1. What is BrowserRider?
Browser Rider is a hacking framework to build payloads that exploit the browser.
The project aims to provide a powerful, simple and flexible interface to any
client side exploit. Browser Rider is not a new concept. Similar tools such as
BeEF or Backframe exploited the same concept. However most of the other existing
tools out there are unmainted, not updated and not documented. Browser Rider wants
to fill those gaps by providing a better alternative.
2. Features
- Easily create powerful payloads and plugins
- Manage payloads automatically with plugins
- All data can be saved in a database
- Obfuscation
- Polymorphism
- Control more than one zombie at a time
- Simple administration panel
3. Where to download it?
http://engineeringforfun.com/browserrider.html
4. Online demo
To test the framework, first open this page in a new window and do not close it. You can then go on the administration panel and you should see your ip in the zombie list.
5. Technical details
For Browser Rider to work you need:
- PHP 5, with json installed
- Mysql
- Apache with url_rewrite on
- Targets must have Javascript turned on
[ re-post : http://seclists.org/fulldisclosure/2008/Nov/0561.html ]
