Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Gather chrome cookies post module #11052
Adds a new module to extract a user's Chrome cookies post-exploitation. This does not require root.
I don't really know much about how metasploit works, and was hoping some metasploit-framework contributors could help. Specifically:
I've also not added some features to this module. These are Windows support (which the technique supports but not this module) and the ability to enumerate and choose which Chrome Profile to read cookies from (the default is used as-is). I'm hoping someone with more metasploit/Windows experience can help.
This is my first time writing a metasploit module or Ruby, so feel free to tear this to shreds.
For someone who is new to the project, you've done a good job of obeying convention.
The second directory denotes platforms/architectures.
Generally modules don't download and execute software on the target. This instance may be an exception. I'll defer to someone else on this.
With the directory structure, I was copying
You should be consistent with
The second directory denotes platforms/architectures. The