Source |
Hacking Articles |
Identifiant |
3261498 |
Date de publication |
2021-08-20 20:35:39 (vue: 2021-08-20 21:06:32) |
Titre |
MSSQL for Pentester: Command Execution with xp_cmdshell |
Texte |
This article is the series of MSSQL for pentester, here we will discover and exploit the security aspects of the xp_cmdshell functionality. Table of Content Introduction What is xp_cmdshell? Enabling xp_cmdshell Manually (GUI) sqsh mssqlclient.py Exploiting xp_cmdshell Metasploit Netcat Crackmapexec Nmap PowerUpSQL Introduction All the demonstrations in this article will
|
Envoyé |
Oui |
Condensat |
all article aspects cmdshell command content crackmapexec demonstrations discover enabling execution exploit exploiting functionality gui here introduction manually metasploit mssql mssqlclient netcat nmap pentester pentester: powerupsql security series sqsh table what will |
Tags |
|
Stories |
|
Notes |
|
Move |
|