寫了個程序,主要是用來檢測MySQL數據庫的空密碼和弱密碼的,
在這里,定義了三類弱密碼:
1. 連續數字,譬如123456,在get_weak_num中實現
2. 連續字母,譬如abcdef,在get_weak_character中實現
當然,個數都是隨機的。
3. 數字和字母隨機組合。在get_weak_num_character中實現。
同時定義了一個password_exist的列表,用於保存不同的密碼。如果新生成的密碼在列表中存在,則不進行MySQL數據庫的連接,直接到下一次循環。
具體如下:
#coding=utf8 import random,string,MySQLdb def get_num(): return random.randint(0,9) def get_char(): return random.choice(tuple(string.lowercase)) def choose_any(): return [str(get_num()),get_char()] def get_weak_num(): weak_num=[] initial_num=get_num() for i in range(get_num()): weak_num.append(str(initial_num+i)) if initial_num +i ==9: break; return weak_num def get_weak_character(): weak_character=[] initial_character=get_char() for i in range(get_num()): weak_character.append(chr(ord(initial_character)+i)) if chr(ord(initial_character)+i) == 'z': break return weak_character def get_weak_num_character(): return [random.choice(choose_any()) for num in range(get_num())] password_exist=[] for i in range(10000): choice = [get_weak_num(), get_weak_character(), get_weak_num_character()] password=''.join(random.choice(choice)) print "第"+str(i)+"次密碼為:"+password if password in password_exist: continue else: try: MySQLdb.connect('192.168.244.145', 'root', password) print 'The password for MySQL is:'+password break except: continue password_exist.append(password) if i == 9999: print 'The password is not so weak~'