scriptable brute force password guessing for windows apps

Greetings,

How do you hand the password guess to the app? If you pass everything to the app via a command line, I think I can do this in about 20 lines of Python.

-David

I think I can do this in about 20 lines of Python.

-David

Boy release one program and suddenly someones a Python guru. P

Greetings,

Heh. Rather, Python makes it pretty easy to do stuff like this….

-David

it is a pop-up window, so you would have to push the keys strokes.

No command line version.

What about something like AutoIT;

http//www.autoitscript.com/autoit3/index.shtml

This should allow you to automate the collection of a password from a file, drop the password into the pop-up window, send an enter command, then go to the next entry in the file… haven't used it myself, just remembering the days of the old windows mouse click macro's for this sort of thing (which isn't built into windows anymore, but was a great tool when you needed to automate swapping data between windows apps which wouldn't allow export/import…)

Just to add to darren_q's point, you can automate it using AutoIT + Python. AutoIT comes with a COM interface that you can call from Python. Check out - http//stackoverflow.com/questions/151846/get-other-running-processes-window-sizes-in-python#155587- for an example

I am looking for a tool that would allow my to do brute force password guessing into a pop-up window.

Before you start, you may want to make sure it is a pop-up window, and not justs seems to be one.

I tried to do something like that some years back with PGP Desktop (I think it was), only to discover that what appeared to be a ordinary Windows window (and so something that was possible to get a handle to, and send keyboard events to … and also listen to) was nothing of the sort – for exactly the same reasons.

If, as you suggest, this is a security application, chances are the creators have already predicted the possibility of doing password guessing attacks, and taken whatever measures they could against it.

It is not a security app, just a secured app, but the issue with the addressable window is good! Thank you for pointing it out.

AutoIT might be it! D

More simply
http//msdn.microsoft.com/en-us/library/8c6yea83(VS.85).aspx

Specific tools/scripts
http//www.devx.com/vb2themax/Tip/19094
http//www.codeguru.com/cpp/misc/misc/applicationcontrol/article.php/c3743/
http//www.codeproject.com/KB/cpp/sendkeys_cpp_Article.aspx
http//www.codeproject.com/KB/cs/SendKeys.aspx
http//www.codeproject.com/KB/dialog/keystroke.aspx
http//www.softpedia.com/get/Others/Miscellaneous/MF-Autokeys.shtml
http//prjsoft.ru/sendkeys.php
http//www.autohotkey.com/

Point is that these kind of thingies tend to be very, very slow.

jaclaz