.. / impacket-mssqlclient
Star

Impacket’s mssqlclient.py allows for interacting with Microsoft SQL Servers using Windows authentication. This tool enables attackers to authenticate via NTLM hashes, enumerate privileges, and execute system commands on vulnerable SQL servers. The following command authenticates to an MSSQL server using a machine account and NTLM hash:

Command Reference:

--windows-auth: indicating Windows Authentication

Windows machine account: WEB01$

IP address: 10.10.21.14

-no-pass / --hashes: because it is a pass the hash
Command: Copy Extra code: Copy References:

https://github.com/fortra/impacket/blob/master/examples/mssqlclient.py