Skip to content

xrahitel/browser-autofill-phishing

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Browser Autofill Phishing 🐟

GitHub license

This is a simple demonstration of form fields hidden from the user, but will be filled anyways when using the browser form autofill feature, which poses a security risk for users, unaware of giving their information to the website.

Google Chrome behaviour

Here's the demo in action on the Google Chrome Browser:

Autofill Demo

Other browsers

It works differently in some other browsers. For example:

  • In Safari, it will tell you all the data it is filling into the form, even if it isn't visible to you.

  • In Firefox, you have to right click an input field and then select an identity to use. So a Firefox user autofills each field.

Live demo

View the page at: https://anttiviljami.github.io/browser-autofill-phishing/

Contributing

Please feel free to submit pull requests to this repository for any additional information you feel is important!

References

About

A simple demo of phishing by abusing the browser autofill feature

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • JavaScript 100.0%