myndtt / struts-rce-cve-2017-9805

Apache Struts RCE tool for CVE 2017-9805

• u: the target url;
• c: the command that'll be executed on a vulnerable target;
• f: automatically checks for RCE using a list of targets (one target per line);
• p: specify the port for a local listener - used with f option - (default: 8080)

go run main.go -u target -c command

go run main.go -f filename

go run main.go -f filename -p port