Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,000 Commits 14 Branches 34 Tags
8db7ef00b404e5602463445b72cfe3fc976d9841
Commit Graph

149 Commits

Author SHA1 Message Date
antisnatchor
fec922a63c Implemented /api/modules/ to retrieve all enabled modules 2012-03-14 16:52:25 +01:00
antisnatchor
8fdd127f17 Disabled Sinatra exception, and set the custom 404 response to 'not found.' 2012-03-14 16:26:29 +01:00
antisnatchor
c3a611d12e Implemented info/options retrieval for a specific module throught the REST API 2012-03-13 17:18:13 +01:00
antisnatchor
434f9f8e43 Now it's possible to launch command modules via the REST api (also with options), and then get execution results. 2012-03-13 12:43:10 +01:00
antisnatchor
3674f06609 Implemented /api/logs and /api/logs/hb_session, added code comments 2012-03-12 17:40:38 +01:00
antisnatchor
818f3d207e Retrieving correct browser version with browserDetails BrowserVersion 2012-03-12 17:14:09 +01:00
antisnatchor
4429ab3df2 Added /api/hooks logic to retrieve online and offline HBs as json 2012-03-12 12:46:04 +01:00
antisnatchor
03cd06a014 Added stubs and registered classes for the 3 main RESTful API endpoints: hooks, modules, logs 2012-03-12 11:55:26 +01:00
antisnatchor
872272645e Added api_token for RESTful api authentication 2012-03-12 10:27:03 +01:00
antisnatchor
7dab21ff7f First skeleton for the RESTful api using Sinatra (modular approach, not classic one). 2012-03-11 16:12:59 +01:00
radoen
a0c11fa695 Added support to intercept dynamic requests 2012-03-11 10:26:56 +01:00
Keith Lee
95f7e92011 Changes to command module and get_physical location so that @datastore['cid'] , @datastore['results'] and @datastore['beefhook'] can be called from the modules 2012-03-05 03:40:46 +08:00
antisnatchor
e9a6049e58 Fixes issue 621: Added 2 new command line options. Now it's psosible to specify a different config.yaml file. Also changed the core load order, adding a new bootstrap module. 2012-03-04 14:55:03 +01:00
Wade Alcorn
275bbfaad2 Updates to test jenkins 2012-02-26 21:35:03 +10:00
Mike Haworth
5e138395d4 Partial fix for issue #100, now detects build version of flash 2012-02-18 14:17:12 +13:00
antisnatchor
5bc6745e03 Fixed issue 66: base64'ed the iframe src in case of Chrome/Safari to bypass the webkit anti-XSS filter 2012-02-15 16:01:46 +01:00
antisnatchor
58f2b4f7a1 Added detection of Chrome 17 2012-02-15 16:01:45 +01:00
Christian Frichot
4a92d3174c Removed extended_in_modules code. See Issue #147 2012-02-15 16:01:45 +01:00
antisnatchor
1d74d7eeab Fixed a serious bug in beef.net.request when sending cross-domain POST data. jQuery is automatically changing the method to GET if the dataType (that was hardcoded in our code) is set to 'script'. 2012-02-15 16:00:38 +01:00
Wade Alcorn
76fdb6421c The framework gracefully exits if the port is in use. 
Fixes issue #555
https://github.com/beefproject/beef/issues/555
 2012-01-11 21:56:17 +10:00
bcoles
a6986e3960 Added detection for Chrome 16, updated Chrome Extensions modules and 
split the Details tab "Browser Hook Initialization" into "Hooked Page",
"Browser" and "Host"
 2012-01-04 18:52:34 +10:30
Wade Alcorn
06899ca267 Year updated from 2011 to 2012 2011-12-31 22:24:36 +10:00
bcoles
2439c9d61c Added Page URI to browser hook initialization details 
Fixes issue 543
 2011-12-28 08:47:07 +10:30
bcoles
33289bc023 Fixed bug in cross-domain request detection 
Same-domain requests on a non-standard HTTP port were incorrectly
identified as cross-domain requests
 2011-12-27 17:56:18 +10:30
bcoles
74ec478449 Added allow_cross_domain to the request object 
By default all requests use allow_cross_domain = "true"

The Proxy component uses allow_cross_domain = "false"

The Forge Request component uses allow_cross_domain = "true"

Fixes issue 87
 2011-12-25 17:37:32 +10:30
bcoles
4543d60570 Added allowCrossDomain functionality to beef.net.requester.send 2011-12-24 13:37:14 +10:30
bcoles
61a34c1c60 Decoupled beef.net.request and beef.net.proxyrequest 
This is part of issue 87
 2011-12-24 04:21:45 +10:30
bcoles
f2d4592941 Added DNS Tunnel first draft 2011-12-23 08:24:10 +10:30
bcoles
6ff92f48e0 Added document.referrer to browser hook initialization and tidied some code 2011-12-22 02:43:12 +10:30
bcoles
2e9ad8b9dc More tidying of requester and proxy in preperation for unit tests 2011-12-21 06:09:30 +10:30
bcoles
3ee52b82c0 Part of issue 87, issue 63, issue 29, issue 30 
In preperation for creating requester and proxy unit tests:

  o Tidied up some of the requester and proxy
  o Partially de-coupled requester from proxy
  o Fixed minor bugs:
    o is_valid_uri was not implemented correctly
    o http scheme validation had "http" instead of "https"
 2011-12-20 02:47:50 +10:30
bcoles
ec7d3134aa Updated browser detection in hook initialization 
Future proofed browser version detection in preperation for double
digit major version numbers

Updated flash detection in Internet Explorer for Flash 11.x
 2011-12-12 00:17:15 +10:30
bcoles
a49d1351e7 Added check for document.documentMode so Internet Explorer 8 and 9 are 
no longer detected as Internet Explorer 7 when operating in compatibility mode.

Fixes issue 589
 2011-12-08 22:34:46 +10:30
Christian Frichot
921cf10e55 Migration no longer re-adds existing modules to the database. You can now see previous results after you stop/start BeEF 2011-11-28 07:27:49 +08:00
Ben Passmore
e76909cd4a Added very basic threading to the Network stack. Fixes issue 315. 2011-11-25 20:43:50 +10:00
antisnatchor
c37db1e364 (Fixes issue 486): now using the requester (so also the tunneling proxy) you can correctly send POST requests 2011-11-23 17:07:55 +01:00
antisnatchor
4174e9cd5e fixed lame JS error in net.js 2011-11-22 16:15:20 +01:00
antisnatchor
0866b0a8e1 bugfix on the requester, small code change in net.js (optimized cross_domain checks, added check when URI contains schema/domain as well) 2011-11-22 11:18:55 +01:00
antisnatchor
e4cecc27df renabled commented-out Mutex in server initialization. Without this mutex the tunneling proxy cannot start. 2011-11-21 16:45:09 +01:00
Wade
82865f6ffa popup blocker detection added 2011-11-21 17:15:39 +10:00
Wade
48c7123639 Error message updated (Fixes issue 487). 2011-11-21 16:14:33 +10:00
Wade
3f94c72777 Unneeded comments removed 2011-11-21 15:42:38 +10:00
Wade
5045723cf1 Reduce the Thin logging level to match the value set in the config 2011-11-21 15:41:41 +10:00
antisnatchor
88bb429d04 adapted DynamicReconstruction Tests to the new Thin server. Rake => all tests passed 2011-11-19 20:10:10 +01:00
antisnatchor
05d06bb94e Removed unuseful Mutexes, refactored all the ugly 'exception-oriented' code that was using WebRick BadRequest, added config.yaml option to enable verbose debugging logs of Thin 2011-11-19 18:02:41 +01:00
antisnatchor
2997540918 rewrote the server core and adjusted the API/classes to use Thin and Rack instead of WebRick. 2011-11-19 15:49:19 +01:00
bcoles@gmail.com
f7a39098d4 Updated Firefox detection: 
Updated Firefox version detection
	(in preperation for double digit version numbers)

	Added Firefox 9 detection  (the beta is public)

	Added Firefox 10 detection (the beta will be public in ~30 days)



git-svn-id: https://beef.googlecode.com/svn/trunk@1429 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-12 02:03:36 +00:00
antisnatchor
a930d11792 Improved Javascript documentation (Rdoc) for dom.js 
git-svn-id: https://beef.googlecode.com/svn/trunk@1390 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-02 15:14:00 +00:00
antisnatchor
8a3977ff78 Improved attachApplet JS API function to support codebase attribute 
git-svn-id: https://beef.googlecode.com/svn/trunk@1388 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-02 11:04:05 +00:00
antisnatchor
8074443730 Improved attachApplet JS API function to parse array of parameters. Now also use the best way to attach the applet cross-browser. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1386 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-01 12:00:46 +00:00