11:36 AM
Unknown
Here is a very big collection of Sql injection Vulnerable Sites to enhance ur website hacking
skills
http://pastebin.com/zEByG2RN
Showing posts with label hacking. Show all posts
Showing posts with label hacking. Show all posts
Friday, January 6, 2012
5k SQL Vulnerable Sites
Here is a very big collection of Sql injection Vulnerable Sites to enhance ur website hacking
skills
http://pastebin.com/zEByG2RN
Sql injection full tutor (Video + tools)
Here is a very big collection of Sql injection video tutor.
You cant find such a big collection of tutor on sql injection any were else.
Basics of SQL-Injections
Web Applications relay on dynamic content to achieve the appeal of traditional desktop windowing programss. This dynamism is typically achieved by retrieving updated data from a database. One of the more popular platforms for web datastores is SQL, and many web applications are based entirely on front-end scripts that simply query an SQL database, either on the web server itself or a spearate back-end system. One of the most insidious attacks on a web application involves hijacking the queries used by the front-end scripts themselves to attain control of the application or its data. One of the most efficient mechanisms for achieving this is a technique called SQL-Injection.
SQL-Injection refers to inputting raw Transact SQL queries into an application to perform an unexpected action. Often, existing queries are simply edited to achieve the same results-- Transact SQL is easily mnipulated by the placement of even a single character in a judiciously chosen spot, causing the entire query to behave in quite malicious ways. Some of the characters commonly used for such input validation attacks include the backtick ( ` ), the double dash ( -- ). and the semicolon ( ; ), all of which have special meaning in transact SQL
CEHv6 Sql injection tutor with Demo| 109 Mb
Deface sites easily in Seconds
steps for Xp-
# open run
# type-
%WINDIR%\EXPLORER.EXE ,::{20D04FE0-3AEA-1069-A2D8-08002B30309D
and press enter !
#A new window name "WEB FOLDER" gets open
#Right click and click on New, Add Web Folder then enter your vulnerable website address.
#then next....finish
# now You can insert your page with name index.html by simply copy pasting.
Also after getting access to the website...Many websites don't allows you to
add your page. so leave them.
#Dork- "Powered by IIS" or use your own unique dork.
--------------------------xx
Windows 7-
#Click Start.
#Click Computer.
# In the following dialog click Map Network Drive.
# On the Map Network Drive dialog, click "Connect to a Web site that you can use to store your documents and Pictures" this will pop up the "Welcome to the Add Network Location Wizard".
# Click on Next.
# Click on ''Choose a custom network location''.
# Click on Next.
# Now type the web folder address that you want to access. For instance: www.stscw.com/
# Enter a NAME to help you identify the web folder and click Next.
# Place a checkmark on 'Open this network location when I click finish'.
# Click Finish.
and insert your deface page !!
NOTE-only for educational purpos
