first working version of dictionary attack

2025-12-06 12:41:30 +00:00 · 2010-11-23 13:24:02 +00:00
parent c471b815cc
commit ba4ea32603
6 changed files with 278109 additions and 3 deletions
--- a/plugins/generic/enumeration.py
+++ b/plugins/generic/enumeration.py
@@ -47,6 +47,7 @@ from lib.techniques.brute.use import tableExists
 from lib.techniques.error.test import errorTest
 from lib.techniques.inband.union.test import unionTest
 from lib.techniques.outband.stacked import stackedTest
+from lib.utils.hash import dictionaryAttack

 class Enumeration:
    """
@@ -329,6 +330,16 @@ class Enumeration:
            errMsg += "hashes for the database users"
            raise sqlmapNoneDataException, errMsg

+        message = "do you want to use dictionary attack on retrieved password hashes? [Y/n/q]"
+        test = readInput(message, default="Y")
+
+        if test[0] in ("n", "N"):
+            pass
+        elif test[0] in ("q", "Q"):
+            raise sqlmapUserQuitException
+        else:
+            dictionaryAttack()
+
        return kb.data.cachedUsersPasswords

    def __isAdminFromPrivileges(self, privileges):