- How To Install beef on Kali Linux
- What is beef
- Install beef Using apt-get
- Install beef Using apt
- Install beef Using aptitude
- beef on Kali Linux
- 2. Uninstall / Remove beef package
- 3. Details of beef package
- 4. References on Kali Linux
- 5. The same packages on other Linux Distributions
- How To Install beef-xss on Kali Linux
- What is beef-xss
- Install beef-xss Using apt-get
- Install beef-xss Using apt
- Install beef-xss Using aptitude
- How To Uninstall beef-xss on Kali Linux
- Uninstall beef-xss And Its Dependencies
- Remove beef-xss Configurations and Data
- Remove beef-xss configuration, data, and all of its dependencies
- References
- Summary
- BeEF — Control Any Browser Remotely
How To Install beef on Kali Linux
In this tutorial we learn how to install beef on Kali Linux.
What is beef
Beef is an interpreter for the Brainfuck programming language.
Its main goals are to be comfortable for the user and to run most Brainfuck programs unchanged; speed is generally quite good.
Beef performs thorough error checking to make sure malformed programs are not executed; it also supports a bunch of command-line options that can be used for configuration or compatibility purposes.
If GVFS is installed, Beef can use any available backend as either output or (where it makes sense) input source. GNU readline is used for interactive input.
There are three ways to install beef on Kali Linux . We can use apt-get , apt and aptitude . In the following sections we will describe each method. You can choose one of them.
Install beef Using apt-get
Update apt database with apt-get using the following command.
After updating apt database, We can install beef using apt-get by running the following command:
sudo apt-get -y install beef
Install beef Using apt
Update apt database with apt using the following command.
After updating apt database, We can install beef using apt by running the following command:
Install beef Using aptitude
If you want to follow this method, you might need to install aptitude first since aptitude is usually not installed by default on Kali Linux. Update apt database with aptitude using the following command.
After updating apt database, We can install beef using aptitude by running the following command:
beef on Kali Linux
In this section, we are going to explain the necessary steps to install beef package:
2. Uninstall / Remove beef package
Please follow the guidance below to uninstall beef package:
3. Details of beef package
Package: beef
Version: 1.2.0-1
Installed-Size: 40
Maintainer: Andrea Bolognani
Architecture: amd64
Depends: libc6 (>= 2.14), libcattle-1.0-0 (>= 1.2.0), libglib2.0-0 (>= 2.16.0), libreadline8 (>= 6.0)
Suggests: gvfs, gvfs-backends
Size: 12216
SHA256: f1a2b2ecb0f426fdda2369df51f2aba671641030010a7fbf27eaac992f26f620
SHA1: a492c8b630e375ab2f1d714ce542e99f490cb4a5
MD5sum: dd98d1a1f402a9021b77594ebf003cdd
Description: flexible Brainfuck interpreter
Beef is an interpreter for the Brainfuck programming language.
.
Its main goals are to be comfortable for the user and to run most
Brainfuck programs unchanged; speed is generally quite good.
.
Beef performs thorough error checking to make sure malformed programs are
not executed; it also supports a bunch of command-line options that can be
used for configuration or compatibility purposes.
.
If GVFS is installed, Beef can use any available backend as either output
or (where it makes sense) input source. GNU readline is used for
interactive input.
Description-md5: e7f7d6829a16b29f5b43c28683c4b333
Homepage: https://kiyuko.org/software/beef
Tag: devel::interpreter, implemented-in::c, interface::commandline,
role::program, works-with::software:source
Section: devel
Priority: optional
Filename: pool/main/b/beef/beef_1.2.0-1_amd64.deb
4. References on Kali Linux
5. The same packages on other Linux Distributions
beef (1.0.2-2) Ubuntu 18.04 LTS (Bionic Beaver)
beef (1.0.1-1) Ubuntu 16.04 LTS (Xenial Xerus)
beef (1.2.0-1) Ubuntu 21.04 (Hirsute Hippo)
beef (1.2.0-1) Ubuntu 20.10 (Groovy Gorilla)
beef (1.2.0-1) Ubuntu 21.10 (Impish Indri)
beef (1.2.0-1) Ubuntu 22.04 LTS (Jammy Jellyfish)
beef (1.0.2-3) Debian 10 (Buster)
How To Install beef-xss on Kali Linux
In this tutorial we learn how to install beef-xss on Kali Linux.
What is beef-xss
BeEF is short for The Browser Exploitation Framework. It is a penetration testing tool that focuses on the web browser.
Amid growing concerns about web-born attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
There are three ways to install beef-xss on Kali Linux . We can use apt-get , apt and aptitude . In the following sections we will describe each method. You can choose one of them.
Install beef-xss Using apt-get
Update apt database with apt-get using the following command.
After updating apt database, We can install beef-xss using apt-get by running the following command:
sudo apt-get -y install beef-xss
Install beef-xss Using apt
Update apt database with apt using the following command.
After updating apt database, We can install beef-xss using apt by running the following command:
sudo apt -y install beef-xss
Install beef-xss Using aptitude
If you want to follow this method, you might need to install aptitude first since aptitude is usually not installed by default on Kali Linux. Update apt database with aptitude using the following command.
After updating apt database, We can install beef-xss using aptitude by running the following command:
sudo aptitude -y install beef-xss
How To Uninstall beef-xss on Kali Linux
To uninstall only the beef-xss package we can use the following command:
sudo apt-get remove beef-xss
Uninstall beef-xss And Its Dependencies
To uninstall beef-xss and its dependencies that are no longer needed by Kali Linux, we can use the command below:
sudo apt-get -y autoremove beef-xss
Remove beef-xss Configurations and Data
To remove beef-xss configuration and data from Kali Linux we can use the following command:
sudo apt-get -y purge beef-xss
Remove beef-xss configuration, data, and all of its dependencies
We can use the following command to remove beef-xss configurations, data and all of its dependencies, we can use the following command:
sudo apt-get -y autoremove --purge beef-xss
References
Summary
In this tutorial we learn how to install beef-xss using different package management tools like apt, apt-get and aptitude.
BeEF — Control Any Browser Remotely
The Browser Exploitation Framework (BeEF) is a penetration testing tool focused on client-side attacks executed within a browser. Oh, Yes it includes lots of exploits.
Previously BeEF comes pre-installed with Kali Linux, but now it doesn’t comes pre-installed. But it is available in Kali Linux repository. We can install it on Kali Linux or other similar Linux distribution by applying following command:
sudo apt-get install beef-xss
The following screenshot shows the output of the preceding command:
It may consume our time depending on our internet speed and processing speed.
BeEF can be opened from the terminal using beef-xss command:
If we are opening for the first time we need to set a new password to log in BeEF control panel.
After setting up a new password for default user beef the tool will be started as we can see in the following screenshot:
Now we can access the web based user interface (Web UI) in our browser. We don’t know why but BeEF tries to open our browser automatically but failed (Hey BeEF, don’t worry we can open it manually). We need to open our browser and navigate to http://127.0.0.1:3000/ui/panel and we are in the BeEF’s login page.
Now here we type beef as default user and our chosen password and press login.
We are logged in in our BeEF control panel.
Now we need to «hook» a browser.
BeEF is providing us a basic demo page and a advanced page to hook a browser as we can see in the above screenshot.
Let’s check it by clicking on the advanced version.
We can see in the above picture this is the advanced page to hook browser. Which browser opens this will be hooked (even own browsers also) and we got control of the browser.
But this runs on localhost to send it another person in our local network we need to use 192.168.XX.XXX (Local IP address) in the place of 127.0.0.1. Local IP address can be found by typing ip address command in terminal.
Now we need to send this to anyone in our local network with some juicy social engineering techniques. Whenever our target opens this link with a browser the browser will be hooked.
We have send our this hooking url http://192.168.225.51:3000/demos/butcher/index.html to our another PC and open this link their.
In our attacker machine we got one online hooked browser.
We need to click over the hooked browser’s ip address.
Now we are on current browser section. Here we can see all the details about our browser and we can run exploits.
To run exploit commands we need to navigate on the commands tab.
For an example in this tutorial we run a basic exploit command on our hooked browser. We go social engineering menu and select the Google phishing and click on execute.
Now if we enter credentials on targeted PC we got them on our attacker machine.
Not only creating phishing page crating BeEF have lots of advanced exploits. It can take snaps from webcam, it is dangerous when attacker integrated BeEF with metasploit.
Browser Exploitation Framework hooks the browser by a JavaScript inside a normal HTML page, it exposes restful API that allow BeEF to be scripted through HTTP/JSON requests.
To use BeEF over internet we need to use our external ip in the place of our internal ip address. We also need to forward default 3000 port.
Liked our tutorials ? Then follow us on Medium and Twitter to get notification about our recent articles. For any query or problem please feel free to comment down, we always replay.