seanybob Posted April 15, 2007 Share Posted April 15, 2007 Re: SQL Injections Btw.. I have seen a real program that decrypts md5.(DO NOT ASK ME HOW!!, i will not tell you) I just happen to have that program. And it doesn't straight out decrypt it, you have to know what you are doing... (decrypting md5 is one of the side additions the program has, not even its main thing) Quote Link to comment Share on other sites More sharing options...
Decepti0n Posted April 15, 2007 Share Posted April 15, 2007 Re: SQL Injections Because everything on the internet is real? Quote Link to comment Share on other sites More sharing options...
hamster01 Posted April 15, 2007 Share Posted April 15, 2007 Re: SQL Injections No. As i see it: THere are two worlds. Cyber and Human. We do not know who the person next to you is on the web. It could be an animal or advanced species. You just dont know. Quote Link to comment Share on other sites More sharing options...
Matty Posted June 4, 2007 Share Posted June 4, 2007 Re: SQL Injections MD5 decrypters are all around the net, just by google-ing you can pick up a few. I mean even this one is pretty good. http://www.md5decrypter.com/ Its webbased too! Quote Link to comment Share on other sites More sharing options...
hamster01 Posted June 4, 2007 Share Posted June 4, 2007 Re: SQL Injections MD5 can't be decrypted.. They use a huge database. Quote Link to comment Share on other sites More sharing options...
Matty Posted June 4, 2007 Share Posted June 4, 2007 Re: SQL Injections True. I wont argue with that, but technically it is still decrypting the hash as it is still giving you a readable word at the end of it. Although it is not truly decrypting it. But then that is what decrypting is all about, having a code and looking up what you know already about the encryption, aslongs as it going from being encrypted to normal text it is still being decrypted no matter how its done. Quote Link to comment Share on other sites More sharing options...
stryker Posted June 6, 2007 Share Posted June 6, 2007 Re: SQL Injections you don't even need to do all this to hack a game, just one lil program i can not name. but it will give you access to all scripts within that domain what i was saying there is yes i do have a program and alot of ppl do use it, but they use it for other means but it can be used to steal scripts, it is a web crawler with a link spider i can get links from sites or if i want i can steal the scripts.it will show you everything it runs into on that server. Quote Link to comment Share on other sites More sharing options...
hamster01 Posted June 6, 2007 Share Posted June 6, 2007 Re: SQL Injections It will only give the html output, not the php script itself. Quote Link to comment Share on other sites More sharing options...
stryker Posted June 6, 2007 Share Posted June 6, 2007 Re: SQL Injections depends on the program, the one i use you can't dl anywhere any more Quote Link to comment Share on other sites More sharing options...
hamster01 Posted June 6, 2007 Share Posted June 6, 2007 Re: SQL Injections No program can, period. It has to bypass the .httaccess file to be able to do that. Unless you show me some proof that you actually did it, its BS! Quote Link to comment Share on other sites More sharing options...
Matty Posted June 6, 2007 Share Posted June 6, 2007 Re: SQL Injections Agreeing with death star. You can only get the HTML and pictures, and javascript/css. Web crawlers dont and cat get PHP scripts, if this was true, everything would be very unsecure... Quote Link to comment Share on other sites More sharing options...
stryker Posted June 6, 2007 Share Posted June 6, 2007 Re: SQL Injections it's been years since i have done so of course i don't have proof, i don't save everything Quote Link to comment Share on other sites More sharing options...
krownx Posted June 21, 2007 Share Posted June 21, 2007 Re: SQL Injections stryker, I understand you are still trying to save face. There was a point in time that I had been looking around for some "magical" program that I could steal php scripts from, and none exist. As deathstar, Hack3rmatt and the others say, it is impossible to use a program (without a valid username and password) to steal PHP scripts, all you will get when you get the script to download is a filename.php.html file, which in itself is an html file no PHP will be in the script. IF by any chance you do/did have a program like that, SOMEONE would have been able to support your theories... and I know that many have been in the scene long enough to know about a program like that. Quote Link to comment Share on other sites More sharing options...
stryker Posted June 23, 2007 Share Posted June 23, 2007 Re: SQL Injections php back door look it up Quote Link to comment Share on other sites More sharing options...
hamster01 Posted June 23, 2007 Share Posted June 23, 2007 Re: SQL Injections php back door look it up Who would upload it? Most uploading script's check the file types ;) Quote Link to comment Share on other sites More sharing options...
stryker Posted June 23, 2007 Share Posted June 23, 2007 Re: SQL Injections explain what your talking about plz Quote Link to comment Share on other sites More sharing options...
hamster01 Posted June 23, 2007 Share Posted June 23, 2007 Re: SQL Injections Thats not exactly how a hacker gets the website hacked. That may be a shell, but nothing near an example how they upload it ;) btw. thats not the ultimate shell. This is a PHP backdoor, that allows code execution, directory browsing, reverse shell (if used correctly), create files, delete files, format hard drive, view netstat internet connections. The Ultimate Shell ....!!! upload wherever u want and begin your hacking activities... Enjoy http://rapidshare.com/files/***********/*****.**.** Preview: http://www.davidgrant.ca/files/image..._0.preview.png Quote Link to comment Share on other sites More sharing options...
Limit Posted July 1, 2007 Share Posted July 1, 2007 Re: SQL Injections Like others have said, you cant download the php files without getting access to the ftp files. Therefore when you access the php files they dont get executed. Also, it is impossible (although some mad scientific claim to be able to crack it) to decrypt md5 using calculations. md5 processors or crackers work by encrypting and comparing, or like decepti0n said, have a massive rainbow table that they use :D Quote Link to comment Share on other sites More sharing options...
awakenedlands.com Posted July 1, 2007 Share Posted July 1, 2007 Re: SQL Injections Or you can use simple sites like this to "decrypt" the md5 passwords... http://nz.md5.crysm.net/ Quote Link to comment Share on other sites More sharing options...
Matty Posted July 1, 2007 Share Posted July 1, 2007 Re: SQL Injections Which is exactly what limit said above. Quote Link to comment Share on other sites More sharing options...
Magictallguy Posted July 23, 2007 Share Posted July 23, 2007 Re: SQL Injections You got any defensive ideas about these? I just got hacked!!! Quote Link to comment Share on other sites More sharing options...
stryker Posted July 25, 2007 Share Posted July 25, 2007 Re: SQL Injections well if they can't get what they want through sql injections or xss attacks then most likely they will try to brute force your server Quote Link to comment Share on other sites More sharing options...
thcmisty Posted October 11, 2007 Share Posted October 11, 2007 Re: SQL Injections hey i keep getting this Fatal error: Call to undefined function: pettypes_dropdown() in /home/branncom/public_html/petadmin.php on line 125 but as far as i can ell everything is allright hers is the code im using function new_pet_form() { global $ir,$c; print "<h3>Adding an item to the game</h3><form action='petadmin.php?action=newpetsub' method='post'> Pet Name: <input type='text' name='petname' value='' /> Pet Desc.: <input type='text' name='petdesc' value='' /> Pet Type: ".pettypes_dropdown($c,'pettypes',$pettypesid['pettypes'],$pettypesname['pettypes'])." Pet Buyable: <input type='checkbox' name='petbuyable' checked='checked' /> Pet Price: <input type='text' name='petbuyprice' /> Pet Sell Value: <input type='text' name='petsellprice' /> <input type='submit' value='Add Item To Game' /></form>"; } can anyone help me Quote Link to comment Share on other sites More sharing options...
Isomerizer Posted October 11, 2007 Share Posted October 11, 2007 Re: SQL Injections hey i keep getting this Fatal error: Call to undefined function: pettypes_dropdown() in /home/branncom/public_html/petadmin.php on line 125 but as far as i can ell everything is allright hers is the code im using function new_pet_form() { global $ir,$c; print "<h3>Adding an item to the game</h3><form action='petadmin.php?action=newpetsub' method='post'> Pet Name: <input type='text' name='petname' value='' /> Pet Desc.: <input type='text' name='petdesc' value='' /> Pet Type: ".pettypes_dropdown($c,'pettypes',$pettypesid['pettypes'],$pettypesname['pettypes'])." Pet Buyable: <input type='checkbox' name='petbuyable' checked='checked' /> Pet Price: <input type='text' name='petbuyprice' /> Pet Sell Value: <input type='text' name='petsellprice' /> <input type='submit' value='Add Item To Game' /></form>"; } can anyone help me Seriously... Use your brain, Its that thing in your skull... How on earth is that related to SQL injections? Quote Link to comment Share on other sites More sharing options...
Vyp3r2oo9 Posted January 27, 2008 Share Posted January 27, 2008 Re: SQL Injections MD5 can't be decrypted.. They use a huge database. Dont mean to rain on your parade there but I think they can be decrypted. Md5 Hash: efe6398127928f1b2e9ef3207fb82663 Normal Text: qweqwe Well Whoop de Whoop I just decrpyted the most basic letter password you could think of :D Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.