Penetration Testing mailing list archives

Re: BruteForcing?

From: Christine Kronberg <seeker () shalla de>
Date: Tue, 17 Oct 2006 20:47:47 +0200 (CEST)

On Sun, 15 Oct 2006, 09sparky () gmail com wrote:

This is more of a general brute forcing question, but one which I coulduse some assistance.
I am attempting to brute force some telnet sessions (Cisco Routers -CISCO IOS 12.2 and IOS 12.3(8), Cisco 1721 router). When telnet'ing in,it only prompts me for a PW (Not a username). It has a 3 attemptsdisconnect, so I get disconnected and have to reconnect.
My question is:
How and what tool should I use to try and brute force (dictionaryattack) this session?I have tried Hydra, but when I get disconnected (after 3 attempts), ittells me it is "finished". Not sure if there is a way to make itreconnect. Is there a better tool or other techniques that would workbetter?


  The best tool is the one yo write yourself to get the job done.
  You know the behaviour of the system. So skript a little program
  to take the first three passwords of your dictonary, try them, check
  the answers, check for the disconnect, connect again, take the next
  three passwords and so on. Instead of hammering the system do it
  slower to prevent other traps.

Second question: Brute forcing also, but against WebPages. Forexample, a Cisco 3000 VPN Concentrator, I have the webpage asking forusername/password. How would I attempt to dictionary attack this?


  I don't have a Cisco 3000 VPN Concentrator around. Is this a form
  based authentication (guess so)? Latest hydra works fine on forms.
  Pick up the authentication parameters and feed them into hydra. If
  you do not figure out at once how this is done - it is stated in
  the source code.

  Cheers,

  Christine Kronberg.


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

Current thread:

BruteForcing? 09sparky (Oct 16)
- Re: BruteForcing? Fab (Oct 16)
- Re: BruteForcing? Jeremy Saintot (Oct 17)
- Re: BruteForcing? Christine Kronberg (Oct 17)
- <Possible follow-ups>
- RE: BruteForcing? Hagen, Eric (Oct 16)
  - Re: BruteForcing? Paolo Scarabelli (Oct 17)
- RE: BruteForcing? Troy Fletcher (Oct 17)
  - Re: BruteForcing? Rogan Dawes (Oct 18)
- RE: BruteForcing? Troy Fletcher (Oct 17)
- RE: BruteForcing? Hagen, Eric (Oct 17)