Forum Thread: Dealing with Persistent XSS . By Mohamed Ahmed

Hello people, here I bring a small contribution how to deface a web with persistent XSS completely:

Well the first thing we have to do is have this code javascript:

code
<script> document.documentElement.innerHTML = (String.fromCharCode (INSERT ENCRYPTED CODE)); </ script>

To encrypt our index we must use this tool:
http://jdstiles.com/java/cct.html
and already introducing our index we will get the index encrypted to charcode javascript.

Well already obtained the code we must introduce our index encrypted to javascript charcode in the web that we want to defacear.

Already embedded the code will have the entire web defaced with a simple XSS.

Greetings

Get The Weekly Null Byte Newsletter

Never miss a Null Byte guide.

Be the First to Respond

Share Your Thoughts

  • Hot
  • Active