← Back to All Scanners
Injection AttacksCritical Severity

NoSQL Injection - Redis Scanner

Tests for Redis command injection and Lua script vulnerabilities.

Try This Scanner

What is NoSQL Injection - Redis?

Redis Command Injection occurs when attackers can inject Redis commands through unsanitized user input. Since Redis commands are text-based and separated by newlines (CRLF), attackers can terminate intended commands and inject malicious ones. Redis also supports Lua scripting, which can be exploited for more complex attacks including file system access and code execution.

Why is This Important?

Redis is widely used for caching, session storage, and message queuing in modern applications. Command injection can lead to data theft, session hijacking, denial of service, and potentially full server compromise. Since Redis often stores sensitive session data and runs with elevated privileges, exploitation can have severe consequences.

How It Works

1. Input Discovery

Maps all user input points including forms, headers, cookies, and API parameters for injection testing.

2. Injection Testing

Executes sophisticated injection payloads designed to bypass filters and WAFs while detecting vulnerabilities.

3. Exploitation Validation

Confirms vulnerabilities through safe exploitation, providing proof-of-concept and impact assessment.

Key Capabilities

Advanced injection detection engine combining signature-based and AI-powered analysis for comprehensive coverage.

  • Multi-vector injection testing across all input types
  • WAF and filter bypass techniques built-in
  • Database-specific payload optimization
  • Out-of-band detection for blind vulnerabilities
  • Automated proof-of-concept generation

Frequently Asked Questions

How does Redis command injection work?

Redis uses a simple text protocol where commands are separated by CRLF ( ). If user input is concatenated into Redis commands without sanitization, attackers can inject newlines to terminate the current command and add malicious commands like CONFIG, DEBUG, or SLAVEOF.

What can attackers do with Redis injection?

Attackers can steal or modify cached data, hijack user sessions, flush all data (DoS), write arbitrary files using CONFIG SET dir and CONFIG SET dbfilename, execute Lua scripts, replicate data to attacker-controlled servers, or use Redis as a pivot for further attacks.

Is Redis Lua scripting dangerous?

Lua in Redis is sandboxed but can still be dangerous. Scripts run atomically and can access all keys. In older versions, certain Lua functions could access the file system. Even in sandboxed mode, complex scripts can cause DoS through CPU exhaustion.

How do I secure Redis against injection?

Never expose Redis to the internet, use Redis ACLs to restrict commands, sanitize all user input, use parameterized commands from client libraries, disable dangerous commands like CONFIG and DEBUG, enable authentication, and run Redis with minimal privileges.

Related Scanners

NoSQL Injection - MongoDBCritical
Learn more →
NoSQL Injection - CouchDBCritical
Learn more →
NoSQL Injection - CassandraCritical
Learn more →
SSTI - Jinja2Critical
Learn more →

Ready to secure your application?

Start testing for nosql injection - redis vulnerabilities today.

Get Started Free