integrate Browser Exploit Attack and XSS Attack

RoganDawes / P4wnP1

P4wnP1 is a highly customizable USB attack platform, based on a low cost Raspberry Pi Zero or Raspberry Pi Zero W.

GNU General Public License v3.0

4.05k stars 663 forks source link

integrate Browser Exploit Attack and XSS Attack #35

Closed koushui closed 7 years ago

koushui commented 7 years ago

P4wnP1 can integrate Browser Exploit? and integrate web attack like Poisontap?

mame82 commented 7 years ago

Poisontap relies on a routing/DHCP configuration, similar to the one of P4wnP1. If you use this payload as starting point, leave responder running, install nodejs, clone poisontap from @samyk, add two lines to the payload to start pi_poisontap.js and to REDIRECT outbound traffic directed to port 80 to 127.0.0.1:1337.

So yes, it is possible to use all kind of attacks, but its up to you to build the payloads.