Closed 0x27 closed 9 years ago
Hi 0x27, I hope you are well. Thanks a lot for the ideas ;)
I'm already working on BDFProxy module. About inject arbitrary HTML, you can use Squid3 module or SSLStrip module. You just need to write the payload that you want to inject.
regards, xtr4nge
Two ideas for modules just crossed my mind when looking at this project.
First one is BDFProxy [1] integration, for injecting shellcode into binaries downloaded by devices. Fairly self explanatory.
Second idea is a module that allows injecting arbitrary HTML into HTTP traffic, which could be hooked up to BeEF [2] and Metasploit for automatic injection of BeEF hooks into web pages and exploitation of browser vulnerabilities to own clients.
Just a couple of ideas :)
[1] https://github.com/secretsquirrel/BDFProxy [2] https://github.com/beefproject/beef