BeEF: Browser exploitation framework
BeEF is a browser exploitation framework that demonstrates the collecting of zombie browsers and browser vulnerabilities in real-time. It provides a command and control interface which facilitates the targeting of individual or groups of zombie browsers.
Enhancements in the latest version include:
- Integration with Metasploit via XMLRPC
- Mozilla extension exploitation support
- New browser functionality detection modules
- Tiered logging for module actions and results.
BeEF provides an easily integratable framework that demonstrates the impact of browser and Cross-site Scripting issues in real-time. Development has focused on creating a modular framework. This has made module development a very quick and simple process. Current modules include metasploit, port scanning, keylogging, TOR detection and more.
The installation guide is available here.