Skip to content

joesmithjaffa/jenkins-shell

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

LICENSE

LICENSE

 
 

README.md

README.md

 
 

jenkins-cli.php

jenkins-cli.php

 
 

jenkins.php

jenkins.php

 
 

shodan.php

shodan.php

 
 

simple_html_dom.php

simple_html_dom.php

 
 

Repository files navigation

Hacking Jenkins using Shodan API

Requirements:

  1. Works on any platform
  2. PHP
  3. Shodan API Key
  4. PHP Curl

Usage

I have created 2 scripts for hacking jenkins in much easier way.

Hacking jenkins involves 2 steps:

  1. Execute shodan.php to get the list of all vulnerable jenkins URLs and on which user the jenkins is running
  2. To execute shell commands on jenkins server, run jenkins-cli.php. This script will take care of the exploits. Just sit back and do whatever you want on shell

Note : To get the shell, jenkins has to be running on linux server

Screenrecording

asciicast

Screenshots

Script 1

Script 1

Script 2

Script 2

About

Automating Jenkins Hacking using Shodan API

Topics

jenkins shodan hacking shodan-api

Resources

Readme

License

Apache-2.0 license
Activity

Stars

95 stars

Watchers

6 watching

Forks

19 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages