Today I am going to teach you Website Hacking Using Havij Powerfull Sql Injetion ToolIt is simple to hack with this Professional Tool Havij.You will learn how to get Usernames
Passwords and other details from vulnerable sites.
Go to google enter the dorks bellow
inurl:class.php?id=
inurl:faq2.php?id=
inurl:article.php?id=
inurl:main.php?id=
More can be found from Google!
inurl:article.php?id=
inurl:main.php?id=
More can be found from Google!
Select a vulnerable website
eg; http://thewsite.com/class.php?id=12
Add (') without brackets to the adress
and the website above will be like http://thewsite.com/class.php?id=12'
Download Havij Sql Injection Tool
Download
Open Havij
Enter the site address in the Target Field and click Analyse
Wait till the tool analyses
Then if ur site is vulnerable you will be getting the database name in log field
eg “Current DB: ViRtUaL_SEdA_MaIn”
Click on Get DBS
Select A Database
Click on Get Tables
Select A Table
Click on Get Colums
Select Some Columns eg username,password, ect
Click on Get Data
You will be getting Usernames and Passwords
Note:Passwords will be in encrypted form(eg; *3F5FB6596AF8D91ED7B5AC13071C73BF3E819A9A)
How to Decrypt passwords
Click on MD5
Paste the encrypted password and click Start
Now you will have the plain Passwords
now you will have to find the Admin page
How to find the Admin Page
Click Find Admin
Enter the site address and click Start
Now Login Sucessfully
Note:This tutorial is only for practicals in your own Labs and Websites
Update:
Download: Havij 1.5 Pro Full Version Download
Author: Rashin Sundaran
I am a Blogger and E.H.Interested in all tech works like Web Designing, Blogging Creating, Seo Works, Security Works And soon
2 comments:
This is very educational content and written well for a change. It's nice to see some people still understand how to produce a quality post!
@Ken Thanks!
Post a Comment