登录
CheckMyHTTPS 预览

CheckMyHTTPS 作者: CheckMyHTTPS Team

CheckMyHTTPS ensures that your secured WEB connections ('HTTPS' protocol) are not intercepted (neither decrypted, nor listened, nor modified).

4.4 (10 reviews)
197 个用户
您需要 Firefox 来使用此扩展
下载 Firefox 并安装扩展
下载文件
屏幕截图
Here is the meaning of check logosHere is what happens when you decide to check your HTTPS connectionHere are the options available
关于此扩展
When browsing on secured sites ("https://..." websites), you can check the security status by clicking on the extension icon (check).
  • The icon is green : your connection is not compromised;
  • The icon is red : your connection is considered very risky (hijacked, modified, listened);
  • The icon is gray : the verification is impossible (check server is unreachable, network error);
  • The icon is black : the verification is in progress.

Technical details :
Normally, before encrypting an HTTPS connection, a secure website must prove its identity to your browser by sending it its security certificate. This certificate can be considered as an identity card issued by higher authorities (Certificate Authorities). There are several techniques of usurpation based on false certificates (false identity cards) or homographers (false names) to make you believe that a "pirate" site is the legitimate site you think you are visiting. These techniques allow pirate sites to retrieve your private information.
CheckMyHTTPS allows you to detect this type of practice, which can be implemented on open networks (WiFi in hotels, conference centers, stations, etc.) or even within your company via its firewall (SSL inspection). To detect this, the extension compares the certificate of the visited site that is received by your browser with the same certificate retrieved by an external "verification server" located on the Internet. If the certificates differ, the identity of the server can be considered as usurped (red icon).

Respect for privacy?
The CheckMyHTTPS extension requires only two parameters : The name of the visited website and the certificate received from it;
The external verification server only receives the name of the visited website. If you want, you can make this verification server yourself.

All explanations are detailed on the https://checkmyhttps.net project website.
评分 4.4(1 位用户)

已保存星级评分

5
7
4
2
3
0
2
0
1
1
权限与数据详细了解

必要权限:

  • 为您显示通知
  • 获取浏览器标签页

可选权限:

  • 访问您在所有网站的数据

收集的数据:

  • 开发者称此扩展无需收集数据。
更多信息
版本
5.7.2
大小
58.35 KB
上次更新
7 小时前 (2025年9月14日)
相关分类
版本历史
添加到收藏集
举报此附加组件
5.7.2 的发布说明
  • Visual improvement of Options page
  • Handle the case of checking addons.vaultpit.io's certificate which is not possible due to a safety feature where Firefox prevents its extensions from manipulating the extension store website
  • By default, the extension icon is icon.png, not unknown.png anymore.
  • Improved error handling messages
  • Reorganized and improved localization messages
  • Removed severalCertificates 'SC' case handling. It is now considered invalid.
  • Checking an IDN (Internationalized Domain Name) website is now considered valid (as long as both certificate fingerprints are equal).
  • Made the IDN warning notification clickable to redirect the user to wikipedia's IDN homograph attack page
  • Removed Warning status as severalCertificates and IDN cases are no longer considered warning
CheckMyHTTPS Team 制作的更多扩展