Chrome Remote Debugger Pentesting

Chrome Remote Debugger is a tool that debugs web applications.

Investigation

/usr/bin/google-chrome --remote-debugging-port=12345
Copied!

If the target system is running Google Chrome Debugger with specific port, we can port forward and may be able to retrieve sensitive data in browser debugging mode.

Exploitation

1. Port Forwarding

First off, start port forwarding in local machine.

ssh -L 12345:127.0.0.1:12345 remote-user@example.com
Copied!

2. Configure Network Targets in Chrome

Assume the chrome debugger is running on port 12345. Open Chrome browser and input the following string in URL bar at the top of the window.

chrome://inspect/#devices
Copied!

Then click “Configure…” at the right of “Discover network targets”. The modal window opens. In the modal window, enter “localhost:12345” then click “Done”. Now we should see the remote host appears at the bottom of the “Remote Target”. Click “inspect” then new browser open. We can browse the website.

PreviousBuffer Overflow Privilege Escalation NextDoas Privilege Escalation

Last updated 2 years ago

hashtagInvestigationarrow-up-right

hashtagExploitationarrow-up-right

hashtag1. Port Forwardingarrow-up-right

hashtag2. Configure Network Targets in Chromearrow-up-right

Investigation

Exploitation

1. Port Forwarding

2. Configure Network Targets in Chrome