msdat
msdat copied to clipboard
quentinhardy
MSDAT: Microsoft SQL Database Attacking Tool
It would be cool if we added a flag such as `-sL` to run the intended module(s) against multiple servers at once. I am already wrapping msdat in a Bash...
I would like the tool to output results to file. Understanding this tool has many different modules, a standardized machine readable file type such as CSV may be difficult. However,...
Hi, I am working through the HackTheBox machine, Escape, and I found that xp_dirtree was incorrectly reported as not supported:  I used `impacket-mssclient` and DBeaver to run `exec xp_dirtree...
My team uses msdat non-interactively against a ton of machines using GNU's parallel command. We like to check and see if xp_cmdshell can be executed. Currently xp_cmdshell allows the user...
My team uses msdat non-interactively against a ton of machines using GNU's `parallel` command. It'd be nice if the `xp_cmdshell` module supported running a specific user provided command such as...
Hi, In **msdat**, inappropriate dependency versioning constraints can cause risks. Below are the dependencies and version constraints that the project is using ``` cython colorlog termcolor pymssql argparse python-libnmap argcomplete...
Hello, my employer would like to use your code as a part of our penetration tests. Not to distribute, but use. Could you add an appropriate license to allow this...
I have been going through the MSSQL hacking tools in the community and noticed no mention of TLS in this repository. Does it support MSSQL TLS connections?
You will get an error as below when running the command: ~~~ ./msdat.py oleautomation -s x.x.x.x -p 1433 -U sa -P sa --put-file '/home/kali/Desktop/test.txt' 'C:/temp/' [1] (x.x.x.x:1433): Try to copy...
My team has noticed that passwords quoted such as 'Password123!' or "Password123!" will fail as the Linux shell interprets the `!` as a Bash/Zsh character rather than a string character....
Metadata
Owner
Metadata
MSDAT: Microsoft SQL Database Attacking Tool