PowerUpSQL
PowerUpSQL copied to clipboard
NetSPI
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
Right now Invoke-SQLAuditRoleDbOwner only reviews configurations that apply to the current user. Modify it to identify db ownership across all databases/logins.
Hey, i just found out that Invoke-SQLUncPathInjection tries to load Inveigh every time via IEX from github. By executing this function on an engagement without internet connectivity the whole function...
Requester: kevin @GuhnooPlusLinux Question: @nullbind Is there anything special you have to do for webdav auth in MSSQL? Tested all formats listed in the PowerUpSQL UNC path cheatsheet but no...
There have been some reports that providing alternative domain credentials via the "-Username" flag in the "Get-SQLQuery" function fails...which is the core of most PowerUpSQL functions. For now, the work...
It appears that when running Get-SQLServerLoginDefaultPw, errors arise in cases where instances that are found that have multiple sets of credentials that need to be tried. For instance. SQLEXPRESS instances...
add challenge option to Invoke-SQLUncPathInjection so custom static challenge can be set.
Large queries currently timeout even with the -timeout flag set, because you are missing the following line in the get-sqlquery function. $Command.CommandTimeout=$TimeOut
Get-SqlInstanceScanUDPThreaded verbose output doesn't show scanned computer.
Would it be possible to implement nested impersonation capabilities in the scenario in which you cannot go straight to sysadmin? If not, am I missing an understanding as to why...