NoScript Extension is now available for Chrome
NoScript also provides the most powerful anti-XSS and anti-Clickjacking protection ever available in a browser.
It allows JavaScript, Flash, Java and other executable content to run only from trusted domains of your choice, like your home-banking site, mitigating remotely exploitable vulnerabilities.
NoScript’s unique whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities (known, such as Meltdown or Spectre, and even not known yet!) with no loss of functionality.
You can enable JavaScript, Java and plugin execution for sites you trust with a simple click on the NoScript status bar icon.
Get NoScript Extension for Chrome here
Users can allow active content to execute on trusted websites, by giving explicit permission, on a temporary or a more permanent basis. If “Temporarily allow” is selected, then scripts are enabled for that site until the browser session is closed.
Because many web browser attacks require scripting, configuring the browser to have scripting disabled by default reduces the chances of exploitation.
Blocking plug-in content, as well, helps to mitigate any vulnerabilities in plug-in technologies, such as Java, Flash, Acrobat, and so on. NoScript will replace these blocked elements with a placeholder icon. Clicking on this icon enables the element.
For Firefox NoScript plugin was launched on May 2015. It is one of the most used extensions by security researchers.
The best security you can get in a web browser. Allow active content to run only from sites you trust, and protect yourself against XSS and Clickjacking attacks, “Spectre”, “Meltdown” and other JavaScript exploits.
Maximum protection for your browser-
NoScript allows active content only for trusted domains of your choice to prevent exploitation.
It protects your “trust boundaries” against cross-site scripting attacks (XSS), cross-zone DNS rebinding / CSRF attacks (router hacking), and Clickjacking attempts.
Such a preemptive approach prevents exploitation of security vulnerabilities (known and even unknown!) with no loss of functionality where you need it. The security expert notices that your browser is really safer with NoScript.
Get NoScript Source code here
