Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,384 Commits 14 Branches 34 Tags
6f56f00a18da2217bcae1082cdcd920481fab13d
Commit Graph

52 Commits

Author SHA1 Message Date
Christian Frichot
ba990e2869 beef.net.request JS method now fires callbacks ALWAYS - not just on successful requests. Fixes Issue #1127 2015-06-23 16:21:58 +08:00
antisnatchor
4126a5530e Fixed bug in forge_request that was not adding the POST body to forged requests. 2015-03-21 12:20:07 +01:00
Wade Alcorn
2fbca61368 Updated copyright dates 2014-12-30 07:44:58 +10:00
Wade Alcorn
744b7649e7 Corrected some usages of domain to origin 2014-02-08 09:56:31 +10:00
antisnatchor
6a8a103b8b Final fix for issue #957 2014-01-06 11:03:40 +00:00
antisnatchor
b43fbce044 Fixed issue #957. The requester and proxy now work again after the jquery update. 2014-01-03 13:48:31 +00:00
Wade Alcorn
8003f1a47f Updated the copyright year to 2014 2014-01-01 16:34:15 +10:00
Wade Alcorn
fe40038441 Updated copyright year to 2013 2012-12-30 12:47:43 +10:00
antisnatchor
72a4a127ff Documented (JSdoc) all the net.js methods. 2012-11-21 06:14:59 +00:00
antisnatchor
81f03f0024 Fixed a nasty bug with WebSockets. BrowserDetails are now always sent with XHR-polling, before switching protocols using WebSockets. 2012-11-18 15:45:46 +00:00
Wade Alcorn
b68df3d024 Changed license header 2012-11-02 14:05:15 +10:00
Christian Frichot
b58e9b955e Fixes Issue #733 - Thin SSL support initial release 2012-08-05 16:17:18 +08:00
antisnatchor
1282831af1 Terminating unterminated statements in various JS files. 2012-05-22 13:38:28 +01:00
antisnatchor
51b27709dd Merge remote-tracking branch 'upstream/master'. WS: added stringifying command results in beef.net.send 2012-05-19 19:19:03 +01:00
bcoles
78b88ee09f Changed status/port status info for cross-domain request history 2012-05-14 18:57:44 +09:30
bcoles
2f7d98c7a7 Fixed bug in core/main/client/net.js 
ALL requests (modules, requester, etc) were failing in Firefox since
commit 1fd66bce1e
 2012-05-14 17:45:03 +09:30
Mike Haworth
1fd66bce1e Issue #666 Proxy now uses forge_request, allowing cross domaian requests, for instances where SOP bypass is available 2012-05-13 13:08:13 +12:00
antisnatchor
052d25a36b Fixed another bug when parsing the BeEF hook cookie in Js. now using beef.session.get_hook_session_id(). Should be the last fix. 2012-05-11 14:22:13 +01:00
antisnatchor
925e744194 Merge remote-tracking branch 'upstream/master' 
Resolved conflicts:
	core/main/client/net.js
	core/main/handlers/modules/beefjs.rb
 2012-05-10 10:19:22 +01:00
Brendan Coles
f221f93ebb Merge pull request #652 from ebababi/master 
Introduce public port setting
 2012-05-07 01:09:22 -07:00
bcoles
99d47351b7 Patched newline issue in request() in net.js 
See commit c3435ee345 for more info
 2012-05-03 15:54:46 +09:30
antisnatchor
72ba526cbc merged changes of net.js to fix the requester/tunneling proxy 2012-05-02 14:28:30 +03:00
antisnatchor
c3435ee345 Fixed a nasty bug in net.js forgeRequest. Stripping line breaks from request domain: prevented the requester/tunneling proxy to work (always cross-domain fails) 2012-05-02 14:25:31 +03:00
Graziano Felline
97c2649e36 Corrected issues on IE browser (IE8 IE9) to check IE6 -IE7 
Corrected Issues whit character encoding
 2012-04-20 19:17:34 +02:00
Graziano Felline
656262c0f4 Basic response recv system implemented 
todo ping-pong for alive host. thread's content is  in websocket.rb
todo setting up a separate handler for via ws answer's
 2012-04-18 12:00:17 +02:00
Graziano Felline
2755c6449c Deleted some stuff that does not work correctly in old browser (IE 8) 
Better check for FF
Cleand up inside the code
 2012-04-14 19:42:53 +02:00
Graziano Felline
23f782b8d8 Hook.js load websocket.js only if specifield in beef configuration file 
if websocket is disabled all work normally
 if websocket is enabled have trouble in command.rb
 2012-04-12 19:01:49 +02:00
Graziano Felline
af9b3c97b5 Added polling stop if websocket is up in updater.js 
added hash for websocket in websocket.rb
added check for websocket existence in command.rb and net.js
added a POC onmessage function in websocket.js
added check for websocket support in init.js
added a POC send to send command output to server in beef.js
 2012-04-11 20:52:47 +02:00
Nikolaos Anastopoulos
e4d4edba75 Public port setting affects URI scheme 2012-03-23 20:42:12 +02:00
antisnatchor
1d74d7eeab Fixed a serious bug in beef.net.request when sending cross-domain POST data. jQuery is automatically changing the method to GET if the dataType (that was hardcoded in our code) is set to 'script'. 2012-02-15 16:00:38 +01:00
Wade Alcorn
06899ca267 Year updated from 2011 to 2012 2011-12-31 22:24:36 +10:00
bcoles
33289bc023 Fixed bug in cross-domain request detection 
Same-domain requests on a non-standard HTTP port were incorrectly
identified as cross-domain requests
 2011-12-27 17:56:18 +10:30
bcoles
74ec478449 Added allow_cross_domain to the request object 
By default all requests use allow_cross_domain = "true"

The Proxy component uses allow_cross_domain = "false"

The Forge Request component uses allow_cross_domain = "true"

Fixes issue 87
 2011-12-25 17:37:32 +10:30
bcoles
4543d60570 Added allowCrossDomain functionality to beef.net.requester.send 2011-12-24 13:37:14 +10:30
bcoles
61a34c1c60 Decoupled beef.net.request and beef.net.proxyrequest 
This is part of issue 87
 2011-12-24 04:21:45 +10:30
bcoles
2e9ad8b9dc More tidying of requester and proxy in preperation for unit tests 2011-12-21 06:09:30 +10:30
bcoles
3ee52b82c0 Part of issue 87, issue 63, issue 29, issue 30 
In preperation for creating requester and proxy unit tests:

  o Tidied up some of the requester and proxy
  o Partially de-coupled requester from proxy
  o Fixed minor bugs:
    o is_valid_uri was not implemented correctly
    o http scheme validation had "http" instead of "https"
 2011-12-20 02:47:50 +10:30
antisnatchor
c37db1e364 (Fixes issue 486): now using the requester (so also the tunneling proxy) you can correctly send POST requests 2011-11-23 17:07:55 +01:00
antisnatchor
4174e9cd5e fixed lame JS error in net.js 2011-11-22 16:15:20 +01:00
antisnatchor
0866b0a8e1 bugfix on the requester, small code change in net.js (optimized cross_domain checks, added check when URI contains schema/domain as well) 2011-11-22 11:18:55 +01:00
antisnatchor@gmail.com
d33e9f88b5 (Fixes issue 456) reverted back to jQuery 1.5.2, moved port status checking code in 'complete' handler 
git-svn-id: https://beef.googlecode.com/svn/trunk@1284 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-09-13 18:50:12 +00:00
bcoles@gmail.com
c3bd1e5fa7 Added "not http" to port_status as part of beef.net.request 
Status "open" and "closed" were added in revision 1177

Fixes issue 286



git-svn-id: https://beef.googlecode.com/svn/trunk@1215 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-19 15:28:51 +00:00
wade@bindshell.net
3167722af2 Fixes issue 436. IE can now be hooked cross domain. Loading script is used instead of ajax now. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1180 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-11 01:52:45 +00:00
bcoles@gmail.com
22941a51b4 Augmented beef.net.request to support port_status 
Only "open" and "closed" are supported currently

Part of issue 286



git-svn-id: https://beef.googlecode.com/svn/trunk@1177 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-10 09:47:01 +00:00
antisnatchor
fe5b318792 (Fixes issue 359) Proxy/Requester now forward back original XHR response headers (stripping some of them lik encoding and cache related). Added also a temporary fix for issue 368 (prevent saving raw image data if db = mysql). 
git-svn-id: https://beef.googlecode.com/svn/trunk@1051 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-07-09 22:30:44 +00:00
antisnatchor
1386e8efc3 (Fixes issue 366) Reducing chop size to prevent ERROR WEBrick::HTTPStatus::RequestURITooLarge 
git-svn-id: https://beef.googlecode.com/svn/trunk@1049 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-07-09 22:30:29 +00:00
scotty.b.brown@gmail.com
5c3e6f1575 Adding Apache Licence Header to all files (except VERSION file) 
git-svn-id: https://beef.googlecode.com/svn/trunk@1046 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-07-02 23:08:28 +00:00
antisnatchor
6af4f673d3 Proxy and Requester enhancements. Proxy got a good performance improvement, it's now multi-thread, able to handle errors, can be used with a normal browser. Requester core (ruby/js) has been enhanced too: db model, js logic and parsing code. Many previous bugs in different parts have been corrected. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1027 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-06-26 18:03:53 +00:00
antisnatchor
eb42e7cc5c Added some comments, really relevant issuing cross-domain XHR 
git-svn-id: https://beef.googlecode.com/svn/trunk@950 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-05-02 18:54:58 +00:00
antisnatchor
f8f623a5e8 Fixes crossdomain request detection in case BeEF is running on port 80 (document.location.port is then empty) 
git-svn-id: https://beef.googlecode.com/svn/trunk@948 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-05-02 14:51:54 +00:00