Skip to content

Module: Fake Flash Update

Nbblrr edited this page Jan 3, 2013 · 9 revisions

##Summary

  • Description:
    • Prompts the user to install an update to Adobe Flash Player.The file to be delivered could be a Chrome or Firefox extension.
    • A Chrome extension has privileged access and can do a whole lot..
      • Access all tabs and inject beef into all tabs
      • Use hooked browser as a proxy to do cross domain requests
      • Get all cookies including HTTPonly cookies
    • Note : the Chrome extension delivery will work on Chrome <= 20. From Chrome 21 things changed in terms of how extensions can be loaded.
    • The Firefox extension is disabling PortBanning (ports 20,21,22,25,110,143), enabling Java, overriding the UserAgent and the default home/new_tab pages. See extensions/ipec/files/LinkTargetFinder dirrectory for the Firefox extension source.
  • Authors: mh, antisnatchor
  • Browsers: All (User is notified)
  • Code

##Internal Working

Screenshots

Command :

Fake message :

Error with Chrome > 20 :

Feedback

  • Blocked with recent version of Chrome (> 20)

References

Clone this wiki locally