Hacking the Java Debug Wire Protocol - or - “How I met your Java debugger”TL;DR: turn any open JDWP service into reliable remote code execution (exploit inside) This is the story of how I came across an interesting protocol during a recent code review engagement for IOActive and turned it into a reliable way to execute remote code. In this post, I will explain the Java Debug Wire Protocol (JDWP) and why it is interesting from a penetration tester’s point of view. I will
