This addon eases the checking procedure for the Heartblug Bug, so the user can identify all vulnerable websites he's visiting and notify those responsible.
It achieves this by automatically checking the websites you are visiting whether they are affected by the HeartBleed Vulnerability and notifies you in case they are.
The check works by uploading only the domain name to the "
http://filippo.io/Heartbleed/"-API and parsing the results.
In case you come across an affected website, you should immediately notify the website owner! Not only the website itself is exposed to danger, but also
your private data!
If you're interested in a similiar addon for Google Chrome, you can find one here:
https://chrome.google.com/webstore/detail/chromebleed/eeoekjnjgppnaegdjbcafdggilajhpicFeatures - if one can even call it that:when visiting a vulnerable website for the first time of the current browser session, a new tab with the corresponding "http://filippo.io/Heartbleed/#"-site is openedindicates exposure to the vulnerability with a filled HeartBleed icon in the bottom right corner checks each domain name only once per browser session You can learn more about the vulnerability at
http://heartbleed.com/:"The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. [...]
The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users."
You can also find more information at: http://breaking.systems/blog/2014/04/foxbleed-check-your-frequently-visited-websites-en-passant
(cc) quickly hacked together with love by Fabian Bräunlein
Add-ons
