Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Disable default credentials

Browse Source
This commit is contained in:
Brendan Coles
2018-10-01 12:39:03 +00:00
parent 4ff68d42e3
commit 7e010e2e1f
1 changed files with 5 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
beef
View File

@@ -180,14 +180,12 @@ if config.get("beef.extension.console.shell.enable") == true
end
#
# @note Warn and replace on default credentials
# @note Exit on default credentials
#
if config.get("beef.credentials.user").eql?('beef') &&
[/beef[0-9]*/, /passw[o0]rd[0-9]*/].select{|pattern| pattern.match(config.get("beef.credentials.passwd"))}.any?
print_warning "Warning: Default username and weak password in use!"
better_phrase = BeEF::Core::Crypto::secure_token(16)
config.set("beef.credentials.passwd", better_phrase)
print_more "New password for this instance: #{better_phrase}"
if config.get("beef.credentials.user").eql?('beef') && config.get("beef.credentials.passwd").eql?('beef')
print_error "ERROR: Default username and password in use!"
print_more "Change the beef.credentials.passwd in config.yaml"
exit 1
end
#