Pages: [1]

Author Topic: Hydra SSH Brute Force Attack  (Read 17202 times)

0 Members and 1 Guest are viewing this topic.

Offline mrflex

  • NULL
  • Posts: 4
  • Cookies: 2
    • View Profile
Hydra SSH Brute Force Attack
« on: June 15, 2013, 04:52:08 am »
Brute Forcing SSH With xHydra
By: MrFlex

Introduction:

Today I am going to be showing you how to perform a Brute Force attack against an SSH Server. Even though the attack is being performed against an SSH server performing a brute force attack against other services (e.g. VNC) is the same basic concept. In this tutorial I will be using Hydra GTK on Kali Linux. To launch Hydra GTK in Kali you can launch it from the graphical interface in Kali or you can launch it from the command line using the xhydra command. By the end of this tutorial you should have an understanding of how to perform a brute force attack against an SSH Server.

Performing the Attack:
  • Change Protocol from afp to ssh
  • Change port to 22 (or whatever port  SSH is running on by default it is 22)
  • Under single target put the IP address of the target you are attacking (or you could use a list of ip addresses)
  • Now click on the Passwords tab and under username put root (or you could use a list of usernames)
  • In this attack we are going to be using the rockyou.txt wordlist which in Kali is located in /usr/share/wordlists/rockyou.txt.gz (make sure you extract the wordlist before using it)
  • Under the passwords tab tick Try login as password
  • Under the passwords tab tick Try empty password
  • Now go ahead and click the Start button which is in the Start tab
  • Hydra will keep attempting to login to the SSH server until the password for root it found or until it has reached the end of the wordlist.
Success!

In this case we were able to find the root password which was cheese. This is what the output of xHydra looks like.


Code: [Select]
[22][ssh] host: 192.168.131.157 login:root password:chesse
Covering Your Tracks

Now that we have root access to our box, we need to cover our tracks. If you look at the file /var/logl/auth.log there are a number of failed login attempts we need to delete the evidence so remove the file with the following command.

Code: [Select]
# rm /var/log/auth.log

Or you could open the file in an editor and remove the failed login entries

Comments

Let me know what you think (like it or hate it)! I try to make my tutorials as clear and concise as possible! Even if its just simply how the tutorials are formatted, I would love some feed back.
My Policy

I am not responsible for anything you do with this tutorial.
Dedication

This tutorial is dedicated to anyone and everyone who understands that hacking and learning is a way to live your life, not just a day job or list of instructions
« Last Edit: June 15, 2013, 06:50:25 am by mrflex »
Report to moderator   Logged

Offline Kulverstukas

  • Administrator
  • Zeus
  • *
  • Posts: 6627
  • Cookies: 542
  • Fascist dictator
    • View Profile
    • My blog
Re: Hydra SSH Brute Force Attack
« Reply #1 on: June 15, 2013, 06:33:31 am »
You have 1 day to format your post properly bro, or it will go to the trash. The content is OK but the colors makes it unbearable.
Report to moderator   Logged

Offline mrflex

  • NULL
  • Posts: 4
  • Cookies: 2
    • View Profile
Re: Hydra SSH Brute Force Attack
« Reply #2 on: June 15, 2013, 06:49:02 am »
Alright sorry about that
Report to moderator   Logged
Pages: [1]