Log in
Preview of Certificate Pinner

Certificate Pinner by Heurekus

Pins TLS certificates of configured web pages and interrupts/alerts when a new certificate is presented. Adds a button to the browser's toolbar for pinning and unpinning.

4.4 (10 reviews)
67 Users
You'll need Firefox to use this extension
Download Firefox and get the extension
Download file
Screenshots
New icon in the taskbar to pin, unpin and list fingerprintsWhen a certificate is pinned and a different cert is presented for a web site, an alert tab is opened with details and a button to accept the changes.
About this extension
This add-on allows to selectively 'pin' TLS certificates of web pages. Whenever a page is loaded and the connection is TLS encrypted, it compares the fingerprint of the presented TLS certificate to the one that is stored. If they don't match, the TLS authentication process is interrupted before any local secrets such as session cookies, passwords, etc. are sent to the server. A tab is opened with a warning and details of the new certificate so the user can decide if the change is genuine. If so, the old fingerprint is replaced with the new fingerprint in local storage. A new button in the browser's toolbar opens a pop-up menu to pin and un-pin page certificates and to get a list of all pinned certificates.
Rated 4.4 by 10 reviewers

Star rating saved

5
8
4
0
3
0
2
2
1
0
Permissions and dataLearn more

Required permissions:

  • Display notifications to you
  • Access browser tabs
  • Access your data for all websites
More information
Version
0.17.10
Size
32.36 KB
Last updated
5 years ago (Jun 30, 2020)
Related Categories
Version History
Add to collection
Report this add-on
Release notes for 0.17.10
New: Handle use of 'back button', remove 'P' logo if previous page was not pinned.
New: Show error message if a user wants to pin pages for which internal browser certs are used.
New: Ignore iframes, only pin domain names that are shown in the browser's URL bar.
More extensions by Heurekus