WebLogic-Shiro-shell icon indicating copy to clipboard operation
WebLogic-Shiro-shell copied to clipboard

Published 20 hours ago verified publisher icon Y4er

Metadata

WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell

Results 1 WebLogic-Shiro-shell issues
Sort by recently updated
recently updated
newest added

请问不是直接运行AntSwordFiltershell这个文件就可以了吗

’‘’ 现在就可以直接打了。先把org.chabug.memshell.InjectFilterShell打jar包 jar cvf tttt.jar org\chabug\memshell\InjectFilterShell.class image-20200825105630712 然后把tttt.jar和AntSwordFilterShell.class写入目标。最后用CVE_2020_2883_URLClassLoader生成rememberMe Cookie打目标就行了。 URLClassLoader -> tttt.jar -> InjectFilterShell static -> defineClass byte -> AntSwordFilterShell ‘’‘ 请问我还是需要这样的操作生成的内存马才有效吗,谢谢

CaiH123 avatar CaiH123

Metadata

453
Stars
63
Forks
Watchers

Owner

verified publisher icon Y4er

Metadata

WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell

Back