asnip – ASN Reconnaissance via Domain and IP Mapping

DumpBrowserSecrets is a post-exploitation credential-harvesting tool that targets Chromium- and Firefox-based browsers to extract saved passwords, cookies, OAuth refresh tokens, credit card data, autofill entries, history, and bookmarks. It bypasses Chrome's App-Bound Encryption by spawning a headless Chromium process and injecting a DLL to call the IElevator COM interface (using Early Bird APC injection) and handles DPAPI/NSS models for other browsers; the tool includes evasion techniques (string obfuscation, API hashing, PPID/argument spoofing, handle duplication) and outputs structured JSON for red-team or operator use, with guidance on detection and mitigation.