BeEF - The Browser Exploitation Framework

By Neuromancer, 4 April, 2024
BeEF - The Browser Exploitation Framework

BeEF, short for The Browser Exploitation Framework, is an innovative penetration testing tool that sheds new light on security assessment by focusing on the web browser. In a time when web-based attacks, including those on mobile clients, are becoming increasingly concerning, BeEF provides security experts with a powerful tool. It enables the assessment of a target environment's security posture by exploiting vulnerabilities found directly within the browser, often considered the "open gate" of IT security. Unlike traditional security frameworks that focus on securing the network perimeter and the client system, BeEF offers a new perspective by exploring exploit opportunities within the web browser context. With the ability to use web browsers as a bridgehead for targeted attacks, BeEF marks a turning point in strategic security assessment and expands the penetration tester's toolbox with a critical component in the fight against cyber threats.

Installation unter Ubuntu

Docker Installation

sudo apt update
sudo apt install apt-transport-https ca-certificates curl software-properties-common
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -
sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu focal stable"
apt-cache policy docker-ce
sudo apt install docker-ce

Quelle: https://www.digitalocean.com/community/tutorials/how-to-install-and-use…

Apache (reverse proxy)

Installation

sudo a2enmod proxy proxy_http
sudo systemctl restart apache2

Quelle: https://www.digitalocean.com/community/tutorials/how-to-use-apache-http…

Konfiguration (conf)

ProxyPreserveHost On
    RequestHeader set X-Forwarded-Proto "https"
    RequestHeader set X-Forwarded-For "%{REMOTE_ADDR}s"
    ProxyPass        / http://127.0.0.1:3000/ retry=0 timeout=5
    ProxyPassReverse / http://127.0.0.1:3000/

Docker Setup

Konfiguration (config.yaml anpassen):

credentials:
    user:   "XXXX"
    passwd: "XXXXX"
http:
    allow_reverse_proxy: true
    public:
        host: "example.domain"
        port: "443"
        https: true

Docker Image bauen

docker build -t beef .

Docker Image initial starten

docker run -p 3000:3000 -p 6789:6789 -p 61985:61985 -p 61986:61986 --name beef beef

Quelle: https://github.com/beefproject/beef/wiki/Docker-Setup

Website
https://beefproject.com/

Tags

Comments