-
Notifications
You must be signed in to change notification settings - Fork 4
Home
In order to verify the impact of some of the security problems detected, among the most spread graph databases. With this purpose, a specific fingerprinting tool, called GraFScaN, was designed. GraFScaN discover and report the configuration and security in graph databases. Currently, Neo4j, OrientDB, ArangoDB, AllegroGraph and VirtuosoDB. Different active attacks were implemented (brute force attacks and DoS) and passive attacks (fingerprint the version of server). The tool scanning IPs in different formats (only IP, Network or a file with IPs) and you can configure your actions, only scan searching the graphdatabase or try to attack with differents attacks.
- Demostrations videos:
License: GNU General Public License v3.0 Your are on notice, that using this tool outside your "own" environment is considered malicious and is against the law. Use with caution.