Login | Register
Results 21 to 30 of 83

Thread: How to find vulnerable websites (For beginners)


  1. Curt's Avatar

    Curt Former Staff

    Join Date Oct 2009

    Posts 2,789

    Membership Former Staff

    Reputation: 26740

    04-12-2011 04:11 PM #1 How to find vulnerable websites (For beginners)

    [font=Tahoma]I thought i'd post this because using a tool like this is much quicker than doing manual SQLI (unless you prefer doing it old school.:tongue This tool is a little like havij but in my opinion better. I will only be showing you howto find vulnerable websites with this tutorial as their's plenty of tutorials on how to deface an sql vulnerable site.

    First off you need to download the actual tool itself (No this is not my own tool)
    Download (Survey free);

    [Only registered and activated users can see links. ]

    Once you've downloaded the program itself from the above download link, you need to extract it to a place you will know where to find it. You can find a picture of the programme itself, once opened, below.

    Spoiler:


    NOTE- Make sure you don't extract the tool away from the folder because that's where the dorks are.

    Ok so now for the tutorial, this is a little long but who ever said hacking was easy? just simply follow these steps bellow and then you will be successful in "hacking" your opponent.

    Step 1 -First you will need to click the "Scanner" tab and then the little "+" icon on the "All dorks". Once done you will see a list like below.
    Spoiler:

    this is called a "dork" you can pick any dork you want via clicking the little "+" icon, again.

    Step 2 - Next you will need to pick a specific "dork" I'm going to be using ASP with dork ; ".asp?bookID=" you can (enter it into the search box the type of dork you're looking for. This tutorial doesn't require this specific dork, you can chose one to your own preference. So now our stage process should be as shown below.
    Spoiler:


    Step 3 - Now you will need to press the scan button, make sure to press "Remove duplicates". See the below picture.
    Spoiler:


    Step 4 - Once you've completed "Step 3" the next thing you will need to do is right click your list (the white part) and press "Send to SQLI Crawler" as so.
    Spoiler:


    Step 5 - Once in the SQLI Crawler you will need to press "Crawl" this will find you the vulnerable links from the ones you just just imported, this didn't work for me as good as I was hoping. It should look like the following.
    Spoiler:


    Step 6 - Once your list is populated you have now got yourself some vulnerable sites to SQL inject.

    I would of continued the tutorial into more depth of executing SQL injection with this tool but there's already tutorials around that you can use. If you need any help with SQL injecting/uploading a shell just PM me, I'll be more than happy to help. I know you might think this tutorial is well pointless but it's a simple way of finding vulnerable websites whilst using some of the best dorks. Oh and before you guys say isn't it better just using "Google" well in my opinion no, this method tells you if its vulnerable and gives you over +50 sites at a time which will keep you busy.

    I hope you liked this tutorial and remember whenever hacking/exploiting sites always use a proxy to hide yourself, here's a few proxy's that I use.

    [Only registered and activated users can see links. ]
    [Only registered and activated users can see links. ]
    [Only registered and activated users can see links. ] (best in my opinion)



    Remember all my tutorials I do myself from my own personal knowledge. Here's some other tutorials I made ;
    How to hack phpbb2 forums
    How to deface vbulletin site's once gained admin


    Virus scan.
    [Only registered and activated users can see links. ]
    Last edited by Curt; 09-06-2012 at 06:48 PM. Reason: New pictures + virus scan + new text.


  2. Curt's Avatar

    Curt Former Staff

    Join Date Oct 2009

    Posts 2,789

    Membership Former Staff

    Reputation: 26740

    04-13-2011 09:37 AM #21


    Quote Originally Posted by Stxyzth View Post
    You say always use a proxy but how would we use it with the program?
    Yeah..always use a proxy when uploading your shells/defacing otherwise you'll get caught...Just download a VPN like hotspotsheild...
    Last edited by Curt; 04-13-2011 at 10:51 PM.

  3. The Following User Says Thank You to Curt For This Useful Post:

    Stx

  4. Pimp's Avatar

    Pimp Rustler Of Jimmies

    Join Date Sep 2010

    Posts 3,470

    Membership Elite Founder

    Reputation: 32278

    04-13-2011 09:00 PM #22

    This info makes me Feel 1337 , Naw in no jokes this is a nicely organized and imformative thread good job :y:
    PS4 PSN: LazyStarfish

  5. Curt's Avatar

    Curt Former Staff

    Join Date Oct 2009

    Posts 2,789

    Membership Former Staff

    Reputation: 26740

    04-13-2011 09:50 PM #23

    Quote Originally Posted by RKLFL View Post
    This info makes me Feel 1337 , Naw in no jokes this is a nicely organized and imformative thread good job :y:
    Thanks man, if you get stuck just let me know

  6. Join Date Aug 2010

    Posts 5,542

    Membership Elite

    Reputation: 25287

    04-14-2011 01:02 PM #24

    Moved out of the trash forum for various reasons .

  7. Tuhoaja's Avatar

    Tuhoaja At least I can fight

    Join Date Mar 2010

    Posts 2,227

    Membership Standard

    Reputation: 930

    04-14-2011 01:07 PM #25

    Good thread Curt.
    I don't know why, but I have always used manual vuln-site finding. :wtf:
    NGU, I am really sorry for all I've done.
    I understand if I have lost all of my respect from you, but still, I won't (probably) leave this forum. I will be posting threads and tutorials.
    I know what fu*ked up things I did. Please forgive me.

  8. Curt's Avatar

    Curt Former Staff

    Join Date Oct 2009

    Posts 2,789

    Membership Former Staff

    Reputation: 26740

    04-14-2011 01:12 PM #26

    Thanks Drackos

    Quote Originally Posted by Tuhoaja View Post
    Good thread Curt.
    I don't know why, but I have always used manual vuln-site finding. :wtf:
    Thanks man, this is the thread that I was annoyed about being closed , I did aswell until I found this out :angel:

  9. Breecem's Avatar

    Breecem Brute

    Join Date Jul 2009

    Posts 202

    Membership Donator

    Reputation: -896

    04-14-2011 02:51 PM #27

    thanks, great post
    I prefer negative rep if I helped.

  10. Curt's Avatar

    Curt Former Staff

    Join Date Oct 2009

    Posts 2,789

    Membership Former Staff

    Reputation: 26740

    04-14-2011 03:05 PM #28

    Quote Originally Posted by Breecem View Post
    thanks, great post
    Cheers buddy, nice -rep star

  11. vSaBoTeuR x < ^ > < ^ >

    Join Date Dec 2009

    Posts 1,232

    Membership Donator

    Reputation: 583

    04-15-2011 06:25 AM #29

    Scriptkiddie Alert! /facepalm

  12. Curt's Avatar

    Curt Former Staff

    Join Date Oct 2009

    Posts 2,789

    Membership Former Staff

    Reputation: 26740

    04-15-2011 07:52 AM #30

    Quote Originally Posted by xNCK View Post
    Scriptkiddie Alert! /facepalm
    Scriptkiddie?

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •