High-risk tools in IRA-RESEARCHER
18 of the 44 tools in IRA-RESEARCHER are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
ira_audit_accessibilityExecuteRun accessibility audit
-
ira_clickExecuteClick by index or coordinates
-
ira_dragExecuteDrag from one element to another
-
ira_go_backExecuteGo back in browser history
-
ira_go_forwardExecuteGo forward in browser history
-
ira_hoverExecuteHover over an element
-
ira_interceptExecuteBlock or passthrough network requests matching a URL pattern
-
ira_javascriptExecuteExecute JavaScript in page
-
ira_keyboardExecutePress keyboard shortcuts (Escape, Enter, Tab, arrows, Ctrl+C, etc.)
-
ira_navigateExecuteNavigate to a URL with auto-retry on empty DOM
-
ira_new_tabExecuteOpen a new tab (optionally navigate to a URL)
-
ira_reloadExecuteReload the current page
-
ira_scrollExecuteScroll the page
-
ira_selectExecuteSelect a dropdown option
-
ira_set_viewportExecuteSet browser viewport size (mobile, tablet, desktop)
-
ira_switch_tabExecuteSwitch to a different tab
-
ira_typeExecuteType text into an input field
-
ira_waitExecuteWait for seconds or element
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.