Hook latest Firefox and IE on Windows 7 with BeEF through reflected and stored XSS.
Demo of the following modules:
- Pretty Theft
- IFrame Keylogger (same-origin)
- Malicious Firefox Extension Dropper
- (Self) Signed Java Applet dropper on IE 10
The payload is a reverse meterpreter HTTPS encoded with Veil (AES).
Happy unholy holidays!
