XSS Tunnelling is the tunnelling of HTTP traffic through an XSS Channel to use
virtually any application that supports HTTP proxies.

XSS Tunnel is the standard HTTP proxy which sits on an attacker’s system. Any tool
that is configured to use it will tunnel its traffic through the active XSS Channel on
the XSS Shell server. The XSS Tunnel converts the request and responds
transparently to validate the HTTP responses and XSS Shell requests.
XSS Tunnel is written in .NET and requires .NET Framework to work. It is a GPL
Licensed open source application.

XSS Shell is powerful a XSS backdoor and zombie manager. This concept first presented by XSS-Proxy. Normally in XSS attacks attacker has one shot, in XSS Shell you can interactively send requests and get responses from victim. you can backdoor the page.

You can steal basic authentication, you can bypass IP restrictions in administration panels, you can DDoS some systems with a permanent XSS vulnerability etc. Attack possibilities are limited with ideas. Basically this tool demonstrates that you can do more with XSS.

XSS Shell has several features to gain whole access over victim. Also you can simply add your own commands.

7 minutes video shows how can you installation and configuration of XSS Shell and XSS Tunnel.