Web Application

BeEF

Browser exploitation framework.

webxss

beef — terminal

$ ./beef   # then deliver hook.js via XSS

What it does

BeEF hooks web browsers via XSS or an injected hook script and runs client-side modules against them. It's used to demonstrate the real impact of cross-site scripting and browser-based attacks.

Source

https://github.com/beefproject/beef ↗

More Web Application tools

SQLMapAutomated SQL injection and database takeover.CommixAutomated command-injection exploitation.ffufFast web fuzzer for content and parameter discovery.FuzzDBAttack-payload and discovery wordlist library.

Need hosted scanning instead of local tooling?

Run a scan in the browser →