Skip to content

Access Control: Exposed MSSQL Server¶

Identifier: mssql_exposed

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

MSSQL server exposure to the public internet allows unauthorized access attempts, potentially leading to data breaches if the server is not properly secured.

How we test: We attempt to connect to MSSQL servers on standard ports and analyze connection responses to detect if MSSQL servers are exposed to the public internet. We check if servers accept connections from untrusted networks and verify if access controls are properly configured.

Configuration¶

Example¶

Example configuration:

---
security_tests:
  mssql_exposed:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.