Is "Zerotouser Embedded Assistant" on Chrome Web Store Safe to Install?
ZeroToUser - AI Social Lead Finder & Growth Engine Stop hunting for leads. Automatically surface high-intent conversations on X (Twitter) and Reddit, and craft the perfect reply to convert them. ZeroToUser is your automated sales scout for the social era. It’s designed for founders and builders who need to find customers, not just followers. By surfacing public conversations where real problems are being discussed, ZeroToUser bridges the gap between a user’s pain point and your solution. Why install ZeroToUser? Find Hidden Leads: We scan the noise on X (Twitter) and Reddit to surface public conversations from users who are actively seeking solutions, expressing frustration, or asking for recommendations. Identify High Intent: Don't waste time on "window shoppers." Our AI filters through public threads to highlight "Intent Signals"—specific keywords and sentiments that indicate a person is ready to buy or switch tools. Contextual AI Replies: Once a high-intent conversation is surfaced, generate thoughtful, value-add responses that position you as a helpful expert, not a salesperson. Bridge the Distribution Gap: Ideal for early-stage startups ($0 MRR) that need to find their first 100 customers by participating in relevant, existing discussions. Key Features: Multi-Platform Monitoring: Tracks public keywords and "complaints" across X and Reddit simultaneously. Intent-Based Filtering: Uses AI to distinguish between casual chatter and genuine business opportunities. Seamless Integration: Works directly within your browser to help you engage the moment a lead appears. Privacy & Transparency: ZeroToUser is built on the principle of transparency. Public Data Only: Our tool works by surfacing public conversations that are already visible to the community; we do not access private DMs or restricted data. User-Centric: We empower you to be helpful in the public square, turning "noise" into meaningful human connections. Stop searching. Start solving. Install ZeroToUser and find your next paying customer by joining the right conversation.
Risk Assessment
Analyzed143 security findings detected across all analyzers
Chrome extension requesting 15 permissions
Severity Breakdown
Finding Categories
YARA Rules Matched
8 rules(20 hits)Requested Permissions
15 permissionsIntercept, modify, and block all network requests
About This Extension
Detailed Findings
43 totalYARA Rule Matches
8 rulesIndicators of Compromise
Network indicators, suspicious strings, and potential IoCs extracted during analysis
All Indicators · 94
detected Domain: inboxtabbtn.click XIOC detected Domain: inboxtabbtn.click
extracted_from_files
detected Domain: style.id XIOC detected Domain: style.id
extracted_from_files
detected Domain: items.map XIOC detected Domain: items.map
extracted_from_files
detected Domain: api.zerotouser.com XIOC detected Domain: api.zerotouser.com
extracted_from_files
detected URL: https://twitter.com/compose/tweet XIOC detected URL: https://twitter.com/compose/tweet
extracted_from_files
detected URL: https://zerotouser.com/* XIOC detected URL: https://zerotouser.com/*
extracted_from_files
detected URL: https://www.zerotouser.com/* XIOC detected URL: https://www.zerotouser.com/*
extracted_from_files
detected URL: https://twitter.com/* XIOC detected URL: https://twitter.com/*
extracted_from_files
detected URL: https://old.reddit.com/* XIOC detected URL: https://old.reddit.com/*
extracted_from_files
detected URL: https://www.zerotouser.com/guide/assistant XIOC detected URL: https://www.zerotouser.com/guide/assistant
extracted_from_files
detected URL: https://www.zerotouser.com/login XIOC detected URL: https://www.zerotouser.com/login
extracted_from_files
detected URL: https://www.zerotouser.com/dashboard/today XIOC detected URL: https://www.zerotouser.com/dashboard/today
extracted_from_files
detected URL: https://clients2.google.com/service/update2/crx XIOC detected URL: https://clients2.google.com/service/update2/crx
extracted_from_files
detected URL: https://x.com/* XIOC detected URL: https://x.com/*
extracted_from_files
detected URL: https://www.reddit.com/* XIOC detected URL: https://www.reddit.com/*
extracted_from_files
detected URL: https://reddit.com/* XIOC detected URL: https://reddit.com/*
extracted_from_files
detected URL: https://api.zerotouser.com/* XIOC detected URL: https://api.zerotouser.com/*
extracted_from_files
detected URL: https://x.com/handle/status/123 XIOC detected URL: https://x.com/handle/status/123
extracted_from_files
detected URL: https://zerotouser.com/ XIOC detected URL: https://zerotouser.com/
extracted_from_files
detected URL: https://www.zerotouser.com/ XIOC detected URL: https://www.zerotouser.com/
extracted_from_files
detected Domain: feedunreadids.map XIOC detected Domain: feedunreadids.map
extracted_from_files
detected URL: https://x.com/i/api/* XIOC detected URL: https://x.com/i/api/*
extracted_from_files
detected URL: https://x.com XIOC detected URL: https://x.com
extracted_from_files
detected URL: https://api.zerotouser.com/api/v1/ai/generate-reply XIOC detected URL: https://api.zerotouser.com/api/v1/ai/generate-reply
extracted_from_files
detected URL: https://api.zerotouser.com XIOC detected URL: https://api.zerotouser.com
extracted_from_files
detected URL: https://twitter.com XIOC detected URL: https://twitter.com
extracted_from_files
detected Domain: btn.click XIOC detected Domain: btn.click
extracted_from_files
detected Domain: ev.target XIOC detected Domain: ev.target
extracted_from_files
detected Domain: a.name XIOC detected Domain: a.name
extracted_from_files
detected Domain: chrome.storage XIOC detected Domain: chrome.storage
extracted_from_files
detected Domain: p.bt XIOC detected Domain: p.bt
extracted_from_files
detected Domain: jd.kn XIOC detected Domain: jd.kn
extracted_from_files
detected Domain: f.pr XIOC detected Domain: f.pr
extracted_from_files
detected Domain: aha.new XIOC detected Domain: aha.new
extracted_from_files
detected Domain: create.total XIOC detected Domain: create.total
extracted_from_files
detected Domain: scout.total XIOC detected Domain: scout.total
extracted_from_files
detected Domain: engage.total XIOC detected Domain: engage.total
extracted_from_files
detected Domain: lead.name XIOC detected Domain: lead.name
extracted_from_files
detected Domain: statusbuttons.map XIOC detected Domain: statusbuttons.map
extracted_from_files
detected Domain: data.quest XIOC detected Domain: data.quest
extracted_from_files
detected Domain: quest.engage.total XIOC detected Domain: quest.engage.total
extracted_from_files
detected Domain: top3rows.map XIOC detected Domain: top3rows.map
extracted_from_files
detected Domain: quest.date XIOC detected Domain: quest.date
extracted_from_files
detected Domain: quest.scout.total XIOC detected Domain: quest.scout.total
extracted_from_files
detected Domain: actions.style.gap XIOC detected Domain: actions.style.gap
extracted_from_files
detected Domain: replybtn.click XIOC detected Domain: replybtn.click
extracted_from_files
detected Domain: rowel.dataset.top XIOC detected Domain: rowel.dataset.top
extracted_from_files
detected Domain: followtasks.map XIOC detected Domain: followtasks.map
extracted_from_files
detected Domain: ft.lead.id XIOC detected Domain: ft.lead.id
extracted_from_files
detected Domain: l.id XIOC detected Domain: l.id
extracted_from_files
detected Domain: snip.you XIOC detected Domain: snip.you
extracted_from_files
detected Domain: automodequeue.map XIOC detected Domain: automodequeue.map
extracted_from_files
detected Domain: t.id XIOC detected Domain: t.id
extracted_from_files
detected Domain: lastcrmdata.quest XIOC detected Domain: lastcrmdata.quest
extracted_from_files
detected Domain: feedreadids.map XIOC detected Domain: feedreadids.map
extracted_from_files
detected Domain: crmscoutskippedleadids.map XIOC detected Domain: crmscoutskippedleadids.map
extracted_from_files
detected Domain: it.id XIOC detected Domain: it.id
extracted_from_files
detected Domain: crmengagedismissedids.map XIOC detected Domain: crmengagedismissedids.map
extracted_from_files
detected Domain: redd.it XIOC detected Domain: redd.it
extracted_from_files
detected Domain: lead.id XIOC detected Domain: lead.id
extracted_from_files
detected Domain: t.lead.id XIOC detected Domain: t.lead.id
extracted_from_files
detected Domain: kw.id XIOC detected Domain: kw.id
extracted_from_files
detected Domain: newlist.map XIOC detected Domain: newlist.map
extracted_from_files
detected Domain: k.id XIOC detected Domain: k.id
extracted_from_files
detected Domain: btn.dataset.tab XIOC detected Domain: btn.dataset.tab
extracted_from_files
detected Domain: panel.id XIOC detected Domain: panel.id
extracted_from_files
detected Domain: opentoday.target XIOC detected Domain: opentoday.target
extracted_from_files
detected Domain: opentodaycrm.target XIOC detected Domain: opentodaycrm.target
extracted_from_files
detected Domain: p.id XIOC detected Domain: p.id
extracted_from_files
detected URL: https://twitter.com/i/api/* XIOC detected URL: https://twitter.com/i/api/*
extracted_from_files
detected Domain: fbtn.click XIOC detected Domain: fbtn.click
extracted_from_files
detected Domain: p.name XIOC detected Domain: p.name
extracted_from_files
detected Domain: list.map XIOC detected Domain: list.map
extracted_from_files
detected Domain: list2.map XIOC detected Domain: list2.map
extracted_from_files
detected Domain: btn.dataset.id XIOC detected Domain: btn.dataset.id
extracted_from_files
detected Domain: overlay.id XIOC detected Domain: overlay.id
extracted_from_files
detected Domain: overlay.style.top XIOC detected Domain: overlay.style.top
extracted_from_files
detected Domain: trigger.click XIOC detected Domain: trigger.click
extracted_from_files
detected Domain: el.click XIOC detected Domain: el.click
extracted_from_files
detected Domain: www.reddit.com XIOC detected Domain: www.reddit.com
extracted_from_files
detected Domain: old.reddit.com XIOC detected Domain: old.reddit.com
extracted_from_files
detected Domain: tab.id XIOC detected Domain: tab.id
extracted_from_files
detected Domain: chrome.sidepanel.open XIOC detected Domain: chrome.sidepanel.open
extracted_from_files
detected Domain: date.now XIOC detected Domain: date.now
extracted_from_files
detected Domain: sender.tab XIOC detected Domain: sender.tab
extracted_from_files
detected Domain: reddit.com XIOC detected Domain: reddit.com
extracted_from_files
detected Domain: btn.id XIOC detected Domain: btn.id
extracted_from_files
detected Domain: a.author XIOC detected Domain: a.author
extracted_from_files
detected Domain: x.com XIOC detected Domain: x.com
extracted_from_files
detected Domain: twitter.com XIOC detected Domain: twitter.com
extracted_from_files
detected Domain: 嵌入式版本需求文档.md XIOC detected Domain: 嵌入式版本需求文档.md
extracted_from_files
detected Domain: zerotouser.com XIOC detected Domain: zerotouser.com
extracted_from_files
detected Domain: www.zerotouser.com XIOC detected Domain: www.zerotouser.com
extracted_from_files
detected URL: https://x.com/i/status/$ XIOC detected URL: https://x.com/i/status/$
extracted_from_files
AI Security Report
AI Security Review
Risky Plugins reviewed this extension with an AI-assisted security workflow on 2026-04-27. The review verdict is likely false positive with 80% confidence.
Recommended action: suppress false positive.
Risk context: HIGH risk, score 67/100.
Evidence context: threat category none; evidence quality moderate.
This extension presents a classic case of IoC extractor false positives overwhelming legitimate code. The extension "Zerotouser Embedded Assistant" describes itself as a CRM assistant for X (Twitter) and Reddit, integrated with zerotouser.com, which is a legitimate use case.
The 100 IoC findings are almost entirely false positives. The XIOC extractor misreads JavaScript property access chains as domains: ev.target (from XIOC-DOMAIN-ev.target), btn.click (from XIOC-DOMAIN-btn.click), and chrome.storage (from XIOC-DOMAIN-chrome.storage) are all standard JavaScript properties, not network domains. These are documented false positive patterns in the CVEQ platform. The remaining IoCs include legitimate social media platforms (https://x.com, https://twitter.com) and the extension's own API (https://api.zerotouser.com), which matches the stated purpose.
Network findings in sidepanel.js at lines 2754, 679, and 840 show fetch calls, which are expected for a CRM assistant that needs to communicate with its backend API. These are legitimate network operations for the described functionality.
Critically, there are ZERO malware signatures and ZERO obfuscation findings. The 20 code-smell findings are all low severity and, per the threat model guidelines, should be treated as noise. The extension has no evidence of credential theft, browser hijacking, proxyware, or any other malicious behavior.
The strongest counterargument is the generic Gmail developer address ([email protected]) and zero user count. While these are minor concerns, they do not constitute evidence of malicious behavior. Many legitimate new extensions start with zero users and use personal email addresses. Without malware signatures, obfuscation, or suspicious domain activity beyond the documented false positives, these factors alone do not justify a malicious verdict.
The verdict is likely_false_positive because the finding volume is driven by known IoC extractor artifacts (property chains as domains) rather than actual malicious indicators.
Key Reasons
- Zero malware signatures detected
- Zero obfuscation findings
- IoC findings are property access chains misread as domains (ev.target, btn.click, chrome.storage)
- Network calls to extension's own API match stated purpose
- No evidence of credential theft, hijacking, or data exfiltration
False Positive Considerations
- Property access chains misread as domains (ev.target, btn.click, chrome.storage)
- Legitimate social media domains flagged as IoCs (x.com, twitter.com)
- Low-severity code-smell findings classified as noise
- No malware signatures or obfuscation present
Source Code Not Available
Source code is not available for this version of the extension.
Frequently Asked Questions
Similar Extensions
Related extensions from the same publisher or marketplace
Ship Xanh copy sản phẩm, nhân bản shop, hiển thị % phí sàn, lượt bán tháng
[email protected]
SVG to AVIF Converter [ShiftShift]
[email protected]
ChromeCompare
[email protected]
CAI Tools
[email protected]
Auto Gmail - ChatGPT AI for email inbox
[email protected]
EC Seller Tools
[email protected]