Título: BRUTE FORCE ATTACK Publicado por: Metasploit en 18 Marzo 2014, 01:23 am Hola , mi consulta es la siguiente...
Estaba intentando crackear mi router utilizando contraseñas default el usuario es admin y el password motorola , pero decidi hacerlo con otros dispositivos que encuentre en la red , entonces me puse a "practicar" utilizando mi mismo router con hydra , ncrack y medusa solo para retificar que todo funcione como debe , pero ninguno de los 3 esta trabajando , por lo que tengo entendido y he visto en los tutoriales , su funcionamiento no es complejo , es solo especificar target , user(o user list) , "password list" y protocolo. Les dejare que es lo que hago y que me aparece. medusa -h 192.168.0.1 -u admin -P pass.txt -M http Medusa v2.0 [http://www.foofus.net] (C) JoMo-Kun / Foofus Networks <jmk@foofus.net> ACCOUNT CHECK: [http] Host: 192.168.0.1 (1 of 1, 0 complete) User: admin (1 of 1, 0 complete) Password: logo (1 of 6 complete) ACCOUNT FOUND: [http] Host: 192.168.0.1 User: admin Password: logo [SUCCESS] Medusa me imprime que "logo" es el password correcto , cuando no es asi , el password es motorola. hydra -l admin -P /root/pass.txt 192.168.0.1 http-get / Hydra v6.5 (c) 2011 by van Hauser / THC and David Maciejak - use allowed only for legal purposes. Hydra (http://www.thc.org/thc-hydra) starting at 2014-03-16 01:23:17 [DATA] 6 tasks, 1 servers, 6 login tries (l:1/p:6), ~1 tries per task [DATA] attacking service http-get on port 80 [STATUS] attack finished for 192.168.0.1 (waiting for children to finish) [80][www] host: 192.168.0.1 login: admin password: colo [80][www] host: 192.168.0.1 login: admin password: logo [80][www] host: 192.168.0.1 login: admin password: motorola [80][www] host: 192.168.0.1 login: admin password: tam [80][www] host: 192.168.0.1 login: admin password: eso [80][www] host: 192.168.0.1 login: admin password: rack Hydra (http://www.thc.org/thc-hydra) finished at 2014-03-16 01:23:32 Hydra no me dice cual de todas las password es la correcta , solo las pone en pantalla. Cuando utilizo fichero para el user aparece... hydra -L /root/logo.txt -P /root/pass.txt 192.168.0.1 http-get / Hydra v6.5 (c) 2011 by van Hauser / THC and David Maciejak - use allowed only for legal purposes. Hydra (http://www.thc.org/thc-hydra) starting at 2014-03-16 01:27:28 [DATA] 16 tasks, 1 servers, 30 login tries (l:5/p:6), ~1 tries per task [DATA] attacking service http-get on port 80 Warning: Timeout from child 1, restarting Warning: Timeout from child 0, restarting [80][www] host: 192.168.0.1 login: claro password: logo [80][www] host: 192.168.0.1 login: cisco password: tam [80][www] host: 192.168.0.1 login: moto password: tam [80][www] host: 192.168.0.1 login: cisco password: motorola [80][www] host: 192.168.0.1 login: moto password: rack [80][www] host: 192.168.0.1 login: cisco password: rack [80][www] host: 192.168.0.1 login: claro password: colo [80][www] host: 192.168.0.1 login: moto password: eso [80][www] host: 192.168.0.1 login: moto password: logo [80][www] host: 192.168.0.1 login: claro password: tam Warning: Timeout from child 2, restarting [80][www] host: 192.168.0.1 login: claro password: eso Warning: Timeout from child 3, restarting Warning: Timeout from child 4, restarting Warning: Timeout from child 5, restarting [80][www] host: 192.168.0.1 login: moto password: colo Warning: Timeout from child 6, restarting Warning: Timeout from child 7, restarting Warning: Timeout from child 8, restarting Warning: Timeout from child 9, restarting Warning: Timeout from child 10, restarting Warning: Timeout from child 11, restarting Warning: Timeout from child 12, restarting Warning: Timeout from child 13, restarting Warning: Timeout from child 14, restarting Warning: Timeout from child 15, restarting [80][www] host: 192.168.0.1 login: cisco password: colo Warning: Timeout from child 3, restarting [80][www] host: 192.168.0.1 login: claro password: motorola Warning: Timeout from child 15, restarting Warning: Timeout from child 0, restarting Warning: Timeout from child 2, restarting [80][www] host: 192.168.0.1 login: admin password: logo [80][www] host: 192.168.0.1 login: moto password: logo [80][www] host: 192.168.0.1 login: cisco password: rack [80][www] host: 192.168.0.1 login: moto password: eso Warning: Timeout from child 4, restarting [80][www] host: 192.168.0.1 login: claro password: logo [80][www] host: 192.168.0.1 login: claro password: colo [80][www] host: 192.168.0.1 login: moto password: rack [80][www] host: 192.168.0.1 login: claro password: eso [80][www] host: 192.168.0.1 login: moto password: motorola [80][www] host: 192.168.0.1 login: moto password: colo Warning: Timeout from child 5, restarting Warning: Timeout from child 6, restarting [80][www] host: 192.168.0.1 login: moto password: tam Warning: Timeout from child 7, restarting Warning: Timeout from child 8, restarting Warning: Timeout from child 9, restarting Warning: Timeout from child 10, restarting Warning: Timeout from child 11, restarting Warning: Timeout from child 12, restarting Warning: Timeout from child 13, restarting Warning: Timeout from child 14, restarting [80][www] host: 192.168.0.1 login: cisco password: tam Warning: Timeout from child 1, restarting [80][www] host: 192.168.0.1 login: cucso password: colo Warning: Timeout from child 11, restarting Warning: Timeout from child 15, restarting Warning: Timeout from child 0, restarting [80][www] host: 192.168.0.1 login: cisco password: eso [80][www] host: 192.168.0.1 login: moto password: eso [80][www] host: 192.168.0.1 login: cisco password: motorola Warning: Timeout from child 2, restarting [80][www] host: 192.168.0.1 login: moto password: motorola [80][www] host: 192.168.0.1 login: claro password: logo [80][www] host: 192.168.0.1 login: moto password: logo [80][www] host: 192.168.0.1 login: claro password: eso [STATUS] attack finished for 192.168.0.1 (waiting for children to finish) [80][www] host: 192.168.0.1 login: moto password: tam Warning: Timeout from child 4, restarting [80][www] host: 192.168.0.1 login: moto password: colo Warning: Timeout from child 5, restarting Warning: Timeout from child 6, restarting Warning: Timeout from child 7, restarting Warning: Timeout from child 8, restarting Warning: Timeout from child 9, restarting Warning: Timeout from child 10, restarting Warning: Timeout from child 12, restarting Warning: Timeout from child 13, restarting Warning: Timeout from child 14, restarting Hydra (http://www.thc.org/thc-hydra) finished at 2014-03-16 01:28:04 No imprime todas las combinaciones de usuario y contraseña. Por ultimo ncrack... ncrack -p http -u admin -P /root/pass.txt -T5 192.168.0.1 Starting Ncrack 0.4ALPHA ( http://ncrack.org ) at 2014-03-16 01:34 CST Ncrack done: 1 service scanned in 3.40 seconds. Ncrack finished. Que estoy haciendo mal..? Me guie de http://hackertarget.com/brute-forcing-passwords-with-ncrack-hydra-and-medusa/ LAS LISTAS LAS GENERO DE LA SIGGUIENTE FORMA vim nombre.txt pass1 pass2 pass3 etc.. :wq(guardar archivo y salir) Espero puedan ayudarme , no veo donde esta la dificultad , eso es lo que mas me confunde. |