Basics of using the Beef-XSS To Advanced + Bettercap!!
This is a reupload of a video – Youtube doesnt seem to like my descriptions/titles/videocontent so i edited all of them and made sure the video is youtube friendly. Disclaimer: None of the shown sites were affected in any way. The video was done as a testing in an isolated environment and the only thing affected was my virtual machine’s browser. I do not support any illegal actions – this is to be used for educational purposes only, to help the BlueTeam/RedTeam Tests, educate future PenTesters and similar. For more information read warning under timestamps.
Timestamps
00:00 – Intro
00:10 – Explaining and announcing video content
00:39 – Setting stuff up (beef)
02:04 – Usage of the Beef control panel
02:32 – Test environment setup (Apache2 & so)
03:17 – Cloning websites (Quick howTo)
04:10 – Modifying our website a bit
05:12 – Beef script for hooking victims (set up)
05:25 – First hooked machine, on site entering
05:46 – Deleting the previous stuff – database file
06:03 – Interface and trying out some commands
08:22 – Getting the values from Forms (email pass)
09:02 – More commands in Browser tab
09:24 – Replace all HREFs
09:57 – More commands (Browser Tab)
10:08 – Creating an Alert dialog
10:28 – Creating a Prompt dialog
11:15 – Redirecting the browser
11:33 – More commands in Browser tab
12:34 – Asking for webcam permission & similar
13:05 – More commands in Browser tab
13:29 – ChromeExtensions and Debug tabs
13:49 – Xploits tab
14:43 – Hosts tab
14:53 – Getting victim’s Geo Location
16:04 – Metasploit extension (autopwn)
16:20 – Executing Raw Javascript
17:14 – Tor & social networks login status detection
17:35 – Persistence tab (Confirm close tab & MITB)
18:02 – PhoneGap
18:12 – Soc Eng Tab
18:22 – Clippy !!
20:32 – Fake flash update
20:50 – Fake notification bar
21:00 – Ggl – Fishing
21:30 – Pretty Stealing (FB,YT,Win,…passes & logins)
22:04 – Turning apache2 off and bettercap On
22:20 – Settings to get most Passwds (bettercap)
22:48 – Setting up the script inj
24:11 – Taking stuff over hehe
25:21 – Turning stuff off
25:47 – Outro talk
26:10 – Outro
—
Visit my website for more content and a text version of the tutorial : https://hoxframework.com.hr/ (for this post specifically : https://hoxframework.com.hr/?p=467 ) If you have any questions or ideas leave them down in comments – i reply pretty fast 🙂 . Thank you so much for watching and have a nice day.
WARNING : AS ALWAYS : EDUCATIONAL PURPOSES ONLY !! DO NOT USE THIS ILLEGALY. I DO NOT SUPPORT ANY ILLEGAL ACTIVITIES. THIS IS TO BE USED FOR EDUCATION OR FOR REDTEAM/BLUETEAM EXERCISES OR SIMILAR ISOLATED ENVIRONMENTS THAT KEEP THE WORKSPACE STRICTLY LEGAL.
#Beefxss #bettercap
TAGS : bettercap, beef, beefxss, beef-xss, browser, simple, easy, tutorial, entire network, mitm, hoxframework, hox
by Hox Framework
linux web server
The fact that this has 33 trojans 💀
Now I know how to hack my girlfriend. Thanks! 😂
Dope
Hello buddy…😅
I kinda don't know my user or my password. You know how I can change it?
(Btw, I aprreacite you still answering instantly after 2 years.)
What Linux version are you using? Linux Lite?
Great stuff! I listened at 1.5x speed because the pace is too slow.
it seems to be one of best tutorial , but unfortunately you are speaking too fast , i am not native english speaker.
Why i didnt get into index of / pls tell me im new
prejebeno 😎👍
It’s a very good video but the only problem is i cannot open that link on any other device than Linux,is there any solution for it?
Good video but take it easy on the dope bro. LOL JK
is that working for external network ? what if i'm using port forwarding setup in my router to my external ip adress ? like redirect victim to my external ip adress (router ) then router will redirect the victim to my machine plz i want some inswers and good luck
btw, at 0:43 when you launched your terminal i saw kali's logo as ASCII art. how can i achieve that, i also have parrot & ubuntu. Appreciate your efforts.❤
Sorry to hear about your reupload, but anyway Thanks a ton.
For me it won’t open it in google
Any idea why my beef isn’t working. I run it in a linode server. The link works like it is meant to for example I get the information about the drive that clicked such as browser engine and so forth. However the commands do not work at all when I send them nothing comes up on the other computer. Any help would be appreciated!!!!!
bro you great thanks this helped me thank god i saw your vid
why doesnt my hook url work on other peoples browsers like google etc, it only works on my kali linux browser.
Kralju istog sekunda kad sam video da si nas odma sub 😀
Dude love your content but omg the keyboard sounds give me anxiety lol
wowwwww… .you are the best person for me right now, Thank youu
do you need some beef or what
i cant get the beef script to work in a web page, how does it work?
When I try Opening my Beef link on a different browser that isn’t kali Linux it doesn’t load for me. Is Beef only got kali? Or I’m I doing something wrong?
I am not able to hook as it internet doesn't give permission
how do we create an https hook and hook the network when doing https attacks using bettercap
hello i hawe kind of problem with that when i write command for starting appache2 it does nothing
pls any help ?
whats the username for beef?
When I try to open the web ui it doesn’t let me?