MSSQL

Broute Force Credentials

File ms-sql-brute

https://nmap.org/nsedoc/scripts/ms-sql-brute.html

nmap -p 1433 --script ms-sql-brute --script-args userdb=customuser.txt,passdb=custompass.txt <host>

Connection

Add server

$ cat /etc/freetds/freetds.conf
<snip>
[Pentest]
        host = <ip>
        port = 1433

Connect with stored password

$ cat ~/.sqshrc
\set username=sa
\set password=PASSWORD
\set style=vert
$ sqsh -S Pentest
1>

Connect normal

Check Advanced Option

Config xp_cmdshell if value =0

Execute commands

PreviousSQLiteNextPostgreSQL

Last updated

Was this helpful?