1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Hacking a website

Discussion in 'Ethical hacking' started by kunals, Aug 27, 2008.

  1. kunals

    kunals New Member

    Joined:
    Jul 10, 2008
    Messages:
    51
    Likes Received:
    1
    Trophy Points:
    0
    Im trying to hack a website, and im trying to find ways to
    HACK the website, only ways i know is finding the master username and password
    (aka ftp password, i think?) and SQL injection, But i don't know how to do either one.
    and im not even sure if SQL injection works on that site. Can anyone tell me
    any other methods that that work or how to SQL inject that site?
     
    Last edited by a moderator: Aug 27, 2008
  2. shabbir

    shabbir Administrator Staff Member

    Joined:
    Jul 12, 2004
    Messages:
    15,285
    Likes Received:
    364
    Trophy Points:
    83
    I Just removed the url as I don't think its needed.
     
  3. SpOonWiZaRd

    SpOonWiZaRd Know what you can do.

    Joined:
    May 30, 2007
    Messages:
    747
    Likes Received:
    8
    Trophy Points:
    0
    Occupation:
    Network Engineer/Programmer
    Location:
    South Africa
  4. XXxxImmortalxxXX

    XXxxImmortalxxXX New Member

    Joined:
    Jun 27, 2007
    Messages:
    569
    Likes Received:
    18
    Trophy Points:
    0
    Well it depends is this made in microsoft frontpage if so then you can use a google query serach and i think its inurl:pwd which will list the ftp username and password to that website the password is DES encryption download a program to decrypt it.


    As for the sql injection read up on my tutorial on detecting if the server is sql vunerable
     
  5. kunals

    kunals New Member

    Joined:
    Jul 10, 2008
    Messages:
    51
    Likes Received:
    1
    Trophy Points:
    0
    i've already see that link before and yes i've also looked at ur tutorial, but
    i still can tell if the site im trying to hack is vulnurable, i can't show u because im
    not allowed to post links :(

    and i've looked up some SQL injection codes and put them into the password field
    but i don't get anything other than "user not found". do u have to learn the delete functions
    and insert them into the forms to delete w/e i want? and plus i don't know anything
    about the names of the tables of the website.

    and THANKS XXxximmortalxxXX for the "inurlasswd" thingy, i googled that
    and found a lot of stuff on google hacking and how to find better
    search results :D
     

Share This Page