mac-torrent-download DMG brute-forcer

macdown_brute.sh

#!/bin/bash
# Title: Macdown.sh
# Description: Bruteforce DMG files downloaded from mac-torrent-download.net
# Author: Joan Bono (@joan_bono)
# Version: 1.1.0
# Last Modified: jbono @ 20211129

RED='\033[0;31m'
GREEN='\033[0;32m'
NOCOLOR='\033[0m'
BOLD='\033[1m'

DMG=$1

if [ "${DMG}" == "" ]; then
    echo "[-] No DMG provided."
    exit 0
else
    for x in {{a..z},{0..9}}; do
        for y in {{a..z},{0..9}}; do
            for z in {{a..z},{0..9}}; do
                echo -n "mac-torrent-download.net_${x}${y}${z}" | hdiutil attach -stdinpass "${DMG}" > /dev/null 2>&1
                if [ "$?" -eq 0 ]; then
                    echo  -ne "${GREEN}${BOLD}[+] Found password:${NOCOLOR} mac-torrent-download.net_${x}${y}${z}\n"
                    exit 0
                fi
                echo -ne "${RED}${BOLD}[-] Tested password:${NOCOLOR} mac-torrent-download.net_${x}${y}${z}\n"
            done
        done
    done
fi

I'm really sorry for this question, but how do I provide the dmg?

Hi @L0STD0G no need to be sorry for asking.

As you can see in line 13:

DMG=$1

So, it's the first argument when executing the command. Therefore, you'll need to execute the command like this:

$> bash macdown_brute.sh NAME_OF_DMG_FILE.dmg

So, in case you have a DMG file for VLC media player, you'll do it as follows:

$> bash macdown_brute.sh vlc.dmg

It's Working!!! Thanks so much! This is the first ever code-related thing I've ever done. Had to do a bit of research to even understand the littlest part of this seemingly simple set of words. Thanks so much again. Have a great day.

Hi! Ive been trying for hours to try to get this to work but I keep getting the "no DMG provided" error. Any chance you could give me the dummies version of how to get this running? I don't understand the instructions you gave the previous gentleman. Thank you so much for your help, Its truly appreciated!

Ok, this is how I got it working, I don't know if it's the easiest or most efficient method but it worked:

first, put both the .sh file and .dmg in the same folder (I used desktop). I also changed the name of the dmg to something simple like asd123.dmg

now open the terminal and execute the cd command like this to go there (where the files are located):
cd desktop
now execute:
bash macdown_brute.sh asd123.dmg

Question to joanbono: Can i run multiple instances of this at the same time?
notice line 19:
for x in {{a..z},{0..9}}; do

can I just change to something like:
for x in {{a..d},{0..9}}; do and for x in {{e..h},{0..9}}; do

and run them at the same time to save time?
Thanks a lot again. It did a marvelous job.

@L0STD0G THANK YOU!! It finally works!! And thank you @joanbono for making this available!

Question to joanbono: Can i run multiple instances of this at the same time?
notice line 19:
for x in {{a..z},{0..9}}; do

can I just change to something like:
for x in {{a..d},{0..9}}; do and for x in {{e..h},{0..9}}; do

and run them at the same time to save time?
Thanks a lot again. It did a marvelous job.

I guess you refer to run it against multiple DMG files.

You should be able to do so by opening a new terminal for each job

I've tried this, but it doesn't seem to end up finding the password. Like it never finds the correct password, it just says they are all wrong. Would it have something to do with me on an M1 mac or that I use zsh?

The one I try to go for has periods in the file name so it states 'no .dmg has been provided'.
Can I run it just by copy/pasting the code in the terminal?

I've tried this, but it doesn't seem to end up finding the password. Like it never finds the correct password, it just says they are all wrong. Would it have something to do with me on an M1 mac or that I use zsh?

Hi @huds0nx Maybe yes, or maybe the password format has changed. Can you confirm which is the current format?

The one I try to go for has periods in the file name so it states 'no .dmg has been provided'.
Can I run it just by copy/pasting the code in the terminal?

Hi @rjdevries1 Can you paste here the steps you are following? Thanks in advance

Thanks for getting back to me. I believe it is still the ‘mactorrentdownload.net_xxx’ format. I have tried by getting the password from the website, so then I know what it is. But when I run the brute forcer, it just goes over the password and says it’s wrong.

…

On Aug 9, 2021, at 4:56 AM, Joan Bono ***@***.***> wrote: ***@***.*** commented on this gist. I've tried this, but it doesn't seem to end up finding the password. Like it never finds the correct password, it just says they are all wrong. Would it have something to do with me on an M1 mac or that I use zsh? Hi @huds0nx Maybe yes, or maybe the password format has changed. Can you confirm which is the current format? The one I try to go for has periods in the file name so it states 'no .dmg has been provided'. Can I run it just by copy/pasting the code in the terminal? Hi @rjdevries1 Can you paste here the steps you are following? Thanks in advance — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub, or unsubscribe.

Hi, i got it working by putting the ${DMG} variable in quotation marks. hdiutil returned an error about the dmg input because the filename likely contains spaces. Here's the fixed version (that also runs slower but it's normal since it actually checks the password : )

#!/bin/bash
# Title: Macdown.sh
# Description: Bruteforce DMG files downloaded from mac-torrent-download.net
# Author: Joan Bono (@joan_bono)
# Version: 1.0.0
# Last Modified: jbono @ 20200102
# Fixed version

RED='\033[0;31m'
GREEN='\033[0;32m'
NOCOLOR='\033[0m'
BOLD='\033[1m'

DMG=$1

if [ "${DMG}" == "" ]; then
    echo "[-] No DMG provided."
    exit 0
else
    for x in {{a..z},{0..9}}; do
        for y in {{a..z},{0..9}}; do
            for z in {{a..z},{0..9}}; do
                echo -n "mac-torrent-download.net_${x}${y}${z}" | hdiutil attach -stdinpass "${DMG}" > /dev/null 2>&1
                if [ "$?" -eq 0 ]; then
                    echo  -ne "${GREEN}${BOLD}[+] Found password:${NOCOLOR} mac-torrent-download.net_${x}${y}${z}\n"
                    exit 0
                fi
                echo -ne "${RED}${BOLD}[-] Tested password:${NOCOLOR} mac-torrent-download.net_${x}${y}${z}\n"
            done
        done
    done
fi

@marcfusch Thank you, that worked for me.

@marcfusch Thanks, I have updated the Gist.

Thx for the code m8!