This projects provides a logger and a connected harlem shake js. The shake logger runs on port 8080, make sure that it is not blocked.
Please enable autoplay in your browser.
This projects helps in awareness trainings, specally with the juice shop. You can use it via docker and docker-compose running: ´docker-compose up´
To show the possible impact of XSS, assume you received and (of course) clicked this inconspicuous phishing link and login. Apart from the visual/audible effect, the attacker also installed an input logger to grab credentials! This could easily run on a 3rd party server in real life!
You can also find a recording of this attack in action on YouTube: 📺