Skip to content

indigo-sadland/pendejo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
modules
modules
 
 
README.md
README.md
 
 
pendejo.py
pendejo.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

pendejo - Pentaho RCE POC

This project is based on ginger but with essential modification of BeanShell code for getting better RCE expirience (which was lacking during one of my penetration testing).

Usage

Pendejo has only one mandatory parameter, the URL of the target Pentaho installation:

python3 pendejo.py http://localhost:8080/pentaho

Note: do not include a trailing slash (/)

python3 pendejo.py http://localhost:8080/pentaho -u admin -p password

When Pendejo establishes a connection with Pentaho BA, it will prompt and wait for commands. I've left only one command - cmd.

Command Reference
cmd execute cmd command. (Example: dir 'C:\\\\Windows')

About

No description or website provided.

Topics

pentaho rce pentest pentest-tool

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages