Does anyone know of an easy way to determine which browser tab out of eh lets just say many many dozens tried to load content from a specific URL?
-
Does anyone know of an easy way to determine which browser tab out of eh lets just say many many dozens tried to load content from a specific URL? Trying to figure out which tab my home network's router just blocked access to as it thinks that URL is malware (relatively sure it is wrong - the URL blocked was for Tailgraph (not putting the full URL in just in case it is correct) which as far as I know isn't a malware vector but I'm not very familiar with it.
(I'm on Safari on the latest MacOS)
-
@Rycaut
fewer tabs might help. (I limit myself to 8.) -
@PJ_Evans heh perhaps but not viable at the moment I have a lot of different projects and things open at the moment. For now closing a lot by of tabs isn’t a solution for me (and this is with just one browser open - I have a second that use semi-regularly with a different set of open tabs)
-
Gabriel Pettierreplied to Shannon Clark last edited by
@Rycaut if you only have the url, i don’t know, but if you can get the full query, you might find a referer field in the headers https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Referer that should be the page your browser was displaying at the time.
-
Shannon Clarkreplied to Gabriel Pettier last edited by
@tshirtman yeah challenge is not sure if there is a log file on my Mac that shows all of the requests my local browsers made (if there is it’s a bit of a security nightmare I imagine) And I’m fairly certain this isn’t a full page but some component on some page (possibly inside of JavaScript like an ad block) loading something from this URL which seems to be used to create “open graph” images (which don’t seem to be widely used however Google is next to useless here)
-
Gabriel Pettierreplied to Shannon Clark last edited by
@Rycaut yeah, i don’t think the browser does that, (or should, indeed), i’m not sure how the referer behaves if the query is from an iframe in the page, so indeed there might be multiple levels of indirection, and yeah, it could also be an extension in your browser.
Heck, it could even be a non-browser application fetching info for programmatic usage.If you think it might happen again, you could use mitmproxy to capture/monitor all your traffic.
-
Shannon Clarkreplied to Gabriel Pettier last edited by
@tshirtman I’m relatively certain it isn’t some other application (fresh reboot of my system after updating to the new OS so I’m fairly certain what was running) so pretty sure it’s a browser tab. And I’m somewhat certain it is something that doesn’t load every time the page is loaded because it hasn’t been being blocked like this frequently (I get an alert every time my router blocks a request like this and it is infrequent). But also likely a tab I haven’t used recently that reloaded on reboot