mlab.sh INTEL od Alice Sn0w
Detect domain and IP IOCs on any page and pivot to mlab.sh investigation in one click.Detect domain, IP and crypto wallet IOCs on any page and pivot to a mlab.sh threat intelligence investigation in one click.
Metadata rozšíření
O tomto rozšíření
Threat intelligence at the speed of your browser.
mlab.sh INTEL turns every page into a launch pad for security investigation. Read a threat report, a vulnerability advisory, a darkweb dump or a phishing email? See indicators of compromise instantly, scan them in one click, and pivot to a full mlab.sh report — without leaving the page.
What it does
• Detects automatically on every page you read: domains, IPv4, IPv6 addresses and (opt-in) crypto wallet addresses across Bitcoin, Ethereum / EVM chains, Tron and Solana.
• Understands defanged IOCs like
• One-click investigation via the toolbar popup, the right-click menu, or by clicking a highlighted IOC directly in the page. Each result links to the full mlab.sh report.
• Inline highlighting (off by default) colours IOCs with the verdict returned by mlab.sh: clean / suspicious / malicious.
• History tab keeps your 10 most recent scans, with filter, copy-to-clipboard and re-scan in one click.
• Bulk scan by pasting a list of IOCs into the popup — newline, comma or space separated, refanged automatically.
• Per-site disable keeps the extension passive on your bank, intranet or any host you choose.
• Smart quota management: 24-hour local cache, server-side cache probe before launching new scans, in-flight deduplication, 60-second back-off when the API is rate-limited.
Privacy by design
The extension is built around an aggressive privacy policy:
• No browsing telemetry. The extension only contacts mlab.sh when you explicitly trigger a scan or refresh your quota.
• No third parties — no analytics, no ads, no CDN-loaded scripts.
• Your API key, cache, history and settings stay on your device.
• Works fully anonymously by default using mlab.sh's free Anonymous tier. Add your own API key for higher quota when you need it.
See PRIVACY.md in the repository for the full disclosure.
Who is this for?
SOC analysts, incident responders, threat hunters, security researchers, journalists covering cyber, students, and anyone curious about the indicators they spot online.
mlab.sh INTEL turns every page into a launch pad for security investigation. Read a threat report, a vulnerability advisory, a darkweb dump or a phishing email? See indicators of compromise instantly, scan them in one click, and pivot to a full mlab.sh report — without leaving the page.
What it does
• Detects automatically on every page you read: domains, IPv4, IPv6 addresses and (opt-in) crypto wallet addresses across Bitcoin, Ethereum / EVM chains, Tron and Solana.
• Understands defanged IOCs like
evil[.]com, hxxp://, 1.1.1[.]1, user[at]example.com — the format used in every serious threat report.• One-click investigation via the toolbar popup, the right-click menu, or by clicking a highlighted IOC directly in the page. Each result links to the full mlab.sh report.
• Inline highlighting (off by default) colours IOCs with the verdict returned by mlab.sh: clean / suspicious / malicious.
• History tab keeps your 10 most recent scans, with filter, copy-to-clipboard and re-scan in one click.
• Bulk scan by pasting a list of IOCs into the popup — newline, comma or space separated, refanged automatically.
• Per-site disable keeps the extension passive on your bank, intranet or any host you choose.
• Smart quota management: 24-hour local cache, server-side cache probe before launching new scans, in-flight deduplication, 60-second back-off when the API is rate-limited.
Privacy by design
The extension is built around an aggressive privacy policy:
• No browsing telemetry. The extension only contacts mlab.sh when you explicitly trigger a scan or refresh your quota.
• No third parties — no analytics, no ads, no CDN-loaded scripts.
• Your API key, cache, history and settings stay on your device.
• Works fully anonymously by default using mlab.sh's free Anonymous tier. Add your own API key for higher quota when you need it.
See PRIVACY.md in the repository for the full disclosure.
Who is this for?
SOC analysts, incident responders, threat hunters, security researchers, journalists covering cyber, students, and anyone curious about the indicators they spot online.
Hodnocení: 0 od 0 redaktorů
Oprávnění a data
Požadovaná oprávnění:
- Zobrazovat vám oznámení
- Přistupovat k panelům prohlížeče
- Přistupovat k vašim datům pro všechny webové stránky
Volitelná oprávnění:
- Přistupovat k vašim datům stránky mlab.sh
Sběr dat:
- Podle vývojáře toto rozšíření nevyžaduje sběr dat.
Další informace
- Verze
- 1.0.0
- Velikost
- 157,54 KB
- Poslední aktualizace
- před 4 dny (15. kvě 2026)
- Příbuzné kategorie
- Zásady ochrany osobních údajů
- Přečtěte si zásady ochrany osobních údajů pro tento doplněk
- Historie změn
- Přidat do sbírky