-
Notifications
You must be signed in to change notification settings - Fork 2.2k
Module: Fake Flash Update
Nbblrr edited this page Jan 3, 2013
·
9 revisions
##Summary
-
Description:
- Prompts the user to install an update to Adobe Flash Player.The file to be delivered could be a Chrome or Firefox extension.
- A Chrome extension has privileged access and can do a whole lot..
- Access all tabs and inject beef into all tabs
- Use hooked browser as a proxy to do cross domain requests
- Get all cookies including HTTPonly cookies
- Note : the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded.
- The Firefox extension is disabling PortBanning (ports 20,21,22,25,110,143), enabling Java, overriding the UserAgent and the default home/new_tab pages. See extensions/ipec/files/LinkTargetFinder dirrectory for the Firefox extension source.
- Authors: mh, antisnatchor
- Browsers: All (User is notified)
- Code
##Internal Working
Command :
Fake message :
Error with Chrome > 20 :
- Blocked with recent version of Chrome (> 20)
- Configuration
- Interface
- Information Gathering
- Social Engineering
- Network Discovery
- Metasploit
- Tunneling
- XSS Rays
- Persistence
- Creating a Module
- Geolocation
- Using-BeEF-With-NGROK