Skip to content

shriyanss/payload-pro

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits
addons
addons
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
logo.jpg
logo.jpg
 
 
payload.js
payload.js
 
 
webhook.md
webhook.md
 
 

Repository files navigation

Payload Pro

Javascript payload for exploiting blind XSS. You can simply host `payload.js` file editing the specifications for an ultimate XSS.

Pro-tip: You can star and watch this repository for upadtes to this :)

Features

It has some basic features like it can retrieve

  • Cookies
  • Page URL (the page on which it was fired)
  • System date and time (the date and time of victim machine)
  • Page source
  • Screenshot of page on which it was fired
  • A unique ID to recognise it

Some advanced features (inbuilt) are:-

  • Scan for HTTP ports running on the server hosting the vulnerable page
  • Scan for additional paths (fuzzing the path) on the same web server URL and page source will be sent to the server for above features

Add-ons

You can also done some more interesting stuff with add-ons. Just uncomment the line as written in the README file of particular add-on. Currenly, you can use three add-ons:-

More infomation can be found on README file

Deploying

You can use Pipedream to create workflows. Information can be found here

About

Javascript payload for exploiting blind XSS

Resources

Readme

License

Apache-2.0 license
Activity

Stars

5 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages