CRX id
fmjmodibdfdfjfeanfhbjbieaafmbppj
fmjmodibdfdfjfeanfhbjbieaafmbppj
Description from extension meta
The addresses entered are queried by Threatway and blocked when deemed necessary.
Image from store
Description from store
CTI-powered site protection. Checks each domain against CatchProbe ThreatWay and blocks malicious pages in real time.
Description
CatchProbe ThreatWay Blocker uses CatchProbe’s cyber threat intelligence (CTI) to protect users while they browse. Every visited domain is checked against the ThreatWay reputation service in real time. If a site is malicious (malware, phishing, C2, scam, newly-registered risk, or bad reputation), the extension blocks access before harm occurs.
Key features
Real-time CTI lookups: Domain/URL reputation from CatchProbe ThreatWay.
On-device enforcement: Immediate block page with reason and IOC details.
Low latency & caching: Sub-100ms lookups with smart caching; offline fallback.
Audit & telemetry (optional): Non-PII event logs for security teams.
Privacy by design: No browsing history harvesting; data minimized.
Seamless ecosystem: Works with CatchProbe modules like ThreatWay, DarkMap and SmartDeveptive.
How it works
The extension observes the active tab’s domain.
It queries ThreatWay for reputation (over TLS).
If risk exceeds your policy threshold, the page is blocked and a reason is shown.
You can add the site to Allow or Block lists according to your policy.
Who is it for?
Security teams, MSSPs, and companies that need CTI-driven web protection.
Individuals who want proactive defense against phishing and malware sites.
Permissions & why we need them
declarativeNetRequest / host permissions – to block malicious requests instantly.
tabs / activeTab – to read the current tab URL for reputation checks.
storage – to save settings, cache, and local allow/deny lists.
We request minimal permissions required for protection. All communications use HTTPS. No ads, no sale of data.
Privacy
The extension processes domain information only for reputation queries.
No collection of full page content, keystrokes, or form data.
Logs (if enabled) are aggregated and non-PII for security analytics.
Data is encrypted in transit; retention follows your organization’s policy.
Requirements
Chrome/Chromium with Manifest V3.