Merge pull request #2618 from 1u4nx/master

Add: TiDB Native password bruteforce check plugin
2021-09-10 12:17:34 +05:30 · 2021-09-10 12:17:34 +05:30 · c6b63bdbb4
parent 53d3147b1d 83bedfc6af
commit c6b63bdbb4
1 changed files with 20 additions and 0 deletions
--- a/network/tidb-native-password-bruteforce.yaml
+++ b/network/tidb-native-password-bruteforce.yaml
@ -0,0 +1,20 @@
+id: tidb-native-password-bruteforce
+
+info:
+  name: TiDB DB with enabled native password
+  author: lu4nx
+  severity: info
+  description: TiDB is fully compatible with the MySQL 5.7 protocol and the common features and syntax of MySQL 5.7. TiDB instance with enabled native password support prone vulnerable for password brute-force attack.
+  tags: network,tidb,bruteforce,db
+
+network:
+  - host:
+      - "{{Hostname}}"
+      - "{{Hostname}}:4000"
+
+    matchers:
+      - type: word
+        words:
+          - "mysql_native_password"
+          - "TiDB"
+        condition: and