Red Teaming LLMs 2025 – Offensive Security Meets Generative AI

DumpBrowserSecrets is a precompiled Windows post‑exploitation tool designed to extract browser-stored secrets (saved logins, cookies, OAuth refresh tokens, credit cards, autofill data, history, and bookmarks) from Chrome, Edge, Brave, Opera, Opera GX, Vivaldi and Firefox. It implements an App‑Bound Encryption bypass for Chrome 127+ by spawning a headless Chromium process, injecting a DLL via Early Bird APC to call the IElevator COM interface and decrypt the app_bound_encrypted_key, handles DPAPI and NSS decryption for other browsers, includes evasion techniques (string obfuscation, API hashing, PPID/argument spoofing, handle duplication), and includes guidance on detection and mitigation for defenders.