begood Posted April 4, 2010 Report Posted April 4, 2010 Polymorphic Cross-Site Scripting WormAs the title suggests here is a generic, polymorphic XSS worm. With each infection the worm re-encrypts itself using a basic XOR cipher. The only piece missing is the code that sends the obfuscated script (stored in the encoded variable) to it's next target, likely a persistent XSS vulnerability. Below is the complete source. To see it in action save the source to an HTML file then view it. The javascript outputted to the text area is the repackaged worm; to test the repackaged source, replace the javascript of the sample below with the encrypted code and view the page again.Downloads - prion-polymorphic-xss-worm - Project Hosting on Google Code//ironic e hostat de google Quote
