FTP Bruteforce

[ghostdog]

Hi there

I found this script and i tested it against my 2nd testing computer , it works fast and accurate.
Nb: you do need a good wordlist . here is a good one : http://leetupload.com/dbindex2/index.php?dir=Word%20Lists/&file=dic-0294.zip.

Link to script : http://www.google.co.uk/url?sa=t&source=web&cd=3&sqi=2&ved=0CCIQFjAC&url=http%3A%2F%2Fxrayoptics.by.ru%2Fdatabase%2Fothers%2Fftpbrute.py&rct=j&q=SysCls%20%3D%20%27clear%27&ei=ZkEITZvWC4mi8QPDwaRM&usg=AFQjCNEm_WkKwwLafXER3OooQUxzTdhByA&cad=rja

INSTRUCTION:      Example: ./ftpbrute.py -t 192.168.1.1 -u root -w wordlist.txt

*** Play around with the username if you not sure about it, try: " admin, user, root, exc..........."

Happy hacking

GD

[clshack]

Medusa ? o.O

Medusa is a speedy, massively parallel, modular, login brute-forcer for network services created by the geeks at Foofus.net. It currently has modules for the following services: CVS, FTP, HTTP, IMAP, MS-SQL, MySQL, NCP (NetWare), PcAnywhere, POP3, PostgreSQL, rexec, rlogin, rsh, SMB, SMTP (VRFY), SNMP, SSHv2, SVN, Telnet, VmAuthd, VNC, and a generic wrapper module.

I prefer Mesusa... and is also included in BB

And an explample dictionaries...

Code Select Expand

ls /usr/share/dict/

;) Bye

[clshack]

And metasploit is another very good multi-thread scanner :D

[ghostdog]

And metasploit is another very good multi-thread scanner :D

Without any doubt Medusa and Msf are great tools, but the point is, that the script works faster, that's all.

[misfotto]

And metasploit is another very good multi-thread scanner :D

Without any doubt Medusa and Msf are great tools, but the point is, that the script works faster, that's all.

maybe we need some bench comparison, with the same machine the same password and the same ( or at least similiar ) netowork traffic

[meebo]

...it works fast and accurate.

How is this at all considered fast? One attempt at a time? Unless I'm missing something...