- Check authentication and roles on current instance as current logged in user.
- Checks which logins can be impersonated.
- Allows login impersonation.
- Allows UNC path injection to grab NET-NTLM hash on Responder or Impacket.
- Allows command execution test via xp_cmdshell and sp_OACreate procedures on current instance.
- Checks for linked SQL servers in the domain.
- Checks access on any linked SQL server.
- Allows to enable RPC on current instance towards any linked SQL server and enables xp_cmdshell procedure to execute PS Command on remote linked SQL server.
Please ping me at ananth DOT venk88 AT gmail DOT com for any changes or issues. Anyway folks, its a open source C# code, feel free to modify and attack ;)
Ananth Gottimukala (she11z)