JexBoss is a tool for testing and exploiting vulnerabilities in JBoss Application Server.
– python 2.7
The tool and exploits were developed and tested for versions 3, 4, 5 and 6 of the JBoss Application Server.
The exploitation vectors are:
+ /jmx-console; tested and working in JBoss versions 4, 5 and 6
+ /web-console/Invoker; tested and working in JBoss versions 4
+ /invoker/JMXInvokerServlet; ested and working in JBoss versions 4 and 5
git clone https://github.com/joaomatosf/jexboss.git