L-codes / oneshellcrack

Licence: GPL-3.0 license

a very very fast brute force webshell password tool

Programming Languages

139335 projects - #7 most used programming language

Projects that are alternatives of or similar to oneshellcrack

Its a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram

Stars: ✭ 211 (+402.38%)

Mutual labels: facebook, password, bruteforce

Faitagram

(Doesn't work anymore)

Stars: ✭ 117 (+178.57%)

Mutual labels: facebook, bruteforce

uberscan

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Stars: ✭ 31 (-26.19%)

Mutual labels: password, bruteforce

Facebash Termux

Facebook BruteForce [ By Tor ] Tool For Termux.

Stars: ✭ 141 (+235.71%)

Mutual labels: facebook, bruteforce

Zydra

Stars: ✭ 178 (+323.81%)

Mutual labels: password, bruteforce

b11

11 DIGIT FACEBOOK ACCOUNTS PASSWORD CRACKER <br> FOR BANGLADESHI TERMUX USERS

Stars: ✭ 87 (+107.14%)

Mutual labels: facebook, crack

Hackphiles

BruteForce Tool For both Instagram and Facebook

Stars: ✭ 57 (+35.71%)

Mutual labels: facebook, bruteforce

AzureAD Autologon Brute

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

Stars: ✭ 90 (+114.29%)

Mutual labels: password, bruteforce

Ob3vil1on

Another archive cracker created in python | cracking [zip/7z/rar] by bruteforcing [ NOT MAINTAINED ]

Stars: ✭ 17 (-59.52%)

Mutual labels: password, crack

BruteForce

A simple brute forcer written in GO for SHA1, SHA256, SHA512, MD5 and bcrypt

Stars: ✭ 49 (+16.67%)

Mutual labels: password, bruteforce

Cheetah Gui

Cheetah GUI

Stars: ✭ 96 (+128.57%)

Mutual labels: password, webshell

password-list

Password lists with top passwords to optimize bruteforce attacks

Stars: ✭ 174 (+314.29%)

Mutual labels: password, bruteforce

Bruteforce Database

Bruteforce database

Stars: ✭ 806 (+1819.05%)

Mutual labels: password, bruteforce

Socialbox Termux

SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Edit By init__0 for termux on android

Stars: ✭ 324 (+671.43%)

Mutual labels: facebook, bruteforce

Cheetah

a very fast brute force webshell password tool

Stars: ✭ 509 (+1111.9%)

Mutual labels: password, webshell

Dictionary Of Pentesting

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Stars: ✭ 492 (+1071.43%)

Mutual labels: password, bruteforce

Xbruteforcer

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

Stars: ✭ 261 (+521.43%)

Mutual labels: password, bruteforce

K8tools

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Stars: ✭ 4,173 (+9835.71%)

Mutual labels: password, crack

weakpass generator

generates weak passwords based on current date

Stars: ✭ 36 (-14.29%)

Mutual labels: password, bruteforce

ComPP

Company Passwords Profiler (aka ComPP) helps making a bruteforce wordlist for a targeted company.

Stars: ✭ 44 (+4.76%)

Mutual labels: password, bruteforce

View All Similar Projects ➔

0x00 Oneshellcrack

oneshellcrack 是一个非常快的webshell暴力破解工具，工作原理是多线程并通过一次性发送大量的密码探测POST数据进行爆破，是其他普通webshell密码暴力破解工具的数千倍

项目地址：https://github.com/L-codes/oneshellcrack

0x01 Features

速度极快，经过本地服务器测试平均破解可达每秒22万个密码
支持python 2.x和3.x
支持网络或服务器性能影响，请求失败后的自动重新请求
支持批量大密码字典文件
支持自动生成常见默认密码和短密码枚举
支持自动过滤不合法的密码

0x02 Parameter description

$ python3 oneshellcrack.py -h

  ___             ____  _          _ _  ____                _    
 / _ \ _ __   ___/ ___|| |__   ___| | |/ ___|_ __ __ _  ___| | __
| | | | '_ \ / _ \___ \| '_ \ / _ \ | | |   | '__/ _` |/ __| |/ /
| |_| | | | |  __/___) | | | |  __/ | | |___| | | (_| | (__|   < 
 \___/|_| |_|\___|____/|_| |_|\___|_|_|\____|_|  \__,_|\___|_|\_\                                                           

               [ Author L       Version 1.0.1 ]

[ Github ] https://github.com/L-codes/oneshellcrack

usage: oneshellcrack.py [-h] [-m] [-n] [-r] [-s] [-t] [-w]
                        [-p FILE [FILE ...]]
                        URL

positional arguments:
  URL                  Target URL

optional arguments:
  -h, --help           show this help message and exit
  -m , --max-threads   specify max threads [default: 200]
  -n , --number        specify max password request [default: auto]
  -r , --retry-nums    specify max retry request [default: 1]
  -s , --shell         specify webshell type
  -t , --timeout       specify request timeout [default: 8]
  -w , --weakpwd-len   specify weak possword lenghts [default: 4]
  -p FILE [FILE ...]   specify possword files [default: Weak passwords]

use examples:
  python oneshellcrack.py http://localhost/shell.php 
  python oneshellcrack.py http://localhost/shell.jsp -n 1000 -m 300
  python oneshellcrack.py http://localhost/shell.asp -p pwd1.lst pwd2.lst

0x03 Use examples

Examples 1

python3 oneshellcrack.py http://172.16.178.139/a.php     
  ___             ____  _          _ _  ____                _    
 / _ \ _ __   ___/ ___|| |__   ___| | |/ ___|_ __ __ _  ___| | __
| | | | '_ \ / _ \___ \| '_ \ / _ \ | | |   | '__/ _` |/ __| |/ /
| |_| | | | |  __/___) | | | |  __/ | | |___| | | (_| | (__|   < 
 \___/|_| |_|\___|____/|_| |_|\___|_|_|\____|_|  \__,_|\___|_|\_\                                                           

               [ Author L       Version 1.0.1 ]

[ Github ] https://github.com/L-codes/oneshellcrack

 ( Shell:php, Numbers:1500, Threads:200, Retry:1 )

[Crack] No.1751 (0.01s) CODE: 200 - POST Content-Length: 15623                    

[Failed] No password found
[Finish] 2626500 words in 11.922 seconds. (220310 w/s)

Examples 2

$ python3 oneshellcrack.py http://172.16.178.133:84/1.asp -p pwd.lst
  ___             ____  _          _ _  ____                _    
 / _ \ _ __   ___/ ___|| |__   ___| | |/ ___|_ __ __ _  ___| | __
| | | | '_ \ / _ \___ \| '_ \ / _ \ | | |   | '__/ _` |/ __| |/ /
| |_| | | | |  __/___) | | | |  __/ | | |___| | | (_| | (__|   < 
 \___/|_| |_|\___|____/|_| |_|\___|_|_|\____|_|  \__,_|\___|_|\_\                                                           

               [ Author L       Version 1.0.1 ]

[ Github ] https://github.com/L-codes/oneshellcrack

 ( Shell:asp, Numbers:1000, Threads:200, Retry:1 )

[Crack] No.607  (0.05s) CODE: 200 - POST Content-Length: 41347                    

[Success] Password: pass&123
[Finish] 607000 words in 5.080 seconds. (119477 w/s)

0x04 Problem

如在使用过程中发现bug或有好的建议，欢迎提交Issues和Pull Requests

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

L-codes / oneshellcrack

Programming Languages

Labels

Projects that are alternatives of or similar to oneshellcrack

0x00 Oneshellcrack

0x01 Features

0x02 Parameter description

0x03 Use examples

Examples 1

Examples 2

0x04 Problem