Ethical Hacking - GAINING ACCESS(22)

CLIENT SIDE ATTACKS - BeEf Framework

Browser Exploitation Framework allowing us to launch a number of attacks on a hooked target.

• Targets are hooked once they load a hook URL.
• DNS spoof requests to a page containing the hook.
• Inject the hook in browsed pages(need to be MITM)
• Use XSS exploit.
• Social engineer the target to open a hook page.

Start the BeEf framework.

 Modify the index.html file.

 Browse http://10.0.0.13 from the victim machine.

 Then you can find the Online Browses in the BeEF Control Panel immediately.

Ethical Hacking - GAINING ACCESS(22)

原文：https://www.cnblogs.com/keepmoving1113/p/12263319.html