: recently downloaded from Chrome Web Store
- Google Safe Browsing (built-in chrome's protection)
- AdGuard AdBlocker: default settings, uses Google Safe Browsing (delayed) and their own database
- Avira browser safety: default settings
- Norton Safe Web: default settings
- Bitdefender Trafficlight: default settings, it rarely blocks any malware links, just old ones
- Avast Online Security: default settings, only has phishing protection, expected to score 0 against malwares
- Netcraft Extension: default settings, only has phishing protection, expected to score 0 against malwares
- uBlock Origin with some additional filters

NOTE: the result can vary from day-to-day. Tomorrow with different links, the result can be very different. All are live links but they can be dead a few minutes after the test. No duplication

Results:
result.png


Winner: Google Safe Browsing
 
Last edited:

Moonhorse

Level 38
Verified
Top Poster
Content Creator
Well-known
May 29, 2018
2,728
What filters would people recommend for overall protection in security + privacy?

My chrome set up will be Nano & BTL, with Safe Browsing, & my Avast AV web filter, so multiple barriers for a potential attack to beat, happily. Clearly BTL has had an overhaul compared to before, so will happily use it, especially over the very powerful and false positive loving beta program that is MBAM, for nowww.

I am currently using all included Nano filters, & squidblacklist.
-I would remove bitdefender trafficlight, avast antivirus has stronger web filter by default.
+As avast is weak to phishing i would add netcraft (replacing bitdefender trafficlight)

+ personaly i would enable everything from nano settings and add these;
- squid blacklist (adtracker, malicious, facebook) blockists
- 1hosts

Above filters mentioned are already posted on this thread.

But your probably as fine with default filters nano has. Just enable fanboys enchanments to get rid of cookie warnings.
Also you may want to download nano defender to work as anti-adblock killer if you want to
 

Gandalf_The_Grey

Level 83
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,233
new test 12/11/2018
links, 1 duplicated link
Code:
104.168.7.43/childs.exe 
104.168.7.43/power.exe 
128.199.223.4/51MG/oamo/Smallbusiness 
159.65.172.17/1956MYCLGUS/PAYMENT/Personal 
1stniag.com/i8IGzz/SWIFT/PrivateBanking 
23.249.161.100/tonychunks/PO.exe 
altaredlife.com/954675G/com/US 
bahiacreativa.com/Oe03Kk 
c2.howielab.com/Home/Download/20181109040734/word_sample_20181109040734.doc/
canetafixa.com.br/3uo7M 
chang.be/sTb96Tu 
cine80.co.kr/wvw/8132AHNYO/SWIFT/Smallbusiness 
clubcoras.com/649BRQJNXK/SEP/Smallbusiness 
craniofacialhealth.com/fkwoBvLXu9/ 
custommedia-wp.nl/76EWKFESY/PAY/Personal 
duwon.net/wpp-app/zZIi80jKEg
hivicze.uk/Remittance_121118FI06_PDF.jar 
mirakgroup.co.uk/Remittance_Advice_121118_pdf.jar 
mwhite.ru/gMIk68B
nutrilatina.com.br/349A/biz/Business
oceanicproducts.eu/ndu/ndu.exe 
sfdgvr65.ga/hot-auto.zip 
sociallysavvyseo.com/PGEjLjV 
sustainablealliance.co.uk/wp-content/plugins/css-ready-selectors/build.exe
tangfuzi.com/En_us/Transactions-details/2018-11
www.davidjuliet.com/Past-Due-Invoices 
www.dropbox.com/s/tf3by8kzv3kb928/ScanDoc_0915_20181211TRKL.pdf.z?dl=1
www.mandala.mn/update/cab.exe 
www.xianjiaopi.com/41964H/PAY/US 
www.xianjiaopi.com/41964H/PAY/US/

ublock origin custom/requested filters
View attachment 201433

chrome 9/30
avira 15/30
Malwarebytes 24/30
WDBP 7/30
ublock 7/30 (energized 6, phishtank 1)
BDTL 22/30
Norton 7/30
comodo 1/30
McAfee WebAdvisor 0/30 => expected
Edge/IE 16/30

Kaspersky 25/30 => webfilter only, disabled realtime protection
Forticlient 24/30 => webfilter only, no AV module
Thank you for testing again, much appreciated (y)
I like the blocking of Malwarebytes, BDTL and WDBP. They react much faster / block before Kaspersky's webfilter can.
Unfortunately Malwarebytes slows the start of Google Chrome and WDBP blockes the least.
So while not really needed I added BDTL to my config. Just for it's fast blocking without using much resources.
 
D

Deleted member 178

True trueeee. I have been told. I'm not even sure why I'm going overboard, never cared about security or privacy much until I randomly came across this site and it made me go into extra secure mode:unsure: yeah it's probably more than enough then
Path many of us walked, and when you will reach a certain level of skills, you will laugh reading paranoid posts and will learn to master the "tactical facepalm" :p
 
  • Like
Reactions: simmerskool

Evjl's Rain

Level 47
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
What filters would people recommend for overall protection in security + privacy?

My chrome set up will be Nano & BTL, with Safe Browsing, & my Avast AV web filter, so multiple barriers for a potential attack to beat, happily. Clearly BTL has had an overhaul compared to before, so will happily use it, especially over the very powerful and false positive loving beta program that is MBAM, for nowww.

I am currently using all included Nano filters, & squidblacklist.
for your setup, I recommend you to keep avast and BDTL+WDBP because with these 2, I feel almost zero slowdown.
add vxvault filter to your ublock and you are good to go

for privacy, I recommend stevenblack + 1hosts lists with some other generic filters I will post below

here is mine list which IMO, effective unlike hphosts, which is huge but not as effective
Capture.PNG
 

silversurfer

Super Moderator
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,072
Path many of us walked, and when you will reach a certain level of skills, you will laugh reading paranoid posts and will learn to master the "tactical facepalm" :p
Average people (including me) aren't as smart as you experts here, but that's no reason to laugh about this people ;)
 

Gandalf_The_Grey

Level 83
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,233
Thank you for testing again, much appreciated (y)
I like the blocking of Malwarebytes, BDTL and WDBP. They react much faster / block before Kaspersky's webfilter can.
Unfortunately Malwarebytes slows the start of Google Chrome and WDBP blockes the least.
So while not really needed I added BDTL to my config. Just for it's fast blocking without using much resources.
But not for long. BDTL slowed down the loading of webpages today. Uninstalled. Now thinking about adding back Netcraft or WDBP, but not sure... :unsure:
 
D

Deleted member 178

Average people (including me) aren't as smart as you experts here, but that's no reason to laugh about this people ;)
I'm no expert, I'm just one that know a bit more than usual.

What I meant is:
- There is average people who don't know much but learn/correct/improve themselves when they acquire more knowledge, then do logic, simple and efficient setups..

- and the others, who believes they know or succumb to their paranoia or just want to show off by doing and recommending ridiculous setups stockpiling tons of apps/extensions hoping to thwart some imaginary threats they will never encounter. And yes i laugh at those.
 

Evjl's Rain

Level 47
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
I see that you among many others do not use some of the included filters, how do you determine which ones are unnecessary?
I use all included ones because im not sure which to use, & then 3/4 custom filters too as this seems logical to me, but then I'm not sure.
I opened a lot of websites, mostly in english, found on the internet with many ads and trackers. I used ublock's log to see which filters block the most
I observed 1hosts was the most effective > stevenblack > hphosts ~ notrack
these filters focus on tracking domains
in few occasions, hphosts blocked 1-2 trackers missed by the others but most of the time, 1hosts was the only one who blocked

it can be different for everyone because of regional issue. They can live in a country where hphosts can block more trackers than the others. Who knows

I didn't count adguard english filter or easylist because they are must-have an of course they are effective in blocking ads than blocking trackers

I want a small list of filters so I keep stevenblack (everyone's standard) and 1hosts (champion)
 

DeepWeb

Level 25
Verified
Top Poster
Well-known
Jul 1, 2017
1,396
new test 12/11/2018
links, 1 duplicated link
Code:
104.168.7.43/childs.exe
104.168.7.43/power.exe
128.199.223.4/51MG/oamo/Smallbusiness
159.65.172.17/1956MYCLGUS/PAYMENT/Personal
1stniag.com/i8IGzz/SWIFT/PrivateBanking
23.249.161.100/tonychunks/PO.exe
altaredlife.com/954675G/com/US
bahiacreativa.com/Oe03Kk
c2.howielab.com/Home/Download/20181109040734/word_sample_20181109040734.doc/
canetafixa.com.br/3uo7M
chang.be/sTb96Tu
cine80.co.kr/wvw/8132AHNYO/SWIFT/Smallbusiness
clubcoras.com/649BRQJNXK/SEP/Smallbusiness
craniofacialhealth.com/fkwoBvLXu9/
custommedia-wp.nl/76EWKFESY/PAY/Personal
duwon.net/wpp-app/zZIi80jKEg
hivicze.uk/Remittance_121118FI06_PDF.jar
mirakgroup.co.uk/Remittance_Advice_121118_pdf.jar
mwhite.ru/gMIk68B
nutrilatina.com.br/349A/biz/Business
oceanicproducts.eu/ndu/ndu.exe
sfdgvr65.ga/hot-auto.zip
sociallysavvyseo.com/PGEjLjV
sustainablealliance.co.uk/wp-content/plugins/css-ready-selectors/build.exe
tangfuzi.com/En_us/Transactions-details/2018-11
www.davidjuliet.com/Past-Due-Invoices
www.dropbox.com/s/tf3by8kzv3kb928/ScanDoc_0915_20181211TRKL.pdf.z?dl=1
www.mandala.mn/update/cab.exe
www.xianjiaopi.com/41964H/PAY/US
www.xianjiaopi.com/41964H/PAY/US/

ublock origin custom/requested filters
View attachment 201433

chrome 9/30
avira 15/30
Malwarebytes 24/30
WDBP 7/30
ublock 7/30 (energized 6, phishtank 1)
BDTL 22/30
Norton 7/30
comodo 1/30
McAfee WebAdvisor 0/30 => expected
Edge/IE 16/30

Kaspersky 25/30 => webfilter only, disabled realtime protection
Forticlient 24/30 => webfilter only, no AV module
Wait my brain is not working right now sry. So is the score for Chrome representing uBO with Chrome or just Chrome with safe browsing enabled? Either way these scores are discouraging and a huge wakeup call that I should uninstall a bunch of useless extensions :D I think I will start using Malwarebytes extension even though it's huge.

Any score for Netcraft?
 

Evjl's Rain

Level 47
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Apr 18, 2016
3,684
Wait my brain is not working right now sry. So is the score for Chrome representing uBO with Chrome or just Chrome with safe browsing enabled? Either way these scores are discouraging and a huge wakeup call that I should uninstall a bunch of useless extensions :D I think I will start using Malwarebytes extension even though it's huge.

Any score for Netcraft?
only google

netcraft will score absolute 0
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top