Dark Mode - Night Eye
Version 6.0.2 View in Chrome Web Store
Extension Details
Context-Aware Verdict
The extension has a solid user base of 300,000 users and maintains a good 4.5-star rating from 3,100 reviews, suggesting general user satisfaction. Dark mode functionality is a legitimate and popular browser enhancement. However, the developer PROMOTINO OOD lacks detailed information, which reduces transparency and trust.
The extension's permission set is excessive for basic dark mode functionality. The identity permission is particularly concerning as dark mode features shouldn't require access to user identity information. The tabs permission allows manipulation of browser tabs beyond what's necessary for theme application. The broad host permissions and content script injection capabilities create significant attack surface, enabling the extension to access and modify content on every website you visit. While these permissions might be justified for comprehensive dark mode implementation across all sites, they also create substantial privacy and security risks.
Given the critical risk level, consider running this extension in a separate Chrome profile to isolate potential security impacts from your main browsing activities. Alternatively, look for dark mode extensions with more limited permissions, or use built-in browser dark mode features where available. If you continue using this extension, regularly review its behavior and consider disabling it on sensitive websites like banking or email platforms. Monitor for any unusual network activity or unexpected behavior while the extension is active.
Findings
Security Analysis Details
Required Permissions:
- storage
- contextMenus
- activeTab
- tabs
- scripting
- identity
Host Permissions:
- *://*/*
Content Security Policy:
- extension_pages: script-src 'self'; object-src 'self'
Embedded URLs (50 total):
| https://nighteye.short.gy/u09VjX | https://billing.nighteye.app | |
| https://app.relayflow.io | https://nighteye.app | |
| https://S.browser.google.com/webstore/detail/night-eye-dark-mode-on-an/alncdjedloppbablonallfbkeiknmkdi | https://microsoftedge.microsoft.com/addons/detail/night-eye-dark-mode-on-/gijhmcgnnbcpigflkfoimbnfjnbcphah | |
| https://addons.mozilla.org/en-US/firefox/addon/night-eye-dark-mode | https://twitter.com/home?status= | |
| https://www.facebook.com/sharer/sharer.php?u= | https://plus.google.com/share?url= | |
| https://nighteye.short.gy/rdzkOC/# | https://imgbb.com | |
| https://github.com/zloirock/core-js/blob/v3.23.1/LICENSE | https://github.com/zloirock/core-js | |
| https://static.xx.fbcdn.net | https://roboticsandautomationnews.com/wp-content/uploads/2024/12/ran-logo-bw-2.png | |
| https://chart.googleapis.com/chart | https://www.unknowncheats.me/forum/ambience/misc/forum_banner_dark.png?v=1 | |
| https://www.unknowncheats.me/forum/ambience/misc/forum_banner_x_dark.png?v=1 | http://www.w3.org/2000/svg | |
| http://www.w3.org/1999/xlink | https://nighteye.app/help#deep-integration | |
| https://nighteye.app/custom-mode-for-each-page/ | https://nighteye.app/subdomain-settings/ | |
| https://nighteye.app/gumroad/ | https://billing.nighteye.app/client/login | |
| https://nighteye.app/night-eye-license-key-redemption | https://nighteye.app/how-to-report-a-problem/ | |
| https://billing.nighteye.app/client/sign-in | https://nighteye.app/lite-free-dark-mode-extension | |
| https://billing.nighteye.app/client/profile | https://billing.nighteye.app/client/home | |
| https://nighteye.app/help | https://nighteye.app/custom-shortcuts-chrome-extensions/ | |
| https://nighteye.app/instagram-dark- | https://nighteye.app/wikipedia-night-mode | |
| https://nighteye.app/how-to-enable-dark-mode-on-amazon | https://nighteye.app/linkedin-dark-mode | |
| https://nighteye.app/download-extension | https://nighteye.app/free | |
| https://nighteye.app/lite-free-dark-mode-extension/ | https://nighteye.app/help#os-integration | |
| https://www.googleapis.com/oauth2/v2/userinfo | https://nighteye.app/schedule-dark-mode/ | |
| https://nighteye.app/satisfaction-survey# | http://www.w3.org/1998/Math/MathML | |
| http://www.w3.org/1999/xhtml | https://clients2.google.com/service/update2/crx | |
| https://nighteye.app/ | https://www.googleapis.com/auth/userinfo.email |
Raw Manifest
{ "name": "__MSG_extName__", "icons": { "16": "res/icon/16.png", "48": "res/icon/48.png", "128": "res/icon/128.png" }, "action": { "default_icon": "res/icon/48.png", "default_popup": "html/browser-action/home.html", "default_title": "Night Eye" }, "author": "RAZORlabs", "oauth2": { "scopes": [ "https://www.googleapis.com/auth/userinfo.email" ], "client_id": "1083078585089-pd458ffb7e57ljl4o1jdsm8jh5m4o7fa.apps.googleusercontent.com" }, "version": "6.0.2", "commands": { "switch-filter-mode": { "description": "Switch to filter mode", "suggested_key": { "mac": "Command+Shift+4", "default": "Alt+Shift+4" } }, "toggle-current-website": { "description": "__MSG_extToggleButton__", "suggested_key": { "mac": "Command+Shift+2", "default": "Alt+Shift+2" } }, "toggle-power-extension": { "description": "Toggle on and off the extension", "suggested_key": { "mac": "Command+Shift+3", "default": "Alt+Shift+3" } } }, "background": { "service_worker": "background.js" }, "short_name": "Night Eye", "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_extDescription__", "permissions": [ "storage", "contextMenus", "activeTab", "tabs", "scripting", "identity" ], "homepage_url": "https://nighteye.app/", "options_page": "html/browser-action/settings.html", "default_locale": "en", "content_scripts": [ { "js": [ "js/content/content.js" ], "css": [ "css/loading.css" ], "run_at": "document_start", "matches": [ "<all_urls>" ], "all_frames": true } ], "offline_enabled": true, "host_permissions": [ "*://*/*" ], "manifest_version": 3, "externally_connectable": { "ids": [ "kihnobiijiigaopmckagnbabbemopjff", "ammebokdkfmnodbndepnginmdgnakjfm", "nkpmhapodmhpdlhjcbhlfflhdofacdll" ], "matches": [ "<all_urls>" ] }, "content_security_policy": { "extension_pages": "script-src 'self'; object-src 'self'" }, "web_accessible_resources": [ { "matches": [ "<all_urls>" ], "resources": [ "css/*", "_locales/*", "js/browser-action/*", "html/browser-action/*" ] }, { "matches": [ "<all_urls>" ], "resources": [ "js/content/cssom.js" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.