Redis-Server-Exploit

This will give you shell access on the target system if redis server is not configured properly and faced on the internet without any authentication

Disclaimer

This exploit is purely intended for educational purposes. I do not want anyone to use this exploit to actually hack into computers or do other illegal things. So I cannot be held responsible for any illegal purposes.

Pre-Requesties

A valid Username of the target system

Things to keep in mind

Default port of SSH 22/TCP
Default port of REDIS Server 6379/TCP
IP address of the target system and User of the target system served to script as arguments

Check if host is vulnerable

  Nmap scan report for  (ip) 							                                           										
	 Host is up (0.27s latency).												
	 PORT     STATE SERVICE VERSION                                                                                           	
	 6379/tcp open  redis   Redis key-value store

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commits
README.md		README.md
redis.py		redis.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

redis.py

redis.py

Repository files navigation

Redis-Server-Exploit

Disclaimer

Pre-Requesties

Things to keep in mind

Check if host is vulnerable

About

Releases

Packages

Languages

someshkoli/redis_exploit

Folders and files

Latest commit

History

README.md

README.md

redis.py

redis.py

Repository files navigation

Redis-Server-Exploit

Disclaimer

Pre-Requesties

Things to keep in mind

Check if host is vulnerable

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages