Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]
GNU General Public License v3.0
158
stars
90
forks
source link
Auth page isnt working (only root page is not /ui/panel) #93
When i run beef and go to the /ui/panel and input the correct credentials that are in the config.yaml it loads and redirects to the /ui/panel page again (it always happens when not using beef locally, for example tunneling I will also get the same problem)
what im hosting it on isnt the problem btw I've hosted on every device from linux, windows and android still same issue beef is also up to date just git cloned today
When i run beef and go to the /ui/panel and input the correct credentials that are in the config.yaml it loads and redirects to the /ui/panel page again (it always happens when not using beef locally, for example tunneling I will also get the same problem)
Here is the output when starting beef:
[21:44:41][] Browser Exploitation Framework (BeEF) 0.5.4.0 [21:44:41] | Twit: @beefproject [21:44:41] | Site: https://beefproject.com [21:44:41] |_ Wiki: https://github.com/beefproject/beef/wiki [21:44:41][] Project Creator: Wade Alcorn (@WadeAlcorn) [21:44:41][] BeEF is loading. Wait a few seconds... [21:44:44][] 4 extensions enabled: [21:44:44] | XSSRays [21:44:44] | Requester [21:44:44] | Events [21:44:44] | Admin UI [21:44:44][] 303 modules enabled. [21:44:44][] 3 network interfaces were detected. [21:44:44][*] running on network interface: 127.0.0.1 [21:44:44] | Hook URL: http://127.0.0.1:3000/hook.js [21:44:44] | UI URL: http://127.0.0.1:3000/ui/panel [21:44:44][] running on network interface: 192.168.241.2 [21:44:44] | Hook URL: http://192.168.241.2:3000/hook.js [21:44:44] |_ UI URL: http://192.168.241.2:3000/ui/panel [21:44:44][] running on network interface: 192.168.16.1 [21:44:44] | Hook URL: http://192.168.16.1:3000/hook.js [21:44:44] | UI URL: http://192.168.16.1:3000/ui/panel [21:44:44][*] Public: [21:44:44] | Hook URL: https://9h6vyz-3000.csb.app:443/hook.js [21:44:44] | UI URL: https://9h6vyz-3000.csb.app:443/ui/panel [21:44:44][] RESTful API key: 5857c96adf563e704366931361557e97c16e9a1d [21:44:44][] BeEF server started (press control+c to stop)
Extentions enabled:
XSSRays Requester Events Admin UI
Ruby version: 3.3.0
node version: 12.22.12
Video for more detail in the steps taken so you don't think I'm crazy:
https://github.com/stormshadow07/BeeF-Over-Wan/assets/126985064/3d5886c7-afae-4b76-8726-7954547afd0d