BeEF tunneling proxy (for fun and profit) by Michele "antisnatchor" Orru’ (on Vimeo)

BeEF tunneling proxy (for fun and profit) from Michele “antisnatchor” Orru’ on Vimeo.

Using the victim browser hooked in BeEF as a tunneling proxy, we will see the following scenarios:
– browsing the authenticated surface of the hooked domain through the security context of the victim browser;
– spidering the hooked domain through the security context of the victim browser;
– finding and exploiting SQLi with Burp Pro Scanner + sqlmap (through the victim browser too 🙂 ).

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s