Comments on: SQL Vulnerability Assessment Available in SSMS

By: ThomasLaRock

ThomasLaRock — Tue, 12 Dec 2017 16:47:00 +0000

I’m looking in the file here: https://github.com/Microsoft/tigertoolbox/blob/master/BPCheck/Check_BP_Servers.sql

But I don’t see the code for VA in there. I see a lot of great stuff, just not the specific stuff for VA broken out.

I’d really like to see all of this fully documented on MSDN…I wonder if Microsoft would be willing to let us create our own page? They already allow edits to BOL articles, maybe we just need to help them get this done.

Of course, I’d love to see a full project, cross platform.

By: Dave Walden

Dave Walden — Tue, 12 Dec 2017 14:51:00 +0000

In poking around, it looks like a lot of this is already part of the Check_BP_Servers script out in the Tigerteam GitHub

By: ThomasLaRock

ThomasLaRock — Fri, 08 Dec 2017 12:31:00 +0000

In reply to Chris Yates. Yessir, this is huge. A wonderful step forwards, IMO. Thanks for the comment Chris.

By: ThomasLaRock

ThomasLaRock — Fri, 08 Dec 2017 12:30:00 +0000

In reply to Koen Verbeeck. Yes! That's why I'm pushing for Microsoft to publish more documentation on this feature. Otherwise we have to scrape the T-SQL ourselves to reverse engineer. Would be great if they put this into Git, and had other users start building out similar scripts for other engines, too.

By: Chris Yates

Chris Yates — Fri, 08 Dec 2017 12:09:00 +0000

I am so glad to see this come into play for SQL as a built in functionality. Just from an auditing perspective and being in the financial district this is a huge step for SQL. Thanks for sharing this post Tom; have a good one.

By: Koen Verbeeck

Koen Verbeeck — Fri, 08 Dec 2017 08:18:00 +0000

The next step of course is automating this for all databases 🙂