SQL Injection Tutorial – Sql Injection cheat sheet
SQL Injection Tutorial – Sql Injection cheat sheet . SQL injection allows us to remotely pull down all the tables, login usernames and admin accounts for a website. The most powerful tool for SQL injection is SQLMAP, which we can use on Windows and Kali Linux.
Step 2 – Download SQLMAP for Windows
Install to C:/SQLMAP
Step 3 – Find a vulnerable website
Use
Google Dorks. Search for the dorks, like the one in example down below.
php?=id1
Browse to the website and then put a single dash at the end of the url.
so it reads
php?=id1′
Hit Enter,
If you get an error the website is vulnerable.
Get Here: 2000+ Dorks For SQL Injection
Step 4 – Run SQLMAP Wizard on Windows
cd c:\SQLMAP
dir
look for a second sqlmap-project-sqlmap-xxxx directory.
cd sqlmap-project-sqlmap-xxxx
here you’ll see sqlmap.py listed… this is python scrip to be run.
sqlmap.py –wizard
Select Target Website – including the id=1
Select Injection Difficulty (default)
Go for defaults to start off with.
Select Enumeration level
Full enumeration of the database would be level 3- as shown
Step 5 – ATTACK CODES
SQLMAP will report the OS used first – regardless of what attack code is used.
How do we extract all databases?
Look for how many databases there are, and how many tables!!
How do we extract Tables?
Did you see all the TABLES on the website list out?
Look for likely targets… eg Login, username or password table.
Here we find 11 tables.
Now that we can read the tables, we can start to dump the data out.
*****
How do we get usernames?
Look for “admin
How to get all the Login details?
This should display columns with items such as Cookie, ID, IP, Password, Username.
*****
Step 6 – Get Passwords (of Admin)
****
SQLMAP should be used against all your websites.
The last thing you want is someone to steal your entire database.
The Last You Can Do Is Stealing Someone’s Entire Database.
================================================
How to hack a computer with DarkComet
xD The Watcher
Thursday, August 16, 2018
