BeEF Module Construction

Events: Submitted by Wade on 13-Jul-08 at 11:25am

BeEF modules consist of three basic files in a directory. The first is ‘name.txt’ which is just the name displayed in the framework’s menus. The next is ‘index.php’, this is the page displayed in BeEF when the menu item is selected. The third file is the ‘template.js’ which is the file that contains the JavaScript code sent to the target. Symmetric BeEF modules are trivial to implement.
Modules can get more complex by transmitting data back from the targets using API calls like return_result(). A great starting point to understand the framework APIs is the standard alert module that comes with BeEF.

PHP reverse shell

Events: Submitted by Wade on 09-Jan-08 at 12:14am

Pentestmonkey has a great tool called php-reverse-shell. It is for elevation from web server (PHP) upload access to a reverse bindshell. The script will open an outbound TCP connection from the webserver to a host and port of your choice.

BeEF in BackTrack3

Events: Submitted by Wade on 06-Nov-07 at 09:42am

Josh Abraham has added BeEF to BackTrack3. He has also created a tutorial with some of the basic functionality.

BeEF 0.3.2 Released

Events: Submitted by Wade on 19-Jul-07 at 07:55am

Version 0.3.2 of BeEF has been released.

BeEF 0.3.1.6 Released

Events: Submitted by Wade on 19-Mar-07 at 10:16am

The new version of BeEF has been released. BeEF 0.3.1.6 has new modules employing cutting edge exploitation techiques. It is the first framework/tool that can perform Inter-Protocol Communication and Inter-Protocol Exploitation. It can reach behind hardened firewalls and IDSs to launch ported exploits at arbitrary servers.