A demonstration of how websites can extract autofilled personal information from your browser without you explicitly submitting a form. This project aims to raise awareness of the privacy risks associated with using autocomplete fields on websites.
- Real-Time Autofill Detection: Automatically detects and logs autofilled fields from the browser.
- Formatted Data Display: Displays all extracted personal information in a styled UI.
- No Submit Required: Demonstrates how data can be extracted without a user clicking the submit button, using a visible email field as an example for the demo, while other fields remain hidden but still auto-filled.
To run this project locally, ensure you have the following installed:
-
Clone the repository:
git clone https://github.com/cbaezp/web-form-sniffer.git cd web-form-sniffer -
Install dependencies: Using npm:
npm install
Or using yarn:
yarn install
-
Start the development server: Using npm:
npm run dev
Or using yarn:
yarn dev
-
Open the app in your browser: By default, the app runs at
http://localhost:3000. Visit the URL in your browser to view the project.
- Open the app and navigate to the form page.
- Use your browser's autocomplete functionality to populate the fields (email).
- Check how data is extracted and displayed without pressing the submit button.
This project is for educational purposes only. It demonstrates potential risks of using autocomplete on the web. Do not use this code for malicious purposes. Always respect user privacy.
This project is licensed under the MIT License.
Inspired by the need to educate users about online privacy risks. Special thanks to the open-source community for tools and resources.