BLIND SQL INJECTION WITH REAL WEBSITE

Introduction

“So, in this blog you will learn how to hackers hack website without username and password using blind SQL Injection. We will also do this with a practical demonstration on a real website.”

Table of Contents

Blind SQL Injection is a hacking attack that is an advanced form of SQL Injection. In this, a hacker can access a website’s database and log in to the website without a username and password. This allows them to make any changes they want and even leak data.”

“When we access a website’s database using an SQL query and log in without a username and password, it is called Blind SQL Injection.”

open any browser.

2. In the browser’s search bar, you need to search for “site:pk inurl:login.php”. Here, site:pk inurl:login.php is a Google Dork that allows us to directly find website login pages. It will only show websites with a login page, making it easier for us to perform Blind SQL Injection. Here, :pk means that we are specifically searching for Pakistani websites, as .pk is Pakistan’s domain. If you want to search for Indian websites, you can use site:in, which corresponds to the .in domain for India. Different countries have different domain extensions, which you can look up online. The login.php ensures that only login pages of websites appear in the search results.”

3. Open any website. Since we don’t know the username, we will use an SQL query in the username field. The query is ‘or’1’=’1. We will enter the same query in the password field as well: ‘or’1’=’1. This will allow us to log in to the website without needing a valid username or password. This technique works because the SQL query always evaluates to true, bypassing authentication. This method is known as Blind SQL Injection.”

After perform blind SQL Injection Now you can successfully login in this site.

And now you can change every thing in this site.

“There are many types of SQL queries. If we are unable to log in using the previous query, we can try another query: ‘or’1’=’1’ limit 1– –. We will enter this query in the username field, and in the password field, we can either use the same query or enter anything else. Then, we will press the login button, and we should be able to log in successfully.”

Now you login in this site.

Conclusion

We cannot log in to all websites using Blind SQL Injection. However, if we find a website where we can log in using this method, we can report it and even claim a bug bounty.