Ticker

6/recent/ticker-posts

Cross-site Scripting - Website Hacking

What is Cross-site Scripting (XSS)

It is c client-side code injection. Vulnerability happens when a hacker input html script from url, post even comment box then data is reflected on the page without being stored.

How to check if website is XSS Vulnerable

Their is a python based script Clickjacking-Taster or tool which can check if the website is cross-site scripting vulnerable

Open Terminal and type following commands

$ apt update && apt upgrade

$ apt install git

$ apt install python2

$ git clone https://github.com/D4Vinci/Clickjacking-Tester.git

$ cd Clickjacking-Tester

$ python2 Clickjacking_Tester.py  file.txt

You need to make txt file which contain full webstie url which you want to check and paste it location on place of file.txt

Now it show you if website have XSS Vulnerability and now you can exploit it.

I hop this information is helpful for you if you found something interesting then feel free to comment below and don't forget to share in groups. Have a nice day

Mohit Saran (Hacker's King)