Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the security implications of Chrome extensions in this 40-minute conference talk that examines a commonly overlooked attack vector in enterprise environments. Learn about the structure and format of Chrome extensions, discover how to perform static analysis using custom rules, and understand when threat modeling becomes critical for extension security. Examine historical cases of malicious extensions and their operational methods, including their use in red team operations. Get hands-on experience with CRXaminer, a newly released tool for analyzing Chrome extension security, and learn how to implement it immediately in your security workflow. Analyze real-world data and statistics gathered from large-scale extension analysis to understand current trends and security findings in the Chrome extension ecosystem.
