Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/MuhammadKhizerJaved/Insecure-Firebase-Exploit

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
https://github.com/MuhammadKhizerJaved/Insecure-Firebase-Exploit

Last synced: about 2 months ago
JSON representation

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.

Awesome Lists containing this project

README 

        
# Insecure-Firebase-Exploit

A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.



# Blog: 



https://blog.securitybreached.org/2020/02/04/exploiting-insecure-firebase-database-bugbounty/



# Usage: 



`Firebase-Write-Permission-Exploit.py` This is the Updated Version of Exploit i made. 

Now simply give the Database Name, File Name You wish to create, Your Information. 

And Write it to the Insecure/vulnerable firebase databases.



![Usage POC Image](/Write-Exploit.png)



**python Firebase-Write-Permission-Exploit.py**



```

Enter Firebase Databse Name: 

Enter Your Filename: 

Enter your name: 

Enter your email: 

Enter your Blog: 

Enter A Message: 

```