Hiddenden/beef
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
red/dev
beef/modules/exploits/jboss_jmx_upload_exploit/config.yaml
zinduolis 95793433fa Update copyright year to 2026
2025-12-26 19:18:05 +10:00

17 lines
942 B
YAML
Raw Permalink Blame History

#
# Copyright (c) 2006-2026 Wade Alcorn - wade@bindshell.net
# Browser Exploitation Framework (BeEF) - https://beefproject.com
# See the file 'doc/COPYING' for copying permission
#
beef:
module:
jboss_jmx_upload_exploit:
enable: true
category: "Exploits"
name: "Jboss 6.0.0M1 JMX Deploy Exploit"
description: "Deploy a JSP reverse or bind shell (Metasploit one) using the JMX exposed deploymentFileRepository MBean of JBoss. The first request made is a HEAD one to bypass auth and deploy the malicious JSP, the second request is a GET one that triggers the reverse connection to the specified MSF listener.<br />Remember to run the MSF multi/handler listener with java/jsp_shell_reverse_tcp as payload, in case you are using the reverse payload."
authors: ["antisnatchor", "l33tb0y"]
target:
working: ["ALL"]
not_working: "O"
Reference in New Issue View Git Blame Copy Permalink