Scanners-Box – Open-Source Reconnaissance and Scanning Toolkit

DumpBrowserSecrets is a post-exploitation credential-harvesting tool that extracts saved passwords, session cookies, OAuth refresh tokens, credit card data, autofill entries, history, and bookmarks from major browsers (Chrome, Edge, Brave, Opera variants, Vivaldi, and Firefox). It bypasses Chrome's App-Bound Encryption on modern builds by spawning a headless Chromium process and injecting a DLL to call the IElevator COM interface, employs DPAPI and NSS handling where appropriate, includes operational evasion features (string obfuscation, API hashing, PPID/argument spoofing, handle duplication, custom SQLite parser), and outputs structured JSON for red team or attacker use; the report also outlines detection opportunities and mitigations.