Skip to content

joesmithjaffa/jenkins-shell

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
jenkins-cli.php
jenkins-cli.php
 
 
jenkins.php
jenkins.php
 
 
shodan.php
shodan.php
 
 
simple_html_dom.php
simple_html_dom.php
 
 

Repository files navigation

Hacking Jenkins using Shodan API

Requirements:

  1. Works on any platform
  2. PHP
  3. Shodan API Key
  4. PHP Curl

Usage

I have created 2 scripts for hacking jenkins in much easier way.

Hacking jenkins involves 2 steps:

  1. Execute shodan.php to get the list of all vulnerable jenkins URLs and on which user the jenkins is running
  2. To execute shell commands on jenkins server, run jenkins-cli.php. This script will take care of the exploits. Just sit back and do whatever you want on shell

Note : To get the shell, jenkins has to be running on linux server

Screenrecording

asciicast

Screenshots

Script 1

Script 1

Script 2

Script 2

About

Automating Jenkins Hacking using Shodan API

Topics

jenkins shodan hacking shodan-api

Resources

Readme

License

Apache-2.0 license
Activity

Stars

94 stars

Watchers

6 watching

Forks

19 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages