Re: brute force http post session with cookies

From: Jerome Athias (jerome.athias@free.fr)
Date: Tue Aug 14 2007 - 06:48:00 EDT

• Next message: Kush Wadhwa: "AES-256 encryption"
• Previous message: Christian Perst: "brute force http post session with cookies"
• In reply to: Christian Perst: "brute force http post session with cookies"
• Next in thread: Fyodor: "Re: brute force http post session with cookies"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

some time ago i coded this simple one: HTTPBruteForcer
https://www.securinfos.info/outils-securite-hacking/httpbrute.php

Here is a little demonstration video:
https://www.securinfos.info/outils-securite-hacking/httpbruteforcer_demo.swf.php
( https://www.securinfos.info/english/httpb/http_bruteforcer.swf )

Test version:
https://www.securinfos.info/outils-securite-hacking/HTTPBruteForcer.zip

By the way, in your case, if you need to play with cookies, i would
recommend to take a look at the PhpSploit Class:
http://mgsdl.free.fr/tools/03061230.txt

My 2c
Good luck
/JA

Christian Perst a écrit :
> Hi,
>
> is there a tool like hydra, but which can be used for http post
> sessions? It should be a brute force tool, where cookie handling
> is implemented.
>
> Thanks for the hint,
> Chris
>
>

• application/x-pkcs7-signature attachment: S/MIME Cryptographic Signature

• Next message: Kush Wadhwa: "AES-256 encryption"
• Previous message: Christian Perst: "brute force http post session with cookies"
• In reply to: Christian Perst: "brute force http post session with cookies"
• Next in thread: Fyodor: "Re: brute force http post session with cookies"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:01 EDT