Launch Exploits Against Internal Network: sonar.js
A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration, WebSocket host scanning, and external resource fingerprinting. How does it work? Upon loading the sonar.js payload in a modern web browser the following will happen: sonar.js will use WebRTC to enumerate what internal IPs the user loading the payload […]