Introduction:
In this post I hope to give you an introduction into the process of analyzing a Chrome extension. To demonstrate this I will be analyzing a Chrome extension called hola unblocker. While the article will focus on reversing and analyzing the hola unblocker extension the process can be generalized to analyze most Chrome extensions.
The high level structure for analyzing an extension is as follows:
- Acquire a copy of the extension either via direct download or via the Chrome store.
- Extract the extension to get access to the files within the extension.
- Analyze the manifest.json file to determine what files the extension uses and what the files are used for.
- Perform individual analysis of the JS files that were located in the manifest file.
- Collect Results and build report.
- Done.
Getting started:
Tools:
read more...........http://runawaycoder.co.za/2013/02/11/chromeExtensionAnalysis.html