Google Dork:
inurl:”id=” & intext:”Warning: mysql_fetch_assoc()
inurl:”id=” & intext:”Warning: mysql_fetch_array()
inurl:”id=” & intext:”Warning: mysql_num_rows()
inurl:”id=” & intext:”Warning: session_start()
inurl:”id=” & intext:”Warning: getimagesize()
inurl:”id=” & intext:”Warning: is_writable()
inurl:”id=” & intext:”Warning: getimagesize()
inurl:”id=” & intext:”Warning: Unknown()
inurl:”id=” & intext:”Warning: session_start()
inurl:”id=” & intext:”Warning: mysql_result()
inurl:”id=” & intext:”Warning: pg_exec()
inurl:”id=” & intext:”Warning: mysql_result()
inurl:”id=” & intext:”Warning: mysql_num_rows()
inurl:”id=” & intext:”Warning: mysql_query()
inurl:”id=” & intext:”Warning: array_merge()
inurl:”id=” & intext:”Warning: preg_match()
inurl:”id=” & intext:”Warning: ilesize()
inurl:”id=” & intext:”Warning: filesize()
inurl:”id=” & intext:”Warning: require()
Read more…
Categories: Database Security, Servers, Tutorialz Tags: Amp, Array, database, dork, Download Rar, Download Sql, Download Tool, Download Video, Exec, Google, hacking, hacks, injection, mysql, Pg, sql, Video Tool
Denial of Service (DoS) and distributed Denial of Service (DDoS) attacks involve an attempt to make a computer resource unavailable to its intended users. This may simply be for malicious purposes as is often the case when big commercial or famous web sites undergo a DDoS attack. However, it is also possible to exploit the system’s response to such an attack to break system firewalls, access virtual private networks, and to access other private resources. A DoS attack can also be used to affect a complete network or even a whole section of the Internet.
Read more…
Categories: Database Security, Network, Servers, Tutorialz, Website Security, Wireless Security Tags: Attack Software, Authentication Servers, Computer Engineers, David Irwin, Ddos Attack, Ddos Attacks, Denial Of Service, Denial Of Service Dos, Internet Requests, John Wu, Legitimate Traffic, Legitimate Users, Malicious Purposes, Network Denial, Private Resources, Service Denial, Target Machine, Tong Liu, Valid Passwords, Virtual Private Networks
Recently I was doing a little work for a client who has MyISAM tables with many columns (the same one Peter wrote about recently). The client’s performance is suffering in part because of the number of columns, which is over 200. The queries are generally pretty simple (sums of columns), but they’re ad-hoc (can access any columns) and it seems tailor-made for a column-oriented database.
Read more…
Categories: Database Security, Tutorialz Tags: 1 Million, Amazon Server, Architecture, Benchmark, Columns, Databases, Deb, Enough Memory, Graph, Loaded, Monet, mysql, Mysqldump, Open Source Community, Oriented Database, Random Numbers, Sql Statements, Sums, Tuning Box, Types Of Queries
Hello ,
below is some links to crack md5 password hashes online , i will keep this post updated with all online links for cracking md5.
Read more…
Categories: Database Security, Linux, Password Recovery, Servers, Tutorialz, Website Security Tags: cheatsheet, database, db, hack, hacked, hacking, linux, mysql, passwd, security, unix, web, web security, windows
Hello ,
i have created a small bash script to backup complete mysql server and then restore it. you can download the script and configure it as per your need.
Read more…
Categories: Database Security, Linux, Servers, Tutorialz Tags: backup, database, db, linux, mysql, network, permission, security, sql server, web security
1. Cross site scripting (XSS)
The problem: The “most prevalent and pernicious” Web application security vulnerability, XSS flaws happen when an application sends user data to a Web browser without first validating or encoding the content. This lets hackers execute malicious scripts in a browser, letting them hijack user sessions, deface Web sites, insert hostile content and conduct phishing and malware attacks.
Read more…
Categories: Database Security, Linux, Servers, Tutorialz, Website Security Tags: database, DOS, hack, hacked, hacking, javascript, MSSQL, mysql, network, networking, password, permission, security, sql injection
[1] Introduction
[2] Little panning of Perl language used into an internet context
[3] Perl SQL Injection by examples
[4] Gr33tz to …
Read more…
Categories: Database Security, Linux, Servers, Tutorialz Tags: database, db, explots, hack, hacked, hacking, ip, ip address, ipchain, linux, MSSQL, mysql, network, networking, password, perl, perl exploits, programming, security, sql injection, unix, web security
-[ SUMMARY ]———————————————————————
Introduction
Injecting SQL
Exploiting a Login Form
Exploiting Different SQL Statement Type
Basic Victim Fingerprinting
Standard Blind SQL Injection
Double Query
Filters Evasion
SQL Injection Prevention
Conclusion
———————————————————————————
Read more…
Categories: Database Security, Servers Tags: database, db, hack, hacked, hacking, linux, microsoft, mysql, network, networking, permission, security, sql, sql injection, sql injections, user, web, web app, web security
Currently only for MySQL and Microsoft SQL Server. Most of the samples are not correct for every single situation. Most of the real world environments may change because of parenthesis, different code bases and SQL sentences.
Read more…
Categories: Database Security, Website Security Tags: cheatsheet, database, db, hacked, hacking, microsoft, MSSQL, mysql, network, root, security, sql, sql injection, sql server
