Hey guys i'm looking to crack a websites database to get a list of the emails signed up to it's forum service.
It looks as if they are using Phpbb but i can't be completely sure.
So far i have tryed to sqlmap them but it came back with no sql injection opportunities.
Any other ideas?
Thanks
Forum Thread: Ways to Read Websites Database
- Hot
- Active
-
Forum Thread: When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen. 8 Replies
2 days ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 12 Replies
1 wk ago -
Forum Thread: Hydra Syntax Issue Stops After 16 Attempts 2 Replies
1 mo ago -
Forum Thread: Hack Instagram Account Using BruteForce 208 Replies
1 mo ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 47 Replies
2 mo ago -
Forum Thread: How to Train to Be an IT Security Professional (Ethical Hacker) 22 Replies
2 mo ago -
Metasploit Error: Handler Failed to Bind 41 Replies
3 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 21 Replies
3 mo ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 177 Replies
3 mo ago -
How to: Crack Instagram Passwords Using Instainsane 36 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More 5 Replies
3 mo ago -
Forum Thread: How Many Hackers Have Played Watch_Dogs Game Before? 13 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device with Only a Ip Adress 55 Replies
4 mo ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 10 Replies
4 mo ago -
Forum Thread: How to Run and Install Kali Linux on a Chromebook 18 Replies
5 mo ago -
Forum Thread: How to Find Admin Panel Page of a Website? 13 Replies
6 mo ago -
Forum Thread: can i run kali lenux in windows 10 without reboting my computer 4 Replies
6 mo ago -
Forum Thread: How to Hack School Website 11 Replies
6 mo ago -
Forum Thread: Make a Phishing Page for Harvesting Credentials Yourself 8 Replies
6 mo ago -
Forum Thread: Creating an Completely Undetectable Executable in Under 15 Minutes! 38 Replies
8 mo ago
-
How To: Scan, Fake & Attack Wi-Fi Networks with the ESP8266-Based WiFi Deauther
-
BT Recon: How to Snoop on Bluetooth Devices Using Kali Linux
-
How To: Hack Apache Tomcat via Malicious WAR File Upload
-
How To: Write an XSS Cookie Stealer in JavaScript to Steal Passwords
-
How To: Seize Control of a Router with RouterSploit
-
How To: Bypass UAC & Escalate Privileges on Windows Using Metasploit
-
How To: The Ultimate Guide to Upping Tx-Power in Kali Linux 2.0
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Find Vulnerable Webcams Across the Globe Using Shodan
-
How To: Find Identifying Information from a Phone Number Using OSINT Tools
-
How To: Brute-Force FTP Credentials & Get Server Access
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
How To: Make Your Own Bad USB
-
Hack Like a Pro: How to Find Directories in Websites Using DirBuster
-
How To: Find Passwords in Exposed Log Files with Google Dorks
-
How To: Target Bluetooth Devices with Bettercap
-
How To: Use MDK3 for Advanced Wi-Fi Jamming
-
How To: Advanced Techniques to Bypass & Defeat XSS Filters, Part 1
-
How to Hack Wi-Fi: Cracking WPA2-PSK Passwords with Cowpatty
-
How to Hack Bluetooth, Part 1: Terms, Technologies, & Security
3 Responses
Reconnaisance is key to any good hack.
Information is power; how are you meant to know which hack to use if you don't even know whether the board is using phpBB or not?
ghost_
Yes! Thanks for the answer, i think you're right.
I'll get to it.
Anything in particular i should watch out for?
SQL injections aren't the only way to achieve what you want. You could also steal the administrator session with XSS for example.
Share Your Thoughts