infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

updated

MS-2855/keylogger-mettle-extension
Vishal Gupta 2018-01-23 06:19:44 -05:00
parent a15856450a
commit c13e02431d
2 changed files with 2 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
documentation/modules/auxiliary/scanner/mssql/mssql_idf.md
View File

@ -16,18 +16,6 @@ To configure the module, set it to look for field names of username and
**Running the scanner** **Running the scanner**
``` ```
msf > use auxiliary/admin/mssql/mssql_idf msf > use auxiliary/admin/mssql/mssql_idf
msf auxiliary(mssql_idf) > show options
Module options (auxiliary/admin/mssql/mssql_idf):
Name Current Setting Required Description
---- --------------- -------- -----------
NAMES passw|bank|credit|card yes Pipe separated list of column names
PASSWORD no The password for the specified username
RHOST yes The target address
RPORT 1433 yes The target port
USERNAME sa no The username to authenticate as
msf auxiliary(mssql_idf) > set NAMES username|password msf auxiliary(mssql_idf) > set NAMES username|password
NAMES => username|password NAMES => username|password
msf auxiliary(mssql_idf) > set PASSWORD password1 msf auxiliary(mssql_idf) > set PASSWORD password1
@ -55,5 +43,3 @@ logins dbo userpass password varchar 3
[*] Auxiliary module execution completed [*] Auxiliary module execution completed
msf auxiliary(mssql_idf) > msf auxiliary(mssql_idf) >
``` ```
As can be seen in the module output, the scanner found our logins database with a userpass table containing username and password columns.

15
documentation/modules/auxiliary/scanner/mssql/mssql_ping.md
View File

@ -17,19 +17,6 @@ To configure the module, we set the RHOSTS and THREADS values and let it run aga
``` ```
msf > use auxiliary/scanner/mssql/mssql_ping msf > use auxiliary/scanner/mssql/mssql_ping
msf auxiliary(mssql_ping) > show options
Module options (auxiliary/scanner/mssql/mssql_ping):
Name Current Setting Required Description
---- --------------- -------- -----------
PASSWORD no The password for the specified username
RHOSTS yes The target address range or CIDR identifier
TDSENCRYPTION false yes Use TLS/SSL for TDS data "Force Encryption"
THREADS 1 yes The number of concurrent threads
USERNAME sa no The username to authenticate as
USE_WINDOWS_AUTHENT false yes Use windows authentification (requires DOMAIN option set)
msf auxiliary(mssql_ping) > set RHOSTS 192.168.1.200-254 msf auxiliary(mssql_ping) > set RHOSTS 192.168.1.200-254
RHOSTS => 192.168.1.200-254 RHOSTS => 192.168.1.200-254
msf auxiliary(mssql_ping) > set THREADS 20 msf auxiliary(mssql_ping) > set THREADS 20
@ -63,5 +50,3 @@ msf auxiliary(mssql_ping) > run
[*] Auxiliary module execution completed [*] Auxiliary module execution completed
msf auxiliary(mssql_ping) > msf auxiliary(mssql_ping) >
``` ```
As can be seen from the module output, not only does it return the listening TCP port, it returns other valuable information such as the InstanceName and ServerName values.