crash.software
Projects
Pull Requests
Issues
Builds
Taipan
Code
Files
Commits
Branches
Tags
Pull Requests
Code Comments
Code Compare
Issues
Builds
Statistics
Child Projects
cra.sh
RESTful API
Projects STRLCPY Taipan Files
🤬
c615e95c
ROOT /
Doc /
Http and Web Form bruteforcing.md
8 lines | ISO-8859-1 | 862 bytes

Http and Web Form bruteforcing

This AddOn allows to execute an HTTP or Web Form authentication bruteforcing. In order to do so it verify the response code (in case of HTTP bruteforcing) or use a custom heuristic in order to identify if the page returned an authenticated content or not (in case of Web Form authentication).

Under the folder Data\AddOnStorage\Web Form Bruteforcer AddOn you will find three XML files (the file format is self explanatory):

  • Combinations.xml contains the combination of user/password to use. This is useful to test for default account
  • Usernames.xml contaions the list of username to bruteforce. It is suggested to not include a long list, since for each username the entire password list is used in order to bruteforce it
  • Passwords.xml contains the password to use in order to bruteforce all usernames
Please wait...
Page is in error, reload to recover