Detecting Cassandra databases with no authentication enabled
By default, Cassandra databases don't have authentication enabled. Apache Cassandra databases are commonly found completely open and accessible remotely because authentication and authorization must be configured manually.
This recipe describes how to use Nmap to detect Apache Cassandra instances with no authentication enabled.
How to do it...
To detect Apache Cassandra databases with no authentication, use the following Nmap command:
$ nmap -p9160 --script cassandra-brute <target>
If authentication is not enabled, the following message will be returned:
PORT STATE SERVICE 9160/tcp open apanil |_cassandra-brute: Any username and password would do, 'default' was used to test
How it works...
The cassandra-brute
script was written to perform brute-force password auditing. Because Apache Cassandra does not have authentication enabled by default, it is common to...