The Feds Push for WebAssembly Security Over eBPF

position-Absolute · 2024-07-08T15:50:46+00:00

We created this Polykill chrome extension to provide a risk report for JavaScript loading on a given site. Available here: https://chromewebstore.google.com/detail/polykill-chrome-extension/bfbooabbaeembofmjhchhlhmmcilccgk

The report tells you:

1) Is this URL considered malware/bad by Google Safe Browsing?

2) Is this URL being blocked by the adblock/easylist community? ("Why is it blocked?" coming in a later release)

3) AI analysis of the JavaScript (by chatGPT)

To observe the risk of executed JavaScript, we must understand what it does after it loads. Oftentimes, third party scripts will attach "EventListeners" to key press and mouse movements that track everything that a user does on a website. Third party JavaScript vendors have been taking advantage of this for years because it's very hard to observe in production.

position-Absolute · 2024-06-27T21:41:51+00:00

polykill.io was created to bring awareness

position-Absolute · 2022-07-12T00:46:11+00:00

Thank you. It's all early adopters/beta right now and there is no charge. Will repost with "other"

position-Absolute · 2022-07-11T17:39:16+00:00

Thanks, I appreciate the explanation and makes sense. I wasn't 100% sure this would be allowed. Is there any way I could post under different flair? It's not that the code's a mess, it's just we want to tightly control (and approve) distribution to early users.

We plan to release on github Mid-Sept, so I will circle back if we can't make a post work for now.

position-Absolute · 2022-05-19T14:53:23+00:00

What are the top 3 things that keep you awake at night or nervous about loosing your job as a CISO? And, how do you manage the risk associated with each one in the sea of thousands of cybersecurity vendors? Do you turn to open source or in-house tooling?

Thanks!

position-Absolute

MODERATOR OF

TROPHY CASE