Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/snoopysecurity/Noopener-Burp-Extension
Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributes
https://github.com/snoopysecurity/Noopener-Burp-Extension
Last synced: about 2 months ago
JSON representation
Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributes
- Host: GitHub
- URL: https://github.com/snoopysecurity/Noopener-Burp-Extension
- Owner: snoopysecurity
- Created: 2018-04-27T20:43:31.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2018-06-08T18:18:09.000Z (over 6 years ago)
- Last Synced: 2024-07-30T20:35:01.728Z (about 2 months ago)
- Language: Python
- Size: 5.86 KB
- Stars: 4
- Watchers: 3
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Noopener-Burp-Extension
Find Target="_blank" values within web pages that are set without 'noopener' and 'noreferrer' attributesThe target attribute specifies the context in where a linked resource will open when the it is clicked by a user. Links opened via target blank attributes have the ability to make changes to the original page. This could be leveraged to conduct phishing attacks. More technical details can be found in the links below.
* https://mathiasbynens.github.io/rel-noopener/
* https://dev.to/ben/the-targetblank-vulnerability-by-example
* https://snoopysecurity.github.io/webappsec/2018/04/26/target_blank_vulnerability.html