Skip to content

Instantly share code, notes, and snippets.

View ez_token_predict.py
#! /usr/bin/python
"""
eZPublish token reset and password prediction PoC.
This PoC is a bit dirty, to adapt it to your needs you may have to rewrite the
following functions :
- getTokenFromMails(): used to retrieve emails and extract the reset token.
Is currently using GMail.
- crackHashes(): used to crack the retrieved tokens in order to extract
mt_rand throws. Is currently using a remote cracking machine