Behavry Integration — Browser Extension
The Behavry browser extension monitors AI service usage in the browser — capturing paste events, form submissions, and page visits across 12 AI web services and sending them to the Behavry backend for audit logging and DLP scanning.
Supported browsers: Chrome, Edge, Brave (Chromium-based only). Firefox support is planned.
Covered AI Services
| Service | Domain(s) Monitored |
|---|---|
| ChatGPT | chatgpt.com, chat.openai.com |
| Claude | claude.ai |
| Gemini | gemini.google.com |
| Perplexity | perplexity.ai, www.perplexity.ai |
| DeepSeek | chat.deepseek.com, deepseek.com |
| Copilot | copilot.microsoft.com, www.bing.com |
| Poe | poe.com |
| HuggingChat | huggingface.co/chat |
| You.com | you.com |
| Phind | phind.com, www.phind.com |
| Mistral Le Chat | chat.mistral.ai |
| GitHub Copilot Chat | github.com/copilot |
What Is Captured
| Event | Trigger | Data Captured |
|---|---|---|
paste | User pastes text into AI input | Pasted text (DLP scanned) |
submit | User submits a prompt | Prompt text (DLP scanned) |
visit | User navigates to a covered service | URL, timestamp |
DLP scanning runs in the content script — text is scanned before being sent to the backend. The backend only receives the event metadata and any DLP findings (pattern names, severity) — not the full raw text for high-severity findings.
Installation
Option A — Load Unpacked (Development)
- Open Chrome →
chrome://extensions - Enable Developer Mode (top right toggle)
- Click Load unpacked
- Select the
extension/folder from the Behavry repo - The Behavry icon appears in the toolbar
Option B — Install from CRX (Packaged)
Not yet available — coming in Phase 3 production release.
Configuration
The extension reads its backend URL from:
- Extension popup → Settings → Backend URL field
- Default:
http://localhost:8000
To connect to a remote Behavry instance:
- Click the Behavry icon in the toolbar
- Go to Settings
- Enter your Behavry backend URL (e.g.
https://behavry.yourcompany.com) - Click Save
Admin Token
The extension uses an admin token to authenticate events. On first run:
- Click the Behavry icon → Settings
- Enter your admin username and password
- Click Authenticate — the extension stores the token in extension storage (not accessible to web pages)
Or configure via the backend URL directly — the extension will prompt for credentials if no token is stored.
Verify
- Navigate to chatgpt.com
- Type a message and submit it
- Open http://localhost:5173 → Live Activity
- You should see a
browser_eventaction entry for the submit
For DLP testing, paste a string containing a credit card number (e.g. 4111 1111 1111 1111) into the prompt box. The event will appear with dlp_findings populated.
Privacy Notes
- Text is scanned locally (in the content script) before transmission
- Raw prompt text is not stored in the Behavry audit log for low-severity events
- High-severity DLP matches (critical) are flagged; the matched substring is included in findings for forensic purposes
- Page titles and URLs are captured for visit events but not full page content
Known Limitations
- Firefox: Not supported (Manifest V3 content script API differences)
- ChatGPT Desktop App: Not covered — TLS certificate pinning prevents proxy inspection. See the FAQ for details.
- Private/Incognito windows: Extension is disabled in incognito by default (Chrome security policy). Enable in
chrome://extensionsif required. - Single-page app navigation: Some AI services use client-side routing — visit events are captured via the History API hook.