forest
/
tserof-nosnoj
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
tserof_nosnoj
26 Commits 1 Branch 0 Tags 2 MiB
Go 36.5%
Shell 30.1%
JavaScript 28.1%
Dockerfile 5.3%
Go to file
forest 2cd68908fd Merge remote-tracking branch 'origin/master' 2023-05-27 15:51:30 -05:00
presentation pres 2023-05-27 15:50:58 -05:00
.gitignore re-organize 2023-05-21 02:00:56 -05:00
Dockerfile re-organize 2023-05-21 02:00:56 -05:00
ReadMe.md Update 'ReadMe.md' 2023-05-21 21:26:33 +00:00
build_docker.sh re-organize 2023-05-21 02:00:56 -05:00
docker-compose.yml re-organize 2023-05-21 02:00:56 -05:00
findings.md Update 'findings.md' 2023-05-21 21:28:17 +00:00
i-had-fun-making-this cleanup 2023-05-20 23:44:27 -05:00
main.go blah it still doesn't work. wtf 2023-05-21 15:19:41 -05:00
payload.js remove greenhouse 2023-05-21 02:22:30 -05:00
payload.xml pres 2023-05-27 15:50:58 -05:00
payload2.js remove greenhouse 2023-05-21 02:22:30 -05:00

ReadMe.md

https://vore.website/j3s

What happen?

  1. vore reaper requests https://sequentialread.com/rss/

  2. sequentialread.com custom reverse proxy detects vore reaper and returns custom XML a7e806dd67/main.go (L48-L64)

  3. XML has an HTML script tag embedded inside a field that vore uses https://git.cyberia.club/forest/tserof-nosnoj/src/branch/master/payload.xml#L14

  4. XSS payload executes on vore.website, greeting the j3s user https://git.cyberia.club/forest/tserof-nosnoj/src/branch/master/payload.js

see findings.md