Extension Details
Context-Aware Verdict
The extension has very limited trust indicators with only 1,000 users and just 3 ratings averaging 3.7 stars. The lack of developer information, company details, and last update date raises significant transparency concerns. The generic name "IS Study Extension" with no clear description of functionality is particularly concerning for an extension requesting such extensive permissions.
The extension requests an excessive array of high-risk permissions that appear completely unnecessary for a typical study tool. The combination of history access, tab manipulation, web navigation tracking, and extension management capabilities creates a perfect surveillance toolkit. The broad host permissions and content script injection across all websites means this extension can monitor, modify, and potentially steal data from every site you visit. The management permission is especially alarming as it allows control over other extensions, potentially disabling security tools.
Do not install this extension. The risk-to-benefit ratio is extremely poor given the vague purpose and extensive invasive permissions. If you absolutely must use it for academic requirements, create a completely separate Chrome profile with no saved passwords, personal data, or other extensions installed. Consider using a virtual machine for additional isolation. Contact your institution to verify this extension's legitimacy and explore safer alternatives for your study needs.
Findings
Security Analysis Details
Required Permissions:
- storage
- idle
- tabs
- scripting
- alarms
- history
- webNavigation
- declarativeNetRequest
- management
Host Permissions:
- <all_urls>
Embedded URLs (6 total):
| http://www.w3.org/2000/svg | https://dcsnsf1.isbsa-research.co.in | |
| https://djnsf1.isbsa-research.co.in | https://clients2.google.com/service/update2/crx | |
| https://www.google.com/search?udm= | https://djnsf1.isbsa-research.co.in/api/get-api-key/ |
Raw Manifest
{ "name": "IS Study Extension", "icons": { "16": "images/icon16.png", "19": "images/icon19.png", "32": "images/icon32.png", "38": "images/icon38.png", "48": "images/icon48.png", "128": "images/icon128.png" }, "action": { "default_title": "IS Extension" }, "version": "1.6.8", "background": { "service_worker": "js/app/background.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "Extension to conduct an experimental study", "permissions": [ "storage", "idle", "tabs", "scripting", "alarms", "history", "webNavigation", "declarativeNetRequest", "management" ], "content_scripts": [ { "js": [ "vendor/js/jquery.min.js", "js/lib/passive-data-kit.js", "js/app/content-script.js", "modules/mislead_ext/content.js" ], "run_at": "document_start", "matches": [ "<all_urls>" ] } ], "host_permissions": [ "<all_urls>" ], "manifest_version": 3, "web_accessible_resources": [ { "matches": [ "<all_urls>" ], "resources": [ "modules/mislead_ext/background.js", "modules/mislead_ext/hide.css", "modules/mislead_ext/hide_text.css" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.