JexBoss: Jboss verify and Exploitation Tool.

JexBoss: Jboss verify and Exploitation Tool.

JexBoss is a tool for testing and exploiting vulnerabilities in JBoss Application Server.

JexBoss: Jboss verify and EXploitation Tool

JexBoss: Jboss verify and EXploitation Tool

Requirement:
– python 2.7
– urllib3
Features:
The tool and exploits were developed and tested for versions 3, 4, 5 and 6 of the JBoss Application Server.
The exploitation vectors are:
+ /jmx-console; tested and working in JBoss versions 4, 5 and 6
+ /web-console/Invoker; tested and working in JBoss versions 4
+ /invoker/JMXInvokerServlet; ested and working in JBoss versions 4 and 5

Installation:

Source: https://github.com/joaomatosf