Hacking websites : How to hack websites By using SQL Injection

Lokesh Singh August 31, 2009 26




DISCLAIMER: THIS TUTORIAL IS FOR EDUCATIONAL PURPOSES ONLY . IF ANY ONE MISUSED IT I AM NOT RESPONSIBLE FOR THAT.

SQLI Helper to hack website

Today i am GOing to Describe What the SQL Injection IS and How It will Going to help in Hacking the Websites..
I was Asked By Warious Users To Write A Turotial About
HOW TO HACK THE WEBSITES?
Today I am Going to Discuss the Easiest Way to hack the Websites i.e SQL Injection Techniques.
We Will Use The Software SQLI Helper to Perform This. I have provided link for software download… just read on.


How to hack website using SQLI Helper:

SQLI Helper is handy software to hack website. You don’t need to have any knowledge of SQL to hack website using SQLI Helper. Just follow the guidelines below:

1. Free DownLoad SQLI Helper to hack website.

Password: techotips.blogspot.com

2. Unzip the file to obtain SQLI Helper to hack website.

3. Now, when you have website hacking software, you need to find website with potential vulnerability. There are some websites that are unhackable. While finding hackable websites, it is better to search for sites with format “article.php?id=[number]” in url.

Lets consider one example which I will use in this article:

http://encycl.anthropology.ru/article.php?id=1

Check whether your searched victim site can be hacked by entering:

http://encycl.anthropology.ru/article.php?id=’1

in address bar and hit enter. You will get error message like:

Query failed.You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ”1 ORDER BY lastname’ at line 1 SELECT * FROM person_old WHERE id=’1 ORDER BY lastname

If you get such error message, it is confirmed that you can hack website using this method and now you can move forward to hack website.

4. Run SQLI Helper on your Computer.
SQLI Helper to hack website
5. In target field, enter http://encycl.anthropology.ru/article.php?id=1 (the website url you just discovered as hackable) and hit on “Inject”.6. SQLI Helper will search for columns and you will have something like this:

Website hacking software
7. Hit on “Get Database” to get:
Hacking website down
8. Select any element from “Database Name” and click on “Get Tables”.
9. Now, select element from table and hit on “Get Columns”. I have selected “user” to get userid and password required for login.
10. Now, when you know “user” table has columns “usr_login” and “usr_pass”, select them and hit on “Dump Now”.
11. You will get values like these:
password hashes cracked
12. The values achieved are actually in hash and hence you have to crack these hashes to get userlogin and password to hack website. For this, go tohttp://www.md5crack.com/ and crack the hash using “Crack that hash baby” button. Thus, you are now able to hack website as you have got website user id and password. Once, you get admin password, you can easily hack website.
Thus friends, now, I hope you know how to hack website using SQL Helper. Note that using this method you cannot hack every website. SQL Helper will help you to hack website in easy way. If you have any problem in usingSQL Helper to hack website,please mention it in comments.Enjoy SQL Helper to hack website…

DON’T FORGET TO SAY THANKS !

 




26 Comments »

  1. Lucky August 18, 2009 at 10:03 am - Reply

    Really Nice Tutorial… I love You site.. Keep..

  2. Anonymous August 24, 2009 at 6:10 am - Reply

    Damn Good… i visited your blogspot todafor the 1st time. i m impressed by the way you teach and share your knowledge. i request you to conti this sharing. :) all the best.

  3. Lokesh Singh August 31, 2009 at 12:44 am - Reply

    Thanks !

  4. Mr.Hacker August 31, 2009 at 1:17 am - Reply

    awesome .. really a good tutor…

  5. Anonymous August 31, 2009 at 1:18 am - Reply

    U rock Man.. Now i am hacker..

  6. Anonymous August 31, 2009 at 1:40 am - Reply

    your blog is Unique yaar…

  7. Anonymous August 31, 2009 at 5:06 am - Reply

    u r really rocking dude. but i need one small help, i am trying for premium accounts but i am unable to acheive those. could u pls tel me the rapidshare preimium account andd password to my mail ravellavarun@gmail.com
    u knw since tree days i learned a lot by this blog

  8. Lokesh Singh August 31, 2009 at 7:08 am - Reply

    Yaa that’s Beacause of Rapidsahre’s New Policy ..
    If the One Premium account is being sahred by 3 Ip’s a the Same time Its password will be reseted or Even the account will be banned..
    My 7 accounts are banned and 2 still working but their password changes daily..

  9. nash September 11, 2009 at 4:45 am - Reply

    dude the sftwre u askd to dwnload is asking for passwrd to unzip ply give me the psswrd

  10. LOKESH@ADMIN September 11, 2009 at 5:20 am - Reply

    Password: techotips.blogspot.com

  11. Vivek November 21, 2009 at 12:05 pm - Reply

    hey dude what if they have removed the page with article.php?id=1 and the new pages are like node/1,node/2,….etc…

  12. rohit November 22, 2009 at 9:50 am - Reply

    the setup is not working,it says “failed to initialize”
    does it need any other software to run it such as .net

  13. Vivek November 26, 2009 at 2:21 pm - Reply

    why are you not replying….

  14. Anonymous November 26, 2009 at 3:32 pm - Reply

    yeah it need .net framework to run..

  15. Anonymous November 26, 2009 at 3:32 pm - Reply

    @Vivek
    itz the limitation of software..

  16. Anonymous March 23, 2010 at 9:42 pm - Reply

    step s sayin error……… its nt workn at all…. same u did in hackforum.. also not workin try to be perfect befor u postin somthn

  17. Lokesh@Admin March 24, 2010 at 12:31 am - Reply

    which step showing error tell Me.. I will help you.

  18. Anonymous July 30, 2010 at 1:56 am - Reply

    For the first time i had seen a real hacking website……..awesome man…..

  19. Rishi Khan July 31, 2010 at 7:41 pm - Reply

    how will i find the id number i mean u wrote php?id=1 wat s this i dont understand

  20. tartou2 November 29, 2010 at 2:39 pm - Reply

    I don’t mind leeching my posts but at lest give me credits for my work

  21. Lokesh Singh November 29, 2010 at 5:10 pm - Reply

    noob check the time when its get posted …. Its Auguest 2009 post… i.e This post was so old when u havn’t even started hacking…
    Rofl I am ur Dad in Hacking… I never leeched any article from any website…. I write my articles based on my experience and practicals not just by listening noobs….

  22. Anonymous December 27, 2010 at 1:15 pm - Reply

    “Object reference not set to an instance of an object.” whts this means ?

  23. Anonymous December 28, 2010 at 4:28 pm - Reply

    i can download the sql injection pls help me

  24. Anonymous December 28, 2010 at 4:29 pm - Reply

    pls help me here is my e mail address kup7502003@yahoo.com pls i want to know how to hack for credit card?

  25. view web page January 19, 2015 at 8:26 pm - Reply

    Great post. I was checking continuously this blog and I am impressed!

    Extremely helpful information specially the last part :
    ) I care for such info much. I was looking for this certain info for a
    long time. Thank you and good luck.

    • shabir rj March 21, 2015 at 8:11 pm - Reply

      Finally Wifi hack

Leave A Response »