JexBoss v1.1.2 - Jboss verify and Exploitation Tool.

JexBoss v1.1.2 – Jboss verify and Exploitation Tool.

Changelog Jexboss v1.1.2:
* Added support for reverse shell (meterpreter, etc).
* Improvements in exploits to support complex commands with pipe and etc (|,>, <, etc …)
* Fixes and improvements.

jexboss v1.1.2

jexboss v1.1.2

jexboss v1.0.15

jexboss v1.0.15

JexBoss is a tool for testing and exploiting vulnerabilities in JBoss Application Server.
Requirements
+ Python >= 2.7.x
+ urllib3jexboss1

Features:
The tool and exploits were developed and tested for versions 3, 4, 5 and 6 of the JBoss Application Server.
The exploitation vectors are:
* /admin-console [ NEW ]
+-+ tested and working in JBoss versions 5 and 6
* /jmx-console
+-+ tested and working in JBoss versions 4, 5 and 6
* /web-console/Invoker
+-+ tested and working in JBoss versions 4
* /invoker/JMXInvokerServlet
+-+ tested and working in JBoss versions 4 and 5

Usage:

Source: https://github.com/joaomatosf | Our Post Before