A tampermonkey addon for WWW kogama that aims to prevent any sort of JS-based stealers.
Works by blocking any fetch & xhr outside of native to website API.
Huge credits to Zpayer for providing the list of native-to-kogama APIs.
There EXIST a ton of ways this could be bypassed. Do NOT take your safety for granted.
NEVER test any suspicious scripts on your main account or within an environment where your sensitive data might be exposed.
TAKE ALL THE PRECAUTIONS POSSIBLE.
Made with javascript and meant to use with an executor like tampermonkey
To install quicker feel welcome to click right here
As of 4th August 2025, the script:
- Maps all of the native to the website API,
- Blocks any requests that do not match our allowed list,
- Prevents any requests that target password-related endpoints.
September 7th Update:
Now also displays {partially} payload.
This project is made public for a reason.
Do NOT reshare it trying to gain profit or any sort of benefit from others.
This is free.