search

xtr4nge / FruityWifi

FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system (Jessie) adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi), Bugtraq, NetHunter.
http://www.fruitywifi.com
GNU General Public License v3.0
2.19k stars 499 forks source link

Module Ideas (BDFProxy, BeEF) #93

Closed 0x27 closed 9 years ago

0x27 commented 9 years ago

Two ideas for modules just crossed my mind when looking at this project.

First one is BDFProxy [1] integration, for injecting shellcode into binaries downloaded by devices. Fairly self explanatory.

Second idea is a module that allows injecting arbitrary HTML into HTTP traffic, which could be hooked up to BeEF [2] and Metasploit for automatic injection of BeEF hooks into web pages and exploitation of browser vulnerabilities to own clients.

Just a couple of ideas :)

[1] https://github.com/secretsquirrel/BDFProxy [2] https://github.com/beefproject/beef

xtr4nge commented 9 years ago

Hi 0x27, I hope you are well. Thanks a lot for the ideas ;)

I'm already working on BDFProxy module. About inject arbitrary HTML, you can use Squid3 module or SSLStrip module. You just need to write the payload that you want to inject.

regards, xtr4nge