What is Agent-as-a-Service pentesting?

Agent-as-a-Service (AaaS) pentesting lets you chat with autonomous pentesting agents that scan your application on demand. Instead of waiting weeks for a manual engagement, you talk to specialized agents — pen-scout (recon and surface mapping), pen-recon (deeper enumeration), pen-triage (validates and prioritizes findings), pen-fixer (remediation guidance), and pen-compliance (OWASP/standards mapping). Findings are validated with proof-of-concept and re-test, not just flagged. You start with 150 free credits, no credit card.

What are credits and how do they work?

Credits are how you run agent scans. Each scan or agent action consumes credits based on its depth. New accounts get 150 free credits with no card required. After that you can buy one-time credit packs ($29, $79, or $199) for pay-as-you-go use, or subscribe to a monthly tier ($49, $149, or $399/mo) for continuous, on-demand pentesting. The agents pen-scout, pen-recon, pen-triage, pen-fixer and pen-compliance all draw from the same credit balance.

Yes. Every new account gets 150 free credits with no credit card required — enough to chat with the pentesting agents and run real scans against your app. There is also a free security headers scan at sable.somoswilab.com/free-scan and a sample report at sable.somoswilab.com/sample-report. The free tier runs on OpenRouter models so you can evaluate the autonomous agents before paying.

What is penetration testing for startups?

Penetration testing (pentesting) is a simulated cyberattack against your application to find security vulnerabilities before real attackers do. For startups, we focus on the issues that matter most at your stage: authentication flaws, data exposure, API security, and common mistakes in modern stacks like Next.js, Supabase, and Firebase.

How much does a pentest cost?

Traditional pentests cost $10,000-$50,000+. SableOffensive starts at $29 for a Pre-Launch Check covering OWASP Top 10 and secrets detection. Founder Shield ($79) adds IDOR testing, auth bypass, and a debrief call. Scale Secure ($199) is a full-scope assessment. Every plan includes a professional report with remediation steps.

How long does a security scan take?

Pre-Launch Check reports are delivered within 24-48 hours. Founder Shield and Scale Secure may take 2-3 business days depending on the complexity of your application.

What do I need to provide?

At minimum, just your application URL. For more comprehensive testing, we may ask for staging credentials, API documentation, or GitHub repository access. We sign NDAs for all engagements.

What is OWASP Top 10?

OWASP Top 10 is the industry standard list of the most critical web application security risks. It includes injection attacks, broken authentication, cross-site scripting (XSS), server-side request forgery (SSRF), and security misconfigurations. Every SableOffensive assessment tests against the full OWASP Top 10.

Do you test AI-generated code?

Yes. Code generated by AI tools like Cursor, GitHub Copilot, and v0 often contains subtle security issues: hardcoded secrets, missing input validation, insecure API patterns, and overly permissive access controls. We have specific testing procedures for AI-generated codebases.

How do you secure Supabase and Firebase apps?

For Supabase, we audit Row Level Security (RLS) policies, test for direct table access, and check for exposed service keys. For Firebase, we review security rules, test Firestore/RTDB access patterns, and check Cloud Functions for vulnerabilities.

What if you find zero vulnerabilities?

50% money back guarantee. If our scan finds zero security issues, you get half your money back.

Is there a free pentesting option?

Yes. SableOffensive offers a free security headers scan at sable.somoswilab.com/free-scan. It instantly checks your website for 8 critical security headers (HSTS, CSP, X-Frame-Options, and more) and gives you an A-F grade with copy-paste fixes. No signup or payment required.

Can I get a free vulnerability scan?

Our free security headers check scans your website instantly and grades your security posture. For a deeper free assessment, contact us — we occasionally offer complimentary scans for early-stage startups and open source projects.

CVE-2026-21262: SQL Server Zero-Day — Any User to Sysadmin (CVSS 8.8)

TL;DR — CVE-2026-21262: Patch Now, Scope is Massive

500K+

Instances Exposed

SQL Server on public internet

8.8

CVSS Score

HIGH severity (zero-day)

SQL Server Versions

SQL 2016 SP3 → SQL 2025

0 days

Patch Window

actively exploited in the wild

Bottom line: Any user with a SQL Server login — your app service account, a contractor's read-only credentials, even a guest account — can own the entire database server. If your SQL Server is internet-accessible and unpatched, assume it is already compromised.

Vulnerability Details

CVE IDCVE-2026-21262

CVSS Score8.8 (HIGH)

TypeElevation of Privilege (EoP)

Zero-DayYES — exploited before patch

Attack VectorNetwork (TCP/1433)

Auth RequiredLow — any SQL login

PatchedMarch 10, 2026 (Patch Tuesday)

CWECWE-284 — Improper Access Control

Actively Exploited Before Patch

Microsoft confirmed exploitation in the wild prior to the March 10 patch release. This means threat actors — including ransomware groups — already had working exploits before defenders had a fix. The window between public knowledge and mass exploitation for this class of vulnerability is typically under 48 hours.

Attack Chain: 3 Steps to Full Database Control

The attack requires no special tooling — just a SQL client and valid credentials. The entire chain can execute in under 60 seconds on an unpatched target.

1Initial Access — Any Authenticated User

Attacker obtains any valid SQL Server credentials (low-privileged db_reader, guest, or app service account)

Credentials are widely available: leaked via credential stuffing, phishing, or reused from breached systems

Target must be reachable on TCP/1433 — Shodan shows 500K+ instances internet-accessible

No special permissions required — a newly created test account is sufficient

2Protocol Exploitation — Network Layer Manipulation

Attacker sends crafted TDS (Tabular Data Stream) packets to the SQL Server network endpoint

The network layer protocol implementation performs improper access control validation on certain protocol messages

A specifically crafted sequence of TDS packets triggers the flaw in the permission-checking code path

SQL Server processes the packets using the privileges of the server process rather than the authenticated user

3Privilege Escalation — Low-Priv to Sysadmin

Exploited flaw allows attacker to execute operations as the sysadmin role over the existing network connection

No server restart required; escalation happens in-session via the network protocol

Full sysadmin access: read/write/delete any database, create new logins, execute OS commands via xp_cmdshell

Attacker can add themselves as a permanent sysadmin login — persistence survives session termination

root-cause — tds-protocol.md

# Root cause: improper access control in TDS packet handler

# The handler processes certain packet types with elevated context

# before the user privilege check completes

Attacker sends: crafted TDS PacketType=0x12

SQL Server resolves: permission check SKIPPED

Execution context: sysadmin

→ Full database compromise in a single network round-trip

What Attackers Can Do With Sysadmin Access

Sysadmin in SQL Server is equivalent to root on Linux or SYSTEM on Windows. From this position, attackers can do everything — and typically do:

🗄️Read entire database

CRITICAL

SELECT * FROM master..sysdatabases
SELECT * FROM SensitiveTable

💻Execute OS commands

CRITICAL

EXEC xp_cmdshell 'whoami'
EXEC xp_cmdshell 'net user attacker P@ss123 /add'

🔑Create backdoor login

CRITICAL

CREATE LOGIN backdoor WITH PASSWORD='P@ss123!'
EXEC sp_addsrvrolemember 'backdoor','sysadmin'

📤Exfiltrate via linked server

HIGH

SELECT * FROM OPENROWSET('SQLNCLI','...',
'SELECT sensitive_col FROM prod_db.dbo.customers')

🕵️Disable audit logging

HIGH

ALTER SERVER AUDIT [AuditSpec] WITH (STATE=OFF)
DROP SERVER AUDIT [AuditSpec]

🔒Deploy ransomware payload

CRITICAL

EXEC xp_cmdshell 'powershell -enc <b64_payload>'
-- Encrypt SQL Server data files in place

Affected Versions & Required Patches

Version	Last Vulnerable Build	Status	KB Article
SQL Server 2016 SP3	CU17 GDR and earlier	VULNERABLE	`KB5040946`
SQL Server 2017	CU31 GDR and earlier	VULNERABLE	`KB5040939`
SQL Server 2019	CU28 GDR and earlier	VULNERABLE	`KB5046860`
SQL Server 2022	CU16 GDR and earlier	VULNERABLE	`KB5077465`
SQL Server 2025	RTM and earlier	VULNERABLE	`KB5077480`

Azure SQL Database and SQL Managed Instance

Microsoft-managed cloud SQL services were patched automatically. No action required for Azure SQL Database or SQL Managed Instance deployments.

Global Exposure: 500K+ Internet-Accessible Instances

Shodan indexes over 500,000 SQL Server instances accessible on TCP/1433 from the public internet. Many are production databases — not dev or test — because "it's always been open" or because an app deployment opened the port and nobody noticed.

Geographic Distribution (Shodan, March 2026)

🇺🇸United States

34%~170K

🇩🇪Germany

12%~60K

🇬🇧United Kingdom

8%~40K

🇫🇷France

6%~30K

🇧🇷Brazil

5%~25K

🇨🇳China

5%~25K

🇯🇵Japan

4%~20K

🌍Other

26%~130K

LATAM Exposure

Brazil alone accounts for ~25,000 exposed instances. Mexico, Colombia, and Argentina contribute an additional ~15,000 combined. Many are SMB deployments running SQL Server 2016 or 2017 with no automatic updates configured — the highest-risk cohort for this vulnerability.

Mitigation: 5 Steps to Remediate

Patch first. Then harden. Then detect. In that order.

1Apply the March 2026 Patch Tuesday update

-- Verify current SQL Server version:
SELECT @@VERSION

-- You need:
-- SQL 2022: KB5077465 (build 16.0.4175.1+)
-- SQL 2019: KB5046860 (build 15.0.4430.1+)
-- SQL 2017: KB5040939 (build 14.0.3485.1+)
-- SQL 2016: KB5040946 (build 13.0.6445.1+)

2Restrict SQL Server network access immediately

# Block TCP/1433 on firewall for all IPs except app servers:
iptables -A INPUT -p tcp --dport 1433 -s 10.0.0.0/8 -j ACCEPT
iptables -A INPUT -p tcp --dport 1433 -j DROP

# Or in Windows Firewall:
netsh advfirewall firewall add rule name="SQL Block" protocol=TCP dir=in localport=1433 action=block

3Audit all SQL Server logins and privileges

-- List all sysadmin members:
SELECT name, type_desc, is_disabled
FROM sys.server_principals
WHERE IS_SRVROLEMEMBER('sysadmin', name) = 1

-- Disable SQL auth if using Windows-only:
ALTER LOGIN [sa] DISABLE

4Enable SQL Server audit logging

-- Create server audit:
CREATE SERVER AUDIT [SecurityAudit]
TO FILE (FILEPATH = 'C:\SQLAudit\')
WITH (ON_FAILURE = CONTINUE);
ALTER SERVER AUDIT [SecurityAudit] WITH (STATE = ON);

-- Monitor failed logins and privilege changes:
CREATE SERVER AUDIT SPECIFICATION [LoginAudit]
FOR SERVER AUDIT [SecurityAudit]
ADD (FAILED_LOGIN_GROUP),
ADD (SERVER_PRINCIPAL_CHANGE_GROUP);

5Rotate all SQL Server credentials

-- Rotate sa and all service account passwords:
ALTER LOGIN [sa] WITH PASSWORD = '<new-strong-password>';
ALTER LOGIN [app_service] WITH PASSWORD = '<new-strong-password>';

-- Revoke unnecessary permissions:
REVOKE CONNECT SQL FROM [low_priv_user];
DROP USER [unused_account];

Detection Queries: Hunt for Active Exploitation

If you can't patch immediately, run these queries to detect signs of compromise. Unexplained sysadmin additions or xp_cmdshell calls are immediate red flags.

Detect new sysadmin additions

SELECT
  event_time,
  server_principal_name,
  target_server_principal_name,
  statement
FROM sys.fn_get_audit_file('C:\SQLAudit\*', DEFAULT, DEFAULT)
WHERE action_id = 'ADRO'
AND class_type = 'SR'  -- Server Role

Find xp_cmdshell executions

SELECT
  event_time,
  server_principal_name,
  statement
FROM sys.fn_get_audit_file('C:\SQLAudit\*', DEFAULT, DEFAULT)
WHERE statement LIKE '%xp_cmdshell%'
ORDER BY event_time DESC

Check if instance is internet-exposed

-- Run from server:
nmap -sV -p 1433 $(curl -s ifconfig.me)
-- If open: your SQL Server is internet-accessible

March 2026 Patch Tuesday: Other Critical CVEs

83 CVEs were patched in the same release. These four are worth immediate attention for startup and enterprise environments:

CVE-2026-26115PATCHED

CVSS 8.1

SQL Server EoP via linked server — same March 2026 patch batch

CVE-2026-26127PATCHED

CVSS 7.5

.NET Framework DoS — publicly disclosed zero-day, same Patch Tuesday

CVE-2026-26144PATCHED

CVSS 7.3

Microsoft Copilot data exfiltration via prompt injection

CVE-2026-21536PATCHED

CVSS 9.8

Microsoft Devices Pricing Program RCE — unrestricted file upload

Timeline

Before March 10, 2026

Active exploitation in the wild confirmed by Microsoft

March 10, 2026

CVE-2026-21262 disclosed and patched in March Patch Tuesday (83 CVEs total)

March 10–12, 2026

Rapid public analysis; PoC code circulates within security community

March 12, 2026

CISA adds to Known Exploited Vulnerabilities (KEV) catalog

March 17, 2026

Sable Security publishes this research and exposure analysis

Ongoing

Mass exploitation campaigns targeting unpatched internet-exposed instances

References

Microsoft Security Advisory — CVE-2026-21262 KB5077465 — SQL Server 2022 GDR Security Update CISA KEV — CVE-2026-21262 NVD — CVE-2026-21262 Detail March 2026 Patch Tuesday Overview — Microsoft

Free Security Headers Check

Instant A-F grade for your site. Check 8 critical headers in 3 seconds.

Full Pentest — from $29

OWASP Top 10, API security, secrets detection. Manual expert report in 24-48h.