Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,616 Commits 14 Branches 34 Tags
815eff8d4e4ff2c5468b5509eeb91c2cdeebbf9c
Commit Graph

37 Commits

Author SHA1 Message Date
Wade Alcorn
ce01d9fa46 updated copyright year 2015-12-30 08:11:57 +10:00
Brendan Coles
ae1fa3e958 Rescue missing SSL cert/key files 2015-09-09 07:36:45 +00:00
Brendan Coles
8f683e6d0f Add Proxy REST /api/proxy/setTargetZombie 2015-08-22 10:47:04 +00:00
Brendan Coles
e06198c320 Use ignore_headers in proxy 2015-08-16 11:29:30 +00:00
antisnatchor
bf0f59e5d0 Fixed a bug in the tunneling proxy (missing \r\n in some specific conditions when HTTP version is HTTP/1.1) 2015-02-08 13:39:04 +01:00
Wade Alcorn
2fbca61368 Updated copyright dates 2014-12-30 07:44:58 +10:00
Till Maas
7e18f6255e Support HTTPS via CONNECT in proxy extension 2014-09-24 16:53:56 +02:00
Wade Alcorn
8003f1a47f Updated the copyright year to 2014 2014-01-01 16:34:15 +10:00
Wade Alcorn
fe40038441 Updated copyright year to 2013 2012-12-30 12:47:43 +10:00
Wade Alcorn
b68df3d024 Changed license header 2012-11-02 14:05:15 +10:00
antisnatchor
f9b8e0f576 Moved admin_ui controllers for extensions in their relative extension directory. 2012-10-23 10:15:07 +11:00
Wade Alcorn
49b85201d0 Changed print_success to print_info 2012-06-23 12:51:20 +01:00
Mike Haworth
1fd66bce1e Issue #666 Proxy now uses forge_request, allowing cross domaian requests, for instances where SOP bypass is available 2012-05-13 13:08:13 +12:00
bcoles
cda1659356 Improved proxy error handling. Fixes issue #92. 
The proxy now dies somewhat gracefully when given a malformed request.

The `Content-Length' header is now only matched by the parser if its
value is an integer.

A request with a null or missing HTTP version in the header now defaults
to HTTP/1.0

A request with a null or missing `Host' header returns:
  `ERROR: CrossDomain Request. The request was not sent.'
regardless of whether the host is specified in the URL.
 2012-02-19 03:42:20 +10:30
Wade Alcorn
06899ca267 Year updated from 2011 to 2012 2011-12-31 22:24:36 +10:00
bcoles
74ec478449 Added allow_cross_domain to the request object 
By default all requests use allow_cross_domain = "true"

The Proxy component uses allow_cross_domain = "false"

The Forge Request component uses allow_cross_domain = "true"

Fixes issue 87
 2011-12-25 17:37:32 +10:30
bcoles
590e514680 Renamed "Requester" tab to "Rider" 
Added Proxy sub-tab under Rider tab

Part of issue 63
 2011-12-20 22:04:22 +10:30
bcoles
3ee52b82c0 Part of issue 87, issue 63, issue 29, issue 30 
In preperation for creating requester and proxy unit tests:

  o Tidied up some of the requester and proxy
  o Partially de-coupled requester from proxy
  o Fixed minor bugs:
    o is_valid_uri was not implemented correctly
    o http scheme validation had "http" instead of "https"
 2011-12-20 02:47:50 +10:30
antisnatchor
7e6c4932d3 rewrote from scratch the TunnelingProxy: now a simple multi-threaded TCPserver. Doesn't use anymore webrick/httpproxy 2011-11-19 16:13:09 +01:00
bcoles@gmail.com
d20a3ea9b2 Fixes issue 533 : Tunneling proxy: bug when the hooked browser is IE 
Now checks for null HTTP header keys and values



git-svn-id: https://beef.googlecode.com/svn/trunk@1424 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-08 15:19:54 +00:00
buherator@gmail.com
ab1ec19a5c Changed BeEF::API::Registra to BeEF::API::Registrar 
git-svn-id: https://beef.googlecode.com/svn/trunk@1358 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-09 15:31:52 +00:00
antisnatchor
b4cb58346e Fixed proxy: the new filters where causing problems. Removed all of them except the method and version checks. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1240 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-29 09:18:24 +00:00
antisnatchor
ed8a0a4ca2 Fixed wrong mount handler in Proxy extension. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1239 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-29 09:14:56 +00:00
passbe
d8a089a1b3 Reworked timed API system. You now must use the BeEF::API::Registra.register() to hook into timed API calls. This will speed up the framework and allow paramater matching for API hooks. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1235 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-24 09:33:22 +00:00
bcoles@gmail.com
21d5164d4d Response Headers is now the default accordion panel displayed (rather 
than the Request panel) when viewing requester HTTP response details

The requester history panel now automatically refreshes upon display

Changed processed status from 'false' to 'waiting' and 'true' to 
'complete' in the requester

Fixes Issue 459



git-svn-id: https://beef.googlecode.com/svn/trunk@1226 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-21 03:29:42 +00:00
bcoles@gmail.com
72c6bf87b0 Added port column to Requester History tab 
git-svn-id: https://beef.googlecode.com/svn/trunk@1214 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-19 14:49:43 +00:00
bcoles@gmail.com
b1de14dcf1 Added HEAD, OPTIONS, PUT and DELETE methods 
Fixes issue 356

Added HTTP request validation to proxy extension

	Fixes issue 429



git-svn-id: https://beef.googlecode.com/svn/trunk@1212 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-19 09:24:31 +00:00
passbe
0067a9c088 Cleaned up pre_http_start + mount_handlers. Added direct call API options for mounting and unmounting http handlers 
git-svn-id: https://beef.googlecode.com/svn/trunk@1184 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-12 00:13:36 +00:00
passbe
887d93697f Added basic timed API calls including: pre/post soft/hard module load (+config load). post extension load. Added name tag to all extension config files 
git-svn-id: https://beef.googlecode.com/svn/trunk@1181 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-08-11 05:59:30 +00:00
antisnatchor
9780afa68b (Fixes issue 370) Patched WebRick::HttpRequest to overwrite the URI Parser UNRESERVED regex: this prevents BAD URI errors when sending attack vector chars. Added config file for the requester extension. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1055 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-07-09 22:31:13 +00:00
antisnatchor
fe5b318792 (Fixes issue 359) Proxy/Requester now forward back original XHR response headers (stripping some of them lik encoding and cache related). Added also a temporary fix for issue 368 (prevent saving raw image data if db = mysql). 
git-svn-id: https://beef.googlecode.com/svn/trunk@1051 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-07-09 22:30:44 +00:00
scotty.b.brown@gmail.com
5c3e6f1575 Adding Apache Licence Header to all files (except VERSION file) 
git-svn-id: https://beef.googlecode.com/svn/trunk@1046 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-07-02 23:08:28 +00:00
antisnatchor
6af4f673d3 Proxy and Requester enhancements. Proxy got a good performance improvement, it's now multi-thread, able to handle errors, can be used with a normal browser. Requester core (ruby/js) has been enhanced too: db model, js logic and parsing code. Many previous bugs in different parts have been corrected. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1027 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-06-26 18:03:53 +00:00
scotty.b.brown@gmail.com
b9f53c8f96 More tweaking to proxy to help it work with browsers (and not just telnet :p) 
git-svn-id: https://beef.googlecode.com/svn/trunk@986 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-05-26 06:46:19 +00:00
scotty.b.brown@gmail.com
bd28ce2147 Added more debugging to the proxy 
git-svn-id: https://beef.googlecode.com/svn/trunk@985 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-05-24 08:56:19 +00:00
antisnatchor
94c9c96250 (Fixes issue 309), (Fixes issue 323) : added contextMenu and business logic for zombie proxy selection. The zombie to use as proxy can be now changed dynamically. 
git-svn-id: https://beef.googlecode.com/svn/trunk@919 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-04-24 11:34:49 +00:00
scotty.b.brown@gmail.com
35f62714b1 Moving nextgen from a branch to the trunk!!! 
git-svn-id: https://beef.googlecode.com/svn/trunk@908 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-04-20 07:54:56 +00:00