Skip to content
/ MSVAScan Public

Scans SQL Server Databases for Security Vulnerabilities

0 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

gwalkey/MSVAScan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

22 Commits
MSVAScan.gif
MSVAScan.gif
 
 
README.md
README.md
 
 
RulesDatabase.xml
RulesDatabase.xml
 
 
Run-MSVAScan.ps1
Run-MSVAScan.ps1
 
 

Repository files navigation

MS Vulnerability Scanner

Scans SQL Server Databases for Security Vulnerabilities

Uses the same Vulnerability database found in SSMS 17.4+, and Azure Defender for SQL (so why pay for that?)
but runs for ALL Databases on a server, not just one at a time like SSMS does

Note:
MS purposefully removed this from SSMS 19.1 so they could charge for the same thing as Defender
https://learn.microsoft.com/en-us/sql/relational-databases/security/sql-vulnerability-assessment?view=sql-server-ver16#removal-of-the-sql-vulnerability-assessment-in-sql-server-management-studio-191

Defender doesnt actively scan for anything, making it useless

Input:
Run-MSVAScan.ps1 -instance SQLSERVERINSTANCE [-User SQLAuthUser] [-Password SQLAuthPassword]

Output:
*HTML file with a scan summary sorted by Severity
*HTML file with a scan summary sorted by Database
*Text file with TSQL Remediation Code for each scanned Database

alt text

About

Scans SQL Server Databases for Security Vulnerabilities

Topics

sql-server security-vulnerability

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages