Connect Clawsmith to your coding agent. Ship products like crazy.Unlimited usage during betaGet API Key →
← Back to ideas
clawsmith.com/idea/extension-behavior-auditor
IdeaCompetitivebrowser-securityprivacychrome-extensionLive

A browser extension that detects when other installed extensions are secretly sending your browsing data to third parties

Hundreds of Chrome extensions silently exfiltrate browsing history, form data, and AI chat logs to data brokers after gaining user trust over months or years. Existing tools like Guardio rely on reputation blocklists and can't catch newly-turned-malicious extensions or supply-chain-compromised ones that have clean histories. This tool runs local behavioral runtime analysis on every installed extension, flagging real outbound data exfiltration as it happens rather than matching against a database of known-bad signatures.

Demand Breakdown

HN
679

Social Proof 1 sources

HN
Chrome extensions spying on users browsing data
@qcontinuum1 · 2026-02-11
679

Gap Assessment

CompetitiveMultiple tools exist but differentiation opportunities remain

3 tools exist (Guardio, Extension Guard (chrome-stats.com), Malwarebytes Browser Guard) but gaps remain: Reputation-database approach cannot catch trusted extensions that turn malicious after a supply-chain compromise or a silent update, because those extensions have clean histories at the point they go bad.; Permission-based heuristics only, no runtime behavioral analysis. Does not monitor actual network calls or detect active exfiltration. Small user base with no standalone product..

Features7 agent-ready prompts

Runtime network call interception per extension
Sensitive data pattern detection in outbound payloads
Supply chain change detection on extension updates
Permission-to-behavior gap analysis
One-click extension quarantine
Behavioral history timeline per extension
Plain-English risk summary for non-technical users

Competitive LandscapeFREE

ProductDoesMissing
GuardioAI-driven threat protection extension that blocks malicious sites and flags risky extensions using reputation databases and known-threat signatures. Millions of users.Reputation-database approach cannot catch trusted extensions that turn malicious after a supply-chain compromise or a silent update, because those extensions have clean histories at the point they go bad.
Extension Guard (chrome-stats.com)Flags extensions with risky permission combinations using Chrome-Stats database metadata.Permission-based heuristics only, no runtime behavioral analysis. Does not monitor actual network calls or detect active exfiltration. Small user base with no standalone product.
Malwarebytes Browser GuardBlocks malicious URLs, trackers, and known-bad scripts. General web threat protection.Not focused on extension-to-extension behavioral monitoring; cannot detect a legitimate-looking extension silently POSTing form data or cookies to a data broker domain.

Notable VoicesFREE

HN
@qcontinuum1679 likes · 2026-02-11

"Chrome extensions spying on users browsing data — hundreds of extensions with millions of installs are quietly exfiltrating data with no way for users to detect it."

Leads134BUILDER

@qcontinuum1
@mentalgear
@sebzim4500
@throwaway0665
@drdec
@Valodim
@matheusmoreira
@mcjiggerlog
134 people already want this

Sign in to unlock full access.

Aggregate Score
679
134 leads found
Details
TypeProduct Idea
Competitors3
Features7
Issues1
Leads134
Source Signals
All signals →
679287 Chrome Extensions Caught Spying on 37 Million Users
Related Ideas
All ideas →
0A browser extension that monitors installed extensions for ownership transfers, permission scope changes, and suspicious outbound data requests in real time0A browser extension that blocks ads in Chrome under Manifest V3 using network-layer interception outside the browser's declarativeNetRequest limits0A mobile app that tracks menstrual cycles and reproductive health entirely on-device with zero cloud sync and zero account requirement
Tags
browser-securityprivacychrome-extensionruntime-analysissupply-chaindata-exfiltration
Top Voices
HN@qcontinuum1
679 likes