In this article, we will learn how to give sysadmin rights to the user who has only fundamental public rights. Technically, we will apply privilege

This article will learn about SQL servers and how to exploit their external scripts to our potential. Table of content Introduction to SQL Server Installation

In this article, we will learn about Impersonate feature that MSSQL servers offer. The earliest implementation of Impersonate was in SQL Server 7.0, released January

In this article, we will learn in detail how to pentest MSSQL servers using the Metasploit framework. Table of content Introduction Information Gathering & Enumeration

In this article, we will learn all about CLR assembly functionality provided by Microsoft and how we can exploit it to our potential. Table of

OLE automation is a process through which an application can access and manipulate the implied objects in other applications. Hence, in this article, we will

Microsoft SQL Server (MS-SQL) is a relational database manager created by Microsoft. Such management systems are used to engage databases with the user. Multiple databases are

Today’s article is the third article in the series of MSSQL Server and its penetration Testing. In this article, we will be discovering and exploiting

To obtain basic information such as database names, usernames, names of tables, etc from the SQL servers on the Windows operating system, we will execute