Skip to content

Instantly share code, notes, and snippets.

View gist:07098e29bdbcdb3ffe40
function set_ls() {
localStorage['ghid'] = 'ABCDEF0123456789';
}
set_ls();
View set_ls.html
<!doctype html>
<html>
<head>
<title>localStorage example</title>
<script type="application/javascript">
function set_ls() {
localStorage['frameId'] = 'ABCDEF0123456789';
}
</script>
</head>
View set_lo_entropy_ls.html
<!doctype html>
<html>
<head>
<title>localStorage example</title>
<script type="application/javascript">
function set_ls() {
localStorage['ab'] = 'ab'; // doesn't contain enough entropy
}
</script>
</head>
View set_ls_first_party
<!doctype html>
<html>
<head>
<title>localStorage example</title>
<script type="application/javascript">
function set_ls() {
localStorage['testkey'] = 'Test-0123456789';
}
</script>
</head>
View filltext_todataurl.html
<!doctype html>
<!-- Adapted from https://developer.mozilla.org/en-US/docs/Web/API/HTMLCanvasElement -->
<html>
<head>
<title>toDataURL example</title>
<script type="application/javascript">
function draw_and_get() {
var canvas = document.getElementById("canvas");
var ctx = canvas.getContext("2d");
View canvas_fp_urls.html
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="description" content="">
<meta name="author" content="">
<link rel="icon" href="../../favicon.ico">
View canvas_results.md
View test_1965.py
import unittest
from selenium import webdriver
from selenium.webdriver.firefox.firefox_binary import FirefoxBinary
from selenium.webdriver.common.desired_capabilities import DesiredCapabilities
from selenium.webdriver.firefox.webdriver import WebDriver as FirefoxDriver
from selenium.webdriver.firefox.options import Options
NIGHTLY = '/path/to/nightly/firefox'
CAPS = DesiredCapabilities.FIREFOX
CAPS["marionette"] = True
View frame_ls.html
<!doctype html>
<html>
<head>
<title>localStorage example - 3rd party frame</title>
</head>
<body>
<p>Test if we can detect localStorage set by a third-party frame</p>
<iframe src="https://rawgit.com/gunesacar/43e2ad2b76fa5a7f7c57/raw/44e7303338386514f1f5bb4166c8fd24a92e97fe/set_ls.html"></iframe>
</body>
</html>
View localstorage_from_third_party_script.html
<!doctype html>
<html>
<head>
<title>localStorage example</title>
<script src="https://rawgit.com/gunesacar/07098e29bdbcdb3ffe40/raw/eacd6885c9f10ccd97ce4ea425408f341409d3ee/gistfile1.js"></script>
</head>
<script type="application/javascript">
function read_ls() {
for(var key in localStorage) {
console.log(key + localStorage.getItem(key));