数据库密码生成器 [英] Database Password Generator

问题描述

我正在寻找一种生成中型数据库的方法，该数据库通过哈希算法存储用户密码和用户名.

原因是我想使用各种选项(例如密码长度，复杂度，哈希算法)(如果常用)对用户密码进行大规模解密或渗透测试.如果有人可以将我指向某个程序，我将不胜感激.

我想尝试这种方法，而不是通过SQL注入将自己的方法侵入某人的Web服务器，然后在监狱中结束.

干杯，

I am looking for a way to generate a medium-large database that stores users passwords and usernames via a hash algorithm.

The reason for this is I want to simulate a large scale decryption or pentest on users passwords with various options such password length, complexity,hash algorithm, if it is commonly used ect. if anyone can point me to a program I would be grateful.

I wanna try this method instead of hacking my way into someone''s web server via SQL injection, and winding up in jail.

Cheers,

推荐答案

我认为您正在寻找已经存在的执行此操作的代码.与自己编写.

我怀疑您会以一种通用的方式找到它.通常，它仅对测试特定应用程序有用，因为特定应用程序以不同的方式执行此操作.因此，您可能会在已经存储了user/pwds的开源项目中找到它，但是它将在单元测试代码中.可能会麻烦得多，不如将其挖掘出来然后进行修改以达到您的目的.

要创建自己的测试工具，可以按照以下说明进行设计
1.创建获取用户/密码" API，以将其实现为接口.
2.创建使用1的代码，然后通过您现有的用户创建API进行推送.如果您希望支持多个不同的创建API，那么这也可以是一个接口.
3.提供一种在循环中运行1/2的机制.

最初，1返回一个用户.这用于测试应用程序.

完成上述工作后，请创建新版本的1，该版本将返回随机的用户名和密码.然后创建另一个使用字典文件作为密码的版本.

之后，添加您想要的其他选项.

I think you are looking for code that already exists to do this. Versus writing it yourself.

I doubt you are going to find that in a generic way. It would normally only be useful for testing a specific application because specific applications do this in different ways. So you might find it in a open source project that already stored user/pwds but it would be in the unit test code. And might be more trouble than it is worth to dig it out and then modify it to your purpose.

To create your own test tool you can design it along the following
1. Create ''get user/pwd'' API implement this as an interface.
2. Create code to use 1 which then pushes through your existing user creation API. This can be an interface as well if you wish to support multiple different creation APIs.
3. Provide a mechanism to run 1/2 in a loop.

Initially 1 returns a single user. This is used to test the app.

After the above works then create a new version of 1 that returns a random user name and password. Then create another version that uses a dictionary file for passwords.

After that add other options that you wish.

这篇关于数据库密码生成器的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！