CSE361 -- Fall 2017

Web Crawler + Form bruteforcer

As we mentioned in the course, a major problem with users reusing their passwords across services is that when a password database is compromised, attackers extract usernames and passwords and try them on unrelated websites on the Internet.

In this project, you are called to develop a crawler that can autonomously navigate websites, collecting and tokenizing all the words that it finds which it will later use as potential passwords on the website's login form. The crawler has to be able to autonomously identify the login page and also detect whether a combination of username and password was successful or not.