Anti Sql Injection Protection

[john_d]

Here is some Easy Ways To protecting Your website .. from Different Type of Security Holes.

A. SQL INJECTIONS

How to Use.
1. download the file , put in the same folder as the php file
2. Below are the how to use.. Put these on the top of the page just after <?

require_once "sql_inject.php";
$bDestroy_session = TRUE;
$url_redirect = 'index.php';
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect);

3. THis is the Sql Injection Checker

$sqlinject->test($your_sql_data);

Explaination:
require_once "sql_inject.php"; < calls the file protector file
$bDestroy_session = TRUE; < this stops any session they on
$url_redirect = 'index.php'; < if they do a sql injection they are moved to this page
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect); < this to start the sql injection protection ( also ./log_file_sql.log is the file wer all the attempt are put in.. for u to ban later on ... hehehehhe)

$sql_inject->test($your_sql_data); < this is the implementation of the anti sql injector. where $your_sql_data is the mssql query string.

Thats my best explaination.. im too lazy now.. if u made it work.. try to explain to the others.

Dont pm me about this please..

Additional Info:

<?

require_once "sql_inject.php"; 
$bDestroy_session = TRUE; 
$url_redirect = 'index.php'; 
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect); 

// some line here
// more lines here.. blah blah blah

//below is a little trick to do a post variable on this page.. as u can see the post variable [B]login[/B]  is already been injected with a drop table on memb_info and clevel = 350
$_POST['login'] = "%%'; drop table memb_info ; update character set clevel = 350ere name = '%%"; 
// this type of sql injection is trying to execute more SQL data

// then like any normal page.. u read the $login variable (we can even try to stripslashes it)
$login = stripslashes($_POST['login']);

//your sql query string 
[COLOR=DarkRed]$query[/COLOR] = "Select Name From Character where name = '$login'";
//normally you would check  $something for sql injection, but in this case, due to the new anti sql injection the entire query string can be analysed..

// to analyse query string we do this
$sqlinject->test([COLOR=DarkRed]$query[/COLOR]); 

//now that we checked it.. we can query it
$result = mssql_query([COLOR=DarkRed]$query[/COLOR]);

// more lines here.. blah blaah

?>

--- above would make a new file in ur folder called. log_file_sql.log make sure u make ur folder writable
--- now i test the sample php file above.. it works like a charm.
UPDATE FOR SOME TYPOS!

B. STOPING OFF DOMAIN TRANSACTIONS

- one of the bigger holes in any website is forms.. cause when u make them.. it doesnt really mean they that way always.. people can just download the form.. edit the action, and send anything they want to your server. This is widely used by the sql injectors.

How to Stop. The Idea is On the Other side of ur Forms... U will have Referral Check. Referal Means the last page that was used before the current one.

Put this on ur a File Ur targeting as an Action on a form.

if (stristr($_SERVER['HTTP_REFERER'], 'http://www.supamu.info') === FALSE ) {
    die ( 'Hacking attempt. Your are such a Nooby!.. ' ); 
**

-- above is checking if the last referral was from the

You must be registered to see links

domain. if not it stop the entire page from loading any further. wat u can also do is add a logging system to this, which ill do in the next tutorial.

C. Adding a Simple Auto File Logger To your Website

This is to catch those hacking attempts on a FILE! The anti Sql Injector already has it's Own Logging system.. but this is for those other stuff u want to log. like for example. The Referral Check.

here is the main function for the logger (u need to put this somewer on ur php file a global insert file)

function filelogs($type, $info, $muser) {
$agent = $_SERVER['HTTP_USER_AGENT']; 
    $uri = $_SERVER['REQUEST_URI']; 
    $ip = $_SERVER['REMOTE_ADDR']; 
    $ref = $_SERVER['HTTP_REFERER']; 
    $dtime = date('r'); 
     
    if($ref == ""){ 
        $ref = "None"; 
    ** 
    if($user == ""){ 
        $user = "None"; 
    ** 
    $location = "/";
    $type = $location . $type . ".txt";
    $entry_line = "$dtime - IP: $ip | Agent: $agent  | URL: $uri | Referrer: $ref | Username: $muser | Query : $info \n"; 
    $fp = fopen("$type", "a"); 
    fputs($fp, $entry_line); 
    fclose($fp); 
**

How to Use is like Simple Like this

   filelogs('filename', $additionalinfo, $theusername);

filename = just to separate from one kind of logs to another
$additionalinfo = this is some info u wanna include in the logs like queries or the current referrer's address
$theusername = if u have cookies.. u can put them here.. so ull know who to ban for this acts.

A sample script.. this is combined with the the Referral Filter on B

if (stristr($_SERVER['HTTP_REFERER'], 'http://www.supamu.info') === FALSE ) {
   
   filelogs('account-creat', $_SERVER['HTTP_REFERER'], $_POST['Member_ID']);
   die ( 'Hacking attempt. Your are such a Nooby!.. ' ); 
**

Ill do more later.. Just ask here if u wanna me to do any kind of protection.

 

[john_d]

Ow.. if u are asking wat it actually stops..

it stops:
1. More sql query to be runned.
2. always true expression
3. Try to modify it's right injection

It doesnt stop Update DROP or any illegal words but ... it then again it doesnt need to stop those cause u already stoping it from making a second query.

 

[vantherX]

Hello!
I have a question about your sql injection
about this:

2. Below are the how to use.. Put these on the top of the page just after <?

PHP Code:

Wat is the page that i have to put this file i mean the php code?
it is in config.php?

plsss reply

 

[Hackzone]

Is this the basic foundation of MuToolz or something different?

 

[janiks]

nice one.... hope hackers cant get into my php...

 

[Negata]

Stuck. If you come up with any further help try to combine it with this.

 

[john_d]

this is totaly difference.. the public release of Mutoolz doesnt have this..

here is a sample of a php file ...

<?

require_once "sql_inject.php";
$bDestroy_session = TRUE;
$url_redirect = 'index.php';
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect);

// some line here
// more lines here.. blah blah blah

//your sql query string
$query = "Select Name From Character where name = '$something'";
//normally you would check $something for sql injection, but in this case, due to the new anti sql injection the entire query string can be analysed..

// to analyse query string we do this
$sqlinject->test($query);

//now that we checked it.. we can query it
$result = mssql_query($query);

// more lines here.. blah blaah

?>

 

[bet0x]

Nice job john_d

 

[john_d]

uR ALive.. bahahahhaa.. get me on yahoo dude.. lolz

 

[navossoc]

I have one problem... look this

Fatal error: Call to a member function on a non-object in c:\apache\www\teste.php on line 18

 

[Barvaz88]

Its only for PHP websites, right? if I run ASP website so I dont need this?

 

[vantherX]

Hello guys nice job but i got this problem too??

Fatal error: Call to a member function on a non-object in c:\appserv\www\includes\config.php on line 26

can u help me guys.. plsss..thankss...

 

[john_d]

try reading the sample again.. i fixed the it ...

 

[bet0x]

john_d, im a little seek , the next week i be online

 

[foxcap]

Asp

post here for website ASP!!!!

 

[koaru*]

i just stick the file in the folder?
and in ALL of the pages i place require_once "sql_inject.php";
$bDestroy_session = TRUE;
$url_redirect = 'index.php';
$sqlinject = new sql_inject('./log_file_sql.log',$bDestroy_session,$url_redirect) ;

// some line here
// more lines here.. blah blah blah

//your sql query string
$query = "Select Name From Character where name = '$something'";
//normally you would check $something for sql injection, but in this case, due to the new anti sql injection the entire query string can be analysed..

// to analyse query string we do this
$sql_inject->test($query);

//now that we checked it.. we can query it
$result = mssql_query($query);

// more lines here.. blah blaah
----------------------------------------------------------------------
right after after <?

 

[john_d]

waaaaaaaaaaaat.?

 

[koaru*]

damn, so im completly wrong?

 

[hisham1111]

only for php like (e.g : MU Global Scripts site)

 

[john_d]

any php script u have running this can be use to protect it.

koaru* .. upload a sample page u updated. .let me see if it is good to go.