EvilZone
Programming and Scripting => Projects and Discussion => Topic started by: Zman0x0 on February 03, 2016, 05:49:53 AM
-
Hello guys and girls i have been codeing in python for non-hacking purposes so far. I'm wondering what I can improve on in this is code that I have for this Bruteforce.
Any ideas and suggestion will be helpful.
http://pastebin.com/pBzva8DU (http://pastebin.com/pBzva8DU)
-
Hello guys and girls i have been codeing in python for non-hacking purposes so far. I'm wondering what I can improve on in this is code that I have for this Bruteforce.
Any ideas and suggestion will be helpful.
http://pastebin.com/pBzva8DU (http://pastebin.com/pBzva8DU)
Add multithreading ,this will be slow as shit.
-
Also OP, this wouldn't work with gmail AFAIK. Account you try to access needs to have "less secure apps" -option enabled in google settings and most likely very few people have it enabled. To login/trying login without "less secure apps" -option, SASL XOAuth2 (https://developers.google.com/gmail/oauth_overview) needs to be used.
-
Well, the biggest problem would be that the servers will block you after too many failed authentication attempts...
-
Well this work as fast or at all. I did a little bit of looking around. Im going to be putting this one away and starting fresh. Ill take y'alls comments and add what y'all said into count.
-
Well, the biggest problem would be that the servers will block you after too many failed authentication attempts...
No shortage of IP addresses ;)
-
No shortage of IP addresses ;)
I doubt that they do not count failed login attempts across servers.. Otherwise bruteforcing would be too easy/possible.
-
Most email providers won't just restrict the IP, but lock out the account, gmail included.
To unlock it they require you to reset the password based on your settings for either an alternate email, security questions, phone verification, etc.
Furthermore services like gmail will email yourself and other associated accounts if someone does get in.
Bruteforcing email addresses are like so 1990s
-
Python2 fucktard, everything hardcoded. if i dare....
-
With this kind of code.. you will get ban soon.. or at least you IP.. bruteforcing password server site is stupid..
there are better ways you can do it..
bye N
-
With this kind of code.. you will get ban soon.. or at least you IP.. bruteforcing password server site is stupid..
there are better ways you can do it..
Yes @neoxquick, i am gonna sit here and hope you come online before my girlfriend takes me for valentine and you explain other ways....?
-
Before starting to think about hacking something like gmail you have to know your limitations. Bruteforcing or attacking server side login system via bruteforce by its known to be stupid idea.. Why? Since everyone since year 1990 knows that site's block/ban ip's and accounts on which more then 5 wrong attempts have been made. So you ask me how? One way is by spreading keyloger on user computer. But of course here you will face with a problem of proper distribution or malware detection.
There are alwasy ways to bypass improper login system without actually need of using correct password.... like with SQL injection, XSS,, and so.. on..
Bruteforcing now days is more or less done on client side attack.... not server side. That is the reason why i think your source code is of no use...
bye N