A keylogging script that can be injected into websites vulnerable to cross-site scripting.
The script tracks user keypresses by concatenating each keypress into a string that is POSTed to a server.
The script can be found in file keylogscript.html and can be tested on file captainslog.html. The POST request is currently commented out, but if you wanted to use it, just uncomment and provide the URL that you want the data to be sent to.
captainslog.html was an assignment completed for my web programming class and is one of many XSS-vulnerable pages that I’ve made. Simply paste the script (without newlines) into the textbox and submit. On other vulnerable websites, scripts may need to be a body parameter sent via POST.
This can also manually be added to the source code of websites through developer console. Simply open up a web page, pop open the element inspector and paste the script into the HTML. Then close the inspector and let your target do their thing. Note that this is untested.
Not responsible any mayhem that ensues, nor am I endorsing any black-hat activity.
ReplyDeleteIf you ever want to change or up your university grades contact cybergolden hacker he'll get it done and show a proof of work done before payment. He's efficient, reliable and affordable. He can also perform all sorts of hacks including text, whatsapp, password decrypt,hack any mobile phone, Escape Bancruptcy, Delete Criminal Records and the rest
Email: cybergoldenhacker at gmail dot com
I rarely write reviews, but I had to for this! Because I tried several apps to help with no luck. Back then, I was very confused and always felt awful about my partner’s cheating attitude. I really wanted to track and catch him red-handed. I downloaded this app hoping it would help but I wasn’t satisfied with its features as I needed to monitor my partner closely. I then spoke with a trusted colleague of mine at work and she gave me a genuine recommendation about an ethical private investigator named Christopher Kevin, I wrote to his email at WIZARDBRIXTON AT GMAIL DOT COM explaining how I wanted to have complete access to his call log, iMessage/SMS, social media activities, gallery, texts, deleted or not, his precise location day in day out. I paid for his services and in about 2-3 hours, I had complete access to his phone. I got concrete evidence. it was unbelievable to see the evidence of cheating on me. Who likes to live with a cheater, I used the evidence I got to file for a divorce. I’m thankful to Chris for helping me out of my dilemma and suspicions. His services are highly rated and affordable. If you are having trust issues and need valid evidence, how about you contact WIZARDBRIXTON AT GMAIL DOT COM? Thank you Chris for an incredible job !! I highly recommend his services, simply the best.
ReplyDeleteContact : WIZARDBRIXTON AT GMAIL DOT COM
Cell Number : (+) 1807234 0428