Foro de elhacker.net

Seguridad Informática => Hacking Wireless => Mensaje iniciado por: Metasploit en 18 Marzo 2014, 01:23 am


Título: BRUTE FORCE ATTACK
Publicado por: Metasploit en 18 Marzo 2014, 01:23 am
Hola  , mi consulta es la siguiente...

Estaba intentando crackear mi router utilizando contraseñas default
el usuario es admin y el password motorola , pero decidi hacerlo con otros dispositivos que encuentre en la red , entonces me puse a "practicar"  utilizando mi mismo router con hydra , ncrack y medusa solo para retificar que todo funcione como debe  , pero ninguno de los 3 esta trabajando , por lo que tengo entendido y he visto en los tutoriales  , su funcionamiento no es complejo , es solo especificar target , user(o user list) , "password list" y protocolo. Les dejare que es lo que hago y que me aparece.




medusa -h 192.168.0.1 -u admin  -P pass.txt -M http
Medusa v2.0 [http://www.foofus.net] (C) JoMo-Kun / Foofus Networks <jmk@foofus.net>

ACCOUNT CHECK: [http] Host: 192.168.0.1 (1 of 1, 0 complete) User: admin (1 of 1, 0 complete) Password: logo (1 of 6 complete)
ACCOUNT FOUND: [http] Host: 192.168.0.1 User: admin Password: logo [SUCCESS]

Medusa me imprime que "logo" es el password correcto , cuando no es asi , el password es motorola.



hydra -l admin -P /root/pass.txt  192.168.0.1 http-get /
Hydra v6.5 (c) 2011 by van Hauser / THC and David Maciejak - use allowed only for legal purposes.
Hydra (http://www.thc.org/thc-hydra) starting at 2014-03-16 01:23:17
[DATA] 6 tasks, 1 servers, 6 login tries (l:1/p:6), ~1 tries per task
[DATA] attacking service http-get on port 80
[STATUS] attack finished for 192.168.0.1 (waiting for children to finish)
[80][www] host: 192.168.0.1   login: admin   password: colo
[80][www] host: 192.168.0.1   login: admin   password: logo
[80][www] host: 192.168.0.1   login: admin   password: motorola
[80][www] host: 192.168.0.1   login: admin   password: tam
[80][www] host: 192.168.0.1   login: admin   password: eso
[80][www] host: 192.168.0.1   login: admin   password: rack
Hydra (http://www.thc.org/thc-hydra) finished at 2014-03-16 01:23:32

Hydra no me dice cual de todas las password es la correcta , solo las pone en pantalla.

Cuando utilizo fichero para el user aparece...

hydra -L /root/logo.txt -P /root/pass.txt  192.168.0.1 http-get /

Hydra v6.5 (c) 2011 by van Hauser / THC and David Maciejak - use allowed only for legal purposes.
Hydra (http://www.thc.org/thc-hydra) starting at 2014-03-16 01:27:28
[DATA] 16 tasks, 1 servers, 30 login tries (l:5/p:6), ~1 tries per task
[DATA] attacking service http-get on port 80
Warning: Timeout from child 1, restarting
Warning: Timeout from child 0, restarting
[80][www] host: 192.168.0.1   login: claro   password: logo
[80][www] host: 192.168.0.1   login: cisco   password: tam
[80][www] host: 192.168.0.1   login: moto   password: tam
[80][www] host: 192.168.0.1   login: cisco   password: motorola
[80][www] host: 192.168.0.1   login: moto   password: rack
[80][www] host: 192.168.0.1   login: cisco   password: rack
[80][www] host: 192.168.0.1   login: claro   password: colo
[80][www] host: 192.168.0.1   login: moto   password: eso
[80][www] host: 192.168.0.1   login: moto   password: logo
[80][www] host: 192.168.0.1   login: claro   password: tam
Warning: Timeout from child 2, restarting
[80][www] host: 192.168.0.1   login: claro   password: eso
Warning: Timeout from child 3, restarting
Warning: Timeout from child 4, restarting
Warning: Timeout from child 5, restarting
[80][www] host: 192.168.0.1   login: moto   password: colo
Warning: Timeout from child 6, restarting
Warning: Timeout from child 7, restarting
Warning: Timeout from child 8, restarting
Warning: Timeout from child 9, restarting
Warning: Timeout from child 10, restarting
Warning: Timeout from child 11, restarting
Warning: Timeout from child 12, restarting
Warning: Timeout from child 13, restarting
Warning: Timeout from child 14, restarting
Warning: Timeout from child 15, restarting
[80][www] host: 192.168.0.1   login: cisco   password: colo
Warning: Timeout from child 3, restarting
[80][www] host: 192.168.0.1   login: claro   password: motorola
Warning: Timeout from child 15, restarting
Warning: Timeout from child 0, restarting
Warning: Timeout from child 2, restarting
[80][www] host: 192.168.0.1   login: admin   password: logo
[80][www] host: 192.168.0.1   login: moto   password: logo
[80][www] host: 192.168.0.1   login: cisco   password: rack
[80][www] host: 192.168.0.1   login: moto   password: eso
Warning: Timeout from child 4, restarting
[80][www] host: 192.168.0.1   login: claro   password: logo
[80][www] host: 192.168.0.1   login: claro   password: colo
[80][www] host: 192.168.0.1   login: moto   password: rack
[80][www] host: 192.168.0.1   login: claro   password: eso
[80][www] host: 192.168.0.1   login: moto   password: motorola
[80][www] host: 192.168.0.1   login: moto   password: colo
Warning: Timeout from child 5, restarting
Warning: Timeout from child 6, restarting
[80][www] host: 192.168.0.1   login: moto   password: tam
Warning: Timeout from child 7, restarting
Warning: Timeout from child 8, restarting
Warning: Timeout from child 9, restarting
Warning: Timeout from child 10, restarting
Warning: Timeout from child 11, restarting
Warning: Timeout from child 12, restarting
Warning: Timeout from child 13, restarting
Warning: Timeout from child 14, restarting
[80][www] host: 192.168.0.1   login: cisco   password: tam
Warning: Timeout from child 1, restarting
[80][www] host: 192.168.0.1   login: cucso   password: colo
Warning: Timeout from child 11, restarting
Warning: Timeout from child 15, restarting
Warning: Timeout from child 0, restarting
[80][www] host: 192.168.0.1   login: cisco   password: eso
[80][www] host: 192.168.0.1   login: moto   password: eso
[80][www] host: 192.168.0.1   login: cisco   password: motorola
Warning: Timeout from child 2, restarting
[80][www] host: 192.168.0.1   login: moto   password: motorola
[80][www] host: 192.168.0.1   login: claro   password: logo
[80][www] host: 192.168.0.1   login: moto   password: logo
[80][www] host: 192.168.0.1   login: claro   password: eso
[STATUS] attack finished for 192.168.0.1 (waiting for children to finish)
[80][www] host: 192.168.0.1   login: moto   password: tam
Warning: Timeout from child 4, restarting
[80][www] host: 192.168.0.1   login: moto   password: colo
Warning: Timeout from child 5, restarting
Warning: Timeout from child 6, restarting
Warning: Timeout from child 7, restarting
Warning: Timeout from child 8, restarting
Warning: Timeout from child 9, restarting
Warning: Timeout from child 10, restarting
Warning: Timeout from child 12, restarting
Warning: Timeout from child 13, restarting
Warning: Timeout from child 14, restarting
Hydra (http://www.thc.org/thc-hydra) finished at 2014-03-16 01:28:04

No imprime todas las combinaciones de usuario y contraseña.


Por ultimo ncrack...

ncrack -p http -u admin -P /root/pass.txt -T5 192.168.0.1

Starting Ncrack 0.4ALPHA ( http://ncrack.org ) at 2014-03-16 01:34 CST


Ncrack done: 1 service scanned in 3.40 seconds.

Ncrack finished.

Que estoy haciendo mal..?

Me guie de http://hackertarget.com/brute-forcing-passwords-with-ncrack-hydra-and-medusa/

LAS LISTAS LAS GENERO DE LA SIGGUIENTE  FORMA

vim nombre.txt

pass1
pass2
pass3
etc..

:wq(guardar archivo y salir)


Espero puedan ayudarme , no veo donde esta la dificultad , eso es lo que mas me confunde.








Powered by SMF 1.1.21 | SMF © 2006-2008, Simple Machines