joesmithjaffa / Jenkins Shell
Licence: apache-2.0
Automating Jenkins Hacking using Shodan API
Stars: ✭ 84
Projects that are alternatives of or similar to Jenkins Shell
Entropy
Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.
Stars: ✭ 126 (+50%)
Mutual labels: hacking, shodan
Djangohunter
Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.
Stars: ✭ 212 (+152.38%)
Mutual labels: hacking, shodan
Shodan Dorks
Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.
Stars: ✭ 118 (+40.48%)
Mutual labels: hacking, shodan
Jenkins Rce
😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!
Stars: ✭ 262 (+211.9%)
Mutual labels: hacking, jenkins
Pwn jenkins
Notes about attacking Jenkins servers
Stars: ✭ 841 (+901.19%)
Mutual labels: hacking, jenkins
Awesome Shodan Queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Stars: ✭ 2,758 (+3183.33%)
Mutual labels: hacking, shodan
Billcipher
Information Gathering tool for a Website or IP address
Stars: ✭ 332 (+295.24%)
Mutual labels: hacking, shodan
Reconspider
🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Stars: ✭ 621 (+639.29%)
Mutual labels: hacking, shodan
Kill Router
Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.
Stars: ✭ 57 (-32.14%)
Mutual labels: hacking, shodan
Metasearch
Search aggregator for Slack, Google Docs, GitHub, and more 🔍
Stars: ✭ 81 (-3.57%)
Mutual labels: jenkins
Griefing Methods
A documentation about how to hack Minecraft servers
Stars: ✭ 76 (-9.52%)
Mutual labels: hacking
Gitlab Branch Source Plugin
Jenkins-Plugin to create a multi-branch-project from gitlab
Stars: ✭ 76 (-9.52%)
Mutual labels: jenkins
Burp Bounty Profiles
Burp Bounty profiles compilation, feel free to contribute!
Stars: ✭ 76 (-9.52%)
Mutual labels: hacking
Geo Recon
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
Stars: ✭ 82 (-2.38%)
Mutual labels: hacking
Envinject Plugin
This plugin makes it possible to setup a custom environment for your jobs
Stars: ✭ 74 (-11.9%)
Mutual labels: jenkins
Phpsploit
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
Stars: ✭ 1,188 (+1314.29%)
Mutual labels: hacking
Movies For Hackers
🎬 A curated list of movies every hacker & cyberpunk must watch.
Stars: ✭ 8,884 (+10476.19%)
Mutual labels: hacking
Hacking Jenkins using Shodan API
Requirements:
- Works on any platform
- PHP
- Shodan API Key
- PHP Curl
Usage
I have created 2 scripts for hacking jenkins in much easier way.
Hacking jenkins involves 2 steps:
- Execute shodan.php to get the list of all vulnerable jenkins URLs and on which user the jenkins is running
- To execute shell commands on jenkins server, run jenkins-cli.php. This script will take care of the exploits. Just sit back and do whatever you want on shell
Note : To get the shell, jenkins has to be running on linux server
Screenrecording
Screenshots
Script 1
Script 2
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].