Posted On:July 2014 - Pentest Geek

standard

Phishing Frenzy: HTA PowerShell Attacks with BeEF

2014/07/22 - By 
BeEF HTA Powershell Popup

If you’re not currently using Phishing Frenzy, BeEF, or PowerSploit for your Phishing campaigns you’re really missing out. In this article we are briefly going to cover what I consider to be one of the “new hotness” attack vectors that every pentester should be using in their next phishing assessment.

With that said we are very pleased to announce that BeEF is now integrated in Phishing Frenzy. If you’re not familiar with BeEF or its capabilities I would highly recommend you check it out. BeEF is the browser exploitation framework and one of the major features is the ability to hook browsers and inject JavaScript into browser sessions.

With the recent addition of BeEF integration to Phishing Frenzy you can now hook and launch client side attacks easier than ever. With a simple click of the button Phishing Frenzy will instantly add JavaScript tags that BeEF requires. This means any target landing on your phishing page will instantly get hooked if JavaScript is enabled (which it usually is!).

Read More


standard

Burp Suite Tutorial – Web Application Penetration Testing (Part 1)

2014/07/02 - By 

Burp Suite from Portswigger is one of my favorite tools to use when performing a Web Penetration Test. The following is a step-by-step Burp Suite Tutorial. I will demonstrate how to properly configure and utilize many of Burp Suite’s features. After reading this, you should be able to perform a thorough web penetration test. This will be the first in a two-part article series.
Read More


Follow Pentest Geek

twitterrssyoutubetwitterrssyoutube

Subscribe to Pentest Geek

Recent Posts

Penetration Testing

Categories

Metasploit

Web Application Hacking

css.php