Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



   551

Learn Cracking in 2022 - Introduction-

by FatherKing - 05 October, 2022 - 01:46 PM
This post is by a banned member (FatherKing) - Unhide
64
Posts
8
Threads
2 Years of service
#1
(This post was last modified: 05 October, 2022 - 06:26 PM by FatherKing.)
Dorking is an art to understanding a Search engine and get desired output out of it.
Like if I want to get a eBook on google it’s hard to get that in our first result most of the time but a dork can do it.


Let’s get this through an example:

Let’s say that the book we want is “Learn Python From Basics” and we want it as a pdf.

So I’ll Go to google and type:  ext:pdf “Learn Python From Basics”

And as a result google will provide me the URL which have a pdf in there of the book “Learn Python From Basics”.

Now this can be done to any target with proper formatting of this dork as soon our result
isn’t banned by google.

What is a Dork?

A dork is a search query which Engine reads and interpret to provide most relative result

which co-relates to query.

Why we use Dork?

So simplest way of cracking is finding a website which is unprotected then exploiting information compromising it’s lack of security measures and then use them for own purposes.

How does Dorking works?

There are basically 3 Methods which can be used to Request Data, which are:

Get, Put and Post

Our Primary Search Engines (Google & Bing) Both uses Get method to request data.
 How Get method works and why we use this instead of other two?
In Get method our data is put into the URL from the form as temporary data storage.
This is the form we fill to request the data on google:


This is Google using Get Method to Provide us result (Requested data is Underlined)

Now let’s discuss about why we don’t use Put or Post method for SQL Injection.

Basically thing is in Get method, we request a website to get us the data we want But when

it comes to Post or Put we have to send Some payload there to Get Result back and we

don’t be knowing the exact payload for the website so we will be needed to go through a

long manual process to find specific payload and then start injecting malicious string which

isn’t much good for us as it will take ages to get that.


What is SQL injection and How it works?

So Conclusion is that “data is input from some variable on a site, being user operated or automatic in the functionality of the site.
Data will be sent to the server (where the website is hosted) and complete a task.

I`ll make a new thread soon all for SQL Injection so stay tuned 
Smart

This is a bump
Leave a Like to support me 
This post is by a banned member (370fe26307) - Unhide
60
Posts
0
Threads
2 Years of service
#2
(05 October, 2022 - 01:46 PM)FatherKing Wrote: Show More
Dorking is an art to understanding a Search engine and get desired output out of it.
Like if I want to get a eBook on google it’s hard to get that in our first result most of the time but a dork can do it.


Let’s get this through an example:

Let’s say that the book we want is “Learn Python From Basics” and we want it as a pdf.

So I’ll Go to google and type:  ext:pdf “Learn Python From Basics”

And as a result google will provide me the URL which have a pdf in there of the book “Learn Python From Basics”.

Now this can be done to any target with proper formatting of this dork as soon our result
isn’t banned by google.

What is a Dork?

A dork is a search query which Engine reads and interpret to provide most relative result

which co-relates to query.

Why we use Dork?

So simplest way of cracking is finding a website which is unprotected then exploiting information compromising it’s lack of security measures and then use them for own purposes.

How does Dorking works?

There are basically 3 Methods which can be used to Request Data, which are:

Get, Put and Post

Our Primary Search Engines (Google & Bing) Both uses Get method to request data.
 How Get method works and why we use this instead of other two?
In Get method our data is put into the URL from the form as temporary data storage.
This is the form we fill to request the data on google:


This is Google using Get Method to Provide us result (Requested data is Underlined)

Now let’s discuss about why we don’t use Put or Post method for SQL Injection.

Basically thing is in Get method, we request a website to get us the data we want But when

it comes to Post or Put we have to send Some payload there to Get Result back and we

don’t be knowing the exact payload for the website so we will be needed to go through a

long manual process to find specific payload and then start injecting malicious string which

isn’t much good for us as it will take ages to get that.


What is SQL injection and How it works?

So Conclusion is that “data is input from some variable on a site, being user operated or automatic in the functionality of the site.
Data will be sent to the server (where the website is hosted) and complete a task.

I`ll make a new thread soon all for SQL Injection so stay tuned 
Smart

This is a bump
thnks

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 2 Guest(s)