Sign in to follow this  
Followers 0
Rolex

SQLi Dumper guide for complete beginners Step By Step (Screenshots Included)

By Rolex in Cracking Tutorials

Recommended Posts

Rolex    9

Rolex

Took me shitload time uploading all the screens and stuff so please show appreciation, and ill be posting more guides on how to dehash passwords and other stuff like that!

 

Don't LEECH please. The guide has 800 words Don't just say "TY" please pepe.gif  

 

Enjoy  :ezy:

 

 

 

 

[hide]

1. Downloading and Installing SQLi Dumper

This tutorial will be using SQLI Dumper v.8.3.

Your version might be different, but it will still work the same.

Download link: https://anonfiles.com/f3z7o0w5b9/SQLi_Dumper_v8.3_rar

 

2. Proxies

You can use this tool to get proxies, or you can use different sites...

Download link: https://proxyscrape.com/proxy-checker

 

 

3. Dorks

Here is some information about Dorks and how to make them.

https://whatis.techtarget.com/definition...dork-query

https://en.wikipedia.org/wiki/Google_hacking

Or

You can use N3rox dork generator, and https://keywordtool.io/  type keyword in keywordtool.io, http://prntscr.com/mv3csq copy all the generated keywords http://prntscr.com/mv3detand paste it in notepad http://prntscr.com/mv3dwx , Now you gonna need Notepad++ you can download it from https://notepad-plus-plus.org/download/v7.6.4.html once you downloaded it and installed, right click your keywords notepad file and click Edit with notepad++ http://prntscr.com/mv3ex8 , Inside click CTRL (Control) + F  http://prntscr.com/mv3ftf move to replace and in " Find what " click space on your keyboard and in "Replace with" type  " - " as show in screenshot and click "Replace all" after you done all of this save your file, now open notepad and copy your modified keywords.

 

Okay now open N3rox dork generator and paste your generated keywords in this box http://prntscr.com/mv3h8y for page type, and page format go to this guide to understand it better

Ok after that just press Generate Dorks  http://prntscr.com/mv3i1n your generated dorks will be located in N3rox folder http://prntscr.com/mv3iem 

 

N3rox dork generator Download link: https://anonfiles.com/191do3w5b8/n3rox_zip

 

 

4. Online Scanner

Getting vulnerable URLs using SQLI Dumper and Dorks.

Paste dorks:

http://prntscr.com/mv3irk

Select what sites you want to grab URLs:

http://prntscr.com/mv3j07

Then click "Start Scanner":

http://prntscr.com/mv3j84 choose urls only

URLs should start showing:

http://prntscr.com/mv3jgz

 

 

5. Exploitables

Now that you have URLs in URLs Queue.

Goto Exploitables and click "Start exploiter" http://prntscr.com/mv3jzj  (If you have good pc set threads to 100)

 

 

6.Injectables.

Once you have a few URLs exploited.

Goto injectables and click "Start Analyzer" https://prnt.sc/mv3mpe

Once you get injectable urls, right click and select all like this http://prntscr.com/mv3nlp

"Search Columns\Tables Names (MySQL and MS SQL) "

Enter what you want to search like so and click start: http://prntscr.com/mv3o6b

A window should appear like so:

http://prntscr.com/mv3phw

The number is how many rows(Lines) the table in the column has.

Search for columns where Email and Password row matches like this  http://prntscr.com/mv3rhr

Click and highlight the row you want to dump. Click the "Go To Dumper" drop-down button at the top then "New Dumper Instance": http://prntscr.com/mv3sb8

 

 

7. Dumping

Once Dumper increase number of threads to 50 and check that small box at the start of threads marked as 1 in screenshot http://prntscr.com/mv3ug8  

Now click the Column that has email passwords in it marked as 2 in screenshot http://prntscr.com/mv3ug8 

Now click Get Columns marked as 3 in screenshot http://prntscr.com/mv3ug8

Now select Columns that contain Username/Email and Password marked as 1 in screenshot http://prntscr.com/mv3wet and Click Dump data marked as 2 in the screenshot

Once dumping is finished click "Export Data": http://prntscr.com/mv3xl1

Keep "Plaintext." Change "Delimiter" to "Custom:"

http://prntscr.com/mv3y04

Then click Start and save to a location.

You have successfully dumped your data!

 

8. Modifying dumped data (Removing useless lines)

Now you have got your combo some of them might be useless like this one http://prntscr.com/mv3zkx

To fix this, I found one-way download text editor tool Emeditor link: https://www.emeditor.com/

Once you have it downloaded right, click your combo and press "Emeditor" as shown in screen http://prntscr.com/mv40z2

Inside click this option as highlighted in screenshot http://prntscr.com/mv41tx , this will basically sort your combo from longest to shortest meaning email: pass combos that are missing password will be at the bottom

and you can simply select useless combos from the bottom and delete them

 

Bonus:

If you want to get urls, let's say from the UK only put site:uk in this box as shown http://prntscr.com/mv43y6 or if you wanna get Canadian urls only put in site:ca

 

[/hide]

Share this post

Link to post
Share on other sites

sidov    6

sidov

thank you bro

Share this post

Link to post
Share on other sites

sag    25

sag

thanks for your hsard work man. appreciate u sharing your knowledge

Share this post

Link to post
Share on other sites

x3n0gen35i5    1

x3n0gen35i5

thanks alot man

 

SQLi Dumper guide for complete beginners Step By Step

 

will def get some use out of this man i appreciate it!

Share this post

Link to post
Share on other sites

RASIM7    1

RASIM7

Thank you vey much

Share this post

Link to post
Share on other sites

cutty77    1

cutty77

appreciate u sharing your knowledge bro

Share this post

Link to post
Share on other sites

f98ug49    0

f98ug49

Took me shitload time uploading all the screens and stuff so please show appreciation, and ill be posting more guides on how to dehash passwords and other stuff like that!

 

Don't LEECH please. The guide has 800 words Don't just say "TY" please pepe.gif  

 

Enjoy  :ezy:

 

 

 

 

 

i was looking for tyhis

Share this post

Link to post
Share on other sites

Rolex    9

Rolex

Don't forget to leave a like :pepo:

Share this post

Link to post
Share on other sites

csdn222    1

csdn222

Took me shitload time uploading all the screens and stuff so please show appreciation, and ill be posting more guides on how to dehash passwords and other stuff like that!

 

Don't LEECH please. The guide has 800 words Don't just say "TY" please pepe.gif  

 

Enjoy  :ezy:

 

 

 

 

 

 

It's fine thanks

Share this post

Link to post
Share on other sites

ThePray3r    3

ThePray3r

appreciate for sharing your knowledge bro

Share this post

Link to post
Share on other sites

respekjacob    0

respekjacob

Took me shitload time uploading all the screens and stuff so please show appreciation, and ill be posting more guides on how to dehash passwords and other stuff like that!

 

Don't LEECH please. The guide has 800 words Don't just say "TY" please pepe.gif  

 

Enjoy  :ezy:

 

 

 

 

 

 

ytyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyy

Share this post

Link to post
Share on other sites

Sliff    0

Sliff

Thanks u might get to know this software some more again :D

Share this post

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Sign in to follow this  
Followers 0
Go To Topic Listing