Skip to content

rockerroblox/lightspeedinfodump

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
ChromeFilter.zip
ChromeFilter.zip
 
 
README.md
README.md
 
 
main.js
main.js
 
 

Repository files navigation

lightspeedinfodump

A short dump of information about Lightspeed Systems filters and products

  • Written in Go.

  • Using extensions, websockets, ports and extensions

  • extensions aren't obfuscated

  • Uses AWS and leaves creds in source code

  • Has multiple vulns

  • using domains. check OSN and also new domain: safetycheck-devices.relay.school

  • main domain : devices.filter.relay.school

  • agent-backend-api-production.lightspeedsystems.com Reads user/profile data of web browsers 224.0.0.251:5353

    SEE TRIAGE REPORT AT https://tria.ge/251111-y5qshssjgt/behavioral1

Infinite new extension file: https://lsrelay-extensions-production.s3.amazonaws.com/chrome-filter/15ef5e1be7eac1c61563ca7c7562a8a54fda1c4571bafcb79e5fe908f8dd2f49/ChromeFilter.crx

Checks browser data via app telemetry. github.com/Lightspeed-Systems has lots of private repos with valuable data, like LSConfigGo AlertAgent

disable chromium local storage - maybe bypass

Cache poisoning attack

(S = localStorage.getItem("blockSettings")),
(f = JSON.parse(S || '{"categories": {}}')),

localStorage.setItem("story-data", JSON.stringify(e));
localStorage.getItem("story-data")```

attack:
```// devtools
localStorage.setItem("blockSettings", JSON.stringify({
  "categories": {
    "57": 0,  //  phishing allowed
    "61": 0,  // social media allowed
    "71": 0   // streaming allowed
  }
}));```

About

A short dump of information about Lightspeed Systems filters and products

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published