Basics of using the Beef-XSS To Advanced + Bettercap!!

Показать описание

This is a reupload of a video - Youtube doesnt seem to like my descriptions/titles/videocontent so i edited all of them and made sure the video is youtube friendly. Disclaimer: None of the shown sites were affected in any way. The video was done as a testing in an isolated environment and the only thing affected was my virtual machine's browser. I do not support any illegal actions - this is to be used for educational purposes only, to help the BlueTeam/RedTeam Tests, educate future PenTesters and similar. For more information read warning under timestamps.

Timestamps
00:00 - Intro
00:10 - Explaining and announcing video content
00:39 - Setting stuff up (beef)
02:04 - Usage of the Beef control panel
02:32 - Test environment setup (Apache2 & so)
03:17 - Cloning websites (Quick howTo)
04:10 - Modifying our website a bit
05:12 - Beef script for hooking victims (set up)
05:25 - First hooked machine, on site entering
05:46 - Deleting the previous stuff - database file
06:03 - Interface and trying out some commands
08:22 - Getting the values from Forms (email pass)
09:02 - More commands in Browser tab
09:24 - Replace all HREFs
09:57 - More commands (Browser Tab)
10:08 - Creating an Alert dialog
10:28 - Creating a Prompt dialog
11:15 - Redirecting the browser
11:33 - More commands in Browser tab
12:34 - Asking for webcam permission & similar
13:05 - More commands in Browser tab
13:29 - ChromeExtensions and Debug tabs
13:49 - Xploits tab
14:43 - Hosts tab
14:53 - Getting victim's Geo Location
16:04 - Metasploit extension (autopwn)
16:20 - Executing Raw Javascript
17:14 - Tor & social networks login status detection
17:35 - Persistence tab (Confirm close tab & MITB)
18:02 - PhoneGap
18:12 - Soc Eng Tab
18:22 - Clippy !!
20:32 - Fake flash update
20:50 - Fake notification bar
21:00 - Ggl - Fishing
21:30 - Pretty Stealing (FB,YT,Win,...passes & logins)
22:04 - Turning apache2 off and bettercap On
22:20 - Settings to get most Passwds (bettercap)
22:48 - Setting up the script inj
24:11 - Taking stuff over hehe
25:21 - Turning stuff off
25:47 - Outro talk
26:10 - Outro

--

WARNING : AS ALWAYS : EDUCATIONAL PURPOSES ONLY !! DO NOT USE THIS ILLEGALY. I DO NOT SUPPORT ANY ILLEGAL ACTIVITIES. THIS IS TO BE USED FOR EDUCATION OR FOR REDTEAM/BLUETEAM EXERCISES OR SIMILAR ISOLATED ENVIRONMENTS THAT KEEP THE WORKSPACE STRICTLY LEGAL.

#Beefxss #bettercap

TAGS : bettercap, beef, beefxss, beef-xss, browser, simple, easy, tutorial, entire network, mitm, hoxframework, hox

Рекомендации по теме

Комментарии

Good job! I love how you explain everything! You are original! I like your content so much!

denisbalcanu

Bro you're great and also my favourite Pearson providing us the best knowledge

jaihindjaibharat

No matter where in the HTML file I put my hook, it wouldn’t detect any device when I open the page on with it, any ideas what might need tweaking?

dntnkzd

Holy shit I've missed your videos dude, so excited to watch this!

entience

Professor Volt commented: "hey, can you please talk FASTER?! I had to stop and rewind, like a thousand times! WTF change your dealer or cut down on the coffee man!"

Hhahahahahahahah
Nah dude i talk like this cause i dont wanna waste anyone's time
I cover everything - so beginners can learn
while i dont waste time - so pros can learn stuff that interests them without losing time

Plus
I like it like this
No point on leaving gaps where you hear me breathing

Plus if it really bothers you you have a slow down video option on youtube - But im assuming you dont wanna use it cause it makes it too slow? If so my point is proven, if not why not?

HoxFramework

.you are the best person for me right now, Thank youu

aaronaguilar

bro you great thanks this helped me thank god i saw your vid

aadhityan

Well explained for beginners.Hey make one about WAN beef using ngrok multtunnelling also.

jissjose

I get taken to the apache page instead of the beef index page. How to fix this?

Michael-rjsc

Unable to see other connected browsers at Beef-UI in a WAN

ChandanKumarPERSONAL

Sorry to hear about your reupload, but anyway Thanks a ton.

MohitKhare

When i launch beef the site cant open and says cant connect to this, ehat can i do?

ChillBoat

btw, at 0:43 when you launched your terminal i saw kali's logo as ASCII art. how can i achieve that, i also have parrot & ubuntu. Appreciate your efforts.❤

MohitKhare

Reading package lists... finished
Building a dependency tree... finished
Read status information...
E: The beef-xss package could not be located :Is there a solution please?

cos

hey a question if i execute js on the webpage victim is it gona have a high previlige like the previlege of extensions? fake user interaction and still the browser counts it as a istrusted event

masterblackarmy

Hey Hox, lots of love and due respect...
Is it possible to gain persistence even after victim closes browser?

chetangiri

I would have appreciated more explanation on the network side and how to initially import the html because you have to save and move it with a different folder. sudo mv * /var/www/html with an empty folder with the .html saved to get the spoofed page. But when I tried to do it on my host machine and not just the same vm the apache2 website timed out. Would have appreciated a more realistic demo because of course it's going to work within the same vm.

dtcrisb

Hi, I loved this video but there is a little problem. The audio is towards the left speaker, and that is a bit annoying, please fix it... Maybe you recorded on stereo. You can just put the audio in audacity and split to mono, and it would fix it, Very Informative video tho, :))

PratyakshaBeri

Dude love your content but omg the keyboard sounds give me anxiety lol

sudosupsudo

Hi, How do you get to the download page with the index because I don't have the same as you how to do it ?

Basics of using the Beef-XSS To Advanced + Bettercap!!

Basics of using the Beef-XSS To Advanced + Bettercap!!

Take Control of Web Browsers with BeEF [Tutorial]

i HACKED my wife’s web browser (it’s SCARY easy!!)

Cross-Site Scripting (XSS) Explained And Demonstrated By A Pro Hacker!

Basic hacking concepts: Using BeEF to attack browsers

How to use BeEF, the Browser Exploitation Framework

Easiest Way to Hack Someone | Social Engineering With BEEF

XSS with BeEF Exploitation Framework

BeEF-XSS Framework Tutorial | Indian Cyber Security Solutions

How to Install Beef-XSS on Kali Linux | Web Browser Hacking

What is a BeEF Framework? Install & Setup | Exploit browsers using BeEF

BeEF Xss - How to Hook browser using BeEF || Complete Tutorial ||

5. BeEF tutorial For Beginner How to hook victim use BeEF by pasting the script in the URL

How Hackers Can Own Your Device Using a Link!

Cross Site Scripting (XSS) tutorial for Beginners

Let’s Hook the Target’s Browser using BeEF Browser Exploitation Framework - Part 1

Browser Exploitation Framework(BEEF)

XSS Attack using Beef Framework

How to use Beef to get a reverse shell Social Engineering

Browser exploitation using beef-xss

SSLstrip/HSTS Bypass, Keylogger via JS Injection with a BeEF-XSS Hook

Access Facebook Account on Android with Browser Exploitation Framework (Cybersecurity)

How to Install Beef in Kali Linux || Installing BEeF on Linux OS || Cybernomous

How to install beef in kali linux 2023 without error | #beef #exploitation