SQL injection is an attack in which malicious code is inserted into strings that are later passed to an instance of SQL Server for parsing and execution. Any procedure that constructs SQL statements should be reviewed for injection vulnerabilities because SQL Server will execute all syntactically valid queries that it receives. Even parameterized data can be manipulated by a skilled and determined attacker.
SQL Injection can be done by manually injection or via automatic tools. Automatic tools are easy to use and do not require much technical knowledge.
In this tutorial we will discuss Havij. Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page.
- You can download havij from here.
- We will use google dorks to find the vulnerable websites, there is a big list of google dorks which I will post in my future articles but at this time we will only use the following:
inurl:index.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
- Just search google using one of the dork and you will see a lot of vulnerable websites.
- Open any one of the website than put ‘ after the link look:
- If you get the following SQL error, that means the website is vulnerable to SQL-injection attack.
- Now open Havij and paste the link without ‘
- Now we have to find the columns of the database.
- After this you will be able to find the admin id or password but remember normally web server uses MD5 encryption technique, you have to decrypt this password use havij option MD5 or you may read our tutorial on Cracking MD5.
0 Comments:
Post a Comment