Biplab Anand. Powered by Blogger.

Time

RSS

Havij Tool New Release

Well to make the Sql injection easier for you I would be using a tool Havij.Its has both a free version and and a paid version.In this tutorial I will be demonstrating how to use the free version of Havij.The success rate for this tool is more then 94% on the vulnerable website.

It is automated tool for SQL injection for penetration testers to check whether a website is vulnerable to SQL injection or not.All you need to do is to enter the URL of the site that you want to test for the vulnerability and click on ANALYZE button.It will automatically scan the website for Sql Injection.

Below is the download link for Havij

http://www.4shared.com/file/-flDoYIA/Havij_114.html

Here are the feature of Havij.

Supported Databases with injection methods:
a. MsSQL 2000/2005 with error
b. MsSQL 2000/2005 no error (union based)
c. MySQL (union based)
d. MySQL Blind
e. MySQL error based
f. Oracle (union based)
g. MsAccess (union based)
Automatic database detection
Automatic type detection (string or integer)
Automatic keyword detection (finding difference between the positive and negative
Trying different injection syntaxes
Proxy support
Real time result
Options for replacing space by /**/,+,… against IDS or filters
Avoid using strings (magic_quotes similar filters bypass)
Bypassing illegal union
Full customizable http headers (like referer and user agent)
Load cookie from site for authentication
Guessing tables and columns in mysql<5 (also in blind) and MsAccess
Fast getting tables and columns for mysql
Multi thread Admin page finder
Multi thread Online MD5 cracker
Getting DBMS Informations
Getting tables, columns and data
Command executation (mssql only)
Reading system files (mysql only)
Insert/update/delete data

What Havij can do for you ?

By using this software user can perform back-end database fingerprint, retrieve DBMS users and password hashes, dump tables and columns, fetching data from the database, running SQL statements and even accessing the underlying file system and executing commands on the operating system.



How to Find A vulnerable website

Go to google homepage and search for inurl:php?id=

You will get probably thousands of result.Now open any page and add a apostrophe ( ‘ )to the end of the url.Example if the Url was http://www.mytargetsite.com/php?id=34 it should be now http://www.mytargetsite.com/php?id=34’

If you get a SQL syntax error then this website can be vulnerable to SQL injection.Now you should use Havij on this URL.

NOTE: This tutorial is for only educational and testing purposes.In some countries SQL injection is an offense.

  • Digg
  • Del.icio.us
  • StumbleUpon
  • Reddit
  • RSS

Internet Download Manager v6.05 build 14 Full Cracked.

Internet Download Manager v6.05 build 14 Full Cracked. Fixed compatibility problems with different browsers including Internet Explorer 9 Final, Mozilla Firefox 4, Google Chrome.

Internet Download Manager (IDM) is a tool to increase download speeds by up to 5 times, resume and schedule downloads. Comprehensive error recovery and resume capability will restart broken or interrupted downloads due to lost connections, network problems, computer shutdowns, or unexpected power outages. Simple graphic user interface makes IDM user friendly and easy to use.Internet Download Manager has a smart download logic accelerator that features intelligent dynamic file segmentation and safe multipart downloading technology to accelerate your downloads. Unlike other download managers and accelerators Internet Download Manager segments downloaded files dynamically during download process and reuses available connections without additional connect and login stages to achieve best acceleration performance.
Internet Download Manager supports proxy servers, ftp and http protocols, firewalls, redirects, cookies, authorization, MP3 audio and MPEG video content processing. IDM integrates seamlessly into Microsoft Internet Explorer, Netscape, MSN Explorer, AOL, Opera, Mozilla, Mozilla Firefox, Mozilla Firebird, Avant Browser, MyIE2, and all other popular browsers to automatically handle your downloads. You can also drag and drop files, or use Internet Download Manager from command line. Internet Download Manager can dial your modem at the set time, download the files you want, then hang up or even shut down your computer when it's done.



To Download the Internet Download Manager V6.05 Full Cracked.
http://www.4shared.com/file/APol62WL/Internet_Download_Manager_605.html

Enjoy!!!!!

  • Digg
  • Del.icio.us
  • StumbleUpon
  • Reddit
  • RSS

Make Your Facebook E-mail Address

How to Get Facebook New Messages

Facebook has just new features in which it will give email addresses to users ,at this time Facebook email id is not open to everyone ,you have to request invitation.In order to get a invite to this new service you need to visit following link where in you would be asked to click on the ‘Request Invite’ button.
http://www.facebook.com/about/messages/




How to Get Facebook Email Address

if you are lucky you will get the yourname@facebook.com email id as soon as possible .Please note that Your email address will match your public username, for example:

Profile: facebook.com/username

Then your email address will be

Email: username@facebook.com

If you don’t have a username you can go here facebook.com/username/ to get or click below

http://www.facebook.com/username/

  • Digg
  • Del.icio.us
  • StumbleUpon
  • Reddit
  • RSS