Skip to content

Information Gathering

Jump to bottom
Nbblrr edited this page Dec 20, 2012 · 23 revisions

Now, you have BeEF installed and launched, you have hooked your first browser. What's the next step ?

The first step is often to gather information on the remote host : which browser and plugins, which website hooked...

Browser fingerprinting

When a browser is hooked, BeEF automatically gather several pieces of information on the hooked browser :

  • Browser name and version
  • Browser User Agent
  • Plugins (including Java, ActiveX, VBS, Flash...)
  • Windows size

Default information on the hooked browser gathered by BeEF :

You can then use different plugins to gather more detailed information on the browsers :

Result of the browser fingerprinting module :

Information gathering on the system

By using several modules, you can also gather information on the system of the hooked browser :

  • Internet Explorer has permissive restrictions allowing to detect softwares installed (module Detect Softwares) and even registry keys (caution, in this case the user will be prompted with an authorization message).
  • If the browsers authorize Java, the module Get Internal IP allows to detect the IP address of the system (funnier tricks with the network will be described later)
  • The module Get System Info uses also a Java Applet to gather detailed information on the system : operating system details, Java JVM details, IP addresses, amount of memory...
  • It is also possible to retrieve the location of the user whether by using the geolocation API or by using a trick requesting Google maps.
  • The default javscript API allows of course, to get the data stored in the clipboard.

Result of Get System Info module :

User's behaviour fingerprinting

The hooked browser also allows to discover several information on the behaviour of the user :

Previous | Next

User Guide

I. Introduction   |   II. Basic Utilization   |   III. Advanced Utilization   |   IV. Development   |   V. References

Community

Blog   |   Code   |   Youtube   |   Twitter

I - Starting BeEF

  1. Introducing BeEF
  2. Installation
  3. Basics
  4. Troubleshooting

II - Basic Utilization

  1. Configuration
  2. Interface
  3. Information Gathering
  4. Social Engineering
  5. Network Discovery
  6. Metasploit
  7. Tunneling
  8. XSS Rays
  9. Persistence
  10. Creating a Module
  11. Geolocation
  12. Using-BeEF-With-NGROK

III - Advanced Utilization

  1. RESTful API
  2. Autorun Rule Engine
  3. Notifications
  4. Console
  5. WebRTC Extension

IV - Development

  1. Contributing
  2. ActiveRecord
  3. Development Organization
  4. Architecture
  5. BeEF Javascript API
  6. Step By Step Module Creation
  7. Creating a New Extension
  8. BeEF Testing
  9. Browser & OS Compatibility
  10. Database Schema
  11. Development Milestones
  12. Command Module Config
  13. Command Module API

V - References

  1. FAQ
  2. Other
  3. References
  4. Modules
  5. Release Notes
Clone this wiki locally