Add a query for the linked server config if we are local admin

nxc/modules/enum_links.py

@@ -1,11 +1,11 @@
 class NXCModule:
     """
     Enumerate SQL Server linked servers
-    Module by deathflamingo
+    Module by deathflamingo, NeffIsBack
     """
 
     name = "enum_links"
-    description = "Enumerate linked SQL Servers"
+    description = "Enumerate linked SQL Servers and their login configurations."
     supported_protocols = ["mssql"]
     opsec_safe = True
     multiple_hosts = True
@@ -14,6 +14,9 @@ def __init__(self):
         self.mssql_conn = None
         self.context = None
 
+    def options(self, context, module_options):
+        pass
+
     def on_login(self, context, connection):
         self.context = context
         self.mssql_conn = connection.conn
@@ -25,6 +28,18 @@ def on_login(self, context, connection):
         else:
             self.context.log.fail("No linked servers found.")
 
+    def on_admin_login(self, context, connection):
+        res = self.mssql_conn.sql_query("EXEC sp_helplinkedsrvlogin")
+        srvs = [srv for srv in res if srv["Local Login"] != "NULL"]
+        if not srvs:
+            self.context.log.fail("No linked servers found.")
+            return
+        self.context.log.success("Linked servers found:")
+        for srv in srvs:
+            self.context.log.display(f"Linked server: {srv['Linked Server']}")
+            self.context.log.display(f"  - Local login: {srv['Local Login']}")
+            self.context.log.display(f"  - Remote login: {srv['Remote Login']}")
+
     def get_linked_servers(self) -> list:
         """
         Fetches a list of linked servers.
@@ -36,5 +51,3 @@ def get_linked_servers(self) -> list:
         query = "EXEC sp_linkedservers;"
         res = self.mssql_conn.sql_query(query)
         return [server["SRV_NAME"] for server in res] if res else []
-    def options(self, context, module_options):
-        pass