elastic search dump tutorial
PocExploiter
What is it about?
- It is a manual process that will help you dump, you can use shodan, fofa, zoomeye of your choice but you can involve the necessary ports and filters that help you or facilitate the search.
Filters
/_search?q= It allows YOU to search for a keyword within the data
/_search allows you to view all the data
/_cat/indices/?v allows you to view the entire data schema in order
- you can use automated tools to dump and export, some have an authentication key so we must take into account what is necessary in shodan we have the filter:
port:9200 content-type: application/json
port 9200 is the one used to specify elastic and content-type: application/json is the format that gives us JSON as a response in this case
this is the number of potentially dumpable victims
[Image: all.png]
but some have very little data if you look at
HTTP/1.1 200 OK content-type: application/json; charset=UTF-8 content-length: 508 Elastic: Total Size: 4.61 MB Total Docs: 33,750
You will be able to notice that in total there is a weight of Total Size: 4.61 MB and the number of Total Docs records: 33,750
we can play with this by creating a filter like this:
port:9200 content-type: application/json Total Size: GB
and get a bigger weight on the data
[Image: records.png]
and we would obtain data of great weight.
Next we start to infiltrate but we are going to use our objective entering with it in our search engine (chrome or firefox).
192.168.0.1:9200
or also IP address: 9200
when entering we have as answer:
[Image: elas.png]
now to consult the schema where our future index data is
we use the following:
/_cat/indexes/
/_cat/indices/?v if you want to see the structure more organized
[Image: health.png]
now if we want to query any of the index schema for example orders we just use
IP:9200/orders/_search
and if we want to search for a specific word within that data we use: IP:9200/orders/_search?q= example
[Image: ready.png]
And Ready dump. you can use other automated tools to help you dump 1GB or more GB of data
PocExploiter
What is it about?
- It is a manual process that will help you dump, you can use shodan, fofa, zoomeye of your choice but you can involve the necessary ports and filters that help you or facilitate the search.
Filters
/_search?q= It allows YOU to search for a keyword within the data
/_search allows you to view all the data
/_cat/indices/?v allows you to view the entire data schema in order
- you can use automated tools to dump and export, some have an authentication key so we must take into account what is necessary in shodan we have the filter:
port:9200 content-type: application/json
port 9200 is the one used to specify elastic and content-type: application/json is the format that gives us JSON as a response in this case
this is the number of potentially dumpable victims
[Image: all.png]
but some have very little data if you look at
HTTP/1.1 200 OK content-type: application/json; charset=UTF-8 content-length: 508 Elastic: Total Size: 4.61 MB Total Docs: 33,750
You will be able to notice that in total there is a weight of Total Size: 4.61 MB and the number of Total Docs records: 33,750
we can play with this by creating a filter like this:
port:9200 content-type: application/json Total Size: GB
and get a bigger weight on the data
[Image: records.png]
and we would obtain data of great weight.
Next we start to infiltrate but we are going to use our objective entering with it in our search engine (chrome or firefox).
192.168.0.1:9200
or also IP address: 9200
when entering we have as answer:
[Image: elas.png]
now to consult the schema where our future index data is
we use the following:
/_cat/indexes/
/_cat/indices/?v if you want to see the structure more organized
[Image: health.png]
now if we want to query any of the index schema for example orders we just use
IP:9200/orders/_search
and if we want to search for a specific word within that data we use: IP:9200/orders/_search?q= example
[Image: ready.png]
And Ready dump. you can use other automated tools to help you dump 1GB or more GB of data
Verified & Trusted WesternUnion | MoneyGram | Bank - Transferring [299$ BTC for 2000$ WU]
Verified & Trusted Electronics Carding, Carding iPhone, Samsung Carding, MacBook Carding, Laptops Carding