步骤一:在kali 2.0里面已经预装了BeEF工具,只需要运行即可,
步骤二:运行后通过web方式登陆beef后台
127.0.0.1:3000/ui/authentication
登陆账号和密码都是beef
步骤三:在靶机上面访问以下测试网页,然后靶机就被攻击了,在beef后台页面可以看到靶机的相关信息了。
http://192.168.1.108:3000/demos/butcher/index.html
本文转自 老鹰a 51CTO博客,原文链接:http://blog.51cto.com/laoyinga/1766400
![[工具使用]WpScan(上)](https://ucc.alicdn.com/pic/developer-ecology/6822345adc664f9caa82ff27f2db4a04.png?x-oss-process=image/resize,h_160,m_lfit)
![[工具使用]WpScan(下)](https://ucc.alicdn.com/pic/developer-ecology/cb731901ec17422286f1f3ad8e8046fd.png?x-oss-process=image/resize,h_160,m_lfit)
![[工具使用]WhatWeb(上)](https://ucc.alicdn.com/pic/developer-ecology/5cb4dcaa96b94256b3c5136e25e11eb8.png?x-oss-process=image/resize,h_160,m_lfit)
![[工具使用]WhatWeb(下)](https://ucc.alicdn.com/pic/developer-ecology/8458d19f59f5449982f4c43978823528.png?x-oss-process=image/resize,h_160,m_lfit)