Redis 6379
1. Redis Server Exploitation
https://github.com/Avinash-acid/Redis-Server-Exploit
python redis.py 10.10.10.160 redis
2. Masscan - Scanning for Open Redis Servers
masscan -p6379 --rate=100000 -j 4 --wait 0 --exclude=22,80,443 -iL ips.txt -oG redis_scan_results.txt
You can use this file (ips.txt
) from external sources like:
https://ipv4.fetus.jp/it.txt
ips.txt contains a list of IP addresses to be scanned.
3. Censys Query for Redis
Use the following Censys query to search for Redis servers:
services.redis.ping_response: "PONG"
Last updated