Giter Club home page Giter Club logo

dumptruck's Introduction

Dumptruck

A simple object-oriented C++ implementation to dump browser cookies and credentials from Chromium-based browsers such as Chrome and Edge. Supports the options to load the JSON object for further processing/exfiltration or dumps the JSON to disk. JSON data is represented in the following structure:

{
    "cookies": {
        "chrome": [
            {
               "hostkey": ".example.com",
               "name": "userid",
               "value": "fb43ed08-274e-4deb-8d23-427b6e273e1c"
            }
        ],   
        "msedge": [
            {
               "hostkey": ".example.com",
               "name": "sessionid",
               "value": "fb43ed08-274e-4deb-8d23-427b6e273e1c"
            }
        ]
    },
    "creds": {
        "chrome": [
            {
               "pass": "iLoooooveDumptruck.exe",
               "url": "http://example.com",
               "user": "JrM2628"
            }
        ],   
        "msedge": [
            {
               "pass": "$ecur3P455w0rd:p",
               "url": "http://192.168.1.1",
               "user": "admin"
            }
        ]
    }
}

Note

TLDR: Using this will likely burn your red team engagement if deployed out-of-the-box.

This tool was made for use in educational environments. The detection rate on VirusTotal is 13/71 without any form of obfuscation, the binary is flagged for "suspicious behavior" on AnyRun, and it managed to generate a Threat Score of 100/100 on Hybrid Analysis. It is up to the user to provide AV evasion.

To Build

  1. Install vcpkg to manage sqlite3 and nlohmann-json dependencies
  2. Ensure vcpkg.json is in build directory
  3. Build in Visual Studio as you usually would

dumptruck's People

Contributors

jrm2628 avatar

Stargazers

蔡毅松 avatar Andrew Quan avatar Reyce Salisbury avatar avatar Michael avatar Duc Phan avatar

Watchers

iefuzzer avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.