Step 1: First download Havij SQL Injection
Step 2: Run Havij SQL Injection software and copy
and paste vulnerable website link as shown in
figure,
Step 3: Now click in the "Analyze" Button,
Step 4: Then It shows some messages there. Be
alert on it and be show patience for sometime to
find it's vulernable and type of injection and if db
server is mysql and it will find database name.Then
after get it's database is name like xxxx_xxxx
Step 5: Then Move to another operation to find
tables by clicking "tables" as figure shown. Now
click "Get tables" Then wait some time if needed
Step 6: After founded the tables ,you can see there
will be "users" Put mark on it and click in the " get
columns " tab as shown in figure
Step 7: In that Just put mark username and
password and click "Get data"
Finally you got now username and password of the
admin...