Add SSL/TLS CA detection

4 years ago · 8540730ba6
parent d7712f9272
commit 8540730ba6
3 changed files with 36 additions and 8 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1,5 +1,5 @@
 /build/*
-/src/drivers/**/apps.json
+/src/drivers/**/technologies.json
 /src/drivers/**/wappalyzer.js
 /src/drivers/webextension/images/icons/converted/*

--- a/src/drivers/webextension/js/driver.js
+++ b/src/drivers/webextension/js/driver.js
@ -1,6 +1,6 @@
 'use strict'
 /* eslint-env browser */
-/* globals chrome, Wappalyzer, Utils */
+/* globals chrome, browser, Wappalyzer, Utils */

 const {
  setTechnologies,
@ -57,12 +57,18 @@ const Driver = {

    chrome.browserAction.setBadgeBackgroundColor({ color: '#6B39BD' }, () => {})

-    chrome.webRequest.onCompleted.addListener(
-      Driver.onWebRequestComplete,
+    chrome.webRequest.onHeadersReceived.addListener(
+      Driver.onHeadersReceived,
      { urls: ['http://*/*', 'https://*/*'], types: ['main_frame'] },
-      ['responseHeaders']
+      ['responseHeaders', 'blocking']
    )

+    // chrome.webRequest.onCompleted.addListener(
+    //  Driver.onWebRequestComplete,
+    //  { urls: ['http://*/*', 'https://*/*'], types: ['main_frame'] },
+    //  ['responseHeaders']
+    // )
+
    chrome.tabs.onRemoved.addListener((id) => (Driver.cache.tabs[id] = null))

    // Enable messaging between scripts
@ -184,7 +190,7 @@ const Driver = {
   * Analyse response headers
   * @param {Object} request
   */
-  async onWebRequestComplete(request) {
+  async onHeadersReceived(request) {
    if (await Driver.isDisabledDomain(request.url)) {
      return
    }
@ -208,11 +214,32 @@ const Driver = {
            )
          })

+          let certIssuer = ''
+
+          if (browser) {
+            // Currently only works in Firefox
+            // See https://stackoverflow.com/a/50484642
+            const { certificates } = await browser.webRequest.getSecurityInfo(
+              request.requestId,
+              {
+                certificateChain: true,
+                rawDER: false,
+              }
+            )
+
+            if (certificates && certificates.length) {
+              certIssuer = certificates[0].issuer.replace(
+                /^.*CN=([^,]+).*$/,
+                '$1'
+              )
+            }
+          }
+
          if (
            headers['content-type'] &&
            /\/x?html/.test(headers['content-type'][0])
          ) {
-            await Driver.onDetect(request.url, analyze({ headers }))
+            await Driver.onDetect(request.url, analyze({ headers, certIssuer }))
          }
        }
      } catch (error) {
--- a/src/drivers/webextension/manifest.json
+++ b/src/drivers/webextension/manifest.json
@ -64,8 +64,9 @@
    "tabs",
    "webRequest",
    "webNavigation",
+    "webRequestBlocking",
    "http://*/*",
    "https://*/*"
  ],
  "content_security_policy": "script-src 'self'; object-src 'self'"
-}
+}