Penetration TestingWeb Pentest

How to Hack a Website with Basic HTML Coding

f you have basic HTML and JavaScript knowledge, you may be able to access password-protected websites. This article will give you an easy method to hack simple, less-secure websites of your choice simply through HTML. Use it responsibly.

Note: This basic method works only for websites with extremely low-security barriers. Websites with robust security details will not be susceptible to this kind of simple attack.

Steps

  1. Open the site you want to hack. Provide the wrong username and wrong password combination in its log-in form. (e.g. : Username : me and Password: ‘ or 1=1 –) An error will occur saying wrong username and wrong password. Now be prepared because your experiment starts from here.
  2. Right-click anywhere on that error page =>> go to view source.
  3. View the source code. There you can see the HTML coding with JavaScript.• There you find something like this….<_form action=”…Login….”>• Before this login information copy the URL of the site in which you are. (e.g. :”< _form……….action=http://www.targetwebsite.com/login…….>”)
  4. Delete the JavaScript from the above that validates your information in the server. Do this very carefully.—Your success in hacking the site depends upon how efficiently you delete the javascript code that validates your account information.
  5. Take a close look for “<_input name=”password” type=”password”>”[without quotes] -> replace “<_type=password>” with “<_type=text>”. See there if maximum length of password is less than 11 then increase it to 11 (e.g. : if then write )
  6. Go to file => save as and save it anywhere on your hard disk with ext.html (e.g.: c:chan.html).
  7. Reopen your target web page by double-clicking the ‘chan.html’ file that you saved on your hard disk earlier.• You see some changes on the current page as compared to the original One. Don’t worry
  8. Provide any username [e.g.: hacker] and password [e.g.:’ or 1=1 –] You have successfully cracked the above website and entered it into the account of the List user saved in the server’s database.

Warnings

Do the coding and changes very carefully. Your success to hack the site depends upon this i.e. how efficiently you delete the JavaScripts that validate your account information.

Related Articles

Back to top button