0o0michael0o0 Posted September 19, 2015 Share Posted September 19, 2015 i wonder is there any method to make sql injection while cloudflare firewall protecting the server !! ? how to bypass it ? thnx in advance. Quote Link to comment Share on other sites More sharing options...
digininja Posted September 19, 2015 Share Posted September 19, 2015 Is the site vulnerable to sqli? Why are you asking? Quote Link to comment Share on other sites More sharing options...
0o0michael0o0 Posted September 19, 2015 Author Share Posted September 19, 2015 i`m asking couse i had that problem before and i wonder is there a method to make the sql injection while the cloudflare is on Quote Link to comment Share on other sites More sharing options...
digininja Posted September 19, 2015 Share Posted September 19, 2015 It would all depend on the situation, the vulnerability and how you would exploit it. Quote Link to comment Share on other sites More sharing options...
digip Posted September 20, 2015 Share Posted September 20, 2015 If you can de-cloak the severs IP, or find it through other means such as whois archives or netcraft history, then you can point your hosts file at the real IP and then run your attacks. Doesn't mean the exploits work, which would still require a vulnerable version of SQL software and/or accepting unsanitized data input that you can manipulate. One of the quickest checks is replacing www.somesite.com with direct.somesite.com or direct-connect.somesite.com. These often expose the domains real IP, as well as brute forcing sub domains like mail.domain.com, or even ftp.domain.com Quote Link to comment Share on other sites More sharing options...
0o0michael0o0 Posted September 20, 2015 Author Share Posted September 20, 2015 If you can de-cloak the severs IP, or find it through other means such as whois archives or netcraft history, then you can point your hosts file at the real IP and then run your attacks. Doesn't mean the exploits work, which would still require a vulnerable version of SQL software and/or accepting unsanitized data input that you can manipulate. One of the quickest checks is replacing www.somesite.com with direct.somesite.com or direct-connect.somesite.com. These often expose the domains real IP, as well as brute forcing sub domains like mail.domain.com, or even ftp.domain.com thnx digip , actually the site is very well protected and i tried to enumrate the dns with more than methoud but i got a question , if i get the real ip of the server , how can i make the sqlmap or havij for example use the real ip ?? i know that if i get the user of the site , i can do it like that http://127.0.0.0/~/user/etc but what if i did`nt get the user of the site ? how can i inject the site after getting the real ip ? thnx in advance Quote Link to comment Share on other sites More sharing options...
digip Posted September 22, 2015 Share Posted September 22, 2015 I'm not going to help you attack a site on the internet, but pointing to the real server once you have the actual IP is trivial. Rest is on you to do whatever it is you're after and of your own volition. Learning how to defeat cloudflare is not a crime though. Taking out a site behind it, may be. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.