HexStrike AI – Multi-Agent LLM Orchestration for Automated Offensive Security

DumpBrowserSecrets is a post-exploitation tool that harvests credentials, cookies, OAuth tokens, credit card data and browsing artifacts from Chrome, Edge, Brave, Opera variants, Vivaldi and Firefox. It bypasses Chrome's App‑Bound Encryption by injecting a DLL into a headless Chromium process (using Early Bird APC injection and the IElevator COM interface) to retrieve decryption keys, supports DPAPI and NSS decryption for other browsers, includes several EDR-evasion features, and outputs structured JSON for red-team use and testing.