dedishot
09-15-2017, 01:11 AM
Hey Everyone, Today I'm Making An Awesome Combo-Making Tutorial!
Necessary Tools
Kali Linux (https://www.kali.org/)
Highly Recommended for hacking and cracking. If you don't already have a Kali VM, I've provided a download link.
v3n0m (https://github.com/v3n0m-Scanner/V3n0M-Scanner)
Awesome Dork scanning tool. I've provided the link to the Github page and a setup tutorial.
v3n0m tutorial (https://www.youtube.com/watch?v=QiMXP2XwQ64)
sqlmap (https://github.com/sqlmapproject/sqlmap)
Usually comes preinstalled on Kali Linux, however I've provided a Github link.
Calix's Dorker4
This is a windows program, it's optional but HIGHLY recommended. I bought Dork Maker 3 a while ago when I just joined Nulled and I was extremely happy with the combos I got, now the upgraded version is out. I sell Dorker4, so if you're interested and you want HQ Dorks, PM me =)
Scanning Tutorial
Firstly, you need to have dorks, and if you want HQ combolists, you need HQ dorks, which you can get anytime using Dorker4.
Once you have your Dorks you need to get those over to Kali Linux.
Now you have to setup v3n0m, hopefully you downloaded all the prerequisites and you can setup v3n0m. To setup v3n0m you have to first open a terminal window and cd into the V3n0m-Scanner folder. Now enter these commands:
python3.5 setup.py build
###WAIT UNTIL IT SAYS ITS FINISHED###
python3.5 setup.py install
Assuming you set everything up correctly you need to open the Kali File Manager and go to the V3n0m-Scanner/src/statics folder.
In there you will see a text document called d0rks.txt you need to open that file and paste in your dorks. Don't use the included dorks, they're not that great.
After you have pasted your dorks in now you have to open a terminal window and you have to cd into V3n0m-Scanner/src you want to now start the scanner. Use the command:
python3.5 v3n0m.py
Now you should be ready to use v3n0m. You should see a menu. Press 1 on your keyboard and then enter then enter once more, then I usually type 0 for max efficiency but, its up to you how many dorks you wish to use. Then for threads I max out at 500, for max efficiency. Then type 20 and enter. Then watch v3n0m scan. v3n0m will scan and then eventually it will say its finished, you want to choose 1, SQLi Testing, this will print injectable sites, which is exactly what we need.
Dumping Tutorial
Now that you have found a site from v3n0m that you want to dump you want to use sqlmap. Here is an sqlmap tutorial. YouTube
Once you have dumped your list you may noticed that sqlmap saved it as a csv and instead of username:password it saved as username,password. To fix this I go to This Site I divide the list using the delimiter , and then put the list back together with the delimiter :
CONGRATULATIONS ON CREATING YOUR FIRST HQ COMBOLIST!
Necessary Tools
Kali Linux (https://www.kali.org/)
Highly Recommended for hacking and cracking. If you don't already have a Kali VM, I've provided a download link.
v3n0m (https://github.com/v3n0m-Scanner/V3n0M-Scanner)
Awesome Dork scanning tool. I've provided the link to the Github page and a setup tutorial.
v3n0m tutorial (https://www.youtube.com/watch?v=QiMXP2XwQ64)
sqlmap (https://github.com/sqlmapproject/sqlmap)
Usually comes preinstalled on Kali Linux, however I've provided a Github link.
Calix's Dorker4
This is a windows program, it's optional but HIGHLY recommended. I bought Dork Maker 3 a while ago when I just joined Nulled and I was extremely happy with the combos I got, now the upgraded version is out. I sell Dorker4, so if you're interested and you want HQ Dorks, PM me =)
Scanning Tutorial
Firstly, you need to have dorks, and if you want HQ combolists, you need HQ dorks, which you can get anytime using Dorker4.
Once you have your Dorks you need to get those over to Kali Linux.
Now you have to setup v3n0m, hopefully you downloaded all the prerequisites and you can setup v3n0m. To setup v3n0m you have to first open a terminal window and cd into the V3n0m-Scanner folder. Now enter these commands:
python3.5 setup.py build
###WAIT UNTIL IT SAYS ITS FINISHED###
python3.5 setup.py install
Assuming you set everything up correctly you need to open the Kali File Manager and go to the V3n0m-Scanner/src/statics folder.
In there you will see a text document called d0rks.txt you need to open that file and paste in your dorks. Don't use the included dorks, they're not that great.
After you have pasted your dorks in now you have to open a terminal window and you have to cd into V3n0m-Scanner/src you want to now start the scanner. Use the command:
python3.5 v3n0m.py
Now you should be ready to use v3n0m. You should see a menu. Press 1 on your keyboard and then enter then enter once more, then I usually type 0 for max efficiency but, its up to you how many dorks you wish to use. Then for threads I max out at 500, for max efficiency. Then type 20 and enter. Then watch v3n0m scan. v3n0m will scan and then eventually it will say its finished, you want to choose 1, SQLi Testing, this will print injectable sites, which is exactly what we need.
Dumping Tutorial
Now that you have found a site from v3n0m that you want to dump you want to use sqlmap. Here is an sqlmap tutorial. YouTube
Once you have dumped your list you may noticed that sqlmap saved it as a csv and instead of username:password it saved as username,password. To fix this I go to This Site I divide the list using the delimiter , and then put the list back together with the delimiter :
CONGRATULATIONS ON CREATING YOUR FIRST HQ COMBOLIST!