We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Identify linked/cluster DBMS servers when possible (e.g. MSSQL)
The text was updated successfully, but these errors were encountered:
rapid7/metasploit-framework#976
Sorry, something went wrong.
Proposed enhancements to MSSQL enumeration:
--links
SELECT srvname FROM master..sysservers
-S _LINKEDSERVER_ --dbs
SELECT name FROM _LINKEDSERVER_.master.sys.databases
More info: https://blog.netspi.com/how-to-hack-database-links-in-sql-server/
Thoughts?
@lukapusic doable... though, only MsSQL as I can see. So, introducing too many new options for just one DBMS is a coding anti-pattern in sqlmap
+1 for this. I've had lots of success pillaging through DB links.
FWIW, database links aren't limited to just MSSQL. Oracle has them as well. https://docs.oracle.com/html/E25494_01/ds_concepts002.htm
bdamele
No branches or pull requests
Identify linked/cluster DBMS servers when possible (e.g. MSSQL)
The text was updated successfully, but these errors were encountered: