|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
|
The files that my friend, demon, decoded, have syntax flaws. They will not run correctly. This is the clear files.
http://www.4shared.com/zip/ivTVcDXY/mozart1.html |
|
|
|
|
Here you go:
http://www.4shared.com/zip/AtsG7-nr/anasmcguire1.html |
|
|
|
|
Nope. Decoded by hand. |
|
|
|
|
Here you go. All files are decrypted and syntax checked.
http://www.4shared.com/zip/X3zK1lsJ/aponte3.html
Have Fun! |
|
|
|
|
First of all, you'll have to learn PHP completely. After that you can start learning decoding very easily. |
|
|
|
|
Here you go. They are decrypted and syntax-checked. The ZIP file contains two archives numbered respectively:
http://www.4shared.com/zip/KeYBuKxR/Vander1.html |
|
|
|
|
OK. I'll decode them for you. |
|
|
|
|
Here they are. I decrypted them again and fixed the syntax errors.
http://www.4shared.com/zip/FTkgi3uy/cemil2006_2.html |
|
|
|
|
Oh! You should have said this earlier. Yes, WAF prevents SQLi attacks from taking place, but it is possible to bypass it. Use Havij Pro (the commercial version). From Settings->Evasion, tick "Bypas ... |
|
|
|
|
There is a possibility that the MySQL version is below 5. Because the UNION statement was added in 5. That's why it doesn't work. The system is vulnerable but it doesn't support UNION. |
|
|
|
|
Can someone please, try to decode this hash for me?
$P$Bn6vDhl0Evs0vB762guESA/hCXI6Rk0
Thanks. |
|
|
|
|
Use Sqlmap. Like this:
./sqlmap.py -u http://www.something.com/cat.php?id=1 --dbs
|
|
|
|
|
Oh! I'm Sorry. I forgot to check the syntax of the files. The second files had more errors than that. This is the fixed archive containing both files.
[URL=http://www.4shared.com/zip/1C4NHH9-/apont ... |
|
|
|
|
Here you go:
[URL=http://www.4shared.com/zip/dZPK-6ow/aponte1.html]aponte1.zip |
|
|
Page 1 of 9 |
Goto page 1, 2, 3, 4, 5, 6, 7, 8, 9Next All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|