beefproject / beef

The Browser Exploitation Framework Project
https://beefproject.com
9.89k stars 2.19k forks source link

BeEF and Metasploit Fire API Error #1376

Closed P4RI4H closed 7 years ago

P4RI4H commented 7 years ago

Keep getting this error when I start BeEF: "API Fire Error: authentication failed in {:owner=>BeEF::Extension::Metasploit::API::MetasploitHooks, :id=>18}.post_soft_load()"

Here's a the boot with debug enabled:

`./beef [14:38:48][>] Loaded extension: 'admin_ui' [14:38:48][>] Loaded extension: 'socialengineering' [14:38:48][>] Loaded extension: 'demos' [14:38:48][>] Loaded extension: 'requester' [14:38:48][>] Loaded extension: 'console' [14:38:48][] Bind socket [imapeudora1] listening on [192.168.254.66:2000]. [14:38:48][>] Loaded extension: 'ipec' [14:38:48][>] Loaded extension: 'xssrays' [14:38:48][>] Loaded extension: 'metasploit' [14:38:48][>] Loaded extension: 'events' [14:38:48][>] Loaded extension: 'network' [14:38:48][>] Loaded extension: 'proxy' [14:38:48][>] Loaded extension: 'autoloader' [14:38:48][>] Loaded extension: 'webrtc' [14:38:48][] Browser Exploitation Framework (BeEF) 0.4.7.0-alpha [14:38:48] | Twit: @beefproject [14:38:48] | Site: http://beefproject.com [14:38:48] | Blog: http://blog.beefproject.com [14:38:48] | Wiki: https://github.com/beefproject/beef/wiki [14:38:48][*] Project Creator: Wade Alcorn (@WadeAlcorn) [14:38:48][>] Soft Load module: 'tabnabbing' [14:38:48][>] Soft Load module: 'ui_abuse_ie' [14:38:48][>] Soft Load module: 'clickjacking' [14:38:48][>] Soft Load module: 'fake_notification_c' [14:38:48][>] Soft Load module: 'firefox_extension_bindshell' [14:38:48][>] Soft Load module: 'fake_flash_update' [14:38:48][>] Soft Load module: 'hta_powershell' [14:38:48][>] Soft Load module: 'firefox_extension_dropper' [14:38:48][>] Soft Load module: 'lcamtuf_download' [14:38:48][>] Soft Load module: 'fake_notification_ff' [14:38:48][>] Soft Load module: 'sitekiosk_breakout' [14:38:48][>] Soft Load module: 'clippy' [14:38:48][>] Soft Load module: 'simple_hijacker' [14:38:48][>] Soft Load module: 'firefox_extension_reverse_shell' [14:38:48][>] Soft Load module: 'steal_autocomplete' [14:38:48][>] Soft Load module: 'gmail_phishing' [14:38:48][>] Soft Load module: 'fake_evernote_clipper' [14:38:48][>] Soft Load module: 'fake_notification_ie' [14:38:48][>] Soft Load module: 'replace_video_fake_plugin' [14:38:48][>] Soft Load module: 'pretty_theft' [14:38:48][>] Soft Load module: 'fake_lastpass' [14:38:48][>] Soft Load module: 'man_in_the_browser' [14:38:48][>] Soft Load module: 'confirm_close_tab' [14:38:48][>] Soft Load module: 'popunder_window' [14:38:48][>] Soft Load module: 'iframe_above' [14:38:48][>] Soft Load module: 'send_gvoice_sms' [14:38:48][>] Soft Load module: 'inject_beef' [14:38:48][>] Soft Load module: 'execute_tabs' [14:38:48][>] Soft Load module: 'get_all_cookies' [14:38:48][>] Soft Load module: 'grab_google_contacts' [14:38:48][>] Soft Load module: 'screenshot' [14:38:48][>] Soft Load module: 'avant_steal_history' [14:38:48][>] Soft Load module: 'browser_fingerprinting' [14:38:48][>] Soft Load module: 'remove_hook_element' [14:38:48][>] Soft Load module: 'detect_evernote_clipper' [14:38:48][>] Soft Load module: 'webcam_permission_check' [14:38:48][>] Soft Load module: 'webcam_html5' [14:38:48][>] Soft Load module: 'detect_extensions' [14:38:48][>] Soft Load module: 'get_visited_domains' [14:38:48][>] Soft Load module: 'detect_unsafe_activex' [14:38:48][>] Soft Load module: 'webcam' [14:38:48][>] Soft Load module: 'detect_office' [14:38:48][>] Soft Load module: 'link_rewrite_click_events' [14:38:48][>] Soft Load module: 'replace_video' [14:38:48][>] Soft Load module: 'overflow_cookiejar' [14:38:48][>] Soft Load module: 'ajax_fingerprint' [14:38:48][>] Soft Load module: 'link_rewrite' [14:38:48][>] Soft Load module: 'get_local_storage' [14:38:48][>] Soft Load module: 'get_page_html' [14:38:48][>] Soft Load module: 'get_form_values' [14:38:48][>] Soft Load module: 'deface_web_page' [14:38:48][>] Soft Load module: 'disable_developer_tools' [14:38:48][>] Soft Load module: 'get_cookie' [14:38:48][>] Soft Load module: 'get_session_storage' [14:38:48][>] Soft Load module: 'get_stored_credentials' [14:38:48][>] Soft Load module: 'prompt_dialog' [14:38:48][>] Soft Load module: 'link_rewrite_sslstrip' [14:38:48][>] Soft Load module: 'rickroll' [14:38:48][>] Soft Load module: 'remove_stuck_iframes' [14:38:48][>] Soft Load module: 'mobilesafari_address_spoofing' [14:38:48][>] Soft Load module: 'link_rewrite_tel' [14:38:48][>] Soft Load module: 'alert_dialog' [14:38:48][>] Soft Load module: 'get_page_links' [14:38:48][>] Soft Load module: 'deface_web_page_component' [14:38:48][>] Soft Load module: 'site_redirect_iframe' [14:38:48][>] Soft Load module: 'get_page_html_iframe' [14:38:48][>] Soft Load module: 'site_redirect' [14:38:48][>] Soft Load module: 'detect_simple_adblock' [14:38:48][>] Soft Load module: 'Play_sound' [14:38:48][>] Soft Load module: 'Detect_unity' [14:38:48][>] Soft Load module: 'detect_vlc' [14:38:48][>] Soft Load module: 'detect_lastpass' [14:38:48][>] Soft Load module: 'detect_wmp' [14:38:48][>] Soft Load module: 'detect_quicktime' [14:38:48][>] Soft Load module: 'detect_foxit' [14:38:48][>] Soft Load module: 'Detect_toolbars' [14:38:48][>] Soft Load module: 'detect_activex' [14:38:48][>] Soft Load module: 'detect_popup_blocker' [14:38:48][>] Soft Load module: 'detect_silverlight' [14:38:48][>] Soft Load module: 'detect_firebug' [14:38:48][>] Soft Load module: 'detect_realplayer' [14:38:48][>] Soft Load module: 'spyder_eye' [14:38:48][>] Soft Load module: 'get_visited_urls' [14:38:48][>] Soft Load module: 'unhook' [14:38:48][>] Soft Load module: 'inter_protocol_imap' [14:38:48][>] Soft Load module: 's2c_dns_tunnel' [14:38:48][>] Soft Load module: 'cross_site_printing' [14:38:48][>] Soft Load module: 'inter_protocol_irc' [14:38:48][>] Soft Load module: 'inter_protocol_redis' [14:38:48][>] Soft Load module: 'inter_protocol_win_bindshell' [14:38:48][>] Soft Load module: 'cross_site_faxing' [14:38:48][>] Soft Load module: 'etag_client' [14:38:48][>] Soft Load module: 'inter_protocol_posix_bindshell' [14:38:48][>] Soft Load module: 'get_battery_status' [14:38:48][>] Soft Load module: 'detect_airdrone' [14:38:48][>] Soft Load module: 'Detect_software' [14:38:48][>] Soft Load module: 'hook_default_browser' [14:38:48][>] Soft Load module: 'detect_hp' [14:38:48][>] Soft Load module: 'get_internal_ip' [14:38:48][>] Soft Load module: 'fingerprint_os' [14:38:48][>] Soft Load module: 'get_system_info' [14:38:48][>] Soft Load module: 'get_connection_type' [14:38:48][>] Soft Load module: 'detect_protocol_handlers' [14:38:48][>] Soft Load module: 'detect_bitdefender2012' [14:38:48][>] Soft Load module: 'detect_google_desktop' [14:38:48][>] Soft Load module: 'detect_cups' [14:38:48][>] Soft Load module: 'iphone_tel' [14:38:48][>] Soft Load module: 'get_internal_ip_webrtc' [14:38:48][>] Soft Load module: 'clipboard_theft' [14:38:48][>] Soft Load module: 'get_wireless_keys' [14:38:48][>] Soft Load module: 'get_registry_keys' [14:38:48][>] Soft Load module: 'detect_default_browser' [14:38:48][>] Soft Load module: 'detect_virtualization' [14:38:49][>] Soft Load module: 'physical_location' [14:38:49][>] Soft Load module: 'get_physical_location' [14:38:49][>] Soft Load module: 'dns_rebinding' [14:38:49][>] Soft Load module: 'port_scanner' [14:38:49][>] Soft Load module: 'get_ntop_network_hosts' [14:38:49][>] Soft Load module: 'ping_sweep_java' [14:38:49][>] Soft Load module: 'detect_burp' [14:38:49][>] Soft Load module: 'get_http_servers' [14:38:49][>] Soft Load module: 'internal_network_fingerprinting' [14:38:49][>] Soft Load module: 'irc_nat_pinning' [14:38:49][>] Soft Load module: 'dns_enumeration' [14:38:49][>] Soft Load module: 'detect_tor' [14:38:49][>] Soft Load module: 'identify_lan_subnets' [14:38:49][>] Soft Load module: 'doser' [14:38:49][>] Soft Load module: 'f5_bigip_cookie_stealing' [14:38:49][>] Soft Load module: 'f5_bigip_cookie_disclosure' [14:38:49][>] Soft Load module: 'get_proxy_servers_wpad' [14:38:49][>] Soft Load module: 'ping_sweep' [14:38:49][>] Soft Load module: 'cross_origin_scanner' [14:38:49][>] Soft Load module: 'fingerprint_routers' [14:38:49][>] Soft Load module: 'detect_soc_nets' [14:38:49][>] Soft Load module: 'phonegap_list_contacts' [14:38:49][>] Soft Load module: 'phonegap_persistence' [14:38:49][>] Soft Load module: 'phonegap_stop_record_audio' [14:38:49][>] Soft Load module: 'phonegap_detect' [14:38:49][>] Soft Load module: 'phonegap_keychain' [14:38:49][>] Soft Load module: 'phonegap_geo_locate' [14:38:49][>] Soft Load module: 'phonegap_file_upload' [14:38:49][>] Soft Load module: 'phonegap_check_connection' [14:38:49][>] Soft Load module: 'phonegap_beep' [14:38:49][>] Soft Load module: 'phonegap_prompt_user' [14:38:49][>] Soft Load module: 'phonegap_plugin_detection' [14:38:49][>] Soft Load module: 'phonegap_persist_resume' [14:38:49][>] Soft Load module: 'phonegap_alert_user' [14:38:49][>] Soft Load module: 'phonegap_start_record_audio' [14:38:49][>] Soft Load module: 'phonegap_list_files' [14:38:49][>] Soft Load module: 'phonegap_globalization_status' [14:38:49][>] Soft Load module: 'test_return_image' [14:38:49][>] Soft Load module: 'test_cors_request' [14:38:49][>] Soft Load module: 'test_http_redirect' [14:38:49][>] Soft Load module: 'test_dns_tunnel_client' [14:38:49][>] Soft Load module: 'test_http_bind_raw' [14:38:49][>] Soft Load module: 'test_network_request' [14:38:49][>] Soft Load module: 'test_beef_debug' [14:38:49][>] Soft Load module: 'test_return_ascii_chars' [14:38:49][>] Soft Load module: 'test_return_long_string' [14:38:49][>] Soft Load module: 'opencart_reset_password' [14:38:49][>] Soft Load module: 'Eudora_mail_beef_bind' [14:38:49][>] Soft Load module: 'Active_fax_beef_bind' [14:38:49][>] Soft Load module: 'BeEF_bind_shell' [14:38:49][>] Soft Load module: 'boastmachine_add_user_csrf' [14:38:49][>] Soft Load module: 'rfi_scanner' [14:38:49][>] Soft Load module: 'coldfusion_dir_traversal_exploit' [14:38:49][>] Soft Load module: 'skype_xss' [14:38:49][>] Soft Load module: 'qnx_qconn_command_execution' [14:38:49][>] Soft Load module: 'cisco_collaboration_server_5_xss' [14:38:49][>] Soft Load module: 'serendipity_1_6_xss' [14:38:49][>] Soft Load module: 'sqlitemanager_xss' [14:38:49][>] Soft Load module: 'alienvault_ossim_3_1_xss' [14:38:49][>] Soft Load module: 'wanem_command_execution' [14:38:49][>] Soft Load module: 'groovyshell_server_command_execution' [14:38:49][>] Soft Load module: 'php_dos' [14:38:49][>] Soft Load module: 'kemp_command_execution' [14:38:49][>] Soft Load module: 'belkin_dns_csrf' [14:38:49][>] Soft Load module: 'comtrend_ct5624_csrf' [14:38:49][>] Soft Load module: 'dlink_2640b_dns_hijack' [14:38:49][>] Soft Load module: 'cisco_e2400_csrf' [14:38:49][>] Soft Load module: 'actiontec_q1000_csrf' [14:38:49][>] Soft Load module: 'comtrend_ct5367_csrf' [14:38:49][>] Soft Load module: 'linksys_e2500_csrf' [14:38:49][>] Soft Load module: 'com_officeconnect_cmd_exec' [14:38:49][>] Soft Load module: 'linksys_e2500_shell' [14:38:49][>] Soft Load module: 'dlink_dsl500t_csrf' [14:38:49][>] Soft Load module: 'tplink_dns_csrf' [14:38:49][>] Soft Load module: 'linksys_wrt54g2_csrf' [14:38:49][>] Soft Load module: 'bt_home_hub_csrf' [14:38:49][>] Soft Load module: 'asus_rt_n66u_cmd_exec' [14:38:49][>] Soft Load module: 'telstra_zte_mf91_change_pw' [14:38:49][>] Soft Load module: 'linksys_befsr41_csrf' [14:38:49][>] Soft Load module: 'asmax_ar804gu_cmd_exec' [14:38:49][>] Soft Load module: 'linksys_wrt54g_csrf' [14:38:49][>] Soft Load module: 'linksys_e2500_dns_hijack' [14:38:49][>] Soft Load module: 'telstra_zte_mf91_change_ssid' [14:38:49][>] Soft Load module: 'ddwrt_v24_sp1_csrf' [14:38:49][>] Soft Load module: 'telstra_zte_mf91_disable_ap_isolation' [14:38:49][>] Soft Load module: 'philips_dns_hijack' [14:38:49][>] Soft Load module: 'virgin_superhub_csrf' [14:38:49][>] Soft Load module: 'ddwrt_v24_sp1_cmd_exec' [14:38:49][>] Soft Load module: 'dlink_dir_615_csrf' [14:38:49][>] Soft Load module: 'asus_rt_n12e_get_info' [14:38:49][>] Soft Load module: 'shuttle_tech_915wm_dns_hijack' [14:38:49][>] Soft Load module: 'Huawei_smartax_mt880_csrf' [14:38:49][>] Soft Load module: 'dlink_dsl2740r_dns_hijack' [14:38:49][>] Soft Load module: 'Shell_shocked' [14:38:49][>] Soft Load module: 'firephp_code_exec' [14:38:49][>] Soft Load module: 'jenkins_groovy_code_exec' [14:38:49][>] Soft Load module: 'signed_applet_dropper' [14:38:49][>] Soft Load module: 'safari_launch_app' [14:38:49][>] Soft Load module: 'windows_mail_client_dos' [14:38:49][>] Soft Load module: 'java_payload' [14:38:49][>] Soft Load module: 'ie_ms13_069_caret' [14:38:49][>] Soft Load module: 'activex_command_execution' [14:38:49][>] Soft Load module: 'ie_ms12_004_midi' [14:38:49][>] Soft Load module: 'extract_cmd_exec' [14:38:49][>] Soft Load module: 'hp_ucmdb_add_user_csrf' [14:38:49][>] Soft Load module: 'Dlink_dcs_series_csrf' [14:38:49][>] Soft Load module: 'airlive_add_user_csrf' [14:38:49][>] Soft Load module: 'linksys_wvc_wireless_camera_csrf' [14:38:49][>] Soft Load module: 'vtiger_crm_upload_exploit' [14:38:49][>] Soft Load module: 'spring_framework_malicious_jar' [14:38:49][>] Soft Load module: 'jboss_jmx_upload_exploit' [14:38:49][>] Soft Load module: 'axous_add_user_csrf' [14:38:49][>] Soft Load module: 'dlink_sharecenter_cmd_exec' [14:38:49][>] Soft Load module: 'freenas_reverse_root_shell_csrf' [14:38:49][>] Soft Load module: 'Netgear_gs108t_csrf' [14:38:49][>] Soft Load module: 'pfsense_reverse_root_shell_csrf' [14:38:49][>] Soft Load module: 'ruby_nntpd_cmd_exec' [14:38:49][>] Soft Load module: 'monowall_reverse_root_shell_csrf' [14:38:49][>] Soft Load module: 'glassfish_war_upload_xsrf' [14:38:49][>] Soft Load module: 'apache_cookies' [14:38:49][>] Soft Load module: 'Wordpress_add_admin' [14:38:49][>] Soft Load module: 'apache_felix_remote_shell' [14:38:49][>] Soft Load module: 'zenoss_command_execution' [14:38:49][>] Soft Load module: 'zenoss_add_user_csrf' [14:38:49][>] Soft Load module: 'shell_shock_scanner' [14:38:49][>] Soft Load module: 'google_search' [14:38:49][>] Soft Load module: 'local_file_theft' [14:38:49][>] Soft Load module: 'read_inotes' [14:38:49][>] Soft Load module: 'send_inotes' [14:38:49][>] Soft Load module: 'send_inotes_with_attachment' [14:38:49][>] Soft Load module: 'extract_inotes_list' [14:38:49][>] Soft Load module: 'inotes_flooder' [14:38:49][>] Soft Load module: 'iframe_sniffer' [14:38:49][>] Soft Load module: 'blockui' [14:38:49][>] Soft Load module: 'unblockui' [14:38:49][>] Soft Load module: 'wordpress_post_auth_rce' [14:38:49][>] Soft Load module: 'raw_javascript' [14:38:49][>] Soft Load module: 'iframe_keylogger' [14:38:49][>] Soft Load module: 'read_gmail' [14:38:49][>] Soft Load module: 'invisible_iframe' [14:38:49][>] Soft Load module: 'bozo_crack' [14:38:49][!] API Fire Error: authentication failed in {:owner=>BeEF::Extension::Metasploit::API::MetasploitHooks, :id=>18}.post_soft_load() [14:38:49][] BeEF is loading. Wait a few seconds... [14:38:49][>] Server: mounted handler '/hook.js' [14:38:49][>] Server: mounted handler '/init' [14:38:49][>] Server: mounted handler '/' [14:38:49][>] Server: mounted handler '/dh' [14:38:49][>] Server: mounted handler '/api/hooks' [14:38:49][>] Server: mounted handler '/api/modules' [14:38:49][>] Server: mounted handler '/api/categories' [14:38:49][>] Server: mounted handler '/api/logs' [14:38:49][>] Server: mounted handler '/api/admin' [14:38:49][>] Server: mounted handler '/api/server' [14:38:49][>] Server: mounted handler '/api/autorun' [14:38:49][>] Server: mounted handler '/ui/modules' [14:38:49][>] Server: mounted handler '/ui/authentication' [14:38:49][>] Server: mounted handler '/ui/panel' [14:38:49][>] Server: mounted handler '/ui/logs' [14:38:49][>] Server: mounted handler '/ui/proxy' [14:38:49][>] Server: mounted handler '/ui/xssrays' [14:38:49][>] Server: mounted handler '/ui/requester' [14:38:49][>] Server: mounted handler '/ui/media' [14:39:04][>] Server: mounted handler '/ui/web_ui_all.js' [14:39:04][>] Server: mounted handler '/ui/web_ui_auth.js' [14:39:04][>] Server: mounted handler '/api/seng' [14:39:04][>] Server: mounted handler '/ps' [14:39:04][>] Server: mounted handler '/demos' [14:39:04][>] Server: mounted handler '/demos/index.html' [14:39:04][>] Server: mounted handler '/demos/basic.html' [14:39:04][>] Server: mounted handler '/demos/plain.html' [14:39:04][>] Server: mounted handler '/demos/report.html' [14:39:04][>] Server: mounted handler '/demos/secret_page.html' [14:39:04][>] Server: mounted handler '/demos/butcher/index.html' [14:39:04][>] Server: mounted handler '/demos/clickjacking/clickjack_attack.html' [14:39:04][>] Server: mounted handler '/demos/clickjacking/clickjack_victim.html' [14:39:04][>] Server: mounted handler '/requester' [14:39:04][>] Server: mounted handler '/api/ipec' [14:39:04][>] Server: mounted handler '/xssrays' [14:39:04][>] Server: mounted handler '/api/msf' [14:39:04][>] Server: mounted handler '/event' [14:39:04][>] Server: mounted handler '/api/network' [14:39:04][>] Server: mounted handler '/proxy' [14:39:04][>] Server: mounted handler '/api/proxy' [14:39:04][>] Server: mounted handler '/rtcsignal' [14:39:04][>] Server: mounted handler '/rtcmessage' [14:39:04][>] Server: mounted handler '/api/webrtc' [14:39:05][] 13 extensions enabled. [14:39:05][] 254 modules enabled. [14:39:05][] 1 network interfaces were detected. [14:39:05][+] running on network interface: 192.168.254.66 [14:39:05] | Hook URL: http://192.168.254.66:3000/hook.js [14:39:05] |_ UI URL: http://192.168.254.66:3000/ui/panel [14:39:05][] RESTful API key: REDACTED [14:39:05][] HTTP Proxy: http://127.0.0.1:6789 [14:39:05][*] BeEF server started (press control+c to stop) ' I tried updating BeEF and have looked around. No error with id=18

bcoles commented 7 years ago

Hi @P4RI4H

The attempt to authenticate to Metasploit has failed.

Ensure you follow the steps here.

P4RI4H commented 7 years ago

Haven't seen this before and definitely haven't done some of these steps. Will try ASAP and report back.

Edit: Checked all my settings and these were already set up as specified. Same error still.

InnerSoul commented 7 years ago

@bcoles @P4RI4H I followed the same steps before upgrading kali linux. It worked perfectly. Now after upgrading it is not loading the metasploit modules. I think it is a problem in beef update. If anyone has resolved the error, just tell me the steps :)

bcoles commented 7 years ago

Hi @InnerSoul @P4RI4H

Unfortunately the MSF RPC client library doesn't provide any more accurate errors. If the TCP connection fails, or the SSL negotiation fails, or the credentials are incorrect then the library reports that authentication has failed. As such, it's impossible for us to handle the error to determine the cause and print an accurate error message.

For this reason there's no way to know whether you're both experiencing the same issue based on the console output.

However, from the console output above it looks like you're not using the latest version of BeEF from GitHub. Try upgrading and see if that resolves your issues.

bcoles commented 7 years ago

An upstream issue has been created relating to better output from the msfpc-client gem for debugging purposes. Hopefully once this is resolved and merged we can handle errors more gracefully which will help track down the cause of msf integration issues in the future.

bcoles commented 7 years ago

I haven't been able to reproduce this issue on the latest version of BeEF; so long as the extension is configured properly.

Ensure BeEF is up to date.

Closing this issue.

bcoles commented 7 years ago

The msfrpc-client dependency has been updated to include more verbose error messages.

This should help troubleshooting the metasploit integration configuration.