SQLi Dumper tutorial – How To Use SQLi Dumper 2020

rubx8 months ago 9

SQLi Dumper 9.7 Tutorial

SQLi Dumper tutorial: In this tutorial, we will use SQLi Dumper v9.7. First of all, we need to download SQLi Dumper. [ To fix Crash and run smoothly-Download this Visual C++ Redistributable for Visual Studio 2015 ]

It will need to Dorks for searching URL if you do not know about Dorks (how to generate/collect/buy). You can read this tutorial.

 

sqli dumper tutorial
Infographic details of Sqli dumper

Open SQLi Dumper.

proxies in SQLi Dumper
Add Proxies in SQLi Dumper

Using with Proxies:

if you have a good proxies list that is not blacklisted by Google, then you can use your proxies list for gathering more quality URLs.

To add proxies list in SQLi Dumper V9.7:

  • Click Proxies List. (Do as same as the screenshot)
  • Copy proxies in the clipboard.
  • Click Apprend > select proxy Type SOCKS 5/WEB PROXY/SOCKS 4 (depend on which type of Proxy you have) then press OK.
  • Place mouse pointer over any Proxy and press mouse right button, then click on Check All.

Using without Proxy:

if you do not have a good proxies list that is not blacklisted by Google, then you can use it without Proxy. However, Google can block your IP (ISP provided IP). In this situation, using a VPN is a great solution. You can change VPN IP frequently when one of the IP was blocked.

SQLi Dumper Scanner:

 

Sqli dumper scanner
Sqli dumper scanner

 

  1. Input dorks in the white box of SQLi Dumper.
  2. Select the search engine (Tick on the search engine box, which search engine’s result you want! )
  3. Now click on the Start Scanner button of SQLi Dumper.

After gathered a considerable amount of URLs, then we can Stop it (searching).

OR,

if you have a vulnerable URL List, you can use it by SQLi Dumper. To use it…

1,1. Right-click on the white box of SQLi Dumper.

1,2. Click on Add URLs.

1,3. Now paste URL List on the box, then click OK.

 SQL Injection: 

Sqli dumper injection
Sqli dumper injection

 

  1. Now click on the SQL Injection button of SQLi Dumper.
  2. Click on Start Exploiter. Wait until the end of Exploiting.
  3. Now, select URL (one or more).
  4. Columns, email, password, user +(add), or substracts (depend on what kind of data you want!).
  5. Click Start Search.
search Sqli dumper
search Sqli dumper

Data Dumper of SQLi Dumper:

When you find this dumper window with Site’s rows list (Do like as the picture),

date dumper of sqli dumper
dumper of sqli dumper
dump data - sqli dumper
dump data – sqli dumper
data save - Sqli dumper
data save – Sqli dumper

” Obtain the website you want to start to attack and right-click on it and hit “New Dumper.” either “Go to Dumper” Once in the Data Dumper click “Get Databases” on top of text area inside the text field there should be at least 1 database click on that and run “Get Tables.” After all that loads in look for useful tables, commonly, it will be named “users.” Now click on whatever table you want. For info out – hit “Get Columns… list off a slew of various info fields, inspect the box following to these ones you require to export and hit “Dump Data” in the head right of… ”

 

SQLi Dumper tutorial Version 8.3 Tutorial:

Offer you today an excellent program, and my personal experience and the great version of the program. And how to use SQLi Dumper.

SQLi Dumper is a pen-testing program: SQL Dumper v.8.3, which is a free and open-source program.
First remembrance of what distinguishes the software from the old versions:

1. The quick speed and strength to bring sites
2.The speedy pace within the extraction of information tables
3. Protection of crash in this Sqli Dumper version
4. extracted flag properly
5. you’ll be able to get mail list
6. additional and discovered it yourself

The program is better than Havij and any other related tools.

How To Use SQLi Dumper?

<YOUTUBE VIDEO>

  1. First, Download Net Framework 4.0 
  2. Download & Extract SQLi Dumper
  3. Open SQLi Dumper v8.3.exe
  4. Afer, Follow These Images

 

dork in sqli dumper
dork in sqli dumper
exploit in sqli dumper
exploit in sqli dumper
injectable in sqli dumper
injectable in sqli dumper

dump dataadmin login in sqli dumper

SQLi Dumper tutorial (version under 9)

 

Requirements 

  • Have a computer 

 What is in this post 

  • Whence to setup SQLI Dumper
  •  Whereby to make your HQ dorks
  •  How to apply SQLI Dumper to inject sites

Downloads 

 SQLI Dumper

 Dork Generator

DORKS

 

 When you start up the Dork generator tool, there are three areas to choose out. Names/Keywords, Page Format, Page Type 

Names Of Pages

 

In this, you put keywords associated with the category of the sites you’re looking for you can do this manually, but I would suggest using https://www.keyword.io

 

Page Format

 

 In this area most people just insert 

 

 .asp?

 .php?

 .aspx?

 .html?

 

However, if you have much time to scan and you want HQ dorks. You can add many other similar. 

 

 .file?

 .htm?

 .tss?

 .jsf?

 .raw?

 .cfm?

 

Page Type

 

 I usually simply put 

 

 cid=

 item=

 intCatalogID=

 article_id=

 designer=

 intProdId=

 framecode=

 idproduct=

 langid=

 shopid=

 NewsId=

 id=

 code_no=

 product=

 cartID=

 item_id=

 code=

 jobid=

 topic=

 

Exporting

 

In the base right, simply click Generate Dorks. It could take some time. Once it is done, it will make a document (text file) in the location of the tool is in…

 SQLI Dumper

—————————–

 

Setting Up

 

Download and extract the SQLI dumper

 

Scanning

 

 You get to apply the DORKS you created earlier into the file that the dorks were generated in and copy them. Now start up the SQLI Dumper tool in the head left click “Online Scanner.” Then below that, click URL’s Queue. Now in the large text field in the first middle paste in all the Dorks, Then continue to the head right to “Start Scanner.” To the left of that, make sure that the number is 10. Then click Start Scanner…..

then “URL’s Only” Under “Online Scanner” and above URL’s Queue it will assume Queue, then a number That number is how numerous sites are probably exploitable.

 

Exploitable

 

Now, after you have ended, all the scanning hit cancel in the base right and click on “Exploitables” to the right of “URL’s Queue” In the top right, there is “Start Exploiter” to the right —–change that amount to 30. Then click “Start Exploiter” and wait for that to end. Once it is at 100%, you tap cancel.

 

Injectables

 

 Now click “Injectables” to the right of “Exploitables” And in the head right, there is the “Start Analyzer” change that number to the left to 20. Then click “Start Analyzer,” Next that is done, click cancel.

 

Data Dumper of SQLi Dumper

 

 Now, after you have few sites listed off in injectables, you are ready to perform the attack. Obtain the website you want to start to attack and right-click on it and hit “New Dumper.” either “Go to Dumper” Once in the Data Dumper click “Get Databases” on top of text area inside the text field there should be at least 1 database click on that and run “Get Tables.”

After all that loads in look for useful tables, commonly, it will be named “users.” Now click on whatever table you want. For info out – hit “Get Columns… list off a slew of various info fields, inspect the box following to these ones you require to export and hit “Dump Data” in the head right of the text field. Ultimately, after that is done, click the Export Data click “Start” and save anywhere you want.

 

Download SQLi Dumper

 

9 thoughts on “SQLi Dumper tutorial – How To Use SQLi Dumper 2020

Leave a Reply

Your email address will not be published. Required fields are marked *

Next Post

A Quick Guide on How To Make Money Online

Tue Apr 7 , 2020
Regardless of what others may think, there’s money to be made online. There are many business models to work for and work from, and your earnings will only be limited by the work you set in. This quick guide will present methods on the thanks to making money online and […]
How To Make Money Online

You May Like