How to Add My Script in XSS Attack?
I was going through XSS tutorials to be more specific the non-persistent one, and almost got a general idea on how the attack function , when i came down to practice it, one part wasn't able to get through my head, it may be a stupid question, but i actually don't know!
if the location of the malicious JS code is supposed to be brought online, or should i just provided the location of it in my directory,or what?
most tutorials that I've encountered didn''t cover this or maybe i skipped something!
for example say that i have a script.py in my Desktop, how do i move the actual thing?