SQLi Dumper 9.7 Tutorial
SQLi Dumper tutorial: In this tutorial, we will use SQLi Dumper v9.7. First of all, we need to download SQLi Dumper. [ To fix Crash and run smoothly-Download this Visual C++ Redistributable for Visual Studio 2015 ]
It will need to Dorks for searching URL if you do not know about Dorks (how to generate/collect/buy). You can read this tutorial.
Open SQLi Dumper.
Using with Proxies:
if you have a good proxies list that is not blacklisted by Google, then you can use your proxies list for gathering more quality URLs.
To add proxies list in SQLi Dumper V9.7:
- Click Proxies List. (Do as same as the screenshot)
- Copy proxies in the clipboard.
- Click Apprend > select proxy Type SOCKS 5/WEB PROXY/SOCKS 4 (depend on which type of Proxy you have) then press OK.
- Place mouse pointer over any Proxy and press mouse right button, then click on Check All.
Using without Proxy:
if you do not have a good proxies list that is not blacklisted by Google, then you can use it without Proxy. However, Google can block your IP (ISP provided IP). In this situation, using a VPN is a great solution. You can change VPN IP frequently when one of the IP was blocked.
SQLi Dumper Scanner:
- Input dorks in the white box of SQLi Dumper.
- Select the search engine (Tick on the search engine box, which search engine’s result you want! )
- Now click on the Start Scanner button of SQLi Dumper.
After gathered a considerable amount of URLs, then we can Stop it (searching).
OR,
if you have a vulnerable URL List, you can use it by SQLi Dumper. To use it…
1,1. Right-click on the white box of SQLi Dumper.
1,2. Click on Add URLs.
1,3. Now paste URL List on the box, then click OK.
SQL Injection:
- Now click on the SQL Injection button of SQLi Dumper.
- Click on Start Exploiter. Wait until the end of Exploiting.
- Now, select URL (one or more).
- Columns, email, password, user +(add), or substracts (depend on what kind of data you want!).
- Click Start Search.
Data Dumper of SQLi Dumper:
When you find this dumper window with Site’s rows list (Do like as the picture),
” Obtain the website you want to start to attack and right-click on it and hit “New Dumper.” either “Go to Dumper” Once in the Data Dumper click “Get Databases” on top of text area inside the text field there should be at least 1 database click on that and run “Get Tables.” After all that loads in look for useful tables, commonly, it will be named “users.” Now click on whatever table you want. For info out – hit “Get Columns… list off a slew of various info fields, inspect the box following to these ones you require to export and hit “Dump Data” in the head right of… ”
SQLi Dumper tutorial Version 8.3 Tutorial:
Offer you today an excellent program, and my personal experience and the great version of the program. And how to use SQLi Dumper.
SQLi Dumper is a pen-testing program: SQL Dumper v.8.3, which is a free and open-source program.
First remembrance of what distinguishes the software from the old versions:
1. The quick speed and strength to bring sites
2.The speedy pace within the extraction of information tables
3. Protection of crash in this Sqli Dumper version
4. extracted flag properly
5. you’ll be able to get mail list
6. additional and discovered it yourself
The program is better than Havij and any other related tools.
How To Use SQLi Dumper?
<YOUTUBE VIDEO>
- First, Download Net Framework 4.0
- Download & Extract SQLi Dumper
- Open SQLi Dumper v8.3.exe
- Afer, Follow These Images
SQLi Dumper tutorial (version under 9)
Requirements
- Have a computer
What is in this post
- Whence to setup SQLI Dumper
- Whereby to make your HQ dorks
- How to apply SQLI Dumper to inject sites
Downloads
Dork Generator
DORKS
When you start up the Dork generator tool, there are three areas to choose out. Names/Keywords, Page Format, Page Type
Names Of Pages
In this, you put keywords associated with the category of the sites you’re looking for you can do this manually, but I would suggest using https://www.keyword.io.
Page Format
In this area most people just insert
.asp?
.php?
.aspx?
.html?
However, if you have much time to scan and you want HQ dorks. You can add many other similar.
.file?
.htm?
.tss?
.jsf?
.raw?
.cfm?
Page Type
I usually simply put
cid=
item=
intCatalogID=
article_id=
designer=
intProdId=
framecode=
idproduct=
langid=
shopid=
NewsId=
id=
code_no=
product=
cartID=
item_id=
code=
jobid=
topic=
Exporting
In the base right, simply click Generate Dorks. It could take some time. Once it is done, it will make a document (text file) in the location of the tool is in…
SQLI Dumper
—————————–
Setting Up
Download and extract the SQLI dumper
Scanning
You get to apply the DORKS you created earlier into the file that the dorks were generated in and copy them. Now start up the SQLI Dumper tool in the head left click “Online Scanner.” Then below that, click URL’s Queue. Now in the large text field in the first middle paste in all the Dorks, Then continue to the head right to “Start Scanner.” To the left of that, make sure that the number is 10. Then click Start Scanner…..
then “URL’s Only” Under “Online Scanner” and above URL’s Queue it will assume Queue, then a number That number is how numerous sites are probably exploitable.
Exploitable
Now, after you have ended, all the scanning hit cancel in the base right and click on “Exploitables” to the right of “URL’s Queue” In the top right, there is “Start Exploiter” to the right —–change that amount to 30. Then click “Start Exploiter” and wait for that to end. Once it is at 100%, you tap cancel.
Injectables
Now click “Injectables” to the right of “Exploitables” And in the head right, there is the “Start Analyzer” change that number to the left to 20. Then click “Start Analyzer,” Next that is done, click cancel.
Data Dumper of SQLi Dumper
Now, after you have few sites listed off in injectables, you are ready to perform the attack. Obtain the website you want to start to attack and right-click on it and hit “New Dumper.” either “Go to Dumper” Once in the Data Dumper click “Get Databases” on top of text area inside the text field there should be at least 1 database click on that and run “Get Tables.”
After all that loads in look for useful tables, commonly, it will be named “users.” Now click on whatever table you want. For info out – hit “Get Columns… list off a slew of various info fields, inspect the box following to these ones you require to export and hit “Dump Data” in the head right of the text field. Ultimately, after that is done, click the Export Data click “Start” and save anywhere you want.
great tutorial for sqli dumper
thank you
great post
thank you
nice post
pass
You’re doing a excellent job Ma,,Keep up it.
King regards,
Abildgaard Hessellund
Magnificent website. Lots of helpful info here. I’m sending it to several buddies ans also sharing in delicious.
And naturally, thanks on your effort!
Natural back links aare women who you get frrom other webmasters simply because site evolves.
This will you must attract choossing the right visitors
within your web domain.