Demo: Exploiting Leaked Timestamps From Google Chrome Extensions

Description

This demo showcases how Chromium extensions are unintentionally exposing an exploit that can be used for advanced browser fingerprinting.

The demo demonstrates how any website can easily obtain a uniqnue visitor identifier using the last modified timestamps of extension files.

The demo works only on Google Chrome Desktop mode and does not work on Incognito.

Read our article for more information.

Make sure you have Python isntalled. If you do not have it installed, you can install it from the offical Python website.

Install the requirements:

python3 -m pip install -r requirements.txt

Run the server:

python3 main.py

The demo should now be available at http://localhost:5000

Name		Name	Last commit message	Last commit date
Latest commit History 8 Commits
templates		templates
.gitignore		.gitignore
README.md		README.md
main.py		main.py
requirements.txt		requirements.txt
vercel.json		vercel.json