JShell - Get A JavaScript Shell With XSS

JShell – Get A JavaScript Shell With XSS

September 30, 2018July 27, 2019 Comments Off

JShell – Get a JavaScript shell with XSS.

Usages
Run shell.py
and JShell will automatically try to detect your IP address, default LPORT is 33.

As you can see the payload has been generated and now all you have to do is to deliver this payload to the victim.

As soon as you do that, you will get a JS shell over netcat where you can execute your JavaScript code in victim’s browser as soon as the injected page is open.
Here’s a screenshot:

Credits, Disclaimer & License
This script uses the method demostrated by Rodolfo Assis

Download JShell

PTF – Penetration Testers Framework

August 13, 2019

Xssizer – The Best Tool To Find And Prove XSS Flaws

August 1, 2019

XSpear: Powerfull XSS Scanning and Parameter Analysis tool

July 27, 2019

JShell – Get A JavaScript Shell With XSS

Related Articles

PTF – Penetration Testers Framework

Xssizer – The Best Tool To Find And Prove XSS Flaws

XSpear: Powerfull XSS Scanning and Parameter Analysis tool

ABOUT US

COMPANY

RESOURCES

TOOLBOX

Join Our Community

Subscribe now and get your free HACKERS HANDBOOK