killchain-compendium/exploit/sqli/mssql.md

# MSSQL

# Usage

* `sqsh` as a shell
* After connection is established check `xp_cmdshell'
```sh
xp_cmdshell 'whoami';
```
mssql 2021-12-12 00:54:07 +01:00			`# MSSQL`

			`# Usage`

			* `sqsh` as a shell
			* After connection is established check `xp_cmdshell'
			```sh
			`xp_cmdshell 'whoami';`
			```