How Hackers are Hacking websites ??

Elena harrison // Sunday, May 5, 2013


How Hackers are Hacking websites ??
Today we're going to take a look how Hackers quickly find Vulnerabilities on websites and Deface Them, and other websites on same server easily

Getting Started.....

SQL Injection
SQL injection (SQLi) is a very Popular Method for website Hacking, you can do it manually or use automated sql injection Tools, To find SQL vulnerable website You can use google dorks.
Searching vulnerable Websites for Hacking
Searching vulnerable website is pretty easy, put a dork and select website from search results, for faster use you may use any exploit canner
DNS Hijacking

Attacking A Target website on Shared Hosting
Again its very easy, for example you have to hack examplesite. com and its Hosted on 192.168.13.5 , if examplesite.c om is not vulnerable for hacking then Goto www.bing.c om and put dork to find vulnerable website on same server,
for example ip:192.168.13.5 id=
if you got shell on same server then you can acess examplesite .com with WHM/ Reseller, Cpanel Cracking and Symlink,

A Method to Gain acess on websites in attacking web Application, to Search web application Vulnerabilities follow the method given above
example:ip:192.168.13.5 "wordpress"
192.168.13.5 "Joomla"
you can shell web application with thier exploits, find some wordpress,joomla and other web app exploits here
Got Admin acess, now what ?
Once you Got admin acess, upload the shell ! download shells from here, if you don't have any
Uploaded shell, Now what ?
Now Take down you Target,you can either root the server or crack cpanels
or do mass symlink on server

once you got acess to website's database use mysql connect in table
and read admin password in tables, you can remotly chnage password for joomla and wordpress

now you have acess on server, do whatever you want ~!

Its really simple ?
Yeah, Thats why most Hackers Hack/deface/root or whatever they do to website !