mlab.sh INTEL von Alice Sn0w
Detect domain and IP IOCs on any page and pivot to mlab.sh investigation in one click.Detect domain, IP and crypto wallet IOCs on any page and pivot to a mlab.sh threat intelligence investigation in one click.
Metadaten zur Erweiterung
Über diese Erweiterung
Threat intelligence at the speed of your browser.
mlab.sh INTEL turns every page into a launch pad for security investigation. Read a threat report, a vulnerability advisory, a darkweb dump or a phishing email? See indicators of compromise instantly, scan them in one click, and pivot to a full mlab.sh report — without leaving the page.
What it does
• Detects automatically on every page you read: domains, IPv4, IPv6 addresses and (opt-in) crypto wallet addresses across Bitcoin, Ethereum / EVM chains, Tron and Solana.
• Understands defanged IOCs like
• One-click investigation via the toolbar popup, the right-click menu, or by clicking a highlighted IOC directly in the page. Each result links to the full mlab.sh report.
• Inline highlighting (off by default) colours IOCs with the verdict returned by mlab.sh: clean / suspicious / malicious.
• History tab keeps your 10 most recent scans, with filter, copy-to-clipboard and re-scan in one click.
• Bulk scan by pasting a list of IOCs into the popup — newline, comma or space separated, refanged automatically.
• Per-site disable keeps the extension passive on your bank, intranet or any host you choose.
• Smart quota management: 24-hour local cache, server-side cache probe before launching new scans, in-flight deduplication, 60-second back-off when the API is rate-limited.
Privacy by design
The extension is built around an aggressive privacy policy:
• No browsing telemetry. The extension only contacts mlab.sh when you explicitly trigger a scan or refresh your quota.
• No third parties — no analytics, no ads, no CDN-loaded scripts.
• Your API key, cache, history and settings stay on your device.
• Works fully anonymously by default using mlab.sh's free Anonymous tier. Add your own API key for higher quota when you need it.
See PRIVACY.md in the repository for the full disclosure.
Who is this for?
SOC analysts, incident responders, threat hunters, security researchers, journalists covering cyber, students, and anyone curious about the indicators they spot online.
mlab.sh INTEL turns every page into a launch pad for security investigation. Read a threat report, a vulnerability advisory, a darkweb dump or a phishing email? See indicators of compromise instantly, scan them in one click, and pivot to a full mlab.sh report — without leaving the page.
What it does
• Detects automatically on every page you read: domains, IPv4, IPv6 addresses and (opt-in) crypto wallet addresses across Bitcoin, Ethereum / EVM chains, Tron and Solana.
• Understands defanged IOCs like
evil[.]com, hxxp://, 1.1.1[.]1, user[at]example.com — the format used in every serious threat report.• One-click investigation via the toolbar popup, the right-click menu, or by clicking a highlighted IOC directly in the page. Each result links to the full mlab.sh report.
• Inline highlighting (off by default) colours IOCs with the verdict returned by mlab.sh: clean / suspicious / malicious.
• History tab keeps your 10 most recent scans, with filter, copy-to-clipboard and re-scan in one click.
• Bulk scan by pasting a list of IOCs into the popup — newline, comma or space separated, refanged automatically.
• Per-site disable keeps the extension passive on your bank, intranet or any host you choose.
• Smart quota management: 24-hour local cache, server-side cache probe before launching new scans, in-flight deduplication, 60-second back-off when the API is rate-limited.
Privacy by design
The extension is built around an aggressive privacy policy:
• No browsing telemetry. The extension only contacts mlab.sh when you explicitly trigger a scan or refresh your quota.
• No third parties — no analytics, no ads, no CDN-loaded scripts.
• Your API key, cache, history and settings stay on your device.
• Works fully anonymously by default using mlab.sh's free Anonymous tier. Add your own API key for higher quota when you need it.
See PRIVACY.md in the repository for the full disclosure.
Who is this for?
SOC analysts, incident responders, threat hunters, security researchers, journalists covering cyber, students, and anyone curious about the indicators they spot online.
Bewertet mit 0 von 0 Bewertern
Berechtigungen und Daten
Benötigte Berechtigungen:
- Benachrichtigungen anzeigen
- Auf Browsertabs zugreifen
- Auf Ihre Daten für diverse Websites zugreifen
Optionale Berechtigungen:
- Auf Ihre Daten für mlab.sh zugreifen
Datenerfassung:
- Der Entwickler sagt, dass diese Erweiterung keine Datenerhebung benötigt.
Weitere Informationen
- Version
- 1.0.0
- Größe
- 157,54 KB
- Zuletzt aktualisiert
- vor 4 Tagen (15. Mai 2026)
- Verwandte Kategorien
- Datenschutzrichtlinie
- Lesen Sie die Datenschutzrichtlinie für dieses Add-on
- Versionsgeschichte
- Zur Sammlung hinzufügen