Top-Hat-Sec

General Category => Tutorials => Topic started by: RapiD on August 20, 2017, 06:07:46 AM

Title: BeEF - the Browser Exploitation Framework Project OVER WAN
Post by: RapiD on August 20, 2017, 06:07:46 AM
i think its been 4 years since i was on this site. :D hello again

All Needed Ports Forwarded
First things first, you need to make sure you have these ports forwarded on your router. On mine it shows in the advance settings NAT >

< Port Forwarding.

then i can add all the ports i need for beef to work.

Step 2
Add These Ports 3000, 5432, 55552, 53, 80
Add the Ip into Beef config.yaml


now once you have forwarded your ports correctly you can move onto the kali 2.0 machine. open up a terminal and type


root@kali:~# cd /usr/share/beef-xss/
root@kali:/usr/share/beef-xss# leafpad config.yaml


this should now open up the beef config file as so.
dnshost "your public ip" put your public ip in here

(https://img.wonderhowto.com/img/original/34/34/63588992613080/0/635889926130803434.jpg)

db_host "Your Public Ip"_

(https://img.wonderhowto.com/img/25/87/63588992537022/0/beef-browser-exploitation-framework-project-over-wan.w1456.jpg)

now close and save that file.

Root@Kali:~# /Usr/Share/Beef-Xss
Type Cd Extensions/Metasploit/
Root@Kali:/Usr/Share/Beef-Xss/Extensions/Metasploit#


then while in there type leafpad config.yaml

(https://img.wonderhowto.com/img/25/03/63588992928968/0/beef-browser-exploitation-framework-project-over-wan.w1456.jpg)

And where i have put !!your ip here!! on the picture above^ put your public ip

Host " Your Public Ip"
callback_host "Yourpublicip"_
and also make sure when you do its only numbers , no http://
just XX.XXX.XXX.XXX

now save this file and close.

now when you load beef framework up again.

Replace Your Public Ip Before >>> :3000/Ui/Authentication
Replace [Http://127.0.0.1 ]
with Your Public Ip
>>>>> [Http://127.0.0.1:3000/Ui/Authentication ]
>>>>> XX.XXX.XXX.XXX:3000/Ui/Authentication

thats it.
Beef should now be setup to use your public ip for connections back.

you should also look into setting up ddns these seem ok and free. http://www.noip.com

Thanks, RapiD

old post i did had it saved ;)
Title: Re: BeEF - the Browser Exploitation Framework Project OVER WAN
Post by: Gingerbread Man on August 21, 2017, 11:47:33 AM
Glad to have you back!  8)
Title: Re: BeEF - the Browser Exploitation Framework Project OVER WAN
Post by: GalaxyNinja on August 23, 2017, 07:22:37 AM
Thanks for doing the writeup!
Title: Re: BeEF - the Browser Exploitation Framework Project OVER WAN
Post by: RapiD on August 26, 2017, 11:46:06 AM
Its good to be back. more tuts coming soon aswell ;)