Hey guys i'm looking to crack a websites database to get a list of the emails signed up to it's forum service.
It looks as if they are using Phpbb but i can't be completely sure.
So far i have tryed to sqlmap them but it came back with no sql injection opportunities.
Any other ideas?
Thanks
Forum Thread: Ways to Read Websites Database
- Hot
- Active
-
Forum Thread:
How to Track Who Is Sms Bombing Me .
4
Replies
2 mo ago -
Forum Thread:
Removing Pay-as-You-Go Meter on Loan Phones.
1
Replies
2 mo ago -
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
3
Replies
2 mo ago -
Forum Thread:
moab5.Sh Error While Running Metasploit
17
Replies
3 mo ago -
Forum Thread:
Execute Reverse PHP Shell with Metasploit
1
Replies
4 mo ago -
Forum Thread:
Install Metasploit Framework in Termux No Root Needed M-Wiz Tool
1
Replies
5 mo ago -
Forum Thread:
Hack and Track People's Device Constantly Using TRAPE
35
Replies
6 mo ago -
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
7 mo ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
7 mo ago -
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
7 mo ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
9 mo ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
9 mo ago -
Metasploit Error:
Handler Failed to Bind
41
Replies
10 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
10 mo ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
10 mo ago -
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
10 mo ago -
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
10 mo ago -
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
10 mo ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
11 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
11 mo ago
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
Hack Like a Pro:
How to Find Directories in Websites Using DirBuster
-
How To:
Make Your Own Bad USB
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
-
How To:
Enumerate SMB with Enum4linux & Smbclient
-
How To:
Use Metasploit's WMAP Module to Scan Web Applications for Common Vulnerabilities
-
How To:
Build a Beginner Hacking Kit with the Raspberry Pi 3 Model B+
-
How To:
Set Up a Wi-Fi Spy Camera with an ESP32-CAM
-
How to Hack Wi-Fi:
Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To:
Set Your Wi-Fi Card's TX Power Higher Than 30 dBm
-
How To:
Manually Exploit EternalBlue on Windows Server Using MS17-010 Python Exploit
-
How To:
Detect When a Device Is Nearby with the ESP8266 Friend Detector
-
Hack Like a Pro:
Reconnaissance with Recon-Ng, Part 1 (Getting Started)
-
How To:
Hack Windows 7 (Become Admin)
-
How To:
Beginner's Guide to OWASP Juice Shop, Your Practice Hacking Grounds for the 10 Most Common Web App Vulnerabilities
3 Responses
Reconnaisance is key to any good hack.
Information is power; how are you meant to know which hack to use if you don't even know whether the board is using phpBB or not?
ghost_
Yes! Thanks for the answer, i think you're right.
I'll get to it.
Anything in particular i should watch out for?
SQL injections aren't the only way to achieve what you want. You could also steal the administrator session with XSS for example.
Share Your Thoughts