Our social:

How to do SQL injection attacks with Strings ? (Basics)

Hello friends ..!!
I am back with one new Hacking tips for you guys..In this Article we are going to discuss That How to do SQL Injections Basic Attack.


Introduction


  • SQL injection attacks are executed via front-end Web applications that don’t properly validate user input. 
  • Malformed SQL queries, including SQL commands, can be inserted directly into Web URLs and return informative errors, commands being executed and more. 
  • This Article is not going to go into detail on why these string work but it will show you how you can form these SQL Injection Strings which can be used to hack any website.


Find Your Target 


  • First SEARCH the following Keywords in Google or any Search Engine:

admin\login.asp
login.asp

With these two search string you will have plenty of targets to chose from. Choose any one from this
List. 


INJECTION STRINGS: How to use it?


  • This is the easiest part…very simple
  • On the login page just enter something like

user:admin (you dont even have to put this.)
pass:’ or 1=1–
or
user:’ or 1=1–
admin:’ or 1=1–
Some sites will have just a password field so you can use
password:’ or 1=1–


That's It friends ..Now onward you can do String SQL injection easily...