TBD.my

Full Version: Joomla Password Cracker!
You're currently viewing a stripped down version of our content. View the full version with proper formatting.
Pages: 1 2 3
Version 3:
PHP Code:
<?php

e
("[+] --------------------------------------------------------------------------");
e("[+] Joomla Hash Bruteforcer, Oleh Ahlspiess.");
e("[+] Contoh:");
e("[+] Joomla hash:");
e("[+] eb1ba1ca399c58075540078149d56d7f:lNEz0eTNvrdrxJz9XZXGUiCOW7yf2gIr");
e("[+] --------------------------------------------------------------------------");
e("[+] Senarai Arahan: crack, exit");
e("[+] --------------------------------------------------------------------------");
$avail_cmd = array('crack''quit''exit''logout');
while(
1)
    {
        
fwrite(STDOUT"\nsh-1337# ");
        
$cmd trim(fgets(STDIN));
        if(
in_array($cmd$avail_cmd))
            {
                (
$cmd == 'exit') ? exit('exit') : $cmd();
            }
            else
            {
                
e("-sh: ".$cmd.": Command Not Found");
            }
    }

function 
crack() {
$ver = array('y''n''Y''N');
$op = array('1''2''3''4''5''6''7''8');
    
fwrite(STDOUT"\nHash-# ");
    
$hash trim(fgets(STDIN));
    
e("[+] Option Char:   ");
    
e("[+]       1 = a~z");
    
e("[+]       2 = A~Z");
    
e("[+]       3 = a~z, A~Z");
    
e("[+]       4 = 0~9");
    
e("[+]       5 = a~z, 0~9");
    
e("[+]       6 = A~Z, 0~9");
    
e("[+]       7 = a~z, A~Z, 0~9");
    
e("[+]       8 = Dictionary Atk");
    
fwrite(STDOUT"Option-# ");
    
$opt trim(fgets(STDIN));
    if(
$opt != 8)
        {
            
fwrite(STDOUT"Min-Pass-Length-# ");
            
$minpass trim(fgets(STDIN));
            
fwrite(STDOUT"Max-Pass-Length-# ");
            
$maxpass trim(fgets(STDIN));
        }
        else
        {
            
fwrite(STDOUT"Dictionary-# ");
            
$wordlist trim(fgets(STDIN));
        }
    
fwrite(STDOUT"Verbose(y/n)-# ");
    
$verbose trim(fgets(STDIN));
    
$verbose = (!in_array($verbose$ver)) ? 'n' $verbose;
    
$opt = (!in_array($opt$op)) ? '1' $opt;

$a explode(':'$hash);
$md5 $a[0];
$salt $a[1];
(
$opt == 8) ? dictatk($md5$salt$wordlist$verbose) : mulakan_operasi($md5$salt$opt$minpass$maxpass$verbose);
}
function 
dictatk($md5$salt$wordlist$verbose) {
$buka = @file_get_contents($wordlist) or die("Wordlist Not Found");
$pecah explode("\n"$buka);
foreach(
$pecah as $word)
    {
        
$word str_replace(array("\n""\r"), ""$word);
        (
$verbose == 'n') ? cracking($md5$salt$word) : cracking_v($md5$salt$word);
    }
}
function 
mulakan_operasi($md5$salt$opt 1$minpass 4$maxpass 5$verbose 'n') {
switch(
$opt)
    {
        case 
1:
            
$word "abcdefghijklmnopqrstuvwxyz";
            break;
        case 
2:
            
$word "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
            break;
        case 
3:
            
$word "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
            break;
        case 
4:
            
$word "0123456789";
            break;
        case 
5:
            
$word "abcdefghijklmnopqrstuvwxyz0123456789";
            break;
        case 
6:
            
$word "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
            break;
        case 
7:
            
$word "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
            break;
    }
brute($md5$salt$word$minpass$maxpass$verbose);
}
function 
brute($md5$salt$word$minpass$maxpass$verbose) {
while(
1)
    {
        
$genword str_shuffle($word);
        
$genword substr($genword0rand($minpass$maxpass));
        (
$verbose == 'n') ? cracking($md5$salt$genword) : cracking_v($md5$salt$genword);
    }
}
function 
cracking_v($md5$salt$genword) {
    
$genhash md5($genword.$salt);
    
e("[+] Testing ".$genword."");
    if(
$genhash == $md5)
        {
            
e("[+] --------------------------------------------------------------------------");
            
e("[+] Found Password: ".$genword."");
            
e("[+] --------------------------------------------------------------------------");
            exit(
"done");
        }
}
function 
cracking($md5$salt$genword) {
    
$genhash md5($genword.$salt);
    if(
$genhash == $md5)
        {
            
e("[+] --------------------------------------------------------------------------");
            
e("[+] Found Password: ".$genword."");
            
e("[+] --------------------------------------------------------------------------");
            exit(
"done");
        }
}
function 
e($z) {
    print 
$z."\n";
}
function 
quit() {
    exit(
'quit');
}
function 
logout() {
    exit(
'logout');
}

?>

Version 2:
PHP Code:
<?php

print "[+] --------------------------------------------------------------------------\n";
print 
"[+] Joomla Hash Bruteforcer, Oleh Ahlspiess.\n";
print 
"[+] Contoh:\n";
print 
"[+] Joomla hash:\n";
print 
"[+] eb1ba1ca399c58075540078149d56d7f:lNEz0eTNvrdrxJz9XZXGUiCOW7yf2gIr\n";
print 
"[+] --------------------------------------------------------------------------\n";
print 
"[+] Senarai Arahan: crack, exit\n";
print 
"[+] --------------------------------------------------------------------------\n";
$avail_cmd = array('crack''help''quit''exit''logout');
while(
1)
    {
        
fwrite(STDOUT"\nsh-1337# ");
        
$cmd trim(fgets(STDIN));
        if(
in_array($cmd$avail_cmd))
            {
                if(
$cmd == 'exit') { die('exit'); }
                
$cmd();
            }
            else
            {
                print 
"-sh: ".$cmd.": Command Not Found\n";
            }
    }

function 
crack() {
$ver = array('y''n''Y''N');
$op = array('1''2''3''4''5''6''7');
    
fwrite(STDOUT"\nHash-# ");
    
$hash trim(fgets(STDIN));
    print 
"[+] Option Char:   \n";
    print 
"[+]       1 = a~z\n";
    print 
"[+]       2 = A~Z\n";
    print 
"[+]       3 = a~z, A~Z\n";
    print 
"[+]       4 = 0~9\n";
    print 
"[+]       5 = a~z, 0~9\n";
    print 
"[+]       6 = A~Z, 0~9\n";
    print 
"[+]       7 = a~z, A~Z, 0~9\n";
    
fwrite(STDOUT"Option-# ");
    
$opt trim(fgets(STDIN));
    
fwrite(STDOUT"Min-Pass-Length-# ");
    
$minpass trim(fgets(STDIN));
    
fwrite(STDOUT"Max-Pass-Length-# ");
    
$maxpass trim(fgets(STDIN));
    
fwrite(STDOUT"Verbose(y/n)-# ");
    
$verbose trim(fgets(STDIN));
    if(!
in_array($verbose$ver))
        {
            
$verbose 'n';
        }
        else
        {
            
$verbose $verbose;
        }
    if(!
in_array($opt$op))
        {
            
$opt '1';
        }
        else
        {
            
$opt $opt;
        }

$a explode(':'$hash);
$md5 $a[0];
$salt $a[1];
mulakan_operasi($md5$salt$opt$minpass$maxpass$verbose);
}

function 
mulakan_operasi($md5$salt$opt 1$minpass 4$maxpass 5$verbose 'n') {
switch(
$opt)
    {
        case 
1:
            
$word "abcdefghijklmnopqrstuvwxyz";
            break;
        case 
2:
            
$word "ABCDEFGHIJKLMNOPQRSTUVWXYZ";
            break;
        case 
3:
            
$word "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
            break;
        case 
4:
            
$word "0123456789";
            break;
        case 
5:
            
$word "abcdefghijklmnopqrstuvwxyz0123456789";
            break;
        case 
6:
            
$word "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
            break;
        case 
7:
            
$word "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
            break;
    }
while(
1)
    {
        
$genword str_shuffle($word);
        
$genword substr($genword0rand($minpass$maxpass));
        (
$verbose == 'n') ? cracking($md5$salt$genword) : cracking_v($md5$salt$genword);
    }
}

function 
cracking_v($md5$salt$genword) {
    
$genhash md5($genword.$salt);
    print 
"[+] Testing ".$genword."\n";
    if(
$genhash == $md5)
        {
            print 
"[+] --------------------------------------------------------------------------\n";
            print 
"[+] Found Password: ".$genword."\n";
            print 
"[+] --------------------------------------------------------------------------\n";
            exit;
        }
}
function 
cracking($md5$salt$genword) {
    
$genhash md5($genword.$salt);
    if(
$genhash == $md5)
        {
            print 
"[+] --------------------------------------------------------------------------\n";
            print 
"[+] Found Password: ".$genword."\n";
            print 
"[+] --------------------------------------------------------------------------\n";
            exit;
        }
}
function 
__($z) {
    print 
$z."\n";
}

function 
quit() {
    exit(
'quit');
}
function 
logout() {
    exit(
'logout');
}

?>

Version 1:
PHP Code:
<?php

print "[+] --------------------------------------------------------------------------\n";
print 
"[+] Joomla Password Cracker, created by Ahlspiess.\n";
print 
"[+] Contoh:\n";
print 
"[+] Joomla password yang diencrypt:\n";
print 
"[+]          eb1ba1ca399c58075540078149d56d7f:lNEz0eTNvrdrxJz9XZXGUiCOW7yf2gIr\n";
print 
"[+]\n";
print 
"[+] Md5 hash: eb1ba1ca399c58075540078149d56d7f\n";
print 
"[+] Salt: lNEz0eTNvrdrxJz9XZXGUiCOW7yf2gIr\n";
print 
"[+] --------------------------------------------------------------------------\n";
print 
"[+] --------------------------------------------------------------------------\n";

fwrite(STDOUT"[+] Md5 Hash: ");
$hash trim(fgets(STDIN));
fwrite(STDOUT"[+] Salt: ");
$salt trim(fgets(STDIN));
fwrite(STDOUT"[+] Wordlist: ");
$wordlist trim(fgets(STDIN));
print 
"[+] --------------------------------------------------------------------------\n";

if(empty(
$hash) or empty($salt) or empty($wordlist))
    {
        print 
"[+] Semak balik, ada yang tertinggal tu\n";
        print 
"[+] --------------------------------------------------------------------------\n";
        exit;
    }
if(!@
file_exists($wordlist))
    {
        print 
"[+] File wordlist tidak dijumpai.\n";
        print 
"[+] --------------------------------------------------------------------------\n";
        exit;
    }

$buka = @file_get_contents($wordlist);
$pecah explode("\n"$buka);
$kira count($pecah);
print 
"[+] ".$kira." Didalam file wordlist!\n";
print 
"[+] --------------------------------------------------------------------------\n";
foreach(
$pecah as $wordz)
    {
        
$wordz str_replace(array("\n""\r"), ""$wordz);
        
BuatHash($hash$salt$wordz);
    }

function 
BuatHash($target$salt$word) {
$genhash md5($word.$salt);
if(
$genhash == $target)
    {
        print 
"[+] --------------------------------------------------------------------------\n";
        print 
"[+] Found Password: ".$word."\n";
        print 
"[+] --------------------------------------------------------------------------\n";
        exit;
    }
    else
    {
        print 
"[+] Testing: ".$word.":".$genhash."\n";
    }
}
?>

Ok go
maaf... masokis tak fhm la...
apa nak tulis dalm txt tu....
md5 tu pass yang encode ke?
txt mane


./
(08-03-2010, 10:41 AM)Ahlspiess Wrote: [ -> ]txt mane

Code:
[+] Wordlist: test.txt
[+] --------------------------------------------------------------------------
[+] 5 Didalam file wordlist!
dlm tu test.txt tu ada senarai word2 utk di bruteforce..

bole download dari sini
http://www.theargon.com/achilles/wordlists/
mcmna nk run benda ni Ashls.? :huh:
bosan harini so update ke version 2 GayFace

Version 2:
- tambah feature auto generate word utk dibruteforce.
- buang dictionary attack..
- tambah verbose mode/option GayFace
cm na nk run nih ahls?
start >cmd >cd c:\jomla

cm 2 ker?

tapi kalau tgok coding dia dalam bentuk php....
sory banyak tanya...
(05-06-2010, 08:13 AM)Ahlspiess Wrote: [ -> ]bosan harini so update ke version 2 GayFace

Version 2:
- tambah feature auto generate word utk dibruteforce.
- buang dictionary attack..
- tambah verbose mode/option GayFace
erk kenapa dibuangnya dictionary attack?
adakah lbh laju dibruteforce berbanding dictionary attack
kenapa x adakn dua2 dn dijadikan option untuk user memilih?

(05-06-2010, 09:35 AM)juassehn9 Wrote: [ -> ]cm na nk run nih ahls?
start >cmd >cd c:\jomla

cm 2 ker?

tapi kalau tgok coding dia dalam bentuk php....
sory banyak tanya...
http://www.php-cli.com/php-cli-tutorial.shtml
saja nak tambah..
kalau yg guna linux tu..
lagi mudah.. cuma perlu ada php5 cli je
kalau yang guna oshirix.. dah ada dlm tu.
(05-06-2010, 10:27 AM)johnburn Wrote: [ -> ]
(05-06-2010, 08:13 AM)Ahlspiess Wrote: [ -> ]bosan harini so update ke version 2 GayFace

Version 2:
- tambah feature auto generate word utk dibruteforce.
- buang dictionary attack..
- tambah verbose mode/option GayFace
erk kenapa dibuangnya dictionary attack?
adakah lbh laju dibruteforce berbanding dictionary attack
kenapa x adakn dua2 dn dijadikan option untuk user memilih?

(05-06-2010, 09:35 AM)juassehn9 Wrote: [ -> ]cm na nk run nih ahls?
start >cmd >cd c:\jomla

cm 2 ker?

tapi kalau tgok coding dia dalam bentuk php....
sory banyak tanya...
http://www.php-cli.com/php-cli-tutorial.shtml

ok tq bro john....baru aku paham....
Version 3:
- tambah dictionary attack - johnburn mintak GayFace

Cara2 untuk guna bende pelik ni

untuk linux
yum/apt-get install php-cli
simpan source code bende ni, sbg jbf.php
kemudian
php jbf.php

untuk windoz
http://my2.php.net/get/php-5.2.13-win32-...m/a/mirror pilih je mana2 yg berkenan dihati
simpan source code bende ni, sbg jbf.php
kemudian
php C:\jbf.php
gali lagi..

sori ye..macam mana nak run benda ni.? saya tak faham la. ape yang johnburn kasik dekat juasseh9.. macam mana nak run ni.? n script ni berfungsi macam mana.? version mana yang saya perlu pilih.?
cm ne nk run ?
(07-06-2010, 12:37 AM)Ahlspiess Wrote: [ -> ]simpan source code bende ni, sbg jbf.php
kemudian
php jbf.php

untuk windoz

php C:\jbf.php

cara run (dari terminal). Big Grin
Pages: 1 2 3