[Share] H-A-C-K SQL Databases!

[BostonLegal]

In second line what did i have to put i try everything nothing works..?

[emishoor]

dont work look this

 

i've try this in one sv where i play .....

http://www.imagecross.com/02/image-hosting-view-12.php?id=4564error.JPG

[ZumbuL]

Only an idiot would make an account called admin. And only an idiot would not password their SQL, and their Navicat. And only an idiot will leave an account with admin user, and blank password. If you are in any of those categories, God Speed!

[giorgarakis]

how we know that  it is not a virus.how i am sure?

[W1shM4ster]

how we know that  it is not a virus.how i am sure?

 

Because the share was posted from a global moderator

which i highly doubt he would post anything "infected".

Besides if you are not even bothered checking what this

does don't reply at all because from your replies it is prety

obvious that you are trying to spam.

 

PS:I believe that the 45% of the servers are from "lame" teenagers

that use preconfigured packs.They use a database with user and pass "root".

Isn't there a way to hack their database from just adding their ip in the configs and

enter their database? :)? (I'm not sure what i am saying makes sense but i have seen

friends of mine setting up a database i don't really bother with l2 developing... and as

i tried i saw at the config files that there was options and ips where you connect to your

database... learn their user and database info and get their ip and i believe that you

are going to find a way to hack them :) Be creative :D)

 

Reply if this makes any sense at all... i'm curius to find out :)

[embass]

Jesus wtf?! This is NOT an exploit. It's just a program that tries as many possible variables of a username/password.

 

Three things that sql servers check for

Username

Password

Host that's logging in (whitelist)

 

If your username/password are incorrect AND if you are not comming from the ip specified in the host it will reject your connection.

 

Even if somehow magically the admin is a fucking idiot and has username root and password fuckmeImdumb there is a high chance he will have allowed ip with 127.0.0.1 which means NOONE but him from localhost can connect to mysql. If you do have all of those opened to public then you deserve to be shot on sight.

 

But lets say he does have % on host origin and username root. In case his password is consisted of something like this 34%V#4t3gc3$G34t the bruteforce will NEVER figure it out. Well, maybe in a couple of years...

[Hax0r]

But lets say he does have % on host origin and username root. In case his password is consisted of something like this 34%V#4t3gc3$G34t the bruteforce will NEVER figure it out. Well, maybe in a couple of years...

Hahah! Sad but true!

 

The majority of l2j servers are set to "%" and not to localhost(naabs adminz).

[Clubber]

Ech.... dont work for me...

[ClinT~]

Ech.... dont work for me...

 

I think u need -1 karma, this is the second post that u make like that.

 

:s !

 

BtW XxRxX Great Sharing !! :)

[Thelasthero]

pfff don't work for me i press scan but it doesn't find anything

[gkarmas]

nice share. it works :)

[pvlestat]

work... i test in database my friend...

 

[Atze1990]

thx for the bruter but i think this other programm is useless. doesnt even show me my mysql connection if i try to check myself.

[WishMakeR]

LawL i dont understand.."(i see it from another acc)" xD

[johnnovi]

Oh yes I forgot that you can change localhost to an IP and connect to it Smiley

Thanks hax0r ;]

 

I'am going to find a guide for it, if I do I will post it somewhere =]

 

Google Ftw Wink

 

SQLPing right? Or should I search for teh bruter hax0r gave? Cheesy

 

I downloaded both but I've done more things with Bruter I think but no passwordlist and userlist -.-

 

Have fun Cheesy Let the hack be with us Cheesy