10.129.136.187
Task 1 – Which TCP port is open on the machine?
Scanned the target with “”nmap -A -p- 10.129.136.187””.
A: 6379
Task 2 – Which service is running on the port that is open on the machine?
A: redis
Task 3 – What type of database is Redis? Choose from the following options: (i) In-memory Database, (ii) Traditional Database
Knew this from previous knowledge.
A: In-memory Database
Task 4 – Which command-line utility is used to interact with the Redis server? Enter the program name you would enter into the terminal without any arguments.
Think I learned this from a TryHackMe box in the past.
A: redis-cli
Task 5 – Which flag is used with the Redis command-line utility to specify the hostname?
A: -h
Task 6 – Once connected to a Redis server, which command is used to obtain the information and statistics about the Redis server?
A: INFO
Task 7 – What is the version of the Redis server being used on the target machine?
Besides “”info””, Nmap results also gave us this.
A: 5.0.7
Task 8 – Which command is used to select the desired database in Redis?
A: SELECT
Task 9 – How many keys are present inside the database with index 0?
It skipped a few important parts here but to list databases you’ll need to run “”CONFIG GET databases””. That listed “databases” and “16”. To see what’s inside you can select and run “”KEYS *””. I didn’t find anything in those but the question mentioned index 0 anyways. Selected that, listed keys and we get 4 results.
Task 10 – Which command is used to obtain all the keys in a database?
The questions seem like in a weird order if you had no previous knowledge of interacting with redis but luckily I have.
A: KEYS *
Submit Flag:
To actually read the file, you’ll need to use “”GET””
A: 03e1d2b376c37ab3f5319922053953eb
Hacking Insights by Max Bautista 
Leave a comment