This is a reupload of a video - Youtube doesnt seem to like my descriptions/titles/videocontent so i edited all of them and made sure the video is youtube friendly. Disclaimer: None of the shown sites were affected in any way. The video was done as a testing in an isolated environment and the only thing affected was my virtual machine's browser. I do not support any illegal actions - this is to be used for educational purposes only, to help the BlueTeam/RedTeam Tests, educate future PenTesters and similar. For more information read warning under timestamps.


Timestamps
00:00 - Intro
00:10 - Explaining and announcing video content
00:39 - Setting stuff up (beef)
02:04 - Usage of the Beef control panel
02:32 - Test environment setup (Apache2 & so)
03:17 - Cloning websites (Quick howTo)
04:10 - Modifying our website a bit
05:12 - Beef script for hooking victims (set up)
05:25 - First hooked machine, on site entering
05:46 - Deleting the previous stuff - database file
06:03 - Interface and trying out some commands
08:22 - Getting the values from Forms (email pass)
09:02 - More commands in Browser tab
09:24 - Replace all HREFs
09:57 - More commands (Browser Tab)
10:08 - Creating an Alert dialog
10:28 - Creating a Prompt dialog
11:15 - Redirecting the browser
11:33 - More commands in Browser tab
12:34 - Asking for webcam permission & similar
13:05 - More commands in Browser tab
13:29 - ChromeExtensions and Debug tabs
13:49 - Xploits tab
14:43 - Hosts tab
14:53 - Getting victim's Geo Location
16:04 - Metasploit extension (autopwn)
16:20 - Executing Raw Javascript
17:14 - Tor & social networks login status detection
17:35 - Persistence tab (Confirm close tab & MITB)
18:02 - PhoneGap
18:12 - Soc Eng Tab
18:22 - Clippy !!
20:32 - Fake flash update
20:50 - Fake notification bar
21:00 - Ggl - Fishing
21:30 - Pretty Stealing (FB,YT,Win,...passes & logins)
22:04 - Turning apache2 off and bettercap On
22:20 - Settings to get most Passwds (bettercap)
22:48 - Setting up the script inj
24:11 - Taking stuff over hehe
25:21 - Turning stuff off
25:47 - Outro talk
26:10 - Outro


--
Visit my website for more content and a text version of the tutorial : https://hoxframework.com.hr/ (for this post specifically : https://hoxframework.com.hr/?p=467 ) If you have any questions or ideas leave them down in comments - i reply pretty fast :) . Thank you so much for watching and have a nice day.





WARNING : AS ALWAYS : EDUCATIONAL PURPOSES ONLY !! DO NOT USE THIS ILLEGALY. I DO NOT SUPPORT ANY ILLEGAL ACTIVITIES. THIS IS TO BE USED FOR EDUCATION OR FOR REDTEAM/BLUETEAM EXERCISES OR SIMILAR ISOLATED ENVIRONMENTS THAT KEEP THE WORKSPACE STRICTLY LEGAL.








#Beefxss #bettercap


TAGS : bettercap, beef, beefxss, beef-xss, browser, simple, easy, tutorial, entire network, mitm, hoxframework, hox