Skip to content

This repository contains some bettercap transparent proxy example modules.

Notifications You must be signed in to change notification settings

olfMombach/bettercap-proxy-modules

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 

Repository files navigation

This repository contains some bettercap transparent proxy example modules.

HTTP(S) Proxy Modules

  • http/beefbox.rb - Similar to injectjs but specialized to work with the BeEF framework.
  • http/debug.rb - Debug HTTP requests and responses.
  • http/simple_post.rb - Intercept and display only selected POST fields.
  • http/location_hijacking.rb - Hijack Location header with custom URL.
  • http/replace_images.rb - Replace all images with a custom one.
  • http/rickroll.rb - Inject an iframe with the (in)famous RickRoll video in autoplay mode.
  • http/hack_title.rb - Add a "HACKED" text to website titles.
  • http/replace_file.rb - Replace downloaded files on the fly with custom ones.
  • http/download_hijack.rb - Renames local malicious files and redirects the victim's downloads.

TCP Proxy Modules

  • tcp/debug.rb - Simply hex-dumps all TCP traffic going through the proxy.
  • tcp/sshdowngrade.rb - If possible, perform a SSH 2.x -> 1.x downgrade attack.
  • tcp/mssqlauth.rb - Downgrades MSSQL encryption and capture login credentials.
  • tcp/netsed.rb - NetSed like tcp proxy module.

Vulnerability Specific

  • http/androidpwn.rb - Will execute a custom command on each Android device exploiting the "addJavascriptInterface" vulnerability.
  • http/osxsparkle.rb - Will execute a custom Mach-O OSX executable on each OSX machine exploiting the Sparkle Updater vulnerability https://vulnsec.com/2016/osx-apps-vulnerabilities/ .
  • http/airdroid_info.rb - Show leaked credentials from AirDroid traffic ( more here ).
  • http/airdroid_rce.rb - Serve a spoofed update package to AirDroid in order to get RCE ( more here ).

About

This repository contains some bettercap transparent proxy example modules.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Ruby 94.4%
  • JavaScript 3.9%
  • CSS 1.7%