Skip to content

steipete/sweetcookie

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
.github/workflows
.github/workflows
 
 
scripts
scripts
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
.golangci.yml
.golangci.yml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
browser.go
browser.go
 
 
chromium_crypto.go
chromium_crypto.go
 
 
chromium_crypto_test.go
chromium_crypto_test.go
 
 
chromium_decryptor_darwin.go
chromium_decryptor_darwin.go
 
 
chromium_decryptor_linux.go
chromium_decryptor_linux.go
 
 
chromium_decryptor_other.go
chromium_decryptor_other.go
 
 
chromium_decryptor_windows.go
chromium_decryptor_windows.go
 
 
chromium_paths_darwin.go
chromium_paths_darwin.go
 
 
chromium_paths_linux.go
chromium_paths_linux.go
 
 
chromium_paths_other.go
chromium_paths_other.go
 
 
chromium_paths_windows.go
chromium_paths_windows.go
 
 
chromium_read.go
chromium_read.go
 
 
chromium_read_test.go
chromium_read_test.go
 
 
chromium_sqlite.go
chromium_sqlite.go
 
 
chromium_vendor.go
chromium_vendor.go
 
 
coverage_branchy_darwin_test.go
coverage_branchy_darwin_test.go
 
 
coverage_branchy_test.go
coverage_branchy_test.go
 
 
coverage_chromium_more_test.go
coverage_chromium_more_test.go
 
 
coverage_crypto_keylen_test.go
coverage_crypto_keylen_test.go
 
 
coverage_edgecases_darwin_test.go
coverage_edgecases_darwin_test.go
 
 
coverage_edgecases_test.go
coverage_edgecases_test.go
 
 
coverage_error_paths_darwin_test.go
coverage_error_paths_darwin_test.go
 
 
coverage_error_paths_test.go
coverage_error_paths_test.go
 
 
coverage_even_more_darwin_test.go
coverage_even_more_darwin_test.go
 
 
coverage_even_more_test.go
coverage_even_more_test.go
 
 
coverage_final_push_darwin_test.go
coverage_final_push_darwin_test.go
 
 
coverage_final_push_test.go
coverage_final_push_test.go
 
 
coverage_more_darwin_test.go
coverage_more_darwin_test.go
 
 
coverage_more_test.go
coverage_more_test.go
 
 
coverage_remaining_darwin_test.go
coverage_remaining_darwin_test.go
 
 
coverage_remaining_test.go
coverage_remaining_test.go
 
 
coverage_safari_ctx_test.go
coverage_safari_ctx_test.go
 
 
coverage_safari_more2_test.go
coverage_safari_more2_test.go
 
 
coverage_small_push_test.go
coverage_small_push_test.go
 
 
dedupe.go
dedupe.go
 
 
doc.go
doc.go
 
 
exec.go
exec.go
 
 
filter.go
filter.go
 
 
filter_test.go
filter_test.go
 
 
firefox.go
firefox.go
 
 
firefox_paths_darwin.go
firefox_paths_darwin.go
 
 
firefox_paths_linux.go
firefox_paths_linux.go
 
 
firefox_paths_other.go
firefox_paths_other.go
 
 
firefox_paths_windows.go
firefox_paths_windows.go
 
 
firefox_test.go
firefox_test.go
 
 
fsutil.go
fsutil.go
 
 
get.go
get.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
inline.go
inline.go
 
 
inline_test.go
inline_test.go
 
 
parse.go
parse.go
 
 
safari_darwin.go
safari_darwin.go
 
 
safari_stub.go
safari_stub.go
 
 
safari_test.go
safari_test.go
 
 
testutil_test.go
testutil_test.go
 
 
types.go
types.go
 
 
util.go
util.go
 
 

Repository files navigation

sweetcookie

Go library to load cookies from local browser profiles.

Supported browsers

  • Chromium-family: Chrome, Chromium, Microsoft Edge, Brave, Vivaldi, Opera (macOS / Windows / Linux)
  • Firefox (macOS / Windows / Linux)
  • Safari (macOS only; reads Cookies.binarycookies)

Usage

package main

import (
	"context"
	"fmt"

	"github.com/steipete/sweetcookie"
)

func main() {
	res, err := sweetcookie.Get(context.Background(), sweetcookie.Options{
		URL:      "https://example.com/",
		Names:    []string{"session", "csrf"},
		Browsers: []sweetcookie.Browser{sweetcookie.BrowserChrome, sweetcookie.BrowserFirefox},
		Mode:     sweetcookie.ModeMerge,
	})
	if err != nil {
		panic(err)
	}
	for _, w := range res.Warnings {
		fmt.Println("warn:", w)
	}
	for _, c := range res.Cookies {
		fmt.Println(c.Source.Browser, c.Domain, c.Name, c.Value)
	}
}

Inline cookies (escape hatch for locked DBs / new encryption schemes):

res, _ := sweetcookie.Get(context.Background(), sweetcookie.Options{
	URL: "https://example.com/",
	Inline: sweetcookie.InlineCookies{
		File: "/path/to/cookies.json",
	},
	Mode: sweetcookie.ModeFirst,
})
_ = res

Notes

  • Chrome-family cookie DBs can be locked; sweetcookie snapshots the DB + WAL sidecars before reading.
  • macOS: derives legacy Chromium AES-128-CBC key from Keychain “Safe Storage” password via security.
  • Windows: uses DPAPI to unwrap the Chromium master key from Local State and decrypts AES-256-GCM cookie values.
  • Linux: tries go-keyring first, then shells out to secret-tool (GNOME) or kwallet-query + dbus-send (KDE) to read “Safe Storage”.
  • Some very new Chromium Windows “app-bound” cookie encryption variants are not directly decryptable without extra OS-specific plumbing; use inline cookies for those cases.

Development

make ci

About

Cookies for any browser, any OS, in go

Resources

Readme

License

MIT license
Activity

Stars

17 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages