This extension was developed for the HacKronyX Hackathon (June 27, 2025) organized by St. Vincent Pallotti College of Engineering and Technology (SVPCET), Nagpur.
Digital Trust Extension is a lightweight, real-time security auditor that evaluates web pages dynamically, calculating a comprehensive Trust Score out of 100 based on standard security vectors (SSL, trackable cookies, secure forms, and policy pages). It empowers users to make rapid, informed decisions about a site’s trustworthiness at a single glance.
%%{init: {'theme': 'base', 'themeVariables': { 'primaryColor': '#E0F2F1', 'edgeLabelBackground':'#FFFFFF', 'tertiaryColor': '#E8F5E9', 'lineColor': '#00796B', 'nodeBorder': '#00796B' }}}%%
flowchart TD
classDef main fill:#E0F2F1,stroke:#00796B,stroke-width:2px,color:#004D40;
classDef process fill:#FFF8E1,stroke:#F57F17,stroke-width:2px,color:#5D4037;
classDef check fill:#EDE7F6,stroke:#5E35B1,stroke-width:2px,color:#311B92;
A["🌐 Web Page Loads"]:::main --> B["💉 Content Script Injection (content.js)"]:::main
B --> C["🕵️ DOM & Form Privacy Scan"]:::check
A --> D["⚙️ Service Worker Monitoring (background.js)"]:::main
D --> E["📡 WebRequest Tracker Detection"]:::check
C & E --> F["🧠 Trust Score Calculator Engine (popup.js)"]:::process
F --> G["🛡️ SSL Check (+20 pts)"]:::process
F --> H["📜 Privacy Policy Scan (+20 pts)"]:::process
F --> I["🍪 Cookies & Tracker Filter (+30 pts)"]:::process
F --> J["🔒 Insecure Form Audit (+30 pts)"]:::process
G & H & I & J --> K["📊 UI Popup Rendering (popup.html)"]:::main
class A,B,D,K main;
class C,E check;
class F,G,H,I,J process;
- Automatically scans active protocols to guarantee requests operate via secure HTTPS transport layers.
- Employs DOM keyword regex arrays to detect and flag formal Privacy Policy pages, Terms of Service, or GDPR declarations.
- The background service worker leverages Chrome's
webRequestAPI to sniff and count third-party tracking scripts, advertising injection payloads, and tracking cookies operating on the tab.
- Content scripts audit input structures on forms. High-risk actions (such as sending sensitive text or passwords over raw HTTP) are instantly caught, degrading the site's overall score to protect credential leakage.
To upload and run the extension locally on your Google Chrome browser:
- Download this repository as a
.zipfile from the green Code button at the top right of this GitHub page. - Extract the ZIP file into a dedicated folder on your local computer.
- Open Google Chrome.
- Navigate to the extension portal by typing the following into your URL bar and hitting Enter:
chrome://extensions
- Look to the top right of the Chrome Extensions page.
- Switch on the Developer mode toggle.
- In the top-left menu, click the Load unpacked button.
- A local file system navigator will display. Locate the folder where you extracted the ZIP (make sure you select the root folder containing the
manifest.jsonfile). - Click Select Folder.
- The Digital Trust Extension card will now display in your loaded list.
- Pin the extension to your Chrome menu bar and click it on any website to execute a live security scan!
├── .gitignore # Prevents caching, local development configurations, and key credentials leak
├── README.md # Academically designed documentation with dynamic Mermaid flowchart
├── manifest.json # Chrome Extension MV3 core registration manifest
├── background.js # Service worker sniffing third-party cookies and tracker scripts
├── content.js # Injected page scraper evaluating forms, SSL levels, and privacy policy links
├── popup.html # Dynamic extension popup interface
├── popup.css # Premium styling system for the popout control panel
├── popup.js # Trust score computation engine and dashboard driver
└── icons/ # High-resolution extension action icons (16x16, 48x48, 128x128)
Developed for secure data audit and verified compliance at HacKronyX Hackathon 🛡️.