Hey, I finally get to post in the Backtrack forum, just like all the grownups... :) Anyway, I have been using XHydra and am not sure what to make of this. I suppose this is backtrack related, but if I shouldn't be posting here please tell me. Hydra doesn't seem to be logging into my Netgear router, I specify http-get, the right port, and 192.168.1.1 as the host, I can feed it directly my known username and password, or put them in a wordlist. No matter what I do it still finishes without telling me it was successful. Has anyone had this trouble before? Thanks.
-ARCKEDA

PS: Sorry about making that new topic archangel.amael. :(

Did you try the technique in this thread?

http://forums.remote-exploit.org/showthread.php?t=14910

In my experience, Hydra can have timing and issues depending on the CPU, RAM, etc. You may need to tweak the command line settings for the best performance.

I am afraid that that post wasn't much help, my router uses a standard http-get function, but thanks for the tip on tweaking command line.

hi,

hydra is ever a excelent tool , but with the router , i think than the best choice is Medusa , support many options specific for routers.

hi.

Are you sure your router uses http-get? Can you craft a URL that will login to your router without you having to fillin the login form? i.e.: http://192.168.1.1/login.jsp?username=admin&pass=mysupersecretpass (or similar)

Are you sure your router uses http-get? Can you craft a URL that will login to your router without you having to fillin the login form?

i.e.: theurl For some reason it won't let me past links to other sites until I post 15 times, even if I am quoting you. :/

(or similar) The thing is, it simply pops up, is there any addon or tool I can use to find out the specific form that the popup is using? Thanks.

Medusa looks sexy, I will probably end up using both it and Hydra.

Sounds like it's using javascript or similar to open a dialog box into which you enter your credentials. What happens if you disable javascript and try to visit the URL for your router?

Is there any chance that you'd tell us what brand and model we're talking about?

Sounds like it's using javascript or similar to open a dialog box into which you enter your credentials. What happens if you disable javascript and try to visit the URL for your router?

Is there any chance that you'd tell us what brand and model we're talking about?

V1.0.14_1.0.14NA << Firmware
Netgear << Router
WNDR3300 << Version.

I disable Javascript and it still pops up.
Sorry this took so long to reply, the freaking thing locked me out of it for awhile. :p

It must use htaccess :)