Sql Injection

What is SQL Injection and How to do It

One of the major problems with SQL is its poor security issues surrounding is the login and url strings.

this tutorial is not going to go into detail on why these string work as am not a coder i just know what i know and it works

SEARCH:

admin\login.asp

login.asp

with these two search string you will have plenty of targets to chose from...finding one thats vulnerable is another question

INJECTION STRINGS:HOW ?

this is the easiest part...very simple

on the login page just enter something like

user:admin (you dont even have to put this.)

pass:' or 1=1--

or

user:' or 1=1--

admin:' or 1=1--

some sites will have just a password so

password:' or 1=1--

infact i have compiled a combo list with strings like this to use on my chosen targets ....there are plenty of strings about , the list below is a sample of the most common used

there are many other strings involving for instance UNION table access via reading the error pages table structure

thus an attack with this method will reveal eventually admin U\P paths...but thats another paper

the one am interested in are quick access to targets

PROGRAM

i tried several programs to use with these search strings and upto now only Ares has peformed well with quite a bit

of success with a combo list formatted this way,yesteday i loaded 40 eastern targets with 18 positive hits in a few minutes

how long would it take to go thought 40 sites cutting and pasting each string ??

combo example:

admin:' or a=a--

admin:' or 1=1--