browsertotal

n8n community node for BrowserTotal security scanning - scan URLs, browser extensions, npm packages, and more for threats

Package Information

Downloads: 2 weekly / 29 monthly
Latest Version: 0.1.0
Author: BrowserTotal

Available Nodes

BrowserTotal icon
BrowserTotal
Scan URLs, extensions, and packages for security threats using BrowserTotal

Documentation

BrowserTotal

n8n-nodes-browsertotal

npm version license node version

n8n community node for scanning URLs, browser extensions, IDE plugins, and packages for security threats using BrowserTotal.com

Why BrowserTotal?

Real Browser Analysis - Unlike static analysis tools, BrowserTotal launches a real browser instance to analyze URLs and extensions exactly as they would execute in a user's environment. This catches threats that only activate in actual browser contexts.

Dynamic Behavior Tracing - Every network request, DOM manipulation, cookie access, and API call is traced and recorded. See what extensions and websites actually do, not just what their code looks like.

Sandboxed Execution - All analysis runs in an isolated, sandboxed browser environment. Test suspicious URLs and extensions safely without risking your system.

AI-Powered Threat Detection - Combines runtime behavior analysis with LLM-powered code review to identify obfuscated malware, data exfiltration, and sophisticated supply chain attacks.

Multi-Platform Coverage - Scan browser extensions (Chrome, Firefox, Edge, Safari, Opera, Brave), IDE plugins (VS Code, JetBrains), and packages (npm, PyPI, WordPress) - all through a unified node.

Supported Platforms

Platform Operation Description
URLs Scan URL Scan any URL for security threats
Chrome Scan Browser Extension Chrome Web Store extensions
Firefox Scan Browser Extension Firefox Add-ons
Edge Scan Browser Extension Microsoft Edge Add-ons
Opera Scan Browser Extension Opera Add-ons
Safari Scan Browser Extension Safari Extensions
Brave Scan Browser Extension Brave Extensions
VS Code Scan VS Code Extension Visual Studio Marketplace extensions
JetBrains Scan JetBrains Plugin IntelliJ, PyCharm, WebStorm plugins
npm Scan npm Package npm packages
PyPI Scan PyPI Package Python packages
WordPress Scan WordPress Plugin WordPress plugins

Installation

In n8n

  1. Go to Settings > Community Nodes
  2. Select Install
  3. Enter n8n-nodes-browsertotal and click Install

Manual Installation

npm install n8n-nodes-browsertotal

Operations

Scan URL

Analyze a URL for security threats including malware, phishing, and suspicious content.

Parameters:

  • URL - The URL to scan (e.g., https://example.com)

Scan Browser Extension

Check browser extensions for malicious code, excessive permissions, or suspicious behavior.

Parameters:

  • Extension ID - The extension identifier
  • Browser Store - Chrome, Firefox, Edge, Opera, Safari, or Brave

Scan VS Code Extension

Verify the safety of VS Code extensions before installing them in your development environment.

Parameters:

  • Extension ID - The extension ID in publisher.extension-name format

Scan JetBrains Plugin

Scan JetBrains IDE plugins (IntelliJ, PyCharm, WebStorm, etc.) for security issues.

Parameters:

  • Plugin ID - The JetBrains plugin ID

Scan npm Package

Detect supply chain attacks and malicious code in npm packages.

Parameters:

  • Package Name - The npm package name

Scan PyPI Package

Check Python packages for security vulnerabilities and malicious content.

Parameters:

  • Package Name - The PyPI package name

Scan WordPress Plugin

Analyze WordPress plugins for security issues and vulnerabilities.

Parameters:

  • Plugin Slug - The WordPress plugin slug

Output

All operations return a result object containing:

Field Description
status Threat status: safe, suspicious, malicious, unknown, or error
score Numeric threat score (0-100, where 100 is safest)
threats Array of detected threats with type, severity, and description
scanUrl Direct link to the full scan report on BrowserTotal
timestamp When the scan was performed

Example Output

{
  "url": "https://example.com",
  "status": "safe",
  "score": 100,
  "threats": [],
  "scanUrl": "https://browsertotal.com/analysis/urls/...",
  "timestamp": "2024-01-15T10:30:00.000Z"
}

Options

Option Type Default Description
Headless Mode Boolean true Run the browser in headless mode
Timeout (ms) Number 420000 Maximum time to wait for scan results (7 minutes)
Disable AI Analysis Boolean true Skip AI-powered analysis for faster scans

Use Cases

Security Automation Workflows

  • Phishing Detection: Automatically scan URLs from emails or messages
  • Supply Chain Security: Scan npm/PyPI packages before adding to projects
  • Extension Vetting: Verify browser extensions before deploying to enterprise
  • Continuous Monitoring: Schedule regular scans of critical dependencies

Example Workflow

  1. Trigger: Webhook receives a URL to check
  2. BrowserTotal: Scan the URL for threats
  3. IF: Check if status is malicious or suspicious
  4. Slack: Send alert if threat detected
  5. Airtable: Log scan results

Requirements

  • Node.js 22 or higher
  • n8n version 1.0 or higher
  • Chromium browser (installed automatically via Puppeteer)

License

MIT

Links

Discussion