🖥️
Portfolio
  • About me
  • My Mission
  • License
  • Homelab
    • Server rack
      • Pictures
      • Hardware and software inventory
    • Test range
      • Malware lab
        • Remnux and Flare VM installation
      • Proxmox
        • How to backup VM's in Proxmox
      • Breach and Attack Simulation (BAS)
        • Install MITRE Caldera
        • MITRE Caldera demo
        • Install Atomic Red team
    • SIEM Architecture
      • ELK installation
      • Splunk install and configuration
      • Forwarding Sysmon logs to Splunk
      • Cribl Edge -> Cribl Stream
      • Cribl Edge -> Splunk
      • Cribl -> Amazon S3 bucket
    • Raspberry Pi
      • Cloudflare DDNS
      • OpenVPN on Raspberry Pi
      • Pi-Hole
      • Raspberry Pi project ideas
    • Privacy
  • CTF
    • Machines
      • MongoDB
      • Explosion
      • Lame
      • Preignition
      • Jerry
      • Synced
      • Appointment
      • Blue
      • Sequel
      • Netmon
    • PicoCTF
    • Exploit tool definitions
    • Cheat sheets
      • tmux
      • Linux
  • Cybersecurity
    • Purple team content
      • Detecting Discovery commands
    • Detection As Code (DAC)
      • Sigma CI/CD
      • DAC with Elastic SIEM
    • Use case repositories
    • Frameworks
    • Tools
    • Online resources
      • MITRE
      • Splunk
      • Machine Learning
      • Ethical Hacking
      • Podcasts
      • Threat Reports
      • Detection Engineering articles
  • AI/ML
    • Tools
      • D.I.A.N.A
      • Fabric
      • Run Ollama locally
      • Using Ollama & Fabric to build Sigma rules
    • Custom prompts
      • Lessons Learned
      • Create Sigma rules
  • Scripts
    • Python
      • Elastic DAC pipeline
  • Cloud projects
    • Cloud Resume Challenge - AWS
  • BOOK CLUB
    • Lists
Powered by GitBook
On this page
  1. CTF
  2. Machines

Sequel

PreviousBlueNextNetmon

Last updated 7 months ago

In this Box we are going to break into a machine running SQL server. SQL is a relational database and stored user information in rows and columes. Usually, SQL data contains PII, PHI, or sensitive data that we can gather. Other databases can store user information such as passwords.

To start, lets scan the machine for services.

nmap -sV -sC 10.129.95.232

We see the MySQL service running on port 3306, this is for managing SQL databases.

Make sure to install the SQL service so we can begin to communicate with the server.

sudo apt update && sudo apt install mysql*

It is normal best practice to try to login with default credentials

mysql -h 10.129.95.232 -u root --skip-ssl

Looks like we had some luck and were able to login with default credentials.

Run show databases to see the available databases

HTB looks interesting, type USE htb; to being writing commands to the database.

SHOW tables;

SELECT * FROM config;

We have now successfully changed and loaded the database, we can run a couple other commands to find information. Refer to this link for help with SQL commands.

https://www.mysqltutorial.org/mysql-cheat-sheet/