Closed mcjon3z closed 9 years ago
I managed to figure it out, at least partially. The box I am running it on is Kali, and I was launching beef using the beef-xss script in /usr/bin instead of directly launching beef. That script launches beef using the init.d script.
In kali, if I start beef using /usr/bin/beef-xss or "service beef-xss start" then beef does not work properly behind the proxy. If started directly from /usr/share/beef then it works just fine.
Thanks, I use BeEF behind mod_proxy from years and I never experienced any issues.
where location apache i config sir?
I have a beef server which is behind a separate apache server running mod_proxy which is internet facing. At one point this configuration was working, however I can no longer get a session across the proxy. You can browse the landing page (and hook test pages) through the proxy, however there is no hook traffic when a victim clicks on the hook page.
If I run a tcpdump on the proxy server, I see connection traffic flowing on both the ui pages and the hook, however it looks like the ui pages are using the proxy port but the hook is using the default 3000 port:
UI page entry:
IP 172.xxx.xxx.xxx.58114 > 172.xxx.xxx.xxx.http
Hook entry:
IP 172.xxx.xxx.xxx.58114 > 172.xxx.xxx.xxx.3000
Applicable portions of the configurations: