SpoofStick
 What is SpoofStick?
|
SpoofStick is a simple browser extension that helps users detect spoofed (fake) websites. A spoofed website is typically made to look like a well known, branded site (like ebay.com or citibank.com) with a slightly different or confusing URL. The attacker then tries to trick people into going to the spoofed site by sending out fake email messages or posting links in public places - hoping that some percentage of users won't notice the incorrect URL and give away important information. This practice is sometimes known as “phishing".
SpoofStick makes it easier to spot a spoofed website by prominently displaying only the most relevant domain information. It's not a comprehensive solution, but it's a good start. For example, if you're on the following URL (this is a real, legitimate ebay url): |
http://signin.ebay.com/aw-cgi/eBayISAPI.dll?
SignIn&UsingSSL=0&pUserId=&ru=http%3A%2F%
2Fcontact.ebay.com%2Fws1%2FeBayISAPI.dll%
3FShowCoreAskSellerQuestion%26requested%
3Ddominicsmusic%26de%3Doff%26iid%
3D3711129021%26frm%3D284%26acceptcookie%
3D0%26loginconfirmed%3D0%26redirect%3D0%
26pass%3D%7B_pass_%7D%26userid%3D&pp=p
ass&co_partnerid=2&pageType=711"
Spoofstick will say: "You're on ebay.com".
If you get fooled by going to a spoofed site, for example http://signin.ebay.com@10.19.32.4/ (a "spoof" example used by ebay in their customer outreach),
Spoofstick will say: "You're on 10.19.32.4" |
|
You can customize the color and size of the SpoofStick display to suit your tastes and make it harder for a fake site to try to “spoof” SpoofStick with a static graphic.
SpoofStick contains no adware, spyware, nagware or other unhealthy additives.
|
Installation Instructions |
- Download the spoofstick-ie.exe executable file to your computer, and double click on it to run.
- Follow the instructions in the installer.
- Restart all copies of Internet Explorer after installing SpoofStick.
- If you're running Windows XP SP2, in IE look under "Tools->Internet Options->Advanced" for a checkbox entitled "Enable third-party browser extensions (requires restart)". Make sure that's checked and reboot your computer.
|
|
- Download spoofstick-firefox.xpi and save it in a local directory.
- In Firefox, go to File->Open File and open the spoofstick-firefox.xpi file from where you saved it.
- When installation is complete, close all Firefox windows and restart the browser.
|
|
- SpoofStick just sits there contently displaying the domain name of the site you’re currently on.
- Before entering any information into a site, glance up at SpoofStick to confirm that you are where you think you are.
- To configure the size and color of the display, click on the button labeled [options] and select the “Configure SpoofStick” options.
- SpoofStick is a normal IE toolbar, so you can turn it on and off by going to the View->Toolbars menu and toggling the checkmark next to SpoofStick.
- You can drag and drop and resize the SpoofStick toolbar by going to the View->Toolbars menu, unlocking the toolbars, making whatever changes you want to SpoofStick, then locking the toolbars again.
|
|
- SpoofStick just sits there contently displaying the domain name of the site you’re currently on.
- Before entering any information into a site, glance up at SpoofStick to confirm that you are where you think you are.
- To configure the size and color of the display, right click anywhere on SpoofStick or go to Tools->Options->Extensions, select “spoofstick-firefox.xpi” and click on the “Options” button.
- SpoofStick is no longer a toolbar, but a button. To enable SpoofStick, select View->Toolbars->Customize, and drag SpoofStick onto any toolbar. To configure or uninstall SpoofStick, select Tools->Extensions.
|
|
 SpoofStick for Internet Explorer |
SpoofStick for Firefox |
|
New added freeware:
|
Recommended software:
|
|
Download Now
