19 lines
430 B
YAML
19 lines
430 B
YAML
id: mysql-native-password-bruteforce
|
|
|
|
info:
|
|
name: MySQL DB with enabled native password
|
|
author: iamthefrogy
|
|
severity: info
|
|
tags: network,mysql,bruteforce,db
|
|
description: MySQL instance with enabled native password support is prone to password brute-force attacks.
|
|
|
|
network:
|
|
- host:
|
|
- "{{Hostname}}"
|
|
- "{{Hostname}}:3306"
|
|
|
|
matchers:
|
|
- type: word
|
|
words:
|
|
- "mysql_native_password"
|