XSSSHell looks like the one I was thinking of, though BeEF looks interesting, too. Thanks!
On Mon, Jun 16, 2008 at 8:50 AM, Tim Brown <[EMAIL PROTECTED]> wrote: > On Monday 16 June 2008 12:26:48 Hanno Böck wrote: > > Am Mittwoch 11 Juni 2008 schrieb Aaron Katz: > > > Several months ago, there was a post about a proof of concept for > > > complete browser hijacking via XSS. IIRC, the hijacked browser would > > > periodically query a management server, and the management server would > > > track the hijacked browsers in a database. The person controlling the > > > management server could then instruct the hijacked browsers to do his > > > bidding. > > > > > > The thing is, I can't find the tool. I'm wondering if anyone still > knows > > > where it is. > > > > BeEF? (google for it, according to german law I'm probably not allowed to > > post this link) > > http://www.google.com/search?q=xssshell > > Cheers, > Tim > -- > Tim Brown > <mailto:[EMAIL PROTECTED]> > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
