Hacking MS-SQL - From SQLi to Server Administrator

Поделиться
HTML-код
  • Опубликовано: 30 сен 2024
  • In this video we conduct initial scanning and enumeration on a Windows Server, discover a SQL injection vulnerability in a website, exploit it, and gain access of the server.
    Please consider supporting me on Patreon at / themayor
    Join the conversation on Discord at / discord
    This lab is part of the Web Application Penetration Tester course from eLearnSecurity/INE.

Комментарии • 22

  • @Free.Education786
    @Free.Education786 3 года назад +1

    Also teach us how to BYPASS 403 forbidden error, 406 WAF error and file UPLOAD restrictions errors....
    Thanks for your help and support brother
    🤝😘😍❤💚💙🤗🤩👍

  • @slayerplayz9405
    @slayerplayz9405 Год назад +1

    Unable to upload exe file on server via certutil.exe

  • @KennyB1990
    @KennyB1990 3 года назад +1

    Could this type of exploit be done against Windows Server 2012 or above? Doing a pen testing project at uni. Great Video :)

    • @JoeHellethemayor
      @JoeHellethemayor  3 года назад +2

      Hey thanks! As far as I'm aware no version of MS-SQL is immune from SQLi. So to your question, yes.
      In regards to actually getting command shell access to the server, that requires the xp_cmdshell setting to be enabled by the administrator, or disabled but re-enabled if possible. Here's a list of MS-SQL payloads for your project if you don't have it already. github.com/swisskyrepo/PayloadsAllTheThings/blob/master/SQL%20Injection/MSSQL%20Injection.md
      Cheers!

  • @reyandutta
    @reyandutta 3 года назад +1

    Is this the real TheMayor11 YT chamnel?

  • @craigmac7176
    @craigmac7176 3 года назад +1

    Great run through, first time i've seen SQLi acted on. Thank you!

  • @marcovicentin5010
    @marcovicentin5010 3 года назад +1

    Great video! Thanks you!👍

  • @HMBK2077
    @HMBK2077 Год назад

    Thanks for sharing. Your video helps me a lot in CTF .

  • @ewinwahyu7763
    @ewinwahyu7763 Год назад

    Thanks for your help and support brother

  • @martinshudson7561
    @martinshudson7561 Год назад

    its not working for me when i try to use certutil.exe -urlcaxhe -f targetip

  • @kirangameng.7442
    @kirangameng.7442 2 года назад

    Plzz help me my account hack halp

  • @user-uh5pn4qd3i
    @user-uh5pn4qd3i 2 года назад

    So if a website is using MS Sql as backend, will this method work like sqlmap does for websites that uses MySQL as backend??

    • @JoeHellethemayor
      @JoeHellethemayor  2 года назад

      SQLmap can enumerate MSSQL the same as it can MySQL, as shown in the video.

  • @ruszomalkuko
    @ruszomalkuko 3 года назад

    What OS is you lab? I can see that raspberry icon and asking if it is possible to consider my raspberry pi 4 be a Cyberlab

    • @JoeHellethemayor
      @JoeHellethemayor  3 года назад

      I use Kali with a custom desktop interface I prettied up with some Raspberry Pi stuff.
      That said, the 8GB version of Kali works very well.

  • @jorgevilla6523
    @jorgevilla6523 3 года назад +1

    Great Video!!

  • @goebbelsx
    @goebbelsx 3 года назад +1

    Thanks. I'm going through hackthebox's prolab offshore and this walkthrough was very useful.

Следующие
Автовоспроизведение
Sneak Peak - Website Enumeration and Password Spraying Roundcube7:42Sneak Peak - Website Enumeration and Password Spraying Roundcube
Sneak Peak - Website Enumeration and Password Spraying RoundcubeJoe Helle
Просмотров 7 тыс.
SQL Injection Hacking Tutorial (Beginner to Advanced)1:01:05SQL Injection Hacking Tutorial (Beginner to Advanced)
SQL Injection Hacking Tutorial (Beginner to Advanced)David Bombal
Просмотров 206 тыс.
advanced SQL injection12:18advanced SQL injection
advanced SQL injectionLoi Liang Yang
Просмотров 58 тыс.
Georgia Bulldogs vs. Alabama Crimson Tide | Full Game Highlights | ESPN College Football22:33Georgia Bulldogs vs. Alabama Crimson Tide | Full Game Highlights | ESPN College Football
Georgia Bulldogs vs. Alabama Crimson Tide | Full Game Highlights | ESPN College FootballESPN College Football
Просмотров 2 млн
I beat Kaizo Mario Odyssey. It was Painful.46:22I beat Kaizo Mario Odyssey. It was Painful.
I beat Kaizo Mario Odyssey. It was Painful.SmallAnt
Просмотров 529 тыс.
I used to hate QR codes. But they're actually genius35:13I used to hate QR codes. But they're actually genius
I used to hate QR codes. But they're actually geniusVeritasium
Просмотров 2,1 млн
Skrilla - "Resident" (Official Video)02:00Skrilla - "Resident" (Official Video)
Skrilla - "Resident" (Official Video)Skrilla
Просмотров 315 тыс.
Ep. 5 - Hacking SQL Server || Hacking Windows Server || HTB Archetype28:21Ep. 5 - Hacking SQL Server || Hacking Windows Server || HTB Archetype
Ep. 5 - Hacking SQL Server || Hacking Windows Server || HTB ArchetypeBakkDoors
Просмотров 8 тыс.
Bypassing SQL Filters (picoCTF Web Gauntlet)14:06Bypassing SQL Filters (picoCTF Web Gauntlet)
Bypassing SQL Filters (picoCTF Web Gauntlet)The Cyber Mentor
Просмотров 43 тыс.
Finally! HOW TO solve the INTIGRITI Easter XSS challenge using only Chrome DEVTOOLS!42:10Finally! HOW TO solve the INTIGRITI Easter XSS challenge using only Chrome DEVTOOLS!
Finally! HOW TO solve the INTIGRITI Easter XSS challenge using only Chrome DEVTOOLS!STÖK
Просмотров 52 тыс.
Create Your Own Command & Control Framework Over SSH1:03:16Create Your Own Command & Control Framework Over SSH
Create Your Own Command & Control Framework Over SSHJoe Helle
Просмотров 4,9 тыс.
Windows Red Team Exploitation Techniques | Luckystrike & PowerShell Empire48:58Windows Red Team Exploitation Techniques | Luckystrike & PowerShell Empire
Windows Red Team Exploitation Techniques | Luckystrike & PowerShell EmpireHackerSploit
Просмотров 52 тыс.
Big Jump In Remote Desktop Attacks?! Watch How Hackers Do It And Protect Your Computers Now!9:32Big Jump In Remote Desktop Attacks?! Watch How Hackers Do It And Protect Your Computers Now!
Big Jump In Remote Desktop Attacks?! Watch How Hackers Do It And Protect Your Computers Now!Loi Liang Yang
Просмотров 300 тыс.
How to use ffuf - Hacker Toolbox29:51How to use ffuf - Hacker Toolbox
How to use ffuf - Hacker ToolboxInsiderPhD
Просмотров 45 тыс.
All About DLL Hijacking - My Favorite Persistence Method20:23All About DLL Hijacking - My Favorite Persistence Method
All About DLL Hijacking - My Favorite Persistence MethodIppSec
Просмотров 59 тыс.
MALWARE ANALYSIS // How to get started with John Hammond55:45MALWARE ANALYSIS // How to get started with John Hammond
MALWARE ANALYSIS // How to get started with John HammondDavid Bombal
Просмотров 293 тыс.
ЛИАЗ ЧИНИТСЯ. ШИШИГА НА ГУСЕНИЦАХ СТРОИТСЯ И ИСПЫТЫВАЕТСЯ.23:22ЛИАЗ ЧИНИТСЯ. ШИШИГА НА ГУСЕНИЦАХ СТРОИТСЯ И ИСПЫТЫВАЕТСЯ.
ЛИАЗ ЧИНИТСЯ. ШИШИГА НА ГУСЕНИЦАХ СТРОИТСЯ И ИСПЫТЫВАЕТСЯ.AcademeG DailyStream
Просмотров 298 тыс.
Эминем предупреждал о Дидди #эминем #eminem #diddy #дидди #разоблачение00:59Эминем предупреждал о Дидди #эминем #eminem #diddy #дидди #разоблачение
Эминем предупреждал о Дидди #эминем #eminem #diddy #дидди #разоблачениеБИТЛ
Просмотров 109 тыс.
Ко мне подкатил бармен00:58Ко мне подкатил бармен
Ко мне подкатил барменDobryak
Просмотров 165 тыс.
Сбегаю от РОДИТЕЛЕЙ ЗОМБИ. SCHOOLBOY RUNAWAY В РЕАЛЬНОЙ ЖИЗНИ09:40Сбегаю от РОДИТЕЛЕЙ ЗОМБИ. SCHOOLBOY RUNAWAY В РЕАЛЬНОЙ ЖИЗНИ
Сбегаю от РОДИТЕЛЕЙ ЗОМБИ. SCHOOLBOY RUNAWAY В РЕАЛЬНОЙ ЖИЗНИМЯТНАЯ ФАНТА
Просмотров 575 тыс.
Олег оживляет Bentley и Scirocco. Заговор светодиодов:)51:00Олег оживляет Bentley и Scirocco. Заговор светодиодов:)
Олег оживляет Bentley и Scirocco. Заговор светодиодов:)Команда АП
Просмотров 669 тыс.
ОБЗОР НА ШТАНЫ от БЕЗДNA00:59ОБЗОР НА ШТАНЫ от БЕЗДNA
ОБЗОР НА ШТАНЫ от БЕЗДNAЛисса
Просмотров 380 тыс.
КВН 2024 Встреча выпускников2:00:41КВН 2024 Встреча выпускников
КВН 2024 Встреча выпускниковОфициальный канал КВН
Просмотров 299 тыс.
Почему?00:22Почему?
Почему?Сам себе сушист
Просмотров 426 тыс.