Modify xhr_harvester.py with parameters based on spoofed login page. Test.html is an example login page. Ideally, you would want to make a clone of your target. This exploit will work with the test.html sample.
To be used for security assessment and legal/educational purposes only