CookieCache

Simplify getting and using cookies from the browser to use in Python.

NOTE: All the logic to interface with the browsers is done by the Browser Cookie 3 library.

This code wraps that BrowserCookie3 in a CLI and library that caches the selected cookies as JSON to disk, so they can be transferred to other machines, or be used again without having to interactivly re-enter MacOS user credentials.

Install

pip install cookiecache

Usage

The idea is you run cookiecache once (either as a cli tool or as a library), and then cache the cookies to JSON on disk. Then the next time you run the same thing, cookiecache will look in the JSON file first, and only get fresh cookies from the browser if they have expired.

CLI

Examples:

# Get github session cookies and save to disk
cookiecache --domain "github.com" --cookie "_gh_sess" --filename "cookies.json"

# Get all github cookies in Netscape/Mozilla format to use with curl, et.c:
cookiecache --domain "github.com" --filename "cookies.txt" --curl

# All options:
cookiecache --help

Library

To use cookiecache as a library call load() with arguments similar to the cli:

import cookiecache

# Get github session cookies and save to disk
# After the first run this will load the cookies
# from disk first, and only get them from the brower
# if they have expired
cookies = cookiecache.load(
    domain="github.com",
    cookie="_gh_sess",
    filename="cookies.json",
)

# Load all cookies from JSON file from another machine, ie.
# Don't attempt to refresh or get cookies from this machine
cookies = cookiecache.load(
    filename="cookies.json",
    check_expiry=False
)

# Get cookies only from Chrome, and don't read or save to disk
cookies = cookiecache.load(
    domain="github.com",
    browser="chrome",
)

# Convert cookies from cookiecache to a flat key-value
# pair to use with Requests
cookies = cookiecache.load(domain="github.com")
cookies_flat = cookiecache.flatten_cookies(cookies)
reqeusts.get("http://github.com", cookies=cookies_flat)

Simplify getting and using cookies from the browser to use in Python.

Related tags

Overview

CookieCache

Install

Usage

CLI

Library

Owner

pat_h/to/file

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Laravel RCE (CVE-2021-3129)

Hack computer in the form of RAR files from all types of clients, even Linux

Get important strings inside [Info.plist] & and Binary file also all output of result it will be saved in [app_binary].json , [app_plist_file].json file

Scan your logs for CVE-2021-44228 related activity and report the attackers

A secure way of storing your passwords.

Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)

Vulnerability Scanner & Auto Exploiter You can use this tool to check the security by finding the vulnerability in your website or you can use this tool to Get Shells

CVE-2021-21972

Moodle community-based vulnerability scanner

Now patched 0day for force reseting an accounts password

Visibility and Mitigation for Log4J vulnerabilities

md5 hash cracking with python.

Utility for Extracting all passwords from ConnectWise Automate

PoC for CVE-2021-26855 -Just a checker-

AutoScan 有多个目标时，调用xray+rad进行自动扫描

Tool to check if your DNS comply to Polish Ministry of Finance gambling domains restrictions

SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)

Files related to PoC||GTFO 21:21 - NSA’s Backdoor of the PX1000-Cr

DomainMonitor is a web project that has a RESTful API to get a domain's subdomains and whois data.