(When designing a security solution for a client, the other party made a request that we could actually attack their network to verify whether there is a security loophole. Scanning and sniffing, the report came out soon. It is very simple. The administrator password of SQLSERVER is empty. Anyone can log in remotely and connect in the past. I still want to use the extended stored process of CMDSHELL to execute some tools according to the routine. Not the same...
SQLSERVER security test.pdf)