Extension Details
Context-Aware Verdict
The extension has a moderate user base of 100,000 users, which provides some validation through adoption. However, the relatively low rating of 3.4 out of 5 stars from 339 reviews suggests user dissatisfaction or potential issues. The developer "spector.net" lacks clear company information or established reputation, which reduces trustworthiness. The missing description is particularly concerning as users cannot understand what the extension actually does.
The extension requests an excessive array of permissions that appear disproportionate for most legitimate use cases. The combination of webRequest interception, cookie access, and broad host permissions creates a perfect storm for data harvesting or malicious activity. Content script injection across all websites enables the extension to read sensitive information like passwords, financial data, and personal communications. The downloads permission combined with system.display access could facilitate unauthorized file downloads or screen monitoring. The lack of transparency in the extension's description makes it impossible to verify if these permissions are justified.
Do not install this extension due to its critical risk level. If you must use it, run it in a completely isolated Chrome profile with no access to personal accounts or sensitive websites. Consider seeking alternative extensions with more transparent descriptions and narrower permission scopes. The combination of broad permissions, low ratings, and missing description strongly suggests this extension poses significant security and privacy risks.
Findings
Security Analysis Details
Required Permissions:
- storage
- cookies
- webRequest
- downloads
- tabs
- system.display
- declarativeNetRequest
- scripting
Host Permissions:
- <all_urls>
Content Security Policy:
- extension_pages: script-src 'self'; object-src 'self'
Embedded URLs (34 total):
| http://www.w3.org/2000/svg | http://www.w3.org/1999/xlink | |
| http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd | http://ns.adobe.com/Extensibility/1.0/ | |
| http://ns.adobe.com/AdobeIllustrator/10.0/ | http://ns.adobe.com/Graphs/1.0/ | |
| http://ns.adobe.com/Variables/1.0/ | http://ns.adobe.com/ImageReplacement/1.0/ | |
| http://ns.adobe.com/SaveForWeb/1.0/ | http://ns.adobe.com/GenericCustomNamespace/1.0/ | |
| http://ns.adobe.com/XPath/1.0/ | https://loading.io/ | |
| http://jedwatson.github.io/classnames | https://jquery.com/ | |
| https://jquery.org/license | https://github.com/babel/babel/blob/main/packages/babel-helpers/LICENSE | |
| https://www.instagram.com/ | https://www.instagram.com | |
| https://developer.mozilla.org/en-US/docs/Web/CSS/CSS_Logical_Properties. | https://react.dev/errors/ | |
| http://www.w3.org/1998/Math/MathML | http://www.w3.org/XML/1998/namespace | |
| https://tryfastsave.com/insta/ | https://stuk.github.io/jszip/documentation/howto/read_zip.html | |
| https://www.instagram.com/tv/upload/ | https://www.instagram.com/rupload_igvideo/ | |
| https://www.instagram.com/rupload_igphoto/ | https://www.instagram.com/create/ | |
| https://www.instagram.com/api/v1/media/ | https://www.instagram.com/?deoia=1 | |
| http://stuartk.com/jszip | https://raw.github.com/Stuk/jszip/main/LICENSE.markdown. | |
| https://github.com/nodeca/pako/blob/main/LICENSE | https://clients2.google.com/service/update2/crx |
Raw Manifest
{ "name": "__MSG_appName__", "icons": { "16": "icons/16.png", "32": "icons/32.png", "64": "icons/64.png", "128": "icons/128.png" }, "action": { "default_popup": "popup/popup.html" }, "version": "3.8.8", "background": { "service_worker": "js/serviceWorker.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_appDesc__", "permissions": [ "storage", "cookies", "webRequest", "downloads", "tabs", "system.display", "declarativeNetRequest", "scripting" ], "default_locale": "en", "content_scripts": [ { "js": [ "js/main.js", "js/content.js", "js/mobileTransform.js" ], "css": [ "css/main.css" ], "run_at": "document_start", "matches": [ "<all_urls>" ], "all_frames": true }, { "js": [ "js/inject.js" ], "world": "MAIN", "run_at": "document_start", "matches": [ "*://*.instagram.com/*" ] }, { "js": [ "js/contentScript.js" ], "css": [ "css/lincs.css" ], "run_at": "document_start", "matches": [ "<all_urls>" ], "all_frames": true }, { "js": [ "js/downloaderSiteContent.js" ], "run_at": "document_start", "matches": [ "*://*.spector.net/*" ] } ], "host_permissions": [ "<all_urls>" ], "manifest_version": 3, "content_security_policy": { "extension_pages": "script-src 'self'; object-src 'self'" }, "web_accessible_resources": [ { "matches": [ "<all_urls>" ], "resources": [ "icons/*", "js/*", "js/storyIn.js" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.