Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > crack analyzes > Content
Hot Articles
GE-Fanuc CIMPLICITY w32r
CA BrightStor ARCserve B
Apple iPhone Passcode Lo
Apple iPhone Passcode Lo
BitTorrent and uTorrent
FoosunCMS Sql Injection
KMail password encryptio
Rainbow awareness tool t
IE7 0Day crack analysis
Roams through three secu
Discuz! NT 2.5 pour into
Cracking the password pr
Ghost has the crack mirr
phpinfo cross station sc
Tomcat crack's analysis
Recommend Articles
Roams through three secu
FoosunCMS Sql Injection
In PHPCMS2.4 an interest
World browser local xss
Z-blog cross station scr
About XSS crack another
hzhost hypothesized main
php the escapeshellcmd m
Thunderclap ActiveX cont
360 security browser loc
The third party browser
The careful character re
Maxthon roams through br
Yahoo! Statistical funct
Using sohu website URL s
New Articles
The H?to half of all mal
Capital protects eyes cr
Agents of the secret net
fingerPIN launches multi
Tips to supply household
OCS Resolution Security
Spyware attacks tripled
Drink and drug driving c
Forgot your password?has
PKWARE PartnerLink membe
Masternaut provides live
Troj / Erazer-A Trojan i
Hacker of 21?Years old,
Free Firefox anti-phishi
Cyber-criminals are not
Tomcat crack's analysis use
  Add date: 12/02/2008   Publishing date: 12/02/2008   Hits: 202
After some Tomcat installment, not have revised the default password (spatially user admin, password to), like this may register directly.
Two tables of contents may visit:
/admin
/manager ml  
under /admin table of contents use:
Service--host--actions--Create New Context establishes the table of contents which hypothesized table of contents Document Base fills in you to want to glance over, for instance c:\, Path write casually, for example /guizai
Then direct http://ip/guizai may see the c plate content.
under /manager ml table of contents use:
      Here may upload a war document (to use in directly long-distance managing the tomcat service script document), from moves the establishment hypothesized catalog, therefore you may pack inside war yours jsp horse with ant, after then upload, visited under this hypothesized table of contents your jsp horse on OK.
Before I have encountered this kind of situation, but hit with ant has not made quite a while successfully, finally google to an article, the article name I has forgotten, the author was hyouhaku, at that time in his article said that he packed good, and has provided in the article appendix, but that appendix link expired, I added his QQ, wanted this document.
        Yesterday after neeao there saw “tomcat obtains the administration authority use” to let me think this thing, neeao there has also issued a war document, here I send.
job.war.rar
no.war.rar  
After the downloading, may use winrar to open, inside index.jsp is a jsp horse, you may replace you.
Attention: Before upload execution, certainly must change suffix .war to be only then good. after job.war upload execution, visits http://ip/job or http://ip/job/index.jsp directly then. after no.war upload execution, visits http://ip/no or http://ip/no/index.jsp directly then.
Prev:21-year-old hacker receives 57-month prison sentence for running zombie network Next:Smiles the day website management system management system crack to analyze

Comment:

Category: Home > crack analyzes
Home