Exploit risk is really high, mostly when it comes to talk about
government websites, Don’t know why they are not focusing on the
security of websites.
Here is Govt Website Hacking With Dork And Method
Note: don’t harm to any website, just do it for testing purposes & I’m not liable for your action, That’s your action.
SQL
Injection is really a big vulnerability for any website, Here I have
found a Colombian govt website dork which contains this vulnerability in
50+ websites.
The thing you need is Sqlmap which are running on Python3.7 (the latest version, you can use it in windows and Linux).
Now It’s time for dork to hack govt website
Here you have to understand the meaning of mentioned dork: intext
(text which is available under websites) then keyword (what word inside
contains), & last website extension (.com, org, net, gov) in the
google you have to use this dork:
intext:Powered By Plexo Torresoft Alex Torres Software site:gov.co
site.gov.in intext: php?id=
Intext: word which is inside the website
Site: website extension (site: gov.co) is about government of Colombia.
Now open the URL’s through SERP (search engine rank page) and add Apostrophe (‘)at the end of the URL.
The website data is hack able if you get error like this: A MySQL error has occurred, You have an error in your SQL syntax.
How To Hack A Govt Website Using SQLMAP
Let’s start hacking Database of the govt website using SQLMAP under 2 minutes
Sqlmap
can automatically enumerate the database and everything which you want
to the website, If you have good knowledge of SQL you can use Hackbar
add-on in Mozilla firefox.
Step 1- Open Sqlmap in CMD, if you are using windows
No comments
Please do not enter any spam link in comment box.