mcp-scan – Real-Time Guardrail Monitoring and Dynamic Proxy for MCP Servers

DumpBrowserSecrets is a publicly available post‑exploitation tool that harvests browser‑stored secrets (saved credentials, session cookies, OAuth refresh tokens, credit cards, autofill and history) from major Chromium‑based browsers and Firefox. It implements an App‑Bound Encryption bypass for Chrome/Edge/Brave by spawning a headless Chromium process and injecting a DLL via Early Bird APC to call the IElevator COM interface, extracts DPAPI or NSS keys for other browsers, outputs structured JSON, and includes operational evasion features; the report covers usage, detection opportunities, and mitigations.