Hi guys, long time no see…I’ve been busy to making a simple IDS (Intrusion Detection System) for now on. But, it still in progress. Although I’ve try very hard, it seems very difficult for me. Maybe next time i’ll post it here. Now, stop the crap, and lets go to the topic. Did you know, in the widespread use of websites, there was so many sites doesn’t protect their databse securely. In this post, I want to discuss about injecting with “outfile” command. This vulnerability could happend because the administrator doesn’t protect the database. He/They, maybe using the default setting of the SQL. So, to preventing this damage, let’s try how the attacker penetrating the target. (more…)
SQLi, Injecting With Outfile Command
How To Use FIMAP
FIMAP is a simple and amazing tool that used to penetration testing. This tool has made by Iman Karim, this is just one of his project at google-code. He made this tool using python, so it’s very easy to using it for scanning any bug or vulnerability in a site. So, for more guide, let’s begin the show…
1. Download the FIMAP
You can download this tool here or here. (more…)
How To Use Schemafuzz (SQL injection)
Hi all, in this post,as my another post that telling about a web security, I think I have to post this to you. Because if you do not patch your web security, your web will easily cracked by someone. Maybe your web will be defaced, or your database will being stolen. And you what happen then…your web will lost any google adsense or everythin you got from SEO. I’m sure you don’t want this happen.
I’m try to reveal my experiment using schemafuzz. I never try SQL injection with this tool before. I just found it at http://whitesecure.com. So, in this experiment, I think this is a cool stuff from darkc0de that you should try. All we need for use this tool is, a python compiler. For Linux user, python is a default programming language so we don’t have to installing it. But, for Win***s user, please download it here.
DEFACED !!!
It’s a horrible…!! Really..!!
For a web designer, a blogger or any body who own any sites. Being defaced is a very hurt. I can’t to imagine how the site owner felt when his hard-work so easily cracked by some unresponsible person. Maybe, if this happend to me, I’ll angry…very angry.
My friend told me about a site that being hacked yesterday. A magician site. I don’t know how or why…But, what i think is, it’s really harsh. Maybe you can look at this site. What do you think?
So, what I want to say is, becarefull my friend. Nothing is secured. Everything need to be updated…
Maybe, if you need a guide to securing your sites, contact an expert here!
Translator
Any Question? PM me :
Blogroll
Anda pengunjung ke
