Click here to monitor SSC
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 

Get your favorite SSC scripts directly in SSMS with the free SQL Scripts addin. Search for scripts directly from SSMS, and instantly access any saved scripts in your SSC briefcase from the favorites tab.
Download now (direct download link)

Find SA password with public role-perm test DBA

By Joseph Gama,

Find SA Password (Brute Force) with Public Role


FindSApublic is a brute-force password cracker that requires only public role.

Possibilities  returns how many different passwords are possible with 1 up to c characters from a universe of n different characters.

Usage:

FindSApublic n

N is an integer which is the maximum length of the password to attempt cracking.


Acknowledgments
original idea:
David Litchfield
david@ngssoftware.com
Next Generation Security Software Ltd ©
http://www.nextgenss.com/
Thank you David, for sharing your report and allowing me to use it for my educational test code.
Highly recomended reading:
http://www.nextgenss.com/papers/cracking-sql-passwords.pdf

original idea and code:
Chris Anley
chris@ngssoftware.com
Next Generation Security Software Ltd ©
http://www.nextgenss.com/
Thank you Chris, for sharing your report and allowing me to use it for my educational test code.
Highly recomended reading:
http://www.nextgenss.com/papers/advanced_sql_injection.pdf


This code is provided as is and for educational purposes only.

Developed, adapted or translated to TSQL by Joseph Gama.

Total article views: 941 | Views in the last 30 days: 1
 
Related Articles
ARTICLE

How Safe are Your Passwords?

How safe are your SQL passwords? Use these free tools to find out how secure your passwords are and ...

FORUM

Passwords

Storing passwords securely

FORUM

password issues

password issues

FORUM

Password change

Password change

FORUM

password polacy

password polacy

Tags
 
Contribute