Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,868 Commits 14 Branches 34 Tags
46a395e04477315fde4dcb3d8cb158c2f213b1c3
Commit Graph

2868 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Brendan Coles
46a395e044 Add WiPG-1000 Command Injection exploit module 2017-04-22 23:34:07 +00:00
Brendan Coles
f9f30eb49d Force UTF-8 encoding for zombie HTTP headers 2017-04-22 03:29:49 +00:00
Brendan Coles
c191a50f3c Force UTF-8 encoding for requester responses - Fix #1340 2017-04-22 02:10:48 +00:00
Brendan Coles
127b1d56e7 Add UTF-8 characters to demo pages for testing purposes 2017-04-22 01:52:13 +00:00
Brendan Coles
275153be38 Remove todo note 2017-04-20 19:56:31 +00:00
Brendan Coles
9a97ffed6e Pad bottom of generic pretty theft popup 2017-04-19 13:37:48 +00:00
Brendan Coles
91bfb06f8c Add check for mixed content requests in beef.net.forge_request 2017-04-16 17:17:34 +00:00
Brendan Coles
530962ea29 Cleanup and fix proxy/requester 2017-04-16 14:29:28 +00:00
Brendan Coles
08f5cf3e29 Cleanup and fix proxy/requester 2017-04-16 14:28:45 +00:00
Brendan Coles
5a8e0d855c Re-add therubyracer gem dependency for Linux 2017-04-16 11:36:08 +00:00
Brendan Coles
9a817c2271 Escape apostrophes in module user-input 2017-04-16 10:30:13 +00:00
Brendan Coles
9d20a68b4e Merge pull request #1381 from clod81/persistence_jsonp_service_worker 
Persistence through unfiltered JSONP callback and service worker
 2017-04-16 20:15:05 +10:00
Claudio Contin
defdadb673 encodeURIComponent instead of requiring user to input already encoded string 
use beef.net.hook instead of hook.js
specify only chrome supported, and ALL others not
 2017-04-16 15:28:48 +12:00
Brendan Coles
f7a26556e9 Update hook jQuery to 1.12.4 - Fix #1133 2017-04-15 10:50:26 +00:00
Brendan Coles
afa7739482 Add debugging output to requester 2017-04-15 10:27:10 +00:00
Brendan Coles
4edab3e961 Save data to ~/.beef - Fix #1254 2017-04-15 09:56:01 +00:00
Brendan Coles
55797a7b17 Add error message for unsupported browsers 2017-04-13 17:43:50 +00:00
Brendan Coles
b08b7d935a Remove old jQuery 2017-04-13 17:42:46 +00:00
Brendan Coles
8cb5cd3484 Remove old jQuery from modules 2017-04-13 10:00:20 +00:00
Brendan Coles
1334456d9e Remove xmlrpc/client from core/loader 2017-04-12 12:04:11 +00:00
Brendan Coles
dba31548aa Add nokogiri to Gemfile 2017-04-12 12:03:44 +00:00
Brendan Coles
fdda8b5d05 Update dependencies 2017-04-12 09:44:40 +00:00
Brendan Coles
fc2a93ac13 Update rubyzip gem (CVE-2017-5946) 2017-04-12 09:19:11 +00:00
Brendan Coles
6b1d610c1f Add ARG-W4 ADSL Router DNS Hijack CSRF module 2017-04-12 04:26:56 +00:00
Brendan Coles
d3d41301a3 Update Tenda ADSL Router DNS Hijack module 2017-04-12 04:25:53 +00:00
Brendan Coles
880f63a9ff Warn on startup if default credentials in use 2017-04-10 18:51:31 +00:00
Brendan Coles
d7fd3acf23 Update minimum supported Ruby version to 2.2 2017-04-10 18:43:16 +00:00
Brendan Coles
a03164f212 Add click event handler to popunder window module 2017-04-10 18:30:26 +00:00
Brendan Coles
5d927d9d1b Add rake to Gemfile test group 2017-04-10 16:46:31 +00:00
Brendan Coles
1a68c165bb Add missing libraries to beefjs - Part of #1323 2017-04-10 16:46:01 +00:00
Brendan Coles
6839374199 Replace Detect Software module 2017-04-09 17:19:20 +00:00
Brendan Coles
5f412678c2 Merge pull request #1385 from almostwhitehat/fix-chunked-encoding 
Omit Transfer-Encoding header in proxy responses
 2017-04-10 03:03:52 +10:00
Brendan Coles
475f8395d7 Remove Fingerprint OS module 2017-04-09 17:11:20 +00:00
Matt Metzger
f0fdc3d537 Omit Transfer-Encoding header in proxy responses 
Beef automatically calculates and inserts a Content-Length header when
sending proxy responses. If the Transfer-Encoding header is not
stripped, many browsers treat this as a Content-Length of 0, thus
rendering an empty body.
 2017-04-09 01:20:32 -04:00
Brendan Coles
a083fc2b63 Add Detect Users module 2017-04-07 08:33:44 +00:00
Brendan Coles
50855d8f10 Add Detect Local Drives module 2017-04-07 08:32:01 +00:00
ccontin
40492399cf change description slightly 2017-04-03 16:15:52 +12:00
ccontin
8d685771fa add ability to return some fake HTML, instead of a blank page 2017-04-03 16:12:23 +12:00
ccontin
32454004e2 first POC working 2017-04-03 15:49:19 +12:00
Brendan Coles
b039b4a1d1 Merge pull request #1379 from dpatrongomez/master 
Improved design
 2017-04-02 23:50:40 +10:00
Daniel Patrón Gómez
bc2626767c Update LinkedIn logo 2017-03-26 14:37:44 +02:00
Daniel Patrón Gómez
0ce9807335 Improved design 2017-03-26 14:26:31 +02:00
Brendan Coles
089bacd0a2 Remove therubyracer dependency 2017-03-15 14:54:40 +00:00
Brendan Coles
6ca5341eb1 Merge pull request #1373 from gusbo/patch-1 
Update command.js
 2017-03-07 00:50:54 +11:00
Gustav Boström
a4fb447153 Update command.js 2017-03-06 13:56:07 +01:00
Gustav Boström
d58064443a Update command.js 
Remove the trailing });. The Get Cookie-module stopped working for me, but works again after I remove the last line which seems lika a bug to me.
I get an error "Unexpected token }" in the Chrome JavaScript-console of the hooked browser when I invoke the module from the BeeF- UI.
 2017-03-06 13:37:14 +01:00
Brendan Coles
7e8e22a9c3 Merge pull request #1370 from nstarke/branches/netgear-dgn2000 
Adding Netgear DGN2000 WAN Remote Management CSRF Module
 2017-02-26 12:40:07 +11:00
Brendan Coles
4384ba1563 Merge pull request #1368 from nstarke/branches/dlink_dgs_110-fdb-whitelist 
Adding DLink DGS 1100 FDB Whitelist module
 2017-02-26 12:38:17 +11:00
Brendan Coles
0bcf0b473d Merge pull request #1367 from nstarke/branches/dlink_dgs_1110-device-reset 
Adding DLink DGS 1100 Switch Device Reset CSRF Module
 2017-02-26 12:38:04 +11:00
Brendan Coles
9203bb1e32 Merge pull request #1369 from nstarke/branches/dlink_dgs_1100-port-mirroring 
Adding DLink DGS 1100 Port Mirroring module
 2017-02-26 12:37:59 +11:00