beef 0.4.2.10.2

data/README

@@ -0,0 +1,70 @@
+
+   Copyright 2011 Wade Alcorn wade@bindshell.net
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
+
+Most of the contents of this file will eventually be added to /install.rb. In the meantime tips, hints and guides for installing beef should be kept here.  
+
+=============================================
+
+   1. Prerequisites (platform independent)
+   2. Prerequisites (Windows)
+   3. Prerequisites (Linux)
+   4. Prerequisites (Mac OSX)
+   5. Install instructions
+
+
+
+   1. Prerequisites (platform independent)
+
+      Beef requires ruby 1.9
+
+      
+   2. Prerequisites (Windows)
+      
+      Windows requires the sqlite.dll.  Simply grab the zip file below and extract it to your Ruby bin directory:
+
+	  http://www.sqlite.org/sqlitedll-3_7_0_1.zip
+      
+
+   3. Prerequisites (Linux)
+
+      !!! This must be done PRIOR to running the Beef installer !!!
+      
+      On linux you will need to find the packages specific to your distribution for sqlite.  An example for Ubuntu systems is:
+
+	  sudo apt-get install libsqlite3-dev sqlite3 sqlite3-doc
+	  
+	  
+	  You also need to install the ruby-dev package (required for mkmf)
+	  
+	  sudo apt-get install ruby-dev
+	  
+	  
+   4. Prerequisites (Mac OSX)
+   
+      Make sure you have XCode installed - which provided the sqlite support Beef needs
+      Sqlite support is native in MacOS 10.6+
+      
+
+   5. Install instructions
+   
+      Obtain application code either by downloading an archive from http://code.google.com/p/beef/downloads/list or checking out the source from http://code.google.com/p/beef/source/checkout
+
+	  Navigate to the ruby source directory and run:
+
+	  ruby install
+
+      The installer verifies required gems, including any specific version dependencies
+
+      The installer offers a choice of auto-installing missing gems or provides the command so you can install gems manually

data/README.databases

@@ -0,0 +1,30 @@
+ MySQL Notes:
+  * It's recommended to install MySQL >= 5.5.x
+  * Your system will require MySQL, MySQL-Server, MySQL-Devel and Ruby's MySQL libraries installed
+  * You will also need to "sudo gem install dm-mysql-adapter"
+
+  * UTF8 notes. Update/Add in my.cnf (or my.ini on Win) the following. Then save and reboot MySQL.
+    - Read more here: http://cameronyule.com/2008/07/configuring-mysql-to-use-utf-8
+        [mysql]
+          default-character-set=utf8
+        [mysqld]
+          character-set-server=utf8
+          collation-server=utf8_general_ci
+          init-connect='SET NAMES utf8'
+        [client]
+          default-character-set=utf8
+
+   * Please note that the db must exists. Schema will be created automatically.
+   mysql> CREATE DATABASE beef CHARACTER SET utf8 COLLATE utf8_general_ci;
+   mysql> grant all privileges on beef.* to 'beef'@'localhost' identified by 'beef123';
+
+        
+
+Postgres Notes
+  * You will need to install the postgresql package as well as the libpq-dev package
+  * You will need to "sudo gem install dm-postgres-adapter"
+  * As the postgres user:
+    - createuser -P beef
+    - createdb --owner=beef beef
+  * you may also need to change the pg_hba.conf file in /etc/postgresql so that the local all all optionis labeled as either trust or md5
+

data/VERSION

@@ -0,0 +1 @@
+0.4.2.10-alpha

data/beef

@@ -0,0 +1,112 @@
+#!/usr/bin/env ruby
+
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+# @note Version check to ensure BeEF is running Ruby 1.9 >
+if  RUBY_VERSION < '1.9'
+  puts "\n"
+  puts "Ruby version " + RUBY_VERSION + " is no longer supported. Please upgrade 1.9 or later."
+  puts "\n"
+  exit
+end
+
+$:.unshift(File.join(File.expand_path(File.dirname(__FILE__)), '.'))
+$root_dir = File.expand_path('..', __FILE__)
+
+# @note Prevent some errors on encoding: encoding handling changed (improved) from 1.8.7 to 1.9.1/2.
+if RUBY_VERSION =~ /1.9/
+    Encoding.default_external = Encoding::UTF_8
+    Encoding.default_internal = Encoding::UTF_8
+end
+
+# @note Require core loader's
+require 'core/loader'
+
+# @note Starts configuration system
+config = BeEF::Core::Configuration.instance
+
+# @note Loads enabled extensions
+BeEF::Extensions.load
+
+# @note Prints BeEF welcome message
+#BeEF::Extension::Console::Banners.print_ascii_art
+BeEF::Extension::Console::Banners.print_welcome_msg
+
+# @note Loads enabled modules
+BeEF::Modules.load
+
+# @note Disable reverse dns
+Socket.do_not_reverse_lookup = true 
+
+# @note Database setup - use DataMapper::Logger.new($stdout, :debug) for development debugging
+case config.get("beef.database.driver")
+  when "sqlite"
+    DataMapper.setup(:default, "sqlite3://#{$root_dir}/#{config.get("beef.database.db_file")}")
+  when "mysql","postgres"
+    DataMapper.setup(:default,
+      :adapter => config.get("beef.database.driver"),
+      :host => config.get("beef.database.db_host"),
+      :username => config.get("beef.database.db_user"),
+      :password => config.get("beef.database.db_passwd"),
+      :database => config.get("beef.database.db_name"),
+      :encoding => config.get("beef.database.db_encoding")
+    )
+  else
+    print_error 'No default database selected. Please add one in config.yaml'
+end
+
+# @note Resets the database if the -x flag was passed
+# @todo Change reference from Extension::Console to Core::Console once the console extension is merged with the core
+if BeEF::Extension::Console.resetdb?
+  print_info 'Resetting the database for BeEF.'
+  DataMapper.auto_migrate!
+else 
+  DataMapper.auto_upgrade!
+end
+
+# @note Extensions may take a moment to load, thus we print out a please wait message
+print_info 'BeEF is loading. Wait a few seconds...'
+
+# @note Execute migration procedure, checks for new modules
+BeEF::Core::Migration.instance.update_db!
+
+# @note Create HTTP Server and prepare it to run
+http_hook_server = BeEF::Core::Server.instance
+http_hook_server.prepare
+
+# @note Prints information back to the user before running the server
+BeEF::Extension::Console::Banners.print_loaded_extensions
+BeEF::Extension::Console::Banners.print_loaded_modules
+BeEF::Extension::Console::Banners.print_network_interfaces_count
+BeEF::Extension::Console::Banners.print_network_interfaces_routes
+
+# @note Call the API method 'pre_http_start'
+BeEF::API::Registrar.instance.fire(BeEF::API::Server, 'pre_http_start', http_hook_server)
+
+# @note Start the HTTP Server, we addtionally check whether we load the Console Shell or not
+if config.get("beef.extension.console.shell.enable") == true
+  puts ""
+  begin
+    FileUtils.mkdir_p(File.expand_path(config.get("beef.extension.console.shell.historyfolder")))
+    BeEF::Extension::Console::Shell.new(BeEF::Extension::Console::Shell::DefaultPrompt,
+      BeEF::Extension::Console::Shell::DefaultPromptChar,{'config' => config, 'http_hook_server' => http_hook_server}).run
+  rescue Interrupt
+  end
+else
+  print_info 'BeEF server started (press control+c to stop)'
+  http_hook_server.start
+end

data/config.yaml

@@ -0,0 +1,69 @@
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+# BeEF Configuration file
+
+beef:
+    version: '0.4.2.10-alpha'
+    debug: false
+
+    restrictions:
+        # subnet of browser ip addresses that can hook to the framework 
+        permitted_hooking_subnet: "0.0.0.0/0"
+        # subnet of browser ip addresses that can connect to the UI 
+        # permitted_ui_subnet = "127.0.0.1/32"
+        permitted_ui_subnet: "0.0.0.0/0"
+    
+    http:
+        host: "0.0.0.0"
+        port: "3000"
+        # if running behind a nat set the public ip address here
+        #public: ""
+        dns: "localhost"
+        panel_path: "/ui/panel"
+        hook_file: "/hook.js"
+        hook_session_name: "BEEFHOOK"
+        session_cookie_name: "BEEFSESSION"
+
+    database:
+        # For information on using other databases please read the
+        # README.databases file
+
+        # supported DBs: sqlite, mysql, postgres
+        driver: "sqlite"
+
+        # db_file is only used for sqlite
+        db_file: "beef.db"
+        
+        # db connection information is only used for mysql/postgres
+        db_host: "localhost"
+        db_name: "beef"
+        db_user: "beef"
+        db_passwd: "beef123"
+        db_encoding: "UTF-8"
+
+    crypto_default_value_length: 80
+
+    # You may override default extension configuration parameters here
+    extension:
+        requester:
+            enable: true 
+        proxy:
+            enable: true 
+        metasploit:
+            enable: false
+        console:
+            shell:
+                enable: false

data/install

@@ -0,0 +1,138 @@
+#!/usr/bin/env ruby
+
+#
+#   Copyright 2011 Wade Alcorn wade@bindshell.net
+#
+#   Licensed under the Apache License, Version 2.0 (the "License");
+#   you may not use this file except in compliance with the License.
+#   You may obtain a copy of the License at
+#
+#       http://www.apache.org/licenses/LICENSE-2.0
+#
+#   Unless required by applicable law or agreed to in writing, software
+#   distributed under the License is distributed on an "AS IS" BASIS,
+#   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#   See the License for the specific language governing permissions and
+#   limitations under the License.
+#
+
+require 'rubygems'
+
+puts "\nWelcome to the BeEF installer!"
+
+if  RUBY_VERSION < '1.9'
+  puts "\n"
+  puts "Ruby version " + RUBY_VERSION + " is no longer supported. Please upgrade 1.9 or later."
+  puts "\n"
+  exit
+end
+
+puts "\nPlease make sure you have installed SQLite before proceeding.  For instructions on how to do this please see the README file"
+
+# array of required gems - add to as needed (specify a version if needed eg "gem_name, =x.x.x")
+$gems_required = ["ansi", "term-ansicolor", "dm-core", "json", "data_objects", "do_sqlite3", "sqlite3", "dm-sqlite-adapter", 
+                  "parseconfig", "erubis", "dm-migrations", "librex"]
+
+# array of missing non-version specific gems installed
+$gems_missing = Array.new
+
+# array of missing version specific gems installed
+$gems_missing_version = Array.new
+
+# check all required gems (dependencies) are present
+def dep_check
+  $gems_required.each do |current_gem|
+    begin
+      if current_gem.include? ","
+        tokens = current_gem.split(",")
+        gem tokens[0], tokens[1]
+      else
+        gem current_gem
+      end
+    rescue Gem::LoadError
+      if current_gem.include? ","
+        $gems_missing_version << current_gem
+      else
+        $gems_missing << current_gem
+      end
+    end
+  end
+  if $gems_missing.length == 0 && $gems_missing_version.length == 0
+    return true
+  else
+   return false
+ end
+end
+
+# display install options
+def display_opts
+  puts "\n1) Install all required gems automatically\n" + "2) List required gems and exit so they can be installed manually\n" + "3) Exit installer\n\n"
+  option = gets
+  return option
+end
+
+# generate install command for missing gems
+def install_command
+  if (RUBY_PLATFORM =~ /linux/ or RUBY_PLATFORM =~ /darwin/) and Process.uid != 0
+    cmd = "sudo gem install"
+    $gems_missing.each do |current_gem|
+      cmd = cmd + " #{current_gem}"
+    end
+    if $gems_missing_version.length != 0
+      $gems_missing_version.each do |current_gem|
+        if cmd == "sudo gem install"
+          cmd = cmd + " #{current_gem}"
+        else
+          cmd = cmd + " && sudo gem install #{current_gem}"
+        end
+      end
+    end
+  else
+    cmd = "gem install"
+    $gems_missing.each do |current_gem|
+      cmd = cmd + " #{current_gem}"
+    end
+    if $gems_missing_version.length != 0
+      $gems_missing_version.each do |current_gem|
+        if cmd == "gem install"
+          cmd = cmd + " #{current_gem}"
+        else
+          cmd = cmd + " & gem install #{current_gem}"
+        end
+      end
+    end
+  end
+  cmd = cmd.delete "," "'"
+  cmd = cmd.gsub("=", "-v")
+  cmd += " --no-rdoc --no-ri"
+  return cmd
+end
+
+# install missing gems
+def install_gems
+  puts install_command + "\n"
+  system(install_command)
+end
+
+dep_met = dep_check()
+
+if dep_met == false
+  puts "\nSome gems required by BEeF are not present on your system please select an option to continue:"
+  option = display_opts
+  while option != "1\n" and option != "2\n" and option != "3\n"
+    puts "\nInvalid option entered, please select a valid option to continue:"
+    option = display_opts
+  end
+  if option == "1\n"
+    install_gems
+  elsif option == "2\n"
+    cmd = install_command
+    puts "\nPlease run the following command to update and install all required gems:\n\n" + cmd + "\n\n"
+  elsif option == "3\n"
+    puts "\nExiting...\n\n"
+  end
+else
+  puts "\nAll required gems are present - please run 'ruby beef' to start using BEeF\n\n"
+  puts "\nThe Default username/password are beef/beef\n\n"
+  puts "\nAll feedback welcome - http://beef.googlecode.com/\n\n"
+end

metadata

@@ -0,0 +1,229 @@
+--- !ruby/object:Gem::Specification 
+name: beef
+version: !ruby/object:Gem::Version 
+  hash: 195
+  prerelease: 
+  segments: 
+  - 0
+  - 4
+  - 2
+  - 10
+  - 2
+  version: 0.4.2.10.2
+platform: ruby
+authors: 
+- Wade Alcorn
+- Michele Orru
+- Ben Passmore
+- Scott Brown
+- A. Saafan
+autorequire: 
+bindir: .
+cert_chain: []
+
+date: 2011-11-16 00:00:00 Z
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: ansi
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id001
+- !ruby/object:Gem::Dependency 
+  name: term-ansicolor
+  prerelease: false
+  requirement: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id002
+- !ruby/object:Gem::Dependency 
+  name: dm-core
+  prerelease: false
+  requirement: &id003 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id003
+- !ruby/object:Gem::Dependency 
+  name: json
+  prerelease: false
+  requirement: &id004 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id004
+- !ruby/object:Gem::Dependency 
+  name: data_objects
+  prerelease: false
+  requirement: &id005 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id005
+- !ruby/object:Gem::Dependency 
+  name: do_sqlite3
+  prerelease: false
+  requirement: &id006 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id006
+- !ruby/object:Gem::Dependency 
+  name: sqlite3
+  prerelease: false
+  requirement: &id007 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id007
+- !ruby/object:Gem::Dependency 
+  name: dm-sqlite-adapter
+  prerelease: false
+  requirement: &id008 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id008
+- !ruby/object:Gem::Dependency 
+  name: parseconfig
+  prerelease: false
+  requirement: &id009 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id009
+- !ruby/object:Gem::Dependency 
+  name: erubis
+  prerelease: false
+  requirement: &id010 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id010
+- !ruby/object:Gem::Dependency 
+  name: dm-migrations
+  prerelease: false
+  requirement: &id011 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 3
+        segments: 
+        - 0
+        version: "0"
+  type: :runtime
+  version_requirements: *id011
+description: The Browser Exploitation Framework (BeEF) is a security tool that provides practical client side attack vectors.
+email: henryzlo@gmail.com
+executables: 
+- beef
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- README
+- README.databases
+- VERSION
+- beef
+- config.yaml
+- install
+- ./beef
+homepage: http://beefproject.com
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: .
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.7.2
+signing_key: 
+specification_version: 3
+summary: Browser Exploitation Framework.
+test_files: []
+