benjholla / cookiemonster Goto Github PK

View Code? Open in Web Editor NEW

53.0 53.0 29.0 34.42 MB

A utility for exfiltrating cookies from local browser cookie stores

License: MIT License

Java 100.00%

cookiemonster's People

Contributors

Stargazers

Watchers

cookiemonster's Issues

Build failures due to renamed "fat" target and List.of() unavailable in Java 8

Steps Taken

As per the readme, run mvn clean install -U (using the Maven version 3.8.1 that is bundled with IntelliJ).

Expected

The build will run and a fat JAR will be created in the /CookieMonster/target directory.

Actual

The build fails; the first failure is a Maven error

Descriptor with ID 'fat' not found

In addition, there is a compile problem because the pom.xml specifies 1.8 as the source and target version, but ChromeBrowser.java uses the factory method List.of() that was added only in Java 9.

Discussion

It appears that the maven-assembly-plugin changed its target from fat to jar-with-dependencies.
The compile problem is remediable by changing the version.

I will soon open a PR to address this issue.

unable to run jar file against latest chrome version - windows

Hi,
I am trying to run the jar file in my windows machine and the chrom version is 115. I always get error

C:\Users\djsou\CookieMonster\CookieMonster>java -jar CookieMonster.jar --browsers=chrome --domains=facebook.com
Selected Browsers: Chrome
Selected Domains: facebook.com
============================================================
Searching cookies for domain: facebook.com
============================================================
Searching in browser: Chrome
============================================================
java.nio.file.FileSystemException: C:\Users\djsou\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies -> .cookies.db: The process cannot access the file because it is being used by another process
        at java.base/sun.nio.fs.WindowsException.translateToIOException(WindowsException.java:92)
        at java.base/sun.nio.fs.WindowsException.rethrowAsIOException(WindowsException.java:103)
        at java.base/sun.nio.fs.WindowsFileCopy.copy(WindowsFileCopy.java:208)
        at java.base/sun.nio.fs.WindowsFileSystemProvider.copy(WindowsFileSystemProvider.java:284)
        at java.base/java.nio.file.Files.copy(Files.java:1299)
        at cmonster.browsers.ChromeBrowser.processCookies(ChromeBrowser.java:142)
        at cmonster.browsers.Browser.getCookiesForDomain(Browser.java:40)
        at cmonster.CookieMonster.dumpCookies(CookieMonster.java:131)
        at cmonster.CookieMonster.main(CookieMonster.java:107)
No cookies found.
============================================================
============================================================
Finished.

Looks like the cookies file not able to be copied before starting reading it.
Is there anything missing here ?

Failure to load cookies from latest Chrome on Windows

Steps Taken

Use the latest Chrome version, 114.0.5735.134, on Windows.

Create a ChromeBrowser object and call its method getCookies().

Expected

The set will be non-empty and contain the cookies from the web browser.

Actual

An exception is thrown:

java.lang.ArrayIndexOutOfBoundsException: arraycopy: length -3 is negative
	at java.base/java.lang.System.arraycopy(Native Method)
	at java.base/java.util.Arrays.copyOfRange(Arrays.java:3823)
	at cmonster.browsers.ChromeBrowser.decrypt(ChromeBrowser.java:279)
	at cmonster.browsers.ChromeBrowser.parseCookieFromResult(ChromeBrowser.java:240)
	at cmonster.browsers.ChromeBrowser.processCookies(ChromeBrowser.java:153)
	at cmonster.browsers.Browser.getCookies(Browser.java:29)
	at cmonster.browsers.ChromeBrowser.main(ChromeBrowser.java:400)

Discussion

The current implementation in ChromeBrowser.getCookieDbFiles() looks for files in directories in the baseDir that end in Cookies. It does not find them recursively - i.e., it does not find files in subdirectories of subdirectories. This is a problem because the appropriate cookies file on my hard drive resides under /Default/Network/ relative to the baseDir.

So, the only file found is Safe Browsing Cookies. This appears to contain cookies that are not encrypted - the encrypted_value in the (single) row in the ResultSet is an empty byte array - and then the decryption (attempting to use the empty array as the ciphertext) fails.

Inside decrypt, exceptions cause us to skip the cookie for Mac and Linux, but ones for Windows are allowed to bubble up and fail the overall operation. I suspect that the Windows decrypt should have the same behavior as Mac and Linux.

I will soon open a PR to address this issue.

no getValue method

Cookies.java has no getValue() method. I know toString() method shows what the value is but i can't get the value.

Can't decrypt cookie (v11 -0x763131)

Hi friend,
i try decrypt cookie by you are lib. but when decyrpt i receiver a messsage:
Data encrypt:v11��͏��m� ԅ��v�_��ü��o�,�5�m��*��}�j��
Cookie [name=REC_T_ID (encrypted)]
javax.crypto.AEADBadTagException: Tag mismatch
at java.base/com.sun.crypto.provider.GaloisCounterMode$GCMDecrypt.doFinal(GaloisCounterMode.java:1545)
at java.base/com.sun.crypto.provider.GaloisCounterMode.engineDoFinal(GaloisCounterMode.java:417)
at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2244)
at vn.votam.seoshopeeapp.cookie.ChromeCookie.decrypt(ChromeCookie.java:183)
at vn.votam.seoshopeeapp.cookie.ChromeCookie.parseCookieFromResult(ChromeCookie.java:139)
at vn.votam.seoshopeeapp.cookie.ChromeCookie.processCookies(ChromeCookie.java:100)
at vn.votam.seoshopeeapp.cookie.Browser.getCookiesForDomain(Browser.java:30)
at TestCookie.main(TestCookie.java:9)

my test is:
ChromeCookie chromeCookie = new ChromeCookie("E:\10. Du an\14. Nghien cuu\seoShopeeApp\etc\profile\test101\Local State", "E:\10. Du an\14. Nghien cuu\seoShopeeApp\etc\profile\test101\Default\Network\Cookies");
Set ssl = chromeCookie.getCookiesForDomain("shopee.vn");
for (Cookie c : ssl) {
System.out.println(c.getName());
}

unable to run jar file against latest chrome version - windows

Hi,
I am trying to run the jar file in my windows machine and the chrom version is 115. I always get error

C:\Users\djsou\CookieMonster\CookieMonster>java -jar CookieMonster.jar --browsers=chrome --domains=facebook.com
Selected Browsers: Chrome
Selected Domains: facebook.com
============================================================
Searching cookies for domain: facebook.com
============================================================
Searching in browser: Chrome
============================================================
java.nio.file.FileSystemException: C:\Users\djsou\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies -> .cookies.db: The process cannot access the file because it is being used by another process
        at java.base/sun.nio.fs.WindowsException.translateToIOException(WindowsException.java:92)
        at java.base/sun.nio.fs.WindowsException.rethrowAsIOException(WindowsException.java:103)
        at java.base/sun.nio.fs.WindowsFileCopy.copy(WindowsFileCopy.java:208)
        at java.base/sun.nio.fs.WindowsFileSystemProvider.copy(WindowsFileSystemProvider.java:284)
        at java.base/java.nio.file.Files.copy(Files.java:1299)
        at cmonster.browsers.ChromeBrowser.processCookies(ChromeBrowser.java:142)
        at cmonster.browsers.Browser.getCookiesForDomain(Browser.java:40)
        at cmonster.CookieMonster.dumpCookies(CookieMonster.java:131)
        at cmonster.CookieMonster.main(CookieMonster.java:107)
No cookies found.
============================================================
============================================================
Finished.

Looks like the cookies file not able to be copied before starting reading it.
Is there anything missing here ?

benjholla / cookiemonster Goto Github PK

cookiemonster's People

Contributors

Stargazers

Watchers

Forkers

cookiemonster's Issues

Steps Taken

Expected

Actual

Discussion

Steps Taken

Expected

Actual

Discussion

Recommend Projects

Recommend Topics

Recommend Org