mcp-scanner – Python MCP Scanner for Prompt-Injection and Insecure Agents

DumpBrowserSecrets is a publicly available post‑exploitation credential‑harvesting tool that extracts saved passwords, session cookies, OAuth refresh tokens, credit card data, autofill entries, and browsing history from major browsers (Chrome, Edge, Brave, Opera variants, Vivaldi, and Firefox). It bypasses Chrome's App‑Bound Encryption by injecting a DLL into a headless Chromium process to call the IElevator COM interface, uses DPAPI/NSS decryption where appropriate, includes operational evasion techniques (Early Bird APC injection, PPID/argument spoofing, API hashing, file-handle duplication, and custom SQLite parsing), and is intended for red-team assumed‑breach testing but represents a high‑impact credential theft primitive relevant to enterprise environments.