|Hacks|Crack|Tips |Tricks|Cracks |Programs|Tutorials |Movies|Games|

Breaking

Monday, June 30, 2014

Clickjacking Tutorial For beginner



Greetings to all. Wow After so many days.. I am back again in blogging.. :)
Hope you all guys are fine.
So, today i am going to post about Click Jacking Vulnerability for all the beginners.
First of all, A short intro to clickjacking,

Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages.


Now the question comes how to test for clickjacking,,

This type of vulnerability often allows attacker’s site to induce user's actions on the target site even if anti-CSRF tokens are being used. So it's important, like for the CSRF attack, to individuate web pages of the target site that it take input from the user.

First of all, we have to find the vulnerability in the website. For this we will be using a easy HTML code i.e IFRAME code! Many of you may also know about it!
For testing we will be using this code.
Where in the place of the target site, there will be your targeted site and save the file as .html
<html>
<head>
 <title>Clickjack test page</title>
</head>
 <body>
<p>Website is vulnerable to clickjacking!</p>
<iframe src="http://www.target.site" width="500" height="500"></iframe>
</body>
</html>
see the pic below for little info :
You can also find clickjacking vulnerabilities for websites offering HOFS.
That's all, thanks for reading.. and please share my blog,
will post more.. :)


1 comment:

  1. Hello. Are you in need of a Hacker .I recommend (worldcyberhackers) on Gmail or whatsApp : +12678773020. I have used them and they are the best. They render services such as:

    -Facebook hack 
    -Gmail hack
    -Twitter hack
    -WhatsApp hack
    -Mobile phone hack
    -iPhone hack and recovery
    -Database Hack
    -Retrival of lost files
    -Viber hack 
    -Instagram Hack
    -Snapchat Hack
    -University grades changing 
    -Bank account hack 
    -Bypassing of Icloud 
    -Verified Paypal account.

    ReplyDelete