If you know the form username and form load method of the http you want to crack then use brutus or unsecure. There are many other tools you can try.