yidas/brute-force-attacker

Brute-force attack tool for generating all possible string and executing function

2.0.0 2022-12-28 09:29 UTC

This package is auto-updated.

Last update: 2024-10-28 13:11:35 UTC


README

Brute Force Attacker for PHP


Brute-force attack tool for generating all possible string and executing function

Latest Stable Version License

OUTLINE

DEMONSTRATION

\yidas\BruteForceAttacker::run([
    'length' => 2,
    'callback' => function ($string) {
        echo "{$string} ";
    },
]);

/* Result
AA AB AC ... AX AY AZ Aa Ab Ac ... Ax Ay Az A0 A1 A2 A3 A4 A5 A6 A7 A8 A9 BA ...
*/

Generates 0-9 string and matches target string:

\yidas\BruteForceAttacker::run([
    'length' => 6,
    'charMap' => range('0', '9'),
    'callback' => function ($string, $count) {
        if ($string=="264508") {
            echo "Matched `{$string}` with {$count} times\n";
            return true;
        }
    },
]);

REQUIREMENTS

This library requires the following:

  • PHP 5.4.0+|7.0+|8.0+

INSTALLATION

Run Composer in your project:

composer require yidas/brute-force-attacker

Then you could call it after Composer is loaded depended on your PHP framework:

require __DIR__ . '/vendor/autoload.php';

use yidas\BruteForceAttacker;

USAGE

Call the run() static method and bring in the options to start:

\yidas\BruteForceAttacker::run(array $options)

Options

Setting all options including skip mechanism:

$hash = '5b7476628919d2d57965e25ba8b2588e94723b76';

\yidas\BruteForceAttacker::run([
    'length' => 8,
    'charMap' => array_merge(range('A', 'Z'), range('a', 'z'), range('0', '9'), ["+", "/"]),
    'callback' => function ($key, & $count) use ($hash) {
        if (sha1($key) == $hash) {
            echo "Matched `{$key}` | Hash: {$hash}\n";
            exit;
        }
        // Display key every some times
        if ($count == 0 || $count > 10000000) {
            echo "{$key} | " . date("H:i:s") . "\n";
            $count = 0;
        }
    },
    'startFrom' => 'AABAAAAA', // Start from `AABAAAAA` -> `AABAAAAB` ...
    'skipLength' => 8,  // Select 8st character for skipCount
    'skipCount' => 1,   // Start from `B` (Skip 1 arrangement form charMap)
]);

length

String length for generating

charMap

Character map used to generate strings

callback

Customized function for performing brute-force attack

function (string $key, integer & $count)

startFrom

Start running from the givien charset string

skipLength

String length for skipping based on skipCount setting

skipCount

Skip count of the charMap based on skipLength