-- SQL Auditing Tools -------------------------------------------

SQLAT should be used to audit security in Microsoft SQL Servers.
The Tools consist of:

sqlanlz - Does a minimal analysis of the server. Fetching
	  information about databases, users, extended stored
	  procedures and other relevant information. The output
	  is in HTML.

sqldict	- Does a dictionary attack on the user(s) specified.

sqldirtree - Outputs an ASCII directory tree of the base dir
	     you specify.

sqldumplogins - Dump all logins from server.

sqlquery - Interactive query tool.

sqlregenumkey - Enumerate keys from the registry.

sqlreggetvalue - Get value from specific registry key.

sqlsamdump - Dump the SAM from a SQL Server. (requires pwdump2)

sqlupload - Upload files to a SQL Server.


Most of the tools can *only* be run as 'sa'. This usually isn't a 
problem though.

Home of SQL Analyzing Tools
http://www.cqure.net/sqlat/index.html

-----------------------------------------------------------------
Patrik Karlsson <patrik.karlsson@ixsecurity.com>
-----------------------------------------------------------------
