News
Hacking
MySQL Injection Cheat Sheet
Selasa, 21 Juni 2011
MySQL Injection Cheat Sheet Basics. SELECT * FROM login /* foobar */SELECT * FROM login WHERE id = 1 or 1=1SELECT * FROM login WHERE id = 1 or 1=1 AND user LIKE "%root%"Variations. SELECT * FROM login WHE/**/RE id = 1 o/**/r 1=1SELECT * FROM login WHE/**/RE id = 1 o/**/r 1=1 A/**/ND user L/**/IKE "%root%" SHOW TABLESSELECT * FROM login WHERE id = 1 or 1=1; SHOW TABLESSELECT VERSIONSELECT * FROM login WHERE id = 1 or 1=1; SELECT VERSION()SELECT host,user,db from mysql.dbSELECT...
MySQL Injection Cheat Sheet Basics. SELECT * FROM login /* foobar */SELECT * FROM login WHERE id = 1 or 1=1SELECT * FROM login WHERE id = 1 or 1=1 AND user LIKE "%root%"Variations. SELECT * FROM login WHE/**/RE id = 1 o/**/r 1=1SELECT * FROM login WHE/**/RE id = 1 o/**/r 1=1 A/**/ND user L/**/IKE "%root%" SHOW TABLESSELECT * FROM login WHERE id = 1 or 1=1; SHOW TABLESSELECT VERSIONSELECT * FROM login WHERE id = 1 or 1=1; SELECT VERSION()SELECT host,user,db from mysql.dbSELECT...
Menyaring akses website dengan Linksys
Senin, 30 Mei 2011
Linksys router termasuk fitur akses pembatasan yang memungkinkan Anda untuk menyaring dan memblokir akses ke alamat website tertentu, atau URL. Fitur ini mencegah semua orang yang terhubung dengan perangkat Linksys di jaringan lokal mengakses situs tertentu. Anda akan membuat sebuah password untuk kontrol perangkat Linksys sebagai bagian dari proses ini, Anda akan memerlukannya untuk mengubah pengaturan kontrol di atasnya di waktu yang lain. Anda juga dapat menggunakan halama...
Linksys router termasuk fitur akses pembatasan yang memungkinkan Anda untuk menyaring dan memblokir akses ke alamat website tertentu, atau URL. Fitur ini mencegah semua orang yang terhubung dengan perangkat Linksys di jaringan lokal mengakses situs tertentu. Anda akan membuat sebuah password untuk kontrol perangkat Linksys sebagai bagian dari proses ini, Anda akan memerlukannya untuk mengubah pengaturan kontrol di atasnya di waktu yang lain. Anda juga dapat menggunakan halama...
SQL Injection for DoS
Minggu, 22 Mei 2011
Another application threat related to SQL injection is Denial of Service (DoS), which, in its most extreme form, can bring the Web application to a halt by shutting down its backend database. It takes place when an attacker appends the SHUTDOWN command to a SQL statement, or when the attacker creates complex queries over self-joins of large database tables with the intention of sending the database into time consuming loops over lots of data. This ends up consuming pre...
Another application threat related to SQL injection is Denial of Service (DoS), which, in its most extreme form, can bring the Web application to a halt by shutting down its backend database. It takes place when an attacker appends the SHUTDOWN command to a SQL statement, or when the attacker creates complex queries over self-joins of large database tables with the intention of sending the database into time consuming loops over lots of data. This ends up consuming pre...
SQL Injection for Web site defacement
Minggu, 22 Mei 2011
Web site defacement traditionally occurred when a hacker obtained administrative privileges to a Web site and then altered the content of the Web site with potentially offensive or erroneous graphics and text. While Web site owners have bolstered the security of Web configuration tools, malicious users have discovered a new technique to deface Web sites: SQL injection. In 2007, there were several high profile incidents in which SQL injection was used for Web site defacement. ...
Web site defacement traditionally occurred when a hacker obtained administrative privileges to a Web site and then altered the content of the Web site with potentially offensive or erroneous graphics and text. While Web site owners have bolstered the security of Web configuration tools, malicious users have discovered a new technique to deface Web sites: SQL injection. In 2007, there were several high profile incidents in which SQL injection was used for Web site defacement. ...
Mematikan Mesin ATM Modus Baru Pembobolan ATM
Rabu, 18 Mei 2011
REPUBLIKA.CO.ID, JAKARTA - Polda Metro Jaya menangkap dua pelaku pembobolan Anjungan Tunai Mandiri (ATM) dengan modus baru. Pelaku melakukan pembobolan total sekitar Rp 206 juta. Kepala Satuan Reserse Mobil Direktorat Kriminal Umum (Ditkrimum) Kompol Herry Heryawan mengatakan, polisi telah menangkap dua tersangka berinisial AS (27) dan AB (26). Polisi menangkap pelaku pada Minggu (15/5). "Kasusnya dalam pengembangan," katanya di Mapolda Metro Jaya, Selasa (17/5). ...
REPUBLIKA.CO.ID, JAKARTA - Polda Metro Jaya menangkap dua pelaku pembobolan Anjungan Tunai Mandiri (ATM) dengan modus baru. Pelaku melakukan pembobolan total sekitar Rp 206 juta. Kepala Satuan Reserse Mobil Direktorat Kriminal Umum (Ditkrimum) Kompol Herry Heryawan mengatakan, polisi telah menangkap dua tersangka berinisial AS (27) dan AB (26). Polisi menangkap pelaku pada Minggu (15/5). "Kasusnya dalam pengembangan," katanya di Mapolda Metro Jaya, Selasa (17/5). ...
Message Me On Whatsapp