Skip to content

SecurityJosh/DownloadBlockerNativeMessagingHost

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits

.vs/DownloadBlockerNativeMessagingHost

.vs/DownloadBlockerNativeMessagingHost

 
 

NativeMessagingHost

NativeMessagingHost

 
 

Install.ps1

Install.ps1

 
 

NativeMessagingHost.sln

NativeMessagingHost.sln

 
 

README.md

README.md

 
 

Repository files navigation

Download Blocker Native Messaging Host

This Native Messaging Host is an optional addition to the Download Blocker chromium extension. It calculates downloaded file metadata on behalf of the extension, and is only invoked when the extension is unable to calculate this metadata itself.

Metadata Calculated

The Native Messaging Host calculates the same metadata as the extension itself:

  • File SHA256
  • If the file contains office macros
  • The list of filenames inside a .zip archive.
  • If a .zip archive contains any encrypted files.

The metadata calculated by the Native Messaging Host is only sent to the Download Blocker extension.

When is it invoked?

As mentioned above, the Native Messaging Host is only invoked when the extension itself has been unable to calculate the downloaded file's metadata. This is generally due to the extension's content script not being injected. Examples of when this might be the case include:

  • HTML Smuggled downloads where the initiating resource is a local file (e.g. a .html email attachment), when "Allow access to file URLs" has not been enabled.
  • Non-Smuggled downloads
  • HTML Smuggled downloads where a browser or extension bug prevents content-script injection. (e.g. https://bugs.chromium.org/p/chromium/issues/detail?id=1393521)

Installation

Note: Requires .Net 7

Install.ps1 [https://github.com/SecurityJosh/DownloadBlockerNativeMessagingHost]
Usage:
    -h, -help                           Displays this help message
    -InstallationFiles <File Path>      Runs the installer with a local copy of the installation files. If omitted, the latest version is download from GitHub.
    -InstallDirectory <Folder Path>     The installation directory. If omitted, defaults to C:\Program Files\DownloadBlocker
    -Chrome                             Installs the Native Messaging Host for the Chrome Browser
    -Edge                               Installs the Native Messaging Host for the Microsoft Edge Browser
    Note: At least one of -Chrome, -Edge are required

Example (Download install files from GitHub, keep the default installation directory, install for Chrome and Edge)

.\Install.ps1 -Chrome -Edge

Example (Local installation, keep the default installation directory, install for Chrome and Edge)

# Download the installation files from https://github.com/SecurityJosh/DownloadBlockerNativeMessagingHost/releases
.\Install.ps1 -InstallationFiles "DownloadBlockerNativeMessagingHost_1.0.0.zip" -Chrome -Edge

Change Log

1.4.0

  • Metadata captured now includes whether or not a .zip archive contains any encrypted files.

1.3.0

  • Fixed a bug which meant the data returned to the extension was not in the expected format.

1.2.0

  • Zip filename extraction efficiency further improved
  • Fixed a bug which meant SHA256 hashes were being incorrectly computed.

1.1.0

  • Zip filename extraction is now much more efficient.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

V1.4.0.0 Latest
Feb 18, 2024
+ 4 releases

Packages

No packages published

Languages