Tag:brute force

Tag (brute force)'s result:

dvwa1.9之brute force

Low: 源码: <?php if( isset( $_GET[ ‘Login’ ] ) ) { // Get username $user = $_GET[ ‘username’ ]; // Get password $pass = $_GET[ ‘password’ ]; $pass = md5( $pass ); // Check the database $query = “SELECT * FROM `users` WHERE user = ‘$user’ AND password = ‘$pass’;”; $result = mysql_query( $query ) or die( ‘<pre>’ . mysql_error() . ‘</pre>’ ); if( $result && mysql_num_rows( $result ) == 1 ) { // Get users details $avatar = mysql_result( $result, 0, “avatar” ); // Login successful echo “<p>Welcome to the password protected area {$user}</p>”; echo “<img src=\”{$avatar}\” />”; } else { // Login failed echo “<pre><br />Username and/or password incorrect.</pre>”; } mysql_close(); } ?> 没有任何防爆破机制,还有SQL注入漏洞 直接burpsuite爆破密码   Medium: 源码: <?php if( isset( $_GET[ ‘Login’ ] ) ) { // Sanitise username input $user = $_GET[ ‘username’ ]; $user = mysql_real_escape_string( $user ); // Sanitise password input $pass = $_GET[ ‘password’ ]; $pass = mysql_real_escape_string( $pass ); $pass = md5( $pass ); // Check the database $query = “SELECT *……