What is XSS Shell:
XSS Shell is powerful a XSS backdoor and zombie manager. This concept first presented by "XSS-Proxy – http://xss-proxy.sourceforge.net/". Normally in XSS attacks attacker has one shot, in XSS Shell you can interactively send requests and get responses from victim. you can backdoor the page.
You can steal basic auth, you can bypass IP restrictions in administration panels, you can DDoS some systems with a permanent XSS vulnerability etc. Attack possibilities are limited with ideas. Basically this tool demonstrates that you can do more with XSS.
Download the XSS Shell Aplication:
1. Download the XSS Shell application from the link above and extract the content.
2. Find and register for free ASP hosting. I use jabry.net in this example.
3. Edit xssshell.asp. (see the picture below)
change the SERVER address with your ASP server hosting address.
4. We need to find and get the asp current working directory, you can use the script below :
<%= Server.MapPath(Request.ServerVariables("PATH_INFO" ))%>
save as cwd.asp and upload to your ASP hosting inside the db folder.
5. Access cwd.asp in your browser. It will look like this:
6. Open "admin" folder and open db.php file. We need to edit the DATABASE configuration from the data in step 5.
to edit the password for log in to admin section:
7. Here is my xsshell folder content preview.
8. Now lets try to access the admin folder in our browser, the password to log in to admin section you can find and change in step 6.
Our XSS Shell has been set up successfully!
Notes: You need to find the suitable ASP hosting to upload this script if not work in some free hosting provider.
Upcoming tutorial we will continue the xss attack series tutorial about XSS tunnel. Subscribe now and get update directly on your email.