In this article, we will learn how to give sysadmin rights to the user who has only fundamental public rights. Technically, we will apply privilege
This article will learn about SQL servers and how to exploit their external scripts to our potential. Table of content Introduction to SQL Server Installation
In this article, we will learn about Impersonate feature that MSSQL servers offer. The earliest implementation of Impersonate was in SQL Server 7.0, released January
In this article, we will learn in detail how to pentest MSSQL servers using the Metasploit framework. Table of content Introduction Information Gathering & Enumeration
In this article, we will learn all about MSSQL command execution with CLR assembly functionality provided by Microsoft and how we can exploit it to
OLE Automation in MSSQL is a process through which an application can access and manipulate the implied objects in other applications. Hence, in this article,
MSSQL Server Discovery is a crucial process for identifying Microsoft SQL Servers in a network. Microsoft SQL Server (MS-SQL) is a relational database manager created
Today it is time to solve another challenge called “Simple CTF”. It is available at TryHackMe for penetration testing practice. This challenge is of easy
To obtain basic information such as database names, usernames, names of tables, etc from the SQL servers on the Windows operating system, we will execute