Learn how to hack websites using Auto SQL I Helper V.2.7 + with images

<div dir="ltr" style="text-align: left;" trbidi="on"> I have been asked lately to write a tutorial on how to use "SQL I Helper V.2.7" tool.<br /> <br /> At the begening "SQLIHelperV.2.7" is a tool that will hack vulnerable websites using SQL injection. You don't have to spend hours and hours trying to find your way in a website and trying hundreds of combinations and codes to hack a website.<br /> This tool will do it all by itself. You only have to tell her what do and where to look.<br /> <br /> Click here to <a href="http://uploading.com/files/2a7acf21/SQLIHelperV.2.7.rar/" target="_blank">Download</a><br /> <br /><br /> Lets start.<br /> first you need to find the potential website that you think it might be possible to hack it. Remember that some websites are simply unhackable.<br /> <br /> Use <span style="color: red;">Exploit Scanner</span> to find the vulnerable websites.<br /> <a href="http://uploading.com/files/19217P2R/exploitscanner.zip.html" target="_blank">Download</a><br /> <br /> and use this <span style="color: red;">Dorks List</span> to use it in the search<br /> <a href="http://uploading.com/files/36589fce/Dork%2BList.rar/" target="_blank">Download</a><br /> <br /> And at the end once you find the admin username and his password use <span style="color: red;">Admin finder</span> to help you finding the admin login page but remember that this can't find all login pages. It use the most common extensions. You have the ability to add more extensions to the list to increase your search range.<br /> <a href="http://uploading.com/files/KCDVDDST/adminfinder.rar.html" target="_blank">Download</a><br /> <br /><br /> After you find your website ( better to end with "article.php?id=[number]" ) example: "http://encycl.anthropology.ru/article.php?id=1"<br /> <br /> I will explain my tut on how to hack this website.<br /> <br /> Check if your website can be hacked by trying to go this address :<br /> <a href="http://encycl.anthropology.ru/article.php?id=%271" target="_blank">http://encycl.anthropology.ru/article.php?id='1</a> <-- notice the ' before the number 1.<br /> <br /> you should get this message:<br /> <br /> <div class="codeblock"> <div class="title"> Code:</div> <div class="body" dir="ltr" style="color: red;"> <code>Query failedYou have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'1 ORDER BY lastname' at line 1 SELECT * FROM person_old WHERE id=\'1 ORDER BY lastname</code></div> </div> <br /> This mean that this website can be hacked because you get an error.<br /> <br /> Now open your SQL I Helper V.2.7<br /> and write the link : <br /> <a href="http://encycl.anthropology.ru/article.php?id=1" target="_blank">http://encycl.anthropology.ru/article.php?id=1</a> <---- without the '<br /> here<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjzNdL1I25oH4qlyQpMQzUJj3H9qb4PE_rpFwIsPRo4ix3L3aF2lrwt30QfLFF_dhcBUUWLZA0LQvRlUqwJjC-tVw1LIG0YPZtJivOOgclnnqrQohkQnjrWM3QH80oaagnIu1lk5UsMXbm1/s1600/hackwebsite1(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjzNdL1I25oH4qlyQpMQzUJj3H9qb4PE_rpFwIsPRo4ix3L3aF2lrwt30QfLFF_dhcBUUWLZA0LQvRlUqwJjC-tVw1LIG0YPZtJivOOgclnnqrQohkQnjrWM3QH80oaagnIu1lk5UsMXbm1/s1600/hackwebsite1(way2h).jpg" /></a></div> and press the inject button.<br /> <br /> Now you should wait until the tool finish searching for columns . Time may vary depending on your connection speed , your pc speed , and the number of columns in the website.<br /> So now you should have this:<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiiHVodJZ-T27D6aUneFcRNdnqRRgvOght8lQJFV8TIC0KxyHn7C2zC8W8eiYFsrLpAA49giPT-wOI3hr83QQF1UCXQqWQgXHyg0z2e0aZngNCroAofA4bdZWqooEjwRehwNYmu2Ptwy_cq/s1600/hackwebsite2(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiiHVodJZ-T27D6aUneFcRNdnqRRgvOght8lQJFV8TIC0KxyHn7C2zC8W8eiYFsrLpAA49giPT-wOI3hr83QQF1UCXQqWQgXHyg0z2e0aZngNCroAofA4bdZWqooEjwRehwNYmu2Ptwy_cq/s1600/hackwebsite2(way2h).jpg" /></a></div> <br />  Make sure that the website support union otherwise the injection won't work.<br /> then select "Get database" and you get this:<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2juEwu3CtpjR1tjrMGigWO1xX1Pjof7uzlIss1Q1mf-CgisWb9ixIV2g6uYC-O5lxfy5My8GJqii1cSHk3zRVmxZY3loHEpPx9t1hoYK-1a8V-lvldgBpdOdckMwA4xFzhKDB8MIYjH99/s1600/hackwebsite3(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj2juEwu3CtpjR1tjrMGigWO1xX1Pjof7uzlIss1Q1mf-CgisWb9ixIV2g6uYC-O5lxfy5My8GJqii1cSHk3zRVmxZY3loHEpPx9t1hoYK-1a8V-lvldgBpdOdckMwA4xFzhKDB8MIYjH99/s1600/hackwebsite3(way2h).jpg" /></a></div> Now select any element from the "database name" box and press the "Get tables" button , I will select "anthropo_encycl":<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYOFp0sXrsCzFbqcWwtQTjKjJs2vIKUbw1HHv1xFyMGTm9IGqTJ6jnq6rToB8v-RXRudZNYERIwzQNjwVMAjJK0zSqghEtTdT70gC9exOKkHBlu-nz6FUv-vskG0wjym7dBtyCI6PH26Pk/s1600/hackwebsite4(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhYOFp0sXrsCzFbqcWwtQTjKjJs2vIKUbw1HHv1xFyMGTm9IGqTJ6jnq6rToB8v-RXRudZNYERIwzQNjwVMAjJK0zSqghEtTdT70gC9exOKkHBlu-nz6FUv-vskG0wjym7dBtyCI6PH26Pk/s1600/hackwebsite4(way2h).jpg" /></a></div> then select any element from the "table name" box and press the "Get columns" button , I will select "user":<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiewaisxQ2eb20FgbGJ4mKMIY9WYW2THo0Xde8BdT2tnDpfYfoUQ6f1-LLQBw_EiEa3yuxO6rBt6NJQ1mc471JXurzWz3fPLHOFFxcG37yX2Xpbo0viCPKhc09JUrryzqhUX6swyLSotgV3/s1600/hackwebsite5(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiewaisxQ2eb20FgbGJ4mKMIY9WYW2THo0Xde8BdT2tnDpfYfoUQ6f1-LLQBw_EiEa3yuxO6rBt6NJQ1mc471JXurzWz3fPLHOFFxcG37yX2Xpbo0viCPKhc09JUrryzqhUX6swyLSotgV3/s1600/hackwebsite5(way2h).jpg" /></a></div> then select any elements you want from the "columns name" box and press "Dump Now" , i will select "usr_login" and "usr_pas<br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiZ8D0zDAa6vfGTlBI03Mz5H4I9ryK5HziipngwAqIuVFL4x1QIK1u6K1XtKTq2KbTVEwrB1bnpd8pY34Ff9TOKQFpdXgsTz1AYHuKq0d6R-BNKLgXaaLNGn4NF3k5GUoeHiyYB5knmBdsY/s1600/haqckwebsite6(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiZ8D0zDAa6vfGTlBI03Mz5H4I9ryK5HziipngwAqIuVFL4x1QIK1u6K1XtKTq2KbTVEwrB1bnpd8pY34Ff9TOKQFpdXgsTz1AYHuKq0d6R-BNKLgXaaLNGn4NF3k5GUoeHiyYB5knmBdsY/s1600/haqckwebsite6(way2h).jpg" /></a></div> <br /> <br />  After clicking "Dump Now" , you should see this new window<br /> <br /> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_zYw6iXwSD495JJ30ahMGW_OMrd4xtfQeX6gVbDinqWkYPuZ7vhCOTLK9Z-25oUZVaC_Aa5Vpqg4pQIOqKgx2Xrn_NZZDE1QuKb8KDDemiD1El7E4rIXPoMVwGFC-5Yol_AReP4koRa04/s1600/hackwebsite7%2528way2h%2529.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_zYw6iXwSD495JJ30ahMGW_OMrd4xtfQeX6gVbDinqWkYPuZ7vhCOTLK9Z-25oUZVaC_Aa5Vpqg4pQIOqKgx2Xrn_NZZDE1QuKb8KDDemiD1El7E4rIXPoMVwGFC-5Yol_AReP4koRa04/s1600/hackwebsite7%2528way2h%2529.jpg" /></a></div> <div class="separator" style="clear: both; text-align: center;"> <a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhW8CMrsm7Za2ru8Hg4Wa383u_58gKKEA0Rtc0YjpQAoJq9CqTUP0CkjFlhQR1i09htLlVkEUPBvGknK6zJ0v6j6V5kV97tdS6VqWSDwvrIrEvsSU3Xp8dqwSVs-FbrEyVzTgcqKAR67MKg/s1600/haqckwebsite6(way2h).jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><br /></a></div>  Now copy the hash on a peace of paper and go to this website:<br /> <a href="http://www.md5crack.com/" target="_blank">http://www.md5crack.com/</a><br /> <br /> enter the hash and press the button "Crack that hash baby!" and you should get the source of the hash.<br /> hash:21232f297a57a5a743894a0e4a801fc3<br /> username: admin<br /> <br /> hash:202cb962ac59075b964b07152d234b70<br /> pass: 123<br /> <br /> COMMENT YOUR REVIEW :)  </div>

Learn how to hack websites using Auto SQL I Helper V.2.7 + with images

I have been asked lately to write a tutorial on how to use "SQL I Helper V.2.7" tool. At the begening "SQLIHelperV.2.7&q...

Read more »