Extension Details
Context-Aware Verdict
The extension has a moderate user base of 50,000 users and a decent rating of 4.3 stars, suggesting some level of user satisfaction. However, the limited number of reviews (48) relative to the user count raises questions about engagement. The developer website (spineditor.com) provides some transparency, though more detailed developer information would strengthen trust.
The extension exhibits several red flags that justify the high-risk classification. The combination of broad host permissions (*://*/*) with content script injection capabilities creates a powerful attack surface that could be exploited maliciously. The tabs permission allows extensive browser manipulation beyond what many legitimate extensions require. The overly broad permissions suggest the extension has access to far more data and functionality than typical productivity tools need. The lack of a clear description makes it impossible to verify if these permissions are justified for the extension's intended purpose.
Given the high-risk nature, consider running this extension in a separate Chrome profile to isolate potential security impacts. Before installation, research the extension's specific functionality to determine if the extensive permissions are truly necessary. Monitor your browsing behavior and sensitive accounts after installation for any unusual activity. Consider alternative extensions with more limited permissions if similar functionality is available. Regularly review and audit installed extensions, removing those that aren't essential.
Findings
Security Analysis Details
Required Permissions:
- activeTab
- tabs
- scripting
- alarms
Host Permissions:
- *://*/*
Embedded URLs (23 total):
| https://www.google.com/sorry/index | https://ipv4.google.com | |
| https://ipv6.google.com | http://spineditor.com/cong-dong-view | |
| https://spineditor.com/cong-dong-view | http://www.spineditor.com/cong-dong-view | |
| https://www.spineditor.com/cong-dong-view | http://spineditor.com | |
| https://spineditor.com | http://www.spineditor.com | |
| https://www.spineditor.com | https://clients2.google.com/service/update2/crx | |
| https://spineditor.com/deathByCaptcha2.ashx?st=solved&mid= | https://ipv6.google.com/sorry/index | |
| https://ipv4.google.com/sorry/index | http://ipv6.google.com/sorry/index | |
| http://ipv4.google.com/sorry/index | http://www.google.com/sorry/index | |
| https://spineditor.com/deathByCaptcha2.ashx | https://spineditor.com/deathByCaptcha2.ashx?idcaptcha= | |
| https://spineditor.com/deathByCaptcha2.ashx?sitekey= | https://spineditor.com/Content/Images/Home/pure_bell.mp3 | |
| https://coccoc.com/search |
Raw Manifest
{ "name": "SCheckPro", "action": { "default_icon": "icon.png" }, "version": "16.32", "background": { "service_worker": "background.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "Công cụ hỗ trợ và phát triển SEO. Chỉ sử dụng trên spineditor.", "permissions": [ "activeTab", "tabs", "scripting", "alarms" ], "content_scripts": [ { "js": [ "jquery.js", "popup.js" ], "run_at": "document_start", "matches": [ "*://*/*" ], "all_frames": true } ], "host_permissions": [ "*://*/*" ], "manifest_version": 3 }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.