Identified as 'GNU Classpath grmiregistry on Linux based systems.
nmap -sT -p 1099 -sV <IP> nmap -sV --script "rmi-dumpregistry or rmi-vuln-classloader" -p <PORT> <IP> # Metasploit use auxiliary/scanner/misc/java_rmi_server use auxiliary/gather/java_rmi_registry
exploit/multi/misc/java_rmi_server
Last updated 2 years ago