Skip to content

Detect shady links  #80

New issue
New issue
Closed
#105
Closed
Detect shady links #80
#105
Assignees
PierreDemailly
Labels
good first issueGood for newcomershelp wantedExtra attention is needed
@fraxken

Description

@fraxken
fraxken
opened on Jan 12, 2023

My idea of this task is to implement a new warning responsible of detecting shady links in Literals. I have been inspired by one of the detection of guarddog from DataDog.

They use the following RegEx:
(http[s]?:\/\/.*\.(link|xyz|tk|ml|ga|cf|gq|pw|top|club|mw|bd|ke|am|sbs|date|quest|cd|bid|cd|ws|icu|cam|uno|email|stream))

This RegEx allow to detect an URL like that:

https://foobar.xyz

The idea is to create a new probe or to update isLiteral probe to add that new warning. The probe will execute on every ESTree Literal.

const maliciousUrl = "https://foobar.xyz";

Maybe we need to conduct additional research on the subject (maybe there is some study we may want to read to improve the detection?).

Metadata

Metadata

Assignees

Labels

good first issueGood for newcomershelp wantedExtra attention is needed

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions