Thursday, August 17, 2006

CSS/JS History Hack ported to Internet Explorer

I've been traveling the last few days and there has been so webappsec news recently. Let's see if I can catch up.

pdp (architect) from gnucitizen has ported my JavaScript/CSS visited link scanner over to Internet Explorer. I haven't tried it out myself, since I run a mac, but this should help out the Windows guys in learning about this stuff.
"The POC presented here is my improved version of the POC presented in BlackHat. I made it work well in IE6, IE7, Firefox and Opera. IE6 has very nasty disabilities when dealing with dynamically generated style sheets. However, these can be easy sorted out by reusing the current style sheet. If you are interested how it works just read the provided source code."
Upon inspection of the rest of pdp's projects, a lot his other PoC code projects look really interesting to any webappsec person. Including a JavaScript Authorization Forcer, JavaScript Address Info, XSSing the LAN, and another JavaScript port scanner. JavaScript Malware is truly the new shell code and we can expect a lot more research to continue in this area.

3 comments:

Anonymous said...

It doesn't work in IE7 beta3
It works on Firefox 1.5.0.6

Anonymous said...

It doesn't work with IE7 beta3
It works with Firefox 1.5.0.6

snrocks said...

It doesn't work with anu of the latest browsers