Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Tool to block browser exploits (BeEF: Browser exploitation framework)


  • Please log in to reply
1 reply to this topic

#1 ponde

ponde

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:34 PM

Posted 02 August 2016 - 10:27 AM

Hello,

 

I am amazed that I could not find a thread talking about BeEF! BeEF is short from Browser Exploitation Framework and it is scary easy to use. It's a javascript code that is inserted into website. All the victim has to do is visit the website and the browser is "hooked". The hooked browser session pops up in the attackers BeEF web GUI. From there the attacker can use about 255 different commands to compromise the OS and/or steal credentials. 

 

 

So far only Symantecs Norton security has been the only AV/AM/Tool to detect and block the exploit. I have tested the exploit agains Bitdefender, Sophos, Malwarebytes, Emsisoft, Comodo, Windows defender and anti-exploits such as Malwarebytes Anti-exploit and Hitman Pro.Alert. I have also tried some other tools like Spyshelter. If it wasn't for Norton I would be sure that there is no software that can detect the exploit.

 

 

Does anybody know any other software than Norton that could even detect the malicious js script?

 

 

 



BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,638 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:34 PM

Posted 06 August 2016 - 04:24 PM

Vegan: https://blog.cylance.com/vegan-chrome-extension-to-defeat-beef


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users