JBoss Autopwn – JSP Hacking Tool For JBoss AS Server
This JBoss script deploys a JSP shell on the target JBoss AS server. Once deployed, the script uses its upload and command execution capability to provide an interactive session.
Features
- Multiplatform support – tested on Windows, Linux and Mac targets
- Support for bind and reverse bind shells
- Meterpreter shells and VNC support for Windows targets
Installation
Dependencies include
- Netcat
- Curl
- Metasploit v3, installed in the current path as “framework3″
You can download JBoss Autopwn here:
Or read more here.
Tweet
Posted in: 
Recent in Exploits/Vulnerabilities:
- US Subway Stores POS Hacked For $3Million Dollars
- No BEAST Fix From Microsoft In December Patch Tuesday – But They Fixed Duqu Bug
- Apple Bans Security Researcher Charlie Miller For Exposing iOS Exploit
Related Posts:
- winAUTOPWN v2.8 Released For Download – Windows Auto-Hacking Toolkit
- Metasploit 3.4.0 Hacking Framework Released – Over 100 New Exploits Added
- Gooscan – Automated Google Hacking Tool
Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 192,527 views
- AJAX: Is your application secure enough? - 115,792 views
- eEye Launches 0-Day Exploit Tracker - 81,954 views
Hey, man! Link don’t work, plz update! Tnx! )
The whole github profile of spiderlabs is not available, any mirror will be appreciated.
This exploit is the same to http://www.nruns.com/_downloads/Whitepaper-Hacking-jBoss-using-a-Browser.pdf or am i wrong?