Features
- fully automated setup including vps and discord server
- interactsh is hosted on ports 8:http, 4:https, 25:smtp, 53:dns, 445:smb
- modified version of xsshunter
- generates a cert for the root domain and a wildcard for subdomains.
- supports custom file serving.
- if no file in the web root matches the path a blind xss probe is returned.
- the probe exfiltrate everything that xsshunter does + localStorage.
- no http to https redirect (allowing for shorter curl based command injection payloads)
- all exfiltrated data is stored in an SQLite db.
- notifications are sent to discord.
Prerequisites
- a domain name
- an aws account
- a discord account
Dependencies
- jq
- openssh
- terraform
- ansible
- packer
- aws cli installed & configured
Setup Steps
# 1) create discord server
# https://www.writebots.com/discord-bot-token/
./create_discord_server.sh $discord_bot_token
# 2) create the snapshot
./create_snapshot.sh
# 3) deploy EC2
./deploy.sh $domain_name
# 4) setup glue records as dictated by the output of `deploy.sh` & wait for them to propagatePS: steps one and two only have to run once, than you can use the deploy.sh & teardown.sh scripts to spin up and destroy the server whenever needed.
PS: the EC2 instance is a t2.micro and you get one of those for free with every aws account so this setup is free if you have no other EC2s in your account.