moarTLS

Analyze webpages for non-secure link references.

• Overview
• Download
• Source
• Reviews
• Trends
• Toggle Dropdown
  SourceReviewsTrends

What is moarTLS?

moarTLS is a Firefox add-on by EricLaw. This add-on has 20 daily active users and a good user rating of 4.67. The latest version, 0.1.6.0, was updated 6 years ago.

Stats

Stats date:

By: EricLaw

View on Firefox Browser Add-ons

Users: 20

Rating: 4.67 (3)

Version: 0.1.6.0 (Last updated: 2017-08-09)

Creation date: 2016-08-09

Weekly download count: NaN

Firefox on Android: Yes

Manifest version: 2

Permissions:

• tabs
• activeTab
• storage
• <all_urls>
• downloads

Size: 36.16K

Risk impact: High risk impact

Risk likelihood: Low risk likelihood

Other platforms

Not available on Chrome

Not available on Edge

ChromeStats Rank

# 17288 ▲ 371

Other rankings

#178 in analyze keyword ▼ 2

Summary

HTTPS only works if you use it! This simple extension adds a button to Firefox that allows you to easily discover non-secure (e.g. HTTP) links on your pages.

Simply click the moarTLS button and non-secure link references in the current page are flagged for review.

You can learn more about latent mixed-content vulnerabilities here: https://textplain.wordpress.com/2016/03/17/seek-and-destroy-non-secure-references-using-the-moartls-analyzer/

User reviews

by Firefox user 13577855, 2018-03-23

by akfek, 2018-02-16

Latent Mixed Content? If the definition is conceptual to what it applies is a fact. The link provided by the developer to learn more about latent mixed-content vulnerabilities is worth reading. We know that Firefox blocks by default Active Mixed Content, lets loose by default Display Mixed Content, but what about secure pages which include links to non-secure pages? The issue can be far more damageable for the user than a Display Mixed Content. That's the point which is excellently described in the above mentioned page. moarTLS, when its toolbar button clicked, will display in a pop-up all the non-secure links included in a secure (https) page. Is this too much precautions? I was just wondering why some secure pages offer a link to register which leads to a non-secure page : absurd? Certainly. Am I aware of it? Maybe not. With moarTLS I can be aware of it with a simple click... a click on moarTLS' toolbar button before (if ever) the click on the link to the non-secure page! You have to be logic, especially with security. If you're involved you have to be totally. It's always the gap between what we believe is enough security and more (moar!) security which makes the day of an intruder.

by Firefox user 12357313, 2016-08-13

Safety

Risk impact

Risk impact measures the level of extra permissions an extension has access to. A low risk impact extension cannot do much harms, whereas a high risk impact extension can do a lot of damage like stealing your password, bypass your security settings, and access your personal data. High risk impact extensions are not necessarily malicious. However, if they do turn malicious, they can be very harmful.

Risk likelihood

Risk likelihood measures the probability that a Firefox add-on may turn malicious. This is determined by the publisher and the Firefox add-on reputation on Firefox Browser Add-ons, the amount of time the Firefox add-on has been around, and other signals about the Firefox add-on. Our algorithms are not perfect, and are subject to change as we discover new ways to detect malicious extensions. We recommend that you always exercise caution when installing a Firefox add-on, especially ones with higher risk impact and/or higher risk likelihood.

Screenshots