Finding a Vulnerable Site









Go to Google homepage and search for inurl: php?id=
You will probably get thousands of results.
Now open any page and add an apostrophe (‘) to the end of the url.
Example, if the url was
It should be now id=34’
If you get a SQL syntax error, then this website can be vulnerable to SQL injection.
Now you can use Havij on this URL