Automic VaultAutomic Vault

brew

Install hack-browser-data with Homebrew

Command-line tool for decrypting and exporting browser data. Version 1.1.0 via Homebrew; verified 2026-06-14.

install

Additional install commands

macOS

Homebrewverified · 100%
brew install hack-browser-data

local Homebrew formula metadata

overview

Package summary

Command-line tool for decrypting and exporting browser data

Commands and aliases

  • hack-browser-data

history

Project history and usage

HackBrowserData is a Go command-line security and forensics tool for decrypting and exporting browser data. Its package identity is straightforward: install one binary, point it at local browser profiles or archived profile data, and export passwords, cookies, history, bookmarks, downloads, storage, extensions, and related browser artifacts.

Project history

The public GitHub repository was created in June 2020. The README describes support for Chromium-based browsers and Firefox on Windows, macOS, and Linux, plus Safari on macOS, and includes a legal-use disclaimer aimed at security research.

The project evolved from local extraction into richer workflows. Release notes and README content show additions such as local storage export, pure-Go SQLite-related refactoring, optimized encryption/decryption modules, Safari support, Chromium App-Bound Encryption support, and cross-host decryption workflows.

Adoption history

Adoption is visible in the repository scale, release activity, and packaging through Homebrew. The tool appeals to incident-response, red-team, browser-forensics, and security-lab users because browser secrets and artifacts are spread across OS-specific stores, SQLite databases, browser profile layouts, keychains, and DPAPI-like mechanisms.

Cross-host decryption broadened its operational model: an origin host can export Chromium master keys and archive relevant profile files, while an analyst host restores and decrypts offline, even across operating systems for some browser families.

How it is used

The default `dump` command extracts local browser data with flags for browser, category, output directory, format, profile path, macOS keychain password, verbosity, and zip output. Other commands list profiles, export master keys, archive decryption-relevant files, restore copied profile data with exported keys, and print version information.

Supported data categories include passwords, cookies, bookmarks, history, downloads, credit cards for Chromium-based browsers, extensions, localStorage, and sessionStorage where supported. The README notes platform-specific requirements such as Full Disk Access for Safari and extra payload support for some Chromium cookie decryption on Windows.

Why package nerds care

HackBrowserData is notable as a packaged security tool because it compresses many browser- and OS-specific storage rules into one CLI. For package users, the value is less about a library API and more about repeatable collection, export formats, cross-platform builds, and workflows that can be scripted during authorized investigations.

Timeline

  • 2020: Public repository created.
  • 2022: v0.4.x releases included browser-data extraction fixes and local-storage support.
  • 2024: v0.4.6 release notes described refactors, pure-Go driver work, and encryption/decryption optimization.
  • 2026: v1.x release notes documented architecture rewrite, Safari, Chromium App-Bound Encryption, and cross-host decryption and restore workflows.

Related projects

  • Related surfaces include Chromium, Chrome, Edge, Brave, Firefox, Safari, browser profile SQLite databases, Windows DPAPI and App-Bound Encryption, macOS Keychain, and incident-response tooling that inventories browser artifacts.

security posture

Risk level: blue

broad file, network, media, or database tool signal.

Risk classifier

blue risk · medium confidence · tool

Why

  • broad file, network, media, or database tool signal

Signals

  • text:decrypt

Install behavior

  • No Homebrew post-install hook is recorded in formula metadata.
  • Homebrew bottle metadata is available for 6 platform targets.
  • Build metadata lists 1 build dependencies.

Recommended review

Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.

executables

Installed executables

CommandKindExposureNote
hack-browser-datacliglobal executable

freshness

Version and freshness

These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.

page generated2026-07-08
manager version1.1.0
manager updated2026-06-14
local dataok
upstreamcurrent
latest detectedv1.1.0

https://github.com/moonD4rk/HackBrowserData

  • okNo freshness warnings were generated.

install metadata

Package metadata

Package keybrew:hack-browser-data
Version1.1.0
Package managerHomebrew
Package manager pagehttps://formulae.brew.sh/formula/hack-browser-data
Homepagehttps://github.com/moonD4rk/HackBrowserData
Repositoryhttps://github.com/moonD4rk/HackBrowserData
Upstream docshttps://github.com/moonD4rk/HackBrowserData#readme
LicenseMIT
Source archivehttps://github.com/moonD4rk/HackBrowserData/archive/refs/tags/v1.1.0.tar.gz
Last updated2026-06-14T12:11:17Z
Pulseupdated
Build dependenciesgo
Bottleavailable (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-installnot defined
Servicenone declared

registry facts

Source database details

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namehack-browser-data
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

source trail

Generated from repository data

This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.

Used sources

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • package relationship graph
  • package version freshness
  • package-page enrichment