Hey dude, can I use this to attack my own server?

@dhruvseth2009 Yea of course

hi there 1st thanks for the tutorial but i got this error (bash: !d=442: event not found) can any one help ??

thanks !

@msce1983 This means that there is no page associated with the number 443. try a lower number like 10.

hey bro nice vid.. but what do use to hide ur ip.? so u dnt get cought?

@fito15151 Socks5 and TOR

I have trouble with my brute force A.K.A John the ripper...would any one have a numb/dic attack list? faster than johns?

Sorry I may be saying some things that are untrue here, because I'm new to all this, but I wouldn't have thought the hash does you any good, because it's just the encrypted version of the users password, yes?

And without the encryption key that was used to encrypt that password, there is no way you will be able to recovery the users password (?)

Please correct me if I'm wrong as I'm eager to learn :D

YTavish141 : Google is your best friend ! :3 It's so simple. No Worry.

Which softare do u use to record your desktop in that good quality?

@cossan I used camstudio for this video

@TheGenexSecurity both CAMstudio and recordmydestop are great, you can get recordmydesktop by typing in apt-get install gtk-recordmydesktop on BT5.

Very nice , its work fine :) Congratulations .

Okay I have been searching for vulnerable sites for hours and still got nothing, if some one can help me I would really be thankful, thanks in advance.

HI,

First of all, thanks for the great video. I wanted to ask you in your video where you obtain the hash. Is that an md5 hash??

Thanks

@chibi2666 Yes it is a MD5 hash, and as far as obtaining the hash you need to just take the data from the columns

im very lost please pm me

wait it scans the site to see if its vunerable or we need to find one that is?

@crash7ov3rride You need to find the site that is vuln to SQLI and this will scan through and grab databases and columns, If you need help finding vuln sites please PM me

cool Video!

can I ask 1 tiny,small, stupid question ? how do you exactly find the vulnerability..:)

@YTavish141 first you need to find a dork just use google and search for dork list when you have done that

go to blackle.com and enter your dork open the page and add this to the end ' and if you get an sql error the site is vulnerable

@YTavish141 As alib said you need a dork to find sites thats are vuln or if you have a specific site that you are interested you just need to do some searching around......PM me if you have questions regarding specific sites

@TheGenexSecurity what kind of searching ? please

it would be good if you put the commands in the description....

Wierd i tried to download this and my norton said somthing about it acting wierd and removed it

@ResistIslamToday You tried downloading what?

@TheGenexSecurity backtrack5 and it keeps saying theres no file associated with the download or somthing wierd like that

@ResistIslamToday FYI, BackTrack is safe. Just make sure you download from their official website.

@ResistIslamToday Your first mistake is norton, it fails so bad. Its litterly the worst anti virus out there. Get malware bytes or what ever. Even the free version is better.

works... thx ^^

@Timme200 Glad you liked it man, thanks for the comment

i got error

root@bt:/pentest/web/scanners/­sqlmap# phyton sqlmap.py -u h t t p : / / o b s e s i o n l 2 . c o m .a r / ? p a g i n a = h o m e --dbs

No command 'phyton' found, did you mean: Command 'photon' from package 'photon' (universe)

phyton: command not found

how to fix that pls help

@the0ffspring00359 it is spealt python, and as far as the scanner goes =home wouldnt be an acceptable vuln link

Can you do a tutorial on proxys on backtrack?

@imtifade Proxy is easy , its on the menu somewhere ... or there is one for just the terminal, google 'export' proxy for terminal