Comments (1)
Hey @geople... Are you trying to report something or just telling here things that you believe...until something is (or not) success with your intentions?.
Firstly, to report seriously, please try to fill this form: https://github.com/epsylon/xsser/blob/master/.github/ISSUE_TEMPLATE/bug_report.md
Secondly, Do you know how network sniffing (even just localhost sniffing) works, really?.
I mean, if <your_target> isn't vulnerable, this "back-socket" will not be open, so...obviously, not any traffic will be reported. But, in the other hand, if <your_target> is vulnerable, you will see how, after discover it, XSSer will send a second query with a new payload, this time, establishing a reverse connection to a client/server open port: https://github.com/epsylon/xsser/blob/master/core/tokenhub.py , https://github.com/epsylon/xsser/blob/master/core/main.py#L1466
Please, it is very difficult for me to understand this things that you "believe" that are happening on your boxes. Mostly, when you have virtual environments and lack of reading manuals about how their really works...
from xsser.
Related Issues (20)
- Valueerror when install xsser in windows 8 32bit HOT 4
- --reverse-check fails due to initial cookies improperly added to second query with reverse payload HOT 10
- it seems not useful HOT 4
- Couldnt specify injection point HOT 1
- xsser can't find the attack place HOT 1
- Using python 3.5 TypeError: coercing to str: need a bytes-like object, NoneType found HOT 11
- Error HOT 2
- TypeError HOT 2
- TypeError HOT 1
- xsser can not working HOT 1
- xsser not working HOT 1
- Error execution HOT 1
- Mac (12.0.1) Installation HOT 1
- print result bug INT HOT 1
- Typo in main.py - "self.repot" HOT 1
- Infinity Landing gtk HOT 3
- pycurl installation error HOT 1
- Xsser calls not found on every parameter HOT 2
- Error] Not any valid source provided to start a test... Aborting! HOT 1
- UnboundLocalError: cannot access local variable 'payload_string' where it is not associated with a value HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from xsser.