This project investigates the possibilities of attack using bots running as long-lived processes in the user’s browser. We attempt to achieve this using a GreaseMonkey userscript which runs on every page opened on supported browsers (Google Chrome – native, Opera – native, Mozilla Firefox – with GreaseMonkey extension), there are two phases:

1. Figure out a way to place a userscript in the required directory without the knowledge of the user
2. Use the script to implement various attacks (keylogger, cookie stealer, mouse tracker, etc.)

This entry was posted on Monday, November 14th, 2011 at 13:25 and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.