BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser. BeEF is pioneering techniques that provide the experienced penetration tester with practical client side attack vectors. Unlike other security frameworks, BeEF focuses on leveraging browser vulnerabilities to assess the security posture of a target. This project is developed solely for lawful research and penetration testing.
First download ruby for windows from here
Install it in C: folder and make sure you select all the options. So Ruby is installed now.
After installing Ruby, you need to download the SQLite dll from here
Now extract the SQLite zip file on the Ruby193bin folder:
Now you need to download the ‘DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe’ from here
Now extract the DevKit-tdm-32-4.5.2-20111229-1559-sfx.exe’ file on the C: folder
Open cmd prompt and go to ‘Devkit’ path and we need to run “ruby dk.rb init
Now we need to run “ruby dk.rb install’
Now a few other steps: – ruby dk.rb review (checks things are ok) –
gem install rdiscount –platform=ruby (you should see the message “Temporarily enhancing PATH to include DevKit…”)
Now you need to download the ‘BeEF Project from here
Now open the BeEF file ‘beefproject-beef-beef-0.4.3.7-0-g69c59bb’ and extract the files to C:beef
Open cmd prompt go to the BeEF path and type the following:
Now type the below commands one by one
gem install bundler
(You will see something similar to this)
Now Type “ruby beef” to start beef.
Of course you will need your Windows Firewall to allow that application 🙂
BeEF is installed successfully. Now go to http://127.0.0.1:3000/ui/panel and check if it is available
http://192.168.1.2:3000/ui/panel (beef is the user name and password)
Send the link http://192.168.1.2:3000/demos/basic.html to the victim via chat or email or any social engineering technique to the victim.