(question) how to make a targeted dorks for specific sites?

(08-19-2018, 02:32 PM)tschaikowsky Wrote:

[To see links please register here]

First of all you have to read and Understand what are Dorks doing

Thanks for your reply.
Yeah I studied about it but the thing is
I still get shitty websites using dorks and com bo (which is not even a lot).

I need some serious help/ tips on how to get quality com bo using private dorks.

ok, what I did was I found this dorks below from google (youtube)
and ran sqli dump.



I expected to get lots of com.bos but it was just not that much and the result was shitty.

anyone can teach me how to get private dork/com,bos?

I suggest learning to Identify and exploit manually, by using (depending on the attack vector) Union-Based, Boolean-Based, or the most common being Error-Based SQLi attacks. Content-Based (Blind) Is also of benefit. Circumventing WAFs and IDS/IPS (where warranted) Is also vital.

At the minimum, proficiency In SQL Is paramount. PHP Is also of significant Importance. I've yet to utilize a single tool and as recent as an hour ago, I have full raid on a major metal manufacturer company that I was targeting for a few days.

Apart from my entry, for security purposes, details have been concealed.

Hidden Content

You must

[To see links please register here]

or

[To see links please register here]

to view this content.

[/hide]

Thanks a lot.
Will study as you guide.

(08-20-2018, 07:27 AM)cupopigi Wrote:

[To see links please register here]

Thanks a lot.
Will study as you guide.

Dorking is a good thing, but with Dorks you never get High Level targets, with Dorks you find only GET Para Injections, but good Injections are in the Post Parameter and you cant dork them

(08-20-2018, 08:55 AM)tschaikowsky Wrote:

[To see links please register here]

Dorking is a good thing, but with Dorks you never get High Level targets, with Dorks you find only GET Para Injections, but good Injections are in the Post Parameter and you cant dork them

Can you tell me what’s para injection and post injection?
There’s so many things to study haha
Thanks in advance.

Yeah its much to learn and read...

For understanding HTTP/GET/POST/HEAD read this article

[To see links please register here]

##edit; i have posted a Tutorial Package here

[To see links please register here]

(08-20-2018, 01:49 PM)tschaikowsky Wrote:

[To see links please register here]

Yeah its much to learn and read...

For understanding HTTP/GET/POST/HEAD read this article

##edit; i have posted a Tutorial Package here

Really appreciate!