Skip to content
This repository was archived by the owner on May 1, 2025. It is now read-only.

AlePur/firefox-attack

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
icons
icons
 
 
web-ext-artifacts
web-ext-artifacts
 
 
README.md
README.md
 
 
main.js
main.js
 
 
manifest.json
manifest.json
 
 

Repository files navigation

firefox-attack

Hijack proxy-failover browser feature to introduce an unsigned, malicious, hidden extension. 👍

Proxy Failover seems the most useless of these features. The following features can be seen in about:support: image

The features can be found in C:\Program Files\Mozilla Firefox\browser\features:

image

.xpi files are .zip files renamed.

Using npm i web-ext && npx web-ext build we create our own .xpi extension. Mind that replacing files in C:\Program Files\Mozilla Firefox\browser\features requires administrator privileges.

Browser features are hidden extensions by default and have access to incognito windows. As can be seen in the default extension-preferences.json file.

image

The only thing to complete our attack is to modify the permissions of proxy-failover@mozilla.com in extensions.json.

Change

"userPermissions": {
  "permissions": [],
  "origins": []
},

To

"userPermissions": {
  "permissions": [
    "unlimitedStorage",
    "clipboardRead",
    "storage"
  ],
  "origins": [
    "<all_urls>"
  ]
},

About

Hijack proxy-failover browser feature to introduce an unsigned, malicious, hidden extension

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages