MCPcopy Index your code
hub / github.com/sqlmapproject/sqlmap / attackCachedUsersPasswords

Function attackCachedUsersPasswords

lib/utils/hash.py:668–681  ·  view source on GitHub ↗
()

Source from the content-addressed store, hash-verified

666 pass
667
668def attackCachedUsersPasswords():
669 if kb.data.cachedUsersPasswords:
670 results = dictionaryAttack(kb.data.cachedUsersPasswords)
671
672 lut = {}
673 for (_, hash_, password) in results:
674 lut[hash_.lower()] = password
675
676 for user in kb.data.cachedUsersPasswords:
677 for i in xrange(len(kb.data.cachedUsersPasswords[user])):
678 if (kb.data.cachedUsersPasswords[user][i] or "").strip():
679 value = kb.data.cachedUsersPasswords[user][i].lower().split()[0]
680 if value in lut:
681 kb.data.cachedUsersPasswords[user][i] += "%s clear-text password: %s" % ('\n' if kb.data.cachedUsersPasswords[user][i][-1] != '\n' else '', lut[value])
682
683def attackDumpedTable():
684 if kb.data.dumpedTable:

Callers 1

getPasswordHashesMethod · 0.90

Calls 2

dictionaryAttackFunction · 0.85
xrangeClass · 0.85

Tested by

no test coverage detected

Used in the wild real call sites across dependent graphs

searching dependent graphs…