Skip to content

Information Gathering

Jump to bottom
Jack Walker edited this page Dec 30, 2019 · 23 revisions

So now, you have BeEF up and running, and you've hooked your first browser. What's the next step?

Your first step will often be to perform reconnaissance on the remote host. Which browser and plugins do they have running? Which website have you hooked?

Browser Fingerprinting

When a browser is hooked, BeEF will automatically gather several pieces of information on the hooked browser:

  • Browser name and version
  • Browser User Agent
  • Plugins (including Java, ActiveX, VBS, Flash...)
  • Windows size

Default information on the hooked browser gathered by BeEF :

You can then use different plugins to gather more detailed information on the browsers :

Result of the browser fingerprinting module :

Information gathering on the system

By using several modules, you can also gather information on the system of the hooked browser :

  • Internet Explorer has permissive restrictions allowing to detect softwares installed (module Detect Softwares) and even registry keys (caution, in this case the user will be prompted with an authorization message).
  • If the browsers authorize Java, the module Get Internal IP allows to detect the IP address of the system (funnier tricks with the network will be described later)
  • The module Get System Info uses also a Java Applet to gather detailed information on the system : operating system details, Java JVM details, IP addresses, amount of memory...
  • It is also possible to retrieve the location of the user whether by using the geolocation API or by using a trick requesting Google maps.
  • The default javscript API allows of course, to get the data stored in the clipboard.

Result of Get System Info module :

User's behaviour fingerprinting

The hooked browser also allows to discover several information on the behaviour of the user :

Previous | Next

User Guide

I. Introduction   |   II. Basic Utilization   |   III. Advanced Utilization   |   IV. Development   |   V. References

Community

Blog   |   Code   |   Youtube   |   Twitter

I - Starting BeEF

  1. Introducing BeEF
  2. Installation
  3. Basics
  4. Troubleshooting

II - Basic Utilization

  1. Configuration
  2. Interface
  3. Information Gathering
  4. Social Engineering
  5. Network Discovery
  6. Metasploit
  7. Tunneling
  8. XSS Rays
  9. Persistence
  10. Creating a Module
  11. Geolocation
  12. Using-BeEF-With-NGROK

III - Advanced Utilization

  1. RESTful API
  2. Autorun Rule Engine
  3. Notifications
  4. Console
  5. WebRTC Extension

IV - Development

  1. Contributing
  2. ActiveRecord
  3. Development Organization
  4. Architecture
  5. BeEF Javascript API
  6. Step By Step Module Creation
  7. Creating a New Extension
  8. BeEF Testing
  9. Browser & OS Compatibility
  10. Database Schema
  11. Development Milestones
  12. Command Module Config
  13. Command Module API

V - References

  1. FAQ
  2. Other
  3. References
  4. Modules
  5. Release Notes
Clone this wiki locally