Skip to main content

Documentation Index

Fetch the complete documentation index at: https://mintlify.com/S-PScripts/chromebook-utilities/llms.txt

Use this file to discover all available pages before exploring further.

GoGuardian is one of the most widely deployed student monitoring tools for managed Chromebooks. It enforces web filtering, monitors browsing history, provides screen viewing for teachers, sends chat messages, and can lock student screens or close tabs remotely. Its tight integration with Chrome — via a force-installed extension — makes it difficult to remove entirely, but numerous exploits have been discovered that target its XSS surface, cookie handling, tab limit enforcement, extension architecture, and DNS dependencies.
These methods are documented for educational and research purposes. Using them to circumvent monitoring systems at school may violate your school’s acceptable use policy.

Hard Disable

Tab Bypass

Bypasses GoGuardian’s tab limit by using an onbeforeunload handler that prevents tabs from being closed, then spamming the bookmarklet to open tabs beyond the limit.
Teachers can still see your screen. This bypass requires that your teacher has set a tab limit — try opening many tabs to prompt them to enable it.
1

Create the bookmarklet

Create a bookmark with the following URL:
javascript: window.onbeforeunload = ()=>{return false;}
2

Hold Ctrl and spam-click the bookmark

Hold Ctrl and spam-click the bookmark to open many about:blank pages, going well above the tab limit.
3

Handle the close prompt

If GoGuardian tries to close a tab and a prompt appears, click No and check Prevent this page from creating additional dialogues.
Alternative method:
  1. Open tabs until you hit the limit.
  2. Drag a tab that uses the onbeforeunload handler.
  3. Duplicate the new tab.
  4. Click No when prompted.
To undo: close all about:blank tabs.Credits: py660, 3kh0/ext-remover
Uses the “Read Aloud” extension to open audio playback tabs that slip past GoGuardian’s tab limit enforcement.Requirements: Ability to install extensions.
1

Install Read Aloud

Install the Read Aloud: A Text to Speech Voice Reader extension from the Chrome Web Store: https://chromewebstore.google.com/detail/read-aloud-a-text-to-spee/hdhinadidafjejdhmfkjgnolgimiaplp
2

Open a site with unsaved changes

Navigate to a site like IReady or Scratch that shows the “Are you sure you want to close?” warning when you try to close the tab.
3

Click the extension

Click the Read Aloud extension icon until you see the close warning. Click Cancel on the warning.
4

Audio tabs open

The extension will have opened tabs labelled “Read Aloud uses this tab for audio playback.” These bypass the tab limit.
Credits: Brandon421-ops

Lock Bypass

When a teacher disables your Chromebook through GoGuardian, web app shortcuts installed via Chrome still function in their own windows.
1

Install the site as an app beforehand

Before being locked, click the three-dot menu → More toolsCreate shortcut → check Open in window → save.
2

Get disabled by the teacher

Have your teacher activate the browsing disabled feature.
3

Open the app

Press the web app shortcut. Move the browsing disabled popup out of the way and enjoy the unblocked site.
Credits: Brandon421-ops
Bookmarking GoGuardian’s internal lock page URL and navigating to it directly sometimes bypasses the lock screen.
1

Create the bookmark

Bookmark: chrome-extension://haldlgldplgnggkjaafhelgiaglafanh/lock.html
2

When locked, click the bookmark

If your teacher locks your Chromebook, click the bookmark.
Credits: theskid22, Titanium Network
Uses GoGuardian’s own lock page to trigger an LTMEAT-style extension disable via rapid Ctrl+clicking.
1

Bookmark the lock page

Bookmark: chrome-extension://haldlgldplgnggkjaafhelgiaglafanh/lock.html
2

Open Extensions settings

Have chrome://extensions open in a tab.
3

Flood the lock page

Ctrl+click the bookmark 70+ times to open many copies.
4

Flip the switch quickly

Quickly go to chrome://extensions, click on GoGuardian, and click Allow access to file URLs very rapidly.
Credits: dkr44433, Brandon421-ops

History + Screen Bypass

Opens a popup window targeting about:blank with the noopener flag set. GoGuardian lacks permission to run on about:blank pages, so an iframe inside the popup loads sites without being monitored.
var myWindow = window.open("", "_blank", "popup;width=300;height=300;menubar=false;noopener;noreferrer");
var iframe = document.createElement("iframe");
iframe.src = "https://google.com/webhp?igu=1";
iframe.style = "position:fixed;border:0;top:0;left:0;width:100vw;height:100vh;";
myWindow.document.body.appendChild(iframe);
Run this code in the browser console. The iframe inside the popup loads your desired site outside GoGuardian’s monitoring context.Credits: ZXMushroom63

Anti Tab Close

Prevents GoGuardian from force-closing your tabs. Originally discovered around 2017–2018.Create a bookmark with one of these URLs:
javascript: onbeforeunload = (i) => 1;
or the compact form:
javascript:onbeforeunload=i=>1
Run the bookmarklet on any tab you want to protect from forced closure.Credits: Titanium Network, theskid22, Arsun

Chat Bypass

Exploits GoGuardian’s chat window to trigger a file URL switch that disables the extension.
1

Wait for the chat window

Wait until your teacher opens the chat window in GoGuardian.
2

Spam the close button

Spam the X button on the chat window until it stops re-opening.
3

Open the extension's manifest

Navigate to chrome-extension://haldlgldplgnggkjaafhelgiaglafanh/manifest.json.
4

Open extension settings

Open chrome://extensions/?id=haldlgldplgnggkjaafhelgiaglafanh.
5

Toggle the switch

Toggle the Allow access to file:// urls switch.
6

Close both tabs

GoGuardian is now disabled. Close both tabs.
Credits: carteeeee

Offliner

Tricks GoGuardian into showing you as offline by overwhelming Chrome with 150 new-tab pages in a separate desk/window.
1

Create a new tab bookmark folder

Create a new bookmark folder. Paste the new tab page URL into it 150 times.
2

Create a new desk

Create a new virtual desk in ChromeOS.
3

Open all tabs in a window

Open Chrome on the new desk, right-click the folder, and click Open all.
4

Switch desks without closing tabs

Exit that window without closing the tabs, and switch back to your original desk.
The teacher will see you as offline while you continue working on the original desk.Credits: Brandon421-ops

Req / NoGuardian

Uses the Requestly extension to cancel all requests to blocked.goguardian.com, preventing GoGuardian from ever redirecting to its block page.Requirements: Access to the Chrome Web Store.
1

Install Requestly

Install Requestly from: https://chromewebstore.google.com/detail/requestly-intercept-modif/mdnleldcmiljblolnjhpnblkcekpdkpa
2

Open HTTP Requests

Skip the initial setup popups. Go to HTTP Requests.
3

Create a CANCEL rule

Create a new Cancel request rule and set it to match URLs that include https://blocked.goguardian.com/.
GoGuardian’s blocking is now disabled.Credits: Brandon421-ops

Restart

A variant of the BrowserAction Crasher that targets GoGuardian specifically by spamming the extension icon for 90 seconds during a boot-time window.May not work after ChromeOS v120.
1

Prepare offline

Turn off Wi-Fi, sign out, and power off your Chromebook.
2

Pin the GoGuardian icon

Turn the Chromebook back on and pin the GoGuardian extension icon (not the license icon). Do not turn Wi-Fi back on yet.
3

Spam the icon

Spam-click the GoGuardian extension icon for approximately 1 minute and 30 seconds.
4

Turn on Wi-Fi

Turn Wi-Fi back on.
Credits: NuclearVP / rivalslegend, Hack Hive

Crasher (WebGL)

When WebGL crashes, GoGuardian’s rendering pipeline temporarily loses its redirect capability, allowing bookmarked URLs to load before the redirect fires.
1

Bookmark the target site

Create a bookmark for the website you want to visit.
2

Cause a WebGL crash

Trigger a WebGL crash — one known way is to be teleported to a large number of players within render distance while in fullscreen in EaglercraftX.
3

Rapidly click the bookmark

Rapidly click the bookmark about four times until GoGuardian stops redirecting you.
Credits: stpv22

Depose

Bypasses GoGuardian by blocking all the domains it relies on for its enforcement and policy delivery. Three methods are provided: self-hosted DNS, a public DNS, and a rooted Android VPN hotspot.Method 1 — Self-hosted DNS (NextDNS):
1

Register for NextDNS

Create an account at https://my.nextdns.io.
2

Add GoGuardian domains to the denylist

In the Denylist, add these domains:
  • ext.goguardian.com, GoGuardian.com, countvoncount.goguardian.com
  • inquisition.goguardian.com, quiddity.goguardian.com
  • x3-policy-maker.goguardian.com, x3-predictor.goguardian.com
  • panther.goguardian.com, ip.goguardian.com, snat.goguardian.com
  • waluigi.goguardian.com, blocked.goguardian.com, admin.goguardian.com
  • goguardian.com, account.goguardian.com, extapi.goguardian.com
  • ws-goguardian.pusher.com, history.google.com, clients4.google.com
  • signaler-pa.clients6.google.com, ogs.google.com, clients2.google.com
  • cdn.ampproject.org, safesearch.googleapis.com
3

Apply the DNS

Copy the DNS IP into your Chromebook network DNS settings.
4

Trigger a policy reset

Go to chrome-extension://haldlgldplgnggkjaafhelgiaglafanh and flip the Allow file access switch to reset the policy.
Method 2 — latpong22 Public DNS:Set your Chromebook DNS to 45.90.28.171 and 45.90.30.171, then flip the Allow file access switch on the GoGuardian extension page.Method 3 — Rooted Android VPN Hotspot:Use a rooted Android device with VPNHotspot + a VPN (Proton or Mullvad), connect your Chromebook to that hotspot, then flip the Allow file access switch.Credits: latpong22 — https://github.com/latpong22/GoGuardian_Depose/

Cork

Freezes GoGuardian by clicking its icon rapidly while offline. The extension turns dark grey when successfully frozen.Method 1:
1

Go offline and sign out

Turn off Wi-Fi and sign out.
2

Sign back in

Sign back in and open a new tab without restoring old tabs.
3

Spam the GoGuardian icon

Rapidly click the GoGuardian extension icon until it turns dark grey.
4

Turn on Wi-Fi

Turn Wi-Fi back on. Browse freely.
Method 2:
1

Go offline and toggle file access

Turn off Wi-Fi. Go to chrome://extensions/?id=haldlgldplgnggkjaafhelgiaglafanh and toggle the Allow access to file urls switch on and off.
2

Spam the icon

Rapidly click the GoGuardian icon until it turns dark grey.
3

Turn on Wi-Fi

Turn Wi-Fi back on.
This only bypasses GoGuardian. Other blockers such as Lightspeed or network-level blocks are not affected. Signing out will remove the bypass and you’ll need to repeat the process.
Credits: Brandon421-ops

Fever

Uses a GoGuardian student error page that contains an XSS vulnerability to flood the goguardian.com domain with cookies via an inline script.
1

Open the payload URL

Copy and open the Fever URL in a new tab:
https://student.goguardian.com/teacher/blocked.html?cs=[{"name": ""}, {"name": "<iframe srcdoc=\"<script>top.eval(atob(`Zm9yKGxldCBpID0gMDsgaSA8IDEwMDsgaSsrKSB7CiAgZG9jdW1lbnQuY29va2llID0gYHgke2l9PSR7ZW5jb2RlVVJJQ29tcG9uZW50KGJ0b2EoY3J5cHRvLmdldFJhbmRvbVZhbHVlcyhuZXcgVWludDhBcnJheSgyNSAqIDI1KSkpKX07ZXhwaXJlcz0ke25ldyBEYXRlKDJlMTQpLnRvVVRDU3RyaW5nKCl9O2RvbWFpbj1nb2d1YXJkaWFuLmNvbTtwYXRoPS9gOwp9`))</script>\"></iframe>"}]
2

Reload

The tab should be white. Reload it.
3

Wait for the error

If the GET request fails and you are left on an error screen, continue.
4

Clear cached sites

Visit chrome://restart to clear cached sites from GoGuardian.
To undo: On https://goguardian.com, click the lock icon → Cookies and site dataManage cookies → clear each site’s cookies listed there.Credits: akabutnice, 3kh0/ext-remover

Spam

An older bypass where rapidly opening a blocked link can sometimes cause GoGuardian to fail to intercept it.Patched on newest versions of GoGuardian.Method 1:
  1. Bookmark the link you want to access.
  2. Spam-click the bookmark until it unblocks.
Method 2:
  1. Turn off your Wi-Fi.
  2. Type and navigate to the URL in the address bar until the page starts loading.
  3. Turn Wi-Fi back on.
Credits: V4PL, Brandon421-ops

uBlock

Installs uBlock Origin and creates filters that block GoGuardian’s block page redirects, causing a redirect loop that eventually results in GoGuardian’s filter failing.Requirements: Ability to install uBlock Origin; GoGuardian must have a whitelist; uBlock’s install page must be whitelisted.
1

Install uBlock Origin

Install from: https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm
2

Open uBlock's filter settings

Go to the My filters tab: chrome-extension://cjpalhdlnbpafiamejdnhcphjbkeiagm/dashboard.html#1p-filters.html
3

Add GoGuardian block page filters

Add these two entries:
https://blocked.goguardian.com/
https://student.goguardian.com/teacher/blocked.html
4

Apply and navigate to a blocked page

Apply the changes. Navigate to a page that isn’t on GoGuardian’s whitelist. GoGuardian and uBlock will redirect each other until GoGuardian starts to fail. Duplicating the seizing tab can extend the effect.
If you cannot install uBlock, try AdBlock Plus or a redirector extension that redirects back to a blocked page.
Credits: Brandon421-ops

Build docs developers (and LLMs) love

Get started for freeTalk to us