Quantcast
Channel: KitPloit - PenTest Tools!
Viewing all articles
Browse latest Browse all 5816

JShell - Get A JavaScript Shell With XSS

$
0
0
JShell - Get a JavaScript shell with XSS.

Usages
Run shell.py
and JShell will automatically try to detect your IP address, default LPORT is 33.


As you can see the payload has been generated and now all you have to do is to deliver this payload to the victim.

As soon as you do that, you will get a JS shell over netcat where you can execute your JavaScript code in victim's browser as soon as the injected page is open.
Here's a screenshot:


Credits, Disclaimer & License
This script uses the method demostrated by Rodolfo Assis



Viewing all articles
Browse latest Browse all 5816

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>