A python script to carry out brute force attack on JIIT cyberoam portal.
Update: Added a new script login.py for automatic login to cyberroam using passwords obtained from brut.py #Types of attack:
- Dictionary attack Use script brut.py to carry out dictionary attack.You might need to make some changes to supply a list of passwords.
- Brute Force Script checks all the possible combinations for a partcular usename and stores the correct password when found. #Ideal way to use:
- Run python post.py bruteforce in terminal/Powershell
- Use the correct passwords from step 1 in brut.py
- Now use login.py to login.Remember you must have python3 installed.
python3 login.py login filename.txt
Note: It was written specifically for jiit so passwords combinations checked are of type "aabbcc".
#Finding Usernames You can create username file manually or by mounting the smb server in terminal and running ls command on it. Details can be found here http://askubuntu.com/questions/29535/how-do-i-access-a-mounted-windows-share-from-the-command-line
#Future work:
- Link both the scripts such that the output from post.py is passed to post2.py and all the usernames for which password was found are eliminated from username.txt
- Remove all the useless code from post.py and post2.py