💀 A simple script that performs credential stuffing on HTTP Basic authentication.
-
git clone https://github.com/santosfilipe/credstuffing -
Alter the following lines to reflect the actual files of users and passwords:
username_file = open('users file goes here')
password_file = open('passwords file goes here')- Alter the following line to configure the actual application you are testing:
tryAuthentication("application URL goes here", user, password)-
Make the script executable:
chmod +x credential_stuffing.py -
Run the script:
python3 credential_stuffing.py