Tuesday, July 20, 2010

Hacking Server Through Apache Manager Console

While testing many times we come across tomcat servers and various vulnerabilities related with the old version. The most common one is open Tomcat Managers Console on port 8080 Or 8081.

I have seen most of the people just try to brutforce the credentials and show the screenshot without going further and actually exploiting and taking over the base operating system. so lets discuss in detail,

1) Brutforce the appache tomcat managers console. You can manually tomcat / tomcat Or even use auxiliary scanner module from metasploit - Tomcat_mgr_login It will test for common username and passwords for Apache.

2) You have found credentials for login













3) now fire up tomcat_mgr_deploy from metasploit and choose the applicable payload and target. in my case It was Linux and Payload was Linux Shell.












4) Target Comprised :) ....... Best thing is to show this in External PT.









































Next Topic would be Hacking Server Through JBoss Console............

No comments: