How to Deface Websites XSS and SQL 2022 Methods
How to Deface Websites XSS and SQL 2022 Methods

How to Deface Websites XSS and SQL 2022 Methods

Posted on

Cara Deface Metode XSS – Deface is a hacking trick by changing the appearance of a website or changing or deleting website content.

There are many methods that can be used to deface websites, such as the XSS method.

Also Read: How To Deface The Web With Tinymcpuk Mediatech

For those of you who don’t know what XSS is?

XSS is short for the term cross site scripting and is one of the code injection attacks.

Usually XSS is done by attacking by entering HTML code or other script code into a target site.

Then how to deface the website with the XSS method?

How to Deface the XSS Method on the Website

How to Deface the XSS Method on the Website
How to Deface the XSS Method on the Website

Take it easy because this time I will discuss how to deface a website using the XSS method easily.

Also read: How to Deface Via Android Applications Without ROOT with SQLI

If you are curious about how to do a Deface using the XSS method, then you can refer to this article so that you understand how.

That way, you can find out more about defacement, especially with the XSS method.

Below is how to deface a website using the XSS method in a very simple way.

1. Deface Website with XSS Method

How to Deface the XSS Method on the Website
How to Deface the XSS Method on the Website

First of all, you need to find a target that has XSS weaknesses first by entering dork in the Google search engine as below:

Inurl:”/showcatrows.php?CategoryID=”

Then select the target website that you want to deface with the XSS/ method

If so, then you can directly execute the target website and enter the exploit as below:

>Hacked+By+r1c3-4>< / marquee>

Later the website becomes a url like this:

namawebsite>Hacked+By+r1c2-4

< / marquee>

That way, the website can be hacked with HTML tags.

Deface websites with the XSS method can not only change the appearance of the website, but can also search for the data in it.

2 Deface Website Dengan SQL Injection

The way to deface a website that is no less effective than the XSS method is the SQL Injection method.

To do this method, you first need to find the vulnerable site with SQL Injection first with the dork below:

Inurl:? Index.php id =

Inurl:? admin.php id =

Inurl:? pages.php id =

Inurl:? pages.php id =

You copy and paste one of these scripts into Google via a browser application on your computer or laptop.

Then, you open the site you want to deface and add a sign (‘) at the end of the website URL link, for example target.com/index.php?id=1.

Later you will find an error “you have error on MYSQL” which indicates that the website is vulnerable to SQL.

Then, you can find the number of columns like this:

Target.com/index.php?id=1order by 10 (eror)

Target.com/index.php?id=1order by 9 (eror)

Target.com/index.php?id=1order by 8 (eror)

Target.com/index.php?id=1order by 7 (eror)

Then, you have to find the database version and find the database name.

Next, you just find the names of all the tables, look for the column names and find the password from user_name.

That way, access to the website has been obtained.

Well, that’s him how to deface a website using the XSS method and also with SQL Injection.

However, you should not use the above method to deface other people’s websites because it can harm the website owner.

Also Read: How to Deface a Website With Exploit Joomla JCE Extension

You can use the above method for knowledge, especially about website defacement. Thank you

Read :   3 Recommendations for the Latest Anime Movies in 2022, Comes with Exciting and Highly Anticipated Stories
Gravatar Image
I am a person who likes to write and make information related to fruits, because I like and have a mango garden.