I have picked this one a while back from website security check post at ghacks, but it managed to get lost in my bookmarks until recently.
Insertion of malicious code into web page is typical outcome of site getting hacked and it is often tricky to catch and figure out. Especially if there is effort spent to hide from site admin. Unmask Parasites is online service that breaks down page into links and scripts to make it easier to spot unwanted additions.
What it does
Site takes URL as input and after snappy analysis gives you report results. There is rough overall verdict (clean or not) but site itself urges to take a look at details.
Report includes plenty of details, including:
- redirect status, if present;
- page generator tag;
- Google safe browsing estimate about page;
- detailed breakdown of links on page;
- suspicious scripts.
List of links makes bulk of report and is most useful part. Links are grouped by domain, are marked with amount and split into anchor texts and actual URLs. It makes it very easy to spot something that shouldn’t be on page.
Service URL has easy format and bookmarklet is also provided, makes it convenient to check multiply pages.
While link analysis is comprehensive, script analysis is much less so. Common scripts seem to be skipped without mention. Which doesn’t mean they are harmless – Google AdSense is not included in report, but maliciously added or changed code for it would be nothing good.
I had also noticed that newer asynchronous Google Analytics code is marked as suspicious.
It would make sense to include images. They are commonly used in tracking scripts and spreading malware through images alone is not unheard off.
Excellent and easy to interpret security report, that slightly lacks in scripts department. It is not absolutely comprehensive, but is excellent place to start.