Browser Exploitation Framework (BeEF) is an open source web browser penetration tool.
Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
Note: This project is developed solely for lawful research and penetration testing.
Deploying the BeEF Marketplace App
The Linode Marketplace allows you to easily deploy software on a Linode using the Linode Cloud Manager.
- Log in to the Cloud Manager and select the Marketplace link from the left navigation menu. This displays the Linode Compute Create page with the Marketplace tab pre-selected.
- Under the Select App section, select the app you would like to deploy.
- Fill out all required Options for the selected app as well as any desired Advanced Options (which are optional). See the Configuration Options section for details.
- Complete the rest of the form as discussed within the Getting Started > Create a Linode.
- Click the Create Linode button. Once the Linode has provisioned and has fully powered on, wait for the software installation to complete. If the Linode is powered off or restarted before this time, the software installation will likely fail. To determine if the installation has completed, open the Linode’s Lish console and wait for the system login prompt to appear.
- Follow the instructions within the Getting Started After Deployment section.
Software installation should complete within 10-15 minutes after the Linode has finished provisioning.
Configuration Options
Here are the additional options available for this Marketplace App:
| Field | Description |
|---|---|
| BeEF Password | The BeEF Admin Password. Required. |
| Admin Email for the server | This Email is require to generate the SSL certificates. Required |
| Your Linode API Token | Your Linode API Token is needed to create DNS records. If this is provided along with the subdomain and domain fields, the installation attempts to create DNS records via the Linode API. If you don’t have a token, but you want the installation to create DNS records, you must create one before continuing. |
| Subdomain | The subdomain you wish the installer to create a DNS record for during setup. The suggestion given is www. The subdomain should only be provided if you also provide a domain and API Token |
| Domain | The domain name where you wish to host your Wazuh instance. The installer creates a DNS record for this domain during setup if you provide this field along with your API Token. |
| The limited sudo user to be created for the Linode | This is the limited user account to be created for the Linode. This account has sudo user privileges. |
| The password for the limited sudo user | Set a password for the limited sudo user. The password must meet the complexity strength validation requirements for a strong password. This password can be used to perform any action on your server, similar to root, so make it long, complex, and unique. |
| The SSH Public Key that will be used to access the Linode | If you wish to access SSH via Public Key (recommended) rather than by password, enter the public key here. |
| Disable root access over SSH? | Select Yes to block the root account from logging into the server via SSH. Select No to allow the root account to login via SSH. |
General Options
For advice on filling out the remaining options on the Create a Linode form, see Getting Started > Create a Linode. That said, some options may be limited or recommended based on this Marketplace App:
- Supported distributions: Ubuntu 22.04 LTS
- Recommended plan: All plan types and sizes can be used.
Getting Started After Deployment
Accessing the BeEF App
- Log in to your Compute Instance over SSH. See Connecting to a Remote Server Over SSH for assistance.
- Run the following command, which outputs the URL needed to visit the BeEF interface:
cat /root/beef.info - Navigate to that URL in a web browser. A login screen appears.
- Enter
beefas the username and use the password you entered into the BeEF Password field when you created the Instance.
Now that you’ve accessed your BeEF instance, check out the official BeEF documentation to learn how to further utilize your BeEF instance.
The BeEF App was built by Linode. For support regarding app deployment, contact Linode Support via the information listed in the sidebar. For support regarding the tool or software itself, search the BeEF FAQ.
