richardevcom/get_admin_url.py

## get_admin_url.py
import itertools
import string
import urllib2

def guess_admin_url(url, prefix):
  adminurl = url + prefix
  chars = string.ascii_lowercase + string.digits
  attempts = 0
  for password_length in range(1, 9):
    for guess in itertools.product(chars, repeat=password_length):
      attempts += 1
      guess = ''.join(guess)
      try:
        print('Trying: %s%s/' % (adminurl,guess))
        ret = urllib2.urlopen('%s%s/' % (adminurl,guess))
        if ret.code == 200:
          print("Admin url: %s%s/" % (adminurl,guess))
          text_file = open("adminurl.txt", "w")
          text_file.write("Admin url: %s%s/" % (adminurl,guess))
          text_file.close()
          # return True - use return if searching with no prefix (other urls will triger True result)
      except:
        pass


guess_admin_url("https://example.com/", "admin")
	import itertools
	import string
	import urllib2

	def guess_admin_url(url, prefix):
	adminurl = url + prefix
	chars = string.ascii_lowercase + string.digits
	attempts = 0
	for password_length in range(1, 9):
	for guess in itertools.product(chars, repeat=password_length):
	attempts += 1
	guess = ''.join(guess)
	try:
	print('Trying: %s%s/' % (adminurl,guess))
	ret = urllib2.urlopen('%s%s/' % (adminurl,guess))
	if ret.code == 200:
	print("Admin url: %s%s/" % (adminurl,guess))
	text_file = open("adminurl.txt", "w")
	text_file.write("Admin url: %s%s/" % (adminurl,guess))
	text_file.close()
	# return True - use return if searching with no prefix (other urls will triger True result)
	except:
	pass


	guess_admin_url("https://example.com/", "admin")