This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ Log in to ask a question

More inSecurly and other mischievous stuff

Kim_Nilsson
Admin Moderator

‎11-14-2023 09:08 AM

Some or all of these you may already have blocked one way or another.

https://www.disablesecurly.com/

https://insecurly-vercel.vercel.app/

https://discord.com/invite/unblock

https://ading.dev/blog/posts/securly_bypass.html

This next thing looks to be a way around everything by running a broken kiosk mode.

https://www.skiovox.com/skiovox.pdf

Many exploits. https://3kh0.github.io/ext-remover/

 

--
https://wheretofind.me/@NoSubstitute
Topics:
Reply
12 REPLIES 12

jasoncrcsd
Contributor II

‎11-15-2023 06:24 AM

I hadn't seen these. Yea blocked now😎

0 Kudos
Reply

Kelly_McMahon
Contributor

‎11-15-2023 07:09 AM

Thanks for posting!

0 Kudos
Reply

LydiaVanThiel
New Contributor III

‎11-15-2023 10:19 AM

Thanks, @Kim_Nilsson 

Any chance you have a master list of all the 'many exploits' that you have blocked?  Much thanks in advance if you do and you are willing to share.

Reply

Kim_Nilsson
Admin Moderator
In response to LydiaVanThiel

‎11-24-2023 08:22 AM - edited ‎02-01-2024 09:10 AM

These are the URLs I still have in URL blocking.

lenovo-driver-download.com
sh1mmer.me
chrome://net-export
luphoria.com
alicesworld.tech
bypassi.com
chrome://version
*/html/crosh.html
chrome-extension://nkoccljplnhpfnfiajclkommnmllphnl/html/crosh.html
chrome-untrusted://crosh
chrome-untrusted://terminal/html/terminal.html
chrome://chrome/history-frame
chrome://flags
chrome://history
chrome://history-frame
chrome://os-settings/accountManager
chrome://os-settings/syncSetup
chrome://os-settings/syncSetup/advanced
chrome://settings/cleanup
chrome://settings/clearBrowserData
chrome://settings/reset
chrome://settings/resetProfileSettings
chrome://settings/signOut
chrome://settings/syncSetup
chrome://settings/syncSetup/advanced
accounts.google.com/AccountChooser
myaccount.google.com/activitycontrols
myactivity.google.com/myactivity
translate.google.com/translate?sl=en&tl=fr&u=pornhub.com
translate.google.com/translate?sl=en&tl=sv&u=pornhub.com
translate.google.com/translate?sl=sv&tl=en&u=pornhub.com
translate.google.com/translate?sl=sv&tl=fr&u=pornhub.com
www.youtube.com/channel_switcher
www.youtube.com/create_channel
google.zoom.us/google/oauth/
zoom.us/signin
zoom.us/signup
zoom.us/test
javascript colon //*  (Type a colon and no spaces before or after.)

Like this.

Skärmavbild 2024-02-01 kl. 18.09.26.png

--
https://wheretofind.me/@NoSubstitute
Reply

LydiaVanThiel
New Contributor III
In response to Kim_Nilsson

‎11-24-2023 09:50 AM

Thanks.

Now I want to sit with a Chromebook signed in as a Grade 7 student and see where each of these take me ... THEN add them to my URL block list.   😏. Most of them are understandable.

Here is one that came across my desk this week:  student entered *desmos.cam* rather than *desmos.com*. Innocent mistake that had all sorts of redirects ...

Reply

jmarin
New Contributor
In response to Kim_Nilsson

‎02-01-2024 05:57 AM

I am assuming that last entry is supposed to stop students from running javascripts in the omnibox, but when I add that to the block list, it says invalid. I am looking to try and block that feature, but cannot find a way to do so. Kids are getting around Securly by using the javascript:fetch command to get code from sites and kill the extension.

0 Kudos
Reply

Kim_Nilsson
Admin Moderator
In response to jmarin

‎02-01-2024 09:09 AM

This forum messes it up.

Skärmavbild 2024-02-01 kl. 18.09.26.png

--
https://wheretofind.me/@NoSubstitute
Reply

jmarin
New Contributor
In response to Kim_Nilsson

‎02-09-2024 04:34 AM

Yes, thank you. I eventually figured that out. I had to reset some chromebook profiles for the workaround to be disabled completely, but this worked for the issue we were having.

0 Kudos
Reply

gritisw
New Contributor
In response to Kim_Nilsson

‎02-09-2024 08:56 AM

I have also added chrome://kill and chrome://hang

0 Kudos
Reply

Kim_Nilsson
Admin Moderator

‎11-25-2023 05:12 AM

@kcalderw had a few more in the K12 discord.

I haven't tested, nor blocked any of these, yet.

https://github.com/ading2210/dextensify

https://3kh0.github.io/ext-remover/

https://dextensify.pages.dev/

--
https://wheretofind.me/@NoSubstitute
Reply

JimmyR
New Contributor III

‎11-28-2023 05:53 AM

Nice - thanks for the list.  I have many of them on my block list but there are some new ones so I appreciate seeing this!

0 Kudos
Reply

dochxp
Contributor

‎02-11-2024 07:59 AM

Thanks. This has been really useful. 

0 Kudos
Reply
  • © 2023 Google. All rights reserved.
  • Privacy Policy
  • Terms of Service
  • Community Guidelines