Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,224 Commits 14 Branches 34 Tags
5aa2cefc431cf8feccb2c75ae91fa3f61ac5a303
Commit Graph

1224 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Mike Haworth
5aa2cefc43 Chrome extension module for stealling cookies inc. HTTPonly 2012-05-29 22:44:03 +12:00
Mike Haworth
172ec56be6 Got a better splash image, added cookies permission, added some brief documentation 2012-05-29 22:42:58 +12:00
bcoles
75315f8622 Added support for Firefox 13 
Added return message for fake flash update module
 2012-05-29 16:40:15 +09:30
antisnatchor
874bc14278 Close issues #541 and #684. Added 2 command line options to ovveride default port and websocket server port 2012-05-28 13:44:05 +01:00
bcoles
53b0781961 Updated supported browsers and module description for: 
o modules/misc/iframe_sniffer/config.yaml
o modules/social_engineering/fake_flash_update/config.yaml
 2012-05-28 10:28:31 +09:30
Mike Haworth
dc040a51ac added fake flash player module and chrome extension 2012-05-28 00:17:53 +12:00
Michele Orru
b84ec775a1 Merge pull request #683 from bmantra/master 
Merging pull request for framesniffing module (issue #644).
 2012-05-25 11:18:41 -07:00
antisnatchor
b3f8504a2e Evasion: added support to scramble cookies as well. 2012-05-25 12:02:28 +01:00
antisnatchor
0d2598e0b8 MITB: closed expressions 2012-05-25 11:18:33 +01:00
antisnatchor
c79a2ee6f1 Evasion: Added bootstrapper functionality. Added support for obfuscate modules with the same techniques used for the hook. 2012-05-23 15:23:15 +01:00
antisnatchor
c1d021a7e8 Evasion: Fixed bug in scrambler. 2012-05-23 15:01:02 +01:00
antisnatchor
aee0b1e50f Evasion: scramble now stores random values in the config object, in order to be re-used later on in a consistent way. 2012-05-23 13:44:41 +01:00
antisnatchor
b7f6073631 Evasion: added helper module for common methods (random_string) 2012-05-23 13:43:28 +01:00
antisnatchor
0ce3490420 Don't use eval when evaluating the base64'ed blob in the Evasion extension. It was also triggering BeEF "static analysis" tests LOL 2012-05-22 17:37:36 +01:00
antisnatchor
8d805c550f Started working on the Evasion/Obfuscation extension. Added scrambler, minifier and base64 encoder in the chain. 2012-05-22 16:41:29 +01:00
antisnatchor
395141b8c8 Merge remote-tracking branch 'origin/master' 2012-05-22 13:39:05 +01:00
antisnatchor
1282831af1 Terminating unterminated statements in various JS files. 2012-05-22 13:38:28 +01:00
antisnatchor
2bad801c80 Terminating unterminated statements in various JS files. 2012-05-22 13:27:57 +01:00
bcoles
981b13ce7b Added huawei_smartax_mt880 CSRF module 2012-05-22 17:52:36 +09:30
bcoles
6739094f57 Added dlink_dcs_series_csrf module 2012-05-22 17:22:20 +09:30
Michele Orru
f08fa2568b Merge pull request #682 from zepip/master 
README changes
 2012-05-21 05:38:45 -07:00
Pipes
9da617a50a README changes 
Introduce README.mkd
Mirror without markdown in README
Move detailed installation instructions to INSTALL.txt
 2012-05-21 19:42:12 +12:00
bcoles
f8eba21cb4 Moved a few more modules and updated some module descriptions 2012-05-20 18:50:10 +09:30
bcoles
460b619cc1 Moved Router and Switch categories under Exploits category 
Added Social Engineering category
 2012-05-20 18:32:44 +09:30
Brendan Coles
56443cfdf4 Merge pull request #680 from bmantra/master 
module to change password of a netgear GS108t managed switch
 2012-05-19 21:14:16 -07:00
Michele Orru
86b3103925 Merge pull request #681 from radoen/master 
Merging WebSocket fork, disabled by default.
 2012-05-19 12:00:13 -07:00
antisnatchor
b49548d22e Temporarily disabled DebugModules tests. 2012-05-19 19:54:21 +01:00
antisnatchor
51b27709dd Merge remote-tracking branch 'upstream/master'. WS: added stringifying command results in beef.net.send 2012-05-19 19:19:03 +01:00
Mike Haworth
b420fe0523 When using safari as cross-domain proxy polling failed if firefox requested http://fxfeeds.mozilla.com/en-US/firefox/headlines.xml. The cause was JSON.stringify failing, so just through a try /catch round it 2012-05-20 00:05:02 +12:00
Brendan Coles
c92ef02a7a Merge pull request #679 from 0x7674/master 
'Clippy' Module
 2012-05-19 00:43:29 -07:00
root
e4ea5dfff9 Closes #644 but needs to be tested on other browsers 2012-05-17 18:09:00 +02:00
vt
b8ba48af25 Updated module.rb with a more sane respawn time 2012-05-18 00:12:43 +12:00
vt
6ea46e72da Updated command.js to support IE6 properly 2012-05-18 00:12:03 +12:00
Christian Frichot
a6a7536e73 Issue #678 - Custom Hook Point Extension initial commit 2012-05-17 18:52:35 +08:00
root
6279658888 integrated remarks from bcoles and antisnatchor 2012-05-17 04:57:38 +02:00
bcoles
74a3eef225 Moved mobilesafari_address_spoofing module to 
modules/browser/hooked_domain directory
 2012-05-17 08:53:01 +09:30
root
d354e66a3d Added module for GS108t managed switch 2012-05-17 00:47:33 +02:00
Christian Frichot
1a85b6bc92 Issue #650 - forgot the license on the js file - my bad 2012-05-16 22:41:51 +08:00
Christian Frichot
e8ea3a3cd7 Merge branch 'master' of github.com:beefproject/beef 2012-05-16 22:36:33 +08:00
Christian Frichot
8f1aae97c8 Fixes Issue #650 - iOS Safari Address Bar Spoofing Command Module 2012-05-16 22:36:21 +08:00
Ben Waugh
f0b1d6d76f Updated CDE Generator 
UpdatedCan be run with: rake cde
 2012-05-16 07:54:09 +10:00
bcoles
594e745694 Added favicon support to deface_web_page and site_redirect_iframe modules 
Fixes issue #491
 2012-05-15 17:47:05 +09:30
Ben Waugh
b9c9df93e1 Updated Installer Script 
Improved Debian/Ubuntu installer
Added Disclaimer Message/Opt Out
 2012-05-15 18:27:43 +10:00
bcoles
1335f57a46 Browser plugins are now passed through unique() 2012-05-14 20:29:18 +09:30
Christian Frichot
aa671f6e64 Merge branch 'master' of github.com:beefproject/beef 2012-05-14 18:13:41 +08:00
Christian Frichot
3c7686e196 Nested command modules are now also sorted, and sub-folders include children count. Fuck yeah recursion111. Issue #550 2012-05-14 18:12:45 +08:00
bcoles
78b88ee09f Changed status/port status info for cross-domain request history 2012-05-14 18:57:44 +09:30
bcoles
2f7d98c7a7 Fixed bug in core/main/client/net.js 
ALL requests (modules, requester, etc) were failing in Firefox since
commit 1fd66bce1e
 2012-05-14 17:45:03 +09:30
Mike Haworth
1fd66bce1e Issue #666 Proxy now uses forge_request, allowing cross domaian requests, for instances where SOP bypass is available 2012-05-13 13:08:13 +12:00
antisnatchor
6eacf97b80 Moved "hooked_browser" category inside "Browser", now as a sub-category. 2012-05-12 12:13:57 +01:00