How to find Admin Login page Of a website

In this tutorial We will Use a Perl script and Use it to Find the admin page of a website

First:Download HERE It is script You will use to Find the admin page
Second:Download and install Activeperl From their Website,Its free

Procedure:
 After installation Of Active perl ,Extract the Admin Script In C:\perl\bin Folder and Then Goto Start>RUN>Type CMD and hit enter. Type in command Prompt "cd C:\perl\bin"

Now Type "admin.pl"

Now type The Url of website You wish to Find the admin Page of ,And Its done.

Hacking a website with SQL injection

SQL injection:

SQL injection is a technique often used to attack data driven applications. This is done by including portions of SQL statements in an entry field in an attempt to get the website to pass a newly formed rogue SQL command to the database (e.g., dump the database contents to the attacker). SQL injection is a code injection technique that exploits a security vulnerability in an application's software More On Wikipedia.

 Now the point is that we are going to use a tool for Hacking a website By SQL injection Method.

Requirements:

• This Software Here
• A website That is Exploitable.

Lets Begin !!

Now After you have found a vulnerable site Copy the link to the Havij Bar and leave every thing in that software Exactly the same.

Click analyze And after It has finished Click The "Tables" column

And Then Get DBs It will then download the databases from the website, After completion Select The database and then click Tables Tab It will Bring some Tables On the database server.

Select Any Table Involving Name like 'Users' 'Admin' etc and click Get Columns Tab, After the columns are loaded explore the and Find the username Or User column and password column.And click "Get data" You will get the data of columns you selected So There you are You have got the username and password of accounts ,Find The Id Number "1" Which is usually the Id Of the Admin ,Use the username and Password to go to Admin Panel of website.

 Thats It !!! Now you Can deface The website Using this Method .(Here)

And You can find the Admin Login Page Of a Website (Here)

How to find out if a website is vulnerable to SQL Injection?

As we had discussed earlier about the SQL injection, it  is a code injection technique that exploits a security vulnerability occurring in the database layer of an application. We discussed there about the login screen bypassing, that might have been beneficial to the so called script kiddies, who approach hacking just through available scripts and codes on the web, without particular interest in the field. Anyways, you came to know, who exactly are the script kiddies.
We learnt the basics about what is SQL Injection but how can you find out if a website you are testing on, is vulnerable to SQL injection or not? Fine!! Some might be knowing, but for those who don’t know, I am going to quantify the whole process.
1. Use google dorks to find out the vulnerable sites, putting the following queries on google search engine:

inurl:index.php?id=
inurl:trainers.php?id=
inurl:buy.php?category=
inurl:article.php?ID=

Now you get a list displayed on the result page. Select one by one. Suppose we select the first result.Click on it.
2. Put  ‘ (single quote) at the extreme end of the link displayed on the address bar and press ‘enter’.Or after The "Equal to(=)" Sign
3. Now if a page opens up saying there is an SQL Error, that means the website is 110% vulnerable to SQL Injection.