Skip to content
This repository has been archived by the owner on Jan 20, 2023. It is now read-only.
/ js-pp-poc Public archive

Proof of concept for prototype pollution attack on Redis drivers (node-redis & ioredis) for Node.js

5 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mostafa/js-pp-poc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
index.js
index.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Prototype Pollution Attack on Node.js Redis Drivers

Simply clone the project, install the dependencies with NPM/YARN and run the test:

$ npm install
$ npm run test

A byproduct of this exploit is that you can execute almost anything inside the toString function.

Project Codename

Sina Hatef (In loving memory of @null--)

About

Proof of concept for prototype pollution attack on Redis drivers (node-redis & ioredis) for Node.js

Topics

nodejs redis security exploit poc

Resources

Readme
Activity

Stars

5 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages