Skip to content
/ commandAndControlCenterXSS Public

This repository contains a Command and Control Center to be contacted during a XSS attack. It extracts the victims session cookie, performs stealth attacks and privilege escalation. The attacked web application is the MISM by Amir Sanni

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

RBReif/commandAndControlCenterXSS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.idea
.idea
 
 
README.md
README.md
 
 
index.php
index.php
 
 
inse6140Report-Final.pdf
inse6140Report-Final.pdf
 
 

Repository files navigation

commandAndControlCenterXSS

This repository contains a Command and Control Center to be contacted during a XSS attack. It extracts the victims session cookie, performs stealth attacks and privilege escalation. The attacked web application is the MISM by Amir Sanni (https://github.com/amirsanni/Mini-Inventory-and-Sales-Management-System). This attack is performed as part of a project for the course INSE6140 Application Security and Malware Defenses @ Concordia University.

An explanation of the full XSS attack using this C&C Center can be found in Chapter 5 of the report.

About

This repository contains a Command and Control Center to be contacted during a XSS attack. It extracts the victims session cookie, performs stealth attacks and privilege escalation. The attacked web application is the MISM by Amir Sanni

Topics

xss c2c crosssitescripting

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages