iFrame injection Attack full tutorial by Ashu Singh


First of all we have to know about the iFrame ..

An IFrame  is just a way of loading one web page inside another, usually from a different server. That can be useful for building online applications. But malware writers can make the included page just one pixel square – meaning you can’t even see it’s there – and obfuscate the JavaScript that will run automatically from that included page so that it looks something like %6C%20%66%72%61%6D%65%62%6F – leaving no obvious clue that it’s malicious.

Just Like an image shows you…

iFrame Injection

Now here it comes ,what is iFrame Injection..? 

It is simple HTML level of attack that can redirect you by clicking from one page to another page.Using IFrame tag, The Attackers injects the malware contain website(links) using Cross site Scripting in popular websites.  So if the usual visitors of that popular sites opens the website, it will redirect to malware contain website.  Malware  will be loaded to your computer, now you are infected.

Some attribute to use iframe is as follows:

iframe injection attack full tutorial by ashu singh

Tutorial:

1.First of all attacker will find the Vulnerable websites using google dorks.
2. They test the vulnerability by inserting some iframe tag using the url.
3. then insert the Malicious Iframe code inside the webpage.

For Example:

He can insert this code using the url :

iframe injection attack full tutorial by ashu singh

For php webpages :

iframe injection attack full tutorial by ashu singh

Obfuscate javascript : 

iframe injection attack full tutorial by ashu singh

  1. So if the clients load page, his system will be infected.

Done !!

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s