Exploit-as-a-Service Resurgence in 2025 – Broker Models, Bundles & Subscription Access

**DumpBrowserSecrets** is a post-exploitation Windows tool that harvests browser-stored credentials (passwords, cookies, OAuth refresh tokens, credit cards, autofill, history) from Chromium- and Gecko-based browsers by using headless Chromium + DLL injection to bypass App‑Bound Encryption (IElevator) or by extracting DPAPI/NSS keys, outputting structured JSON for red-team/assumed‑breach testing.