hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Linux & Unix Systems
babbacool
Dec 3 2003, 09:02 AM
Hello !

For those who are interested I've found this tool....

I don't know if it works because I don't have Linux installed on my computer...

I hope you'll enjoy....

TCT-Hydra

source : http://www.thc.org/
lmg
Dec 3 2003, 09:24 AM
I know Hydra. It's a good tool. It try brute-force login on many services, (telnet, ftp, http, ssh) but I think it only works by dictionnary, not real brute-force.
If you've got a user list, and a good disctionnary, it may help.
GhostCow
Dec 3 2003, 11:31 AM
what ways is there to get a user list?
lmg
Dec 3 2003, 01:13 PM
Well... You could try some default accounts, like root, admin, exploit, oracle, http, apache, lp, guest, test and so on...

Account root/root may often exists you know... Stupid admins !!!

Hum.. Try also to connect to port 25 of the host (sendmail) and VRFY some accounts
dissolutions
Dec 3 2003, 04:14 PM
dumpster diving tongue.gif
tomer_shim
Jan 2 2004, 12:15 PM
tnx! I'll test it
Cow|
Jan 2 2004, 09:10 PM
http://www.packetstormsecurity.nl/Crackers/wordlists/ All kind of wordlists
sir_case
Jan 18 2004, 04:27 PM
It's also in nessus wink.gif
hks-3207
Jan 24 2004, 01:06 AM
i use this list u can try out
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.