SQLi for dummies
What is SQLi (SQL Injection / Structured Query Language injection) from the later bored to read the tutorial ... I love better reference links course:) The following links to SQL injection is not my love: P you have to understand what's injection: P it. . tuh .. uh .. uh .. oh .. oh ...:))
just ok dech;)
This discussion of the difficulty of looking dork, hole newbie2 ... SQLi make it now .. easy from there why not we learned in localhost ... but fast loading page ... understand and structure Vuln Table SQL and friends also go ...:)
prepare the equipment:
1. 1 or 2 computers with linux OS or windows OS ... it's up temen2 have what OS at home / office / cafe / have friends who have the same desire to learn things like:) (if you try to use 2 computers networked computer, so this simulation will look more real ... which is 1 server / 1 target and the attacker)
2. XAMPP installer has not had a reply please search sourceforge.net for all OS is there
3. browser (Firefox, Opera, IE, Safari, AOL Browser, Konqueror, or whatever ...)
4. Trainer Module SQLi ... please download here
if ok already prepared all the ingredients ... just ... install XAMPP on your computer ... kalo finished temen2 then run the XAMPP. when you're done extra 'Trainer Module SQLi it (the result of "folder 1" (one) and then put the "folder 1" in the htdocs folder, rather htdocs folder located in the xampp installation folder (ex: XAMPP is installed on C: \ Program Files \ XAMPP ==> so ... is at foder htdocs ... ==> C: \ Program Files \ XAMPP \ htdocs) bener gak yach: -?
next step ... ok xampp configuration dolo:)
CONFIGURATION START ====== ======
try to open your favorite browser ... this was possible we use firefox aja .. fill in the address bar of your browser to "localhost" or "127.0.0.1" (without the quotes) make sure you are in a condition XAMPP Apache and mySQL on it. (see Figure 1)
Code: Select all
http://www.redgeographics.com/img/xampp_control_panel.png
Figure 1 (picture not mine: P)
when it ... the browser will find that this tamppilan (picture 2)
Code: Select all
http://www.javipas.com/wp-content/xampp.jpg
Figure 2 (not mine, too: p)
nah kalo was kebuka into phpMyAdmin (see ditampilan xampp in your browser!). then xampp page will redirect to the phpMyAdmin page (figure 3)
Code: Select all
http://img221.imageshack.us/img221/1015/screenshot15.png
image 3 (the original image I :));)
The next step tetep note image number 3 ....
* In point 1 (Create Database) create a database with the name "Xcode" without the quotes,
* Then press the create (point 2)
after that ... the left side dikolom will appear "database name" that you created ... and the browser screen will change like this (picture 4)
Code: Select all
http://img155.imageshack.us/img155/4821/screenshot16.png
Figure 4 (cave drawings also nech:))
fixed note ... after the 4th picture appears on the display .. then look there a database that you created (point 1) .. nah from there ... press the import button (point 2) then the browser will display the following changes as well: P (figure 5)
Code: Select all
http://img145.imageshack.us/img145/7172/screenshot17z.png
Figure 5 (lagi2 not steal images on google: P)
in the figure 5 there is a media uploader ... but not upload php isa seems:)) love ... gak isa shell upload them through the media =)) well on the ... 1 point upload the SQL file (file name: xcode.sql.zip) that there the package Module Trainer SQLi (I have prepared well ... not so good what I was exactly in the folder =));) the temen 1 put in XAMPP htdocs folder:)
when ready to upload, then press GO (point 2) and ... the display changes again =)) (picture 6)
Code: Select all
http://img150.imageshack.us/img150/6618/screenshot18p.png
Figure 6
nah of this image can be seen that has managed to upload / import the sql file (point 1). and the results can be seen a few tables are formed from the file and columns in the tablenya: d (point 2)
nah that was his configuration settings: P
now living learning: D
======= ======= END OF CONFIGURATION
nah way expiry date ...
input into the address bar is the address "localhost / 1" or "127.0.0.1 / 1"
while it was ok ... will be connected to the discussion of reply or comment:)
video configurasinya following way:)
if the tutorial many scattered dah ...
I aim for nech ... biar temen know how to correct PHP coding ...
know the MySQL database structure (temen2 indirectly to see more of what it is apache)
