Brute forcing Redis passwords
Redis does not support user authentication and can only be protected by a password. However, it is commonly found exposed with no password. As penetration testers or system administrators, we must check for weak passwords or no authentication every time we see this service.
This recipe describes how to perform brute-force password auditing against Redis with Nmap.
How to do it...
To perform brute-force password auditing against Redis, use the following Nmap command:
$ nmap -p6379 --script redis-brute <target>
If authentication is not enabled, the following message will be returned:
PORT STATE SERVICE 6379/tcp  open  unknown |_redis-brute: Server does not require authentication
How it works...
Redis does not support user authentication and can only be protected by a password if configured. But in real-life scenarios, there will be a lot of instances with no password. The redis-brute
script was designed to...