[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[FD] New Security Tool: Enteletaor - Broker & MQ Injection tool
- To: fulldisclosure@xxxxxxxxxxxx
- Subject: [FD] New Security Tool: Enteletaor - Broker & MQ Injection tool
- From: cr0hn <cr0hn@xxxxxxxxx>
- Date: Wed, 16 Mar 2016 17:41:00 +0100
Dear colleagues,
Please, allow us to introduce Enteletaor -> https://github.com/cr0hn/enteletaor
Enteletaor is a Message Queue & Broker Injection tool that implements attacks
to: Redis, RabbitMQ and ZeroMQ.
Some of the actions you can do:
- Listing remote tasks.
- Read remote task content.
- Disconnect remote clients from Redis server (even the admin)
- Inject tasks into remote processes.
- Make a scan to discover open brokers.
Currently supported brokers are:
- RabbitMQ (or AMQP compatible).
- ZeroMQ.
- Redis.
See documentation for more information:
http://enteletaor.readthedocs.org/en/latest/
Please, feel free to start using it and we would be thankful for any type
of feedback.
Best regards,
---
Daniel García (cr0hn)
Security researcher and ethical hacker
Personal site: http://cr0hn.com(http://cr0hn.com/)
Linkedin: https://www.linkedin.com/in/garciagarciadaniel
Company: http://abirtone.com(http://abirtone.com/)
Twitter: @ggdaniel(https://twitter.com/ggdaniel)
_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/