An educational project showcasing password bruteforcing techniques and prevention.
Have Python3 installed and use pip to install the following:
pip install Flask
pip install termcolor
Provided below is a general overview of each script file.
attack.py
is a password bruteforcing script that attempts to bypass the security
implementation for each login form.
monitor.py
is a script file that will continually monitor updates to the login.log file, which shows the login attempts to each login form.
proxies.py
is script that creates numerous private ips that's used to mimic a proxy pool we'll use to bypass rate limiting and ip blocking.
-
To start the server, execute the
server.py
file and navgiate to the server url. -
You can test the security of the login forms via: Burp Suite, John the Ripper, or by running the
attack.py
file as explained above.