browser-exploitation
OfficialExploit browser attack surfaces.
Authorblacklanternsecurity
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps penetration testers find and exploit vulnerabilities within browser-based attack surfaces, including malicious extension crafting, abusing exposed debug ports, and extracting sensitive data from browser profiles.
Core Features & Use Cases
- Malicious Extension Crafting: Develop and deploy custom browser extensions (Manifest V2/V3) to interact with target environments or exfiltrate data.
- Chrome DevTools Protocol (CDP) Abuse: Leverage exposed debug ports (e.g., 9222, 9229) to execute JavaScript, steal cookies, or read local files.
- Browser Profile Extraction: Harvest credentials, cookies, and history from compromised host browser profiles (Chrome, Firefox).
- Use Case: After gaining initial access to a host, use this Skill to extract saved browser credentials and cookies to pivot to other internal systems.
Quick Start
Use the browser-exploitation skill to attempt to extract cookies from the target's Chrome browser profile.
Dependency Matrix
Required Modules
None requiredComponents
scripts
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: browser-exploitation Download link: https://github.com/blacklanternsecurity/red-run/archive/main.zip#browser-exploitation Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.