How to hack Web Server


What we will need

  • A target
  • Bing search engine
  • SQL Injection tools
  • PHP Shell, we will use dk shell

Information gathering

We will need to get the IP address of our target and find other websites that share the same IP address.

We will use an online tool to find the target’s IP address and other websites sharing the IP address

IMG 20160813 190914 300x111 - How to hack Web Server

  • Enter the URL in your web browser
  • Enter as the target
  • Click on Check button
  • You will get the following results


IMG 20160813 191231 257x300 - How to hack Web Server



Based on the above results, the IP address of the target is


We also found out that there are 403 domains on the same web server.


Our next step is to scan the other websites for SQL injection vulnerabilities. Note: if we can find a SQL vulnerable on the target, then we would directly exploit it without considering other websites.

Also Read: 40 Powerful Hacking Tools To Become A Powerful Hacker

Enter the URL into your web browser. This will only work with bing so don’t use other search engines such as Google or yahoo

Enter the following search query

IP: .php?id=



  • “IP:” limits the search to all the websites hosted on the web server with IP address
  • “.php?id=” search for URL GET variables used a parameters for SQL statements.

You will get the following results


IMG 20160813 191145 298x300 - How to hack Web Server


As you can see from the above results, all the websites using GET variables as parameters for SQL injection have been listed.


The next logical step would be to scan the listed websites for SQL Injection vulnerabilities. You can do this using Manual SQL injection or using tools listed in this article on SQL Injection.


Uploading the PHP Shell

We will not scan any of the websites listed as this is illegal. Let’s assume that we have managed to log in to one of them. You will have to upload the PHP shell that you downloaded from

  • Open the URL where you uploaded the dk.php file.
  • You will get the following window
  •                                 IMG 20160813 191003 300x120 - How to hack Web Server
  • Clicking the Symlink URL will give you access to the files in the target domain.

Once you have access to the files, you can get login credentials to the database and do whatever you want such as defacement, downloading data such as emails, etc.


This Post is Strictly for EDUCATIONAL PURPOSES. Don’t use it in a bad manner. It can be a punishable offense.

NOTE:- some tricks may not work due to the fixture of bugs of servers.


  1. I see your blog needs some fresh & unique articles. Writing manually is time-consuming, but there is a solution for this.


Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.