Posts

Showing posts from August, 2016
By -
Image
Hello there! Today we'll be learning PHP security. Now, this article is aimed to prevent SQL injection on your website/webapp. Before reading this article, you should have a basic knowledge of PHP, SQL, HTML, a little CSS (for we'll be designing our sample web app a little bit) and XAMPP. If you have no idea what those are, please learn the basics of those first before delving into this tutorial. Alright, without any further ado, let's begin!  What is SQL injection? SQL injection is a kind of attack wherein the attacker "injects" SQL commands into the input field and if the website is vulnerable, the attacker can alter, edit, delete and dump data from the Database. How SQL injection works? A normal user would just go and input a normal value. For example, you have a website that lets users view types of fashion depending on the country. The normal user might enter a country let's say "Philippines", after the user enters that, the database w...
Post a Comment
Read more

Upload Shell And Hack Website Using LFI

By -
Image
Upload Shell And Hack Website Using LFI Hack Website Using LFI, Shell Upload Using LFI, Shell Uploading Using /proc/self/environ, Hack Website With /proc/self/environ, LFI, How To Hack With LFI, Shell Uploading Hallo Friends Today I Shown how To Hack A Website using LFI:-   Please Do Not Deafce This   Target Site:-   http://yesdial.co.in   Step:1  Find The LFI Target Point On This Website:-  Target LFI Point:-http://yesdial.co.in/cindex.php?file=search.php&stype=product&inputstring=Astrologers   Step:2  Now Remove All Text After The (.php?file=)   Now Url looking Like This:-  http://yesdial.co.in/cindex.php?file =   Step:3  Put The Back_slash After The (.php?file=/)   Now Url looking Like This:-http://yesdial.co.in/cindex.php?file=/   If You Got Any Error After Puting The (/) Than Chance To Valurnable To LFI IS 80%   If You Seen Datas Are Hide On Website, Than Chance To Valur...
Post a Comment
Read more