How to Hack Web Browsers  From alphabanklog
How to Hack Web Browsers
In this tutorial we will be using BeEF inside of our home network using localhost if you intend for users outside the network to connect back to BeEF you will need to open ports within your routers configuration.
Hooking a Browser
The example below shows a BeEF Hook running on my machines local IP address.
To find you local IP address you can use “ifconfig” from a new terminal.
BeEF hook http://192.168.43.49:3000/hook.js.
Once the target is presented with the Web Page there browser will be hooked and appear in the Hook Browsers section of the BeEF Web GUI.
In the screen shot below we can see BeEF has hooked a target browser and its online from here we can find out information such as The Browsers version plug ins that the browser is using and various information about the target system and its software.
The screen shot below shows Logs from the target system such as mouse movement double clicks and other activity logs created by the target system.
Screen shot below shows available modules that can be used to exploit the target system such as
You might notice that some of the commands have different colored icons next to them. If you click back to the Getting Started tab, it will explain what each of the colors represents.
Each command module has a traffic light icon, which is used to indicate the following:
1The command module works against the target and should be invisible to the user
2The command module works against the target, but may be visible to the user
3The command module is yet to be verified against this target
4The command module does not work against this target
BeEF also also us to send interactive shell commands to the target system the following screen shot below shows BeEF interactive shell.
BeEF can also be integrated with Metasploit for further system exploitation using modules such as browser_auto_pwn.