Sound Booster - increase volume up
Version 1.0.10 View in Chrome Web Store
Extension Details
Context-Aware Verdict
The extension has a substantial user base of 2 million users and maintains a solid 4.5-star rating from over 10,000 reviews, suggesting general user satisfaction. The developer operates from a dedicated domain (sound-ultimate.com) which adds some legitimacy. However, the extension's core functionality - audio volume boosting - should theoretically require minimal permissions.
The most significant red flag is the excessive permissions requested for what should be a simple audio enhancement tool. The combination of tabs permission, broad host permissions (<all_urls>), and content script injection across all websites creates a powerful surveillance and data collection capability. These permissions far exceed what's necessary for volume boosting functionality. The tabCapture permission, while potentially legitimate for audio processing, combined with the other permissions creates concerning data access potential. The system.display permission also seems unnecessary for audio enhancement.
Consider running this extension in a separate Chrome profile to isolate potential privacy risks. Before installation, verify if your audio needs can be met through system-level volume controls or less permissive alternatives. If you proceed with installation, regularly review the extension's behavior and consider removing it if you notice unusual network activity or performance issues. Monitor your browsing data and be cautious about sensitive activities while this extension is active.
Findings
Security Analysis Details
Required Permissions:
- tabs
- tabCapture
- storage
- system.display
Host Permissions:
- <all_urls>
Embedded URLs (7 total):
| https://jquery.com/ | https://sizzlejs.com/ | |
| https://jquery.org/license | https://js.foundation/ | |
| https://microsoftedge.microsoft.com/addons/detail/ | https://chrome.google.com/webstore/detail/ | |
| https://clients2.google.com/service/update2/crx |
Raw Manifest
{ "name": "__MSG_app_name__", "icons": { "16": "icons/icon-logo.png", "32": "icons/icon-logo.png", "48": "icons/icon-logo.png", "128": "icons/icon-logo.png" }, "action": { "default_icon": { "19": "icons/icon-logo.png", "38": "icons/icon-logo.png" }, "default_title": "__MSG_app_name__" }, "version": "1.0.10", "background": { "service_worker": "js/service_worker.js" }, "update_url": "https://clients2.google.com/service/update2/crx", "description": "__MSG_app_description__", "permissions": [ "tabs", "tabCapture", "storage", "system.display" ], "default_locale": "en", "content_scripts": [ { "js": [ "js/libs/jquery.min.js", "js/content.js" ], "css": [ "css/content.css" ], "run_at": "document_idle", "matches": [ "<all_urls>" ] } ], "host_permissions": [ "<all_urls>" ], "manifest_version": 3, "web_accessible_resources": [ { "matches": [ "<all_urls>" ], "resources": [ "*.css" ] } ] }
ⓘ CRXaminer has partnered with our friends at Secure Annex to provide additional findings unique to their platform.
Secure Annex also analyzes extensions from other browsers, IDEs, and can continuously monitor.
This extension may not yet be analyzed by Secure Annex.