Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A for any cross site scripting information. Feel free to ask away. 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Cross Site Scripting Tunneling
Posted by: Sr.Gr33n
Date: January 27, 2013 11:44AM

I haven't found anything about this kind of attacks in the forum so I wan't to post some information abaut XSS Tunneling.

~> What's a XSS tunnel?

Ok, XSST is a HTTP connection that you can stablish with a victim trhow a XSS usually attack.

~> What offers this attack?

This kind of attacks offers you a shell based on JS and allows you to execute some commands in victim's PC but the best of it is that you can configure victim's browser so as to reconnect whit your machine every time it starts.

More info ~~~> labs[dot]portcullis[dot]co[dot]uk/application/xss-tunnelling/

There is a paper in the web very easy so as to understand it.

Gr33tings!

Options: ReplyQuote


Sorry, only registered users may post in this forum.