Description

Simple script to make dictionnary attacks on a POST form protected with anti CSRF. The script makes a first request, catches the token then use it to try a password.

Usage

usage: brute-post-form-with-csrf [-h] [-u URL] [-p PASSWORD] [-P PASSWORDS] [-l LOGIN] [-L LOGINS]
                                 [-c CSRF] [-a ADDITIONAL]

optional arguments:
  -h, --help            show this help message and exit
  -u URL, --url URL     post action url
  -p PASSWORD, --password PASSWORD
                        Single password to test
  -P PASSWORDS, --passwords PASSWORDS
                        Passwords wordlist file
  -l LOGIN, --login LOGIN
                        Single login to test
  -L LOGINS, --logins LOGINS
                        Logins wordlist file
  -c CSRF, --csrf CSRF  CSRF token POST parameter name
  -a ADDITIONAL, --additional ADDITIONAL
                        JSON string for additional POST data

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
README.md		README.md
brute-post-form-with-csrf		brute-post-form-with-csrf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Description

Usage

About

Releases

Packages

Languages

tigre-bleu/brute-post-form-with-csrf

Folders and files

Latest commit

History

Repository files navigation

Description

Usage

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages