For instance upon download, it automatically redirects to a specific URL or clicked,Like When Someone Receives and Clicks It on Whatsapp. A Tutorial Would Be Greatly Appreciated :)
- Hot
- Active
-
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
54
Replies
3 days ago -
Forum Thread:
Popcorntime Alternative?
4
Replies
4 days ago -
Forum Thread:
How Make a Simple Payload with Kali Linux (Detectable)
2
Replies
1 wk ago -
Forum Thread:
Parrot Security Os Problem......
15
Replies
1 wk ago -
Forum Thread:
Hack Instagram Account Using BruteForce
200
Replies
2 wks ago -
Forum Thread:
card number generators...
6
Replies
2 wks ago -
Forum Thread:
How to Hack a Website to Edit It
24
Replies
2 wks ago -
Forum Thread:
Can some help me how to hack into a FB account to that was hacked. Trying to get a friends account back. Cheers.
5
Replies
2 wks ago -
Forum Thread:
How to Hack Wifi Network with CMD
82
Replies
3 wks ago -
How to:
Spoof E-Mail Using SendEmail and Postfix
2
Replies
1 mo ago -
How to:
See How to Write an NTFS Partition of HDD/SDD in Kali LinuX (The Ultimate Guide)
2
Replies
1 mo ago -
Forum Thread:
Eml to PST Conversion
9
Replies
1 mo ago -
Forum Thread:
PST File - Outlook Inbox Repair Tool Can't Repair
4
Replies
1 mo ago -
Metasploit Error:
Handler Failed to Bind
39
Replies
1 mo ago -
Forum Thread:
How to Mr Robot's Password Cracker?
10
Replies
1 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
15
Replies
1 mo ago -
Forum Thread:
12 Ways How to Hack Any Social Network and Protect Yourself 2018
1
Replies
1 mo ago -
Forum Thread:
How to Make a Hacking Tool and What Programming Languages Are Used to Make One?
15
Replies
1 mo ago -
Forum Thread:
Does GSA Email Spider Gives Inaccessible or Hidden Email Addresses and Phone Numbers of Web Sites?
4
Replies
1 mo ago -
Forum Thread:
Whatsapp Hack?
18
Replies
1 mo ago
-
How To:
Hack Android Using Kali (Remotely)
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Gain SSH Access to Servers by Brute-Forcing Credentials
-
BT Recon:
How to Snoop on Bluetooth Devices Using Kali Linux
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
The Hacks of Mr. Robot:
How to Send a Spoofed SMS Text Message
-
How To:
Target Bluetooth Devices with Bettercap
-
How To:
Build an ARP Scanner Using Scapy and Python
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Create a Simple, Hidden Console Keylogger in C# Sharp
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
Hack Like a Pro:
How to Crack Online Web Form Passwords with THC-Hydra & Burp Suite
-
How To:
Create a Persistent Back Door in Android Using Kali Linux:
-
How To:
Scan Websites for Interesting Directories & Files with Gobuster
-
How to Hack Wi-Fi:
Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
Hacking Windows 10:
How to Dump NTLM Hashes & Crack Windows Passwords
5 Responses
This can easily be done with some simple javascript:
<img src="image source here" onclick=window.location.assign("destination here")></img>
Bless you for that! ..but I'm a beginner, could you please show me in (noob friendly) steps of how to accomplish this?
In your question you mentioned whatsapp, so here's the code that would take a whatsapp picture, and when clicked redirect you to nullbyte:
<img src="https://lh3.ggpht.com/bwBj9B4fGmTN_of0JS8xdkwklCmqCzSne1tJ9RaUNRQIzU-FEyCuFWzlsLyyPoTbyJE=w300 " onclick=window.location.assign("https://null-byte.wonderhowto.com ")></img>_
An easy way to test code is to try is to use W3 School's TryitEditor. All you need to do is copy and paste the code between the html tags (<html></html>). You can try sending it by email but it probably won't work since javascript is usually stripped off the image at the receiving end as to prevent malicious attacks. Xss would probably be used in a real world situation (to get the code onto a server) with onload instead of onclick(that way the victim doesn't even have to click the link, they just need to visit a page with our picture on it). Another option would be to host the image yourself.
Ignore the extra spaces.
Thanks again for that!
Share Your Thoughts