I realy like to know the name of the tool used in mr.robot by eliot to brute force social media and email accounts
- Hot
- Active
-
Forum Thread: I Wan't to Learn Pentesting, and Planning to Learn Both C++ and Python. But I'm Not Sure About What I Should Start With? 2 Replies
1 day ago -
Forum Thread: What Are Some Good Budget Laptops for Pentestin 12 Replies
4 days ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 8 Replies
4 days ago -
Forum Thread: Hack Instagram Account Using BruteForce 193 Replies
5 days ago -
Forum Thread: Create and Use Android/Meterpreter/reverse_tcp APK with Msfvenom? 117 Replies
6 days ago -
Forum Thread: How Do I Access Different Directories Within Android via Meterpreter 5 Replies
1 wk ago -
Forum Thread: Best Programming Language? 8 Replies
1 wk ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 4 Replies
1 wk ago -
Forum Thread: Fix Meterpreter Problem 2 Replies
1 wk ago -
Forum Thread: Hack and Track People's Device Constantly Using TRAPE 31 Replies
2 wks ago -
Forum Thread: Need Help with FatRat Over WAN 1 Replies
2 wks ago -
Forum Thread: Kali Linux Boot Error 8 Replies
2 wks ago -
Forum Thread: I Want to Hack in to My Friends System Through his wifi router i am controlling 8 Replies
2 wks ago -
Forum Thread: Kali linux command error. Kindly help 3 Replies
2 wks ago -
Forum Thread: How to Create a Python Remote Keylogger for Facebook 27 Replies
2 wks ago -
Forum Thread: Kali Linux Handshake Porblem 2 Replies
3 wks ago -
Forum Thread: Port Forwarding Problem in Metasploit Can't Establish Connection (WAN) 3 Replies
3 wks ago -
Forum Thread: GMail Brute Force Dictionary Attack Script 31 Replies
1 mo ago -
Forum Thread: Msfvenom Android Exploitation Outside LAN? 12 Replies
1 mo ago -
Forum Thread: How to decrypt .CAP file of handshake during WiFi attack 2 Replies
1 mo ago
-
How To: Clear the Logs & Bash History on Hacked Linux Systems to Cover Your Tracks & Remain Undetected
-
How To: Phish for Social Media & Other Account Passwords with BlackEye
-
How To: Top 10 Things to Do After Installing Kali Linux
-
How To: Hack Android Using Kali (Remotely)
-
How To: Make Spoofed Calls Using Any Phone Number You Want Right from Your Smartphone
-
How to Hack Wi-Fi: Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To: Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
How To: Master Python, Django, Git & GitHub with This Bundle
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How to Hack Wi-Fi: Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How to Hack Wi-Fi: Cracking WPA2-PSK Passwords Using Aircrack-Ng
-
How To: The Hacks Behind Cracking, Part 1: How to Bypass Software Registration
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Gain SSH Access to Servers by Brute-Forcing Credentials
-
How To: Find Identifying Information from a Phone Number Using OSINT Tools
-
How To: Scan Websites for Interesting Directories & Files with Gobuster
-
How To: Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To: Create Custom Wordlists for Password Cracking Using the Mentalist
-
Hacking Windows 10: How to Dump NTLM Hashes & Crack Windows Passwords
-
How To: Find Passwords in Exposed Log Files with Google Dorks
17 Responses
There is a script called CUPP (Common Users Password Profiler) that generates custom wordlists based on information you give it, much like the one he uses.
i know scripts to generate passwords but i want the script he use to brute force not to generate passwords ! thnx bro
I think it is a custom script he created he created himself....that accepts the information given and run the bruteforce along side it...
You're right, he used his custom script, and making the custom script means he know how does it work... and that's powerful
The comments in this article should hopefully prove useful.
am not looking for password generator am looking for password cracker
Did you read the comments? They were specifically talking about password crackers.
yep i did & thnx bro
hi ! since many people use their fav team or food or pet etc... its fairly easy to creat custom wordlist with some script and tools such as cupp but how to crack it? well its farily easy again if that website dosent limit you or have bot detection and captcha etc ... you can use hydra plus burp to start cracking it down (some email websites limit you to 100 try or 10 try like yahoo then it blocks you) so you gonna have hard time :P .
yep maybe i can use proxy or something else ! thnx bro !
Cracking passwords of native English speaking countries is much easier than countries where multiple languages are spoken. So regular crackers wont work.
Anything that can be done manually, can be automated by a bot.
To prevent such behaviour, website implement captchas and javascript to invalidate most common tools available to the average public. And haxor write libraries to overcome captchas and similar. This cat-and-mouse is always on favour of attackers, since they are always the most motivated to break a protection, anyhow, everywhere.
This said, to make a login bruteforcer for a specific platform like fb, twitter, instagram, you should make a script that mimics a browser behaviour, starting from the request headers, to accepting cookies, to resolving math javascript calculus just like a normal browser would do. It's tedious, and you will have to fix it from time to time as your target upgrades its protection scheme.
It's very likely that Elliot wrote those scripts on his own, and keeps them updated as he's used to hack everyone, on a daily base. I haven't bothered writing any (except an old one specific for my router) but with a little debugging of the connection (wireshark/burp), it's possible to replicate a manual browser connection and brute force login:pass.
I think elliot already got the password hash, all his script did was bruteforce the hash. CUPP would be a good tool to use here.
Now, how he got the hash is the question. Maybe wireshark or something similar? Thoughts guys?
That is not how it works, the cracking part is mostly unrealistic
it was realistic you just need to think about it,
you dont need to hack some one email to access all of his accounts all of us using many apps and register ourself in many website which they ask us to put email - user and password and 80% of us only one password easy ha? you get one app - webiste password you get all :)
ùmmm yes that's right looking for a web site and getting to database or brute force our target password in the web site like forum ! store .... !! does reeally work and 95% he use t he same password =D
Try using TOR browser or install Hola extension in chrome or firefox
Share Your Thoughts