[Tutorial] The noobs guide to SQL injections.

Status
Not open for further replies.

X1M!

le troller
Jan 6, 2011
179
1
I will teach you how to inject websites to get their mysql information. This is my first tutorial, and excuse my grammar, I havent slept for 23 hours.

Requires:
MySQL Knowledge
Common sense

First, download file. If you dont trust, dont download. Extract it to a folder and run the executable file, DO NOT MINIMIZE IT WHEN U RUN IT.

You should see , I have marked sections with ID's, I will be using them thru the tutorial.

Our main target in this tutorial will be a netherland fag's portfolio, you can find it .
Inspect the website, you will probably see a gallery. Now, this guy uses MySQL to store the pictures location and a small comment. He sorts them by their id. Add a at the end of the URL, see what happend? He hasnt secured his sql queries and it returns a SQL error, we are gonna exploit that.

Open the program you previously downloaded and write in the URL without a single quote in the end. Note that 1B will start scrolling text, it shouldnt take long until it says "Please get database", if it doesnt, then the site cant be injected.

When you get the message "get database" in 1B, press 1C, it will load in the MySQL Database into 3A. When that is finished, pick a database in 3A and press 2A, the MySQL tables will load. When they are loaded, pick a table in 3B and press 2B, it will load the MySQL columns. When that is loaded, hold CTRL and press the desired columns inside 3B, then press 4A, it will extract the data from MySQL Database.

You are done.

Happy injecting.

/X

[MOD] Wrong Section - Moved To Tutorials [/MOD]​
 

X1M!

le troller
Jan 6, 2011
179
1
Ceejay, one pic is all that is needed, everything else bases on common sense.

obrienray1, I doubt it since I have scanned the file online and with my virus program. Maybe your virus program responds badly towards the methods used by the program.
 

X1M!

le troller
Jan 6, 2011
179
1
mcAfee.. LOL
Try temporarily disabling it while extracting?
 

Kryptos

prjRev.com
Jul 21, 2010
2,205
1,252
I just want to point out how easy it is to patch this, he uses GET to get the id of the photo or whatever, the patch is:
PHP:
if(!is_numeric($_GET['id'])) {
echo "The ID isn't numeric.";
}

Sure this will be helpful to people who are curious on how to SQL Inject. Thanks for sharing.
 

X1M!

le troller
Jan 6, 2011
179
1
Yeah, it is easy to fix, but some people (*cough*danish*cough*) doesnt do that, and I love to steal their data AND THEN email them and tell them how to fix.
 
Status
Not open for further replies.

Users who are viewing this thread

Top