BeEF, the Browser Exploitation Framework is a professional security tool provided for lawful research and testing purposes. It allows the experienced penetration tester or system administrator additional attack vectors when assessing the posture of a target. The user of BeEF will control which browser will launch which command module and at which target.
BeEF hooks one or more web browsers as beachheads for the launching of directed command modules in real-time. Each browser is likely to be within a different security context. This provides additional vectors that can be exploited by security professionals.

The Framework is being ported to Ruby. The process is well underway and is available for testing. To download alpha versions view the download area on googlecode.

Zombie Details Screenshot

zombiedetails.png

Log Screenshot

log.png

Metasploit Module Screenshot

metasploit.png

Autopwn Module Screenshot

autopwn.png

Detect URLs Module Screenshot

detecturlsmodule.png

Alert Module Screenshot

alertmodule.png

TOR Detection Modle Screenshot

tormodule.png

Example Zombie Page Screenshot

zombie.png

BeEF provides a professional and simple user interface. It is easy to deploy and is implemented in Ruby so it will run on most Operating Systems. The framework contains various command modules which employ BeEF’s simple API. This API facilitates quick development of custom modules by the user.

Download

Download Post in PDF Save Post as PDF