The Polykill Chrome Extension provides an easy way to run a risk report without installing anything onto your website directly. It injects the Polykill.js JavaScript library and produces a report immediately.
This is a great way to get a basic understanding of JavaScript risk, but does not provide the same coverage as Polykill.js. Malicious JavaScript can evade detection in certain scenarios and one-off tests should not be solely relied on for full understanding.
The Polykill Chrome Extension inventories and analyzes:
- All static and dynamic scripts running on the page
- XHR and beacon calls made to 3rd parties
- Sensitive data harvesting capabilities
- Breach history of script domain owner
- Domain name transfer activity
- and much more
Install the extension and view report
![Polykill.js report](/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Fbrowser-report.eba52347.png&w=750&q=75)
- Risk analysis on full JavaScript domain, path and parameters
- Risk analysis of 3rd party payload, breach history and more
Media Coverage
![ArsTechnica](/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Flogo_arstechnica.dece84b1.png&w=256&q=75)
![Bleeping Computer](/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Flogo_bleeping.9cc37ae2.png&w=640&q=75)
![DevOps](/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Flogo_devops.ed3aec4b.png&w=128&q=75)
![Security Blvd](/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Flogo_secblvd.e64a6e96.png&w=384&q=75)
![The Register](/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Flogo_theregister.fc5713d8.png&w=256&q=75)