Today we talk about Hacking with an old but new tool. SQL Injection vulnerabilities have been around for a long time and are quite familiar to us. However, this error is old but still dangerous for any website to make.
| Join the channel Telegram of the AnonyViet 👉 Link 👈 |
The reason is compared to the lack of care in the process of writing data processing code for the website. This vulnerability is often used by Kiddie Scripts to wreak havoc. By the way, if you don’t know who Script Kidde is referring to? then please read here.
This bug allows an intruder to request the server to return data without logging in. So what do you think if information about the admin account is requested to be sent to Hacker? Is the whole website going to go to hell with this Hacker game?
Leverage SQLMap to Find SQL Injection Vulnerabilities
You don’t have to work hard to learn each command line like before and it doesn’t take too much time. If you are a Script Kidde ? You will surely love it SQLMap and what it can do for you. First of all, I would like to briefly explain about SQLMap for those who do not know.
What is SQLMap?
This is a tool to help you exploit SQL-related vulnerabilities quickly. This tool is considered the most powerful weapon in terms of exploiting this SQL vulnerability. When learning Hacking, you definitely have to use it more or less.
It has many features suitable for SQL penetration testers and a series of automatic branching tools to get the database footprint to fetch data from the database. Support for accessing the underlying file system and executing commands on the operating system over an out-of-band connection.
That is, when you get in, you will be able to manipulate their data through the network connection.
Operating system Kali Linux or Back Track 5 SQLMap already has built-in. But for Windows, you have to install Python and SQLMAP to use it. Because SQLMap is written in Python and requires a Python library in your computer to run.
Install Python
As mentioned above, to use SQLMap, you must have a Python library on your computer. You can download and install the Python library at the homepage https://www.python.org/ (It is recommended to install version from 2.7 or higher).
What’s new in SQLMap v1.2.9?
This is a weapon that has existed for a long time through many versions. But now, it has just been updated to version 1.2.9 with many new features. Specifically, information about the new features in this update is:
- Full support for database management systems MySQL, Oracle, PostgreSQL, Microsoft SQL Server, Microsoft Access, IBM DB2, SQLite, Firebird, Sybase, SAP MaxDB, HSQLDB and Informix.
- Full support for six SQL Injection techniques: boolean-based blind, time-based blind, error-based, UNION query-based, stacked queries and out-of-band.
- Allows direct connection to the database without passing through SQL injection. You just need to enter the DBMS login information, IP address, Port and Database name you want to connect. (This is what I like.)
- Supports enumeration of users, password hashes, privileges, roles, databases, tables and columns.
- Helps you to crack the hash of user passwords. That means you can reverse-decrypt and get the password of any user you want.
- Allow to copy (backup) the database as you like.
- Provides full control over the database upon successful intrusion.
- Allows you to Download and Upload Files comfortably to the Database very quickly.
There are a few more special features that I have not listed. Experience it yourself and enjoy with this new version. Now I will guide you to install SQLMap (remember to install Python first).
Install SQLMap
You can download the compressed file directly at one of the two links below.
Alternatively, you can use the command Git to Clone the original from the manufacturer.
git clone --depth 1 https://github.com/sqlmapproject/sqlmap.git sqlmap-dev
Using
Use the command below to display the basic commands in SQLMap v1.2.9
python sqlmap.py -h
From the commands listed, you can Google more about their meaning if you want to understand more deeply. Because its statements are many with different functions. I cannot say it all in one post.
Good luck
Lmint
