| Free security/privacy Javascripts: |
No right click version 3I wrote this script as a kind of request. This script will stop your visitors from right clicking on your page and potentially stealing your graphics etc...When the visitor right clicks on the page an auto centering DHTML window pops up alerting them to the issue and provides a link to follow. For a demo just right click your page within this frame. | ||||||
| ||||||
'samSearch' - SAM file sniffer script:UPDATE: Aug. 31st, 2004: As of WinXP SP2 this script does not seem to work correctly. Possably it could be recoded to fix a bug or two but I am not going to mess with it anymore. This JavaScript will search your Windows PC for the existence of a copy of your system password file (SAM) in the repair directory. This script does seperate searches for WINNT and WINDOWS directories. This code contains some VB script so it only works accuratly in IE browsers. NOTE: I couldn't get the code to work right when searches for both c:\winnt\repair\sam AND c:\windows\repair\sam were down on same page...I would get it to work in a machine with WINDOWS directory just fine but it then would be buggy with WINNT directories so I split up each search into seperate pages and make sure the directories are correct before checking for the file or it gives false results. This script can also sniff out visitors local directories, example: c:\Inetpub. There is a PHP script that does just this plus it logs the data to a log file in the PHP > Security/Privacy section. Note: I only wrote the scripts...I did not discover the vunerability! | ||||||
Clipboard content display:This JavaScript will display your visitors clipboard content (text only) to them in an alert box. If you would like a script that logs the clipboard data to a logfile then check out the PHP > Security/Privacy section. Both of these scripts only work in IE browsers. Note: I only wrote the scripts...I did not discover the vunerability! | ||||||
JavaScript Key logger:This is a simple javascript keylogger. When ran this file will open a window in the background and will log all keystrokes to that window. The page with this script in it must be 'on top' and active to log keys into other window. | ||||||
Domain referrer verification / validation script:If you only want your visitors to reach a certain page by way of your domain (certain forms etc...) then this domain validation script might help you out. | ||||||
No right click with message (view source blocker, image protector):This no right click - image and source code protection JScript will block BOTH IE and Netscape users from right clicking on a page and gives you a choice of weather or not you want to pop up an alert message of your choice. This script also has the option to close the window after displaying the message if you want to. | ||||||
| ||||||
Anti spambot spammer email:This anti spam-bot script will keep spambots from collecting your email address off your webpage and sending it to spammers. | ||||||
Random password generator:I did not write this script but I did modify it. This javascript will generate passwords via a form which you fill out. It has the option to add numbers, letters and symbols. | ||||||
Block visitor by their IP - IP blocker:UPDATE: I had a visitor write me and ask about this script...He brought up a good point I thought others might run accross so...For some variations on this script and some info on them click here. This IP blocker script will block anyone trying to view your website from a specific IP address. NOTE: This JScript uses SSI (server side includes) so the page that this script is in must use the .shtml extension. Also there is a timed IP blocker in the PHP > Security section. | ||||||
Visitor drive information v2:NOTICE As of SP2 this code no longer works. This code will allow you to show your visitors what files are on their computer via the web. This isn't really JavaScript but hey, close enough! It's actually known as the Microsoft Internet Explorer Shell: IFrame Cross-Zone Scripting Vulnerability discovered by Roozbeh Afrasiabi. As it's name implies, this script only works in IE browsers. | ||||||
Visitor drive information:Update: This script may or may not work for you depending on your browser and security settings. There is a newer way to achieve this but I will leave this script here anyway. This script will allow you to show your visitors what files are on their computer via the web. NOTE: This javascript only seems to work locally for Netscape browsers but works fine for I.E. | ||||||
Cross site frame title hack:NOTICE As of SP2 this code no longer works in I.E. if "Yahoo" window is opened as separate (child) window. This script will allow you to manipulate a frameset title even across domains which is sometimes used to create hoax pages. The visitor will think he is at yahoo.com (for example) but is really still in your domain. This is just a simple script. If you are interested in these types of vulnerabilities then check out www.securityfocus.com. | ||||||
McAfee Virus alert:This is a 'joke' script that will trigger an alert from McAfee Antivirus software although it is nothing, it simply contains know JavaScript 'virus' signatures. NOTE: If you have problems handling this script due to either you or your server using McAfee AV then use a PHP file to hold the code until it is requested and parsed...this way the script wont get deleted by your AV prematurely! You can get the PHP code for this in the PHP section. | ||||||
JS/dlCPUS -
| ||||||
JS/SPS -
| ||||||
JS/SPS -
| ||||||
