Skip to content

This repository contains a Command and Control Center to be contacted during a XSS attack. It extracts the victims session cookie, performs stealth attacks and privilege escalation. The attacked web application is the MISM by Amir Sanni

Notifications You must be signed in to change notification settings

RBReif/commandAndControlCenterXSS

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 

Repository files navigation

commandAndControlCenterXSS

This repository contains a Command and Control Center to be contacted during a XSS attack. It extracts the victims session cookie, performs stealth attacks and privilege escalation. The attacked web application is the MISM by Amir Sanni (https://github.com/amirsanni/Mini-Inventory-and-Sales-Management-System). This attack is performed as part of a project for the course INSE6140 Application Security and Malware Defenses @ Concordia University.

An explanation of the full XSS attack using this C&C Center can be found in Chapter 5 of the report.

About

This repository contains a Command and Control Center to be contacted during a XSS attack. It extracts the victims session cookie, performs stealth attacks and privilege escalation. The attacked web application is the MISM by Amir Sanni

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages