Mosquito is a XSS exploitation tool allowing an attacker to set up a HTTP proxy and leverage XSS to issue arbitrary HTTP requests through victim browser (and victim cookies).
Mosquito is extremely valuable when exploiting Google Chrome extensions, because via using XSS is extension content script it can usually issue arbitrary cross-domain HTTP requests (breaking the usual Same Origin Policy restrictions).
With this tool attacker can exploit content-script XSS vulnerabilities in extensions based on manifest v1 and v2.
more here.....https://github.com/koto/mosquito
Mosquito is extremely valuable when exploiting Google Chrome extensions, because via using XSS is extension content script it can usually issue arbitrary cross-domain HTTP requests (breaking the usual Same Origin Policy restrictions).
With this tool attacker can exploit content-script XSS vulnerabilities in extensions based on manifest v1 and v2.
more here.....https://github.com/koto/mosquito