in the previous article you got some idea about sql injection
this is tutorial on using havij for SQL injection
first download havij pro from here and
run it as administrator
you will get this
there are many features
* it can find admin
*it can crack MD5 hashes
*it can get information from databases,table,column
*it can save data for next session
*
now enter the vulnerable url on the top and click on analyze
it will start injecting
now after you get the database
go to top and click on tables and click on get tables to get the tables of the database
now search for something related user info or sensitive information
here i have chosen access table
now click on get columns to get the columns
i got this
now click on get data to get the info
i am not going further because its illegal to do that
for better idea about havij i am giving you the ebook
download it here
hope you liked this post
please like our facebook page
if any doubts feel free to leave comments
thanx bro helps alot
ReplyDeletewelcome
ReplyDelete