# The Browser Exploitation Framework (BeEF)

BeEF is a penetration testing tool that focuses on the web browser and facilities various client side attacks.

## Links

* [Website](http://beefproject.com/)
  * [Blog](http://blog.beefproject.com/)
* [Github](https://github.com/beefproject/beef)
  * [Wiki](https://github.com/beefproject/beef/wiki)
* [Twitter](https://twitter.com/beefproject)

## Getting BeEF

### Supported Platforms

* Debian
  * Kali[1)](https://wiki.hacksoc.co.uk/guides/beef#fn__1)
* Ubuntu
* MacOS

The projects [Github](https://github.com/beefproject/beef) wiki provides [install instructions](https://github.com/beefproject/beef/wiki/Installation) for those platforms.

### Dependencies

* Ruby 2.1 or higher
  * Ruby Version Manager
  * [Gems](https://github.com/beefproject/beef/blob/master/Gemfile)
* SQLite 3.x

### TL;DR

1. Install Ruby Version Manager
2. Set Ruby version to 2.1.5
3. Git clone BeEF
4. Install Ruby Gems
5. Done

## Extensions

### Social Engineering

#### Web Cloner

The Web Cloner extension allows you to take a pixel for pixel clone, as far as is possible[2)](https://wiki.hacksoc.co.uk/guides/beef#fn__2), of a site and host it yourself. Cloned pages are modified on the fly to automatically hook any user that visits the page as well as intercept any `form` field POST requests.

The post ['BeEF web cloning, BeEF mass mailing, Social Engineering with better BeEF!'](http://blog.beefproject.com/2012/09/beef-web-cloning-beef-mass-mailing.html) has a more detailed intro to the Web Cloner and a getting started using `curl`.

[1)](https://wiki.hacksoc.co.uk/guides/beef#fnt__1)

BeEf is included with Kali Linux. See: <http://tools.kali.org/tools-listing>

[2)](https://wiki.hacksoc.co.uk/guides/beef#fnt__2)

Custom £600 fonts and social medial widgets are a PITA