/
joomla.pl
58 lines (40 loc) · 1.13 KB
/
joomla.pl
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
#!/usr/bin/perl
# crack joomla! password using dumped hash and salt
#
# perl joomlacrack.pl a87248e5fc69972804f5bb93c873ee9d 9W11uZafPxbe9xpL wordlist.txt
#
use Digest::MD5;
if(!defined($ARGV[0]&& $ARGV[1]&& $ARGV[2])){
system (clear);
print "--- Joomla hash crack\n";
print "---\n";
print ("Usage: perl $0 hash salt wordlist\n\n");
exit; }
$hash = $ARGV[0];
$salt = $ARGV[1];
$wordlist = $ARGV[2];
system (clear);
print "\n[*] hashed password set to $hash\n";
print "[*] salt set to $salt\n";
print "[*] wordlist set to $wordlist\n";
sleep(2);
open (LIST, $wordlist) || die "\n[-] Can't find/open $wordlist\n";
print "\n[+] Cracking ...\n\n";
while ($password = <LIST>) {
chomp ($password);
$key = $password.$salt;
$md5 = Digest::MD5->new;
$md5->add($key);
$digest = $md5->hexdigest;
print "[*] trying $password => $digest ...\n";
if ($digest eq $hash)
{
print "\n#####################################################################\n";
print "[+] Your password is $password\n";
print "#####################################################################\n\n";
close(LIST);
exit;
}
}
close(LIST);
print "\n[-] All failed\n";