RedTeam : New Whitepaper: JBoss AS – Deploying WARs with the DeploymentFileRepository MBean

{ Tag Archives } whitepaper

New Whitepaper: JBoss AS – Deploying WARs with the DeploymentFileRepository MBean

We released a new JBoss security whitepaper with the title “JBoss Application Server – Deploying WARs with the DeploymentFileRepository MBean” today. It explains how to deploy WAR files with the DeploymentFileRepository MBean and how this is even possible with Cross Site Request Forgery (CSRF). The paper is available at
http://www.redteam-pentesting.de/publications/jboss
This new informational page also contains the [...]

Also tagged deploymentfilerepository, jboss, metasploit, Paper, scripts

2010 06 15 phof Paper Comments (0)

“Who’s the JBoss now?” Whitepaper released

We finally released the Whitepaper for our JBoss Application Server talk (the one we held e.g. at the hack.lu 2008 and the 16th DFN-CERT).
The paper gives you a more detailed overview about the JBoss AS internals we used in the attacks, as well as a complete description of the individual exploitation techniques.
The only catch [...]

Also tagged jboss, security

2009 06 04 phof Hacking
Talks Comments (1)

RedTeam

{ Tag Archives } whitepaper

New Whitepaper: JBoss AS – Deploying WARs with the DeploymentFileRepository MBean

“Who’s the JBoss now?” Whitepaper released

Home

Pages

Categories

RSS Feeds

Meta

Blog Search

RedTeam

{ Tag Archives } whitepaper

New Whitepaper: JBoss AS – Deploying WARs with the DeploymentFileRepository MBean

“Who’s the JBoss now?” Whitepaper released

Home

Pages

Categories

Tags

RSS Feeds

Meta

Blog Search