Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Certain browser details are considered as invalid #3051

Open
jme418 opened this issue Mar 31, 2024 · 4 comments
Open

Certain browser details are considered as invalid #3051

jme418 opened this issue Mar 31, 2024 · 4 comments
Assignees
@stephenakq
Labels
Good First Issue Medium

Comments

@jme418
Copy link

jme418 commented Mar 31, 2024
edited by stephenakq

First Steps

BeEF Version: 0.5.4.0
Ruby Version: ruby 3.1.2p20 (2022-04-12 revision 4491bb740a) [x86_64-linux-gnu]
Browser Details (e.g. Chrome v81.0): Causing problems with all I've tried (FF - 115.8.0esr, O - 108.0.5067.29, C - 123.0.6312.86, 123.0.6312.58, 121.0.6167.178)
Operating System: Linux, Windows and Android

Configuration

  1. Have you made any changes to your BeEF configuration? Yes.
  2. Have you enabled or disabled any BeEF extensions? Yes, Metasploit one but I do not remember if anyone else, I've been using BeEF for a while.

Steps to Reproduce

I did the installation guided by this page: https://null-byte.wonderhowto.com/how-to/hack-web-browsers-with-beef-control-webcams-phish-for-credentials-more-0159961/

  1. I always start with this commands secuence:
msfconsole
load msgrpc ServerHost=127.0.0.1 User=msf Pass=kali SSL=y
sudo netstat -tuln | grep LISTEN
sudo ./beef

and all it's looking great, with metasploit exploits correctly loaded.

  1. Then I do the one for the ngrok tunnel and no problems here.
  2. It is now, when accessing an infected domain, where the mentioned in the title issue appears. I get this type of messages:

[removed]

Something strange I can see is that the plugins one appears only when accessing via Android.
@stephenakq stephenakq self-assigned this Apr 3, 2024
@stephenakq
Copy link
Collaborator

Thank you for bringing this to our attention.

The image has been removed because it contained a routable IP address, but the discussion can continue with the image omitted. Could you clarify if the issue pertains to the console message "browser: UNKNOWN -121.0.0.0"?

@stephenakq
Copy link
Collaborator

You can also join our Discord for assistance with this issue. Here's the link: https://discord.gg/ugmKmHarKc

@jme418
Copy link
Author

jme418 commented Apr 3, 2024

Thank you for bringing this to our attention.

The image has been removed because it contained a routable IP address, but the discussion can continue with the image omitted. Could you clarify if the issue pertains to the console message "browser: UNKNOWN -121.0.0.0"?

Well, the messages I want to get rid off are the ones with the following structure:

[!] Browser Details Invalid browser name/versions/plugins from the hook browser's initial connection.

And also, as a consecuence of them, the one you mentioned:

browser: UNKNOWN -121.0.0.0

@stephenakq
Copy link
Collaborator

Thank you for pointing this out. We'll look into that bug.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@stephenakq stephenakq

Labels
Good First Issue Medium
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jme418 @stephenakq