Penetration Testing mailing list archives

Guessing passwords with Hydra

From: alias () securityfocus com
Date: 19 Feb 2006 15:14:43 -0000

Hi there,
We are trying to brute-force a POP3 server with SSL encryption.
Brutus which was supposed to be the favorite tool does not support POP3 over SSL.
Now we are trying to brute-force the server with Hydra but surprisingly Hydra does not support guessing technique but 
only dictionary attack.

Any idea ?

Thanks,

Idan.

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Guessing passwords with Hydra alias (Feb 19)
- Re: Guessing passwords with Hydra (POP3 over SSL) Martin Mačok (Feb 20)
- <Possible follow-ups>
- RE: Guessing passwords with Hydra Anders Thulin (Feb 20)