9 matches found
Riak Insecure Default Configuration / Remote Command Execution
Riak KV Insecure Default Cookie RCE ===== Intro ===== Riak is a NoSQL key-value database that is built to maximize data availability and performance, especially useful for eg. big data environments. It's built to survive data and network failures with design principles similar to DynamoDB while...
Sit-down with Wallarm CTO, Alex Golovko
I have had a chance to pose a few questions to Alexander Golovko, one of the co-founders of Wallarm and our CTO. Here are Alex’s reflections on Wallarm and some technology trends. How did Wallarm get its start? Ivan Wallarm’s founder has involved me in various projects on and off since 2010. By...
Distributed File Analysis Framework: Assemblyline
Assemblyline is a scalable distributed file analysis framework . It is designed to process millions of files per day but can also be installed on a single box. Canada’s electronic spy agency says it is taking the “unprecedented step” of releasing one of its own cyber defence tools to the public, ...
SSRF, Memcached and other key-value injections in the wild
Back in 2012 we released SSRF a different techniques to exploit Memcached servers and other services with host-based authentication through SSRF. Two years after, in 2014, I presented a Memcached injection techniques at Black Hat USA . There I mentioned that it’s possible to exploit it as a Remot...
Basho Riak Detection
The script sends a connection request to the server and attempts to extract the version number from the reply. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...
[SECURITY] Fedora 23 Update: php-doctrine-cache-1.4.2-1.fc23
Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...
[SECURITY] Fedora 22 Update: php-doctrine-cache-1.4.2-1.fc22
Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...
[SECURITY] Fedora 21 Update: php-doctrine-cache-1.4.2-1.fc21
Cache component extracted from the Doctrine Common project. Optional: APC php-pecl-apc Couchbase http://pecl.php.net/package/couchbase Memcache php-pecl-memcache Memcached php-pecl-memcached MongoDB php-pecl-mongo Redis php-pecl-redis Riak http://pecl.php.net/package/riak XCache php-xcache...
riak-http-info NSE Script
Retrieves information such as node name and architecture from a Basho Riak distributed database using the HTTP protocol. Script Arguments slaxml.debug See the documentation for the slaxml library. http.host, http.max-body-size, http.max-cache-size, http.max-pipeline, http.pipeline,...