https://github.com/giaplv57/redisMassExploit

Some handy scripts to collect hosts installed redis (using Shodan search engine) and exploit them
https://github.com/giaplv57/redisMassExploit

Last synced: 6 months ago
JSON representation

Some handy scripts to collect hosts installed redis (using Shodan search engine) and exploit them

Host: GitHub
URL: https://github.com/giaplv57/redisMassExploit
Owner: giaplv57
Created: 2016-08-23T18:36:29.000Z (about 9 years ago)
Default Branch: master
Last Pushed: 2016-09-04T10:46:29.000Z (about 9 years ago)
Last Synced: 2024-11-17T01:28:49.987Z (about 1 year ago)
Language: Python
Size: 3.91 KB
Stars: 33
Watchers: 4
Forks: 18
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-ip-search-engines - redisMassExploit Shodan

README

# redisMassExploit
Some handy script to collect hosts installed redis (using Shodan search engine) and exploit them

Requirements: `requests` and `paramiko` python modules, `redis-cli` program

##How to use
Using shodanCollector first to get a list of hosts installed redis (can collect more than 3000 IP at my execution time).
(I remove most of the hosts in this repo due to security concern)

Copy the archieved IP list to the "targets" file (in proper format) and run massAttack!!!

For further information and workaround, please take a look on [my post](https://medium.com/@giaplvk57/pwn-a-bunch-of-servers-using-a-redis-misconfiguration-and-shodan-search-engine-eaeeb2a1a14c#.vp18yclvg "Pwn a bunch of servers via a Redis misconfiguration and the Shodan search engine") in medium.

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/giaplv57/redisMassExploit

Awesome Lists containing this project

README