The Browser Exploitation Framework (BeEF) is a powerful professional security tool. BeEF is pioneering techniques that provide the experienced penetration tester with practical client side attack vectors. Unlike other security frameworks, BeEF focuses on leveraging browser vulnerabilities to assess the security posture of a target. This project is developed solely for lawful research and penetration testing.
BeEF hooks one or more web browsers as beachheads for the launching of directed command modules. Each browser is likely to be within a different security context, and each context may provide a set of unique attack vectors. The framework allows the penetration tester to select specific modules (in real-time) to target each browser, and therefore each context.
The framework contains numerous command modules that employ BeEF’s simple and powerful API. This API is at the heart of the framework’s effectiveness and efficiency. It abstracts complexity and facilitates quick development of custom modules.
BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
Installation on Linux :
Note, in any place listing RVM installation instructions you can replcae them with this two steps:
– get ruby – assuming you do not want RVM and know a way to get ruby
– run: gem install bundler
Installation on Windows :
Install dependencies
– Download and Install: http://rubyinstaller.org/
(Including the Development Kit, for more info see here: https://github.com/oneclick/rubyinstaller/wiki/Development-Kit)
– Download and Extract into your Ruby BIN folder: http://www.sqlite.org/sqlitedll-3_7_0_1.zip
– Add your Ruby BIN folder to your system PATH variable.
– Open a command Prompt and browse to where you extracted the Development Kit, run:
ruby dk.rb init ruby dk.rb install
– Follow the steps described here:https://github.com/hiranpeiris/therubyracer_for_windows This is needed because the admin UI is using the Uglifier gem, which needs a JavaScript environment. This is quite painful to install in Windows, so that link provides pre-compiled DLLs for the v8 engine and 2 required gems.
– Browse to where you extracted BeEF and run:
gem install bundler
– At this stage you should have the following gems installed:
bundler (1.5.1) ref (1.0.5) therubyracer (0.11.0beta1 x86-mingw32)
– You’re now ready for the last step. After that, you can start BeEF.
bundle install
Download :
beef-0.4.5.1.zip
beef-0.4.5.1.tar.gz
Source: http://beefproject.com/