Clickjacker – Exploit clickjacking easily

Clickjacker is a tool that helps to easily exploit clickjacking. Simply insert the vulnerable URL and locate the ‘social engineering’ on the element you would like the victim to click on by using the arrow buttons. Clickjacker will dynamically generate a link to send to the victim on the right-hand side.

In addition, you'll have the raw HTML code to insert into an HTML file and upload to your own server, to send to the victim the link of the page using your domain.

Clickjacker's URL address

http://attacker-site.com/html5/clickjacker/clickjacker_clickjacking_expl...

This tool is based on the HTML5 attack framework.

Risks of click jacking

Like in a CSRF attack, the user can be manipulated into performing actions on the website. It is easier to cause the user to click a specific button (such as ‘+1’, for example), but with advanced exploitation an attacker can manipulate a user to enter text into a text box or read text from a website.

Reading data by clickjacking via clickjacker

Clickjacker contains an advanced option that enables reading data by clickjacking. To do this, the social engineering type needs to be changed in the advanced tab from ‘click’ to ‘read’. Then, manually change the ‘iFrame container’ properties in the advanced tab to the specific size you need. Now simply change the opacity to 100.

* Name:
* Email:
* Phone:
Company:

Application Security

Clickjacker – Exploit clickjacking easily

Our Latest Tools

New Tool Launch - Belch 1.0.13

Check it out!! (click here)

New Android Penetration Testing Platform-

Our Books

Managed Code Rootkits

by Erez Metula

Contact Us

You are here