BeEF是一个用于合法研究和测试目的的专业浏览器漏洞利用框架。它允许有经验的渗透测试人员或系统管理员对目标进行攻击测试。攻击成功以后会加载浏览器劫持会话。BEEF可以利用跨站脚本漏洞。目前beef更新至0.4.2.10 alpha版，新版主要改变如下:
    This alpha release focused on stabilising (thanks to Saafan and Ben Passmore) the framework and increasing the maturity of the development cycle. Robert Redder’s testing and feedback has made a massive contribution to the project here. Another big improvement is the introduction of unit tests that will be run by the developers prior to each commit.
工具下载:http://code.google.com/p/beef/downloads/list