Hello There, Guest! Login Register
Logo
Dismiss this notice
MaDLeeTs is not responsible for any attacks that are carried out on networks, websites or servers.
MaDLeeTs staff members cannot be held responsible.
All information on this forum is for educational purposes only.


[TUT] Exploiting XSS Vulnerabilities Using BeEF [Tutorial]

  • 0 Vote(s) - 0 Average


08-07-2013, 08:33 AM #1
b0tn3t_hunt3r Offline Banned
Posts:9 Threads:3 Joined:Jul 2013
Mood: None
Hello Brothers. As I have seen there is not a tutorial about XSS exploiting via BeEF so I thought I would help you by bringing this.
This is for the people that claim XSS finds are useless and nothing can be exploited further than a simple JavaScript alert pop up. For those of you who do not already know today I will introduce you to a nifty tool called BeEF. It has a user friendly interface controlled via browser which is nice as its not just command line orientated. Start by first loading it from your box.

Code:
$./beef

This tool is also found on Backtrack.

So we run it and are faced with this:

[Image: screenshot_11.png]

This pretty much just starts the server and has it ready for action. Now go to:

Code:
IP/beef/

[Image: screenshot_12.png]

Pretty self explanatory and as you see they provide you with a default login password. Once your satisfied with that click "apply config" and you will be logged into the BeEF interface with all of its capability's just waiting to catch zombies.

Play around and get used to the different features. I am not going to explain them. To start catching zombies you need to trigger the beefmagic.js.php file in the victims browser. This acts like a silent browser exploit. It has to be triggered via XSS though. Below is an example of how your evil script should look:

[Image: screenshot_13.png]

Once you have a zombie it will look like below:

[Image: screenshot_14.png]

From here its almost like a Trojan horse client. You can run commands and even Metasploit exploits against your victim. Other fun things include finger printing their machine. Creating pop ups to scare them. Capturing their logs :lol: and even using their browser as a proxy. So as you can see A LOT Of damage can be caused via XSS.

Use your imagination and this tool to the best of its capability's. It might prompt you to take these 'easy' level XSS challenges a step further.

Hope you's enjoyed and maybe learned something new. :meh:


Thanks [hmmm]

08-07-2013, 05:12 PM #2
Darksnipper Offline Junior Administrator **********
Junior Administrator
Posts:639 Threads:77 Joined:Jun 2012 Reputation: 4
Mood: None
I like it ,goOD JOB

08-07-2013, 05:21 PM #3
AHAAD Offline ____ Have Not Any Hat _____ ***
Registered
Posts:63 Threads:2 Joined:Jul 2013 Reputation: 1
Mood: None
Thx Dude

--------------

08-07-2013, 06:15 PM #4
b0tn3t_hunt3r Offline Banned
Posts:9 Threads:3 Joined:Jul 2013
Mood: None
(08-07-2013, 05:12 PM)Darksnipper Wrote:  I like it ,goOD JOB
thanks bro ad welome Worriedsmileyhy:

08-07-2013, 07:18 PM #5
X LeeT Offline Founder @ Cyber-devils.com *****
Respected
Posts:435 Threads:31 Joined:Jul 2013 Reputation: 0
Mood: None
nice TuT....
Gonna try... Smiley1

[Image: o8rq6s.jpg]

11-24-2013, 02:57 PM #6
zaim123 Offline MaDLeeTs LoVer *****
MaDLeeTs LoVer
Posts:8 Threads:1 Joined:Nov 2013 Reputation: 0
Mood: None
thanks

11-30-2013, 10:47 PM #7
G3r0y Offline Junior Member **
Registered
Posts:37 Threads:2 Joined:Nov 2013 Reputation: 0
Mood: None
nICE One !

03-02-2014, 07:40 AM #8
X-SYSTEM Offline Member ***
Registered
Posts:54 Threads:7 Joined:Feb 2014 Reputation: 2
Mood: Bahahaha
i like BeEF this tool is Legend ! nice share bro

06-09-2014, 05:18 PM #9
DeathStr0keAG Offline Slave of Almighty God *****
MaDLeeTs LoVer
Posts:51 Threads:6 Joined:Jun 2014 Reputation: 0
Mood: Hacker

Great Job>>> Smiley1

[Image: tumblr_l1monzDdxF1qav2vfo1_400.gif]

[Image: 2w4bc74.png]
Team MaDLeeTs


[#] CodeName: DeathStr0keAG
[#] Zone-H: www.zone-h.org/archive/notifier=DeathStr0keAG
[#] Email: [email protected]
[#] Website: www.DeathStr0keAG.tk








Forum Jump:


Users browsing this thread:1 Guest(s)