crypto-firewall icon indicating copy to clipboard operation
crypto-firewall copied to clipboard
verified publisher icon chartingshow

New Feature: Create some Crypto scriptlet files to better protect our users

Open summercms opened this issue 11 months ago • 2 comments

Enhancement idea

  • [x] New Feature: Create some Crypto scriptlet files to better protect our users.
  • [ ] Write doc's for them:
    • [ ] Explain what they are and their features.
    • [ ] Explain how to use and add them to Brave Browser.
    • [ ] Add section to main readme and linking them to the scriptlet doc's.

Description

Brave scriptlet files are custom JavaScript snippets that advanced users can inject into web pages to modify their behaviour and appearance. Introduced in Brave Browser version 1.75 for desktop, this feature allows users to enhance privacy, customize website layouts, and improve usability.

Key aspects of Brave scriptlets include:

  1. Customization: Users can write JavaScript code to block trackers, remove unwanted elements, or add new functionality to websites.

  2. Local storage: Scriptlets are stored locally on the user's device and do not leave the browser.

  3. Accessibility: The feature is accessed through Brave's settings under "Shields > Content filtering" and requires enabling Developer Mode.

  4. Versatility: Scriptlets can be used for various purposes, such as blocking JavaScript-based trackers, randomizing fingerprinting APIs, forcing dark mode, or bypassing right-click restrictions.

  5. Caution required: Users should only use scriptlets from trusted sources to avoid potential security risks.

  6. Syntax: Brave's custom scriptlet feature follows filter rule syntax similar to ad-blocking rules in uBlock Origin or AdGuard.

While powerful, this feature is designed for advanced users who understand JavaScript and the potential implications of injecting custom code into web pages.

Screenshots

n/a

Links

n/a

IOC

I2P websites

n/a

IPFS websites

n/a

Tor2web websites

n/a

TOR websites

n/a

URL's

n/a

Folders

n/a

Sub-Domains

n/a

Domains

n/a

Package Names

n/a

IP's

n/a

ASN's

n/a

Emails

n/a

Wallet addresses

n/a

Mining pool addresses

n/a

summercms avatar Mar 23 '25 15:03 summercms 

!chrome.google.com,chrome.extension,marketplace.visualstudio.com,pypi.org,npmjs.com,firebaseio.com,example.com##+js(user-bad-packages-browser-extensions.js)


!chrome.google.com,chrome.extension,marketplace.visualstudio.com,pypi.org,npmjs.com,firebaseio.com,example.com##+js(user-tests.js)

!npmjs.com##+js(user-crypto-firewall.js)
chrome.google.com##+js(user-crypto-firewall.js)
marketplace.visualstudio.com##+js(user-crypto-firewall.js)


binance.com##+js(user-day-trading.js)

summercms avatar Apr 14 '25 18:04 summercms

Issues

  • CSP Blocking loading of JSON files.
  • Brave doesn't support: *##+js() (only supports mentioned domains).

summercms avatar Apr 14 '25 18:04 summercms