| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <etPan.56e98c9d.355d14cb.97e@Warning-Virus-found.local> Date: Wed, 16 Mar 2016 17:41:00 +0100 From: cr0hn <cr0hn@...hn.com> To: fulldisclosure@...lists.org Subject: [FD] New Security Tool: Enteletaor - Broker & MQ Injection tool Dear colleagues, Please, allow us to introduce Enteletaor -> https://github.com/cr0hn/enteletaor Enteletaor is a Message Queue & Broker Injection tool that implements attacks to: Redis, RabbitMQ and ZeroMQ. Some of the actions you can do: - Listing remote tasks. - Read remote task content. - Disconnect remote clients from Redis server (even the admin) - Inject tasks into remote processes. - Make a scan to discover open brokers. Currently supported brokers are: - RabbitMQ (or AMQP compatible). - ZeroMQ. - Redis. See documentation for more information: http://enteletaor.readthedocs.org/en/latest/ Please, feel free to start using it and we would be thankful for any type of feedback. Best regards, --- Daniel García (cr0hn) Security researcher and ethical hacker Personal site: http://cr0hn.com(http://cr0hn.com/) Linkedin: https://www.linkedin.com/in/garciagarciadaniel Company: http://abirtone.com(http://abirtone.com/) Twitter: @ggdaniel(https://twitter.com/ggdaniel) _______________________________________________ Sent through the Full Disclosure mailing list https://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
Powered by blists - more mailing lists