Hiddenden/beef - beef - Hiddenden.cafe Gitea

Author	SHA1	Message	Date
Brendan Coles	962684b99e	Add support for Firefox 46	2016-03-29 09:04:02 +00:00
Brendan Coles	98873e44a6	Add .travis.yml	2016-03-26 01:13:49 +00:00
Brendan Coles	0efd7bbaab	Update Gemfile.lock	2016-03-26 01:10:23 +00:00
Brendan Coles	2e8f9de9f5	Update issues URL	2016-03-26 01:08:35 +00:00
Brendan Coles	802e470dba	Merge pull request #1234 from cybernet/patch-1 tiny change	2016-03-26 12:04:24 +11:00
cybernet	47c3a5e1a4	tiny change	2016-03-26 02:26:59 +02:00
Brendan Coles	43a797b36a	Re-order BeEF::Filters.is_valid_ip arguments with optional last	2016-03-25 20:58:17 +00:00
Brendan Coles	4dde171c4f	Use base64 for module inputs instead of gsub	2016-03-21 19:41:02 +00:00
Brendan Coles	b6f9daf780	Merge pull request #1232 from mgeeky/master Bug fixes + additional options	2016-03-22 05:56:53 +11:00
Brendan Coles	d8ce153bb4	Add Netgear DGN2200 Command Execution module	2016-03-20 21:30:20 +00:00
Brendan Coles	264c203a7e	Change BeEF::Filters::is_valid_yes_no to be case insensitive	2016-03-20 16:33:57 +00:00
Brendan Coles	6eccbbe1a6	Rename docs to doc	2016-03-20 16:31:14 +00:00
Brendan Coles	2fde87a19b	Update comments	2016-03-20 16:29:56 +00:00
Brendan Coles	9d8d1c28a1	Add rdoc rake task	2016-03-20 15:38:35 +00:00
Brendan Coles	4409599d1a	Add support for Firefox 45	2016-03-16 14:50:06 +00:00
antisnatchor	c5bcba37f2	Verify if ARE module exec_order and exec_delay values are consistent with ARE modules number.	2016-03-14 16:51:06 +01:00
antisnatchor	85b1afb861	Fixed #1203 Now wrapping function names are appended with 8 bytes of random hexchars, to prevent name collisions. The rule_token "seed" is also stored in the ARE Execution table.	2016-03-14 16:43:59 +01:00
antisnatchor	d84c8ef976	Added support for Chrome 49.	2016-03-14 14:56:33 +01:00
mgeeky	a677e9c746	Added checkbox specyfing whether to create a pop-under at user's tab closing event (module confirm_close_tab). Also extracted static confirmation message to the module's options.	2016-03-08 15:32:36 +01:00
mgeeky	8ab9716a44	Firefox has forbidden access to the chrome:// scheme rendering "Detect Extensions" module useless. The code has been trying to fingerprint installed extensions by creating image which would load extension-specific url and then in `onload' event would send such information to the BeeF server. Unfortunately there was no code handling` onerror' situation, therefore end user wasn't getting any status from this module (stating that it failed). The below commit adds such functionality.	2016-03-08 14:49:29 +01:00
mgeeky	faddd76de0	Added try..catch to avoid looped mozRTCSessionDescription undefined exceptions in Firefox (as occured in 43.0). Shouldn't do much havoc I guess.	2016-03-07 18:20:08 +01:00
mgeeky	e14b5f953a	Modified the Man-In-The-Browser logic of building query string in form fetching. Previous implementation couldn't handle properly option and submit parameters, therefore a MITB-ed user wasn't sending correct query string which should include those two more fields. For instance, bWAPP application (by IT SEC Games) makes choosing a bug to exploit by submitting form consisting of an option and <button> with type=submit. With this patch an user behind MITB will be able to successfully fetch the form and thus proceed to the next bug.	2016-03-07 18:01:37 +01:00
antisnatchor	815eff8d4e	Merge pull request #1220 from ilatypov/master Delay form submission to allow the Javascript event loop complete the…	2016-02-18 15:51:00 +01:00
antisnatchor	39ca52ae8b	Merge pull request #1221 from Und3rf10w/patch-1216 Update loader.rb to include optparse	2016-02-18 15:49:44 +01:00
Jonathan Echavarria	f1eb8c8723	Update loader.rb Includes fixes for #1216 by loading the 'optparse' library	2016-02-17 09:29:11 -05:00
Ilguiz Latypov	d81db24912	Delay form submission to allow the Javascript event loop complete the transfer of the log. #1215	2016-02-15 16:02:06 -05:00
Brendan Coles	b8afb0e855	Add WS timer to banner	2016-02-13 10:00:47 +00:00
Brendan Coles	d110675c0f	Revert `96dfde519a`	2016-02-13 09:53:23 +00:00
Brendan Coles	7a668abc0a	Update ARE to support Evasion extension - Fix #1219	2016-02-13 07:09:00 +00:00
Brendan Coles	60f046c775	Update jquery version in evasion exclude_core_js	2016-02-13 06:49:54 +00:00
Brendan Coles	d0ca66cbf5	Decrease workers and increase timeout	2016-02-12 14:38:42 +00:00
Brendan Coles	13fded460e	assert_equal <expected>,<actual>	2016-02-12 13:59:50 +00:00
Brendan Coles	96dfde519a	Remove JSON.stringify(results) from beef.websocket.send - Fix #1210	2016-02-12 13:25:39 +00:00
Brendan Coles	d1d7371ccf	Disable console extension	2016-02-12 13:10:23 +00:00
Brendan Coles	ca288fef9f	Update gems	2016-02-12 11:23:29 +00:00
Brendan Coles	1a16837182	Remove win32console gem dependency for Windows	2016-02-12 11:03:29 +00:00
Brendan Coles	afd48d8a5f	Advise console extension is unavailable	2016-02-12 08:32:00 +00:00
Brendan Coles	8e5991784f	Add ARE return status	2016-02-11 12:37:48 +00:00
Brendan Coles	bef0c6dcdd	Add support for Windows 10	2016-02-10 07:40:28 +00:00
Brendan Coles	85d87f47b5	Remove HTTP method from beef.dom.persistentIframe - Fix #1211	2016-02-09 14:05:35 +00:00
Brendan Coles	8697c81ffa	Replace eval with hard-coded strings	2016-02-08 08:29:52 +00:00
Brendan Coles	fa8464bdd9	Update supported browsers	2016-02-08 03:59:25 +00:00
Brendan Coles	5065a55238	Add lan_http_scan ARE rule	2016-02-07 13:19:35 +00:00
Brendan Coles	bb8fe9d8f8	Fix icon	2016-02-07 12:20:53 +00:00
Brendan Coles	7e6e3bc51d	Add lan_flash_scan ARE rule	2016-02-07 12:20:04 +00:00
Brendan Coles	848dc65c6f	Add cross_origin_scanner_flash module	2016-02-07 11:20:55 +00:00
Brendan Coles	321aff56f3	Rename cross_origin_scanner to cross_origin_scanner_cors	2016-02-07 10:53:32 +00:00
Brendan Coles	eb9e0a0a68	Add ARE return status	2016-02-07 01:01:02 +00:00
Brendan Coles	83e1f596de	unless	2016-02-06 08:04:29 +00:00
Brendan Coles	dde8034606	Use 'Unknown' if BrowserPlatform is null	2016-02-05 04:25:23 +00:00

1 2 3 4 5 ...

2638 Commits