Skip to content

Information Gathering

Jump to bottom
Jack Walker edited this page Dec 30, 2019 · 23 revisions

So now, you have BeEF up and running, and you've hooked your first browser. What's the next step?

_Your first step will often be to perform reconnaissance on the remote host. Which browser and plugins do they have running? Which website have you hooked? _

Browser Fingerprinting

When a browser is hooked, BeEF will automatically gather several pieces of information on the hooked browser:

  • Browser name and version
  • Browser User Agent
  • Plugins (including Java, ActiveX, VBS, Flash...)
  • Windows size

Default information on the hooked browser gathered by BeEF :

You can then use different plugins to gather more detailed information on the browsers :

Result of the browser fingerprinting module :

Information gathering on the system

By using several modules, you can also gather information on the system of the hooked browser :

  • Internet Explorer has permissive restrictions allowing to detect softwares installed (module Detect Softwares) and even registry keys (caution, in this case the user will be prompted with an authorization message).
  • If the browsers authorize Java, the module Get Internal IP allows to detect the IP address of the system (funnier tricks with the network will be described later)
  • The module Get System Info uses also a Java Applet to gather detailed information on the system : operating system details, Java JVM details, IP addresses, amount of memory...
  • It is also possible to retrieve the location of the user whether by using the geolocation API or by using a trick requesting Google maps.
  • The default javscript API allows of course, to get the data stored in the clipboard.

Result of Get System Info module :

User's behaviour fingerprinting

The hooked browser also allows to discover several information on the behaviour of the user :

Previous | Next

User Guide

I. Introduction   |   II. Basic Utilization   |   III. Advanced Utilization   |   IV. Development   |   V. References

Community

Blog   |   Code   |   Youtube   |   Twitter

I - Starting BeEF

  1. Introducing BeEF
  2. Installation
  3. Basics
  4. Troubleshooting

II - Basic Utilization

  1. Configuration
  2. Interface
  3. Information Gathering
  4. Social Engineering
  5. Network Discovery
  6. Metasploit
  7. Tunneling
  8. XSS Rays
  9. Persistence
  10. Creating a Module
  11. Geolocation
  12. Using-BeEF-With-NGROK

III - Advanced Utilization

  1. RESTful API
  2. Autorun Rule Engine
  3. Notifications
  4. Console
  5. WebRTC Extension

IV - Development

  1. Contributing
  2. ActiveRecord
  3. Development Organization
  4. Architecture
  5. BeEF Javascript API
  6. Step By Step Module Creation
  7. Creating a New Extension
  8. BeEF Testing
  9. Browser & OS Compatibility
  10. Database Schema
  11. Development Milestones
  12. Command Module Config
  13. Command Module API

V - References

  1. FAQ
  2. Other
  3. References
  4. Modules
  5. Release Notes
Clone this wiki locally