Skip to content

Investigate stealing credentials from chromium-based browsers #3398

New issue
New issue
Closed
Closed
Investigate stealing credentials from chromium-based browsers#3398
Assignees
shreyamalviya
Labels
Complexity: HighFeatureIssue that describes a new feature to be implemented.Impact: HighPluginsSpikeA small chunk of work with the objective of gathering information.
@mssalvatore

Description

@mssalvatore
mssalvatore
opened on Jun 1, 2023

Description

By default, Chromium-based browsers store usernames and passwords in a recoverable format. Investigate whether or not we can steal credentials from chromium-based browsers on Linux and Windows. A good place to start is the "chromium-based" module in the LaZagne project.

Resources

https://apr4h.github.io/2019-12-20-Harvesting-Browser-Credentials/
https://github.com/AlessandroZ/LaZagne/blob/master/Linux/lazagne/softwares/browsers/chromium_based.py

Output

  • A prototype script that works on Linux and Windows for stealing browser credentials.
  • A list of features or information necessary for the MVP
  • A report detailing any caveats, considerations, and future work.

Bonus!

Since Edge is based on Chrome, can we add support for Edge with little or no work?

Metadata

Metadata

Assignees

Labels

Complexity: HighFeatureIssue that describes a new feature to be implemented.Impact: HighPluginsSpikeA small chunk of work with the objective of gathering information.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions