Amid growing concerns about web-borne attacks against clients, including mobile clients, BeEF allows the professional penetration tester to assess the actual security posture of a target environment by using client-side attack vectors. Unlike other security frameworks, BeEF looks past the hardened network perimeter and client system, and examines exploitability within the context of the one open door: the web browser. BeEF will hook one or more web browsers and use them as beachheads for launching directed command modules and further attacks against the system from within the browser context.
BeEF hooks one or more web browsers as beachheads for the launching
of directed command modules. Each browser is likely to be within a
different security context, and each context may provide a set of unique
attack vectors. The framework allows the penetration tester to select
specific modules (in real-time) to target each browser, and therefore
The framework contains numerous command modules that employ BeEF’s
simple and powerful API. This API is at the heart of the framework’s
effectiveness and efficiency. It abstracts complexity and facilitates
quick development of custom modules.
So it was the little introduction of what BeEF is all about, this particular tool is amazing and it can do wonders. You might have also heard about it or you might are also using it for your hacking attack. Anyways, here is the quick tutorial of BeEF, this tutorial has been created on Kali Linux. So enjoy but forget to share your comments (you know there is a box below).