Grunt's personal blog

this is my personal blog for my hacking stuff, my degree stuff, etc

View on GitHub

MICROSOFT SQL SERVER ATTACKS

Vectores de ataque

Acceso mediante impacket e intento de RCE

Habilitar xp_cmdshell

Exfiltrar NTLMv2-SSP

Crear persistencia en MSSQL

Enumerar DBs

Impersonar credenciales


execute as   database   permission_name   state_desc   grantee          grantor          
----------   --------   ---------------   ----------   --------------   --------------   
b'LOGIN'     b''        IMPERSONATE       GRANT        HAERO\services   hrappdb-reader   


SQL (hrappdb-reader  guest@master)> SELECT SYSTEM_USER;
[%] SELECT SYSTEM_USER;
                 
--------------   
hrappdb-reader   

Herramientas utiles