As we all know SQL
injection is that vulnerability which is mostly can be found in any server.
Weather high profile sites or low profile sites all are found to be vulnerable
to SQL injection.
But the problem comes when we unable to find vulnerable sites. So today i am going to show you how to find these sites vulnerable to SQL injection.
So let get started--->
But the problem comes when we unable to find vulnerable sites. So today i am going to show you how to find these sites vulnerable to SQL injection.
So let get started--->
Finding SQL
Vulnerable Sites on a Server
As we all know on a server huge amount of sites are hosted.
So using server for finding vulnerable sites is a good option..
Now let’s try our first method......
1. First select any random site like is selected www.artcarworld.org
2. Now you to do a process called Reverse IP Lookup to this
site so as to find site hosted on server where our selected site is hosted. To
do Reverse IP Lookup you have to go to this site http://www.yougetsignal.com/tools/web-sites-on-web-server/
and the selected site in the Remote address field and click on Check like in
image given below.
4. Now in image ip address of the server is given in top
right corner, so copy.
5. Now open www.bing.com
6. In Search box type ip:98.129.229.170
php?id= and click on search icon.
Must replace 98.129.229.170 with your selected server ip.
7. After that bing will search the sites which have
extension php?id= like this
www.site.com/index.php?id= and it will give u a list of sites which ends
with this extension php?id= like in image given below.
8. Now select any of one site and add ' after the url to
check whether site is vulnerable to SQL injection or not. If site is vulnerable
then its good if not then check other site from search result.
9. If found any site vulnerable to sql then Hack it using
SQL Exploiter tools.
Method Second will be explained in next post.
Just comment if any problem and share my post.
Thanks for reading.
Post a Comment