1
id: redis-pass-brute
2
info:
3
  name: redis password bruteforce
4
  author: tarunKoyalwar
5
  severity: high
6
  description: |
7
    This template bruteforces passwords for protected redis instances.
8
    If redis is not protected with password. it is also matched
9
  metadata:
10
    shodan-query: product:"redis"
11

12

13
javascript:
14
  - pre-condition: |
15
      isPortOpen(Host,Port)
16

17
    code: |
18
      var m = require("nuclei/redis");
19
      m.GetServerInfoAuth(Host,Port,Password);
20

21
    args:
22
      Host: "{{Host}}"
23
      Port: "6379"
24
      Password: "{{passwords}}"
25

26
    payloads:
27
      passwords:
28
        - ""
29
        - root
30
        - password
31
        - admin
32
        - iamadmin
33
    stop-at-first-match: true
34

35
    matchers-condition: and
36
    matchers:
37
      - type: word
38
        words:
39
          - "redis_version"
40
      - type: word
41
        negative: true
42
        words:
43
          - "redis_mode:sentinel"
44

45