Skip to content

Commit b69aca3

Browse files
p0daliriusp0dalirius
committed
Public release
1 parent f3010f8 commit b69aca3

File tree

3 files changed

+13
-5
lines changed

3 files changed

+13
-5
lines changed

README.md

Lines changed: 9 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -12,11 +12,15 @@
1212

1313
**Requirement**: A valid username on the application (no need for password)
1414

15-
- [x] Analysis of the response time differences between a valid and invalid username with [TimeBasedLoginAnalysis.py](./TimeBasedLoginAnalysis.py).
16-
- [x] Plot analysis results to a graph (option `-S` of ) or export to file (option `-f <graph.png>`) with [TimeBasedLoginAnalysis.py](./TimeBasedLoginAnalysis.py).
17-
- [x] Multithreaded login tries.
18-
- [x] Extract only usernames returning responses times that stands out.
19-
15+
- [TimeBasedLoginAnalysis.py](./TimeBasedLoginAnalysis.py)
16+
+ [x] Analysis of the response time differences between a valid and invalid username.
17+
+ [x] Plot analysis results to a graph (option `-S` of ) or export to file (option `-f <graph.png>`).
18+
+ [x] Multithreaded login tries.
19+
20+
- [TimeBasedLoginUserEnum.py](./TimeBasedLoginUserEnum.py)
21+
+ [x] Extract only usernames returning responses times that stands out.
22+
+ [x] Multithreaded login tries.
23+
2024
## Usage
2125

2226
```

TimeBasedLoginAnalysis.py

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -28,6 +28,8 @@ def trylogin(username, statistics):
2828

2929

3030
def parseArgs():
31+
print("TimeBasedLoginAnalysis v1.1 - by @podalirius_\n")
32+
3133
parser = argparse.ArgumentParser(description="Enumerate valid usernames based on the requests response times.")
3234
parser.add_argument("-u", "--username", default=None, required=True, help='Username')
3335
parser.add_argument("-t", "--threads", dest="threads", action="store", type=int, default=4, required=False, help="Number of threads (default: 4)")

TimeBasedLoginUserEnum.py

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -44,6 +44,8 @@ def average_response_time(username, threads=4, samples=100):
4444

4545

4646
def parseArgs():
47+
print("TimeBasedLoginUserEnum v1.1 - by @podalirius_\n")
48+
4749
parser = argparse.ArgumentParser(description="Enumerate valid usernames based on the requests response times.")
4850
parser.add_argument("-u", "--username", default=None, required=True, help='Username')
4951
parser.add_argument("-f", "--usernames-file", default=None, required=True, help='File containing list of usernames to test.')

0 commit comments

Comments
 (0)