Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #1448 from wanton1950/1444_high_risk

Browse Source 
#1444 high risk
This commit is contained in:
Brendan Coles
2017-09-25 16:19:42 +10:00
committed by GitHub
parent de144a0e45 60108af685
commit 75247c60a1
1 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
beef
View File

@@ -119,9 +119,13 @@ BeEF::Core::Console::Banners.print_loaded_modules
BeEF::Core::Console::Banners.print_network_interfaces_count
BeEF::Core::Console::Banners.print_network_interfaces_routes
# @note Warn on default credentials
if config.get("beef.credentials.user").eql?('beef') && config.get("beef.credentials.passwd").eql?('beef')
print_warning "Warning: Default username and password in use!"
# @note Warn and replace on default credentials
if config.get("beef.credentials.user").eql?('beef') &&
[/beef[0-9]*/, /passw[o0]rd[0-9]*/].select{|pattern| pattern.match(config.get("beef.credentials.passwd"))}.any?
print_warning "Warning: Default username and weak password in use!"
better_phrase = BeEF::Core::Crypto::secure_token(16)
config.set("beef.credentials.passwd", better_phrase)
print_more "New password for this instance: #{better_phrase}"
end
# @note create ~/.beef/