💀 A simple script that performs credential stuffing on HTTP Basic authentication.
-
git clone https://github.com/santosfilipe/credstuffing
-
Alter the following lines to reflect the actual files of users and passwords:
username_file = open('users file goes here')
password_file = open('passwords file goes here')
- Alter the following line to configure the actual application you are testing:
tryAuthentication("application URL goes here", user, password)
-
Make the script executable:
chmod +x credential_stuffing.py
-
Run the script:
python3 credential_stuffing.py