Skip to content
/ xssploit Public

control hundreds / thousands of browsers though XSS. similar to BeEF. JavaScript with small PHP/Python api.

8 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

foneyop/xssploit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

48 Commits
catblock
catblock
 
 
extension
extension
 
 
lib
lib
 
 
modules
modules
 
 
public
public
 
 
.hhconfig
.hhconfig
 
 
.panel.js.swp
.panel.js.swp
 
 
README.md
README.md
 
 
xss.sql
xss.sql
 
 
xssploit.sql
xssploit.sql
 
 

Repository files navigation

XSSploit. Browser Exploitation Framework.

Control browsers "realtime" with JavaScript. Requires: MySQL, PHP and a webserver. (recommend HHVM and Nginx)

Features: Supports simple configuration of auto running any JavaScript on browser connect Logs all actions in MySQL Simple creation of custom modules in pure JavaScript The web / DB API < 500 lines of PHP code Supports polling via <script> tags Supports polling via XMLHttpRequest Supports obfuscated JavaScript via javascript-packer

Documentation: https://github.com/foneyop/xssploit/wiki

External Libraries: http://joliclic.free.fr/php/javascript-packer/en/

Development: Chrome module for searching for XSS vulnerabilities Chrome module includes MySQL support for logging

Do What Thou Willt.

About

control hundreds / thousands of browsers though XSS. similar to BeEF. JavaScript with small PHP/Python api.

Resources

Readme
Activity

Stars

8 stars

Watchers

5 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages