- Upload
cookiestealer.phpto your server - Edit
cookie.phpto change$server_ipvalue with your server's URL or IP with port - Go to http://IP:port/cookie.php
- cat
log.txtto see the collected cookies
php -S ip:port
This code is based on what can be seen here: Write an XSS Cookie Stealer in JavaScript to Steal Passwords