cookie thief 通过chrome插件插入xss代码,盗取cookie.
优点:浏览器权限,跨域,哪家都可以打。 缺点:插件安装如何解决? 可以物理攻击,可以山寨其它插件诱骗安装
-
Notifications
You must be signed in to change notification settings - Fork 4
zhanghangorg/chief
<
8000
script crossorigin="anonymous" defer="defer" type="application/javascript" src="https://github.githubassets.com/assets/ui_packages_use-alive_use-alive_ts-76afc22ebc92.js">
About
chrome扩展中XSS攻击
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published