Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5,021 Commits 14 Branches 34 Tags
red/fix_xss_module
Commit Graph

65 Commits

Author SHA1 Message Date
zinduolis
95793433fa Update copyright year to 2026 2025-12-26 19:18:05 +10:00
zinduolis
b5b192591b Second round of Copyright date update 2024-12-25 12:43:13 +10:00
zinduolis
101020ffa0 Update copyright in rb, js and jsdocs 2024-12-25 11:40:55 +10:00
zinduolis
a5a8196792 Fix origin / domain terminology (#1688) 2024-10-23 16:07:17 +10:00
Stephen
747ddb5387 Updated http://beefproject.com to https://beefproject.com 2023-12-31 14:18:50 +10:00
jcrew99
3a486c7626 Updated Copyright 2023-12-26 22:32:31 -05:00
jcrew99
486a9bb329 Update copyright 2023 (#2675) 
* updated copyright

* reverted gemfile lock changes
 2022-12-31 15:36:07 +10:00
MyLoginOnGitHub
87318f5a14 Fixed bug when response_data is empty when http.response_data.length is <= 100K (#2510) 
* Fixed bug when response_data is empty when http.response_data.length <= 100K

* Refactor: do not modify field. Modify local variable instead
 2022-07-22 10:05:54 +10:00
Brendan Coles
aa7a6f9e64 Extensions: Resolve many Rubocop violations 2022-01-22 11:16:12 +00:00
wheatley
f33e2698a0 MAINTAINABILITY: 2257 update copyright 2022 (#2259) 
* 2257 updated copyright date
 2021-12-31 09:48:08 +10:00
J
4ec6ecee27 updated all of the copyright information 2021-01-11 04:48:56 +10:00
Haoxi Tan
62186583a6 fixing #1851 2020-01-17 11:41:07 +10:00
beep
470b3483d0 Update copyright information 2020-01-01 18:47:08 -08:00
Ben Passmore
b89fbd9268 Updated requester for AR 2019-11-30 15:21:11 +10:00
Jess
9b5c8e39df Syntax changes 2019-11-14 22:09:44 -08:00
Brendan Coles
7f41c2b495 Replace /ui/requester controller with REST API - #1389 #1388 2019-02-20 22:57:45 +00:00
Ben Passmore
9f1e8f5e8d Updated copyright 2019-01-01 11:57:28 +10:00
Wade Alcorn
fca5279f17 Updated Copyright dates 2018-01-04 09:12:47 +10:00
Brendan Coles
903d364450 Remove experimental extensions from config.yaml 2017-12-08 18:14:32 +00:00
Brendan Coles
14e788e574 Fix requester when evasion is enabled - Fix #1386 2017-08-06 22:16:40 +00:00
Brendan Coles
9ad5ddf534 Add method to delete response from requester history 2017-04-23 01:45:30 +00:00
Brendan Coles
9b57435d5e Add placeholder for requester REST endpoints 2017-04-23 01:43:57 +00:00
Brendan Coles
c191a50f3c Force UTF-8 encoding for requester responses - Fix #1340 2017-04-22 02:10:48 +00:00
Brendan Coles
530962ea29 Cleanup and fix proxy/requester 2017-04-16 14:29:28 +00:00
Wade Alcorn
91cc7ed873 Updated Copyright information 2016-12-29 15:50:13 +10:00
Wade Alcorn
ce01d9fa46 updated copyright year 2015-12-30 08:11:57 +10:00
Brendan Coles
95abdf6781 Add 'proto' property to Requester HTTP model 2015-12-14 12:40:34 +00:00
antisnatchor
bf0f59e5d0 Fixed a bug in the tunneling proxy (missing \r\n in some specific conditions when HTTP version is HTTP/1.1) 2015-02-08 13:39:04 +01:00
Wade Alcorn
2fbca61368 Updated copyright dates 2014-12-30 07:44:58 +10:00
Wade Alcorn
8003f1a47f Updated the copyright year to 2014 2014-01-01 16:34:15 +10:00
Wade Alcorn
fe40038441 Updated copyright year to 2013 2012-12-30 12:47:43 +10:00
Wade Alcorn
d2188b230c More changed license headers 2012-11-02 15:27:01 +10:00
Wade Alcorn
b68df3d024 Changed license header 2012-11-02 14:05:15 +10:00
antisnatchor
f9b8e0f576 Moved admin_ui controllers for extensions in their relative extension directory. 2012-10-23 10:15:07 +11:00
antisnatchor
51b27709dd Merge remote-tracking branch 'upstream/master'. WS: added stringifying command results in beef.net.send 2012-05-19 19:19:03 +01:00
bcoles
cda1659356 Improved proxy error handling. Fixes issue #92. 
The proxy now dies somewhat gracefully when given a malformed request.

The `Content-Length' header is now only matched by the parser if its
value is an integer.

A request with a null or missing HTTP version in the header now defaults
to HTTP/1.0

A request with a null or missing `Host' header returns:
  `ERROR: CrossDomain Request. The request was not sent.'
regardless of whether the host is specified in the URL.
 2012-02-19 03:42:20 +10:30
Wade Alcorn
06899ca267 Year updated from 2011 to 2012 2011-12-31 22:24:36 +10:00
bcoles
74ec478449 Added allow_cross_domain to the request object 
By default all requests use allow_cross_domain = "true"

The Proxy component uses allow_cross_domain = "false"

The Forge Request component uses allow_cross_domain = "true"

Fixes issue 87
 2011-12-25 17:37:32 +10:30
bcoles
3ee52b82c0 Part of issue 87, issue 63, issue 29, issue 30 
In preperation for creating requester and proxy unit tests:

  o Tidied up some of the requester and proxy
  o Partially de-coupled requester from proxy
  o Fixed minor bugs:
    o is_valid_uri was not implemented correctly
    o http scheme validation had "http" instead of "https"
 2011-12-20 02:47:50 +10:30
bcoles
120e36d4b4 Added BeEF version to panel header and updated some links from 
code.google.com to github.com
 2011-12-11 20:30:09 +10:30
antisnatchor
c37db1e364 (Fixes issue 486): now using the requester (so also the tunneling proxy) you can correctly send POST requests 2011-11-23 17:07:55 +01:00
antisnatchor
0866b0a8e1 bugfix on the requester, small code change in net.js (optimized cross_domain checks, added check when URI contains schema/domain as well) 2011-11-22 11:18:55 +01:00
antisnatchor
18d4b642fe replaced WebRick HttpUtils in requester filters 2011-11-22 10:12:26 +01:00
antisnatchor
9618f484fd code beautify. Also removed the tolerant parser old patch code: it's not needed anymore 2011-11-22 09:58:04 +01:00
antisnatchor
5322570346 rewrote the requester core to parse raw HTTP requests from the DB (requester_parse_db_request): don't use WebRick utils anymore 2011-11-22 09:53:00 +01:00
antisnatchor
05d06bb94e Removed unuseful Mutexes, refactored all the ugly 'exception-oriented' code that was using WebRick BadRequest, added config.yaml option to enable verbose debugging logs of Thin 2011-11-19 18:02:41 +01:00
antisnatchor
2997540918 rewrote the server core and adjusted the API/classes to use Thin and Rack instead of WebRick. 2011-11-19 15:49:19 +01:00
buherator@gmail.com
ab1ec19a5c Changed BeEF::API::Registra to BeEF::API::Registrar 
git-svn-id: https://beef.googlecode.com/svn/trunk@1358 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-09 15:31:52 +00:00
antisnatchor
b4cb58346e Fixed proxy: the new filters where causing problems. Removed all of them except the method and version checks. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1240 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-29 09:18:24 +00:00
passbe
d8a089a1b3 Reworked timed API system. You now must use the BeEF::API::Registra.register() to hook into timed API calls. This will speed up the framework and allow paramater matching for API hooks. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1235 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-24 09:33:22 +00:00