Exploitation

Having both autenticated to redis and ftp it is dangerous practice to have them both open at the same time because with redis we can load modules directly from the folders that the ftp server runs.

GitHub - n0b0dyCN/RedisModules-ExecuteCommand: Tools, utilities and scripts to help you write redis modules!GitHub

Using this exploit. I used the command "make" to build the module.so that it is needed for this exploit.

After uploading the module.so to the pub directory all we had to do was go on google and look this up.

Direct Access on Pub Directory for Anonymous user on FTP server

The pub directory in anonymous access in ftp is located in /var/ftp/pub/module.so

PreviousRedis NextPriv Escalation

Last updated 2 years ago