mysql-enum
脚本使用类型:
portrule
脚本所属分类:
intrusive, brute
脚本下载地址: http://nmap.org/svn/scripts/mysql-enum.nse
Performs valid user enumeration against MySQL server.
Server version 5.x are succeptible to an user enumeration attack due to different messages during login when using old authentication mechanism from versions 4.x and earlier.
Original bug discovered and published by Kingcope: http://seclists.org/fulldisclosure/2012/Dec/9
socket timeout for connecting to MySQL (default 5s)
执行格式
nmap --script=mysql-enum <target>
PORT STATE SERVICE REASON 3306/tcp open mysql syn-ack | mysql-enum: | Accounts | admin:<empty> - Valid credentials | test:<empty> - Valid credentials | test_mysql:<empty> - Valid credentials | Statistics |_ Performed 11 guesses in 1 seconds, average tps: 11
Author: Aleksandar Nikolic
License: VER007 整理 http://www.ver007.com