3 steps formula for hacking a Website.

What is the First step that a professional hacker takes towards hacking a website.

If you want to get yourself in someone's house no matters how talented or professional you are in your work you will get caught or just will fail in your aims if you will not make proper planning and that's what a professional hacker will do to get in(hack) someone's website like a bro and come out like a ghost.

A proper planning is what we should do before starting to hack a website.And the first step towards making a proper planning is  identifying your prey.

NOTE:Before moving further make sure you have basic knowledge of server,ports and other related terms.

Get to know on which server the website is running.It can be Apache,IIS,Unix or anyone else.
You can use NMAP(it's a free tool,do a Google search) as your first tool as it is one of the favorite tool used by hackers.Just run a scan on the website and it will provide you with almost all the information about the website that is necessary for starting with your plan,like(Server running,services running,ports open and even name of OS on which it is running).
You can also use some good port scanners like Supperscanner.

Now you are ready with information that we will use to hack into a website.

Now for example you get to know that a website is running  on Apache 1.2.3 with Windows2003.running with PHP.

Our second and the most difficult step will be to find a vulnerability for that specific server or language like PHP that we can exploit to get into the website core.Now the problem comes how to find the vulnerability for the specific server.For that you have do a lot of research,get yourself on any of your favorite search engine like Google (my favorite) and search for example:-("vulnerability for Apache 1.2.3")  use quotes as it can provide accurate result for your search.Just don't stop at that, also find the ways to exploit it and once you are done with your work your can start with the last step.


Now we will start with our third and the last step i.e. to cause a  attack on the website but remember hacking is an illegal activity and you can be easily caught so you need to be very careful.You can go through one of my post on "How to survive as a Hacker",don't take it lightly as many out there busted because they were overconfident.\
1:Now you have all the information about your victim site.
2:You have the vulnerability to exploit that can provide you core access.
3:Now the real work starts i.e. now you  have to put all your talent to exploit the vulnerability whether it is for any specific server or port or services and you will get grant access into the server.And from now it depends on what you do next.
Now please don't ask on how to exploit the vulnerability.

Don't forget to rate the article please.