Thursday, September 6, 2012 0 comments
Beef is the short form of Browser Exploitation Framework. Beef is a popular penetration testing framework that is used to exploit web browsers. This professional security tool is provided for research and testing purposes.
This software is legal for use in research and education purpose. It allows the experienced penetration tester or system administrator additional attack vectors when assessing the posture of a target. The user of BeEF will control which browser will launch which command module and at which target.
BeEF provides a professional and simple user interface. It is easy to deploy and is implemented in Ruby so it will run on most Operating Systems. The framework contains various command modules which employ BeEF's simple API. This API facilitates quick development of custom modules by the user.
BeEF hooks one or more web browsers as beachheads for the launching of directed command modules in real-time. Each browser is likely to be within a different security context. This provides additional vectors that can be exploited by security professionals.