Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/snoopysecurity/Noopener-Burp-Extension

Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributes
https://github.com/snoopysecurity/Noopener-Burp-Extension

Last synced: about 2 months ago
JSON representation

Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributes

Host: GitHub
URL: https://github.com/snoopysecurity/Noopener-Burp-Extension
Owner: snoopysecurity
Created: 2018-04-27T20:43:31.000Z (over 6 years ago)
Default Branch: master
Last Pushed: 2018-06-08T18:18:09.000Z (over 6 years ago)
Last Synced: 2024-07-30T20:35:01.728Z (about 2 months ago)
Language: Python
Size: 5.86 KB
Stars: 4
Watchers: 3
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Noopener-Burp-Extension
Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributes

The target attribute specifies the context in where a linked resource will open when the it is clicked by a user. Links opened via target blank attributes have the ability to make changes to the original page. This could be leveraged to conduct phishing attacks. More technical details can be found in the links below.

* https://mathiasbynens.github.io/rel-noopener/
* https://dev.to/ben/the-targetblank-vulnerability-by-example
* https://snoopysecurity.github.io/webappsec/2018/04/26/target_blank_vulnerability.html