Social Eng. Extension: Added RESTful API calls for both mass_mailer and web_cloner

extensions/social_engineering/extension.rb

@@ -15,18 +15,28 @@
 #
 module BeEF
 module Extension
-module SocialEngineering
-  extend BeEF::API::Extension
 
-  @short_name = 'social_engineering'
+  module RegisterSEngHandler
-  @full_name = 'Social Engineering'
+    def self.mount_handler(server)
-  @description = 'Phishing attacks for your pleasure: web page cloner (POST interceptor and BeEF goodness), highly configurable mass mailer, etc.'
+      server.mount('/api/seng', BeEF::Extension::SocialEngineering::SEngRest.new)
-end
+    end
+  end
+
+  module SocialEngineering
+    extend BeEF::API::Extension
+
+    @short_name = 'social_engineering'
+    @full_name = 'Social Engineering'
+    @description = 'Phishing attacks for your pleasure: web page cloner (POST interceptor and BeEF goodness), highly configurable mass mailer, etc.'
+
+    BeEF::API::Registrar.instance.register(BeEF::Extension::RegisterSEngHandler, BeEF::API::Server, 'mount_handler')
+  end
 end
 end
 
 require 'extensions/social_engineering/web_cloner/web_cloner'
 require 'extensions/social_engineering/web_cloner/interceptor'
 require 'extensions/social_engineering/mass_mailer/mass_mailer'
+require 'extensions/social_engineering/rest/socialengineering'
 
 

extensions/social_engineering/rest/socialengineering.rb

@@ -0,0 +1,120 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+module BeEF
+  module Extension
+    module SocialEngineering
+      class SEngRest < BeEF::Core::Router::Router
+
+        config = BeEF::Core::Configuration.instance
+
+        before do
+          error 401 unless params[:token] == config.get('beef.api_token')
+          halt 401 if not BeEF::Core::Rest.permitted_source?(request.ip)
+          headers 'Content-Type' => 'application/json; charset=UTF-8',
+                  'Pragma' => 'no-cache',
+                  'Cache-Control' => 'no-cache',
+                  'Expires' => '0'
+        end
+
+        #Example: curl -H "Content-Type: application/json; charset=UTF-8"
+        #-d '{"url":"https://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=
+        #https://mail.google.com/mail/&ss=1&scc=1&ltmpl=default&ltmplcache=2", "mount":"/url"}'
+        #-X POST http://127.0.0.1:3000/api/seng/clone_page?token=851a937305f8773ee82f5259e792288cdcb01cd7
+        post '/clone_page' do
+          request.body.rewind
+          begin
+            body = JSON.parse request.body.read
+            uri = body["url"]
+            mount = body["mount"]
+
+            if uri != nil && mount != nil
+              if (uri =~ URI::regexp).nil? #invalid URI
+                "Invalid URI"
+                halt 401
+              end
+
+              if !mount[/^\//] # mount needs to start with /
+                print_error "Invalid mount (need to be a relative path, and start with / )"
+                halt 401
+              end
+
+              web_cloner = BeEF::Extension::SocialEngineering::WebCloner.instance
+              web_cloner.clone_page(uri,mount)
+            end
+
+          rescue Exception => e
+            print_error "Invalid JSON input passed to endpoint /api/seng/clone_page"
+            error 400 # Bad Request
+          end
+        end
+
+        # Example: curl -H "Content-Type: application/json; charset=UTF-8" -d 'json_body'
+        #-X POST http://127.0.0.1:3000/api/seng/send_mails?token=68f76c383709414f647eb4ba8448370453dd68b7
+        # Example json_body:
+        #{
+        #    "template": "default",
+        #    "subject": "Hi from BeEF",
+        #    "fromname": "BeEF",
+        #    "link": "http://www.microsoft.com/security/online-privacy/phishing-symptoms.aspx",
+        #    "linktext": "http://beefproject.com",
+        #    "recipients": [{
+        #            "user1@gmail.com": "Michele",
+        #            "user2@antisnatchor.com": "Antisnatchor"
+        #}]
+        #}
+        post '/send_mails' do
+          request.body.rewind
+          begin
+            body = JSON.parse request.body.read
+
+            template = body["template"]
+            subject = body["subject"]
+            fromname = body["fromname"]
+            link = body["link"]
+            linktext = body["linktext"]
+
+            if template.nil? || subject.nil? || fromname.nil? || link.nil? || linktext.nil?
+              print_error "All parameters are mandatory."
+              halt 401
+            end
+
+            if (link =~ URI::regexp).nil? || (linktext =~ URI::regexp).nil?#invalid URI
+              print_error "Invalid link or linktext"
+              halt 401
+            end
+
+            recipients = body["recipients"][0]
+
+            recipients.each do |email,name|
+              if !/\b[A-Z0-9._%a-z\-]+@(?:[A-Z0-9a-z\-]+\.)+[A-Za-z]{2,4}\z/.match(email) || name.nil?
+                print_error "Email [#{email}] or name [#{name}] are not valid/null."
+                halt 401
+              end
+            end
+
+          mass_mailer = BeEF::Extension::SocialEngineering::MassMailer.instance
+          mass_mailer.send_email(template, fromname, subject, link, linktext, recipients)
+          rescue Exception => e
+            print_error "Invalid JSON input passed to endpoint /api/seng/clone_page"
+            error 400
+          end
+        end
+
+      end
+    end
+  end
+end