The command is working as expected but the issue is that the \ needs to be escaped and become /\… meaning the working command is
python3 mssqlclient.py ARCHETYPE/\sql_svc:M3g4c0rp123@10.10.10.27 -windows-auth
# notice the escaping of the \
huh? ‘/’ is not an escape character. Backslashes (‘') are used to escape characters. You could just use a forward-slash (’/‘). A properly escaped backslash (’\‘) won’t work with this script because that’s not valid syntax. The ‘/\s…’ only works because the ‘\s’ translates to s, but had the username began with an ‘n’, that would be interpreted as a newline character (’\n’).
If you run the mssqlclient.py script with just a -h flag, the help message implies that it only accepts ‘/’ as a separator between domain and username.
target [[domain/]username[:password]@]<targetName or address>
 Encryption required, switching to TLS
 ENVCHANGE(DATABASE): Old Value: master, New Value: master
 ENVCHANGE(LANGUAGE): Old Value: , New Value: us_english
 ENVCHANGE(PACKETSIZE): Old Value: 4096, New Value: 16192
 INFO(ARCHETYPE): Line 1: Changed database context to ‘master’.
 INFO(ARCHETYPE): Line 1: Changed language setting to us_english.
[*] ACK: Result: 1 - Microsoft SQL Server (140 3232)
[!] Press help for extra shell commands
For all with the errorcode: connection timeout
delete all openvpn files → kill the openvpn connection → reconnect to the startingpoint → refresh the website and Maschine IP → run the “python3 mssqlclient.py ARCHETYPEemail@example.com -windows-auth” code again
Traceback (most recent call last):
File “/root/.local/share/Trash/files/impacket/examples/mssqlclient.py”, line 169, in
File “/usr/local/lib/python3.9/dist-packages/impacket/tds.py”, line 535, in connect
OSError: [Errno 113] No route to host