Giters

shadow-workers / shadow-workers

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

Home Page:https://shadow-workers.github.io

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

xss-exploitationservice-workerc2proxypenetration-testing-tools

Shadow Workers

Foo

Foo

Info

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW). A successful exploitation allows you to browse on the targeted application as the victim(s), as long as the SW (agent) is active. A victim does not have to have a browser tab open in the application for the agent to be active.

How to use

Shadow Workers Site

TrustedSec Blog posts on the tool:

https://www.trustedsec.com/blog/persistence-through-service-workers-part-1-introduction-and-target-application-setup

https://trustedsec.com/blog/persistence-through-service-workers-part-2-c2-setup-and-use

Authors

License

This tool is released under the MIT License.

About

Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)

https://shadow-workers.github.io

xss-exploitationservice-workerc2proxypenetration-testing-tools

License:MIT License

Languages

Language:JavaScript 90.7%Language:Python 5.2%Language:CSS 3.3%Language:HTML 0.6%Language:Mako 0.1%Language:Shell 0.1%