Microsoft SQL Server 2000 stores the credentials of its accounts in the "master" database. User's passwords are encrypted under the form of salted SHA-1 hashes into the table "sysxlogins". This feature connects to the server using ODBC and dumps all SQL user's hashes into the MSSQL Hashes Cracker list.


How it works

It connects to the server via ODBC and performs the following SQL command:


select name, password from master..sysxlogins


To dump the hashes go to the MSSQL Hashes Cracker and press the "Insert" button on the keyboard or click the icon with the blue + on the toolbar. Choose the Data Source Name (DSN) for the target server and provide system administrator (SA) credentials.



This feature requires SQL Administrator's privileges on the target database server.