Skip to content

Access Control: Exposed MSSQL Server

Identifier: mssql_exposed

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

MSSQL server exposure to the public internet allows unauthorized access attempts, potentially leading to data breaches if the server is not properly secured.

How we test: We attempt to connect to MSSQL servers on standard ports and analyze connection responses to detect if MSSQL servers are exposed to the public internet. We check if servers accept connections from untrusted networks and verify if access controls are properly configured.

Configuration

Example

Example configuration:

---
security_tests:
  mssql_exposed:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.