Brute Force code - Githubissues

martinvigo / voicemailautomator

A tool that serves as a Proof of Concept for the research I presented at DEF CON 26, "Compromising online accounts by cracking voicemail systems"

https://www.martinvigo.com/voicemailcracker

154 stars 52 forks source link

Brute Force code #1

Open BlackLotus opened 5 years ago

BlackLotus commented 5 years ago

No I don't want the brute force code, but your code is inefficient in that it uses 3 tries to actually get the correct pin. You only have to test twice:

[1234, 5678, 1337]

And to test do:

[1234, 5678]

If one of the pins works

[1234]

If both pins were incorrect it is the third.

Yeah I know it's one request under hundreds/thousands, but I needed to get that out of my system. Thanks for the source thought.

martinvigo commented 5 years ago

Great point! And thanks for bringing it up. If I make another update to the code I'll add your suggested fix