BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser. BeEF is pioneering techniques that provide the experienced penetration tester with practical client side attack vectors. Unlike other security frameworks, BeEF focuses on leveraging browser vulnerabilities to assess the security posture of a target. This project is developed solely for lawful research and penetration testing.

First download ruby for windows from here

Install it in C: folder and make sure you select all the options. So Ruby is installed now.

After installing Ruby, you need to download the SQLite dll from here

Now extract the SQLite zip file on the Ruby193bin folder:

Now you need to download the ‘DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe’ from here

Now extract the DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe’ file on the C: folder

Open cmd prompt and go to ‘Devkit’ path and we need to run “ruby dk.rb init

Now we need to run “ruby dk.rb install’

Now a few other steps: - ruby dk.rb review (checks things are ok) –

gem install rdiscount –platform=ruby (you should see the message “Temporarily enhancing PATH to include DevKit…”)

Now you need to download the ‘BeEF Project from here

Now open the BeEF file ‘beefproject-beef-beef-0.4.3.7-0-g69c59bb’ and extract the files to C:beef

Open cmd prompt go to the BeEF path and type the following:

ruby install

Now type the below commands one by one

gem install bundler

bundle install

(You will see something similar to this)

Now Type “ruby beef” to start beef.

Of course you will need your Windows Firewall to allow that application :)

BeEF is installed successfully. Now go to http://127.0.0.1:3000/ui/panel and check if it is available

http://192.168.1.2:3000/ui/panel (beef is the user name and password)

Send the link http://192.168.1.2:3000/demos/basic.html to the victim via chat or email or any social engineering technique to the victim.