BeEF has an incredible amount of functionality, from ascertaining the type of browser the victim is using, to the exploitation of known vulnerabilities and the complete compromise of the client system. Some of the most interesting features are as follows:
- Social Engineering—Pretty Theft: This is a social engineering tool that allows us to simulate a login popup resembling common services such as Facebook, LinkedIn, YouTube, and others.
- Browser—webcam and browser—webcam HTML5: As obvious as it might seem, these two modules are able to abuse a permissive configuration to activate the victim's webcam. The first uses a hidden flash embed and the second uses HTML5.
- Exploits folder: This contains a collection of exploits for ...