# Database Analysis ## impacket-mssqlclient **Connection** ``` impacket-mssqlclient @ impacket-mssqlclient @ -windows-auth impacket-mssqlclient -k -no-pass impacket-mssqlclient /:@ -windows-auth ``` ``` export KRB5CCNAME=.ccache impacket-mssqlclient -k . ``` **Common Commands** ``` enum_logins enum_impersonate ``` ## MongoDB ``` mongo "mongodb://localhost:27017" ``` ``` > use ; > show tables; > show collections; > db.system.keys.find(); > db.users.find(); > db.getUsers(); > db.getUsers({showCredentials: true}); > db.accounts.find(); > db.accounts.find().pretty(); > use admin; ``` ## MSSQL ## PostgreSQL ``` psql psql -h -U -c ";" psql -h -p 5432 -U -d psql -h -p 5432 -U -d ``` **Common Commands** ``` postgres=# \list // list all databases postgres=# \c // use database postgres=# \c // use specific database postgres=# \s // command history postgres=# \q // quit =# \dt // list tables from current schema =# \dt *.* // list tables from all schema =# \du // list users roles =# \du+ // list users roles =# SELECT user; // get current user =# TABLE ; // select table =# SELECT * FROM users; // select everything from users table =# SHOW rds.extensions; // list installed extensions =# SELECT usename, passwd from pg_shadow; // read credentials ``` ## sqlite3 ``` sqlite3 .db ``` ``` sqlite> .tables sqlite> PRAGMA table_info(

); sqlite> SELECT * FROM

; ```