If a familiar Tomcat icon is found on the test home page, access port 8080 and go to the default Tomcat page.

There is a weak password login problem (user name: admin, password: blank). After login, enter the admin page, and you can see that the Tomcat version is 6.0.18. The operating system is Windows 2003

Notice that you can upload the WAR package here. Upload a pony shell. The war, trying to access http://localhost:8080/shell and http://localhost:8080/shell/shell.jsp

Visit http://localhost:8080/shell/shell.jsp appear an error 500, thus the shell has been uploaded successfully, were the ice to connect, find is the administrator account.

So far got the shell, can take the report with the project team clap the table roar way: your project team a can dozen all have no (hao elder brother’s classic quotation)!

Remote login

After knowing the existence of user administrator, the remote login password of port 3389 was broken, but failed.

You can create a user to log in remotely using the shell you’ve already got

Create a user

net user username password /add

Ps: Adding “$” to the end of the user name will hide the user when you use net user to view all users in the command line. Add the created user to the administrator group net LocalGroup Administrators USERNAME /add

You can now use the created user to log in remotely

Now you can turn off your phone and go home for a good night’s sleep. There is no technical difficulty, the key is good luck, hahaha.

mo4tech.com (Moment For Technology) is a global community with thousands techies from across the global hang out!Passionate technologists, be it gadget freaks, tech enthusiasts, coders, technopreneurs, or CIOs, you would find them all here.

Remember an instance of penetration

Remote login

Create a user

Remember an instance of penetration

Remote login

Create a user

Related Posts

Listen for global click events

Ant Design Pro V5: Use Estate

24. Object-oriented Foundation “Built-in Class Prototype Extension Method”