Hiddenden/beef - beef - Hiddenden.cafe Gitea

Author	SHA1	Message	Date
antisnatchor	c2185d2cec	Refactoring session.js moving the iframe persistence technique in dom.js. Updated iframe_above to use the new component.	2012-11-21 05:10:52 +00:00
bcoles	05e31fd250	Add Zenoss 3.x command execution exploit	2012-11-11 21:40:50 +10:30
bcoles	f5b4a413f6	Added WAN Emulator command execution exploit	2012-11-04 17:37:42 +10:30
Wade Alcorn	d2188b230c	More changed license headers	2012-11-02 15:27:01 +10:00
Wade Alcorn	23f09b919f	Changed license header	2012-11-02 14:26:10 +10:00
Wade Alcorn	b68df3d024	Changed license header	2012-11-02 14:05:15 +10:00
bcoles	b756065d2a	Update Inter-Protocol IRC module to use `beef.dom.createIframeIpecForm`	2012-10-31 00:04:54 +10:30
bcoles	210dc1366a	Add QNX QCONN exploit	2012-10-27 18:55:33 +10:30
bcoles	d7f0a590b7	Fix typo in popup detection	2012-10-27 18:53:04 +10:30
bcoles	7c7fc5ae6e	Small modifications to a few modules Updated a few default IP addresses to 127.0.0.1 Updated a few module names Fixed config.yaml whitespace bug	2012-10-22 23:26:33 +10:30
antisnatchor	636fee9607	Modified Fake_flash_update module (with drop-down menu) to support Firefox Extension delivery.	2012-10-22 17:25:16 +11:00
antisnatchor	79bf6f4a9f	Added BeEF_bind send_command module: this is used to communicate with the BeEF_bind shellcode (including in the IPEC admin_ui shell).	2012-10-22 16:07:31 +11:00
antisnatchor	e257f8bb52	Added BeEF_bind deployer module: send both shellcode stager and stage to a specific target. Eudora IMAP 3 (Win) is the only available exploit atm.	2012-10-22 16:03:47 +11:00
bmantra	03da56fc7d	HP uCMDB CSRF add user module	2012-10-05 13:23:24 +02:00
Jean-Louis Huynen	7e43e15838	modified config.yaml of simple_hijacker to activate chromecertbeggar2.js template	2012-10-01 16:11:18 +02:00
Jean-Louis Huynen	104f8189d3	added chromecertbeggar2.js	2012-10-01 16:06:45 +02:00
bcoles	ba20f17831	Ugh. Apparently `target` can't be null. Fixed.	2012-09-30 18:50:28 +09:30
bcoles	a135e9f51f	Update supported browsers for multiple modules Pretty Theft module does not work in IE Multiple exploit modules haven't been tested	2012-09-29 17:39:14 +09:30
Brendan Coles	256f63d28a	Merge pull request #748 from pwndizzle/master Update to Pretty_Theft module	2012-09-23 00:18:49 -07:00
bcoles	95f5d78acc	Update supported browsers for lcamtuf download module Opera blocks the `data:` URL popup by default. Safari is no longer listed as either supported nor unsupported pending further testing.	2012-09-23 16:04:25 +09:30
pwndizzle	483683ca78	Added Facebook and Linkedin popups, also some code/logic improvements	2012-09-22 18:38:09 +08:00
Jean-Louis Huynen	68bfb46bc7	remplace setInterval by setTimeout in chromecerbeggar.js template	2012-09-20 11:26:27 +02:00
bmantra	9b62ae83dc	fix jboss exploit with forge_request	2012-09-18 20:59:54 +02:00
Rich Lundeen	0b852dd308	Made namespaces consistent and expanded body Adding feedback I missed earlier regarding namespaces. Also since we're using body instead of window (for IE support), expanding the body so that the mouse follows everywhere.	2012-09-11 23:17:50 -07:00
Rich Lundeen	2720a5a8b9	Better reliability in IE	2012-09-11 13:09:37 -07:00
Rich Lundeen	bcf842587f	Fixed several minor bugs	2012-09-10 15:36:57 -07:00
Rich Lundeen	cef72c9518	Improved Clickjacking Module Rewrite of bcole's module. Adds support for multiple clicks, Javascript event feedback, some basic framebusting evasion, and IE support	2012-09-10 14:25:46 -07:00
bcoles	9e47942d3f	Added FreeNAS remote reverse root shell CSRF module For more information see: http://support.freenas.org/ticket/1788	2012-09-09 21:05:16 +09:30
bcoles	384fe7bcab	Fix issue #741	2012-09-07 23:00:24 +09:30
Jean-Louis Huynen	716e7fe712	Change stupid code that made this module unusable with the API to something less stupid (i hope)	2012-09-05 15:16:21 +02:00
Jean-Louis Huynen	05d7fe3adf	Adding the Simple Hijacker module in social engineering (route clicks on some links to javascript code)	2012-09-04 17:47:59 +02:00
bcoles	ab588c0f68	Add link_rewrite_tel module Fixes issue #721	2012-09-02 16:58:43 +09:30
bcoles	57f68725bc	Moved lcamtuf download module to social engineering category	2012-08-25 18:54:15 +09:30
antisnatchor	aeb17e7d7a	Changed target support to notify_all for lcamtuf download module (pop-up blockers)	2012-08-24 19:46:02 +01:00
bmantra	f852ca26cb	lcamtuf download module	2012-08-24 20:24:37 +02:00
Mike Haworth	5a9a050c1c	added new phonegap modules, to check connection type (wifi/3g) and ensure beef hook survives suspend resume of app.	2012-08-22 20:51:49 +12:00
Mike Haworth	ad2bc95cf0	updated local file theft to accept custom file path	2012-08-22 20:50:03 +12:00
Mike Haworth	f2d4a88810	added abilty to detect new phonegap renamed 'cordova'	2012-08-22 20:48:55 +12:00
antisnatchor	b3b3ae828b	Updated fake_flash_update module description, to specify that the Chrome extension delivery will work on Chrome <= 20 only.	2012-08-06 14:30:19 +01:00
bmantra	e299045539	add default beef host/ip to connect to	2012-07-25 14:47:56 +02:00
bmantra	fac1ff45ca	Merge pull request #727 from bmantra/master updated description IRC NAT Pinning	2012-07-23 23:11:07 -07:00
bcoles	a4e74aaad0	Added AlienVault OSSIM 3.1 XSS module	2012-07-24 10:55:28 +09:30
bmantra	1226ed4b34	nat tested	2012-07-23 20:30:04 +02:00
bmantra	9b9e74967b	nat tested	2012-07-23 20:26:38 +02:00
bmantra	b7a4314424	nat tested	2012-07-23 20:21:36 +02:00
antisnatchor	701d634f4f	NAT_pinning: updated description	2012-07-23 18:34:06 +01:00
antisnatchor	d5606c9bf4	NAT pinning. now uses the new bind/unbind socket methods of the AssetHandler. No need to use netcat anymore ;)	2012-07-23 18:31:54 +01:00
Christian Frichot	34a2f86877	Tidied up the gmail phishing module - its not embedded so category is now a string not array	2012-07-23 19:31:57 +08:00
antisnatchor	ac05f24b64	Reverted back change on pre_send (nat_pinning module)	2012-07-15 19:17:04 +01:00
bmantra	5a2b29bab4	changed description and temp disabled the listening socket as it needs some more testing	2012-07-15 20:08:59 +02:00

1 2 3 4 5 ...

490 Commits