Giters

simonrutter / imagejs

Small tool to package javascript into a valid image file.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

imagejs

Small tool to package javascript into a valid image file.
Currently supported are gif and bmp.

Usage:

Run 'make' to compile and then run 'imagejs option jsfile.js imagefile'. Options are currently bmp and gif.

Background:

This tool allows you to create a picture file that is able to run javascript code. A file like this is able to extend XSS vulnerabilities. For example, if you are able to put a script tag on a website but cant run the script because it only runs scripts from this website, you can just upload e.g. a profile picture containing the code you want to run. The idea came from Ajin Abraham and i put it in c code and also added the ability to do the same thing also with bitmap files.

About

Small tool to package javascript into a valid image file.

License:GNU General Public License v3.0