Created
February 28, 2019 11:11
-
-
Save steve0hh/d912a0cb3ed9b4a389c3933b640d7e3f to your computer and use it in GitHub Desktop.
chrome_rt
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <title>abcd</title> | |
| <script charset="utf-8"> | |
| function httpGet(theUrl){ | |
| var xmlHttp = new XMLHttpRequest(); | |
| xmlHttp.open( "GET", theUrl ); | |
| xmlHttp.send( null ); | |
| } | |
| navigator.__defineGetter__('userAgent', function () { | |
| return "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:28.0) Gecko/20100101 Firefox/28.0)" | |
| }); | |
| navigator.__defineGetter__('appName', function () { | |
| return "Netscape" | |
| }); | |
| var count = 0 | |
| function doExfil(){ | |
| let data = Math.random().toString(36).substr(2) + Math.random().toString(36).substr(2) + Math.random().toString(36).substr(2); | |
| httpGet("?data="+data); | |
| count = count + 1; | |
| document.getElementById("content").innerHTML = "Hacky cat has sent " + count + " requests for u."; | |
| } | |
| // run function every 2000 seconds | |
| setInterval(doExfil, 2000); | |
| </script> | |
| </head> | |
| <body> | |
| <center> | |
| <img src="https://media.giphy.com/media/o0vwzuFwCGAFO/giphy.gif" alt=""/> | |
| <div id="content"> | |
| whut?! | |
| </div> | |
| <p>Check out web console for the request</p> | |
| </center> | |
| </body> | |
| </html> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment