Learn how to hack websites using Auto SQL I Helper V.2.7 + with images

Cr3dits- tartou2

I have been asked lately to write a tutorial on how to use "SQL I Helper V.2.7" tool.

At the begening "SQLIHelperV.2.7" is a tool that will hack vulnerable websites using SQL injection. You don't have to spend hours and hours trying to find your way in a website and trying hundreds of combinations and codes to hack a website.
This tool will do it all by itself. You only have to tell her what do and where to look.

Click here to Download


Lets start.
first you need to find the potential website that you think it might be possible to hack it. Remember that some websites are simply unhackable.

Use Exploit Scanner to find the vulnerable websites.
Download

and use this Dorks List to use it in the search
Download

And at the end once you find the admin username and his password use Admin finder to help you finding the admin login page but remember that this can't find all login pages. It use the most common extensions. You have the ability to add more extensions to the list to increase your search range.
Download
or learn how to find the admin login page from my tutorial here

After you find your website ( better to end with "article.php?id=[number]" ) example: "http://encycl.anthropology.ru/article.php?id=1"

I will explain my tut on how to hack this website.

Check if your website can be hacked by trying to go this address :
http://encycl.anthropology.ru/article.php?id='1 <-- notice the ' before the number 1.

you should get this message:

Code:

Query failedYou have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '\'1 ORDER BY lastname' at line 1 SELECT * FROM person_old WHERE id=\'1 ORDER BY lastname

This mean that this website can be hacked because you get an error.

Now open your SQL I Helper V.2.7
and write the link :
http://encycl.anthropology.ru/article.php?id=1 <---- without the '
here


and press the inject button.

Now you should wait until the tool finish searching for columns . Time may vary depending on your connection speed , your pc speed , and the number of columns in the website.
So now you should have this:

Make sure that the website support union otherwise the injection won't work.

then select "Get database" and you get this:


Now select any element from the "database name" box and press the "Get tables" button , I will select "anthropo_encycl":


then select any element from the "table name" box and press the "Get columns" button , I will select "user":


then select any elements you want from the "columns name" box and press "Dump Now" , i will select "usr_login" and "usr_pass"


After clicking "Dump Now" , you should see this new window


Now copy the hash on a peace of paper and go to this website:
http://www.md5crack.com/

enter the hash and press the button "Crack that hash baby!" and you should get the source of the hash.
hash:21232f297a57a5a743894a0e4a801fc3
username: admin

hash:202cb962ac59075b964b07152d234b70
pass: 123

Here is a little chart made by hahaha.lol that describe how this tool will work

Thank you hahaha.lol for this picture.

And after that you will need to find the admin login page where you can use the username and password.

Read More

How To Setup a HTTP Botnet + Getting a Website and Hosting.

I will teach you step by step about how to setup a Botnet.

Some things you need to know:
A Botnet is a Panel that can keep many Computers connected to it.
The Computers connected to it is called Bots.
The bots will be under your Command so you will be able to command them to do things and they will do it.
In this tutorial I will teach you how to setup a Botnet.

Alright lets start.

If you already got a Website + Hosting Dont click on this Spoiler, if you dont click :)

PS. Website name cannot be longer than 12 Characters.

This is how to create a free Website and get Free Hosting.

First go to Dot.Tk and Register

After you login go to Domain Panel and then add a Domain Name

Now open a new browser and go to DerpyMail ( Free Hosting )
Add the free hosting to you cart and register then checkout!
Go back to Dot.TK and go to the Domain Panel and Click Modify
Change the Name Servers ( DNS/NS ) to

Code:

ns1.derpymail.us
ns2.derpymail.us

Then wait for the Email with your new account information and continue to the next Part!

Before doing anything Download the Botnet File's.
To download the Botnet Click Here

Step: 1

Extract the Botnet Files and then open up the Folder "Panel".
Find Config.Php and Edit it with any writing Program.

Step: 2

Now go to your Webhost and add SQL DB and User.
When you are done with that upload the .sql to your sql DB from the Folder "SQL".

Step: 3

Edit the SQL Connection info in Config.Php.

Save when done.

Step: 3

Upload everything in the Folder "Panel" to your Webhost.
Now close the folder etc.

Step: 4

Go to the Website you used to upload.
Login to your Botnet with the password in Config.Php


Congratulations!
You got your own Botnet!

Step: 5
Go back to the Folder "Botnet" and open up Build.exe.
Then type in Your Domain Name and the Path.


Build the File, Crypt & Spread!

This Tutorial is for Learning purpose only and should not be used in Illegal ways.
I am not responsible about what you do with this, but it should be used private only with permission from the computer owners.

I do not own or have coded the botnet.

Read More