SQLSSTT

Assessment Modules

Configuration Audit

• xp_cmdshell - Command execution capability
• OLE Automation - Dangerous OLE procedures
• CLR Integration - Custom assembly execution
• Linked Servers - Trust relationships
• Database Mail - Email functionality abuse

Permission Analysis

• Excessive user privileges
• Orphaned users
• Public role permissions
• Cross-database ownership chaining
• Trustworthy databases

Credential Discovery

• Linked server credentials
• Proxy account credentials
• Service account permissions
• Backup encryption keys

Exploitation Capabilities

• Privilege escalation paths
• Command execution methods
• Data exfiltration techniques
• Persistence mechanisms

Features

Automated Discovery

• SQL Server instance enumeration
• Database discovery
• User and role mapping
• Linked server topology

Security Checks

• 50+ security checks
• OWASP compliance validation
• CIS benchmark alignment
• Custom rule support

Exploitation Framework

• xp_cmdshell execution
• OLE automation abuse
• CLR assembly deployment
• Linked server pivoting

Detailed Reporting

• Risk-rated findings
• Remediation guidance
• Compliance mapping
• Executive summaries

Use Cases

Penetration Testing

Identify and exploit SQL Server vulnerabilities during engagements.

Security Audits

Comprehensive SQL Server security assessments.

Compliance Validation

Verify SQL Server configurations meet security standards.

Hardening

Identify misconfigurations before deployment.

Common Findings

• xp_cmdshell enabled
• Excessive sa account usage
• Weak authentication modes
• Unencrypted connections
• Outdated SQL Server versions
• Dangerous linked server configurations

Remediation Support

For each finding, SQLSSTT provides:

• Risk explanation
• Exploitation scenario
• Remediation steps
• T-SQL fix scripts