SQL Server – Page 5 – WindowsTechs.com

Why does this SQL injection have an equals symbol?

Posted on May 4, 2022 by Questioner

I was reading into the basics of SQL injection attacks on w3schools here.
In the second example, I was curious as to why the equal sign was used. I have quoted within the line below.

" or ""="

Is there any particular … Continue reading Why does this SQL injection have an equals symbol?→

Decode Encrypted Password help me

Posted on April 23, 2022 by Nikunj Chovatiya

Help me to decode belove password
68H++v5FX/kUty5/itzflw== Above is password store in sql table

Continue reading Decode Encrypted Password help me→

Which Type of Password Encryption is this? and how to Decode it?

Posted on April 23, 2022 by user277278

68H++v5FX/kUty5/itzflw==
Above is password store in sql table

Continue reading Which Type of Password Encryption is this? and how to Decode it?→

Microsoft Introduces SQL Server Information Protection Sensitivity Labels

Posted on April 19, 2022 by Rabia Noureen

Microsoft has announced a new data protection feature for its… Continue reading Microsoft Introduces SQL Server Information Protection Sensitivity Labels→

How should SQL Server users be managed for a multi-tenant application?

Posted on December 1, 2021 by NicholaiRen

I’ve looked extensively for a duplicate question, but I couldn’t find anything that answers this question exactly.
I have a SQL Server that will be used to store data for a multi-tenant application. Every tenant will have their own databas… Continue reading How should SQL Server users be managed for a multi-tenant application?→

AWS Announces the Ability to Switch Windows Server and SQL Server License Types

Posted on November 12, 2021 by Michael Otey

As of this past November 9th 2021, AWS now offers the ability to switch between AWS provided licenses and bring your own licenses (BYOL) for Windows Server and SQL Server instances using the AWS License Manager. Changing the license type associated with your instances will retain the application, instance, data and configuration for that instance. […] Continue reading AWS Announces the Ability to Switch Windows Server and SQL Server License Types→

Is this stored procedure vulnerable to SQL injection?

Posted on October 20, 2021 by fred

My question is about what exploits are possible given the following, not how to prevent SQL injection. I would not use this code in a real application.
Using MSSQL Server 2019, imagine a stored procedure for a search that does something li… Continue reading Is this stored procedure vulnerable to SQL injection?→

Is this stored procedure vulnerable to SQL injection?

Posted on October 20, 2021 by fred

How do I secure SQL passwords when distributing executables?

Posted on October 7, 2021 by Jordan Wirth

Environment
I am creating a python application which writes to SQL.
It is compiled into an .exe and distributed to other computers in the business.
(Edit: The SQL server is hosted by our business, within our intranet. The password is also … Continue reading How do I secure SQL passwords when distributing executables?→

Equivalence of UNC Path Injection and Kerberoasting Attacks on SQL Server

Posted on October 6, 2021 by dmitry

An Active Directory domain is deployed, a domain controller on Windows Server 2019. A computer with SQL Server 2016 is added to it, which is launched under the srv service account. The attacker has unprivileged access to this SQL Server fr… Continue reading Equivalence of UNC Path Injection and Kerberoasting Attacks on SQL Server→