Byruz Database

Hey blogger, Stormy weather here in the Philippines. Due to tropical storm Hagupit or locally named Ruby. But today we will not be talking about literal storms but how we can possibly be a dangerous storm to the web. here is a powerful tool for injecting sql to a website. I'm talking about Havij. you can download Havij on the link below. First we need to find a vulnerable webpage/s we can use this google dorks to find this pages. Below is a list of google doeks you can use to search for possible vulnerable webpages. Link: http://www.cometohack.com/2014/05/5000-fresh-google-dorks-list-for-sql_7713.html After we have chosen a victim page we now try to test if it is vulnerable to SQL injection. we put a single quote ( ' ) to the end of the pages url. like the example below ex. http://www.victim.com/accinfo.php?cartId=2 ' <= here we add the single quote. If errors are shown in the page like sql error or something changes in the webpage then the page is vulner...