Az - PostgreSQL Databases

Reading time: 6 minutes

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks

Azure PostgreSQL

Azure Database for PostgreSQL ni huduma ya database ya uhusiano inayosimamiwa kikamilifu inayotegemea PostgreSQL Community Edition. Imeundwa kutoa upanuzi, usalama, na kubadilika kwa mahitaji mbalimbali ya programu. Kama ilivyo kwa Azure MySQL, PostgreSQL inatoa mifano miwili ya kutekeleza:

  • Seva Moja (katika njia ya kustaafu):
  • Imeboreshwa kwa kutekeleza PostgreSQL kwa urahisi na gharama nafuu.
  • Ina vipengele vya nakala za otomatiki, ufuatiliaji wa msingi, na upatikanaji wa juu.
  • Inafaa kwa programu zenye mzigo unaoweza kutabiriwa.
  • Seva Inayobadilika:
  • Inatoa udhibiti mkubwa juu ya usimamizi wa database na usanidi.
  • Inasaidia upatikanaji wa juu, ndani ya eneo moja na kati ya maeneo.
  • Ina vipengele vya upanuzi wa elastic, matengenezo ya otomatiki, na kazi za kuokoa gharama.
  • Inaruhusu kuanzisha na kusitisha seva ili kuboresha gharama.

Key Features

  • Dirisha la Matengenezo la Kijadi: Panga masasisho ili kupunguza usumbufu.
  • Ufuatiliaji wa Kazi: Fikia metriki na kumbukumbu za kina ili kufuatilia na kuboresha utendaji wa database.
  • Stop/Start Server: Watumiaji wanaweza kusitisha na kuanzisha seva.
  • Nakala za Otomatiki: Nakala za kila siku zilizojengwa ndani zikiwa na muda wa uhifadhi unaoweza kubadilishwa hadi siku 35.
  • Upatikanaji Kulingana na Majukumu: Dhibiti ruhusa za watumiaji na upatikanaji wa kiutawala kupitia Azure Active Directory.
  • Usalama na Mtandao: inaweza kusimamia sheria za firewall za seva kwa upatikanaji salama wa database na kuondoa usanidi wa mtandao wa virtual inapohitajika.
  • Identities Zinazosimamiwa: ruhusu seva yako kuthibitisha kwa usalama na huduma nyingine za Azure bila kuhifadhi akidi. Inaruhusu kufikia huduma nyingine ambazo zitakuwa na utambulisho wa usimamizi uliotolewa na mfumo na kufikiwa na huduma nyingine zikiwa na utambulisho mwingine ambao ni utambulisho wa usimamizi uliotolewa na mtumiaji.

Enumeration

bash
# List servers in a resource group
az postgres flexible-server list --resource-group <resource-group-name>
# List databases in a flexible-server
az postgres flexible-server db list --resource-group <resource-group-name> --server-name <server_name>
# Show specific details of a Postgre database
az postgres flexible-server db show --resource-group <resource-group-name> --server-name <server_name> --database-name <database_name>

# List firewall rules of the a server
az postgres flexible-server firewall-rule list --resource-group <resource-group-name> --name <server_name>
# List parameter values for a felxible server
az postgres flexible-server parameter list --resource-group <resource-group-name> --server-name <server_name>
# List private link
az postgres flexible-server private-link-resource list --resource-group <resource-group-name> --server-name <server_name>

# List all ad-admin in a server
az postgres flexible-server ad-admin list --resource-group <resource-group-name> --server-name <server_name>
# List all user assigned managed identities from the server
az postgres flexible-server identity list --resource-group <resource-group-name> --server-name <server_name>

# List the server backups
az postgres flexible-server backup list --resource-group <resource-group-name> --name <server_name>
# List all read replicas for a given server
az postgres flexible-server replica list --resource-group <resource-group-name> --name <server_name>
# List migrations
az postgres flexible-server migration list --resource-group <resource-group-name> --name <server_name>

# Get the server's advanced threat protection setting
az postgres flexible-server advanced-threat-protection-setting show --resource-group <resource-group-name> --name <server_name>
# List all of the maintenances of a flexible server
az postgres flexible-server maintenance list --resource-group <resource-group-name> --server-name <server_name>
# List log files for a server.
az postgres flexible-server server-logs list --resource-group <resource-group-name> --server-name <server_name>

Muunganisho

Kwa nyongeza rdbms-connect unaweza kufikia hifadhidata kwa:

bash
az postgres flexible-server connect -n <server-name> -u <username> -p <password> --interactive

#or execute commands
az postgres flexible-server execute \
-n <server-name> \
-u <username> \
-p "<password>" \
-d <database-name> \
--querytext "SELECT * FROM <table-name>;"

Au

bash
psql -h testpostgresserver1994.postgres.database.azure.com -p 5432 -U adminuser <database-name>

References

Privilege Escalation

Az - PostgreSQL Privesc

Post Exploitation

Az - PostgreSQL Post Exploitation

ToDo

  • Angalia njia ya kupata ufikiaji na ad-admin ili kuthibitisha ni njia ya privesc

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks