New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
ms-sql-brute in 7.92 not find existing login/password (in 7.91 found successfully) #2388
Comments
Thanks for reporting this. The fix for #2056 made the password stored in Unicode, but the |
I am re-opening this as I just spotted an instance (Microsoft SQL Server 2005 9.00.3042; SP2) where login is failing when the password "P@ssw0rd" is used. |
我也遇到了一个问题
How can I solve this problem? |
same here |
This comment was marked as off-topic.
This comment was marked as off-topic.
While this issue is older it looks like #2622 could be a duplicate and a patch within it is available which could fix this as well. |
I am scanning from Windows 10 20h2, npcap 1.50. Remote sql server info:
Microsoft SQL Server 2016 (RTM-GDR) (KB3210111) - 13.0.1728.2 (X64)
Dec 13 2016 04:40:28
Copyright (c) Microsoft Corporation
Standard Edition (64-bit) on Windows Server 2012 R2 Standard 6.3 (Build 9600: ) (Hypervisor)
Logins file contains only one right login, passwords file contains only one right password. In nmap 7.91 login/password found successfully (sa/p@ssword12-), but in 7.92 not found.
nmap -p 1433 -T4 -d3 -v -Pn --script ms-sql-brute --script-args "mssql.instance-port=1433,userdb=C:\Users\rag\Downloads\usernames.lst,passdb=C:\Users\rag\Downloads\passwords.lst" 192.168.10.104 --disable-arp-ping -sT
7.91_interactive.txt
7.92_interactive.txt
The text was updated successfully, but these errors were encountered: