Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Investigate stealing credentials from chromium-based browsers #3398

Closed
mssalvatore opened this issue Jun 1, 2023 · 5 comments
Closed

Investigate stealing credentials from chromium-based browsers #3398

mssalvatore opened this issue Jun 1, 2023 · 5 comments
Assignees
@shreyamalviya
Labels
Complexity: High Feature Issue that describes a new feature to be implemented. Impact: High Plugins Spike A small chunk of work with the objective of gathering information.

Comments

@mssalvatore
Copy link
Collaborator

mssalvatore commented Jun 1, 2023
edited
Loading

Description

By default, Chromium-based browsers store usernames and passwords in a recoverable format. Investigate whether or not we can steal credentials from chromium-based browsers on Linux and Windows. A good place to start is the "chromium-based" module in the LaZagne project.

Resources

https://apr4h.github.io/2019-12-20-Harvesting-Browser-Credentials/
https://github.com/AlessandroZ/LaZagne/blob/master/Linux/lazagne/softwares/browsers/chromium_based.py

Output

  • A prototype script that works on Linux and Windows for stealing browser credentials.
  • A list of features or information necessary for the MVP
  • A report detailing any caveats, considerations, and future work.

Bonus!

Since Edge is based on Chrome, can we add support for Edge with little or no work?
@mssalvatore mssalvatore added Feature Issue that describes a new feature to be implemented. Impact: High Complexity: High Spike A small chunk of work with the objective of gathering information. Plugins labels Jun 1, 2023
@shreyamalviya shreyamalviya self-assigned this Jun 7, 2023
@shreyamalviya
Copy link
Contributor

shreyamalviya commented Jun 8, 2023
edited
Loading

poc_steal_windows_google_chrome_saved_credentials.zip

image

This works for Edge as well.

@shreyamalviya
Copy link
Contributor

poc_steal_linux_chromium_based_browsers_saved_credentials.zip

image

@shreyamalviya
Copy link
Contributor

Both of the above scripts are stripped-down versions of https://github.com/AlessandroZ/LaZagne/blob/master/Linux/lazagne/softwares/browsers/chromium_based.py and https://github.com/AlessandroZ/LaZagne/blob/master/Windows/lazagne/softwares/browsers/chromium_based.py.

@shreyamalviya
Copy link
Contributor

LaZagne has support for other browsers too. We could implement those as well.

@shreyamalviya
Copy link
Contributor

Updated (generalized) Windows script:

poc_steal_windows_chromium_based_browsers_saved_credentials.zip

image

@mssalvatore mssalvatore mentioned this issue Jun 13, 2023
Closed
18 tasks
@shreyamalviya shreyamalviya mentioned this issue Sep 8, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shreyamalviya shreyamalviya

Labels
Complexity: High Feature Issue that describes a new feature to be implemented. Impact: High Plugins Spike A small chunk of work with the objective of gathering information.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mssalvatore @shreyamalviya