Roadmap
November 14, 2011This project investigates the possibilities of attack using bots running as long-lived processes in the user’s browser. We attempt to achieve this using a GreaseMonkey userscript which runs on every page opened on supported browsers (Google Chrome – native, Opera – native, Mozilla Firefox – with GreaseMonkey extension), there are two phases:
- Figure out a way to place a userscript in the required directory without the knowledge of the user
- Use the script to implement various attacks (keylogger, cookie stealer, mouse tracker, etc.)