MSSqlPwner: Open-source tool for pentesting MSSQL servers

2025-01-17 05:30

MSSqlPwner is an open-source pentesting tool tailored to interact with and exploit MSSQL servers. Built on Impacket, it enables users to authenticate with databases using various credentials, including clear-text passwords, NTLM hashes, and Kerberos tickets. The tool offers multiple methods for executing custom commands on targeted servers, such as leveraging custom assemblies, utilizing xp_cmdshell, or exploiting sp_oacreate (Ole Automation Procedures). Its flexibility and range of features make it a valuable resource for penetration testers assessing … More → The post MSSqlPwner: Open-source tool for pentesting MSSQL servers appeared first on Help Net Security.

News URL

https://www.helpnetsecurity.com/2025/01/17/mssqlpwner-open-source-pentesting-mssql-servers/

#opensource #pentesting #server