Solr-GRAB is a tool to Steal Apache Solr instance Queries with or without a username and password.
Note : This project should be used for authorized testing and educational purposes only.
Download
git clone https://github.com/GnosticPlayers/Solr-GRAB
Usage
You can search for Apache Solr Instances via Censys, with the dork "Welcome To Solr"
or "Apache Solr Admin"
. To grab queries, simply go to the http access point, sometimes being on port 80, 443 or 8080.
"http://127.0.0.1/"
."users/"
."id"
or "global_id"
."74332"
.Now execute it with: bash index.sh
.
Sometimes, you’ll have an error where it’s a 404 not found. If that’s the case, add "/solr/"
between "http://URLHERE/"
& "PROJECTHERE"
, such as: https://127.0.0.1/solr/users/
. This should fix the problem.
AutoExif is a powerful Bash script designed to streamline the process of editing image metadata…
SimpleImager V4.3, your go-to tool for streamlined system imaging and data acquisition. Designed to simplify…
MetaOSINT enables open source intelligence ("OSINT") practitioners to jumpstart their investigations by quickly identifying relevant,…
ThreatPinch Lookup creates informational tooltips when hovering oven an item of interest on any website.…
Myself and any other potential contributors to this website are NOT in any way affiliated…
The Mobile Evidence Acquisition Toolkit designed by BlackStone Discovery. Developed to enhance digital forensics, this…