Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,662 Commits 14 Branches 34 Tags
8bcae3e30b60f5f15331c6313f0510a0ce1fce7a
Commit Graph

2662 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
antisnatchor
8bcae3e30b Revmoed commented testing line 2016-04-03 15:18:56 +02:00
antisnatchor
458985cf84 Merge branch 'master' of https://github.com/beefproject/beef 2016-04-03 15:16:30 +02:00
antisnatchor
c700bb3013 Added ws_connect_timeout option to delay of 500 ms the establishment of the WS channel. This is needed to wait for browser fingerprinting to finish, in order to have all the info needed for triggering ARE rules using WS channel. 2016-04-03 15:16:14 +02:00
Brendan Coles
899d566fe7 Add timestamp to client-side debug messages 2016-04-02 17:04:32 +00:00
Brendan Coles
127942b60d Decrease workers and timeout 2016-04-02 13:32:04 +00:00
Brendan Coles
6162b6eb41 Merge branch 'master' of https://github.com/beefproject/beef 2016-04-02 11:49:12 +00:00
antisnatchor
309bbe4859 Merge branch 'master' of https://github.com/beefproject/beef 2016-04-02 13:06:31 +02:00
antisnatchor
edb44644fc Now ARE rules are triggered also when using the WebSocket channel. 2016-04-02 13:05:58 +02:00
antisnatchor
4f5e7ddfb6 Renamed ARE rule. 2016-04-02 12:27:13 +02:00
Brendan Coles
c3b88ce832 Add additional paths for WPAD 2016-04-02 08:06:36 +00:00
Brendan Coles
d390f24730 Add Tor Browser fingerprint 2016-04-02 07:48:05 +00:00
Brendan Coles
d0255d6e9c Add timeout option to beef.net.cors.request 2016-04-02 07:04:40 +00:00
Brendan Coles
ffb15892a4 Add timeout option to beef.net.cors.request 2016-04-02 06:46:23 +00:00
Brendan Coles
26e1672227 Use default options 2016-04-02 06:14:35 +00:00
antisnatchor
41c9589ef1 Removed rules enabled by mistake. 2016-04-01 17:36:44 +02:00
antisnatchor
c091ff9bc2 Merge branch 'master' of https://github.com/beefproject/beef 2016-04-01 14:14:56 +02:00
antisnatchor
5e7342e1bd Added Brave browser detection. 2016-04-01 14:14:13 +02:00
antisnatchor
c1137b5cc8 Merge pull request #1230 from derrend/patch-1 
Update INSTALL.txt with Ubuntu instructions
 2016-03-31 10:18:37 +02:00
antisnatchor
e772e683fd Issue #1214. Now command module post_execute is honoured also with WebSockets channel. 2016-03-31 09:56:40 +02:00
antisnatchor
9905756c0a Additional fix related to #1210 (removing leading/trailing doubel quotes from the command results if channel is WebSocket) 2016-03-31 08:03:06 +02:00
antisnatchor
39a010fa63 Fixes #1210 2016-03-30 12:30:11 +02:00
Brendan Coles
9d1b645fdb Update ISSUE_TEMPLATE.md 2016-03-29 20:34:25 +11:00
Brendan Coles
08a83437a0 Add GitHub issue template 2016-03-29 09:28:18 +00:00
Brendan Coles
962684b99e Add support for Firefox 46 2016-03-29 09:04:02 +00:00
Brendan Coles
98873e44a6 Add .travis.yml 2016-03-26 01:13:49 +00:00
Brendan Coles
0efd7bbaab Update Gemfile.lock 2016-03-26 01:10:23 +00:00
Brendan Coles
2e8f9de9f5 Update issues URL 2016-03-26 01:08:35 +00:00
Brendan Coles
802e470dba Merge pull request #1234 from cybernet/patch-1 
tiny change
 2016-03-26 12:04:24 +11:00
cybernet
47c3a5e1a4 tiny change 2016-03-26 02:26:59 +02:00
Brendan Coles
43a797b36a Re-order BeEF::Filters.is_valid_ip arguments with optional last 2016-03-25 20:58:17 +00:00
Brendan Coles
4dde171c4f Use base64 for module inputs instead of gsub 2016-03-21 19:41:02 +00:00
Brendan Coles
b6f9daf780 Merge pull request #1232 from mgeeky/master 
Bug fixes + additional options
 2016-03-22 05:56:53 +11:00
Brendan Coles
d8ce153bb4 Add Netgear DGN2200 Command Execution module 2016-03-20 21:30:20 +00:00
Brendan Coles
264c203a7e Change BeEF::Filters::is_valid_yes_no to be case insensitive 2016-03-20 16:33:57 +00:00
Brendan Coles
6eccbbe1a6 Rename docs to doc 2016-03-20 16:31:14 +00:00
Brendan Coles
2fde87a19b Update comments 2016-03-20 16:29:56 +00:00
Brendan Coles
9d8d1c28a1 Add rdoc rake task 2016-03-20 15:38:35 +00:00
Brendan Coles
4409599d1a Add support for Firefox 45 2016-03-16 14:50:06 +00:00
antisnatchor
c5bcba37f2 Verify if ARE module exec_order and exec_delay values are consistent with ARE modules number. 2016-03-14 16:51:06 +01:00
antisnatchor
85b1afb861 Fixed #1203 Now wrapping function names are appended with 8 bytes of random hexchars, to prevent name collisions. The rule_token "seed" is also stored in the ARE Execution table. 2016-03-14 16:43:59 +01:00
antisnatchor
d84c8ef976 Added support for Chrome 49. 2016-03-14 14:56:33 +01:00
Derren Desouza
80fe18c32c Update INSTALL.txt with Ubuntu instructions 
Updated with installation script for Ubuntu based systems. The script may be copied and pasted in full into a terminal session and to run as a single command.
 2016-03-11 12:33:07 +10:00
mgeeky
a677e9c746 Added checkbox specyfing whether to create a pop-under at user's tab closing event (module confirm_close_tab). Also extracted static confirmation message to the module's options. 2016-03-08 15:32:36 +01:00
mgeeky
8ab9716a44 Firefox has forbidden access to the chrome:// scheme rendering "Detect Extensions" module useless. The code has been trying to fingerprint installed extensions by creating image which would load extension-specific url and then in onload' event would send such information to the BeeF server. Unfortunately there was no code handling onerror' situation, therefore end user wasn't getting any status from this module (stating that it failed). The below commit adds such functionality. 2016-03-08 14:49:29 +01:00
mgeeky
faddd76de0 Added try..catch to avoid looped mozRTCSessionDescription undefined exceptions in Firefox (as occured in 43.0). Shouldn't do much havoc I guess. 2016-03-07 18:20:08 +01:00
mgeeky
e14b5f953a Modified the Man-In-The-Browser logic of building query string in form fetching. Previous implementation couldn't handle properly option and submit parameters, therefore a MITB-ed user wasn't sending correct query string which should include those two more fields. For instance, bWAPP application (by IT SEC Games) makes choosing a bug to exploit by submitting form consisting of an option and <button> with type=submit. With this patch an user behind MITB will be able to successfully fetch the form and thus proceed to the next bug. 2016-03-07 18:01:37 +01:00
antisnatchor
815eff8d4e Merge pull request #1220 from ilatypov/master 
Delay form submission to allow the Javascript event loop complete the…
 2016-02-18 15:51:00 +01:00
antisnatchor
39ca52ae8b Merge pull request #1221 from Und3rf10w/patch-1216 
Update loader.rb to include optparse
 2016-02-18 15:49:44 +01:00
Jonathan Echavarria
f1eb8c8723 Update loader.rb 
Includes fixes for #1216 by loading the 'optparse' library
 2016-02-17 09:29:11 -05:00
Ilguiz Latypov
d81db24912 Delay form submission to allow the Javascript event loop complete the transfer of the log. #1215 2016-02-15 16:02:06 -05:00