Skip to content

dadevel/bruteproxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
logins
logins
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
common-passwords.txt
common-passwords.txt
 
 
common-usernames.txt
common-usernames.txt
 
 
ffufgen.sh
ffufgen.sh
 
 
poetry.lock
poetry.lock
 
 
proxy.py
proxy.py
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

bruteproxy

During internal pentests you often encounter a myriad of login portals with potentially weak passwords. This repo contains a few scripts to automate password brute forcing with mitmproxy and ffuf

Warning: This is just a proof of concept and may be unstable 🚧

Setup & Usage

Clone the repository.

git clone --depth 1 https://github.com/dadevel/bruteproxy.git
cd ./bruteproxy
poetry install

Start the HTTP proxy.

poetry run mitmdump -s ./proxy.py --no-rawtcp --no-http2 --ssl-insecure --listen-host 127.0.0.1 --listen-port 8080

Configure http://127.0.0.1:8080 as proxy in your browser.

Submit a specific username or the string FUZZUSER and the password FUZZPASS on every login portal you encounter. The proxy will recognize this requests and dump them into the ./logins folder.

Generate ffuf commands for the collected requests with ffufgen.sh.

./ffufgen.sh -c -w ./common-usernames.txt:FUZZUSER -w ./common-usernames.txt:FUZZPASS -mode pitchfork -ac
./ffufgen.sh -c -w ./common-usernames.txt:FUZZUSER -w ./common-passwords.txt:FUZZPASS -mode clusterbomb -ac

Or build the commands manually.

ffuf -request ./logins/https-example.com-443.req.txt -request-proto https -of csv -o ./logins/https-example.com-443.ffuf.csv -c -w ./common-usernames.txt:FUZZUSER -w ./common-passwords.txt:FUZZPASS -ac

About

Automated brute forcing of web logins

Topics

offsec password-attacks

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages