Solr-GRAB is a tool to Steal Apache Solr instance Queries with or without a username and password.
Note : This project should be used for authorized testing and educational purposes only.
Download
git clone https://github.com/GnosticPlayers/Solr-GRAB
Usage
You can search for Apache Solr Instances via Censys, with the dork "Welcome To Solr"
or "Apache Solr Admin"
. To grab queries, simply go to the http access point, sometimes being on port 80, 443 or 8080.
"http://127.0.0.1/"
."users/"
."id"
or "global_id"
."74332"
.Now execute it with: bash index.sh
.
Sometimes, you’ll have an error where it’s a 404 not found. If that’s the case, add "/solr/"
between "http://URLHERE/"
& "PROJECTHERE"
, such as: https://127.0.0.1/solr/users/
. This should fix the problem.
JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…
The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…
Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…
SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…
Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…
Cybersecurity tools play a critical role in safeguarding digital assets, systems, and networks from malicious…