Skip to content

Commit

Permalink
Update docs
Browse files Browse the repository at this point in the history
  • Loading branch information
@msjenkins-r7
msjenkins-r7 committed May 9, 2024
1 parent 9dd688e commit 0adda7a
Show file tree
Hide file tree
Showing 2,979 changed files with 16,824 additions and 12,368 deletions.
0 ...ests/data/attachments/19fcc8771f5ad9d.txt → ...sts/data/attachments/11351619fa45a463.txt
View file
File renamed without changes.
2 changes: 1 addition & 1 deletion ...sts/data/attachments/d4bb764d2c6ea799.txt → ...sts/data/attachments/13d76fb9c3a3dc38.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,4 +13,4 @@ run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306

## Replication commands
use auxiliary/scanner/mysql/mysql_version
run session=3 Verbose=true
run session=4 Verbose=true
0 ...sts/data/attachments/1c1fb1852c6080eb.txt → ...sts/data/attachments/15f66cd4014bee35.txt
View file
File renamed without changes.
2 changes: 1 addition & 1 deletion ...sts/data/attachments/91ed8160ab8d695f.txt → ...sts/data/attachments/16d07a2f306825e5.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,4 +13,4 @@ run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306

## Replication commands
use post/test/mysql
run session=1 Verbose=true
run session=3 Verbose=true
10 changes: 5 additions & 5 deletions ...sts/data/attachments/df7297dac1759afd.txt → ...sts/data/attachments/1a7d1b1815cf5a50.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,21 +6,21 @@ Stopping all jobs...
msf6 auxiliary(scanner/mysql/mysql_login) > [+] 127.0.0.1:3306 - 127.0.0.1:3306 - Found remote MySQL version 5.5.42
[!] 127.0.0.1:3306 - No active DB -- Credential data will not be saved!
[+] 127.0.0.1:3306 - 127.0.0.1:3306 - Success: 'root:password'
[*] MySQL session 4 opened (127.0.0.1:39701 -> 127.0.0.1:3306) at 2024-05-02 08:40:26 +0000
use auxiliary/admin/mysql/mysql_sql
[*] MySQL session 2 opened (127.0.0.1:36009 -> 127.0.0.1:3306) at 2024-05-09 12:16:22 +0000
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
[*] 127.0.0.1:3306 - Bruteforce completed, 1 credential was successful.
[*] 127.0.0.1:3306 - 1 MySQL session was opened successfully.
[*] Auxiliary module execution completed
msf6 auxiliary(scanner/mysql/mysql_login) > run session=4 Verbose=true
msf6 auxiliary(scanner/mysql/mysql_login) > use auxiliary/admin/mysql/mysql_sql
run session=2 Verbose=true
[*] New in Metasploit 6.4 - This module can target a SESSION or an RHOST
msf6 auxiliary(admin/mysql/mysql_sql) > [*] Using existing session 4
msf6 auxiliary(admin/mysql/mysql_sql) > [*] Using existing session 2
[*] Sending statement: 'select version()'...
[*] 127.0.0.1:3306 MySQL - querying with 'select version()'
[*] | 5.5.42 |
[*] Auxiliary module execution completed
sessions -K
msf6 auxiliary(admin/mysql/mysql_sql) > jobs -K
[*] Killing all sessions...
[*] 127.0.0.1 - MySQL session 4 closed.
[*] 127.0.0.1 - MySQL session 2 closed.
msf6 auxiliary(admin/mysql/mysql_sql) >
0 ...sts/data/attachments/c8ddf2dc29645a03.txt → ...sts/data/attachments/1d84b458a3a7d5da.txt
View file
File renamed without changes.
0 ...sts/data/attachments/30cd991db0eb764c.txt → ...sts/data/attachments/1e6fd6e0e90cff64.txt
View file
File renamed without changes.
0 ...sts/data/attachments/d3e5b00a8e17a94d.txt → ...sts/data/attachments/1fd1eca5486e93fe.txt
View file
File renamed without changes.
10 changes: 5 additions & 5 deletions ...sts/data/attachments/e0e71738c0cb9902.txt → ...sts/data/attachments/2603797748b8cc24.txt
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
use auxiliary/admin/mysql/mysql_enum
Stopping all jobs...
msf6 auxiliary(scanner/mysql/mysql_version) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
msf6 auxiliary(admin/mysql/mysql_sql) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
[*] New in Metasploit 6.4 - This module can target a SESSION or an RHOST
msf6 auxiliary(admin/mysql/mysql_enum) > [*] Running module against 127.0.0.1
[+] 127.0.0.1:3306 - 127.0.0.1:3306 MySQL - Logged in to '' with 'root':'password'
Expand All @@ -10,7 +10,7 @@ Stopping all jobs...
[*] 127.0.0.1:3306 - MySQL Version: 11.3.2-MariaDB-1:11.3.2+maria~ubu2204
[*] 127.0.0.1:3306 - Compiled for the following OS: debian-linux-gnu
[*] 127.0.0.1:3306 - Architecture: x86_64
[*] 127.0.0.1:3306 - Server Hostname: ca8645ba2028
[*] 127.0.0.1:3306 - Server Hostname: ba6306661377
[*] 127.0.0.1:3306 - Data Directory: /var/lib/mysql/
[*] 127.0.0.1:3306 - Logging of queries and logins: ON
[*] 127.0.0.1:3306 - Log Files Location: OFF
Expand All @@ -32,9 +32,9 @@ Stopping all jobs...
[!] 127.0.0.1:3306 - No active DB -- Credential data will not be saved!
[+] 127.0.0.1:3306 - User: root Host: localhost Password Hash: *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19
[+] 127.0.0.1:3306 - User: root Host: % Password Hash: *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19
[+] 127.0.0.1:3306 - User: healthcheck Host: 127.0.0.1 Password Hash: *A8AB1309DAF0335EC941306AC6A6D5E2380FB6C5
[+] 127.0.0.1:3306 - User: healthcheck Host: ::1 Password Hash: *A8AB1309DAF0335EC941306AC6A6D5E2380FB6C5
[+] 127.0.0.1:3306 - User: healthcheck Host: localhost Password Hash: *A8AB1309DAF0335EC941306AC6A6D5E2380FB6C5
[+] 127.0.0.1:3306 - User: healthcheck Host: 127.0.0.1 Password Hash: *334F68210D50581A2EE080F911417A8F8D982DC4
[+] 127.0.0.1:3306 - User: healthcheck Host: ::1 Password Hash: *334F68210D50581A2EE080F911417A8F8D982DC4
[+] 127.0.0.1:3306 - User: healthcheck Host: localhost Password Hash: *334F68210D50581A2EE080F911417A8F8D982DC4
[*] 127.0.0.1:3306 - 127.0.0.1:3306 MySQL - querying with 'select user, host, ssl_type from mysql.user where
(ssl_type = 'ANY') or
(ssl_type = 'X509') or
Expand Down
37 changes: 0 additions & 37 deletions acceptance-tests/data/attachments/28b8586871d1935a.txt
View file

This file was deleted.

0 ...sts/data/attachments/4a8d06951d371838.txt → ...sts/data/attachments/28d45acb4db48a33.txt
View file
File renamed without changes.
0 ...sts/data/attachments/33113e07caf843ee.txt → ...sts/data/attachments/2984d0c96c9250d3.txt
View file
File renamed without changes.
0 ...sts/data/attachments/14857c286ca178d4.txt → ...sts/data/attachments/2c77793b100ba125.txt
View file
File renamed without changes.
2 changes: 1 addition & 1 deletion ...sts/data/attachments/b1528bf504a6d7e3.txt → ...sts/data/attachments/2ec276131809a995.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,4 +13,4 @@ run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306

## Replication commands
use post/test/mysql
run session=1 Verbose=true
run session=4 Verbose=true
2 changes: 1 addition & 1 deletion ...sts/data/attachments/ae5e8456d1abf82c.txt → ...sts/data/attachments/3155730121901c32.txt
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
use auxiliary/scanner/mysql/mysql_version
Stopping all jobs...
msf6 auxiliary(scanner/mysql/mysql_version) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
msf6 auxiliary(admin/mysql/mysql_sql) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
[*] New in Metasploit 6.4 - This module can target a SESSION or an RHOST
msf6 auxiliary(scanner/mysql/mysql_version) > [+] 127.0.0.1:3306 - 127.0.0.1:3306 is running MySQL 5.5.42 (protocol 10)
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
Expand Down
0 ...sts/data/attachments/7fc778f687efef47.txt → ...sts/data/attachments/33ef8a4ac15a8654.txt
View file
File renamed without changes.
16 changes: 8 additions & 8 deletions ...sts/data/attachments/ad099437f21acb8c.txt → ...sts/data/attachments/37c6c9161182f0e3.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,22 +6,22 @@ Stopping all jobs...
msf6 auxiliary(scanner/mysql/mysql_login) > [+] 127.0.0.1:3306 - 127.0.0.1:3306 - Found remote MySQL version 11.3.2
[!] 127.0.0.1:3306 - No active DB -- Credential data will not be saved!
[+] 127.0.0.1:3306 - 127.0.0.1:3306 - Success: 'root:password'
[*] MySQL session 3 opened (127.0.0.1:33449 -> 127.0.0.1:3306) at 2024-05-02 08:40:26 +0000
[*] MySQL session 2 opened (127.0.0.1:40649 -> 127.0.0.1:3306) at 2024-05-09 12:17:50 +0000
use auxiliary/admin/mysql/mysql_enum
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
[*] 127.0.0.1:3306 - Bruteforce completed, 1 credential was successful.
[*] 127.0.0.1:3306 - 1 MySQL session was opened successfully.
[*] Auxiliary module execution completed
msf6 auxiliary(scanner/mysql/mysql_login) > run session=3 Verbose=true
msf6 auxiliary(scanner/mysql/mysql_login) > run session=2 Verbose=true
[*] New in Metasploit 6.4 - This module can target a SESSION or an RHOST
msf6 auxiliary(admin/mysql/mysql_enum) > [*] Using existing session 3
msf6 auxiliary(admin/mysql/mysql_enum) > [*] Using existing session 2
[*] Running MySQL Enumerator...
[*] Enumerating Parameters
[*] 127.0.0.1:3306 MySQL - querying with 'show variables'
[*] MySQL Version: 11.3.2-MariaDB-1:11.3.2+maria~ubu2204
[*] Compiled for the following OS: debian-linux-gnu
[*] Architecture: x86_64
[*] Server Hostname: ca8645ba2028
[*] Server Hostname: ba6306661377
[*] Data Directory: /var/lib/mysql/
[*] Logging of queries and logins: ON
[*] Log Files Location: OFF
Expand All @@ -43,9 +43,9 @@ use auxiliary/admin/mysql/mysql_enum
[!] No active DB -- Credential data will not be saved!
[+] User: root Host: localhost Password Hash: *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19
[+] User: root Host: % Password Hash: *2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19
[+] User: healthcheck Host: 127.0.0.1 Password Hash: *A8AB1309DAF0335EC941306AC6A6D5E2380FB6C5
[+] User: healthcheck Host: ::1 Password Hash: *A8AB1309DAF0335EC941306AC6A6D5E2380FB6C5
[+] User: healthcheck Host: localhost Password Hash: *A8AB1309DAF0335EC941306AC6A6D5E2380FB6C5
[+] User: healthcheck Host: 127.0.0.1 Password Hash: *334F68210D50581A2EE080F911417A8F8D982DC4
[+] User: healthcheck Host: ::1 Password Hash: *334F68210D50581A2EE080F911417A8F8D982DC4
[+] User: healthcheck Host: localhost Password Hash: *334F68210D50581A2EE080F911417A8F8D982DC4
[*] 127.0.0.1:3306 MySQL - querying with 'select user, host, ssl_type from mysql.user where
(ssl_type = 'ANY') or
(ssl_type = 'X509') or
Expand Down Expand Up @@ -100,5 +100,5 @@ use auxiliary/admin/mysql/mysql_enum
sessions -K
msf6 auxiliary(admin/mysql/mysql_enum) > jobs -K
[*] Killing all sessions...
[*] 127.0.0.1 - MySQL session 3 closed.
[*] 127.0.0.1 - MySQL session 2 closed.
msf6 auxiliary(admin/mysql/mysql_enum) >
27 changes: 27 additions & 0 deletions acceptance-tests/data/attachments/3c85004945374008.txt
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
use auxiliary/scanner/mysql/mysql_login
Stopping all jobs...
msf6 auxiliary(admin/mysql/mysql_enum) > irb -e '(self.respond_to?(:framework) ? framework : self).datastore.user_defined.clear'
[*] New in Metasploit 6.4 - The CreateSession option within this module can open an interactive session
msf6 auxiliary(scanner/mysql/mysql_login) > run PASS_FILE= USER_FILE= CreateSession=true username=root password=password rhost=127.0.0.1 rport=3306
msf6 auxiliary(scanner/mysql/mysql_login) > [+] 127.0.0.1:3306 - 127.0.0.1:3306 - Found remote MySQL version 11.3.2
[!] 127.0.0.1:3306 - No active DB -- Credential data will not be saved!
[+] 127.0.0.1:3306 - 127.0.0.1:3306 - Success: 'root:password'
[*] MySQL session 3 opened (127.0.0.1:43851 -> 127.0.0.1:3306) at 2024-05-09 12:17:51 +0000
use post/test/mysql
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
[*] 127.0.0.1:3306 - Bruteforce completed, 1 credential was successful.
[*] 127.0.0.1:3306 - 1 MySQL session was opened successfully.
[*] Auxiliary module execution completed
msf6 auxiliary(scanner/mysql/mysql_login) > run session=3 Verbose=true
msf6 post(test/mysql) > [*] Running against session 3
[*] Session type is mysql and platform is Linux
[+] should return a version
[+] should support the help command
[*] Testing complete in 0.02 seconds
[*] Passed: 2; Failed: 0; Skipped: 0
[*] Post module execution completed
sessions -K
msf6 post(test/mysql) > jobs -K
[*] Killing all sessions...
[*] 127.0.0.1 - MySQL session 3 closed.
msf6 post(test/mysql) >
2 changes: 1 addition & 1 deletion ...sts/data/attachments/29b9e56624f61c6b.txt → ...sts/data/attachments/3cf7c4a0d37b4afe.txt
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
use auxiliary/scanner/mysql/mysql_version
Stopping all jobs...
msf6 auxiliary(scanner/mysql/mysql_version) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
msf6 post(test/mysql) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
[*] New in Metasploit 6.4 - This module can target a SESSION or an RHOST
msf6 auxiliary(scanner/mysql/mysql_version) > [+] 127.0.0.1:3306 - 127.0.0.1:3306 is running MySQL 8.4.0 (protocol 10)
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
Expand Down
15 changes: 0 additions & 15 deletions acceptance-tests/data/attachments/3d8cfc7a7f1dd2c7.txt
View file

This file was deleted.

0 ...sts/data/attachments/6e031150175a79e9.txt → ...sts/data/attachments/3ea9ee0efb7a381f.txt
View file
File renamed without changes.
0 ...ests/data/attachments/4126088f7ca92f4.txt → ...sts/data/attachments/3f72b8454f1cd5ef.txt
View file
File renamed without changes.
25 changes: 25 additions & 0 deletions acceptance-tests/data/attachments/3fe0cc1e9769914f.txt
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
Calling `DidYouMean::SPELL_CHECKERS.merge!(error_name => spell_checker)' has been deprecated. Please call `DidYouMean.correct_error(error_name, spell_checker)' instead.
Calling `DidYouMean::SPELL_CHECKERS.merge!(error_name => spell_checker)' has been deprecated. Please call `DidYouMean.correct_error(error_name, spell_checker)' instead.
Overriding user environment variable 'OPENSSL_CONF' to enable legacy functions.
msf6 > loadpath test/modules
Loaded 43 modules:
14 auxiliary modules
13 exploit modules
16 post modules
msf6 > features set mysql_session_type true
mysql_session_type => true
[!] Run the save command and restart the console for this feature to take effect.
msf6 > use auxiliary/scanner/mysql/mysql_hashdump
[*] New in Metasploit 6.4 - This module can target a SESSION or an RHOST
msf6 auxiliary(scanner/mysql/mysql_hashdump) > run lhost=127.0.0.1 username=root password=password rhost=127.0.0.1 rport=3306 Verbose=true
[+] 127.0.0.1:3306 - 127.0.0.1:3306 MySQL - Logged in to '' with 'root':'password'
[!] 127.0.0.1:3306 - No active DB -- Credential data will not be saved!
[*] 127.0.0.1:3306 - 127.0.0.1:3306 MySQL - querying with 'SELECT @@version'
[*] 127.0.0.1:3306 - 127.0.0.1:3306 MySQL - querying with 'SELECT user,password from mysql.user'
[+] 127.0.0.1:3306 - Saving HashString as Loot: root:*2470C0C06DEE42FD1618BB99005ADCA2EC9D1E19
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
sessions -K
msf6 auxiliary(scanner/mysql/mysql_hashdump) > jobs -K
[*] Killing all sessions...
msf6 auxiliary(scanner/mysql/mysql_hashdump) >
0 ...sts/data/attachments/570426025ac11de4.txt → ...sts/data/attachments/462a3c42a413cb84.txt
View file
File renamed without changes.
0 ...sts/data/attachments/5d88ad7265174e00.txt → ...sts/data/attachments/472c18678c4e9902.txt
View file
File renamed without changes.
8 changes: 4 additions & 4 deletions ...sts/data/attachments/760075f6ab89f6ca.txt → ...sts/data/attachments/487834356e7790c0.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,14 +6,14 @@ Stopping all jobs...
msf6 auxiliary(scanner/mysql/mysql_login) > [+] 127.0.0.1:3306 - 127.0.0.1:3306 - Found remote MySQL version 5.5.42
[!] 127.0.0.1:3306 - No active DB -- Credential data will not be saved!
[+] 127.0.0.1:3306 - 127.0.0.1:3306 - Success: 'root:password'
[*] MySQL session 2 opened (127.0.0.1:35223 -> 127.0.0.1:3306) at 2024-05-02 08:40:22 +0000
[*] MySQL session 4 opened (127.0.0.1:42829 -> 127.0.0.1:3306) at 2024-05-09 12:16:22 +0000
use post/test/mysql
[*] 127.0.0.1:3306 - Scanned 1 of 1 hosts (100% complete)
[*] 127.0.0.1:3306 - Bruteforce completed, 1 credential was successful.
[*] 127.0.0.1:3306 - 1 MySQL session was opened successfully.
[*] Auxiliary module execution completed
msf6 auxiliary(scanner/mysql/mysql_login) > run session=2 Verbose=true
msf6 post(test/mysql) > [*] Running against session 2
msf6 auxiliary(scanner/mysql/mysql_login) > run session=4 Verbose=true
msf6 post(test/mysql) > [*] Running against session 4
[*] Session type is mysql and platform is Linux
[+] should return a version
[+] should support the help command
Expand All @@ -23,5 +23,5 @@ use post/test/mysql
sessions -K
msf6 post(test/mysql) > jobs -K
[*] Killing all sessions...
[*] 127.0.0.1 - MySQL session 2 closed.
[*] 127.0.0.1 - MySQL session 4 closed.
msf6 post(test/mysql) >
0 ...sts/data/attachments/5cbc163de1391d3b.txt → ...sts/data/attachments/4a7e900d4b61fb02.txt
View file
File renamed without changes.
0 ...sts/data/attachments/6bbac438cc03d15d.txt → ...sts/data/attachments/4b38677d90cae1f9.txt
View file
File renamed without changes.
0 ...sts/data/attachments/13d0dc7c4e1b29df.txt → ...sts/data/attachments/4cd89b64a73babec.txt
View file
File renamed without changes.
Loading

0 comments on commit 0adda7a

Please sign in to comment.