GeminiBusiness_CookieExtractor
by humair832
Overview
Chrome browser extension to automatically extract authentication cookies and information from a user's Gemini Business account for 'easy access'.
Installation
No command providedSecurity Notes
The extension's primary function is to extract sensitive authentication cookies. While the provided source code does not show direct exfiltration of these cookies to an external server, it has broad 'host_permissions' (https://*.google/*, https://*.google.com/*, etc.) and uses 'webRequest' to intercept network requests across all Google domains. This means it can access cookies for any Google service the user is logged into, not just Gemini Business, which is an over-permission for its stated specific purpose. The extension is designed to be installed via 'Developer mode' in Chrome, bypassing the standard Chrome Web Store review process. Users must implicitly trust the developer as there's no third-party security vetting. The extracted cookies are displayed directly in a text area on the current page, making them visible to anyone with access to the browser.
Similar Servers
gemini-cli
Provides an A2A (Agent-to-Agent) server for the Gemini CLI, enabling external agents to interact with and utilize the CLI's capabilities for executing tasks and accessing tools.
tefas_scraper
This MCP Server allows users to scrape and analyze fund data from the TEFAS (Turkey Electronic Fund Distribution Platform) through a Model Context Protocol integration with Gemini CLI, or via a standalone command-line interface.
mcp-browser
Provides browser control (navigation, DOM interaction) and console log capture for AI coding assistants via a local MCP server, with a browser extension and macOS AppleScript as primary control mechanisms.
kiro-extension
Manages a spec-driven development workflow within the Gemini CLI, guiding feature development from requirements to design, task generation, and execution with state machine enforcement.