-
Notifications
You must be signed in to change notification settings - Fork 4
Home
Miguel edited this page Aug 9, 2017
·
3 revisions
In order to verify the impact of some of the security problems detected, among the most spread graph databases. With this purpose, a specific fingerprinting tool, called GraFScaN, was designed. GraFScaN discover and report the configuration and security in graph databases. It Supports:
- Neo4j
- OrientDB
- ArangoDB
- AllegroGraph
- VirtuosoDB
Different active attacks were implemented:
- brute force attacks
- DoS
Passive attacks:
- fingerprint the version of server
The tool scanning IPs in different formats:
- Only IP
- Network
- File with IPs
You can configure your actions, it only search the graph database or try to attack with differents attacks.