This lab is designed to work with my Alert Function Hijacking blog post where I talk about intercepting the HTTP response to take override the alert function and track down what is triggering the XSS.
In this simple example, you could simply deobfuscate the JavaScript include, but that isn't the point here.
Lab created by Robin Wood - DigiNinja