XSSF is a Cross-Site Scripting Metasploit Framework

XSSF is an brilliant tool this is designed to make the XSS vulnerability exploitation an clean project.

It presents a powerful documented API, which enables the development of modules and attacks. Its integration into the Metasploit Framework allows users to launch MSF browser primarily based exploits very effortlessly.

XSSF is a Cross-Site Scripting Metasploit Framework

XSSF lets in growing a communique channel with the centered browser (from an XSS vulnerability).

set up commands
1. download the ultra-modern Metasploit Framework (MSF) launch.

2. installation Metasploit Framework.

three. update Ruby if now not already carried out.

four. down load XSSF (down load hyperlinks are on the cease of this newsletter).

five. reproduction and paste all downloaded documents into the Metasploit folder.

XSSF Basics: Install (Kali-1.0) & Use:


Simple XSSF attack (Stealing file on Xperia X10):


Launching MSF exploit through XSSF (CVE-2010-2568):


XSSF Tunnel (Surfing through targeted browser):








Popular Posts