Remote Exploit Forums

Go Back   Remote Exploit Forums > Specialist Topics > Backtrack Videos > BT4 Videos
Reload this Page [Video] How to: Crack HTTP (hydra)


BT4 Videos A collection of videos relating to BT4

   

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 07-05-2009, 09:48 AM
g0tmi1k's Avatar
Member
  
Join Date: Jun 2008
Location: http://g0tmi1k.blogspot.com/
Posts: 67
Arrow [Video] Cracking HTTP Passwords (Hydra)
Links
Watch video on-line: http://www.mediafire.com/download.php?fmdzgytk0fj
Download video: http://blip.tv/file/2318952
Commands: http://pastebin.com/f5f5a18f2


What is this?
A basic guide on how to use hydra to crack a http password on a 'home' router.


How does this work?
> Uses a dictionary attack to test for weak or simple passwords on one or more remote clients


What do I need?
> Hydra
> Big dictionary


Software
Name: Hydra
Version: 5.4
Home Page: http://freeworld.thc.org/
Download Link: http://freeworld.thc.org/download.ph...5.4-src.tar.gz


Commands:
Code:
hydra -l admin -P /pentest/passwords/wordlists/g0tmi1k.lst -e ns -t 15 -f -s -vV 192.168.1.1 http-get /

-l = username
-P = password (Looks for a wordlist)
-e ns = checks for 'null' password
-t xx= How many tasks to run at once
-f = exit once it finds the first user/password
-s = connect via SSL
-vV = verbose mode (shows more info)
192.168.1.1 = IP address
http-get = what to crack/method etc
/ = Page to crack - root



Notes:
This is cut from my final video called "g0tmi1k's home network".
The password HAS to be in the dictionary - so if you use something like http://grc.com/pass, the chances of it being crack is next to nothing!

Video length: 01:21
Capture length: 01:40
Song: Rage Against The Machine - Killing in the Name of (Mr. Oizo Remix)

Blog Post:http://g0tmi1k.blogspot.com/2009/07/video-tutorial-how-to-crack-http-hydra.html
Forum Post: [Video] How to: Crack WPA/WPA2 (aircrack-ng + airolib-ng)
Dictionaries: -=Xploitz=- Thread To Share Wordlist


~g0tmi1k
__________________
~ Have you, g0tmi1k? ~
<(^^,)> d[-_^]b (= =D-->--<
Last edited by g0tmi1k; 03-19-2010 at 10:51 AM.
Reply With Quote
  #2 (permalink)  
Old 10-25-2009, 07:11 AM
Isohump's Avatar
Member
  
Join Date: Sep 2009
Posts: 63
Default
Post it up o youtube and you'll prolly get more comments
Reply With Quote
  #3 (permalink)  
Old 11-07-2009, 01:07 AM
Member
  
Join Date: Feb 2006
Posts: 93
Default
Do you have a good wordlist to use for Hydra to share ?

The Dictionery site you referred to in your post is mostly, if not all for, for WPA cracking if I am correct.
Reply With Quote
  #4 (permalink)  
Old 11-07-2009, 03:30 PM
Just burned his ISO
  
Join Date: Sep 2009
Posts: 1
Default
Tnx g0tmi1k.
Reply With Quote
  #5 (permalink)  
Old 11-08-2009, 11:26 PM
Member
  
Join Date: Sep 2009
Posts: 69
Default
Im trying to use Hydra
Quote:
hydra 192.168.2.1 http-get -v -V -l -P loginpw.txt -e ns -t 5 -w 30 -m / -f
BackTrack :: BelkinRouterSetup1.png picture by manuel_privado - Photobucket

BackTrack :: Belkin Router Setup login before picture by manuel_privado - Photobucket

but no luck what Im doing wrong?
Reply With Quote
Reply

Bookmarks

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 03:46 PM.

Remote Exploit Forums - Archive - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
Search Engine Optimization by vBSEO 3.3.2