Welcome to HBH! If you have tried to register and didn't get a verification email, please using the following link to resend the verification email.

PHP Bruteforcer

  1. Home
  2. Forum
  3. Programming
  4. PHP Bruteforcer

ghost's Avatar

ghost

0 0

Hey I've been playing around with php lately and now I'm trying to make a brute forcer to dictionary attack this simple login script:

<form action="login.php" method="post">
<h3>Username:</h3>
<input type="text" name="user">
<input type="submit" value="Submit">
</html>

<?php
$user = $_POST['user'];
if ($user==wow)
{
echo "RIGHT!";
}
else
{
echo "WRONG!";
}
?>

I'm almost done coding it (although I plan to make it better and code it to able to brute force a username and password) but I have one question. How would you submit the loop from the wordlist into the form (you couldn't just use $_POST right??)? All I could find on Google was how to prevent brute forcers (captchas, etc). Thanks


Mr_Cheese's Avatar

Mr_Cheese

0 1

have a look in the code bank.

theres a few php brute forcers in there.

very easy and simple to do.


ghost's Avatar

ghost

0 0

Your login code is wrong btw.

markupif ($user==wow) needs to be markupif( $user == "wow" ) (assuming your password is wow).