Skip to main content

Documentation Index

Fetch the complete documentation index at: https://mintlify.com/S-PScripts/chromebook-utilities/llms.txt

Use this file to discover all available pages before exploring further.

Securly is a web filtering extension widely deployed on school-managed Chromebooks. It intercepts web requests, blocks content by category or URL, and in some configurations displays monitoring overlays. Because it operates as a Chrome extension rather than a network-level filter, it is vulnerable to the same extension disabling techniques as other managed extensions, plus several Securly-specific bypasses that exploit its cookie handling, URL parsing, and sync dependencies.

Insecurly

Insecurly is a purpose-built bypass that only works for Securly. It uses several hosted mirror sites to bypass the filter.Visit any of the following URLs. If the page is blocked, append #translate.google.com to the end of the URL:A full up-to-date list is maintained at: https://chrose.netlify.app/detail/INSECURLYCredits: Bypassi
For users who see Securly’s monitoring overlay (blue dots) and cannot complete Insecurly due to them, this method uses uBlock Origin Lite’s custom filter keyboard shortcut to block the overlay elements.Requirements: uBlock Origin Lite installed by your school; blue dot overlay present.
1

Open keyboard shortcuts

Go to chrome://extensionsKeyboard shortcuts.
2

Bind the custom filter shortcut

Find uBlock Origin Lite in the list. Bind the Create a custom filter action to a keybind of your choice (e.g., Ctrl+Search+Q).
3

Browse and filter the dots

Open your proxy or browsing tabs. When the blue dots appear, press your keybind combination. Select the dot elements in the picker and click the + button to add them as a filter.
The overlay will no longer appear on subsequent page visits.Credits: thefakesydney, Titanium Network

Killcurly

Signs out of the Google account so Securly’s extension loses its authentication context and stops functioning.Original method — Does not work on ChromeOS v112 and beyond.
1

Sign out of the Google account

Go to chrome://settings/signOut and click the blue button.
2

Restart Securly using one of these methods

  • Go to chrome://restart
  • Navigate to a Securly extension page (e.g., chrome-extension://iheobagjkfklnlikgihanlhcddjoihkg/logo.svg), then type chrome://kill in the URL bar
  • Go to chrome://extensions, find Securly, and click Allow access to File URLs
  • Use Task Manager (Search+Esc) and kill Securly
3

Re-add your account

Go to https://tinyurl.com/addsession to add your school account back without full sign-in.
Workaround A (ChromeOS v112+):
  1. Go to chrome://settings/resetProfileSettings and click Current Settings.
  2. On the blank page, run: 
    javascript:opener.chrome.send("TurnOffSync");
  3. Run chrome://restart.
Workaround B:
  1. Go to chrome://settings/syncSetup/advanced.
  2. Set the mode to Customize Sync.
  3. Turn sync off for Extensions and Apps.
To undo: press Ctrl+Shift+Q twice or use the sign-out button.Credits: Bypassi — https://blog.bypassi.com/_/killcurly/
A straightforward content settings approach to removing Securly’s Google.com session data.
1

Open all site data

Go to chrome://settings/content/all.
2

Find google.com

Locate google.com in the list.
3

Delete it

Click the trash can icon and confirm deletion.
4

Toggle the Securly file access switch

Go to chrome://extensions, find Securly, and click the Allow access to file urls switch.
Securly is now disabled until the next restart.Credits: schoolexploitkid

SPEM

Overloads Securly (and possibly Dyknow Cloud) by generating a URL with an extremely long percent-encoded path. The extension cannot process the URL in time and fails to block the request.PATCHED — See https://support.securly.com/hc/en-us/articles/32106767115671 for details.Requirements: Securly + Dyknow Cloud; Securly extension ID: ckecmkbnoanpgplccmnoikfmpcdladkc
1

Open a SPEM generator page

Visit one of these Canvas-hosted pages (use whichever is unblocked for you):
  • https://a6936-41444101.cluster7.canvas-user-content.com/courses/6936~2137536/files/6936~41444101/course%20files/calculus-assignment/1.html
  • Replace 1.html with 2.html, 3.html, 4.html, or 5.html as alternatives.
2

Set power and multiplier

On the generator page, set a power of 200 and a multiplier of 100–200. Decrease the multiplier if your device is slow.
3

Copy the generated URL

Click the Copy button to copy the overloaded URL to your clipboard.
4

Navigate to the URL

Paste and navigate to the generated URL. Securly should fail to process it.
Credits: weta87/yeahdill, Titanium Network

SECRASH

Temporarily disables Securly by maxing out the CPU with the ChromeOS Diagnostics app, causing the extension to be deprioritized or suspended.
1

Open Diagnostics

Press the Launcher key and search for Diagnostics.
2

Run the CPU test

Click Run CPU Test.
3

Wait 15–20 seconds

Wait for the test to stress the CPU.
4

Browse

Navigate to any website — Securly should be temporarily non-functional.
To extend the effect: turn off Wi-Fi, re-run the test, then turn Wi-Fi back on. The effect lasts longer if the Diagnostics page is installed as a PWA on your Chromebook.
Note: This method may cause significant device lag.Credits: yeahdill, Titanium Network

Indexeddb Blocker

Uses the chrome://indexeddb-internals page to force-stop Securly’s extension database worker.PATCHED.Requirements: Access to chrome://indexeddb-internals; a blocking extension that uses IndexedDB (e.g., Securly).
1

Open IndexedDB Internals

Go to chrome://indexeddb-internals.
2

Find the Securly extension database

Scroll until you find an entry with the Securly extension ID. Known IDs:
  • joflmkccibkooplaeoinecjbmdebglab
  • iheobagjkfklnlikgihanlhcddjoihkg
  • ckecmkbnoanpgplccmnoikfmpcdladkc
3

Force stop

Click Force Stop on the entry.
Securly may re-enable after some time. Force-stop it again if pages become blocked. If the Securly extension ID is not listed, check chrome://extensions for the current ID.
Credits: vibingcat_, Titanium Network

Simple Bypass

Uses Securly’s “uncategorized” bypass request mechanism to access blocked domains by navigating to a subdomain first, then entering the blocked domain.Works on some versions of Securly only.
1

Navigate to a subdomain

Go to test.DOMAINNAMEHERE.com (replace with your target domain).
2

Click the request button

When Securly shows the blocked page with a “Blocked because it is uncategorized” message, click Request or the blue button.
3

Open in multiple tabs

Open the copied URL in 3 tabs.
4

Remove the subdomain

In one tab where the blocked screen does not show, type your desired subdomain URL.
Credits: xs_zo, Titanium Network
Strips GoGuardian/Securly’s block page redirect parameters from a URL to access the original blocked content.
1

Visit the blocked site

Navigate to the site you want to access and let it redirect to the block page.
2

Copy the block page URL

Copy the full URL shown in the URL bar on the block page.
3

Open a new tab and edit the URL

Open a new tab, paste the URL, and delete everything between https:// and the first ?.
4

Navigate

Press Enter. The site should now be accessible.
Credits: Brandon421-ops

BetterCurly

BetterCurly uses an obfuscated JavaScript bookmarklet that breaks Securly by manipulating Chrome sync settings via an about:blank popup window.
1

Copy the BetterCurly bookmarklet

Copy the JavaScript bookmarklet code from the source or from https://better-curly.netlify.app/ and save it as a bookmark.
2

Navigate to the reset profile settings page

Go to chrome://settings/resetProfileSettings and click Current Settings. This opens a blank window.
3

Run the bookmarklet

On the blank window, click the BetterCurly bookmarklet.
4

Enter your ChromeOS password

Enter your ChromeOS password when prompted to disable or enable sync, which breaks the extension authentication.
Credits: Jake Hydnes — https://better-curly.netlify.app/

Securly uBlock

Uses uBlock Origin’s eval prompt (via uRun) to run the Securly-Kill script (kill.js) from an about:blank context where Securly has no visibility.Requirements: uBlock Origin (not uBlock Origin Lite); must be able to install it or use an alternative like Run Javascript Extension.Method 1 (uBlock Origin):
1

Install uBlock Origin

Install uBlock Origin from the Chrome Web Store (if not already installed).
2

Set up uRun

Configure the uRun feature in uBlock Origin settings.
3

Open securly.com and trigger the eval prompt

Go to https://securly.com and press Ctrl+Shift+`. Do not close the opened window.
4

Switch to uBlock Run and copy the kill script

Remove uRun and set up uBlock Run. Copy the kill script from: https://raw.githubusercontent.com/zek-c/Securly-Kill-V111/refs/heads/main/kill.js
5

Paste and run

Return to https://securly.com and press Ctrl+Shift+` again. Paste the copied code into the eval prompt and press Enter. A large red OFF button should appear — click it.
Method 2 (Run Javascript Extension):
1

Install Run Javascript Extension

Install from: https://chromewebstore.google.com/detail/run-javascript/lmilalhkkdhfieeienjbiicclobibjao and pin it.
2

Open securly.com

Navigate to https://securly.com.
3

Open an about:blank window

Click the Run Javascript extension and enter window.open(), then click Execute.
4

Copy and run the kill script

Copy the kill script from https://raw.githubusercontent.com/zek-c/Securly-Kill-V111/refs/heads/main/kill.js. In the about:blank page, paste and execute the code. Click the big red OFF button.
Credits: schoolexploitkid, zek-c

Build docs developers (and LLMs) love

Get started for freeTalk to us