Advanced Exploitation using XSS-SHELL

by kamalb Sept. 10, 2017 via

Before getting into XSS Shell, let us recollect few basics of XSS (Cross Site Scripting). XSS is one of the most common vulnerability that exists in many of the web applications today. XSS is a technique through which an attacker tries to compromise the web application by executing a malicious script. The attacker does this by breaking the Same-Origin policy of the web application. Same–Origin policy defines that the script which is coming from the foreign site or the script that doesn’t belongs to the same domain (i.e document.domain) should not be processed by the application.

negrii_irina88 3 weeks, 5 days ago

quite interesting... XSS Shell has several features to gain whole access over victim