Re: Password HTML form bruteforce

From: Vladimir Parkhaev (
Date: 04/19/02

Date: Fri, 19 Apr 2002 08:01:32 -0400
From: Vladimir Parkhaev <>
To: joh ket <>

Quoting joh ket (
> So depending on the password I get redirected to a
> page...
> How should the primary and the secondary repsonse
> be configured?
> Or does somebody else have a better idea how to do
> this?

I always vote for rolling your own.... Here is a little skeleton script
that you can adapt to your needs depending on task in hand

#!/usr/bin/perl -w
use LWP::UserAgent;
use HTTP::Request::Common qw(POST);
use MIME::Base64 qw(encode_base64);

$auth = 'Basic ' . encode_base64('foo:bar');
$ua = new LWP::UserAgent;

$req = POST '', Authorization => $auth;
my $res = $ua->request($req);

($res->is_success)? print $res->as_string : die "Error: ", $res->status_line;

This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see: