hello everyone i want to have a firewall anyone well help me

Status
Not open for further replies.
Fav. Antivirus
bitdefender
jen900 said:
Well I'm a hacker too but not too advance I'm just a girl who love's hiding stuff and actually I use two Os Windows and Linux thank you I well Pm you If I have questions. I speak English not fluently because I'm a Russian half Asian
Click to expand...

As a hacker, I'd like to see you have a go at breaking into this site (a site designed to test and refine your hacking skills), and let us know how you did it :) :P

http://jmchilton.net/sqlinject/create.php

@Arakasi @NullPointerException ~ Have a go at this too if you haven't already, it's quite fun.
 
  • Like
Reactions: jen900
  • Like
Reactions: Cowpipe
Oh wait . . .
<li><a href="index.php?user_id=4">agentgill</a></li>
<li><a href="index.php?user_id=7">ak</a></li>
<li><a href="index.php?user_id=9">javaug</a></li>
<li><a href="index.php?user_id=10">jody</a></li>
<li><a href="index.php?user_id=2">john</a></li>
<li><a href="index.php?user_id=8">leah</a></li>
<li><a href="index.php?user_id=6">lexi</a></li>
<li><a href="index.php?user_id=3">msi</a></li>
<li><a href="index.php?user_id=5">peter</a></li>
<li><a href="index.php?user_id=1">phil</a></li>
<li><a href="index.php?user_id=11">scott</a></li>
<li><a href="index.php?user_id=12">tim</a></li>
 
  • Like
Reactions: Cowpipe
Whoops, we has possible db variables :oops:
$('#post_username').val();
$('#post_password').val();

Fun is over :(
Will come back to this interesting tweeter site .....:rolleyes:
 
  • Like
Reactions: Cowpipe
Arakasi said:
Whoops, we has possible db variables :oops:
$('#post_username').val();
$('#post_password').val();

Fun is over :(
Will come back to this interesting tweeter site .....:rolleyes:
Click to expand...

It's trickier than it appears from the outside right ;)

Let me know how you get on when you come back to it, it's great to read your updates (my very own twitter feed about hacking, well.. twitter? o.O)
 
  • Like
Reactions: Arakasi
Error: Failed to exeucte query [SELECT username FROM users where username='' and password='';]. PDO Error Info: array ( 0 => 'HY000', 1 => 1, 2 => 'unrecognized token: "\'\'\' and password=\'\';"', )
Click to expand...

:rolleyes: LOL whoever built it misspelled execute in the error messages returned.
 
  • Like
Reactions: Cowpipe
Arakasi said:
:rolleyes: LOL whoever built it misspelled execute in the error messages returned.
Click to expand...

Hahaha. Looks like it's manually evaluating the queries then.. Would be a little dangerous to run live sql queries, even on a virtual database :) Maybe they can't spill properly, but they seem to have a grasp of security :P
 
Arakasi said:
Done

Are we sure this is a test db, specifically for this ROFL?
There is a lot of data/tables here.

What are we doing now, adding a login ? User Cowpipe maybe ? Ha
@Cowpipe
Click to expand...

Haha, yes it's definitely a test db. I think the large data set is specifically to simulate real life servers. The idea being to obtain the list of usernames and passwords :D Feel free to add me to their database if you like, I'll tweet a thank you for you! :P haha
 
  • Like
Reactions: Arakasi
Status
Not open for further replies.

You may also like...