Jack v1.0 Illustrate ClickJacking Vulnerabilities

Jack v1.0 Illustrate ClickJacking Vulnerabilities

Jack is a web based tool to illustrate ClickJacking vulnerabilities found in web applications.

Jack allows for implementers to check if certain online resources are vulnerable to ClickJacking, furthermore Jack allows implementers to implement a ClickJacking PoC of the targeted online resource to demo credential harvesting using basic HTML elements and JavaScript events. Jack allows the implementers to generate a local instance of the malicious PoC and deploy to a HTTP container such as Apacher.

Jack is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License

Jack Contains:

  • resources/**
  • index.html
  • sandbox.html
  • oldIndex.html

 

[button size=large style=round color=red align=none url=https://github.com/sensepost/jack]Download Jack v1.0[/button]

Thanks to our friend Chris Le Roy, for sharing this tool with us 😉

MaxiSoler

www.artssec.com @maxisoler
Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Used MITRE ATT&CK Tactics & Techniques In 2020

Top 10 Most Exploited Vulnerabilities in 2020

Top 10 Most Exploited Vulnerabilities in 2020

vFeed, Inc. Introduces Vulnerability Common Patch Format Feature

vFeed, Inc. Introduces Vulnerability Common Patch Format Feature

Efficiency of the Vulnerability Response With vFeed Intelligence

Efficiency of the Vulnerability Response With vFeed Intelligence

CVE In The Hook – Monthly Vulnerability Review (February 2020 Issue)

CVE In The Hook – Monthly Vulnerability Review (February 2020 Issue)

Fox Kitten -Iranian Espionage – leveraged 4 CVEs Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs

Fox Kitten -Iranian Espionage – leveraged 4 CVEs Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs