Weblogic: WebLogic is an application server produced by Oracle Corporation in the United States. To be precise, it is a middleware based on JAVAEE architecture. WebLogic is a Java application used to develop, integrate, deploy and manage large-scale distributed Web applications, network applications and database applications . server . Brings the dynamic capabilities of Java and the security of Java Enterprise standards into the development, integration, deployment, and management of large-scale web applications.
Default port: 7001
Default username weblogic
Default management path: console
1. Weak passwords
When the target is found to use Weblogic, try to use the default management path to access the backend
Then try it with a weak password, or use burp or other methods to run the dictionary. The page is as follows:
Click the red box in the above picture to enter the picture below:
Click install to enter the following image:
Click the red box to enter the upload page
Select your own war package to upload, click Next
Keep clicking next until it comes out to finish. Uploaded successfully.
You can access your own Trojan.
