Author Topic: FTP Bruteforce  (Read 6507 times)

ghostdog

  • Guest
on: December 15, 2010, 05:33:07 AM
Hi there

I found this script and i tested it against my 2nd testing computer , it works fast and accurate.
Nb: you do need a good wordlist . here is a good one : http://leetupload.com/dbindex2/index.php?dir=Word%20Lists/&file=dic-0294.zip.

Link to script : http://www.google.co.uk/url?sa=t&source=web&cd=3&sqi=2&ved=0CCIQFjAC&url=http%3A%2F%2Fxrayoptics.by.ru%2Fdatabase%2Fothers%2Fftpbrute.py&rct=j&q=SysCls%20%3D%20%27clear%27&ei=ZkEITZvWC4mi8QPDwaRM&usg=AFQjCNEm_WkKwwLafXER3OooQUxzTdhByA&cad=rja

INSTRUCTION:      Example: ./ftpbrute.py -t 192.168.1.1 -u root -w wordlist.txt

*** Play around with the username if you not sure about it, try: " admin, user, root, exc..........."

Happy hacking

GD



clshack

  • Full Member
  • ***
  • Posts: 177
    • View Profile
    • ClsHack | Blog
Reply #1 on: December 15, 2010, 02:46:12 PM
Medusa ? o.O

Medusa is a speedy, massively parallel, modular, login brute-forcer for network services created by the geeks at Foofus.net. It currently has modules for the following services: CVS, FTP, HTTP, IMAP, MS-SQL, MySQL, NCP (NetWare), PcAnywhere, POP3, PostgreSQL, rexec, rlogin, rsh, SMB, SMTP (VRFY), SNMP, SSHv2, SVN, Telnet, VmAuthd, VNC, and a generic wrapper module.

I prefer Mesusa... and is also included in BB

And an explample dictionaries...

Code: [Select]
ls /usr/share/dict/
;) Bye



clshack

  • Full Member
  • ***
  • Posts: 177
    • View Profile
    • ClsHack | Blog
Reply #2 on: December 16, 2010, 01:08:54 PM
And metasploit is another very good multi-thread scanner :D




ghostdog

  • Guest
Reply #3 on: December 16, 2010, 05:32:25 PM
And metasploit is another very good multi-thread scanner :D



Without any doubt Medusa and Msf are great tools, but the point is, that the script works faster, that's all.



misfotto

  • Newbie
  • *
  • Posts: 35
    • View Profile
    • Code-Lover
Reply #4 on: December 18, 2010, 04:44:41 AM
And metasploit is another very good multi-thread scanner :D



Without any doubt Medusa and Msf are great tools, but the point is, that the script works faster, that's all.

maybe we need some bench comparison, with the same machine the same password and the same ( or at least similiar ) netowork traffic



meebo

  • Guest
Reply #5 on: September 22, 2011, 06:49:06 PM
...it works fast and accurate.
How is this at all considered fast? One attempt at a time? Unless I'm missing something...