Paladin Log4j Exploit Immunizer
What is Paladin Log4j Exploit Immunizer?
Add-on stats
- <all_urls>
- webRequest
- webRequestBlocking
Ranking
Add-on summary
Browser extension to prevent Log4J exploits via WebSocket against services running on private network and localhost. This extension will disable connections over WebSocket to localhost and private IP addresses unless the initiator is also localhost or a private IP. This should harden your browser against drive-by websites, phishing landing pages, malicious HTML attachments and malicious ads that seek to use your browser as a beachhead for launching Log4J exploits against your company's internal web applications.
Released under AGPLv3 Source Code: https://github.com/paladincyber/log4jprotector
Add-on safety
Risk impact
Paladin Log4j Exploit Immunizer is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install Paladin Log4j Exploit Immunizer if you trust the publisher.
Risk likelihood
Paladin Log4j Exploit Immunizer has earned a fairly good reputation and likely can be trusted.