Skip to content

A Chrome extension that intercepts HTTP requests in real time and analyzes them for security vulnerabilities using a local LLM via Ollama.

Notifications You must be signed in to change notification settings

richmidwinter/red-team-auditor

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
 
 
 
 
 
 

Repository files navigation

Red Team Network Auditor

A Chrome extension that intercepts HTTP requests in real time and analyzes them for security vulnerabilities using a local LLM via Ollama.

Red Team Network Auditor

Features

  • Real-time request interception -- captures all HTTP traffic from the active tab
  • LLM-powered analysis -- sends captured requests to a local Ollama instance for vulnerability assessment
  • DevTools-style panel -- a resizable, three-column panel injected at the bottom of any webpage (toggle with Ctrl+Shift+R)
  • Standalone dashboard -- a full-page dashboard view for deeper inspection
  • Vulnerability detection -- identifies hardcoded credentials, missing security headers, injection risks, information disclosure, and insecure configurations
  • Filtering & export -- filter requests by URL or HTTP method, and export results as JSON

Prerequisites

  • Google Chrome (or a Chromium-based browser)
  • Ollama running locally on port 11434
  • A pulled model (default: llama3.2)
ollama pull llama3.2
ollama serve

Installation

  1. Clone or download this repository
  2. Open chrome://extensions in Chrome
  3. Enable Developer mode (toggle in the top-right)
  4. Click Load unpacked and select the src/ directory

Usage

  1. Click the extension icon in the toolbar to open the popup
  2. Configure the Ollama endpoint and model name if needed (defaults to http://localhost:11434/api/generate and llama3.2)
  3. Click Test Connection to verify Ollama is reachable
  4. Navigate to any website
  5. Open the auditor panel with Ctrl+Shift+R or by clicking Toggle Panel in the popup
  6. Click RESUME to start capturing requests
  7. Select a request and click ANALYZE to scan it, or use ANALYZE ALL to batch-scan all captured requests

Vulnerabilities are displayed in the right column, sorted by severity (critical, high, medium, low), with evidence and remediation guidance.

Project Structure

src/
  manifest.json        # Chrome extension manifest (MV3)
  background.js        # Service worker -- request interception, LLM communication
  content-script.js    # Injected panel UI (DevTools-style bottom panel)
  popup.html / popup.js    # Extension popup -- config and panel toggle
  dashboard.html / dashboard.js  # Standalone full-page dashboard
  icons/               # Extension icons (16, 48, 128px)

Configuration

All configuration is managed through the extension popup:

Setting Default Description
Ollama Endpoint http://localhost:11434/api/generate URL of the Ollama generate API
Model Name llama3.2 Ollama model to use for analysis

Settings are persisted in chrome.storage.local.

License

MIT

About

A Chrome extension that intercepts HTTP requests in real time and analyzes them for security vulnerabilities using a local LLM via Ollama.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published