like i said previously Xss Attack or Cross site scripting is simple but it can be used in deadlier way
Xssed sites ...
As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website.
To perform this Attack we need three thigs
First Of all Download the script from the below link
Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file.
Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com just Change it to your hosting URl.
Now host all these scripts on your web host.
Now find a XSS vulnerable website website and include script link like this:
Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script.
If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords.
I Believe You all will like my this tutorial Keep Visiting Darksite :)