Before i start my Article first i would like to tell if your a newbie or you r new to hacking then you can learn phishing here in my previous articles:
facebook phishing , How to perform phishing manually
Advantages over normal phishing:
In Normal phishing the victim will be given a link which is made by the hacker. A person with basic knowledge can recognize that it was a fake link.But in XSS the victim cannot suspect the link because it contains a trusted URL.
Now lets start , in this article i will be showing you that how you will craft your link into A Clint side script link of a XSS vulnerable website. which will confuse even a Smart victim to click on the link & enter private data like emails,password because the phisher link wiill be crafted in the original link of Xss vulnerable website.
What is Cross site Scripting(XSS)?
It is a vulnerability typically found in web applications.A hacker can use this vulnerability to inject client-side script into web pages viewed by other users.
What can an attacker do with this?
Lets Start Our Attack Demonstration:
1. The very firs thing you have to do is, find An Xss Vulnerable Website
This can be done using google. Go to google and search using the following Dork.
2. this is a very main part , how to craft your link:
Your link will look like
http://site.com/search.php?q=<script>alert("you are hacked")</script>
You can use your specially crafted link to steal your victim�s information just as in phishing|
EXAMPLE:
facebook phishing , How to perform phishing manually
Advantages over normal phishing:
In Normal phishing the victim will be given a link which is made by the hacker. A person with basic knowledge can recognize that it was a fake link.But in XSS the victim cannot suspect the link because it contains a trusted URL.
Now lets start , in this article i will be showing you that how you will craft your link into A Clint side script link of a XSS vulnerable website. which will confuse even a Smart victim to click on the link & enter private data like emails,password because the phisher link wiill be crafted in the original link of Xss vulnerable website.
What is Cross site Scripting(XSS)?
It is a vulnerability typically found in web applications.A hacker can use this vulnerability to inject client-side script into web pages viewed by other users.
A Web application vulnerable to XSS allows a user to inadvertently send malicious data to self through that application.
Attackers often perform XSS exploitation by crafting malicious URLs and tricking users into clicking on them.
These links cause client side scripting languages )VBScript, JavaScript etc,) of the attacker s choice to execute on the victim's browser.
XSS vulnerabilities are caused by a failure in the web application to properly validate user input.
- Steal user cookies and can take complete account takeover
- Steal data on web pages viewed by victim
- Deface pages viewed by victim
- Use web pages for phishing
Lets Start Our Attack Demonstration:
1. The very firs thing you have to do is, find An Xss Vulnerable Website
This can be done using google. Go to google and search using the following Dork.
inurl: "search.php?q="
To test the vulnerability you can inject the following code in search fields,comment fields of your website.
<script>alert("hacker dev")</script>
If it returns an alert box showing �hacker dev�, That site is vulnerable to XSS.To test the vulnerability you can inject the following code in search fields,comment fields of your website.
<script>alert("hacker dev")</script>
2. this is a very main part , how to craft your link:
Your link will look like
http://site.com/search.php?q=<script>alert("you are hacked")</script>
You can use your specially crafted link to steal your victim�s information just as in phishing|
EXAMPLE:
I am showing you an example with vulnerable link found in google.
Note:
This link is kept here for demonstration purpose only. I will not be held responsible if you do any thing illegal with this and this bug is not fixed yet. If google fixes it,it may not work.
http://www.google.com/search?btnI&q=allinurl:http://www.devzcyberarena.blogspot.com/
You can replace �http://www.devzcyberarena.blogspot.com/� with your fake login page�s link.Then it takes the victim to your fake login page.Note:
This link is kept here for demonstration purpose only. I will not be held responsible if you do any thing illegal with this and this bug is not fixed yet. If google fixes it,it may not work.
http://www.google.com/search?btnI&q=allinurl:http://www.devzcyberarena.blogspot.com/
Step 3:Send the link to your victim
Now you can send your specially crafted link to the victim by any means as you do in normal phishing.
Now you can send your specially crafted link to the victim by any means as you do in normal phishing.
This is such a dangerous vulnerability in web applications. It got 2nd rank in OWASP top 10 vulnerabilities.If a hacker finds this vulnerability in any of the bank websites, he can attempt a malicious attack against the customers of the bank and steal lots of information like credit cards, account numbers, passwords etc by simply sending a group mail to the customers of the bank.
How to do phishing With XSS Vulnerability | Advance Level of Phishing