Phishing

BITB – Browser Templates For The Browser In The Browser Attack

The idea of a BITB (Browser Templates For The Browser In The Browser) attack came about because of new computer threats. This advanced method includes manipulating browsers within browsers and taking advantage of security holes to break security.

By looking into the details of this attack, we find a scary way that bad people can break into systems and possibly get access to private data without permission.

Understanding BITB is important if you want to strengthen your digital defenses and stay ahead of cyber threats in the ongoing fight against them. For more information..

Usage

Each folder has a file that has four variables that must be modified:

  • XX-TITLE-XX: The title that shows up for the page (e.g. Sign in to your account now)
  • XX-DOMAIN-NAME-XX: The Domain name you’re masquerading as. (e.g. gmail.com)
  • XX-DOMAIN-PATH-XX: Domain path (e.g. /auth/google/login)
  • XX-PHISHING-LINK-XX : Phishing link which will be embedded into the iFrame (e.g.)

Furthermore, if you’re using a Windows template, you should update the icon of the website you’re masquerading as. The default logo is Microsoft.

Windows-DarkMode-Delay

The Windows-DarkMode-Delay folder makes use of jQuery’s fadeIn() function to add a slight delay to the pop-up window as it appears.

This is only one way of making the Window appear in a delayed fashion; there are various other ways to do the same.

Demo

Detecting Color Preference

To get the most out of this, you should determine the OS from the user agent and the color preference and display the appropriate template.

To find out if you should use dark or light templates check out.

Detecting BITB

Dragging the Window

One way of detecting BITB is by attempting to drag the window to the edge of the browser. If the window cannot escape the browser then it’s not a real window.

Browser Extension

@odacavo released a great browser extension that can detect and warn users about embedded iframes. It’s available here

All credits go to @odacavo.

Disclaimer

Usage of these templates for attacking targets without prior consent is illegal. It’s the end user’s responsibility to obey all applicable laws. The developer is not responsible for any misuse of these templates.

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Leave a Comment
Share
Published by
Varshini
Tags: Browser In The Browser (BITB)Phishing TemplatesWeb Application Security
2 years ago

Recent Posts

Starship : Revolutionizing Terminal Experiences Across Shells

Starship is a powerful, minimal, and highly customizable cross-shell prompt designed to enhance the terminal…

1 day ago

Lemmy : A Decentralized Link Aggregator And Forum For The Fediverse

Lemmy is an innovative, open-source platform designed for link aggregation and discussion, providing a decentralized…

1 day ago

Massive UX Improvements, Custom Disassemblers, And MSVC Support In ImHex v1.37.0

The latest release of ImHex v1.37.0 introduces a host of exciting features and improvements, enhancing…

1 day ago

Ghauri : A Powerful SQL Injection Detection And Exploitation Tool

Ghauri is a cutting-edge, cross-platform tool designed to automate the detection and exploitation of SQL…

1 day ago

Writing Tools : Revolutionizing The Art Of Writing

Writing tools have become indispensable for individuals looking to enhance their writing efficiency, accuracy, and…

1 day ago

PatchWerk : A Tool For Cleaning NTDLL Syscall Stubs

PatchWerk is a proof-of-concept (PoC) tool designed to clean NTDLL syscall stubs by patching syscall…

2 days ago