Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
826 Commits 14 Branches 34 Tags
db2be8ba16f2cbcf306aef9bc7d03ecd72bd7afd
Commit Graph

187 Commits

Author SHA1 Message Date
bcoles
2439c9d61c Added Page URI to browser hook initialization details 
Fixes issue 543
 2011-12-28 08:47:07 +10:30
Saafan
315c22967e Fixes the new changes of MSF from xmlrpc to msgpack 2011-12-27 21:40:15 +02:00
bcoles
9b4a24c676 Fixed content-type for .json files 
Content-type is now 'application/json'
 2011-12-27 19:37:57 +10:30
bcoles
746ac62b8e Removed "sort by" functionality from hooked browser tree 
Fixes issue 539
 2011-12-27 14:26:02 +10:30
bcoles
dcf31850fe Updated a few module names 
Added mailing list signup form to the advanced demo page in preperation for the stored password theft module
 2011-12-26 12:03:22 +10:30
bcoles
74ec478449 Added allow_cross_domain to the request object 
By default all requests use allow_cross_domain = "true"

The Proxy component uses allow_cross_domain = "false"

The Forge Request component uses allow_cross_domain = "true"

Fixes issue 87
 2011-12-25 17:37:32 +10:30
bcoles
6ff92f48e0 Added document.referrer to browser hook initialization and tidied some code 2011-12-22 02:43:12 +10:30
bcoles
ff0cf9f9ae Minor spelling/grammatical changes 2011-12-21 23:27:40 +10:30
bcoles
590e514680 Renamed "Requester" tab to "Rider" 
Added Proxy sub-tab under Rider tab

Part of issue 63
 2011-12-20 22:04:22 +10:30
bcoles
3ee52b82c0 Part of issue 87, issue 63, issue 29, issue 30 
In preperation for creating requester and proxy unit tests:

  o Tidied up some of the requester and proxy
  o Partially de-coupled requester from proxy
  o Fixed minor bugs:
    o is_valid_uri was not implemented correctly
    o http scheme validation had "http" instead of "https"
 2011-12-20 02:47:50 +10:30
root
6ac0200bf5 Fixed bugs found when building unit-tests that could cause prolems 2011-12-16 13:34:54 -05:00
root
4a9e224e8a updated rpcclient to get rid of old @enabled variables 2011-12-16 12:35:49 -05:00
bcoles
47ac45632d Added BeEF logo to panel header 2011-12-15 03:07:43 +10:30
root
d1d6698dcf Updated to work with the new metasploit msgpack server 2011-12-06 03:51:19 -05:00
bcoles
412fd68732 Updated code.google.com links with github.com in: 
extensions/admin_ui/media/javascript/ui/panel/WelcomeTab.js
 2011-12-12 21:12:20 +10:30
bcoles
78d3702de3 Updated CSS to allow copying of module results 
Fixes issue 68
 2011-12-12 19:54:48 +10:30
bcoles
c665712f75 Updated download links for github 2011-12-11 20:55:27 +10:30
bcoles
120e36d4b4 Added BeEF version to panel header and updated some links from 
code.google.com to github.com
 2011-12-11 20:30:09 +10:30
Ben Passmore
434779055c Emergency fix: Corrected API fire error, with non inherited class calling super. 2011-12-04 10:09:32 +10:00
Christian Frichot
dd8eb589a2 (Fixes issue 454) First run of QRCode Extension. Nothing fancy, but if enabled, gives you some URLs upon start up with default hooking URLs. Advanced hooking and persistance modules will make this sexier 2011-11-29 20:22:44 +08:00
Christian Frichot
af7becdfc3 Tidying up some of the in-built console shell interface 2011-11-27 18:46:26 +08:00
bcoles
25206bddc8 Added "Submit Bug" link to the Admin UI 
Fixes issue 545
 2011-11-27 02:25:56 +10:30
Christian Frichot
9c7bc0ea51 Removed core dependancy on librex - installer advises, but doesn't install. Beef does NOT require librex, unless you actually enable the console.shell extension 2011-11-24 22:06:21 +08:00
antisnatchor
c37db1e364 (Fixes issue 486): now using the requester (so also the tunneling proxy) you can correctly send POST requests 2011-11-23 17:07:55 +01:00
antisnatchor
0866b0a8e1 bugfix on the requester, small code change in net.js (optimized cross_domain checks, added check when URI contains schema/domain as well) 2011-11-22 11:18:55 +01:00
antisnatchor
4c1ed2ee2e completely removed WebRick dependency and references in the code!! fuck yeah 2011-11-22 10:20:44 +01:00
antisnatchor
18d4b642fe replaced WebRick HttpUtils in requester filters 2011-11-22 10:12:26 +01:00
antisnatchor
9618f484fd code beautify. Also removed the tolerant parser old patch code: it's not needed anymore 2011-11-22 09:58:04 +01:00
antisnatchor
5322570346 rewrote the requester core to parse raw HTTP requests from the DB (requester_parse_db_request): don't use WebRick utils anymore 2011-11-22 09:53:00 +01:00
antisnatchor
edf129d9ea replaced WebRick util method to parse HTTP request in Requester admin_ui controller 2011-11-20 11:49:05 +01:00
antisnatchor
e502882ed3 admin_ui session cookie management now with Rack 2011-11-20 11:12:59 +01:00
antisnatchor
6c9e83b617 Merge branch 'master' of https://code.google.com/p/beef 2011-11-19 20:11:22 +01:00
antisnatchor
05d06bb94e Removed unuseful Mutexes, refactored all the ugly 'exception-oriented' code that was using WebRick BadRequest, added config.yaml option to enable verbose debugging logs of Thin 2011-11-19 18:02:41 +01:00
antisnatchor
7e6c4932d3 rewrote from scratch the TunnelingProxy: now a simple multi-threaded TCPserver. Doesn't use anymore webrick/httpproxy 2011-11-19 16:13:09 +01:00
antisnatchor
2997540918 rewrote the server core and adjusted the API/classes to use Thin and Rack instead of WebRick. 2011-11-19 15:49:19 +01:00
Wade
ae95f9a954 fixed bug with hostname not existing in the dns/hosts file 2011-11-17 21:09:00 +10:00
Wade
1e32734565 update method changed to use git 2011-11-14 00:02:52 +10:00
Wade
e0a9d117bc update method removed 2011-11-13 23:45:55 +10:00
antisnatchor
686390fa21 Modified metasploit extension config file adding a note to don't use 127.0.0.1 as host value. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1430 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-12 19:39:56 +00:00
bcoles@gmail.com
d20a3ea9b2 Fixes issue 533 : Tunneling proxy: bug when the hooked browser is IE 
Now checks for null HTTP header keys and values



git-svn-id: https://beef.googlecode.com/svn/trunk@1424 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-08 15:19:54 +00:00
antisnatchor
9bed6cf9fd "Allowing" <br> tag when output escaping content in the command module output. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1391 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-11-02 15:15:24 +00:00
bcoles@gmail.com
dd5b1f5a81 Added platform and ActiveX detection to the browser hook initialization 
o Platform often provides the architecture (ie, 32bit) and can 
	be useful in identifying devices / smart phones

	o ActiveX detection was added for obscure browsers (ie, such as 
	software using an embedded browsing engine built on the IE COM)
	Normally ActiveX would only be detected on a hooked IE browser.

Moved the `is_valid_yes_no' filter from browser.rb to base.rb



git-svn-id: https://beef.googlecode.com/svn/trunk@1368 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-16 20:56:23 +00:00
buherator@gmail.com
caad2d5437 Displaying zombie domain and port on Requester tab 
git-svn-id: https://beef.googlecode.com/svn/trunk@1367 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-16 20:19:03 +00:00
bcoles@gmail.com
d0f332643e Separated hostname and hostport 
git-svn-id: https://beef.googlecode.com/svn/trunk@1366 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-16 14:25:47 +00:00
buherator@gmail.com
ed866886f7 Storing port of HookedBrowser, fixing value of HookedBrowser.domain 
git-svn-id: https://beef.googlecode.com/svn/trunk@1365 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-15 22:04:08 +00:00
buherator@gmail.com
7447015901 sorting commands by status and name 
git-svn-id: https://beef.googlecode.com/svn/trunk@1364 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-15 14:25:50 +00:00
antisnatchor
e22332e1f8 (Fixes issue 467) rewrote from scratch the XssRays handler, refactored JS and Ruby code, improved the whole thing. 
git-svn-id: https://beef.googlecode.com/svn/trunk@1361 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-12 14:56:50 +00:00
sussurro@happypacket.net
17d8553b9f update of msf module to make it launch exploits 
git-svn-id: https://beef.googlecode.com/svn/trunk@1359 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-10 01:52:55 +00:00
buherator@gmail.com
ab1ec19a5c Changed BeEF::API::Registra to BeEF::API::Registrar 
git-svn-id: https://beef.googlecode.com/svn/trunk@1358 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-09 15:31:52 +00:00
antisnatchor
20f07a5b04 prevent BeEF to be auto-BeEFed :-) 
git-svn-id: https://beef.googlecode.com/svn/trunk@1357 b87d56ec-f9c0-11de-8c8a-61c5e9addfc9
 2011-10-07 13:07:07 +00:00