IBM DB2 – port 50000

IBM DB2 database quick reference.

• [Db2] Db2 server TCP/IP port numbers (IBM)

Discover DB2 instances

Default instance is db2inst1.

Using Ncat

sudo ncat -nv --source-port 53 $IP 50000

Using Metasploit

See Metasploit.

msfconsole
search db2

use auxiliary/scanner/db2/db2_version
show options
SET RPORT 50000
set RHOSTS x.x.x.x
set DATABASE toolsdb

Using Nmap NSE

❗ Nmap NSE on DB2 are only for the IBM DB2 Administration Server (DAS) on TCP or UDP port 523.

ls -la /usr/share/nmap/scripts/*db2*

/usr/share/nmap/scripts/broadcast-db2-discover.nse
/usr/share/nmap/scripts/db2-das-info.nse

Install the DB2 client

💡 When possible, use SQuirreL instead!! And download db2 jdbc driver.

# Install IBM Data Server Runtime Client
# Unzip the installer
cd rtcl
./db2setup -f sysreq

# A window will open
Click Next
Directory /opt/ibm/db2/V11.5
Typical
Uncheck Create instance
Check I agree to the IBM terms
Click Next
Click Finish

Click on Post-installation Steps
# Run the validation tool
/opt/ibm/db2/V11.5/bin/db2val

export PATH="$PATH:/opt/ibm/db2/V11.5/bin"

Connect to database instance using the DB2 client

###export DB2INSTANCE=DB2_01
db2cli
db2 => CONNECT TO myIP:myPort/myDB USER myid01 USING mypw01

Default Users & Passwords

db2inst1/db2inst1
db2inst2/db2inst2
db2admin/db2admin

#-------------------------------------------------------------------------------
# Configurations / Parameters
#-------------------------------------------------------------------------------
# Configuration file

# Start

# Stop

# Execute OS commands from within client


#-------------------------------------------------------------------------------
# Default Users / Passwords
#-------------------------------------------------------------------------------
In /usr/share/metasploit-framework/data/wordlists/db2_default_pass.txt

SQL Injection

http://db2guideonline.blogspot.com/2014/09/example-sql-injection-in-db2-how-to.html