Kumpulan Dork Untuk Mencari Target Deface Dengan Teknik SQL - Jika anda ingin melakukan aksi deface pada sebuah web, maka dibutuhkan sebuah dork sehingga kita tahu web mana yang vuln. Dork berfungsi untuk mencari target. Dengan adanya dork, kita dapat menentukan target berdasarkan dork yang diminta. Berikut beberapa contoh dork yang bisa digunakan.
intext:"error in your SQL syntax" +site:my
intext:"mysql_num_rows()" +site:il
intext:"mysql_fetch_array()" +site:br
intext:"Error Occurred While Processing Request" +site:il
intext:"Server Error in '/' Application" +site:my
intext:"Microsoft OLE DB Provider for ODBC Drivers error" +site:br
intext:"Invalid Querystring" +site:my
intext:"OLE DB Provider for ODBC" +site:my
intext:"VBScript Runtime" +site:my
intext:"ADODB.Field" +site:my
intext:"BOF or EOF"+site:my
intext:"ADODB.Command" +site:my
intext:"JET Database" +site:my
intext:"mysql_fetch_row()" +site:my
intext:"Syntax error" +site:my intext:"include()" +site:my
intext:"mysql_fetch_assoc()" +site:my
intext:"mysql_fetch_object()" +site:my
intext:"mysql_numrows()" +site:il
intext:"GetArray()" +site:my intext:"FetchRow()" +site:my
intext:"Input string was not in a correct format" +site:my
allinurl:xml.php?id=
allinurl:xml.php?code=
allinurl:xml.php?code= module_ID=
inurl:index.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurl:play_old.php?id=
inurl:declaration_more.php?decl_id=
inurl:Pageid=
inurl:games.php?id=
inurl:page.php?file=
inurl:newsDetail.php?id=
inurl:gallery.php?id=
inurl:article.php?id=
inurl:show.php?id=
inurl:staff_id=
inurl:newsitem.php?num=
inurl:readnews.php?id=
inurl:top10.php?cat=
inurl:historialeer.php?num=
inurl:reagir.php?num=
inurl:forum_bds.php?num=
inurl:game.php?id=
inurl:view_product.php?id=
inurl:newsone.php?id=
inurl:sw_comment.php?id=
inurl:news.php?id=
inurl:avd_start.php?avd=
inurl:event.php?id=
inurl:product-item.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:aboutbook.php?id=
inurl:fiche_spectacle.php?id=
inurl:communique_detail.php?id=
inurl:sem.php3?id=
inurl:kategorie.php4?id=
inurl:news.php?id=
inurl:index.php?id=
inurl:faq2.php?id=
inurl:show_an.php?id=
inurl:preview.php?id=
inurl:loadpsb.php?id=
inurl:opinions.php?id=
inurl:spr.php?id=
nurl:pages.php?id=
inurl:announce.php?id=
inurl:clanek.php4?id=
inurl:participant.php?id=
inurl:download.php?id=
inurl:main.php?id=
inurl:review.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:prod_detail.php?id=
inurl:viewphoto.php?id=
inurl:article.php?id=
inurl:person.php?id=
inurl:productinfo.php?id=
inurl:showimg.php?id=
inurl:view.php?id=
inurl:website.php?id=
inurl:hosting_info.php?id=
inurl:gallery.php?id=
inurl:rub.php?idr=
inurl:view_faq.php?id=
inurl:artikelinfo.php?id=
inurl:detail.php?ID=
inurl:index.php?=
inurl:profile_view.php?id=
inurl:category.php?id=
inurl:publications.php?id=
inurl:fellows.php?id=
inurl:downloads_info.php?id=
inurl:prod_info.php?id=
inurl:shop.php?do=part&id=
inurl:Productinfo.php?id=
inurl:collectionitem.php?id=
inurl:band_info.php?id=
inurl:product.php?id=
inurl:releases.php?id=
inurl:ray.php?id=
inurl:produit.php?id=
inurl:pop.php?id=
inurl:shopping.php?id=
inurl:productdetail.php?id=
inurl:post.php?id=
inurl:viewshowdetail.php?id=
inurl:clubpage.php?id=
inurl:memberInfo.php?id=
inurl:section.php?id=
inurl:theme.php?id=
inurl:page.php?id=
inurl:shredder-categories.php?id=
inurl:tradeCategory.php?id=
inurl:product_ranges_view.php?ID=
inurl:shop_category.php?id=
inurl:transcript.php?id=
inurl:channel_id= inurl:item_id=
inurl:newsid=
inurl:trainers.php?id=
inurl:news-full.php?id=
inurl:news_display.php?getid=
inurl:index2.php?option=
inurl:readnews.php?id=
inurl:top10.php?cat=
inurl:newsone.php?id=
inurl:event.php?id=
inurl:product-item.php?id=
inurl:sql.php?id=
inurl:aboutbook.php?id=
inurl:review.php?id=
inurl:loadpsb.php?id=
inurl:ages.php?id=
inurl:material.php?id=
inurl:clanek.php4?id=
inurl:announce.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:viewapp.php?id=
inurl:viewphoto.php?id=
inurl:rub.php?idr=
inurl:galeri_info.php?l=
inurl:review.php?id=
inurl:iniziativa.php?in=
inurl:curriculum.php?id=
inurl:labels.php?id=
inurl:story.php?id=
inurl:look.php?ID=
inurl:newsone.php?id=
inurl:aboutbook.php?id=
inurl:material.php?id=
inurl:opinions.php?id=
inurl:announce.php?id=
inurl:rub.php?idr=
inurl:galeri_info.php?l=
inurl:tekst.php?idt=
inurl:newscat.php?id=
inurl:newsticker_info.php?idn=
inurl:rubrika.php?idr=
inurl:rubp.php?idr=
inurl:offer.php?idf=
inurl:art.php?idm=
inurl:title.php?id=
inurl:trainers.php?id=
inurl:article.php?ID=
inurl:play_old.php?id=
inurl:declaration_more.php?decl_id=
inurl:Pageid=
inurl:games.php?id=
inurl:newsDetail.php?id=
inurl:staff_id=
inurl:historialeer.php?num=
inurl:product-item.php?id=
inurl:news_view.php?id=
inurl:humor.php?id=
inurl:communique_detail.php?id=
inurl:sem.php3?id=
inurl:opinions.php?id=
inurl:spr.php?id=
inurl:pages.php?id=
inurl:chappies.php?id=
inurl:prod_detail.php?id=
inurl:viewphoto.php?id=
inurl:view.php?id=
inurl:website.php?id=
inurl:hosting_info.php?id=
inurl:gery.php?id=
inurl:detail.php?ID=
inurl:publications.php?id=
inurl:Productinfo.php?id=
inurl:releases.php?id=
inurl:ray.php?id=
inurl:produit.php?id=
inurl:pop.php?id=
inurl:shopping.php?id=
inurl:productdetail.php?id=
inurl:post.php?id= section.php?id=
inurl:theme.php?id=
inurl:page.php?id=
inurl:shredder-categories.php?id=
inurl:product_ranges_view.php?ID=
inurl:shop_category.php?id=
inurl:channel_id=
inurl:newsid=
inurl:news_display.php?getid=
inurl:ages.php?id=
inurl:clanek.php4?id=
inurl:review.php?id=
inurl:iniziativa.php?in=
inurl:curriculum.php?id=
inurl:labels.php?id=
inurl:look.php?ID=
inurl:galeri_info.php?l=
inurl:tekst.php?idt=
inurl:newscat.php?id=
inurl:newsticker_info.php?idn=
inurl:rubrika.php?idr=
inurl:offer.php?idf=
"id=" & intext:"Warning: mysql_fetch_array()
"id=" & intext:"Warning: getimagesize()
"id=" & intext:"Warning: session_start()
"id=" & intext:"Warning: mysql_num_rows()
"id=" & intext:"Warning: mysql_query()
"id=" & intext:"Warning: array_merge()
"id=" & intext:"Warning: preg_match()
"id=" & intext:"Warning: ilesize()
"id=" & intext:"Warning: filesize()
inurl:index.php?id=
inurl:buy.php?category=
inurl:article.php?ID=
inurl:play_old.php?id=
inurl:newsitem.php?num=
inurl:top10.php?cat=
inurl:historialeer.php?num=
inurl:reagir.php?num=
inurl:Stray-Questions-View.php?num=
inurl: forum_bds.php?num=
inurl:game.php?id=
inurl:view_product.php?id=
inurl:sw_comment.php?id=
inurl:news.php?id=
inurl:avd_start.php?avd=
inurl:event.php?id=
inurl:sql.php?id=
inurl:news_view.php?id=
inurl:select_biblio.php?id=
inurl:humor.php?id=
inurl:ogl_inet.php?ogl_id=
inurl:fiche_spectacle.php?id=
inurl:communique_detail.php?id=
inurl:sem.php3?id=
inurl:kategorie.php4?id=
inurl:faq2.php?id=
inurl:show_an.php?id=
inurl:preview.php?id=
inurl:loadpsb.php?id=
inurl:opinions.php?id=
inurl:spr.php?id=
inurl:announce.php?id=
inurl:participant.php?id=
inurl:download.php?id=
inurl:main.php?id=
inurl:review.php?id=
inurl:chappies.php?id=
inurl:read.php?id=
inurl:prod_detail.php?id=
inurl:article.php?id=
inurl:person.php?id=
inurl:productinfo.php?id=
inurl:showimg.php?id=
inurl:view.php?id=
inurl:website.php?id=
inurl:hosting_info.php?id=
inurl:gery.php?id=
inurl:rub.php?idr=
inurl:view_faq.php?id=
inurl:artikelinfo.php?id=
inurl:detail.php?ID=
inurl:index.php?=
inurl:profile_view.php?id=
inurl:category.php?id=
inurl:publications.php?id=
inurl:fellows.php?id=
inurl:downloads_info.php?id=
inurl:prod_info.php?id=
inurl:shop.php?do=part&id=
inurl:collectionitem.php?id=
inurl:band_info.php?id=
inurl:product.php?id=
inurl:releases.php?id=
inurl:ray.php?id=
inurl:produit.php?id=
inurl:pop.php?id=
inurl:shopping.php?id=
inurl:productdetail.php?id=
inurl:post.php?id=
inurl:viewshowdetail.php?id=
inurl:clubpage.php?id=
inurl:memberInfo.php?id=
inurl:section.php?id=
inurl:theme.php?id=
inurl:page.php?id=
inurl:shredder-categories.php?id=
inurl:tradeCategory.php?id=
inurl:product_ranges_view.php?ID=
inurl:shop_category.php?id=
inurl:transcript.php?id=
inurl:channel_id=
inurl:item_id=
inurl:newsid=
inurl:trainers.php?id=
inurl:news-full.php?id=
inurl:news_display.php?getid=
inurl:index2.php?option=
inurl:readnews.php?id=
inurl:newsone.php?id=
inurl:product-item.php?id=
inurl:pages.php?id=
inurl:clanek.php4?id=
inurl:viewapp.php?id=
inurl:viewphoto.php?id=
inurl:galeri_info.php?l=
inurl:iniziativa.php?in=
inurl:curriculum.php?id=
inurl:labels.php?id=
inurl:story.php?id=
inurl:look.php?ID=
inurl:aboutbook.php?id=
"id=" & intext:"Warning: mysql_fetch_assoc()
"id=" & intext:"Warning: is_writable()
"id=" & intext:"Warning: Unknown()
"id=" & intext:"Warning: mysql_result()
"id=" & intext:"Warning: pg_exec()
"id=" & intext:"Warning: require()
Untuk mengetahui vulnerability'nya, anda tambahkan tanda petik ' pada belakang url dari hasil dork tersebut. Misal www.site.com/curriculum.php?id=30' atau www.site.com/curriculum.php?id='30 jika ditemui tulisan seperti syntax error berarti web tersebut dapat kita eksekusi.
Selamat mencoba ^_^
Terimakasih informasinya moga bermanfaat bagi kita semua.
BalasHapusvisit juga yach http://umrohtermurah.byethost4.com/htp://umrohhajiku.com
wkwkwk eksekusinya gimana um?
BalasHapusCari disini gan http://ramadhanlmzero.blogspot.com/search?q=deface+dengan+SQL&x=0&y=1
BalasHapusBisa Work Untuk Blog gak Ni ?
BalasHapusBlog mana bisa di deface -_-
BalasHapuskalo blogger selain phising ada trik lain ga gan?
BalasHapusdias : blogger itu punyanya google gan, kemungkinannya sangat tipis sekali untuk diretas, jalan satu-satunya yaitu dgn phising/rayu korban untuk kasih email & pass
BalasHapusJangan google gan... ketangkap bisa berabe lu.... kalau mau serang website kecil sj... dan kalau mau balas dendam kyknya DDoS trojan lebih efisien..
BalasHapusnyimak gan, belajar sekalian :)
BalasHapusIni google dork masukin di mana? [-(
BalasHapusdimasukkan di kotak pencarian google gan (o)
BalasHapushttp://www.ensoval.com/xml/grafico.xml.php?id=10' gan ini kenapa -.- ane kaga ngerti
BalasHapusDwiki : Dicoba eksekusi aja gan siapa tau berhasil :-b
BalasHapusmohon bimbingan gan kalau mau buat botnet gimana gan?? yand bisa ddos lewat mirc gan (f)
BalasHapusane bookmark dulu dah gan,, ntar ane belajar lagi..
BalasHapusok gan semangat :-b
BalasHapuswah manteb nih buat belajar :D
BalasHapusbro cari drok di google gimana caranya
BalasHapuscopy salah satu dork diatas, dan paste di google
Hapusada yg baru gak ??? kbnyakan udah pada fix semua
BalasHapusdikembangin sendiri aja gan (o)
Hapuscara nyari web vuln havij gimana gan? :-?
BalasHapusya pakai dork diatas gan
HapusGans..
BalasHapusData google dork coc ada gak ???
setelah search di google trus gmana bang ?
BalasHapus