|
You last visited: Today at 10:24
Advertisement
SQL injection simply question.
Discussion on SQL injection simply question. within the Kal Online forum part of the MMORPGs category.
04/26/2011, 03:45
|
#1
|
elite*gold: 0 
Join Date: Jan 2008
Posts: 310
Received Thanks: 50
|
SQL injection simply question.
Hello guys i have a simply question for ya....
I know injection well but i never injected kalonline...
I have dbuser dbpass etc by injected 1 server from topofgames..
tip: this server is in top 10 xD i wont give name becouse this 1 take me alot of time ..( BLIND injected ;o ).
Ah, anyway I want to ask you guys if I have all infos what i need to do?
download mysql and login wtf? never had my own server so thats why i ask you...
Greetings FANEq.
|
|
|
|
04/26/2011, 12:03
|
#2
|
elite*gold: 0
Join Date: Aug 2008
Posts: 95
Received Thanks: 9
|
so what ur question  ?
|
|
|
|
|
04/26/2011, 12:08
|
#3
|
elite*gold: 0
Join Date: Jan 2008
Posts: 310
Received Thanks: 50
|
What I need to do after get dbname , db user , dbpass.
I know its run as 'sa' db user is: dbo ... password is: ********
So my next move should be download SQL 2005 and login or what ;o?
I never tryed b4 hacking on Game, just powned site's
Greetings FANEq.
|
|
|
|
|
04/26/2011, 12:09
|
#4
|
elite*gold: 0
Join Date: Feb 2008
Posts: 1,105
Received Thanks: 186
|
try it and you'll see it 
|
|
|
|
|
04/26/2011, 12:11
|
#5
|
elite*gold: 0
Join Date: Jan 2008
Posts: 310
Received Thanks: 50
|
ya i would but i need download this **** and wanna be sure xD
|
|
|
|
|
04/26/2011, 12:33
|
#6
|
elite*gold: 80
Join Date: Oct 2010
Posts: 2,238
Received Thanks: 1,271
|
and you said my posts are crappy :X
btw: Using SQLi tools isnt hard.
|
|
|
|
|
04/26/2011, 12:45
|
#7
|
elite*gold: 0
Join Date: Jan 2008
Posts: 310
Received Thanks: 50
|
Quote:
Originally Posted by Fr . .ome
and you said my posts are crappy :X
btw: Using SQLi tools isnt hard.
|
i dont use SQLi tool -.- wtf... ur so dumb and sql injection tool wont find this vuln.
SQLi tool = based sql -.- crappy and tool using blind one
|
|
|
|
|
04/26/2011, 12:56
|
#8
|
elite*gold: 80
Join Date: Oct 2010
Posts: 2,238
Received Thanks: 1,271
|
SQLi tools also can do blind SQLi ^_^
|
|
|
|
|
04/26/2011, 13:15
|
#9
|
elite*gold: 0
Join Date: Jan 2008
Posts: 310
Received Thanks: 50
|
Quote:
Originally Posted by Fr . .ome
SQLi tools also can do blind SQLi ^_^
|
:LOL: this is what I said (@ ABOVE @)
thats why the sql tool is shity ... and tool wont find alot of vuln its just do basic step adding
dork:'
or
dork; or 1=2 --
or
dork'; waitfor delay '0:0:10' --
its **** ;o
|
|
|
|
|
04/26/2011, 14:43
|
#10
|
elite*gold: 0
Join Date: Apr 2007
Posts: 150
Received Thanks: 91
|
You can't get a database password by injecting.
Also run as 'sa' user and db user is 'dbo'? Yawn.
I should thank your posts for the entertainment :|
|
|
|
|
|
04/26/2011, 17:07
|
#11
|
elite*gold: 20
Join Date: Jan 2007
Posts: 568
Received Thanks: 227
|
Quote:
Originally Posted by hoseta
Ah, anyway I want to ask you guys if I have all infos what i need to do?
.
|
Backup databases & download ?
|
|
|
|
|
04/26/2011, 20:19
|
#12
|
elite*gold: 0
Join Date: Jan 2008
Posts: 310
Received Thanks: 50
|
Quote:
You can't get a database password by injecting.
Also run as 'sa' user and db user is 'dbo'? Yawn.
I should thank your posts for the entertainment :|
|
Ah, i already told ya im suck in injecting db game i just injected a websites i didint focus on sql server
thats why i post and ask so i just find vuln and i am not able to do anything with this xD
|
|
|
|
|
04/26/2011, 23:05
|
#13
|
elite*gold: 0
Join Date: Dec 2008
Posts: 208
Received Thanks: 24
|
maybe read basics for sqli.
server-version? 5 = easy doing, 4 = brutforce...
and btw connect with an sql client = most time fail, server only accepts connection from localhost for security reason.
|
|
|
|
|
04/27/2011, 00:20
|
#14
|
elite*gold: 0
Join Date: Feb 2008
Posts: 58
Received Thanks: 11
|
i think its last time for u guys to start using BackTrack 4 linux distro ;>
|
|
|
|
|
04/27/2011, 13:06
|
#15
|
elite*gold: 0
Join Date: Dec 2008
Posts: 208
Received Thanks: 24
|
Quote:
Originally Posted by IRknight1337
i think its last time for u guys to start using BackTrack 4 linux distro ;>
|
pro haxo00r -.-
|
|
|
|
 |
|
Similar Threads
|
Simply question just-rf
08/15/2009 - RF Online - 1 Replies
again
|
Simply a question
08/09/2009 - CO2 Private Server - 10 Replies
Just a simple question. I ask for the pro's opinions.
What is the latest best LOTF source that has been released on these forums?
|
Simply A Question
07/23/2009 - Conquer Online 2 - 10 Replies
This is not a complaint about the moderators, just simply a question! IF We could get rid of all or some of the mods which one Would you choose?
Again this is not a complaint so it does not need to be in the complaint section, this is about the Co2 community!
|
[QUESTION] Auto Assembly / Code Injection
05/30/2009 - Dekaron - 2 Replies
Ok, I just need to know one thing. When you use code injection to search an address (example, speed hacking address), how do you make it so your able to send it to the table? You need the & but, I don't know where, or if I can put that in to make it work.
Please post if it's possible, and if it is, how? Thanks so much.
|
[Question] Dll injection.
04/23/2009 - CO2 Programming - 13 Replies
I got a simple question, If a dll is injected into the CO process could i make another aplication use that Dll and functions within it? to send like data to those functions.
For example my dll contains the item dropping function my program has to send info to that dll to decide wich item to drop and on turn that same dll containing the right info now must do action within CO -> dropping the item.
If anyone can answer that and maybe provide me with some pointers that would be very...
|
All times are GMT +1. The time now is 10:24.
|
|
