Skip to content

bats3c/ChromeTools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

chromebackdoor

chromebackdoor

 
 

chrometap

chrometap

 
 

sslsteal

sslsteal

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

ChromeTools

https://www.mdsec.co.uk/2021/01/breaking-the-browser-a-tale-of-ipc-credentials-and-backdoors/

Tools to abuse chrome

  • ChromeTap

    Log all data sent by chrome to disk, allowing you to extract cookies and credentials with the hunt.py tool or manual review.

  • ChromeBackdoor

    Turn chrome into a backdoor forcing it to execute any code between <shellcode></shellcode> tags. Using this along side a persistence method will allow you to retain access to a machine without having a beacon. All the user has to do is click a link, open an email or view an 'image' containing these tags and your shellcode.

  • SSLSteal

    Steal data from chrome's SSL encryption routine.

About

A collection of tools to abuse chrome browser

www.mdsec.co.uk/2021/01/breaking-the-browser-a-tale-of-ipc-credentials-and-backdoors/

Resources

Readme

License

MIT license
Activity

Stars

281 stars

Watchers

10 watching

Forks

54 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages