module

OS Command Exec, Unix Command Shell, Reverse TCP (via jjs)

Try Surface Command

Back to search

Disclosed	Created
N/A	Jun 9, 2025

Disclosed

N/A

Created

Jun 9, 2025

Description

Execute an OS command from PHP.

Connect back and create a command shell via jjs

Authors

Spencer McIntyre
conerpirate
bcoles [email protected]

Platform

PHP

Architectures

php

References

Source Code
History

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use payload/php/unix/cmd/reverse_jjs
    msf payload(reverse_jjs) > show actions
        ...actions...
    msf payload(reverse_jjs) > set ACTION < action-name >
    msf payload(reverse_jjs) > show options
        ...show and set options...
    msf payload(reverse_jjs) > run

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today