Skip to content

Latest commit

 

History

History
90 lines (61 loc) · 2.19 KB

README.md

File metadata and controls

90 lines (61 loc) · 2.19 KB

BeEF

Automating website cloning with BeEF

Build Status

Web Cloner

Relevant BeEF blog: BeEF web cloning, BeEF mass mailing, Social Engineering with better BeEF!

With the BeEF Server running example.com/login.aspx can be cloned to appear on http://[BeEF]/login.aspx using curl or beef.py.

[BeEF] = IP:PORT (Default: 127.0.0.1:3000)

curl

curl -H "Content-Type: application/json; charset=UTF-8" -d
'{"url":"https://example.com/login.aspx", "mount":"/login.aspx"}'
-X POST http://[BeEF]/api/seng/clone_page?token=[token];

beef.py

./beef.py -m /login.aspx {password} example.com/login.aspx 

beef.py Requirements

  • Python 2 or 3
    • (Preferably 3)
    • sudo apt install python3
  • pip 2 or 3
    • (Preferably 3)
    • sudo apt install python3-pip
  • pip packages
    • requests
    • simplejson

I do not have BeEF

Manual Install

The BeEF Wiki has install instructions.

I Can Haz Script?

./install.sh Installs the BeEF framework as well as python3 and python3-pip

I have BeEF

Change default password

If you do not change the default password you will have to copy the password from stdout each time you start BeEF.

[!] Warning: Default username and weak password in use!
|_  New password for this instance: b37c2b8597914c934f3fa5571a942325

If the default password is set newer versions of BeEF will generate a 16 byte password each time the server is started. See #1 for more info.

The password is set at line 20 of config.yaml. The default password is beef, change this to anything other than beef[0-9] or passw[o0]rd[0-9].

Get AbertayHackers/BeEF

git clone git://github.com/AbertayHackers/BeEF

Install Python Dependencies

cd BeEF
pip3 install -r requirements.txt

Start BeEF Server

Kali:

cd /usr/share/beef-xss 
./beef 

From manual install:

cd beef
./beef