RedExt – Browser Extension-Based C2 Framework for Red Team Recon

DumpBrowserSecrets is a post-exploitation credential-harvesting tool that extracts passwords, cookies, OAuth tokens, credit cards, and browsing data from Chromium-based and Gecko-based browsers by bypassing App-Bound Encryption (via IElevator DLL injection) and using DPAPI/NSS decryption where applicable; the report covers implementation details, evasion techniques, usage scenarios, detection opportunities, and mitigation advice for defenders and red teams.